Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Possible Email Hack - Need to check if I'm clean!


  • Please log in to reply
13 replies to this topic

#1 Pinecone21

Pinecone21

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:45 AM

Posted 02 October 2012 - 08:10 AM

Hi there, let me start from the beginning!

Origin popped up (while I was signed in) asking to re-login.

I tried and it said the password was wrong, I did the forgot password AND changed my email account password.

I got in touch with Origin about it and they said they could see nothing in the logs to suggest someone else logged in.

So I was re-assured and ended the chat, I get then get an email saying thanks for chatting but its in Spanish. I check my account settings and its all English. I start another chat explaining all again and they said my language was infact set to english and it was probably a minor problem why it came in Spanish.

So i ended the chat and it came in Spanish again! I also received a spam email today which I normally never get they are all usually in my junk which has made me paranoid!

Now I am really worried that my computer has a virus! I have changed the email password and origin password to something very secure and the account settings for password retrieval all contain my details no-one elses.

I use MSE as my anti-virus and a quick scan came back clean.

A full scan is running at the moment but is taking forever!

What steps do I need to take to ensure my system is totally clean for my peace of mind?

Thanks in advance,
Ash

BC AdBot (Login to Remove)

 


#2 Pinecone21

Pinecone21
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:45 AM

Posted 02 October 2012 - 12:27 PM

MSE Finished a Full scan which took around 4.5Hours!!

4095671 Items Scanned.

No threats detected.

Is there anything someone can run through with me to see if im clean? Ive heard of the HijackThis logs etc but I don;t really know anything about them!

Thanks,
Ash

#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,040 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:45 AM

Posted 02 October 2012 - 02:15 PM

Hello, lets also run these.
Are you on a router and is it wired or wirelss?

Next run MBAM (MalwareBytes):

Please download Malwarebytes Anti-Malware Posted Image and save it to your desktop.
  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.
Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you cannot update Malwarebytes or use the Internet to download any files to the infected computer, manually update the database by following the instructions in FAQ Section A: 4. Issues.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.
Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.

-- Some types of malware will target Malwarebytes and other security tools to keep them from running properly. If that's the case, go to Start > All Programs > Malwarebytes Anti-Malware folder > Tools > click on Malwarebytes Chameleon and follow the onscreen instructions. The Chameleon folder can be accessed by opening the program folder for Malwarebytes Anti-Malware (normally C:\Program Files\Malwarebytes' Anti-Malware or C:\Program Files (x86)\Malwarebytes' Anti-Malware).


Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click on Change Parameters
  • Put a check in the box of Detect TDLFS file system
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log has a name like: TDSSKiller.Version_Date_Time_log.txt.



I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Under scan settings, check Posted Image and check Remove found threats
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


NOTE: In some instances if no malware is found there will be no log produced.




Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
    [*
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 Pinecone21

Pinecone21
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:45 AM

Posted 02 October 2012 - 03:41 PM

Hi thanks for the reply,

I am on a Virgin Media Superhub Router and using wireless.

Results from MBAM:

"Malwarebytes Anti-Malware 1.65.0.1400
www.malwarebytes.org

Database version: v2012.10.02.09

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Ash :: ASHS-XPS [administrator]

02/10/2012 20:32:09
mbam-log-2012-10-02 (20-32-09).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 226593
Time elapsed: 3 minute(s), 47 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)"


