Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Security Worry. Infected or something else?


  • Please log in to reply
26 replies to this topic

#1 Jenxjen

Jenxjen

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:03:24 PM

Posted 09 November 2012 - 01:11 PM

Hello
Suddenly out of the blue, the programs that are open freeze completely, i.e.If I was on the internet the browser freezes with the hourclass circle thingy going round and round. But the mouse does move and is a pointer anywhere else. Clicking on any other tab in the taskbar like Word or Outlook that are minimized doesn't do anything.
I can run through all the menus, Start>All Programs and all the menus and submenus. I can rightclick Start and open properties, but I can't run anything. No desktop shortcuts open, no task bar icons open, can't get Task Manager to open, not even doing Ctrl+Alt+Del. In other words no commands run.
Once it happened with nothing opened at all. I wait for ages but have to resort to a powerdown. (sorry don't know what it's called, when you keep power button pressed until computer switches off)

After the first time this happened, I ran Malawarebytes Pro which found nothing. McAfee didn't find anything. I uninstalled it and installed Bitdefender, ran that and it found 8 suspicious items which I deleted, then I ran CClean. But it's happened 4 times since.
Frequency so far is 4 days after the first time, then 2 days after that and again 2 days after that (today). I've run Bitdefender, MBAM (in safemode) and ESET but found nothing.
I've never come accross this before. Please help.

Thanks
Jen

BC AdBot (Login to Remove)

 


#2 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:08:24 PM

Posted 14 November 2012 - 05:01 PM

Hello,

I will be helping you with your problems. Please be patient while I assist you.

Some points for you to keep in mind while I am helping you to make things go easier and faster for both of us

  • Please do NOT run, install or uninstall any programs, unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.

NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.

----------------------------------------------

Please do the following:

:step1:

Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!
  • Double-click on TDSSKiller.exe on your desktop to run the tool for known TDSS variants.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • If TDSSKiller does not run, try renaming it.
  • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  • Click on change parameters
  • Under Objects to scan, check the box next to Loaded modules
  • If you are asked to reboot, then click Yes.

Next

  • Check the boxes next to Loaded modules, Verify file digital signatures, Detect TDLFS file system, then click OK.
  • Click the Start Scan button.
  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not an option, Skip instead, do NOT choose Delete or Quarantine unless instructed.
  • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the full contents of that file in your next reply. - If the log is too long, then split it into multiple posts.


:step2:

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the full contents of that document.


:step3:

Please download Farbar Service Scanner and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press Scan.
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the full contents of the log in your next reply.


:step4:

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices (Only Problems)
  • List Users, Partitions and Memory size.
  • List Minidump Files
  • List Restore points
NOTE: When using "Reset FF Proxy Settings" option Firefox should be closed.

Click Go and post the full contents of the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#3 Jenxjen