TDSSKiller output

"20:36:52.0648 3572 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
20:36:52.0804 3572 ============================================================
20:36:52.0804 3572 Current date / time: 2012/10/02 20:36:52.0804
20:36:52.0804 3572 SystemInfo:
20:36:52.0804 3572
20:36:52.0804 3572 OS Version: 6.1.7601 ServicePack: 1.0
20:36:52.0804 3572 Product type: Workstation
20:36:52.0804 3572 ComputerName: ASHS-XPS
20:36:52.0804 3572 UserName: Ash
20:36:52.0804 3572 Windows directory: C:\Windows
20:36:52.0804 3572 System windows directory: C:\Windows
20:36:52.0804 3572 Running under WOW64
20:36:52.0804 3572 Processor architecture: Intel x64
20:36:52.0804 3572 Number of processors: 8
20:36:52.0804 3572 Page size: 0x1000
20:36:52.0804 3572 Boot type: Normal boot
20:36:52.0804 3572 ============================================================
20:36:53.0412 3572 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:36:53.0428 3572 ============================================================
20:36:53.0428 3572 \Device\Harddisk0\DR0:
20:36:53.0428 3572 MBR partitions:
20:36:53.0428 3572 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x34000, BlocksNum 0x2710000
20:36:53.0428 3572 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2744000, BlocksNum 0x37C41830
20:36:53.0428 3572 ============================================================
20:36:53.0459 3572 C: <-> \Device\Harddisk0\DR0\Partition2
20:36:53.0459 3572 ============================================================
20:36:53.0459 3572 Initialize success
20:36:53.0459 3572 ============================================================
20:37:06.0204 4308 ============================================================
20:37:06.0204 4308 Scan started
20:37:06.0204 4308 Mode: Manual; TDLFS;
20:37:06.0204 4308 ============================================================
20:37:06.0329 4308 ================ Scan system memory ========================
20:37:06.0329 4308 System memory - ok
20:37:06.0329 4308 ================ Scan services =============================
20:37:06.0516 4308 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:37:06.0516 4308 1394ohci - ok
20:37:06.0594 4308 [ B33CF4DE909A5B30F526D82053A63C8E ] ABBYY.Licensing.FineReader.Sprint.9.0 C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
20:37:06.0610 4308 ABBYY.Licensing.FineReader.Sprint.9.0 - ok
20:37:06.0641 4308 [ E0065CBF1A25C015C218457D2CD522B9 ] Acceler C:\Windows\system32\DRIVERS\Accelern.sys
20:37:06.0641 4308 Acceler - ok
20:37:06.0656 4308 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:37:06.0672 4308 ACPI - ok
20:37:06.0688 4308 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:37:06.0688 4308 AcpiPmi - ok
20:37:06.0766 4308 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:37:06.0766 4308 AdobeARMservice - ok
20:37:06.0875 4308 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:37:06.0875 4308 AdobeFlashPlayerUpdateSvc - ok
20:37:06.0922 4308 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
20:37:06.0922 4308 adp94xx - ok
20:37:06.0953 4308 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
20:37:06.0953 4308 adpahci - ok
20:37:06.0968 4308 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
20:37:06.0968 4308 adpu320 - ok
20:37:06.0984 4308 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:37:06.0984 4308 AeLookupSvc - ok
20:37:07.0031 4308 [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
20:37:07.0046 4308 AERTFilters - ok
20:37:07.0078 4308 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
20:37:07.0078 4308 AFD - ok
20:37:07.0093 4308 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
20:37:07.0093 4308 agp440 - ok
20:37:07.0109 4308 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
20:37:07.0109 4308 ALG - ok
20:37:07.0109 4308 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
20:37:07.0124 4308 aliide - ok
20:37:07.0124 4308 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
20:37:07.0124 4308 amdide - ok
20:37:07.0140 4308 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
20:37:07.0140 4308 AmdK8 - ok
20:37:07.0156 4308 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
20:37:07.0156 4308 AmdPPM - ok
20:37:07.0187 4308 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:37:07.0187 4308 amdsata - ok
20:37:07.0202 4308 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
20:37:07.0202 4308 amdsbs - ok
20:37:07.0218 4308 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:37:07.0218 4308 amdxata - ok
20:37:07.0234 4308 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
20:37:07.0234 4308 AppID - ok
20:37:07.0249 4308 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:37:07.0249 4308 AppIDSvc - ok
20:37:07.0265 4308 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
20:37:07.0265 4308 Appinfo - ok
20:37:07.0327 4308 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:37:07.0327 4308 Apple Mobile Device - ok
20:37:07.0343 4308 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
20:37:07.0343 4308 arc - ok
20:37:07.0358 4308 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
20:37:07.0358 4308 arcsas - ok
20:37:07.0452 4308 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
20:37:07.0452 4308 aspnet_state - ok
20:37:07.0483 4308 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:37:07.0483 4308 AsyncMac - ok
20:37:07.0514 4308 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
20:37:07.0514 4308 atapi - ok
20:37:07.0561 4308 [ B07E6681D303A612680223C729B021E2 ] ATITool C:\Windows\system32\DRIVERS\ATITool64.sys
20:37:07.0561 4308 ATITool - ok
20:37:07.0592 4308 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:37:07.0592 4308 AudioEndpointBuilder - ok
20:37:07.0608 4308 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
20:37:07.0608 4308 AudioSrv - ok
20:37:07.0624 4308 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:37:07.0639 4308 AxInstSV - ok
20:37:07.0670 4308 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
20:37:07.0670 4308 b06bdrv - ok
20:37:07.0686 4308 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
20:37:07.0686 4308 b57nd60a - ok
20:37:07.0702 4308 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
20:37:07.0717 4308 BDESVC - ok
20:37:07.0717 4308 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
20:37:07.0733 4308 Beep - ok
20:37:07.0748 4308 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
20:37:07.0764 4308 BFE - ok
20:37:07.0858 4308 [ 1B63F2B7CA6B5290CC124CDD07520BC9 ] BingDesktopUpdate C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
20:37:07.0858 4308 BingDesktopUpdate - ok
20:37:07.0889 4308 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
20:37:07.0889 4308 BITS - ok
20:37:07.0904 4308 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:37:07.0904 4308 blbdrive - ok
20:37:07.0998 4308 [ 0F46D2845BD7DDACA52340ECC2B65DA3 ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
20:37:07.0998 4308 Bluetooth Device Monitor - ok
20:37:08.0045 4308 [ 3341DE556EC28252D603277609EEF8BF ] Bluetooth Media Service C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
20:37:08.0060 4308 Bluetooth Media Service - ok
20:37:08.0092 4308 [ 5D5C3EC9BE1107DEDF0FEB55B7F3BD77 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
20:37:08.0092 4308 Bluetooth OBEX Service - ok
20:37:08.0170 4308 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
20:37:08.0170 4308 Bonjour Service - ok
20:37:08.0232 4308 [ C0A9D23C4516209180D3CC47485B547D ] BootRacerServ C:\Program Files (x86)\BootRacer\BootRacerServ.exe
20:37:08.0232 4308 BootRacerServ - ok
20:37:08.0263 4308 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:37:08.0263 4308 bowser - ok
20:37:08.0294 4308 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
20:37:08.0294 4308 BrFiltLo - ok
20:37:08.0310 4308 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
20:37:08.0310 4308 BrFiltUp - ok
20:37:08.0341 4308 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
20:37:08.0341 4308 Browser - ok
20:37:08.0372 4308 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:37:08.0372 4308 Brserid - ok
20:37:08.0388 4308 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:37:08.0388 4308 BrSerWdm - ok
20:37:08.0388 4308 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:37:08.0388 4308 BrUsbMdm - ok
20:37:08.0388 4308 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:37:08.0404 4308 BrUsbSer - ok
20:37:08.0435 4308 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
20:37:08.0435 4308 BthEnum - ok
20:37:08.0450 4308 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:37:08.0450 4308 BTHMODEM - ok
20:37:08.0482 4308 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
20:37:08.0482 4308 BthPan - ok
20:37:08.0497 4308 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
20:37:08.0513 4308 BTHPORT - ok
20:37:08.0544 4308 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
20:37:08.0544 4308 bthserv - ok
20:37:08.0560 4308 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
20:37:08.0560 4308 BTHUSB - ok
20:37:08.0591 4308 [ 274E47BD9C1367BDBFA9DF10C2E6C544 ] btmaudio C:\Windows\system32\drivers\btmaud.sys
20:37:08.0591 4308 btmaudio - ok
20:37:08.0606 4308 [ AB0A33001FE7EBB209D9D52CED11BE1A ] btmaux C:\Windows\system32\DRIVERS\btmaux.sys
20:37:08.0606 4308 btmaux - ok
20:37:08.0622 4308 [ 40C6FEC49D1CC4D112368A2BCD2BCBB7 ] btmhsf C:\Windows\system32\DRIVERS\btmhsf.sys
20:37:08.0622 4308 btmhsf - ok
20:37:08.0653 4308 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:37:08.0653 4308 cdfs - ok
20:37:08.0669 4308 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
20:37:08.0669 4308 cdrom - ok
20:37:08.0700 4308 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
20:37:08.0700 4308 CertPropSvc - ok
20:37:08.0731 4308 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
20:37:08.0731 4308 circlass - ok
20:37:08.0747 4308 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
20:37:08.0762 4308 CLFS - ok
20:37:08.0809 4308 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:37:08.0809 4308 clr_optimization_v2.0.50727_32 - ok
20:37:08.0840 4308 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:37:08.0840 4308 clr_optimization_v2.0.50727_64 - ok
20:37:08.0903 4308 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:37:08.0903 4308 clr_optimization_v4.0.30319_32 - ok
20:37:08.0918 4308 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:37:08.0918 4308 clr_optimization_v4.0.30319_64 - ok
20:37:08.0950 4308 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:37:08.0950 4308 CmBatt - ok
20:37:08.0965 4308 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:37:08.0965 4308 cmdide - ok
20:37:09.0012 4308 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
20:37:09.0012 4308 CNG - ok
20:37:09.0028 4308 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:37:09.0028 4308 Compbatt - ok
20:37:09.0043 4308 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
20:37:09.0043 4308 CompositeBus - ok
20:37:09.0043 4308 COMSysApp - ok
20:37:09.0199 4308 [ 4FC12A217DDA92C303B13A9C539D2B2E ] CoordinatorServiceHost C:\Program Files\SolidWorks Corp\SolidWorks\swScheduler\DTSCoordinatorService.exe
20:37:09.0199 4308 CoordinatorServiceHost - ok
20:37:09.0230 4308 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
20:37:09.0230 4308 crcdisk - ok
20:37:09.0277 4308 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:37:09.0277 4308 CryptSvc - ok
20:37:09.0324 4308 [ BC3D4F90978CD7C8EABD1BAF3BF7873A ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
20:37:09.0324 4308 CtClsFlt - ok
20:37:09.0340 4308 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:37:09.0355 4308 DcomLaunch - ok
20:37:09.0371 4308 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
20:37:09.0371 4308 defragsvc - ok
20:37:09.0433 4308 [ 88D5FE2109F1A52CF69BA410082A833A ] DellDigitalDelivery C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
20:37:09.0433 4308 DellDigitalDelivery - ok
20:37:09.0464 4308 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:37:09.0464 4308 DfsC - ok
20:37:09.0511 4308 [ 6060106CE00F32F63F1A73160E46E9D2 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
20:37:09.0511 4308 dg_ssudbus - ok
20:37:09.0542 4308 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
20:37:09.0542 4308 Dhcp - ok
20:37:09.0558 4308 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
20:37:09.0558 4308 discache - ok
20:37:09.0574 4308 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
20:37:09.0574 4308 Disk - ok
20:37:09.0605 4308 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:37:09.0605 4308 Dnscache - ok
20:37:09.0620 4308 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
20:37:09.0636 4308 dot3svc - ok
20:37:09.0652 4308 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
20:37:09.0652 4308 DPS - ok
20:37:09.0683 4308 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:37:09.0683 4308 drmkaud - ok
20:37:09.0698 4308 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:37:09.0714 4308 DXGKrnl - ok
20:37:09.0730 4308 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
20:37:09.0730 4308 EapHost - ok
20:37:09.0792 4308 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
20:37:09.0839 4308 ebdrv - ok
20:37:09.0870 4308 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
20:37:09.0870 4308 EFS - ok
20:37:09.0917 4308 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:37:09.0917 4308 ehRecvr - ok
20:37:09.0932 4308 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
20:37:09.0932 4308 ehSched - ok
20:37:09.0964 4308 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
20:37:09.0964 4308 elxstor - ok
20:37:10.0026 4308 [ 7DB097F4F6786307168C0DDDEC43A565 ] EPSON_EB_RPCV4_04 C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
20:37:10.0026 4308 EPSON_EB_RPCV4_04 - ok
20:37:10.0042 4308 [ 258AA65A0862E19B7DE6981FDA3758AD ] EPSON_PM_RPCV4_04 C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
20:37:10.0042 4308 EPSON_PM_RPCV4_04 - ok