Jenxjen
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:03:24 PM

Posted 16 November 2012 - 11:40 AM

Thank you
1/
14:42:40.0621 6888 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
14:42:40.0808 6888 ============================================================
14:42:40.0824 6888 Current date / time: 2012/11/16 14:42:40.0808
14:42:40.0824 6888 SystemInfo:
14:42:40.0824 6888
14:42:40.0824 6888 OS Version: 6.1.7601 ServicePack: 1.0
14:42:40.0824 6888 Product type: Workstation
14:42:40.0824 6888 ComputerName: JEN-PC
14:42:40.0824 6888 UserName: Jen
14:42:40.0824 6888 Windows directory: C:\Windows
14:42:40.0824 6888 System windows directory: C:\Windows
14:42:40.0824 6888 Running under WOW64
14:42:40.0824 6888 Processor architecture: Intel x64
14:42:40.0824 6888 Number of processors: 4
14:42:40.0824 6888 Page size: 0x1000
14:42:40.0824 6888 Boot type: Normal boot
14:42:40.0824 6888 ============================================================
14:42:42.0665 6888 BG loaded
14:42:43.0632 6888 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:42:43.0647 6888 ============================================================
14:42:43.0647 6888 \Device\Harddisk0\DR0:
14:42:43.0647 6888 MBR partitions:
14:42:43.0647 6888 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1964800, BlocksNum 0x32000
14:42:43.0647 6888 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1996800, BlocksNum 0x389EF030
14:42:43.0647 6888 ============================================================
14:42:43.0710 6888 C: <-> \Device\Harddisk0\DR0\Partition2
14:42:43.0710 6888 ============================================================
14:42:43.0710 6888 Initialize success
14:42:43.0710 6888 ============================================================
14:45:02.0991 4428 ============================================================
14:45:02.0992 4428 Scan started
14:45:02.0992 4428 Mode: Manual; SigCheck; TDLFS;
14:45:02.0992 4428 ============================================================
14:45:08.0022 4428 ================ Scan system memory ========================
14:45:08.0022 4428 System memory - ok
14:45:08.0025 4428 ================ Scan services =============================
14:45:08.0606 4428 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
14:45:23.0982 4428 1394ohci - ok
14:45:24.0704 4428 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
14:45:28.0641 4428 ACPI - ok
14:45:28.0684 4428 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
14:45:29.0476 4428 AcpiPmi - ok
14:45:29.0584 4428 [ D44BCAF639E4E45307C2BC80715273D5 ] adfs C:\Windows\system32\drivers\adfs.sys
14:45:31.0626 4428 adfs - ok
14:45:31.0983 4428 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
14:45:33.0383 4428 AdobeFlashPlayerUpdateSvc - ok
14:45:33.0689 4428 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
14:45:35.0602 4428 adp94xx - ok
14:45:35.0666 4428 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
14:45:36.0407 4428 adpahci - ok
14:45:36.0457 4428 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
14:45:36.0739 4428 adpu320 - ok
14:45:36.0812 4428 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
14:45:36.0923 4428 AeLookupSvc - ok
14:45:37.0022 4428 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
14:45:37.0143 4428 AFD - ok
14:45:37.0233 4428 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
14:45:38.0134 4428 agp440 - ok
14:45:38.0210 4428 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
14:45:38.0290 4428 ALG - ok
14:45:38.0374 4428 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
14:45:38.0427 4428 aliide - ok
14:45:38.0533 4428 [ 3D90CF67DB75823A8480E56BBCD2E028 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
14:45:38.0620 4428 AMD External Events Utility - ok
14:45:38.0680 4428 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
14:45:38.0713 4428 amdide - ok
14:45:38.0746 4428 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
14:45:38.0792 4428 AmdK8 - ok
14:45:39.0416 4428 [ 52679612D742BF74CA1BA6AB86DDF431 ] amdkmdag C:\Windows\system32\DRIVERS\atipmdag.sys
14:45:39.0697 4428 amdkmdag - ok
14:45:39.0760 4428 [ 414E0788920A8C856032BE2CBF29F984 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
14:45:39.0838 4428 amdkmdap - ok
14:45:40.0040 4428 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
14:45:40.0555 4428 AmdPPM - ok
14:45:40.0633 4428 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
14:45:40.0664 4428 amdsata - ok
14:45:40.0696 4428 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
14:45:40.0727 4428 amdsbs - ok
14:45:40.0758 4428 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
14:45:40.0774 4428 amdxata - ok
14:45:40.0914 4428 [ 391887990CDAA83DE5C56C3FDE966DA1 ] AmUStor C:\Windows\system32\drivers\AmUStor.SYS
14:45:40.0976 4428 AmUStor - ok
14:45:41.0023 4428 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
14:45:41.0132 4428 AppID - ok
14:45:41.0179 4428 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
14:45:41.0288 4428 AppIDSvc - ok
14:45:41.0335 4428 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
14:45:41.0444 4428 Appinfo - ok
14:45:41.0507 4428 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
14:45:41.0522 4428 arc - ok
14:45:41.0569 4428 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
14:45:41.0585 4428 arcsas - ok
14:45:41.0741 4428 [ B3FC1E4760175CC9D0DEFF38AEF96E99 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
14:45:41.0866 4428 aspnet_state - ok
14:45:41.0912 4428 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
14:45:42.0084 4428 AsyncMac - ok
14:45:42.0146 4428 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
14:45:42.0178 4428 atapi - ok
14:45:42.0318 4428 [ 70260C7C98CC0101316F5B2650C3BB44 ] athr C:\Windows\system32\DRIVERS\athrx.sys
14:45:42.0458 4428 athr - ok
14:45:42.0568 4428 [ FB7602C5C508BE281368AAE0B61B51C6 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
14:45:42.0583 4428 AtiHdmiService - ok
14:45:42.0677 4428 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
14:45:42.0833 4428 AudioEndpointBuilder - ok
14:45:42.0864 4428 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
14:45:42.0926 4428 AudioSrv - ok
14:45:42.0973 4428 [ E7433C0C2505D8DEE6CA2A446C355595 ] avc3 C:\Windows\system32\DRIVERS\avc3.sys
14:45:43.0020 4428 avc3 - ok
14:45:43.0051 4428 [ 3CA0BD46B2FC65393A9B1DCAF6E2F7E7 ] avckf C:\Windows\system32\DRIVERS\avckf.sys
14:45:43.0098 4428 avckf - ok
14:45:43.0176 4428 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
14:45:43.0254 4428 AxInstSV - ok
14:45:43.0348 4428 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
14:45:43.0426 4428 b06bdrv - ok
14:45:43.0488 4428 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
14:45:43.0550 4428 b57nd60a - ok
14:45:43.0660 4428 [ 9E84A931DBEE0292E38ED672F6293A99 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
14:45:43.0816 4428 BCM43XX - ok
14:45:44.0159 4428 [ EA2694B3897D43DF601392F35ED0B9A1 ] BdDesktopParental C:\Program Files\Bitdefender\Bitdefender 2013\bdparentalservice.exe
14:45:44.0206 4428 BdDesktopParental - ok
14:45:44.0268 4428 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
14:45:44.0299 4428 BDESVC - ok
14:45:44.0440 4428 [ 9920B815BC3B3F2D69071842DD18D422 ] BdfNdisf c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys
14:45:44.0471 4428 BdfNdisf - ok
14:45:44.0564 4428 [ 4CE4B0098FC315C237FA8867F07886C4 ] bdfwfpf C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys
14:45:44.0596 4428 bdfwfpf - ok
14:45:44.0642 4428 [ F4683F14A40B05438A8B6E3B4EE765AC ] BDSandBox C:\Windows\system32\drivers\bdsandbox.sys
14:45:44.0658 4428 BDSandBox - ok
14:45:44.0689 4428 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
14:45:44.0798 4428 Beep - ok
14:45:44.0892 4428 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
14:45:45.0001 4428 BFE - ok
14:45:45.0110 4428 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
14:45:45.0282 4428 BITS - ok
14:45:45.0329 4428 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
14:45:45.0344 4428 blbdrive - ok
14:45:45.0407 4428 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
14:45:45.0438 4428 bowser - ok
14:45:45.0469 4428 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:45:45.0547 4428 BrFiltLo - ok
14:45:45.0578 4428 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:45:45.0610 4428 BrFiltUp - ok
14:45:45.0672 4428 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
14:45:45.0703 4428 Browser - ok
14:45:45.0766 4428 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
14:45:45.0859 4428 Brserid - ok
14:45:45.0906 4428 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
14:45:46.0015 4428 BrSerWdm - ok
14:45:46.0078 4428 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
14:45:46.0218 4428 BrUsbMdm - ok
14:45:46.0249 4428 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
14:45:46.0312 4428 BrUsbSer - ok
14:45:46.0358 4428 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
14:45:46.0436 4428 BTHMODEM - ok
14:45:46.0499 4428 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
14:45:46.0592 4428 bthserv - ok
14:45:46.0639 4428 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
14:45:46.0717 4428 cdfs - ok
14:45:46.0826 4428 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
14:45:46.0889 4428 cdrom - ok
14:45:46.0982 4428 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
14:45:47.0092 4428 CertPropSvc - ok
14:45:47.0138 4428 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
14:45:47.0216 4428 circlass - ok
14:45:47.0263 4428 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
14:45:47.0294 4428 CLFS - ok
14:45:47.0404 4428 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:45:47.0450 4428 clr_optimization_v2.0.50727_32 - ok
14:45:47.0513 4428 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:45:47.0544 4428 clr_optimization_v2.0.50727_64 - ok
14:45:47.0669 4428 [ 1EBE1854D94B704D1C0EEFAEF4711151 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:45:47.0840 4428 clr_optimization_v4.0.30319_32 - ok
14:45:47.0887 4428 [ F44A20931FDD77EBFC36B263FD795959 ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:45:48.0152 4428 clr_optimization_v4.0.30319_64 - ok
14:45:48.0246 4428 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
14:45:48.0308 4428 CmBatt - ok
14:45:48.0371 4428 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
14:45:48.0402 4428 cmdide - ok
14:45:48.0480 4428 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
14:45:48.0527 4428 CNG - ok
14:45:48.0542 4428 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
14:45:48.0558 4428 Compbatt - ok
14:45:48.0574 4428 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
14:45:48.0652 4428 CompositeBus - ok
14:45:48.0683 4428 COMSysApp - ok
14:45:48.0698 4428 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
14:45:48.0714 4428 crcdisk - ok
14:45:48.0808 4428 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
14:45:48.0886 4428 CryptSvc - ok
14:45:48.0964 4428 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
14:45:49.0073 4428 DcomLaunch - ok
14:45:49.0120 4428 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
14:45:49.0213 4428 defragsvc - ok
14:45:49.0260 4428 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
14:45:49.0354 4428 DfsC - ok
14:45:49.0447 4428 [ 388039F99CE8769024EE0438352ACA99 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
14:45:49.0510 4428 dg_ssudbus - ok
14:45:49.0588 4428 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
14:45:49.0650 4428 Dhcp - ok
14:45:49.0681 4428 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
14:45:49.0806 4428 discache - ok
14:45:49.0837 4428 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
14:45:49.0868 4428 Disk - ok
14:45:50.0009 4428 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
14:45:50.0102 4428 Dnscache - ok
14:45:50.0212 4428 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
14:45:50.0321 4428 dot3svc - ok
14:45:50.0383 4428 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
14:45:50.0477 4428 DPS - ok
14:45:50.0570 4428 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
14:45:50.0617 4428 drmkaud - ok
14:45:50.0758 4428 [ 55F6F3E0DF82E0113082852347BF2C16 ] DsiWMIService C:\Program Files (x86)\Launch Manager\dsiwmis.exe
14:45:50.0804 4428 DsiWMIService - ok
14:45:50.0882 4428 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
14:45:50.0960 4428 DXGKrnl - ok
14:45:51.0038 4428 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
14:45:51.0132 4428 EapHost - ok
14:45:51.0257 4428 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
14:45:51.0491 4428 ebdrv - ok
14:45:51.0538 4428 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
14:45:51.0600 4428 EFS - ok
14:45:51.0725 4428 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
14:45:51.0834 4428 ehRecvr - ok
14:45:51.0865 4428 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
14:45:51.0896 4428 ehSched - ok
14:45:52.0130 4428 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
14:45:52.0193 4428 elxstor - ok
14:45:52.0333 4428 [ 49EEF52BFB986A2B5D70F4EC12637D7B ] ePowerSvc C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
14:45:52.0364 4428 ePowerSvc - ok
14:45:52.0411 4428 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
14:45:52.0474 4428 ErrDev - ok
14:45:52.0583 4428 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
14:45:52.0661 4428 EventSystem - ok
14:45:52.0708 4428 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
14:45:52.0786 4428 exfat - ok
14:45:52.0942 4428 Fabs - ok
14:45:52.0988 4428 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
14:45:53.0082 4428 fastfat - ok
14:45:53.0176 4428 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
14:45:53.0254 4428 Fax - ok
14:45:53.0300 4428 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
14:45:53.0363 4428 fdc - ok
14:45:53.0410 4428 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
14:45:53.0472 4428 fdPHost - ok
14:45:53.0472 4428 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
14:45:53.0566 4428 FDResPub - ok
14:45:53.0581 4428 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
14:45:53.0612 4428 FileInfo - ok
14:45:53.0659 4428 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
14:45:53.0784 4428 Filetrace - ok
14:45:54.0112 4428 [ FFF1130F7C9FA01D093A1EDFC5CCE8FC ] FirebirdServerMAGIXInstance C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
14:45:54.0564 4428 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - warning
14:45:54.0564 4428 FirebirdServerMAGIXInstance - detected UnsignedFile.Multi.Generic (1)
14:45:54.0720 4428 [ 1F63900E2EB00101B9ACA2B7A870704E ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
14:45:54.0814 4428 FLEXnet Licensing Service - ok
14:45:54.0923 4428 [ 1C3FB052A0BB72EDAED90785C34D6EED ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
14:45:55.0001 4428 FLEXnet Licensing Service 64 - ok
14:45:55.0063 4428 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
14:45:55.0094 4428 flpydisk - ok
14:45:55.0126 4428 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
14:45:55.0157 4428 FltMgr - ok
14:45:55.0250 4428 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
14:45:55.0328 4428 FontCache - ok
14:45:55.0422 4428 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:45:55.0453 4428 FontCache3.0.0.0 - ok
14:45:55.0516 4428 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
14:45:55.0547 4428 FsDepends - ok
14:45:55.0562 4428 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
14:45:55.0594 4428 Fs_Rec - ok
14:45:55.0609 4428 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
14:45:55.0640 4428 fvevol - ok
14:45:55.0656 4428 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
14:45:55.0687 4428 gagp30kx - ok
14:45:55.0812 4428 [ 8F6AE606EB0CC884EE12C41948424422 ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\615\g2aservice.exe
14:45:55.0859 4428 GoToAssist - ok
14:45:56.0218 4428 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
14:45:56.0561 4428 gpsvc - ok
14:45:56.0717 4428 [ 816FD5A6F3C2F3D600900096632FC60E ] Greg_Service C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
14:45:56.0842 4428 Greg_Service - ok
14:45:56.0998 4428 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:45:57.0044 4428 gupdate - ok
14:45:57.0122 4428 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:45:57.0154 4428 gupdatem - ok
14:45:57.0232 4428 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
14:45:57.0325 4428 gusvc - ok
14:45:57.0356 4428 [ BF2763FEA9704B1D9AA2C7719423251A ] gzflt C:\Windows\system32\DRIVERS\gzflt.sys
14:45:57.0388 4428 gzflt - ok
14:45:57.0450 4428 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
14:45:57.0512 4428 hcw85cir - ok
14:45:57.0575 4428 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
14:45:57.0653 4428 HdAudAddService - ok
14:45:57.0700 4428 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
14:45:57.0762 4428 HDAudBus - ok
14:45:57.0824 4428 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
14:45:57.0856 4428 HECIx64 - ok
14:45:57.0902 4428 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
14:45:57.0934 4428 HidBatt - ok
14:45:57.0965 4428 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
14:45:57.0996 4428 HidBth - ok
14:45:58.0012 4428 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
14:45:58.0058 4428 HidIr - ok
14:45:58.0105 4428 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
14:45:58.0168 4428 hidserv - ok
14:45:58.0230 4428 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
14:45:58.0261 4428 HidUsb - ok
14:45:58.0324 4428 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
14:45:58.0417 4428 hkmsvc - ok
14:45:58.0464 4428 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
14:45:58.0526 4428 HomeGroupListener - ok
14:45:58.0573 4428 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
14:45:58.0651 4428 HomeGroupProvider - ok
14:45:58.0745 4428 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
14:45:58.0776 4428 HpSAMD - ok
14:45:58.0823 4428 [ F47CEC45FB85791D4AB237563AD0FA8F ] HTCAND64 C:\Windows\system32\Drivers\ANDROIDUSB.sys
14:45:58.0885 4428 HTCAND64 - ok
14:45:58.0948 4428 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
14:45:59.0072 4428 HTTP - ok
14:45:59.0150 4428 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
14:45:59.0182 4428 hwpolicy - ok
14:45:59.0260 4428 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
14:45:59.0291 4428 i8042prt - ok
14:45:59.0322 4428 [ 42E00996DFC13C46366689C0EA8ABC5E ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
14:45:59.0338 4428 iaStor - ok
14:45:59.0447 4428 [ 48362E5DB5CB2C000C514EE1F3890ACD ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
14:45:59.0478 4428 IAStorDataMgrSvc - ok
14:45:59.0509 4428 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
14:45:59.0540 4428 iaStorV - ok
14:45:59.0665 4428 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:45:59.0743 4428 idsvc - ok
14:45:59.0930 4428 [ A87261EF1546325B559374F5689CF5BC ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
14:46:00.0165 4428 igfx - ok
14:46:00.0211 4428 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
14:46:00.0227 4428 iirsp - ok
14:46:00.0305 4428 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
14:46:00.0430 4428 IKEEXT - ok
14:46:00.0570 4428 [ 53019327813FF5AB2964B33B2C61307C ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
14:46:00.0711 4428 IntcAzAudAddService - ok
14:46:00.0742 4428 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
14:46:00.0757 4428 intelide - ok
14:46:00.0773 4428 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
14:46:00.0835 4428 intelppm - ok
14:46:00.0913 4428 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
14:46:01.0023 4428 IPBusEnum - ok
14:46:01.0101 4428 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:46:01.0179 4428 IpFilterDriver - ok
14:46:01.0272 4428 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
14:46:01.0335 4428 iphlpsvc - ok
14:46:01.0366 4428 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
14:46:01.0444 4428 IPMIDRV - ok
14:46:01.0537 4428 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
14:46:01.0631 4428 IPNAT - ok
14:46:01.0678 4428 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
14:46:01.0756 4428 IRENUM - ok
14:46:01.0787 4428 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
14:46:01.0803 4428 isapnp - ok
14:46:01.0865 4428 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
14:46:01.0912 4428 iScsiPrt - ok
14:46:01.0990 4428 [ 9D7EA8C7215D8D4AE7BE110EEE61085D ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys
14:46:02.0021 4428 k57nd60a - ok
14:46:02.0052 4428 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
14:46:02.0068 4428 kbdclass - ok
14:46:02.0083 4428 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
14:46:02.0146 4428 kbdhid - ok
14:46:02.0177 4428 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
14:46:02.0193 4428 KeyIso - ok
14:46:02.0224 4428 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
14:46:02.0239 4428 KSecDD - ok
14:46:02.0271 4428 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
14:46:02.0286 4428 KSecPkg - ok
14:46:02.0349 4428 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
14:46:02.0442 4428 ksthunk - ok
14:46:02.0536 4428 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
14:46:02.0629 4428 KtmRm - ok
14:46:02.0692 4428 [ 2AC603C3188C704CFCE353659AA7AD71 ] L1E C:\Windows\system32\DRIVERS\L1E62x64.sys
14:46:02.0723 4428 L1E - ok
14:46:02.0801 4428 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
14:46:02.0895 4428 LanmanServer - ok
14:46:02.0957 4428 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:46:03.0066 4428 LanmanWorkstation - ok
14:46:03.0175 4428 [ 93B73DED2BC688F140C6AE2FBAD45789 ] Live Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
14:46:03.0222 4428 Live Updater Service - ok
14:46:03.0253 4428 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
14:46:03.0363 4428 lltdio - ok
14:46:03.0441 4428 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
14:46:03.0534 4428 lltdsvc - ok
14:46:03.0581 4428 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
14:46:03.0675 4428 lmhosts - ok
14:46:03.0784 4428 [ 23DE5B62B0445A6F874BE633C95B483E ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
14:46:03.0831 4428 LMS - ok
14:46:03.0877 4428 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
14:46:03.0893 4428 LSI_FC - ok
14:46:03.0955 4428 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
14:46:04.0002 4428 LSI_SAS - ok
14:46:04.0002 4428 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:46:04.0033 4428 LSI_SAS2 - ok
14:46:04.0049 4428 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:46:04.0065 4428 LSI_SCSI - ok
14:46:04.0096 4428 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
14:46:04.0205 4428 luafv - ok
14:46:04.0267 4428 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
14:46:04.0283 4428 MBAMProtector - ok
14:46:04.0345 4428 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
14:46:04.0377 4428 MBAMScheduler - ok
14:46:04.0408 4428 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
14:46:04.0455 4428 MBAMService - ok
14:46:04.0517 4428 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
14:46:04.0595 4428 Mcx2Svc - ok
14:46:04.0720 4428 [ E416E967E3FB6FB1E9AE12B9C7DAB526 ] MDM C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\mdm.exe
14:46:04.0735 4428 MDM ( UnsignedFile.Multi.Generic ) - warning
14:46:04.0735 4428 MDM - detected UnsignedFile.Multi.Generic (1)
14:46:04.0767 4428 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
14:46:04.0813 4428 megasas - ok
14:46:04.0860 4428 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
14:46:04.0907 4428 MegaSR - ok
14:46:05.0079 4428 Microsoft SharePoint Workspace Audit Service - ok
14:46:05.0125 4428 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
14:46:05.0203 4428 MMCSS - ok
14:46:05.0250 4428 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
14:46:05.0344 4428 Modem - ok
14:46:05.0422 4428 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
14:46:05.0484 4428 monitor - ok
14:46:05.0531 4428 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
14:46:05.0547 4428 mouclass - ok
14:46:05.0578 4428 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
14:46:05.0640 4428 mouhid - ok
14:46:05.0671 4428 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
14:46:05.0687 4428 mountmgr - ok
14:46:05.0749 4428 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
14:46:05.0781 4428 mpio - ok
14:46:05.0796 4428 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
14:46:05.0843 4428 mpsdrv - ok
14:46:05.0937 4428 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
14:46:06.0046 4428 MpsSvc - ok
14:46:06.0093 4428 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
14:46:06.0171 4428 MRxDAV - ok
14:46:06.0233 4428 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
14:46:06.0295 4428 mrxsmb - ok
14:46:06.0342 4428 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:46:06.0420 4428 mrxsmb10 - ok
14:46:06.0451 4428 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:46:06.0483 4428 mrxsmb20 - ok
14:46:06.0514 4428 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
14:46:06.0529 4428 msahci - ok
14:46:06.0545 4428 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
14:46:06.0576 4428 msdsm - ok
14:46:06.0639 4428 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
14:46:06.0701 4428 MSDTC - ok
14:46:06.0795 4428 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
14:46:06.0873 4428 Msfs - ok
14:46:06.0888 4428 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
14:46:06.0935 4428 mshidkmdf - ok
14:46:06.0951 4428 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
14:46:06.0966 4428 msisadrv - ok
14:46:07.0029 4428 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
14:46:07.0138 4428 MSiSCSI - ok
14:46:07.0138 4428 msiserver - ok
14:46:07.0185 4428 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
14:46:07.0278 4428 MSKSSRV - ok
14:46:07.0341 4428 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
14:46:07.0419 4428 MSPCLOCK - ok
14:46:07.0465 4428 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
14:46:07.0559 4428 MSPQM - ok
14:46:07.0606 4428 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
14:46:07.0637 4428 MsRPC - ok
14:46:07.0668 4428 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
14:46:07.0684 4428 mssmbios - ok
14:46:07.0699 4428 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
14:46:07.0762 4428 MSTEE - ok
14:46:07.0777 4428 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
14:46:07.0793 4428 MTConfig - ok
14:46:07.0871 4428 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
14:46:07.0902 4428 Mup - ok
14:46:07.0918 4428 [ 6FFECC25B39DC7652A0CEC0ADA9DB589 ] mwlPSDFilter C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
14:46:07.0933 4428 mwlPSDFilter - ok
14:46:07.0949 4428 [ 0BEFE32CA56D6EE89D58175725596A85 ] mwlPSDNServ C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
14:46:07.0965 4428 mwlPSDNServ - ok
14:46:07.0980 4428 [ D43BC633B8660463E446E28E14A51262 ] mwlPSDVDisk C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
14:46:07.0996 4428 mwlPSDVDisk - ok
14:46:08.0089 4428 [ 22A4905C958BEB68D78385B633C1351B ] MWLService C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe
14:46:08.0167 4428 MWLService - ok
14:46:08.0245 4428 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
14:46:08.0355 4428 napagent - ok
14:46:08.0448 4428 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
14:46:08.0511 4428 NativeWifiP - ok
14:46:08.0604 4428 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
14:46:08.0667 4428 NDIS - ok
14:46:08.0745 4428 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
14:46:08.0854 4428 NdisCap - ok
14:46:08.0869 4428 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
14:46:08.0916 4428 NdisTapi - ok
14:46:08.0947 4428 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
14:46:08.0994 4428 Ndisuio - ok
14:46:09.0010 4428 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
14:46:09.0088 4428 NdisWan - ok
14:46:09.0119 4428 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
14:46:09.0228 4428 NDProxy - ok
14:46:09.0337 4428 [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
14:46:09.0369 4428 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
14:46:09.0369 4428 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
14:46:09.0415 4428 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
14:46:09.0525 4428 NetBIOS - ok
14:46:09.0571 4428 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
14:46:09.0665 4428 NetBT - ok
14:46:09.0696 4428 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
14:46:09.0712 4428 Netlogon - ok
14:46:09.0837 4428 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
14:46:09.0930 4428 Netman - ok
14:46:10.0086 4428 [ F50C405C5FCE480D39C882205EBA26A8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:46:10.0195 4428 NetMsmqActivator - ok
14:46:10.0195 4428 [ F50C405C5FCE480D39C882205EBA26A8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:46:10.0227 4428 NetPipeActivator - ok
14:46:10.0305 4428 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
14:46:10.0414 4428 netprofm - ok
14:46:10.0429 4428 [ F50C405C5FCE480D39C882205EBA26A8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:46:10.0445 4428 NetTcpActivator - ok
14:46:10.0445 4428 [ F50C405C5FCE480D39C882205EBA26A8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:46:10.0476 4428 NetTcpPortSharing - ok
14:46:10.0554 4428 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
14:46:10.0585 4428 nfrd960 - ok
14:46:10.0632 4428 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
14:46:10.0695 4428 NlaSvc - ok
14:46:10.0773 4428 [ 5FE6F8C05F0769BBB74AFAC11453B182 ] nmwcd C:\Windows\system32\drivers\ccdcmbx64.sys
14:46:10.0866 4428 nmwcd - ok
14:46:10.0944 4428 [ 73C929945C0850B8D1FE2FEA05FDF05D ] nmwcdc C:\Windows\system32\drivers\ccdcmbox64.sys
14:46:11.0007 4428 nmwcdc - ok
14:46:11.0038 4428 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
14:46:11.0100 4428 Npfs - ok
14:46:11.0163 4428 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
14:46:11.0256 4428 nsi - ok
14:46:11.0303 4428 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
14:46:11.0381 4428 nsiproxy - ok
14:46:11.0459 4428 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
14:46:11.0615 4428 Ntfs - ok
14:46:11.0709 4428 [ 5B3CE960C62DBE864BE9A0BD043A3E30 ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
14:46:11.0771 4428 NTI IScheduleSvc ( UnsignedFile.Multi.Generic ) - warning
14:46:11.0771 4428 NTI IScheduleSvc - detected UnsignedFile.Multi.Generic (1)
14:46:11.0865 4428 [ 15221DD637D9D0FFC60848EBBF1DF538 ] NTIBackupSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
14:46:11.0911 4428 NTIBackupSvc - ok
14:46:11.0989 4428 [ 64DDD0DEE976302F4BD93E5EFCC2F013 ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
14:46:12.0005 4428 NTIDrvr - ok
14:46:12.0083 4428 [ B5071E15D4C3F5EF5018AFF7E85A85E5 ] NTISchedulerSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
14:46:12.0208 4428 NTISchedulerSvc - ok
14:46:12.0223 4428 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
14:46:12.0301 4428 Null - ok
14:46:12.0348 4428 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
14:46:12.0364 4428 nvraid - ok
14:46:12.0379 4428 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
14:46:12.0411 4428 nvstor - ok
14:46:12.0442 4428 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
14:46:12.0473 4428 nv_agp - ok
14:46:12.0489 4428 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
14:46:12.0551 4428 ohci1394 - ok
14:46:12.0660 4428 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:46:12.0723 4428 ose - ok
14:46:12.0988 4428 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
14:46:13.0300 4428 osppsvc - ok
14:46:13.0362 4428 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
14:46:13.0425 4428 p2pimsvc - ok
14:46:13.0471 4428 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
14:46:13.0518 4428 p2psvc - ok
14:46:13.0565 4428 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
14:46:13.0627 4428 Parport - ok
14:46:13.0674 4428 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
14:46:13.0705 4428 partmgr - ok
14:46:13.0783 4428 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
14:46:13.0861 4428 PcaSvc - ok
14:46:13.0939 4428 [ BC0018C2D29F655188A0ED3FA94FDB24 ] pccsmcfd C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
14:46:13.0955 4428 pccsmcfd - ok
14:46:13.0986 4428 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
14:46:14.0002 4428 pci - ok
14:46:14.0064 4428 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
14:46:14.0095 4428 pciide - ok
14:46:14.0095 4428 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
14:46:14.0127 4428 pcmcia - ok
14:46:14.0142 4428 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
14:46:14.0173 4428 pcw - ok
14:46:14.0189 4428 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
14:46:14.0267 4428 PEAUTH - ok
14:46:14.0423 4428 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
14:46:14.0501 4428 PerfHost - ok
14:46:14.0719 4428 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
14:46:14.0875 4428 pla - ok
14:46:14.0922 4428 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
14:46:14.0985 4428 PlugPlay - ok
14:46:15.0094 4428 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
14:46:15.0125 4428 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
14:46:15.0125 4428 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
14:46:15.0172 4428 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
14:46:15.0203 4428 PNRPAutoReg - ok
14:46:15.0265 4428 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
14:46:15.0297 4428 PNRPsvc - ok
14:46:15.0375 4428 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
14:46:15.0453 4428 PolicyAgent - ok
14:46:15.0515 4428 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
14:46:15.0624 4428 Power - ok
14:46:15.0780 4428 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
14:46:15.0905 4428 PptpMiniport - ok
14:46:15.0952 4428 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
14:46:16.0030 4428 Processor - ok
14:46:16.0092 4428 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
14:46:16.0155 4428 ProfSvc - ok
14:46:16.0201 4428 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
14:46:16.0233 4428 ProtectedStorage - ok
14:46:16.0420 4428 [ F115AF58ABE5605D7D709CBFBD83F418 ] ProtexisLicensing C:\Windows\SysWOW64\PSIService.exe
14:46:16.0451 4428 ProtexisLicensing - ok
14:46:16.0685 4428 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
14:46:16.0779 4428 Psched - ok
14:46:16.0981 4428 [ 543A4EF0923BF70D126625B034EF25AF ] PSI_SVC_2 c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
14:46:17.0028 4428 PSI_SVC_2 - ok
14:46:17.0106 4428 [ C4C8D17590A71B70851F84D4B27FFE68 ] QBCFMonitorService C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
14:46:17.0153 4428 QBCFMonitorService ( UnsignedFile.Multi.Generic ) - warning
14:46:17.0153 4428 QBCFMonitorService - detected UnsignedFile.Multi.Generic (1)
14:46:17.0231 4428 [ 6BEE1814470DC12FA20C53DFC3C97EBB ] QBFCService C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
14:46:17.0293 4428 QBFCService ( UnsignedFile.Multi.Generic ) - warning
14:46:17.0293 4428 QBFCService - detected UnsignedFile.Multi.Generic (1)
14:46:17.0387 4428 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
14:46:17.0496 4428 ql2300 - ok
14:46:17.0496 4428 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
14:46:17.0527 4428 ql40xx - ok
14:46:17.0590 4428 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
14:46:17.0637 4428 QWAVE - ok
14:46:17.0683 4428 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
14:46:17.0761 4428 QWAVEdrv - ok
14:46:17.0793 4428 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
14:46:17.0902 4428 RasAcd - ok
14:46:17.0995 4428 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
14:46:18.0058 4428 RasAgileVpn - ok
14:46:18.0120 4428 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
14:46:18.0214 4428 RasAuto - ok
14:46:18.0261 4428 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
14:46:18.0370 4428 Rasl2tp - ok
14:46:18.0417 4428 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
14:46:18.0463 4428 RasMan - ok
14:46:18.0479 4428 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
14:46:18.0573 4428 RasPppoe - ok
14:46:18.0651 4428 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
14:46:18.0760 4428 RasSstp - ok
14:46:18.0791 4428 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
14:46:18.0838 4428 rdbss - ok
14:46:18.0853 4428 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
14:46:18.0916 4428 rdpbus - ok
14:46:18.0947 4428 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
14:46:19.0025 4428 RDPCDD - ok
14:46:19.0087 4428 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
14:46:19.0197 4428 RDPENCDD - ok
14:46:19.0259 4428 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
14:46:19.0321 4428 RDPREFMP - ok
14:46:19.0353 4428 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
14:46:19.0431 4428 RDPWD - ok
14:46:19.0477 4428 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
14:46:19.0509 4428 rdyboost - ok
14:46:19.0602 4428 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
14:46:19.0711 4428 RemoteAccess - ok
14:46:19.0743 4428 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
14:46:19.0821 4428 RemoteRegistry - ok
14:46:19.0867 4428 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
14:46:19.0961 4428 RpcEptMapper - ok
14:46:20.0039 4428 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
14:46:20.0101 4428 RpcLocator - ok
14:46:20.0148 4428 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
14:46:20.0211 4428 RpcSs - ok
14:46:20.0289 4428 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
14:46:20.0367 4428 rspndr - ok