20:37:10.0042 4308 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:37:10.0042 4308 ErrDev - ok
20:37:10.0088 4308 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
20:37:10.0104 4308 EventSystem - ok
20:37:10.0182 4308 [ 8B6C9924B0D333DBF76086B8258A0891 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
20:37:10.0198 4308 EvtEng - ok
20:37:10.0213 4308 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
20:37:10.0213 4308 exfat - ok
20:37:10.0229 4308 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:37:10.0229 4308 fastfat - ok
20:37:10.0260 4308 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
20:37:10.0260 4308 Fax - ok
20:37:10.0291 4308 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
20:37:10.0291 4308 fdc - ok
20:37:10.0322 4308 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
20:37:10.0322 4308 fdPHost - ok
20:37:10.0322 4308 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
20:37:10.0338 4308 FDResPub - ok
20:37:10.0354 4308 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:37:10.0354 4308 FileInfo - ok
20:37:10.0369 4308 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:37:10.0369 4308 Filetrace - ok
20:37:10.0463 4308 [ 73081CF28F0AE20A52CA4F67CEE6E6B0 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
20:37:10.0463 4308 FLEXnet Licensing Service - ok
20:37:10.0510 4308 [ 64AB6F28047744B9B19C97459C2AB31B ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
20:37:10.0525 4308 FLEXnet Licensing Service 64 - ok
20:37:10.0541 4308 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
20:37:10.0541 4308 flpydisk - ok
20:37:10.0556 4308 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:37:10.0572 4308 FltMgr - ok
20:37:10.0603 4308 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
20:37:10.0619 4308 FontCache - ok
20:37:10.0666 4308 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:37:10.0666 4308 FontCache3.0.0.0 - ok
20:37:10.0681 4308 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:37:10.0681 4308 FsDepends - ok
20:37:10.0712 4308 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:37:10.0712 4308 Fs_Rec - ok
20:37:10.0744 4308 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:37:10.0744 4308 fvevol - ok
20:37:10.0744 4308 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
20:37:10.0744 4308 gagp30kx - ok
20:37:10.0790 4308 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
20:37:10.0790 4308 GEARAspiWDM - ok
20:37:10.0837 4308 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
20:37:10.0853 4308 gpsvc - ok
20:37:10.0915 4308 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:37:10.0915 4308 gupdate - ok
20:37:10.0931 4308 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:37:10.0931 4308 gupdatem - ok
20:37:10.0946 4308 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:37:10.0946 4308 hcw85cir - ok
20:37:10.0978 4308 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
20:37:10.0978 4308 HDAudBus - ok
20:37:10.0993 4308 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
20:37:10.0993 4308 HidBatt - ok
20:37:10.0993 4308 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
20:37:10.0993 4308 HidBth - ok
20:37:11.0024 4308 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
20:37:11.0024 4308 HidIr - ok
20:37:11.0040 4308 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
20:37:11.0040 4308 hidserv - ok
20:37:11.0056 4308 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:37:11.0056 4308 HidUsb - ok
20:37:11.0087 4308 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:37:11.0087 4308 hkmsvc - ok
20:37:11.0102 4308 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:37:11.0102 4308 HomeGroupListener - ok
20:37:11.0134 4308 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:37:11.0134 4308 HomeGroupProvider - ok
20:37:11.0149 4308 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:37:11.0149 4308 HpSAMD - ok
20:37:11.0165 4308 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:37:11.0180 4308 HTTP - ok
20:37:11.0196 4308 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:37:11.0196 4308 hwpolicy - ok
20:37:11.0212 4308 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
20:37:11.0212 4308 i8042prt - ok
20:37:11.0243 4308 [ D469B77687E12FE43E344806740B624D ] iaStor C:\Windows\system32\drivers\iaStor.sys
20:37:11.0243 4308 iaStor - ok
20:37:11.0274 4308 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:37:11.0290 4308 iaStorV - ok
20:37:11.0305 4308 [ FC47F5CF561BF0FD897EFD1A9604DCCF ] iBtFltCoex C:\Windows\system32\DRIVERS\iBtFltCoex.sys
20:37:11.0305 4308 iBtFltCoex - ok
20:37:11.0352 4308 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
20:37:11.0352 4308 IDriverT - ok
20:37:11.0399 4308 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:37:11.0399 4308 idsvc - ok
20:37:11.0617 4308 [ 795C99DC4F574C97C03D0BB39CF099EE ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
20:37:11.0773 4308 igfx - ok
20:37:11.0804 4308 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
20:37:11.0804 4308 iirsp - ok
20:37:11.0836 4308 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
20:37:11.0851 4308 IKEEXT - ok
20:37:11.0882 4308 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\drivers\Impcd.sys
20:37:11.0882 4308 Impcd - ok
20:37:11.0945 4308 [ 8FED6428FDE53D7F4C105095F22524BE ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
20:37:11.0960 4308 IntcAzAudAddService - ok
20:37:11.0976 4308 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
20:37:11.0976 4308 IntcDAud - ok
20:37:11.0992 4308 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
20:37:11.0992 4308 intelide - ok
20:37:12.0007 4308 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:37:12.0007 4308 intelppm - ok
20:37:12.0038 4308 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:37:12.0038 4308 IPBusEnum - ok
20:37:12.0054 4308 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:37:12.0070 4308 IpFilterDriver - ok
20:37:12.0085 4308 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:37:12.0101 4308 iphlpsvc - ok
20:37:12.0101 4308 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:37:12.0116 4308 IPMIDRV - ok
20:37:12.0116 4308 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:37:12.0132 4308 IPNAT - ok
20:37:12.0210 4308 [ A9AB99EE7D39725EAFEC82732D2B3271 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
20:37:12.0210 4308 iPod Service - ok
20:37:12.0241 4308 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:37:12.0241 4308 IRENUM - ok
20:37:12.0257 4308 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:37:12.0257 4308 isapnp - ok
20:37:12.0272 4308 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:37:12.0272 4308 iScsiPrt - ok
20:37:12.0304 4308 [ E56417C56B6A7316B6F527C890A1860D ] JMCR C:\Windows\system32\DRIVERS\jmcr.sys
20:37:12.0319 4308 JMCR - ok
20:37:12.0335 4308 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
20:37:12.0335 4308 kbdclass - ok
20:37:12.0350 4308 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
20:37:12.0350 4308 kbdhid - ok
20:37:12.0366 4308 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
20:37:12.0366 4308 KeyIso - ok
20:37:12.0413 4308 [ 907307F924FFE9762D526D8A70EE9F15 ] KmGameMouseServiceV1 C:\Program Files (x86)\Trust\GXT14 Mouse\GameMouseServiceApp.exe
20:37:12.0428 4308 KmGameMouseServiceV1 - ok
20:37:12.0444 4308 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:37:12.0460 4308 KSecDD - ok
20:37:12.0460 4308 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:37:12.0460 4308 KSecPkg - ok
20:37:12.0475 4308 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
20:37:12.0475 4308 ksthunk - ok
20:37:12.0506 4308 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
20:37:12.0506 4308 KtmRm - ok
20:37:12.0538 4308 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
20:37:12.0538 4308 LanmanServer - ok
20:37:12.0569 4308 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:37:12.0569 4308 LanmanWorkstation - ok
20:37:12.0600 4308 [ FA529FB35694C24BF98A9EF67C1CD9D0 ] LGBusEnum C:\Windows\system32\drivers\LGBusEnum.sys
20:37:12.0600 4308 LGBusEnum - ok
20:37:12.0631 4308 [ 94B29CE153765E768F004FB3440BE2B0 ] LGVirHid C:\Windows\system32\drivers\LGVirHid.sys
20:37:12.0631 4308 LGVirHid - ok
20:37:12.0662 4308 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:37:12.0662 4308 lltdio - ok
20:37:12.0662 4308 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:37:12.0678 4308 lltdsvc - ok
20:37:12.0694 4308 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:37:12.0709 4308 lmhosts - ok
20:37:12.0756 4308 [ 7F32D4C47A50E7223491E8FB9359907D ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
20:37:12.0756 4308 LMS - ok
20:37:12.0772 4308 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
20:37:12.0772 4308 LSI_FC - ok
20:37:12.0787 4308 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
20:37:12.0787 4308 LSI_SAS - ok
20:37:12.0803 4308 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
20:37:12.0803 4308 LSI_SAS2 - ok
20:37:12.0818 4308 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
20:37:12.0818 4308 LSI_SCSI - ok
20:37:12.0834 4308 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
20:37:12.0834 4308 luafv - ok
20:37:12.0865 4308 [ 79D51E7F5926E8CE1B3EBECEBAE28CFF ] mcdbus C:\Windows\system32\DRIVERS\mcdbus.sys
20:37:12.0881 4308 mcdbus - ok
20:37:12.0896 4308 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:37:12.0896 4308 Mcx2Svc - ok
20:37:12.0912 4308 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
20:37:12.0912 4308 megasas - ok
20:37:12.0928 4308 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
20:37:12.0928 4308 MegaSR - ok
20:37:12.0943 4308 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
20:37:12.0959 4308 MEIx64 - ok
20:37:13.0068 4308 [ 0AF89452A8CE3928168F4E5B2208C68B ] mi-raysat_3dsmax2013_64 C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe
20:37:13.0068 4308 mi-raysat_3dsmax2013_64 - ok
20:37:13.0130 4308 Microsoft SharePoint Workspace Audit Service - ok
20:37:13.0177 4308 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
20:37:13.0177 4308 MMCSS - ok
20:37:13.0193 4308 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
20:37:13.0193 4308 Modem - ok
20:37:13.0224 4308 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:37:13.0224 4308 monitor - ok
20:37:13.0255 4308 [ EB03D4164E7F10B601D280413655ADE4 ] MotioninJoyXFilter C:\Windows\system32\DRIVERS\MijXfilt.sys
20:37:13.0286 4308 MotioninJoyXFilter - ok
20:37:13.0302 4308 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
20:37:13.0302 4308 mouclass - ok
20:37:13.0318 4308 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:37:13.0318 4308 mouhid - ok
20:37:13.0333 4308 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:37:13.0349 4308 mountmgr - ok
20:37:13.0396 4308 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:37:13.0396 4308 MozillaMaintenance - ok
20:37:13.0442 4308 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
20:37:13.0442 4308 MpFilter - ok
20:37:13.0458 4308 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
20:37:13.0474 4308 mpio - ok
20:37:13.0474 4308 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:37:13.0489 4308 mpsdrv - ok
20:37:13.0505 4308 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
20:37:13.0520 4308 MpsSvc - ok
20:37:13.0536 4308 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:37:13.0536 4308 MRxDAV - ok
20:37:13.0552 4308 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:37:13.0552 4308 mrxsmb - ok
20:37:13.0567 4308 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:37:13.0583 4308 mrxsmb10 - ok
20:37:13.0598 4308 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:37:13.0598 4308 mrxsmb20 - ok
20:37:13.0614 4308 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
20:37:13.0614 4308 msahci - ok
20:37:13.0630 4308 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:37:13.0630 4308 msdsm - ok
20:37:13.0645 4308 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
20:37:13.0645 4308 MSDTC - ok
20:37:13.0661 4308 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:37:13.0661 4308 Msfs - ok
20:37:13.0676 4308 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:37:13.0676 4308 mshidkmdf - ok
20:37:13.0692 4308 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:37:13.0692 4308 msisadrv - ok
20:37:13.0708 4308 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:37:13.0708 4308 MSiSCSI - ok
20:37:13.0723 4308 msiserver - ok
20:37:13.0739 4308 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:37:13.0739 4308 MSKSSRV - ok
20:37:13.0801 4308 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
20:37:13.0801 4308 MsMpSvc - ok
20:37:13.0817 4308 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:37:13.0817 4308 MSPCLOCK - ok
20:37:13.0817 4308 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:37:13.0817 4308 MSPQM - ok
20:37:13.0848 4308 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:37:13.0848 4308 MsRPC - ok
20:37:13.0864 4308 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
20:37:13.0864 4308 mssmbios - ok
20:37:13.0864 4308 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:37:13.0864 4308 MSTEE - ok
20:37:13.0879 4308 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
20:37:13.0879 4308 MTConfig - ok
20:37:13.0879 4308 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
20:37:13.0879 4308 Mup - ok
20:37:13.0926 4308 [ 6ED8935257672F4CD04A88A0F3DE093D ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
20:37:13.0926 4308 MyWiFiDHCPDNS - ok
20:37:13.0942 4308 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
20:37:13.0957 4308 napagent - ok
20:37:13.0973 4308 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:37:13.0988 4308 NativeWifiP - ok
20:37:14.0035 4308 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
20:37:14.0051 4308 NDIS - ok
20:37:14.0066 4308 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:37:14.0066 4308 NdisCap - ok
20:37:14.0082 4308 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:37:14.0082 4308 NdisTapi - ok
20:37:14.0098 4308 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:37:14.0098 4308 Ndisuio - ok
20:37:14.0113 4308 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:37:14.0113 4308 NdisWan - ok
20:37:14.0129 4308 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:37:14.0129 4308 NDProxy - ok
20:37:14.0129 4308 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:37:14.0144 4308 NetBIOS - ok
20:37:14.0144 4308 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:37:14.0160 4308 NetBT - ok
20:37:14.0160 4308 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
20:37:14.0160 4308 Netlogon - ok
20:37:14.0191 4308 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
20:37:14.0207 4308 Netman - ok
20:37:14.0254 4308 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:37:14.0254 4308 NetMsmqActivator - ok
20:37:14.0269 4308 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:37:14.0269 4308 NetPipeActivator - ok
20:37:14.0285 4308 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
20:37:14.0285 4308 netprofm - ok
20:37:14.0285 4308 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:37:14.0285 4308 NetTcpActivator - ok
20:37:14.0300 4308 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:37:14.0300 4308 NetTcpPortSharing - ok
20:37:14.0441 4308 [ 5D262402B0634C998F8CBCEAD7DD8676 ] NETwNs64 C:\Windows\system32\DRIVERS\NETwNs64.sys
20:37:14.0566 4308 NETwNs64 - ok
20:37:14.0581 4308 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
20:37:14.0581 4308 nfrd960 - ok
20:37:14.0597 4308 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
20:37:14.0597 4308 NisDrv - ok
20:37:14.0659 4308 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
20:37:14.0659 4308 NisSrv - ok
20:37:14.0690 4308 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:37:14.0706 4308 NlaSvc - ok
20:37:14.0706 4308 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:37:14.0706 4308 Npfs - ok
20:37:14.0722 4308 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
20:37:14.0722 4308 nsi - ok
20:37:14.0722 4308 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:37:14.0737 4308 nsiproxy - ok
20:37:14.0768 4308 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:37:14.0800 4308 Ntfs - ok
20:37:14.0862 4308 nTuneService - ok
20:37:14.0862 4308 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
20:37:14.0862 4308 Null - ok
20:37:14.0893 4308 [ D584ABB6A308933A5F72B46C9E5A783F ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
20:37:14.0893 4308 nusb3hub - ok
20:37:14.0909 4308 [ 345B9C04E2036DA4346E3249A5BDFD06 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
20:37:14.0924 4308 nusb3xhc - ok
20:37:14.0956 4308 [ 1F07B814C0BB5AABA703ABFF1F31F2E8 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
20:37:14.0956 4308 NVHDA - ok
20:37:14.0971 4308 [ 566F0CFD371304F17000B67DD585E34A ] nvkflt C:\Windows\system32\DRIVERS\nvkflt.sys
20:37:14.0971 4308 nvkflt - ok
20:37:15.0174 4308 [ BF7A24A71E1932200D864BC1CE15E596 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:37:15.0236 4308 nvlddmkm - ok
20:37:15.0283 4308 [ 8C1D181480796D7D3366A9381FD7782D ] nvoclk64 C:\Windows\system32\DRIVERS\nvoclk64.sys
20:37:15.0283 4308 nvoclk64 - ok
20:37:15.0299 4308 [ 1891184D09E8C16042E57D5373E4268E ] nvpciflt C:\Windows\system32\DRIVERS\nvpciflt.sys
20:37:15.0299 4308 nvpciflt - ok
20:37:15.0330 4308 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:37:15.0330 4308 nvraid - ok
20:37:15.0346 4308 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:37:15.0346 4308 nvstor - ok
20:37:15.0377 4308 [ 9E01B716C8085F7ADB1CDC10103CEEF8 ] NvStUSB C:\Windows\system32\drivers\nvstusb.sys
20:37:15.0377 4308 NvStUSB - ok
20:37:15.0408 4308 [ 43F91595049DE14C4B61D1E76436164F ] NVSvc C:\Windows\system32\nvvsvc.exe
20:37:15.0424 4308 NVSvc - ok
20:37:15.0455 4308 [ 322B69422836F97B76F4AA59B47507BA ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
20:37:15.0470 4308 nvUpdatusService - ok
20:37:15.0486 4308 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:37:15.0502 4308 nv_agp - ok
20:37:15.0502 4308 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:37:15.0502 4308 ohci1394 - ok
20:37:15.0548 4308 [ 4965B005492CBA7719E82B71E3245495 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:37:15.0548 4308 ose64 - ok
20:37:15.0673 4308 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
20:37:15.0704 4308 osppsvc - ok
20:37:15.0736 4308 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:37:15.0736 4308 p2pimsvc - ok
20:37:15.0751 4308 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
20:37:15.0751 4308 p2psvc - ok
20:37:15.0767 4308 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
20:37:15.0767 4308 Parport - ok
20:37:15.0798 4308 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:37:15.0798 4308 partmgr - ok
20:37:15.0814 4308 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:37:15.0814 4308 PcaSvc - ok
20:37:15.0845 4308 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
20:37:15.0845 4308 pci - ok
20:37:15.0860 4308 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
20:37:15.0860 4308 pciide - ok
20:37:15.0876 4308 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
20:37:15.0876 4308 pcmcia - ok
20:37:15.0892 4308 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
20:37:15.0892 4308 pcw - ok
20:37:15.0907 4308 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:37:15.0907 4308 PEAUTH - ok
20:37:15.0985 4308 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
20:37:15.0985 4308 PerfHost - ok
20:37:16.0032 4308 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
20:37:16.0048 4308 pla - ok
20:37:16.0079 4308 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:37:16.0094 4308 PlugPlay - ok
20:37:16.0094 4308 PnkBstrA - ok
20:37:16.0110 4308 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:37:16.0110 4308 PNRPAutoReg - ok
20:37:16.0126 4308 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:37:16.0126 4308 PNRPsvc - ok
20:37:16.0157 4308 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:37:16.0157 4308 PolicyAgent - ok
20:37:16.0188 4308 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
20:37:16.0188 4308 Power - ok
20:37:16.0204 4308 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:37:16.0204 4308 PptpMiniport - ok
20:37:16.0219 4308 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
20:37:16.0219 4308 Processor - ok
20:37:16.0250 4308 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
20:37:16.0250 4308 ProfSvc - ok
20:37:16.0266 4308 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:37:16.0266 4308 ProtectedStorage - ok
20:37:16.0297 4308 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:37:16.0297 4308 Psched - ok
20:37:16.0313 4308 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
20:37:16.0313 4308 PxHlpa64 - ok
20:37:16.0360 4308 [ 0928BD20273625622722FE1DE5BBDE57 ] qicflt C:\Windows\system32\DRIVERS\qicflt.sys
20:37:16.0360 4308 qicflt - ok
20:37:16.0406 4308 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
20:37:16.0422 4308 ql2300 - ok
20:37:16.0453 4308 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
20:37:16.0453 4308 ql40xx - ok
20:37:16.0469 4308 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
20:37:16.0484 4308 QWAVE - ok
20:37:16.0500 4308 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:37:16.0500 4308 QWAVEdrv - ok
20:37:16.0516 4308 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:37:16.0516 4308 RasAcd - ok
20:37:16.0531 4308 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:37:16.0531 4308 RasAgileVpn - ok
20:37:16.0562 4308 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
20:37:16.0562 4308 RasAuto - ok
20:37:16.0578 4308 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:37:16.0578 4308 Rasl2tp - ok
20:37:16.0609 4308 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
20:37:16.0609 4308 RasMan - ok
20:37:16.0625 4308 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:37:16.0625 4308 RasPppoe - ok
20:37:16.0640 4308 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:37:16.0640 4308 RasSstp - ok
20:37:16.0656 4308 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:37:16.0656 4308 rdbss - ok
20:37:16.0672 4308 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
20:37:16.0672 4308 rdpbus - ok
20:37:16.0687 4308 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:37:16.0687 4308 RDPCDD - ok
20:37:16.0703 4308 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:37:16.0703 4308 RDPENCDD - ok
20:37:16.0703 4308 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:37:16.0703 4308 RDPREFMP - ok
20:37:16.0734 4308 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:37:16.0734 4308 RDPWD - ok
20:37:16.0750 4308 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:37:16.0750 4308 rdyboost - ok
20:37:16.0812 4308 [ 189C5A8D2098E0AA14FD157A954B34FC ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
20:37:16.0828 4308 RegSrvc - ok
20:37:16.0859 4308 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:37:16.0859 4308 RemoteAccess - ok
20:37:16.0890 4308 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:37:16.0890 4308 RemoteRegistry - ok
20:37:16.0937 4308 [ 9C3AC71A9934B884FAC567A8807E9C4D ] Revoflt C:\Windows\system32\DRIVERS\revoflt.sys
20:37:16.0952 4308 Revoflt - ok
20:37:16.0984 4308 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
20:37:16.0984 4308 RFCOMM - ok
20:37:16.0999 4308 RHDISK_AMD64 - ok
20:37:17.0030 4308 [ 7B04C9843921AB1F695FB395422C5360 ] RimUsb C:\Windows\system32\Drivers\RimUsb_AMD64.sys
20:37:17.0046 4308 RimUsb - ok
20:37:17.0077 4308 [ 4AAFFFA67AC4DFA3D9985D78573887E2 ] RimVSerPort C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
20:37:17.0077 4308 RimVSerPort - ok
20:37:17.0093 4308 [ 388D3DD1A6457280F3BADBA9F3ACD6B1 ] ROOTMODEM C:\Windows\system32\Drivers\RootMdm.sys
20:37:17.0093 4308 ROOTMODEM - ok
20:37:17.0108 4308 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:37:17.0124 4308 RpcEptMapper - ok
20:37:17.0140 4308 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
20:37:17.0140 4308 RpcLocator - ok
20:37:17.0155 4308 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
20:37:17.0155 4308 RpcSs - ok
20:37:17.0171 4308 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:37:17.0186 4308 rspndr - ok
20:37:17.0218 4308 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
20:37:17.0233 4308 RTL8167 - ok
20:37:17.0233 4308 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
20:37:17.0233 4308 SamSs - ok
20:37:17.0249 4308 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:37:17.0249 4308 sbp2port - ok
20:37:17.0264 4308 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:37:17.0264 4308 SCardSvr - ok
20:37:17.0280 4308 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:37:17.0280 4308 scfilter - ok
20:37:17.0311 4308 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
20:37:17.0327 4308 Schedule - ok
20:37:17.0342 4308 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
20:37:17.0342 4308 SCPolicySvc - ok
20:37:17.0389 4308 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
20:37:17.0389 4308 sdbus - ok
20:37:17.0405 4308 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:37:17.0405 4308 SDRSVC - ok
20:37:17.0420 4308 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:37:17.0420 4308 secdrv - ok
20:37:17.0436 4308 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
20:37:17.0452 4308 seclogon - ok
20:37:17.0467 4308 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
20:37:17.0467 4308 SENS - ok
20:37:17.0483 4308 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:37:17.0483 4308 SensrSvc - ok
20:37:17.0514 4308 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
20:37:17.0514 4308 Serenum - ok
20:37:17.0530 4308 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
20:37:17.0530 4308 Serial - ok
20:37:17.0545 4308 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
20:37:17.0545 4308 sermouse - ok
20:37:17.0561 4308 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
20:37:17.0576 4308 SessionEnv - ok
20:37:17.0592 4308 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:37:17.0592 4308 sffdisk - ok
20:37:17.0608 4308 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:37:17.0608 4308 sffp_mmc - ok
20:37:17.0608 4308 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:37:17.0608 4308 sffp_sd - ok
20:37:17.0623 4308 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
20:37:17.0623 4308 sfloppy - ok
20:37:17.0654 4308 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:37:17.0670 4308 SharedAccess - ok
20:37:17.0686 4308 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:37:17.0686 4308 ShellHWDetection - ok
20:37:17.0701 4308 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
20:37:17.0701 4308 SiSRaid2 - ok
20:37:17.0717 4308 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
20:37:17.0717 4308 SiSRaid4 - ok
20:37:17.0779 4308 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
20:37:17.0779 4308 SkypeUpdate - ok
20:37:17.0810 4308 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:37:17.0810 4308 Smb - ok
20:37:17.0826 4308 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:37:17.0826 4308 SNMPTRAP - ok
20:37:17.0920 4308 [ 4945020BC094C322571184A6E8056B3A ] SolidWorks Licensing Service C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe
20:37:17.0920 4308 SolidWorks Licensing Service - ok
20:37:17.0966 4308 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
20:37:17.0966 4308 spldr - ok
20:37:17.0998 4308 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
20:37:17.0998 4308 Spooler - ok
20:37:18.0060 4308 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
20:37:18.0122 4308 sppsvc - ok
20:37:18.0138 4308 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:37:18.0138 4308 sppuinotify - ok
20:37:18.0169 4308 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