14:46:20.0429 4428 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
14:46:20.0460 4428 SamSs - ok
14:46:20.0491 4428 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
14:46:20.0523 4428 sbp2port - ok
14:46:20.0585 4428 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
14:46:20.0679 4428 SCardSvr - ok
14:46:20.0803 4428 [ 6CE6F98EA3D07A9C2CE3CD0A5A86352D ] SCDEmu C:\Windows\system32\drivers\SCDEmu.sys
14:46:20.0835 4428 SCDEmu - ok
14:46:20.0850 4428 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
14:46:20.0944 4428 scfilter - ok
14:46:21.0022 4428 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
14:46:21.0162 4428 Schedule - ok
14:46:21.0209 4428 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
14:46:21.0271 4428 SCPolicySvc - ok
14:46:21.0287 4428 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
14:46:21.0334 4428 SDRSVC - ok
14:46:21.0412 4428 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
14:46:21.0505 4428 secdrv - ok
14:46:21.0599 4428 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
14:46:21.0693 4428 seclogon - ok
14:46:21.0708 4428 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
14:46:21.0833 4428 SENS - ok
14:46:21.0849 4428 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
14:46:21.0911 4428 SensrSvc - ok
14:46:21.0942 4428 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
14:46:22.0005 4428 Serenum - ok
14:46:22.0051 4428 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
14:46:22.0083 4428 Serial - ok
14:46:22.0145 4428 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
14:46:22.0176 4428 sermouse - ok
14:46:22.0270 4428 [ C15B813F2FDB44F87F23312472C6E790 ] ServiceLayer C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
14:46:22.0410 4428 ServiceLayer - ok
14:46:22.0488 4428 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
14:46:22.0566 4428 SessionEnv - ok
14:46:22.0597 4428 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
14:46:22.0675 4428 sffdisk - ok
14:46:22.0707 4428 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
14:46:22.0785 4428 sffp_mmc - ok
14:46:22.0831 4428 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
14:46:22.0894 4428 sffp_sd - ok
14:46:22.0941 4428 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
14:46:22.0972 4428 sfloppy - ok
14:46:23.0050 4428 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
14:46:23.0159 4428 SharedAccess - ok
14:46:23.0206 4428 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:46:23.0299 4428 ShellHWDetection - ok
14:46:23.0346 4428 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:46:23.0362 4428 SiSRaid2 - ok
14:46:23.0377 4428 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
14:46:23.0409 4428 SiSRaid4 - ok
14:46:23.0533 4428 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
14:46:23.0580 4428 SkypeUpdate - ok
14:46:23.0643 4428 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
14:46:23.0736 4428 Smb - ok
14:46:23.0830 4428 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
14:46:23.0892 4428 SNMPTRAP - ok
14:46:23.0939 4428 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
14:46:23.0986 4428 spldr - ok
14:46:24.0064 4428 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
14:46:24.0142 4428 Spooler - ok
14:46:24.0267 4428 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
14:46:24.0391 4428 sppsvc - ok
14:46:24.0469 4428 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
14:46:24.0547 4428 sppuinotify - ok
14:46:24.0703 4428 [ EAD5300C93946B0250A309E2BF2BE4CF ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
14:46:24.0735 4428 SQLWriter - ok
14:46:24.0797 4428 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
14:46:24.0875 4428 srv - ok
14:46:24.0922 4428 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
14:46:25.0000 4428 srv2 - ok
14:46:25.0047 4428 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
14:46:25.0109 4428 srvnet - ok
14:46:25.0203 4428 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
14:46:25.0296 4428 SSDPSRV - ok
14:46:25.0343 4428 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
14:46:25.0390 4428 SstpSvc - ok
14:46:25.0437 4428 [ AD42CA614E086BCADBD53FFFC404AC24 ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
14:46:25.0483 4428 ssudmdm - ok
14:46:25.0530 4428 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
14:46:25.0561 4428 stexstor - ok
14:46:25.0624 4428 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
14:46:25.0702 4428 stisvc - ok
14:46:25.0733 4428 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
14:46:25.0749 4428 swenum - ok
14:46:25.0842 4428 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
14:46:25.0951 4428 swprv - ok
14:46:25.0998 4428 [ ED6D1424E5B0C21A57B28DD8508D6843 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
14:46:26.0029 4428 SynTP - ok
14:46:26.0123 4428 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
14:46:26.0295 4428 SysMain - ok
14:46:26.0326 4428 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
14:46:26.0388 4428 TabletInputService - ok
14:46:26.0653 4428 [ 191394B308BD7FEDB4EBB4F7F04C1339 ] TabletServiceWacom C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
14:46:26.0965 4428 TabletServiceWacom - ok
14:46:27.0028 4428 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
14:46:27.0121 4428 TapiSrv - ok
14:46:27.0137 4428 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
14:46:27.0184 4428 TBS - ok
14:46:27.0246 4428 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
14:46:27.0402 4428 Tcpip - ok
14:46:27.0449 4428 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
14:46:27.0511 4428 TCPIP6 - ok
14:46:27.0527 4428 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
14:46:27.0543 4428 tcpipreg - ok
14:46:27.0605 4428 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
14:46:27.0667 4428 TDPIPE - ok
14:46:27.0714 4428 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
14:46:27.0745 4428 TDTCP - ok
14:46:27.0761 4428 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
14:46:27.0839 4428 tdx - ok
14:46:27.0839 4428 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
14:46:27.0870 4428 TermDD - ok
14:46:27.0948 4428 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
14:46:28.0042 4428 TermService - ok
14:46:28.0089 4428 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
14:46:28.0167 4428 Themes - ok
14:46:28.0213 4428 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
14:46:28.0260 4428 THREADORDER - ok
14:46:28.0276 4428 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
14:46:28.0323 4428 TrkWks - ok
14:46:28.0385 4428 [ B66EE1D68197DFB9AA24F961E68ACDCC ] trufos C:\Windows\system32\DRIVERS\trufos.sys
14:46:28.0432 4428 trufos - ok
14:46:28.0510 4428 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:46:28.0572 4428 TrustedInstaller - ok
14:46:28.0619 4428 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
14:46:28.0728 4428 tssecsrv - ok
14:46:28.0775 4428 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
14:46:28.0791 4428 TsUsbFlt - ok
14:46:28.0822 4428 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
14:46:28.0931 4428 tunnel - ok
14:46:28.0962 4428 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
14:46:29.0025 4428 uagp35 - ok
14:46:29.0056 4428 [ 2E22C1FD397A5A9FFEF55E9D1FC96C00 ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
14:46:29.0071 4428 UBHelper - ok
14:46:29.0118 4428 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
14:46:29.0227 4428 udfs - ok
14:46:29.0321 4428 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
14:46:29.0352 4428 UI0Detect - ok
14:46:29.0383 4428 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
14:46:29.0399 4428 uliagpkx - ok
14:46:29.0430 4428 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
14:46:29.0493 4428 umbus - ok
14:46:29.0539 4428 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
14:46:29.0602 4428 UmPass - ok
14:46:29.0789 4428 [ CC3775100ABA633984F73DFAE1F55CAE ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
14:46:29.0898 4428 UNS - ok
14:46:29.0976 4428 [ 7BFCAA17DE95E68299E0D4A1A2B0BC9E ] UPDATESRV C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe
14:46:30.0007 4428 UPDATESRV - ok
14:46:30.0070 4428 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
14:46:30.0148 4428 upnphost - ok
14:46:30.0226 4428 [ 34AFB83C7BBA370E404E52CC2290350C ] upperdev C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
14:46:30.0319 4428 upperdev - ok
14:46:30.0429 4428 [ 18D73023A8D99322444BF5668B2E2F30 ] USB28xxBGA C:\Windows\system32\DRIVERS\emBDA64.sys
14:46:30.0475 4428 USB28xxBGA - ok
14:46:30.0507 4428 [ A6D983D51E0326AC83A2566B0F5A7516 ] USB28xxOEM C:\Windows\system32\DRIVERS\emOEM64.sys
14:46:30.0585 4428 USB28xxOEM - ok
14:46:30.0616 4428 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
14:46:30.0631 4428 usbccgp - ok
14:46:30.0694 4428 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
14:46:30.0741 4428 usbcir - ok
14:46:30.0787 4428 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
14:46:30.0850 4428 usbehci - ok
14:46:30.0897 4428 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
14:46:30.0928 4428 usbhub - ok
14:46:30.0959 4428 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
14:46:31.0084 4428 usbohci - ok
14:46:31.0146 4428 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
14:46:31.0287 4428 usbprint - ok
14:46:31.0365 4428 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
14:46:31.0427 4428 usbscan - ok
14:46:31.0489 4428 [ 4ACEE387FA8FD39F83564FCD2FC234F2 ] usbser C:\Windows\system32\DRIVERS\usbser.sys
14:46:31.0536 4428 usbser - ok
14:46:31.0630 4428 [ AA75E1EFBEE7186B4CBAAACF1F15E6CA ] UsbserFilt C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
14:46:31.0677 4428 UsbserFilt - ok
14:46:31.0692 4428 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:46:31.0755 4428 USBSTOR - ok
14:46:31.0786 4428 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
14:46:31.0848 4428 usbuhci - ok
14:46:31.0926 4428 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
14:46:31.0973 4428 usbvideo - ok
14:46:32.0004 4428 [ 70D05EE263568A742D14E1876DF80532 ] usb_rndisx C:\Windows\system32\drivers\usb8023x.sys
14:46:32.0020 4428 usb_rndisx - ok
14:46:32.0067 4428 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
14:46:32.0176 4428 UxSms - ok
14:46:32.0207 4428 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
14:46:32.0238 4428 VaultSvc - ok
14:46:32.0254 4428 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
14:46:32.0285 4428 vdrvroot - ok
14:46:32.0316 4428 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
14:46:32.0379 4428 vds - ok
14:46:32.0394 4428 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
14:46:32.0410 4428 vga - ok
14:46:32.0425 4428 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
14:46:32.0535 4428 VgaSave - ok
14:46:32.0581 4428 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
14:46:32.0597 4428 vhdmp - ok
14:46:32.0613 4428 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
14:46:32.0628 4428 viaide - ok
14:46:32.0644 4428 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
14:46:32.0675 4428 volmgr - ok
14:46:32.0691 4428 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
14:46:32.0722 4428 volmgrx - ok
14:46:32.0737 4428 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
14:46:32.0769 4428 volsnap - ok
14:46:32.0800 4428 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
14:46:32.0815 4428 vsmraid - ok
14:46:32.0909 4428 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
14:46:33.0096 4428 VSS - ok
14:46:33.0190 4428 [ BD118F15B8CB7632E7C817019BEF321B ] VSSERV C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe
14:46:33.0252 4428 VSSERV - ok
14:46:33.0315 4428 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
14:46:33.0361 4428 vwifibus - ok
14:46:33.0377 4428 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
14:46:33.0424 4428 vwififlt - ok
14:46:33.0486 4428 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
14:46:33.0533 4428 vwifimp - ok
14:46:33.0549 4428 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
14:46:33.0611 4428 W32Time - ok
14:46:33.0658 4428 [ FE75777289278A4941FE6139E82B3BD9 ] wacmoumonitor C:\Windows\system32\DRIVERS\wacmoumonitor.sys
14:46:33.0720 4428 wacmoumonitor - ok
14:46:33.0798 4428 [ E04D43C7D1641E95D35CAE6086C7E350 ] wacommousefilter C:\Windows\system32\DRIVERS\wacommousefilter.sys
14:46:33.0829 4428 wacommousefilter - ok
14:46:33.0845 4428 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
14:46:33.0892 4428 WacomPen - ok
14:46:33.0923 4428 [ EC1CEB237E365330C1FCFC4876AA0AC0 ] wacomvhid C:\Windows\system32\DRIVERS\wacomvhid.sys
14:46:33.0939 4428 wacomvhid - ok
14:46:33.0954 4428 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
14:46:34.0048 4428 WANARP - ok
14:46:34.0079 4428 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
14:46:34.0126 4428 Wanarpv6 - ok
14:46:34.0251 4428 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
14:46:34.0375 4428 WatAdminSvc - ok
14:46:34.0485 4428 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
14:46:34.0656 4428 wbengine - ok
14:46:34.0703 4428 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
14:46:34.0765 4428 WbioSrvc - ok
14:46:34.0781 4428 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
14:46:34.0843 4428 wcncsvc - ok
14:46:34.0890 4428 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:46:34.0953 4428 WcsPlugInService - ok
14:46:34.0984 4428 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
14:46:34.0999 4428 Wd - ok
14:46:35.0046 4428 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
14:46:35.0093 4428 Wdf01000 - ok
14:46:35.0140 4428 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
14:46:35.0202 4428 WdiServiceHost - ok
14:46:35.0202 4428 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
14:46:35.0233 4428 WdiSystemHost - ok
14:46:35.0280 4428 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
14:46:35.0374 4428 WebClient - ok
14:46:35.0405 4428 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
14:46:35.0467 4428 Wecsvc - ok
14:46:35.0530 4428 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
14:46:35.0623 4428 wercplsupport - ok
14:46:35.0655 4428 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
14:46:35.0701 4428 WerSvc - ok
14:46:35.0779 4428 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
14:46:35.0842 4428 WfpLwf - ok
14:46:35.0857 4428 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
14:46:35.0873 4428 WIMMount - ok
14:46:35.0951 4428 WinDefend - ok
14:46:35.0967 4428 WinHttpAutoProxySvc - ok
14:46:36.0045 4428 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
14:46:36.0154 4428 Winmgmt - ok
14:46:36.0247 4428 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
14:46:36.0403 4428 WinRM - ok
14:46:36.0466 4428 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
14:46:36.0513 4428 WinUsb - ok
14:46:36.0575 4428 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
14:46:36.0669 4428 Wlansvc - ok
14:46:36.0871 4428 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
14:46:36.0965 4428 wlidsvc - ok
14:46:36.0996 4428 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
14:46:37.0043 4428 WmiAcpi - ok
14:46:37.0090 4428 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
14:46:37.0168 4428 wmiApSrv - ok
14:46:37.0215 4428 WMPNetworkSvc - ok
14:46:37.0261 4428 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
14:46:37.0308 4428 WPCSvc - ok
14:46:37.0371 4428 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
14:46:37.0402 4428 WPDBusEnum - ok
14:46:37.0449 4428 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
14:46:37.0542 4428 ws2ifsl - ok
14:46:37.0667 4428 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
14:46:37.0729 4428 wscsvc - ok
14:46:37.0776 4428 [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
14:46:37.0823 4428 WSDPrintDevice - ok
14:46:37.0823 4428 WSearch - ok
14:46:37.0932 4428 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
14:46:38.0057 4428 wuauserv - ok
14:46:38.0073 4428 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
14:46:38.0135 4428 WudfPf - ok
14:46:38.0182 4428 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
14:46:38.0229 4428 WUDFRd - ok
14:46:38.0244 4428 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
14:46:38.0260 4428 wudfsvc - ok
14:46:38.0338 4428 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
14:46:38.0400 4428 WwanSvc - ok
14:46:38.0634 4428 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
14:46:38.0759 4428 YahooAUService - ok
14:46:38.0806 4428 ================ Scan global ===============================
14:46:38.0868 4428 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
14:46:38.0915 4428 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
14:46:38.0931 4428 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
14:46:38.0993 4428 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
14:46:39.0055 4428 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
14:46:39.0055 4428 [Global] - ok
14:46:39.0055 4428 ================ Scan MBR ==================================
14:46:39.0071 4428 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
14:46:39.0523 4428 \Device\Harddisk0\DR0 - ok
14:46:39.0523 4428 ================ Scan VBR ==================================
14:46:39.0523 4428 [ 1E6F3643005BC2BBA42DF3BFFC3106CE ] \Device\Harddisk0\DR0\Partition1
14:46:39.0523 4428 \Device\Harddisk0\DR0\Partition1 - ok
14:46:39.0555 4428 [ B9A9B60BED38062C6F44F3403EA077C0 ] \Device\Harddisk0\DR0\Partition2
14:46:39.0570 4428 \Device\Harddisk0\DR0\Partition2 - ok
14:46:39.0570 4428 ============================================================
14:46:39.0570 4428 Scan finished
14:46:39.0570 4428 ============================================================
14:46:39.0586 6720 Detected object count: 7
14:46:39.0586 6720 Actual detected object count: 7
14:51:19.0887 6720 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - skipped by user
14:51:19.0887 6720 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:51:19.0887 6720 MDM ( UnsignedFile.Multi.Generic ) - skipped by user
14:51:19.0887 6720 MDM ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:51:19.0887 6720 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
14:51:19.0887 6720 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:51:19.0887 6720 NTI IScheduleSvc ( UnsignedFile.Multi.Generic ) - skipped by user
14:51:19.0887 6720 NTI IScheduleSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:51:19.0887 6720 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
14:51:19.0887 6720 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:51:19.0887 6720 QBCFMonitorService ( UnsignedFile.Multi.Generic ) - skipped by user
14:51:19.0887 6720 QBCFMonitorService ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:51:19.0887 6720 QBFCService ( UnsignedFile.Multi.Generic ) - skipped by user
14:51:19.0887 6720 QBFCService ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:52:07.0186 6536 Deinitialize success