20:37:18.0169 4308 srv - ok
20:37:18.0185 4308 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:37:18.0185 4308 srv2 - ok
20:37:18.0200 4308 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:37:18.0200 4308 srvnet - ok
20:37:18.0232 4308 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:37:18.0232 4308 SSDPSRV - ok
20:37:18.0247 4308 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:37:18.0247 4308 SstpSvc - ok
20:37:18.0294 4308 [ 855335BF5792E56164F98C012E3D92DD ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
20:37:18.0294 4308 ssudmdm - ok
20:37:18.0325 4308 [ 92E7F6666633D2DD91D527503DAA7BE0 ] stdcfltn C:\Windows\system32\DRIVERS\stdcfltn.sys
20:37:18.0325 4308 stdcfltn - ok
20:37:18.0356 4308 Steam Client Service - ok
20:37:18.0434 4308 [ A766CCAD980235FF34E7F8089D3175A3 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
20:37:18.0434 4308 Stereo Service - ok
20:37:18.0450 4308 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
20:37:18.0466 4308 stexstor - ok
20:37:18.0497 4308 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
20:37:18.0512 4308 stisvc - ok
20:37:18.0528 4308 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
20:37:18.0528 4308 swenum - ok
20:37:18.0575 4308 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
20:37:18.0575 4308 SwitchBoard - ok
20:37:18.0606 4308 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
20:37:18.0622 4308 swprv - ok
20:37:18.0653 4308 [ B0C7D4DCF4800DF2F2145B500D0161E8 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
20:37:18.0668 4308 SynTP - ok
20:37:18.0700 4308 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
20:37:18.0731 4308 SysMain - ok
20:37:18.0746 4308 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:37:18.0746 4308 TabletInputService - ok
20:37:18.0762 4308 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
20:37:18.0778 4308 TapiSrv - ok
20:37:18.0778 4308 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
20:37:18.0793 4308 TBS - ok
20:37:18.0840 4308 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:37:18.0871 4308 Tcpip - ok
20:37:18.0918 4308 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:37:18.0918 4308 TCPIP6 - ok
20:37:18.0934 4308 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:37:18.0949 4308 tcpipreg - ok
20:37:18.0949 4308 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:37:18.0949 4308 TDPIPE - ok
20:37:18.0980 4308 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:37:18.0996 4308 TDTCP - ok
20:37:19.0012 4308 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:37:19.0012 4308 tdx - ok
20:37:19.0027 4308 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
20:37:19.0027 4308 TermDD - ok
20:37:19.0043 4308 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
20:37:19.0058 4308 TermService - ok
20:37:19.0058 4308 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
20:37:19.0074 4308 Themes - ok
20:37:19.0090 4308 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
20:37:19.0090 4308 THREADORDER - ok
20:37:19.0105 4308 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
20:37:19.0105 4308 TrkWks - ok
20:37:19.0136 4308 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:37:19.0152 4308 TrustedInstaller - ok
20:37:19.0168 4308 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:37:19.0168 4308 tssecsrv - ok
20:37:19.0183 4308 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:37:19.0183 4308 TsUsbFlt - ok
20:37:19.0214 4308 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
20:37:19.0214 4308 TsUsbGD - ok
20:37:19.0246 4308 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:37:19.0246 4308 tunnel - ok
20:37:19.0261 4308 [ FD24F98D2898BE093FE926604BE7DB99 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys
20:37:19.0277 4308 TurboB - ok
20:37:19.0324 4308 [ 600B406A04D90F577FEA8A88D7379F08 ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
20:37:19.0324 4308 TurboBoost - ok
20:37:19.0339 4308 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
20:37:19.0339 4308 uagp35 - ok
20:37:19.0355 4308 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:37:19.0355 4308 udfs - ok
20:37:19.0386 4308 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:37:19.0386 4308 UI0Detect - ok
20:37:19.0402 4308 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:37:19.0402 4308 uliagpkx - ok
20:37:19.0417 4308 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
20:37:19.0417 4308 umbus - ok
20:37:19.0433 4308 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
20:37:19.0433 4308 UmPass - ok
20:37:19.0511 4308 [ 2C16648A12999AE69A9EBF41974B0BA2 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
20:37:19.0526 4308 UNS - ok
20:37:19.0542 4308 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
20:37:19.0542 4308 upnphost - ok
20:37:19.0573 4308 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
20:37:19.0573 4308 USBAAPL64 - ok
20:37:19.0604 4308 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
20:37:19.0604 4308 usbaudio - ok
20:37:19.0636 4308 [ 19AD7990C0B67E48DAC5B26F99628223 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:37:19.0636 4308 usbccgp - ok
20:37:19.0667 4308 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:37:19.0667 4308 usbcir - ok
20:37:19.0667 4308 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
20:37:19.0682 4308 usbehci - ok
20:37:19.0698 4308 [ 8B892002D7B79312821169A14317AB86 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:37:19.0714 4308 usbhub - ok
20:37:19.0729 4308 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
20:37:19.0729 4308 usbohci - ok
20:37:19.0745 4308 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:37:19.0760 4308 usbprint - ok
20:37:19.0776 4308 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
20:37:19.0776 4308 usbscan - ok
20:37:19.0792 4308 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:37:19.0792 4308 USBSTOR - ok
20:37:19.0807 4308 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
20:37:19.0807 4308 usbuhci - ok
20:37:19.0823 4308 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
20:37:19.0823 4308 usbvideo - ok
20:37:19.0854 4308 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
20:37:19.0854 4308 UxSms - ok
20:37:19.0870 4308 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
20:37:19.0870 4308 VaultSvc - ok
20:37:19.0916 4308 [ ED492636EE26EC43DAA4BAA7EF0DA7AD ] VBoxDrv C:\Windows\system32\DRIVERS\VBoxDrv.sys
20:37:19.0916 4308 VBoxDrv - ok
20:37:19.0948 4308 [ 58E2365E7FD880624F648C63C5D22009 ] VBoxNetAdp C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
20:37:19.0948 4308 VBoxNetAdp - ok
20:37:19.0963 4308 [ 5160910CE602710D7E87F1B35487E7DB ] VBoxNetFlt C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
20:37:19.0963 4308 VBoxNetFlt - ok
20:37:19.0994 4308 [ 99906A079A6C24D4B8B0DBED02B7869B ] VBoxUSBMon C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
20:37:19.0994 4308 VBoxUSBMon - ok
20:37:20.0010 4308 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:37:20.0010 4308 vdrvroot - ok
20:37:20.0057 4308 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
20:37:20.0057 4308 vds - ok
20:37:20.0088 4308 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:37:20.0088 4308 vga - ok
20:37:20.0104 4308 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
20:37:20.0104 4308 VgaSave - ok
20:37:20.0119 4308 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:37:20.0119 4308 vhdmp - ok
20:37:20.0150 4308 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
20:37:20.0150 4308 viaide - ok
20:37:20.0166 4308 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:37:20.0166 4308 volmgr - ok
20:37:20.0182 4308 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:37:20.0197 4308 volmgrx - ok
20:37:20.0197 4308 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:37:20.0213 4308 volsnap - ok
20:37:20.0228 4308 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
20:37:20.0228 4308 vsmraid - ok
20:37:20.0260 4308 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
20:37:20.0291 4308 VSS - ok
20:37:20.0306 4308 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
20:37:20.0306 4308 vwifibus - ok
20:37:20.0322 4308 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
20:37:20.0322 4308 vwififlt - ok
20:37:20.0353 4308 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
20:37:20.0353 4308 vwifimp - ok
20:37:20.0384 4308 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
20:37:20.0384 4308 W32Time - ok
20:37:20.0400 4308 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
20:37:20.0400 4308 WacomPen - ok
20:37:20.0431 4308 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:37:20.0431 4308 WANARP - ok
20:37:20.0431 4308 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:37:20.0431 4308 Wanarpv6 - ok
20:37:20.0494 4308 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
20:37:20.0525 4308 WatAdminSvc - ok
20:37:20.0556 4308 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
20:37:20.0587 4308 wbengine - ok
20:37:20.0618 4308 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:37:20.0618 4308 WbioSrvc - ok
20:37:20.0634 4308 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:37:20.0650 4308 wcncsvc - ok
20:37:20.0650 4308 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:37:20.0665 4308 WcsPlugInService - ok
20:37:20.0665 4308 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
20:37:20.0681 4308 Wd - ok
20:37:20.0696 4308 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:37:20.0696 4308 Wdf01000 - ok
20:37:20.0712 4308 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:37:20.0712 4308 WdiServiceHost - ok
20:37:20.0728 4308 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:37:20.0728 4308 WdiSystemHost - ok
20:37:20.0743 4308 [ 94DC2BF6CBAAA95E369C3756D3115A76 ] wdkmd C:\Windows\system32\DRIVERS\WDKMD.sys
20:37:20.0743 4308 wdkmd - ok
20:37:20.0774 4308 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
20:37:20.0774 4308 WebClient - ok
20:37:20.0774 4308 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:37:20.0790 4308 Wecsvc - ok
20:37:20.0790 4308 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:37:20.0790 4308 wercplsupport - ok
20:37:20.0821 4308 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
20:37:20.0821 4308 WerSvc - ok
20:37:20.0837 4308 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:37:20.0837 4308 WfpLwf - ok
20:37:20.0868 4308 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
20:37:20.0868 4308 WimFltr - ok
20:37:20.0884 4308 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:37:20.0884 4308 WIMMount - ok
20:37:20.0899 4308 WinDefend - ok
20:37:20.0899 4308 WinHttpAutoProxySvc - ok
20:37:20.0946 4308 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:37:20.0946 4308 Winmgmt - ok
20:37:21.0008 4308 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
20:37:21.0055 4308 WinRM - ok
20:37:21.0102 4308 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
20:37:21.0118 4308 WinUsb - ok
20:37:21.0149 4308 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
20:37:21.0149 4308 Wlansvc - ok
20:37:21.0180 4308 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
20:37:21.0196 4308 wlcrasvc - ok
20:37:21.0289 4308 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:37:21.0305 4308 wlidsvc - ok
20:37:21.0336 4308 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
20:37:21.0336 4308 WmiAcpi - ok
20:37:21.0352 4308 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:37:21.0367 4308 wmiApSrv - ok
20:37:21.0383 4308 WMPNetworkSvc - ok
20:37:21.0414 4308 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:37:21.0414 4308 WPCSvc - ok
20:37:21.0414 4308 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:37:21.0430 4308 WPDBusEnum - ok
20:37:21.0445 4308 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:37:21.0445 4308 ws2ifsl - ok
20:37:21.0461 4308 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
20:37:21.0461 4308 wscsvc - ok
20:37:21.0461 4308 WSearch - ok
20:37:21.0508 4308 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
20:37:21.0554 4308 wuauserv - ok
20:37:21.0570 4308 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:37:21.0570 4308 WudfPf - ok
20:37:21.0601 4308 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:37:21.0601 4308 WUDFRd - ok
20:37:21.0617 4308 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:37:21.0617 4308 wudfsvc - ok
20:37:21.0632 4308 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
20:37:21.0632 4308 WwanSvc - ok
20:37:21.0679 4308 [ 2C6BC21B2D5B58D8B1D638C1704CB494 ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
20:37:21.0679 4308 xusb21 - ok
20:37:21.0710 4308 ================ Scan global ===============================
20:37:21.0742 4308 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
20:37:21.0757 4308 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
20:37:21.0773 4308 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
20:37:21.0788 4308 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
20:37:21.0804 4308 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
20:37:21.0804 4308 [Global] - ok
20:37:21.0804 4308 ================ Scan MBR ==================================
20:37:21.0820 4308 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
20:37:22.0178 4308 \Device\Harddisk0\DR0 - ok
20:37:22.0178 4308 ================ Scan VBR ==================================
20:37:22.0178 4308 [ 3246A901DD6C10BBE21DF021CC1B8685 ] \Device\Harddisk0\DR0\Partition1
20:37:22.0178 4308 \Device\Harddisk0\DR0\Partition1 - ok
20:37:22.0210 4308 [ 935D9DF834FA10B64D14E1F5BC549FDB ] \Device\Harddisk0\DR0\Partition2
20:37:22.0225 4308 \Device\Harddisk0\DR0\Partition2 - ok
20:37:22.0225 4308 ============================================================
20:37:22.0225 4308 Scan finished
20:37:22.0225 4308 ============================================================
20:37:22.0225 1188 Detected object count: 0
20:37:22.0225 1188 Actual detected object count: 0
"

Still waiting on the ESET Scan thought id post this up in the meantime!

Thanks for taking the time to help me!

#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,040 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:45 AM

Posted 02 October 2012 - 07:30 PM

No problem.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 Pinecone21

Pinecone21
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:45 AM

Posted 02 October 2012 - 07:36 PM

Hi again,

ESET Log:

"C:\Program Files (x86)\1ClickDownload\mainpackfa.exe Win32/Adware.1ClickDownload.E application cleaned by deleting - quarantined
C:\Program Files (x86)\Dell DataSafe Local Backup\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Users\Ash\AppData\Roaming\AVG\Rescue\PC Tuneup 2011\111124103531024.rsc multiple threats deleted - quarantined
"


MiniToolBox Result:

"MiniToolBox by Farbar Version: 23-07-2012
Ran by Ash (administrator) on 03-10-2012 at 01:35:18
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com

========================= IP Configuration: ================================

Intel® Centrino® Wireless-N 1030 = Wireless Network Connection (Connected)
VirtualBox Host-Only Ethernet Adapter = VirtualBox Host-Only Network (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 3 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add address name="VirtualBox Host-Only Network" address=192.168.56.1 mask=255.255.255.0


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Ashs-XPS
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 3:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2
Physical Address. . . . . . . . . : AC-72-89-32-92-D2
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : AC-72-89-32-92-D2
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : AC-72-89-32-92-D5
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® Centrino® Wireless-N 1030
Physical Address. . . . . . . . . : AC-72-89-32-92-D1
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::7163:a483:46ce:11b0%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.9(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : 02 October 2012 20:22:55
Lease Expires . . . . . . . . . . : 03 October 2012 02:23:06
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 246182537
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-BF-A1-29-14-FE-B5-BD-BF-D0
DNS Servers . . . . . . . . . . . : 194.168.4.100
194.168.8.100
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 14-FE-B5-BD-BF-D0
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter VirtualBox Host-Only Network:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : VirtualBox Host-Only Ethernet Adapter
Physical Address. . . . . . . . . : 08-00-27-00-D8-22
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::d9e0:3e88:444d:61f3%31(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.56.1(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . :
DHCPv6 IAID . . . . . . . . . . . : 990380071
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-BF-A1-29-14-FE-B5-BD-BF-D0
DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
fec0:0:0:ffff::2%1
fec0:0:0:ffff::3%1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{D34A1AAC-89F9-439F-97BD-CF4D4DEC40CC}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.ad.hud.ac.uk:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter 6TO4 Adapter:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 17:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{FB045278-B530-4575-B129-4E1895AFFC36}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: cache1.service.virginmedia.net
Address: 194.168.4.100

Name: google.com
Addresses: 2a00:1450:4009:802::1000
173.194.34.73
173.194.34.70
173.194.34.64
173.194.34.67
173.194.34.71
173.194.34.72
173.194.34.66
173.194.34.65
173.194.34.68
173.194.34.78
173.194.34.69


Pinging google.com [173.194.41.133] with 32 bytes of data:
Reply from 173.194.41.133: bytes=32 time=17ms TTL=56
Reply from 173.194.41.133: bytes=32 time=17ms TTL=56

Ping statistics for 173.194.41.133:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 17ms, Maximum = 17ms, Average = 17ms
Server: cache1.service.virginmedia.net
Address: 194.168.4.100

Name: yahoo.com
Addresses: 72.30.38.140
98.139.183.24
98.138.253.109


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=372ms TTL=47
Reply from 98.138.253.109: bytes=32 time=351ms TTL=47

Ping statistics for 98.138.253.109:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 351ms, Maximum = 372ms, Average = 361ms
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 194.168.4.100