#4 Jenxjen

Jenxjen
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:03:24 PM

Posted 16 November 2012 - 11:43 AM

2/
Results of screen317's Security Check version 0.99.54
Windows 7 Service Pack 1 x64 (UAC is disabled!)
Internet Explorer 9
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Disabled!
Bitdefender Antivirus
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware version 1.65.1.1000
Java™ 6 Update 26
Java version out of Date!
Adobe Reader 9 Adobe Reader out of Date!
Google Chrome 21.0.1180.83
Google Chrome 21.0.1180.89
Google Chrome 22.0.1229.79
Google Chrome 22.0.1229.92
Google Chrome 22.0.1229.94
Google Chrome 23.0.1271.64
````````Process Check: objlist.exe by Laurent````````
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbamgui.exe
Malwarebytes' Anti-Malware mbamscheduler.exe
Bitdefender Bitdefender 2013 vsserv.exe
Bitdefender Bitdefender 2013 updatesrv.exe
Bitdefender Bitdefender 2013 bdagent.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 0%
````````````````````End of Log``````````````````````

#5 Jenxjen

Jenxjen
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:03:24 PM

Posted 16 November 2012 - 11:45 AM

3/
Farbar Service Scanner Version: 09-11-2012
Ran by Jen (administrator) on 16-11-2012 at 15:07:59
Running from "C:\Users\Jen\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is offline
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.

Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0

System Restore:
============

System Restore Disabled Policy:
========================

Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================

Windows Defender:
==============

Other Services:
==============

File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2012-11-13 18:45] - [2012-10-03 17:56] - 1914248 ____A (Microsoft Corporation) 37608401DFDB388CAF66917F6B2D6FB0

C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit

**** End of log ****

Edited by Jenxjen, 16 November 2012 - 12:04 PM.


#6 Jenxjen

Jenxjen
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:03:24 PM

Posted 16 November 2012 - 11:47 AM

4/
MiniToolBox by Farbar Version: 10-11-2012 02
Ran by Jen (administrator) on 16-11-2012 at 15:11:01
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
127.0.0.1 adobe.activate.com
127.0.0.1 localhost
127.0.0.1 3dns.adobe.com 3dns-1.adobe.com 3dns-2.adobe.com 3dns-3.adobe.com 3dns-4.adobe.com activate.adobe.com activate-sea.adobe.com activate-sjc0.adobe.com activate.wip.adobe.com
127.0.0.1 activate.wip1.adobe.com activate.wip2.adobe.com activate.wip3.adobe.com activate.wip4.adobe.com adobe-dns.adobe.com adobe-dns-1.adobe.com adobe-dns-2.adobe.com adobe-dns-3.adobe.com adobe-dns-4.adobe.com
127.0.0.1 adobeereg.com practivate.adobe practivate.adobe.com practivate.adobe.newoa practivate.adobe.ntp practivate.adobe.ipp ereg.adobe.com ereg.wip.adobe.com ereg.wip1.adobe.com
127.0.0.1 ereg.wip2.adobe.com ereg.wip3.adobe.com ereg.wip4.adobe.com hl2rcv.adobe.com wip.adobe.com wip1.adobe.com wip2.adobe.com wip3.adobe.com wip4.adobe.com
127.0.0.1 www.adobeereg.com wwis-dubc1-vip60.adobe.com www.wip.adobe.com www.wip1.adobe.com
127.0.0.1 www.wip2.adobe.com www.wip3.adobe.com www.wip4.adobe.com wwis-dubc1-vip60.adobe.com crl.verisign.net CRL.VERISIGN.NET ood.opsource.net
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com

There are 2 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Atheros AR5B93 Wireless Network Adapter = Wireless Network Connection (Connected)
Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Jen-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 0A-17-C4-F8-8F-26
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR5B93 Wireless Network Adapter
Physical Address. . . . . . . . . : 00-17-C4-F8-8F-26
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::acf5:f38d:d4fb:9467%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.7(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Fri, 16 November 2012 14:33:24
Lease Expires . . . . . . . . . . : Fri, 16 November 2012 16:03:30
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 419436484
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-80-9B-69-00-26-2D-A4-75-2F
DNS Servers . . . . . . . . . . . : 194.168.4.100
194.168.8.100
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : wistron.com
Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet
Physical Address. . . . . . . . . : 00-26-2D-A4-75-2F
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{118D9ADB-57B2-42F8-BAF5-9894A7942984}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{19A5903C-E85C-471E-BAD8-0F6FDE676CF6}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.wistron.com:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 194.168.4.100

Name: google.com
Addresses: 2a00:1450:4009:803::1005
173.194.34.110
173.194.34.104
173.194.34.98
173.194.34.105
173.194.34.100
173.194.34.96
173.194.34.102
173.194.34.99
173.194.34.101
173.194.34.103
173.194.34.97


Pinging google.com [173.194.34.104] with 32 bytes of data:
Request timed out.
Reply from 173.194.34.104: bytes=32 time=180ms TTL=55

Ping statistics for 173.194.34.104:
Packets: Sent = 2, Received = 1, Lost = 1 (50% loss),
Approximate round trip times in milli-seconds:
Minimum = 180ms, Maximum = 180ms, Average = 180ms
Server: cache1.service.virginmedia.net
Address: 194.168.4.100

Name: yahoo.com
Addresses: 72.30.38.140
98.138.253.109
98.139.183.24


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=203ms TTL=49
Reply from 98.138.253.109: bytes=32 time=288ms TTL=49

Ping statistics for 98.138.253.109:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 203ms, Maximum = 288ms, Average = 245ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=5ms TTL=128
Reply from 127.0.0.1: bytes=32 time=3ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 3ms, Maximum = 5ms, Average = 4ms
===========================================================================
Interface List
14...0a 17 c4 f8 8f 26 ......Microsoft Virtual WiFi Miniport Adapter
12...00 17 c4 f8 8f 26 ......Atheros AR5B93 Wireless Network Adapter
10...00 26 2d a4 75 2f ......Broadcom NetLink ™ Gigabit Ethernet
1...........................Software Loopback Interface 1
17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
11...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.7 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.7 281
192.168.0.7 255.255.255.255 On-link 192.168.0.7 281
192.168.0.255 255.255.255.255 On-link 192.168.0.7 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.7 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.7 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
12 281 fe80::/64 On-link
12 281 fe80::acf5:f38d:d4fb:9467/128
On-link
1 306 ff00::/8 On-link
12 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/13/2012 09:28:11 PM) (Source: Application Error) (User: )
Description: Faulting application name: mbamservice.exe, version: 1.65.0.0, time stamp: 0x506784f8
Faulting module name: mbamservice.exe, version: 1.65.0.0, time stamp: 0x506784f8
Exception code: 0x40000015
Fault offset: 0x0005e63e
Faulting process id: 0xa80
Faulting application start time: 0xmbamservice.exe0
Faulting application path: mbamservice.exe1
Faulting module path: mbamservice.exe2
Report Id: mbamservice.exe3

Error: (11/12/2012 07:12:01 PM) (Source: QuickBooks) (User: )
Description: An unexpected error has occured in "QuickBooks Pro":
Unable to find the section for this mentu item!!!