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
16...ac 72 89 32 92 d2 ......Microsoft Virtual WiFi Miniport Adapter #2
15...ac 72 89 32 92 d2 ......Microsoft Virtual WiFi Miniport Adapter
14...ac 72 89 32 92 d5 ......Bluetooth Device (Personal Area Network)
12...ac 72 89 32 92 d1 ......Intel® Centrino® Wireless-N 1030
11...14 fe b5 bd bf d0 ......Realtek PCIe GBE Family Controller
31...08 00 27 00 d8 22 ......VirtualBox Host-Only Ethernet Adapter
1...........................Software Loopback Interface 1
32...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
24...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
26...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
35...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.9 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.9 281
192.168.0.9 255.255.255.255 On-link 192.168.0.9 281
192.168.0.255 255.255.255.255 On-link 192.168.0.9 281
192.168.56.0 255.255.255.0 On-link 192.168.56.1 276
192.168.56.1 255.255.255.255 On-link 192.168.56.1 276
192.168.56.255 255.255.255.255 On-link 192.168.56.1 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.56.1 276
224.0.0.0 240.0.0.0 On-link 192.168.0.9 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.56.1 276
255.255.255.255 255.255.255.255 On-link 192.168.0.9 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
31 276 fe80::/64 On-link
12 281 fe80::/64 On-link
12 281 fe80::7163:a483:46ce:11b0/128
On-link
31 276 fe80::d9e0:3e88:444d:61f3/128
On-link
1 306 ff00::/8 On-link
31 276 ff00::/8 On-link
12 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 10 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 10 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/03/2012 01:20:31 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/03/2012 01:20:10 AM) (Source: Application Error) (User: )
Description: Faulting application name: Explorer.EXE, version: 6.1.7601.17567, time stamp: 0x4d672ee4
Faulting module name: ntdll.dll, version: 6.1.7601.17725, time stamp: 0x4ec4aa8e
Exception code: 0xc0000374
Fault offset: 0x00000000000c40f2
Faulting process id: 0xfe4
Faulting application start time: 0xExplorer.EXE0
Faulting application path: Explorer.EXE1
Faulting module path: Explorer.EXE2
Report Id: Explorer.EXE3

Error: (10/02/2012 08:39:41 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/02/2012 08:39:36 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/02/2012 08:39:36 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/02/2012 08:39:28 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/02/2012 08:39:28 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/02/2012 08:39:21 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/02/2012 08:22:37 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/02/2012 01:46:38 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (10/02/2012 08:22:25 PM) (Source: Service Control Manager) (User: )
Description: The RHDISK_AMD64 service failed to start due to the following error:
%%3

Error: (10/02/2012 01:46:27 PM) (Source: Service Control Manager) (User: )
Description: The RHDISK_AMD64 service failed to start due to the following error:
%%3

Error: (10/01/2012 11:11:03 PM) (Source: Service Control Manager) (User: )
Description: The RHDISK_AMD64 service failed to start due to the following error:
%%3

Error: (10/01/2012 05:37:32 PM) (Source: Service Control Manager) (User: )
Description: The RHDISK_AMD64 service failed to start due to the following error:
%%3

Error: (10/01/2012 10:04:50 AM) (Source: Service Control Manager) (User: )
Description: The RHDISK_AMD64 service failed to start due to the following error:
%%3

Error: (09/30/2012 02:22:26 PM) (Source: Service Control Manager) (User: )
Description: The RHDISK_AMD64 service failed to start due to the following error:
%%3

Error: (09/29/2012 02:44:04 PM) (Source: Service Control Manager) (User: )
Description: The RHDISK_AMD64 service failed to start due to the following error:
%%3

Error: (09/28/2012 00:53:31 PM) (Source: Service Control Manager) (User: )
Description: The RHDISK_AMD64 service failed to start due to the following error:
%%3

Error: (09/27/2012 04:50:47 PM) (Source: Service Control Manager) (User: )
Description: The RHDISK_AMD64 service failed to start due to the following error:
%%3

Error: (09/26/2012 03:22:32 PM) (Source: Service Control Manager) (User: )
Description: The RHDISK_AMD64 service failed to start due to the following error:
%%3


Microsoft Office Sessions:
=========================
Error: (10/03/2012 01:20:31 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Ash\Desktop\esetsmartinstaller_enu.exe

Error: (10/03/2012 01:20:10 AM) (Source: Application Error)(User: )
Description: Explorer.EXE6.1.7601.175674d672ee4ntdll.dll6.1.7601.177254ec4aa8ec000037400000000000c40f2fe401cda0d3467a5ecdC:\Windows\Explorer.EXEC:\Windows\SYSTEM32\ntdll.dll16e5079f-0cf0-11e2-9763-85f7bfc13cb1

Error: (10/02/2012 08:39:41 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Ash\Desktop\esetsmartinstaller_enu.exe

Error: (10/02/2012 08:39:36 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Ash\Desktop\esetsmartinstaller_enu.exe

Error: (10/02/2012 08:39:36 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Ash\Desktop\esetsmartinstaller_enu.exe

Error: (10/02/2012 08:39:28 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Ash\Desktop\esetsmartinstaller_enu.exe

Error: (10/02/2012 08:39:28 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Ash\Desktop\esetsmartinstaller_enu.exe

Error: (10/02/2012 08:39:21 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Ash\Downloads\esetsmartinstaller_enu.exe

Error: (10/02/2012 08:22:37 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/02/2012 01:46:38 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


=========================== Installed Programs ============================

7-Zip 9.20
ABBYY FineReader 9.0 Sprint (Version: 9.01.513.58212)
AccelerometerP11 (Version: 2.00.11.22)
Adobe Acrobat X Pro - English, Français, Deutsch (Version: 10.1.4)
Adobe AIR (Version: 3.1.0.4880)
Adobe Content Viewer (Version: 1.4.0)
Adobe Creative Suite 5.5 Master Collection (Version: 5.5)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.278)
Adobe Flash Player 11 Plugin (Version: 11.4.402.265)
Adobe Reader X (10.1.4) MUI (Version: 10.1.4)
Advanced Audio FX Engine (Version: 1.12.05)
Akamai NetSession Interface
Amnesia: The Dark Descent Demo
Anark Client 1.0
Android SDK Tools (Version: 1.16)
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
µTorrent (Version: 3.1.3)
Audacity 1.2.6
Autodesk 3ds Max 2013 64-bit (Version: 15.0.0.347)
Autodesk Backburner 2013.0.0 (Version: 2013.0.0)
Autodesk DirectConnect 2013 64-bit (Version: 7.0.28.0)
Autodesk Essential Skills Movies for 3ds Max 2013 64-bit (Version: 1.0.0.1)
Autodesk FBX Plug-in 2013.1 - 3ds Max 2013 64-bit
Autodesk Inventor Server Engine for 3ds Max 2013 64-bit (Version: 15.0)
Autodesk Material Library 2013 (Version: 3.0.13)
Autodesk Material Library Base Resolution Image Library 2013 (Version: 3.0.13)
Autodesk Material Library Medium Resolution Image Library 2013 (Version: 3.0.13)
Autodesk Revit Interoperability for 3ds Max and 3ds Max Design 2013 64-bit (Version: 1.0.0.1)
AviSynth 2.5
Battlefield 3™ (Version: 1.0.0.0)
Battlefield 3™ (Version: 1.4.0.0)
Battlelog Web Plugins (Version: 1.122.0)
Bing Desktop (Version: 1.0.45.0)
Bonjour (Version: 3.0.0.10)
BootRacer (Version: 3.0.0)
Calibrize 2.0
Call of Duty: Modern Warfare 3
Call of Duty: Modern Warfare 3 - Dedicated Server
Call of Duty: Modern Warfare 3 - Multiplayer
CCleaner (Version: 3.13)
Citrix Presentation Server Web Client for Win32
Composite 2013 64-bit (Version: 8.0.0)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition
Dell DataSafe Local Backup (Version: 9.4.55)
Dell Digital Delivery (Version: 2.2.3000.0)
Dell Edoc Viewer (Version: 1.0.0)
Dell Webcam Central (Version: 2.00.44)
Dropbox (Version: 1.4.3)
Epson Easy Photo Print 2 (Version: 2.2.4.0)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (Version: 1.00.0000)
Epson Event Manager (Version: 2.40.0009)
EPSON Scan
EPSON SX130 Series Printer Uninstall
ESET Online Scanner v3
ESN Sonar (Version: 0.70.4)
F1 2012 Demo
FIFA 12 (Version: 1.4.0.0)
FIFA 13 Demo (Version: 1.0.0.0)
File Renamer - Basic (Version: 6.3)
FileZilla Client 3.5.3 (Version: 3.5.3)
Fraps (remove only)
Google Chrome (Version: 22.0.1229.79)
Google Drive (Version: 1.4.3365.1552)
Google Update Helper (Version: 1.3.21.123)
Grand Theft Auto IV (Version: 1.0.0013.131)
Grand Theft Auto IV (Version: 1.00.0000)
Grand Theft Auto: Episodes From Liberty City (Version: 1.1.0.0)
Intel PROSet Wireless
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Processor Graphics (Version: 8.15.10.2342)
Intel® PROSet/Wireless Software for Bluetooth® Technology (Version: 1.2.1.0608)
Intel® PROSet/Wireless WiFi Software (Version: 14.00.1000)
Intel® Turbo Boost Technology Monitor 2.0 (Version: 2.1.23.0)
Intel® Wireless Display
Intel® Wireless Display (Version: 2.0.27.0)
iTunes (Version: 10.6.3.25)
Java 7 Update 7 (64-bit) (Version: 7.0.70)
Java 7 Update 7 (Version: 7.0.70)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 24 (64-bit) (Version: 6.0.240)
Java™ 6 Update 31 (Version: 6.0.310)
JavaFX 2.1.1 (Version: 2.1.1)
Junk Mail filter update (Version: 15.4.3502.0922)
KeePass Password Safe 2.19
LAME v3.99.3 (for Windows)
Logitech Gaming Software (Version: 8.20.74)
Logitech Gaming Software 8.20 (Version: 8.20.74)
MagicDisc 2.7.106
Malwarebytes Anti-Malware version 1.65.0.1400 (Version: 1.65.0.1400)
MediaMonkey 4.0 (Version: 4.0)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320)
Microsoft .NET Framework 4 Extended (Version: 4.0.30320)
Microsoft .NET Framework 4 Multi-Targeting Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Flight
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Help Viewer 1.1 (Version: 1.1.40219)
Microsoft Office 2003 Web Components (Version: 12.0.6213.1000)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 32-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Security Client (Version: 4.1.0522.0)
Microsoft Security Essentials (Version: 4.1.522.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server 2008 R2 Management Objects (Version: 10.50.1750.9)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version: 3.5.8080.0)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (Version: 3.5.8080.0)
Microsoft SQL Server System CLR Types (Version: 10.50.1750.9)
Microsoft Sync Framework 2.0 Core Components (x64) ENU (Version: 2.0.1578.0)
Microsoft Sync Framework 2.0 Provider Services (x64) ENU (Version: 2.0.1578.0)
Microsoft Visual Basic 2010 Express - ENU (Version: 10.0.40219)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x64 Runtime - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU
Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU (Version: 8.0.52572)
Microsoft Visual Studio 2005 Tools for Applications - ENU
Microsoft Visual Studio 2005 Tools for Applications - ENU (Version: 8.0.50727.146)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (Version: 10.0.40219)
Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (Version: 10.0.40219)
Microsoft Visual Studio 2010 Service Pack 1 (Version: 10.0.40219)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.31119)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.31124)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86_x64 (Version: 1.00.0000)
Mozilla Firefox 15.0 (x86 en-GB) (Version: 15.0)
Mozilla Firefox 15.0.1 (x86 en-GB) (Version: 15.0.1)
Mozilla Maintenance Service (Version: 15.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
MyFreeCodec
Notepad++ (Version: 6.1.5)
NVIDIA 3D Vision Driver 306.23 (Version: 306.23)
NVIDIA Control Panel 306.23 (Version: 306.23)
NVIDIA Drivers (Version: 1.10)
NVIDIA Graphics Driver 306.23 (Version: 306.23)
NVIDIA HD Audio Driver 1.3.18.0 (Version: 1.3.18.0)
NVIDIA Install Application (Version: 2.1002.85.551)
NVIDIA Optimus 1.10.8 (Version: 1.10.8)
NVIDIA Performance (Version: 6.5)
NVIDIA PhysX (Version: 9.12.0604)
NVIDIA PhysX System Software 9.12.0604 (Version: 9.12.0604)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.0623)
NVIDIA System Monitor (Version: 6.5)
NVIDIA Update 1.10.8 (Version: 1.10.8)
NVIDIA Update Components (Version: 1.10.8)
Oblivion mod manager 1.1.12
Oracle VM VirtualBox 4.1.18 (Version: 4.1.18)
Origin (Version: 8.5.0.4550)
PDF Settings CS5 (Version: 10.0)
PeerBlock 1.0+ (r484) (Version: 1.0.0.484)
Project CARS (Version: 0296)
PunkBuster Services (Version: 0.991)
PxMergeModule (Version: 1.00.0000)
Quickset64 (Version: 11.0.10)
QuickTime (Version: 7.72.80.56)
Realtek High Definition Audio Driver (Version: 6.0.1.6312)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.1.27.0)
Revo Uninstaller Pro 2.5.8 (Version: 2.5.8)
Rockstar Games Social Club (Version: 1.00.0000)
Samsung Kies (Version: 2.3.2.12064_9)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.6.0)
Skype™ 5.10 (Version: 5.10.116)
SolidWorks 2012 x64 Edition SP02 (Version: 20.120.55)
SolidWorks 2012 x64 Edition SP02 (Version: 20.2.0.55)
SolidWorks eDrawings 2012 x64 Edition SP02 (Version: 12.2.110)
Speedcube Timer V1.0 (Version: 1.0.0.4)
Square Enix Secure Launcher (Version: 1.0.0.106)
Steam (Version: 1.0.0.0)
svBuilder (Version: 2.3.0)
Synaptics Pointing Device Driver (Version: 15.2.6.0)
System Requirements Lab
The Elder Scrolls IV: Oblivion
Trust GXT14 Mouse (Version: 1.2)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 64-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 64-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 64-Bit Edition
Update for Microsoft Office 2010 (KB2553272) 64-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 64-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2598289) 64-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 64-Bit Edition
Update for Microsoft OneNote 2010 (KB2589345) 64-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 64-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 64-Bit Edition
User's Guide EPSON SX130 Series
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (Version: 4.0.8080.0)
VLC media player 2.0.3 (Version: 2.0.3)
VobSub v2.23 (Remove Only)
WinDirStat 1.1.2
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
XviD MPEG4 Video Codec (remove only)