Error: (11/12/2012 07:11:45 PM) (Source: QuickBooks) (User: )
Description: An unexpected error has occured in "QuickBooks Pro":
Got unexpected error 5 in call to NetShareGetInfo for path \\SERVER-PC\Intuit\QuickBooks\Company Files\VGS.QBW

Error: (11/12/2012 07:11:31 PM) (Source: QuickBooks) (User: )
Description: An unexpected error has occured in "QuickBooks Pro":
Got unexpected error 5 in call to NetShareGetInfo for path \\SERVER-PC\Intuit\QuickBooks\Company Files\VGS.QBW

Error: (11/12/2012 07:10:13 PM) (Source: QuickBooks) (User: )
Description: An unexpected error has occured in "QuickBooks Pro":
DBConnPool::HandleConnectionError errorCode:-6069, dbCode:-103 from file:'.\.\src\ConnPool.cpp' at line 1038 from function:'DBMgr::DBConnPool::init'

Error: (11/12/2012 07:10:13 PM) (Source: QuickBooks) (User: )
Description: An unexpected error has occured in "QuickBooks Pro":
Connection String:CON=QBConnectionPool-Probe-QB_data_engine_23;;DBF=C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\VGS.QBW;CommLinks="tcpip(IP=192.168.0.3;TO=5;DOBROADCAST=NONE;port=55353)";ServerName=QB_SERVER-PC_23;DBN=1d4f0db9407148c5a47430ceb112916c

Error: (11/12/2012 07:10:13 PM) (Source: QuickBooks) (User: )
Description: An unexpected error has occured in "QuickBooks Pro":
Connection Error:Invalid user ID or password

Error: (11/12/2012 07:10:05 PM) (Source: QuickBooks) (User: )
Description: An unexpected error has occured in "QuickBooks Pro":
Got unexpected error 5 in call to NetShareGetInfo for path \\SERVER-PC\Intuit\QuickBooks\Company Files\VGS.QBW

Error: (11/12/2012 07:09:42 PM) (Source: QuickBooks) (User: )
Description: An unexpected error has occured in "QuickBooks":
Unable to find the section for this mentu item!!!

Error: (11/12/2012 07:09:24 PM) (Source: QuickBooks) (User: )
Description: An unexpected error has occured in "QuickBooks":
Returning NULL QBWinInstance Handle


System errors:
=============
Error: (11/16/2012 02:42:01 PM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80004005

Error: (11/16/2012 02:37:20 PM) (Source: Service Control Manager) (User: )
Description: The FABS - Helping agent for MAGIX media database service failed to start due to the following error:
%%1053

Error: (11/16/2012 02:37:20 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the FABS - Helping agent for MAGIX media database service to connect.

Error: (11/16/2012 02:36:07 PM) (Source: Service Control Manager) (User: )
Description: The Dritek WMI Service service failed to start due to the following error:
%%1053

Error: (11/16/2012 02:36:07 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Dritek WMI Service service to connect.

Error: (11/16/2012 02:32:48 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\Windows\system32\athExt.dll
Error Code: 126

Error: (11/16/2012 02:29:41 PM) (Source: volmgr) (User: )
Description: Crash dump initialization failed!

Error: (11/16/2012 02:29:33 PM) (Source: volmgr) (User: )
Description: Crash dump initialization failed!

Error: (11/16/2012 02:29:33 PM) (Source: volmgr) (User: )
Description: Crash dump initialization failed!

Error: (11/16/2012 01:53:08 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\Windows\system32\athExt.dll
Error Code: 126


Microsoft Office Sessions:
=========================
Error: (11/13/2012 09:28:11 PM) (Source: Application Error)(User: )
Description: mbamservice.exe1.65.0.0506784f8mbamservice.exe1.65.0.0506784f8400000150005e63ea8001cdc1d43de5fb42C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exeC:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe05cee0a9-2dd9-11e2-b1e5-00262da4752f

Error: (11/12/2012 07:12:01 PM) (Source: QuickBooks)(User: )
Description: QuickBooks ProUnable to find the section for this mentu item!!!

Error: (11/12/2012 07:11:45 PM) (Source: QuickBooks)(User: )
Description: QuickBooks ProGot unexpected error 5 in call to NetShareGetInfo for path \\SERVER-PC\Intuit\QuickBooks\Company Files\VGS.QBW

Error: (11/12/2012 07:11:31 PM) (Source: QuickBooks)(User: )
Description: QuickBooks ProGot unexpected error 5 in call to NetShareGetInfo for path \\SERVER-PC\Intuit\QuickBooks\Company Files\VGS.QBW

Error: (11/12/2012 07:10:13 PM) (Source: QuickBooks)(User: )
Description: QuickBooks ProDBConnPool::HandleConnectionError errorCode:-6069, dbCode:-103 from file:'.\.\src\ConnPool.cpp' at line 1038 from function:'DBMgr::DBConnPool::init'

Error: (11/12/2012 07:10:13 PM) (Source: QuickBooks)(User: )
Description: QuickBooks ProConnection String:CON=QBConnectionPool-Probe-QB_data_engine_23;;DBF=C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\VGS.QBW;CommLinks="tcpip(IP=192.168.0.3;TO=5;DOBROADCAST=NONE;port=55353)";ServerName=QB_SERVER-PC_23;DBN=1d4f0db9407148c5a47430ceb112916c

Error: (11/12/2012 07:10:13 PM) (Source: QuickBooks)(User: )
Description: QuickBooks ProConnection Error:Invalid user ID or password

Error: (11/12/2012 07:10:05 PM) (Source: QuickBooks)(User: )
Description: QuickBooks ProGot unexpected error 5 in call to NetShareGetInfo for path \\SERVER-PC\Intuit\QuickBooks\Company Files\VGS.QBW

Error: (11/12/2012 07:09:42 PM) (Source: QuickBooks)(User: )
Description: QuickBooksUnable to find the section for this mentu item!!!

Error: (11/12/2012 07:09:24 PM) (Source: QuickBooks)(User: )
Description: QuickBooksReturning NULL QBWinInstance Handle


CodeIntegrity Errors:
===================================
Date: 2012-11-16 15:08:49.817
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00167_003\avcuf64.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-11-16 15:02:25.752
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00167_003\avcuf64.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-11-16 14:41:00.907
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00167_003\avcuf64.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-11-16 14:26:07.782
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00167_003\avcuf64.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-11-16 14:03:45.841
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00167_003\avcuf64.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-11-16 13:53:01.811
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00167_003\avcuf64.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-11-16 13:50:05.717
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00167_003\avcuf64.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-11-16 13:37:58.812
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00167_003\avcuf64.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-11-16 13:02:44.290
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00167_003\avcuf64.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-11-16 12:43:27.625
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00167_003\avcuf64.dll because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

64 Bit HP CIO Components Installer (Version: 8.2.1)
Acer Backup Manager (Version: 2.0.0.60)
Acer Crystal Eye webcam Ver:1.1.158.203 (Version: 1.1.158.203)
Acer ePower Management (Version: 5.00.3002)
Acer eRecovery Management (Version: 4.05.3007)
Acer Registration (Version: 1.02.3006)
Acer ScreenSaver (Version: 1.1.0122.2010)
Acer Updater (Version: 1.02.3502)
Acrobat.com (Version: 1.6.65)
Adobe AIR (Version: 3.1.0.4880)
Adobe Anchor Service CS4 (Version: 2.0)
Adobe Anchor Service x64 CS4 (Version: 2.0)
Adobe Bridge CS4 (Version: 3)
Adobe CMaps CS4 (Version: 2.0)
Adobe CMaps x64 CS4 (Version: 2.0)
Adobe Color - Photoshop Specific CS4 (Version: 2.0)
Adobe Color EU Extra Settings CS4 (Version: 2.0)
Adobe Color JA Extra Settings CS4 (Version: 2.0)
Adobe Color NA Recommended Settings CS4 (Version: 2.0)
Adobe Color Video Profiles CS CS4 (Version: 2.0)
Adobe Community Help (Version: 3.3.0)
Adobe Community Help (Version: 3.3.0.800)
Adobe CSI CS4 (Version: 1)
Adobe CSI CS4 x64 (Version: 1)
Adobe Default Language CS4 (Version: 2.0)
Adobe Drive CS4 x64 (Version: 1)
Adobe ExtendScript Toolkit CS4 (Version: 3.0.0)
Adobe Flash Player 11 ActiveX (Version: 11.5.502.110)
Adobe Fonts All x64 (Version: 2.0)
Adobe Illustrator CS5 (Version: 15.0)
Adobe Linguistics CS4 x64 (Version: 4.0.0)
Adobe Media Player (Version: 0.0.0)
Adobe Media Player (Version: 1.1)
Adobe Output Module (Version: 2.0)
Adobe PDF Library Files CS4 (Version: 9.0)
Adobe PDF Library Files x64 CS4 (Version: 9.0)
Adobe Photoshop CS4 (64 Bit) (Version: 11.0)
Adobe Photoshop CS4 (Version: 11.0)
Adobe Photoshop CS4 Support (Version: 11.0)
Adobe Reader 9.5.2 (Version: 9.5.2)
Adobe Search for Help (Version: 1.0)
Adobe Service Manager Extension (Version: 1.0)
Adobe Setup (Version: 2.0)
Adobe Type Support CS4 (Version: 9.0)
Adobe Type Support x64 CS4 (Version: 9.0)
Adobe Update Manager CS4 (Version: 6.0.0)
Adobe WinSoft Linguistics Plugin x64 (Version: 1.1)
Adobe XMP Panels CS4 (Version: 2.0)
AdobeColorCommonSetCMYK (Version: 2.0)
AdobeColorCommonSetRGB (Version: 2.0)
Alcor Micro USB Card Reader (Version: 1.5.17.05094)
Amazon MP3 Downloader 1.0.9
Android Sync Manager WiFi (Version: 11.10.2763)
Apple Application Support (Version: 1.4.1)
Apple Software Update (Version: 2.1.1.116)
ATI Catalyst Install Manager (Version: 3.0.758.0)
µTorrent (Version: 3.1.3)
Backup Manager Basic (Version: 2.0.0.60)
Bitdefender Internet Security 2013 (Version: 16.16.0.1348)
Broadcom Gigabit NetLink Controller (Version: 12.52.03)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2010.0122.858.16002)
Catalyst Control Center Graphics Full Existing (Version: 2010.0122.858.16002)
Catalyst Control Center Graphics Full New (Version: 2010.0122.858.16002)
Catalyst Control Center Graphics Light (Version: 2010.0122.858.16002)
Catalyst Control Center Graphics Previews Vista (Version: 2010.0122.858.16002)
Catalyst Control Center InstallProxy (Version: 2010.0122.858.16002)
Catalyst Control Center Localization All (Version: 2010.0122.858.16002)
ccc-core-static (Version: 2010.0122.858.16002)
ccc-utility64 (Version: 2010.0122.858.16002)
CCC Help Chinese Standard (Version: 2010.0122.0857.16002)
CCC Help Chinese Traditional (Version: 2010.0122.0857.16002)
CCC Help Czech (Version: 2010.0122.0857.16002)
CCC Help Danish (Version: 2010.0122.0857.16002)
CCC Help Dutch (Version: 2010.0122.0857.16002)
CCC Help English (Version: 2010.0122.0857.16002)
CCC Help Finnish (Version: 2010.0122.0857.16002)
CCC Help French (Version: 2010.0122.0857.16002)
CCC Help German (Version: 2010.0122.0857.16002)
CCC Help Greek (Version: 2010.0122.0857.16002)
CCC Help Hungarian (Version: 2010.0122.0857.16002)
CCC Help Italian (Version: 2010.0122.0857.16002)
CCC Help Japanese (Version: 2010.0122.0857.16002)
CCC Help Korean (Version: 2010.0122.0857.16002)
CCC Help Norwegian (Version: 2010.0122.0857.16002)
CCC Help Polish (Version: 2010.0122.0857.16002)
CCC Help Portuguese (Version: 2010.0122.0857.16002)
CCC Help Russian (Version: 2010.0122.0857.16002)
CCC Help Spanish (Version: 2010.0122.0857.16002)
CCC Help Swedish (Version: 2010.0122.0857.16002)
CCC Help Thai (Version: 2010.0122.0857.16002)
CCC Help Turkish (Version: 2010.0122.0857.16002)
CCleaner (Version: 3.24)
Citrix XenApp Web Plugin (Version: 11.0.0.5357)
Compatibility Pack for the 2007 Office system (Version: 12.0.6425.1000)
ComponentArt Data Visualization 2011 for Silverlight (Version: 11.1.2220.0)
Conduit Engine (Version: 6.2.7.3)
Connect (Version: 1.0.0.1)
Content (Version: 1.00.0000)
Corel Painter 11
Corel Painter 11 - ICA (Version: 11.0)
Corel Painter 11 - IPM (Version: 11.2)
Corel Painter 11 (Version: 11.2)
Corel PaintShop Photo Pro X3 (Version: 1.6.1.242)
Corel PaintShop Pro X4 (Version: 14.0.0.345)
Corel PaintShop Pro X4 (Version: 14.2.0.1)
CyberLink PowerDVD 9 (Version: 9.0.3814.50)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dream Day First Home
Dropbox (Version: 1.1.35)
eBay Worldwide (Version: 2.1.0901)
Efit 1.9
EPSON Attach To Email (Version: 1.01.0000)
EPSON Event Manager (Version: 1.71.00)
EPSON File Manager (Version: 1.1.0.0)
EPSON Image Clip Palette (Version: 1.02.00)
EPSON Scan
EPSON Scan Assistant (Version: 1.10.00)
eSobi v2 (Version: 2.0.4.000274)
Evernote v. 4.5.6 (Version: 4.5.6.6884)
Farm Frenzy 2
FileZilla Client 3.5.2 (Version: 3.5.2)
Firebird SQL Server - MAGIX Edition (Version: 2.1.26.0)
Galapago
GnuCash 2.4.10
Google Calendar Sync
Google Chrome (Version: 23.0.1271.64)
Google Earth (Version: 6.2.2.6613)
Google SketchUp 8 (Version: 3.0.4811)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3230.2052)
Google Update Helper (Version: 1.3.21.123)
GoToAssist Corporate (Version: 9.1.0.615)
Granny In Paradise
Heroes of Hellas
ICA (Version: 1.6.1.242)
ICA (Version: 14.0.0.345)
IconHandler 32 bit (Version: 2.0)
IconHandler 64 bit (Version: 2.0)
Identity Card (Version: 1.00.3003)
IIS 8.0 Express (Version: 8.0.1508)
IIS Express Application Compatibility Database for x64
IIS Express Application Compatibility Database for x86
ImgBurn (Version: 2.5.5.0)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® Rapid Storage Technology (Version: 9.5.6.1001)
Internet Explorer (Enable DEP)
Internet TV for Windows Media Center (Version: 4.2.2.0)
IPM_PSP_CL (Version: 1.00.0000)
IPM_PSP_COM (Version: 1.00.0000)
IPM_PSP_COM (Version: 14.0.0.345)
J2SE Runtime Environment 5.0 Update 7 (Version: 1.5.0.70)
Java Auto Updater (Version: 2.0.5.1)
Java™ 6 Update 26 (Version: 6.0.260)
Junk Mail filter update (Version: 15.4.3502.0922)
Kies Air Discovery Service
kuler (Version: 2.0)
Langauge (Version: 1.2)
Launch Manager (Version: 4.0.5)
LegalSounds Music Downloader 1.8
MAGIX Photo Manager 8 (Version: 6.0.1.504)
MAGIX Screenshare (Version: 4.3.6.1987)
MAGIX Speed burnR (Version: 6.0.1.2)
MAGIX USB-Videowandler 2 Device Driver
MAGIX Video easy VS Edition 1.0.2.2 (FL) (Version: 1.0.2.2)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
Microsoft .NET Framework 4 Multi-Targeting Pack (Version: 4.0.30319)
Microsoft .NET Framework 4.5 RC (Version: 4.5.50501)
Microsoft .NET Framework 4.5 RC Multi-Targeting Pack (Version: 4.5.50501)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft ASP.NET MVC 3 (Version: 3.0.20105.0)
Microsoft ASP.NET Web Pages (Version: 1.0.20105.0)
Microsoft Money Plus (Version: 17)
Microsoft Money Shared Libraries (Version: 17.0.0.3817)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office FrontPage 2003 (Version: 11.0.5614.0)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook Connector (Version: 14.0.5118.5000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit (Version: 14.0.5120.5000)
Microsoft Silverlight (Version: 5.0.61118.0)
Microsoft Silverlight 4 SDK (Version: 4.0.60310.0)
Microsoft Silverlight 5 SDK (Version: 5.0.61118.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server 2012 Command Line Utilities (Version: 11.0.2100.60)
Microsoft SQL Server 2012 Data-Tier App Framework (Version: 11.0.2100.60)
Microsoft SQL Server 2012 Express LocalDB (Version: 11.0.2100.60)
Microsoft SQL Server 2012 Management Objects (Version: 11.0.2100.60)
Microsoft SQL Server 2012 Management Objects (x64) (Version: 11.0.2100.60)
Microsoft SQL Server 2012 Native Client (Version: 11.0.2100.60)
Microsoft SQL Server 2012 T-SQL Language Service (Version: 11.0.2100.60)
Microsoft SQL Server 2012 Transact-SQL Compiler Service (Version: 11.0.2100.60)
Microsoft SQL Server 2012 Transact-SQL ScriptDom (Version: 11.0.2100.60)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU CTP1 (Version: 4.0.8872.1)
Microsoft SQL Server Data Tools - enu (11.1.20425.00) (Version: 11.1.20425.00)
Microsoft SQL Server Data Tools Build Utilities - enu (11.1.20425.00) (Version: 11.1.20425.00)
Microsoft SQL Server System CLR Types (Version: 10.50.1600.1)
Microsoft SQL Server System CLR Types (x64) (Version: 10.50.1600.1)
Microsoft System CLR Types for SQL Server 2012 (Version: 11.0.2100.60)
Microsoft System CLR Types for SQL Server 2012 (x64) (Version: 11.0.2100.60)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Web Deploy 3.0 (Version: 3.1236.1516)
Microsoft Web Deploy dbSqlPackage Provider - enu (Version: 10.3.20225.0)
Microsoft Web Platform Installer 4.0 (Version: 4.0.1307)
Microsoft Works (Version: 9.7.0621)
Microsoft_VC100_CRT_SP1_x64 (Version: 10.0.40219.1)
Microsoft_VC100_CRT_SP1_x86 (Version: 10.0.40219.1)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
MSVC80_x64_v2 (Version: 1.0.3.0)
MSVC80_x86_v2 (Version: 1.0.3.0)
MSVC90_x64 (Version: 1.0.1.2)
MSVC90_x86 (Version: 1.0.1.2)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB2721691) (Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
mufin player (Version: 1.0.0.102)
MyWinLocker (Version: 3.1.206.0)
MyWinLocker Suite (Version: 3.1.206.0)
Nokia Connectivity Cable Driver (Version: 7.1.78.0)
Nokia Suite (Version: 3.4.49.0)
NTI Backup Now 5 (Version: 5.1.2.628)
NTI Backup Now Standard (Version: 5.1.2.628)
NTI Media Maker 8 (Version: 8.0.12.6630)
PC Connectivity Solution (Version: 12.0.17.0)
PDF Settings CS4 (Version: 9.0)
PDF Settings CS5 (Version: 10.0)
PDFill PDF Editor with FREE Writer and FREE Tools (Version: 8.0)
Photoshop Camera Raw (Version: 5.0)
Photoshop Camera Raw_x64 (Version: 5.0)
PowerISO (Version: 4.7)
Prerequisites for SSDT (Version: 11.0.2100.60)
PSP Thumbnail Handler (Version: 2.10.49)
PSPPContent (Version: 1.00.0000)
PSPPContent (Version: 14.0.0.345)
PSPPHelp (Version: 14.0.0.345)
PSPPRO_DCRAW (Version: 13.0.0)
PSPPro64 (Version: 14.0.0.345)
QuickBooks (Version: 23.0.4003.2305)
QuickBooks Pro 2013 (Version: 23.0.4001.2305)
QuickTime (Version: 7.69.80.9)
Realtek High Definition Audio Driver (Version: 6.0.1.6000)
Sansa Updater
Setup (Version: 14.0.0.345)
Shared C Run-time for x64 (Version: 10.0.0)
Shredder (Version: 2.0.5.0)
Skype™ 5.10 (Version: 5.10.116)
SkyPlayer for Windows Media Center (Version: 4.4.2.0)
Spin & Win
Spotify (Version: 0.4.9)
SQL Server Data Framework Tools - enu (Version: 11.1.20425.00)
Suite Shared Configuration CS4 (Version: 1.0)
Sweet Home 3D version 3.2
Synaptics Pointing Device Driver (Version: 14.0.6.0)
The Extractor
The Extractor (Version: 1.4.3)
The Extractor (Version: 1.4.3.2)
Update for (KB2504637) (Version: 1)
Update for Microsoft Excel 2010 (KB2553439) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553385) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
uTorrentBar Toolbar (Version: 6.2.2.4)
Wacom Tablet (Version: 6.1.6-7)
WCF RIA Services V1.0 SP2 (Version: 4.1.61709.0)
WebTablet IE Plugin (Version: 1.1.0.7)
WebTablet Netscape Plugin (Version: 1.1.0.5)
Welcome Center (Version: 1.00.3013)
WinDjView 1.0.3 (Version: 1.0.3)
Windows Driver Package - Nokia pccsmcfd (08/22/2008 7.0.0.0) (Version: 08/22/2008 7.0.0.0)
Windows Installer Clean Up (Version: 3.00.00.0000)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Xara Designer Pro 6 (Version: 6.1.1.13205)
Yahoo! Messenger
Yahoo! Software Update
Yahoo! Toolbar

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 48%
Total physical RAM: 3956.5 MB
Available physical RAM: 2046.59 MB
Total Pagefile: 7911.19 MB
Available Pagefile: 5523.54 MB
Total Virtual: 4095.88 MB
Available Virtual: 3945.18 MB

========================= Partitions: =====================================

1 Drive c: (ACER) (Fixed) (Total:452.97 GB) (Free:124.29 GB) NTFS

========================= Users: ========================================

User accounts for \\JEN-PC

Administrator Guest Jen

========================= Minidump Files ==================================

No minidump file found

========================= Restore Points ==================================

15-11-2012 00:00:01 Scheduled Checkpoint

**** End of log ****

#7 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:08:24 PM

Posted 16 November 2012 - 06:14 PM

Hi

Please visit the online Jotti Virus Scanner Posted Image<--link
  • Browse to the following filepath:


    C:\Windows\System32\Drivers\tcpip.sys

  • Click on the Posted Image button.
    The scanner will check the file with various AV companies.
  • If Jotti says the file has been scanned before, then click scan again.
  • Copy and paste the results box into a reply to this thread.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#8 Jenxjen

Jenxjen
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:03:24 PM

Posted 17 November 2012 - 05:38 AM

I clicked Browse in the Jotti site all the way C:\Windows\System32\Drivers but the file would not appear.
I've checked that tcpip.sys actually is in the C:\Windows\System32\Drivers, so I don't know why it's not appearing when I try to browse it from the browse button in Jotti.

Thanks for helping.

Update on the problem. The rate it happens is once every 2 days. Seems mostly when I've left the laptop idle, it's in that 'state' when go back to it.
I don't know if this is any help, but this started to happen a day after I switched ISPs from BT broadband to Virginmedia.
Also after I installed Quickbooks2013. But because I had a couple of malware attacks I didn't think of any thing else.