========================= Memory info: ===================================

Percentage of memory in use: 34%
Total physical RAM: 8086.17 MB
Available physical RAM: 5273.71 MB
Total Pagefile: 16170.53 MB
Available Pagefile: 13588 MB
Total Virtual: 4095.88 MB
Available Virtual: 3956.24 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:446.13 GB) (Free:193.87 GB) NTFS

========================= Users: ========================================

User accounts for \\ASHS-XPS

Administrator Ash Guest
UpdatusUser


**** End of log ****
"


Thanks again so much I really appreciate your time!
Ash

#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,040 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:45 AM

Posted 02 October 2012 - 07:57 PM

Ok, nothing jumped at me there other than resetting the Hosts file if we can.
b]Reset the HOSTS file[/b]
As this infection also changes your Windows HOSTS file, we want to replace this file with the default version for your operating system.
Some types of malware will alter the HOSTS file as part of its infection. Please follow the instructions provided in How do I reset the hosts file back to the default?

To reset the hosts file automatically,go HERE click the Posted Image button. Then just follow the prompts in the Fix it wizard.


OR
Click Run in the File Download dialog box or save MicrosoftFixit50267.msi to your Desktop and double-click on it to run. Then just follow the prompts in the Fix it wizard.



And run this rootkit scanner.
Please download aswMBR ( 511KB ) to your desktop.
  • Double click the aswMBR.exe icon to run it
  • Click the Scan button to start the scan
  • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 Pinecone21

Pinecone21
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:45 AM

Posted 03 October 2012 - 07:13 AM

Hi again,

I have cleared the host file using the Microsoft fix it you suggested. However this now means my Photoshop doesn't work as the adobe stuff was in the host file, is it ok to re-add the adobe stuff once I am sure my computer is clean of infection?

Also here is the aswMBR log:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-10-03 11:45:40
-----------------------------
11:45:40.824 OS Version: Windows x64 6.1.7601 Service Pack 1
11:45:40.824 Number of processors: 8 586 0x2A07
11:45:40.824 ComputerName: ASHS-XPS UserName: Ash
11:45:46.643 Initialize success
11:46:50.246 AVAST engine defs: 12100301
11:47:02.009 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
11:47:02.009 Disk 0 Vendor: ST950042 0001 Size: 476940MB BusType: 3
11:47:02.040 Disk 0 MBR read successfully
11:47:02.040 Disk 0 MBR scan
11:47:02.040 Disk 0 Windows VISTA default MBR code
11:47:02.040 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 101 MB offset 63
11:47:02.102 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 20000 MB offset 212992
11:47:02.149 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 456835 MB offset 41172992
11:47:02.180 Disk 0 scanning C:\Windows\system32\drivers
11:47:22.507 Service scanning
11:48:00.961 Modules scanning
11:48:00.977 Disk 0 trace - called modules:
11:48:00.992 ntoskrnl.exe CLASSPNP.SYS disk.sys stdcfltn.sys ACPI.sys iaStor.sys hal.dll
11:48:00.992 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8009618790]
11:48:00.992 3 CLASSPNP.SYS[fffff88000fcf43f] -> nt!IofCallDriver -> [0xfffffa800953acb0]
11:48:01.008 5 stdcfltn.sys[fffff8800164bc52] -> nt!IofCallDriver -> [0xfffffa8007b3c650]
11:48:01.008 7 ACPI.sys[fffff88000ef07a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8007b42050]
11:48:03.223 AVAST engine scan C:\Windows
11:48:29.384 AVAST engine scan C:\Windows\system32
11:53:06.041 AVAST engine scan C:\Windows\system32\drivers
11:53:35.213 AVAST engine scan C:\Users\Ash
12:53:02.625 AVAST engine scan C:\ProgramData
12:59:20.483 Scan finished successfully
13:10:40.243 Disk 0 MBR has been saved successfully to "C:\Users\Ash\Desktop\MBR.dat"
13:10:40.243 The log file has been saved successfully to "C:\Users\Ash\Desktop\ASWSCANLOG.txt"


Again I cant thank you enough for helping me out,
Ash

#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,040 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:45 AM

Posted 03 October 2012 - 08:12 PM

Yes re- ad those. I would also be sure ,if using one, that your router is passworded and configured securely.
If you need help with that then ask in Netwotking,provide your model.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 Pinecone21

Pinecone21
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:45 AM

Posted 04 October 2012 - 02:21 AM

OK great,

Does this mean my computer is clean now? Was there anything or was I just being paranoid?

I will definitely look into the router stuff.

Again thank you very much I appreciate all of the effort you have put in looking over my logs egc !
Ash

#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,040 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:45 AM

Posted 04 October 2012 - 10:19 AM

I see no infections.. If your router is not encrypted and wireless,someone could piggy back off it.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 Pinecone21

Pinecone21
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:45 AM

Posted 04 October 2012 - 10:58 AM

OK I think its its WPA psk 2 or something and then password is lowercase uppercase and numbers.

I'm just glad my PC is clean as I was worried about doing anything on it!

Thanks again,
Ash

#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,040 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:45 AM

Posted 04 October 2012 - 03:39 PM

OK Ash,good luck and thanks for visiting!
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#14 Pinecone21

Pinecone21
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:45 AM

Posted 04 October 2012 - 03:40 PM

OK Ash,good luck and thanks for visiting!


Thanks very much, and thanks for having me! :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users