Regards

#9 Jenxjen

Jenxjen
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:03:24 PM

Posted 17 November 2012 - 09:13 AM

Hi
It just happened again. PC had been idle for 40 minutes prior. I checked out Administratie Events in Computer Management> Event Viewer and this was the last log (before System Shutdown log which is when I had to restart)

Faulting application name: mbamservice.exe, version: 1.65.0.0, time stamp: 0x506784f8
Faulting module name: mbamservice.exe, version: 1.65.0.0, time stamp: 0x506784f8
Exception code: 0x40000015
Fault offset: 0x0005e63e
Faulting process id: 0x964
Faulting application start time: 0x01cdc4ab088fac1e
Faulting application path: C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
Faulting module path: C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
Report Id: 7351bb8a-30b5-11e2-b2f5-00262da4752f

I noticed once when it crashed MBAM had dispapeared from the taskbar and
this time there was a popup to say MBAM had just had updated successfully

Not sure if this is any help

#10 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:08:24 PM

Posted 17 November 2012 - 09:27 PM

Lets focus on one thing at a time:

:step1:

Please start the 64-bit version of Internet Explorer
  • Click Start, and then click Internet Explorer (64-bit).

If this is not visible then please let me know in your next reply.

:step2:

Using 64bit internet explorer, please do the following:

Please visit the online Jotti Virus Scanner Posted Image<--link
  • Browse to the following filepath:


    C:\Windows\System32\Drivers\tcpip.sys

  • Click on the Posted Image button.
    The scanner will check the file with various AV companies.
  • If Jotti says the file has been scanned before, then click scan again.
  • Copy and paste the results box into a reply to this thread.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#11 Jenxjen

Jenxjen
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:03:24 PM

Posted 18 November 2012 - 06:40 AM

Worked with ie 64bit

Filename:
tcpip.sys
Status:
Scan finished. 0 out of 19 scanners reported malware.
Scan taken on:
Sun 18 Nov 2012 12:36:30 (CET) Permalink

Thanks for sticking with me

#12 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:08:24 PM

Posted 19 November 2012 - 05:32 PM

Hi

Please do the following next:

:step1:

Use the Windows Error Checking utility (Check Disk), with the options to fix file system errors and scan the disk surface for errors, attempt recovery of data and repair the disk:

  • Click the "Windows Orb" Start button, then click Computer.
  • Right-click on the drive that you wish to check > Properties > Tools tab
  • In the "Error checking" section, click on Check now.
  • Place a checkmark in both boxes > Start.
  • If the disk you have chosen is the Windows system disk:
  • A message will notify you that a restart is necessary ask "Do you want to check for hard disk errors the next time you start your computer?".
  • Click Schedule disk check > OK and close all windows.
  • Re-start the computer. The disk will be checked when the system boots.
  • This will take some time to run and at times may appear stalled but just let it run.
  • When the disk check is complete, the system will re-start automatically and load Windows.

A log of the disk check is recorded only if the scheduled re-start is used, and only for drives on the same HDD as the Operating System.
To open the log:

  • Click the "Windows Orb" Start button -> type "eventvwr" without the quotes -> press the <ENTER> key.
  • The Event Viewer window will open.
  • In the left pane, expand "Windows Logs" and then click on Application.
  • In the right pane, at the top, click on the column heading Source to sort the list alphabetically.
  • Look in the Source column for "Wininit", with an entry corresponding to the date and time of the disk check.
  • Click on that Wininit entry to select it.
  • On the top main menu, click Action > Copy > Copy Details as Text.
  • Paste the contents into your next reply.


:step2:

We need to run the SFC /SCANNOW Command

The sfc /scannow command (System File Checker) scans the integrity of all protected Windows system files and replaces incorrect corrupted, changed/modified, or damaged versions with the correct versions if possible.

Note: Be aware that if you have modified your system files as in theming explorer/system files, running sfc /scannow will revert the system files such as explorer.exe back to it's default state.

Note: Make the appropriate backups of your system files that you have modified for theming if you wish to save them before running sfc /scannow.

  • Click the Windows "Orb" button.
  • Type cmd.
  • Right click on the search result cmd.exe and click Run as Administrator.
  • Copy the following line of text and paste it into the black box.
    (right-click in the black box and choose paste)

    sfc /scannow
  • Press Enter to run the command.
    Note: This may take a while to finish.
  • If SFC could not fix something, then run the command again to see if it may be able to the next time. Sometimes it may take running the sfc /scannow command 3 or more times to completely fix everything that it's able to.

Retrieving SFC /scannow log

  • Click the Windows "Orb" button.
  • Type cmd.
  • Right click on the search result cmd.exe and click Run as Administrator.
  • Copy the following line of text and paste it into the black box.
    (right-click in the black box and choose paste)

    findstr /c:"[SR]" %windir%\logs\cbs\cbs.log >> "%userprofile%\desktop\sfcdetails.txt"
  • Press Enter to run the command.
  • A text file sfcdetails.txt should appear on your desktop. Post the content of the file in your next reply.


:step3:

How is the computer running now?

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#13 Jenxjen

Jenxjen
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:03:24 PM

Posted 21 November 2012 - 12:14 PM

Hello
Wininit

Log Name: Application
Source: Microsoft-Windows-Wininit
Date: 20/11/2012 00:01:55
Event ID: 1001
Task Category: None
Level: Information
Keywords: Classic
User: N/A
Computer: JEN-PC
Description:


Checking file system on C:
The type of the file system is NTFS.
Volume label is ACER.

A disk check has been scheduled.
Windows will now check the disk.

CHKDSK is verifying files (stage 1 of 5)...
392704 file records processed.

File verification completed.
2670 large file records processed.

0 bad file records processed.

4 EA records processed.

44 reparse records processed.

CHKDSK is verifying indexes (stage 2 of 5)...
476024 index entries processed.

Index verification completed.
0 unindexed files scanned.

0 unindexed files recovered.

CHKDSK is verifying security descriptors (stage 3 of 5)...
392704 file SDs/SIDs processed.

Cleaning up 771 unused index entries from index $SII of file 0x9.
Cleaning up 771 unused index entries from index $SDH of file 0x9.
Cleaning up 771 unused security descriptors.
CHKDSK is compacting the security descriptor stream
41661 data files processed.

CHKDSK is verifying Usn Journal...
37615168 USN bytes processed.

Usn Journal verification completed.
CHKDSK is verifying file data (stage 4 of 5)...
392688 files processed.

File data verification completed.
CHKDSK is verifying free space (stage 5 of 5)...
24445678 free clusters processed.

Free space verification is complete.
Correcting errors in the Volume Bitmap.
Windows has made corrections to the file system.

474970135 KB total disk space.
376510332 KB in 262940 files.
165580 KB in 41664 indexes.
0 KB in bad sectors.
511507 KB in use by the system.
65536 KB occupied by the log file.
97782716 KB available on disk.

4096 bytes in each allocation unit.
118742533 total allocation units on disk.
24445679 allocation units available on disk.

Internal Info:
00 fe 05 00 e3 a5 04 00 c0 f2 07 00 00 00 00 00 ................
bc 2c 00 00 2c 00 00 00 00 00 00 00 00 00 00 00 .,..,...........
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................

Windows has finished checking your disk.
Please wait while your computer restarts.

Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-Wininit" Guid="{206f6dea-d3c5-4d10-bc72-989f03c8b84b}" EventSourceName="Wininit" />
<EventID Qualifiers="16384">1001</EventID>
<Version>0</Version>
<Level>4</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2012-11-13T00:01:55.000000000Z" />
<EventRecordID>46896</EventRecordID>
<Correlation />
<Execution ProcessID="0" ThreadID="0" />
<Channel>Application</Channel>
<Computer>JEN-PC</Computer>
<Security />
</System>
<EventData>
<Data>

Checking file system on C:
The type of the file system is NTFS.
Volume label is ACER.

A disk check has been scheduled.
Windows will now check the disk.

CHKDSK is verifying files (stage 1 of 5)...
392704 file records processed.

File verification completed.
2670 large file records processed.

0 bad file records processed.

4 EA records processed.

44 reparse records processed.

CHKDSK is verifying indexes (stage 2 of 5)...
476024 index entries processed.

Index verification completed.
0 unindexed files scanned.

0 unindexed files recovered.

CHKDSK is verifying security descriptors (stage 3 of 5)...
392704 file SDs/SIDs processed.

Cleaning up 771 unused index entries from index $SII of file 0x9.
Cleaning up 771 unused index entries from index $SDH of file 0x9.
Cleaning up 771 unused security descriptors.
CHKDSK is compacting the security descriptor stream
41661 data files processed.

CHKDSK is verifying Usn Journal...
37615168 USN bytes processed.

Usn Journal verification completed.
CHKDSK is verifying file data (stage 4 of 5)...
392688 files processed.

File data verification completed.
CHKDSK is verifying free space (stage 5 of 5)...
24445678 free clusters processed.

Free space verification is complete.
Correcting errors in the Volume Bitmap.
Windows has made corrections to the file system.

474970135 KB total disk space.
376510332 KB in 262940 files.
165580 KB in 41664 indexes.
0 KB in bad sectors.
511507 KB in use by the system.
65536 KB occupied by the log file.
97782716 KB available on disk.

4096 bytes in each allocation unit.
118742533 total allocation units on disk.
24445679 allocation units available on disk.

Internal Info:
00 fe 05 00 e3 a5 04 00 c0 f2 07 00 00 00 00 00 ................
bc 2c 00 00 2c 00 00 00 00 00 00 00 00 00 00 00 .,..,...........
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................

Windows has finished checking your disk.
Please wait while your computer restarts.
</Data>
</EventData>
</Event>
---------------------------------------------------------------------------------
SFC /SCANNOW

2012-11-20 20:23:35, Info CSI 00000009 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:23:35, Info CSI 0000000a [SR] Beginning Verify and Repair transaction
2012-11-20 20:23:37, Info CSI 0000000c [SR] Verify complete
2012-11-20 20:23:38, Info CSI 0000000d [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:23:38, Info CSI 0000000e [SR] Beginning Verify and Repair transaction
2012-11-20 20:23:39, Info CSI 00000010 [SR] Verify complete
2012-11-20 20:23:39, Info CSI 00000011 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:23:39, Info CSI 00000012 [SR] Beginning Verify and Repair transaction
2012-11-20 20:23:41, Info CSI 00000014 [SR] Verify complete
2012-11-20 20:23:41, Info CSI 00000015 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:23:41, Info CSI 00000016 [SR] Beginning Verify and Repair transaction
2012-11-20 20:23:43, Info CSI 00000018 [SR] Verify complete
2012-11-20 20:23:43, Info CSI 00000019 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:23:43, Info CSI 0000001a [SR] Beginning Verify and Repair transaction
2012-11-20 20:23:46, Info CSI 0000001c [SR] Verify complete
2012-11-20 20:23:47, Info CSI 0000001d [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:23:47, Info CSI 0000001e [SR] Beginning Verify and Repair transaction
2012-11-20 20:23:50, Info CSI 00000020 [SR] Verify complete
2012-11-20 20:23:50, Info CSI 00000021 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:23:50, Info CSI 00000022 [SR] Beginning Verify and Repair transaction
2012-11-20 20:23:52, Info CSI 00000024 [SR] Verify complete
2012-11-20 20:23:52, Info CSI 00000025 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:23:52, Info CSI 00000026 [SR] Beginning Verify and Repair transaction
2012-11-20 20:23:55, Info CSI 00000028 [SR] Verify complete
2012-11-20 20:23:55, Info CSI 00000029 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:23:55, Info CSI 0000002a [SR] Beginning Verify and Repair transaction
2012-11-20 20:23:59, Info CSI 0000002c [SR] Verify complete
2012-11-20 20:23:59, Info CSI 0000002d [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:23:59, Info CSI 0000002e [SR] Beginning Verify and Repair transaction
2012-11-20 20:24:01, Info CSI 00000030 [SR] Verify complete
2012-11-20 20:24:01, Info CSI 00000031 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:24:01, Info CSI 00000032 [SR] Beginning Verify and Repair transaction
2012-11-20 20:24:03, Info CSI 00000034 [SR] Verify complete
2012-11-20 20:24:03, Info CSI 00000035 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:24:03, Info CSI 00000036 [SR] Beginning Verify and Repair transaction
2012-11-20 20:24:08, Info CSI 00000039 [SR] Verify complete
2012-11-20 20:24:08, Info CSI 0000003a [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:24:08, Info CSI 0000003b [SR] Beginning Verify and Repair transaction
2012-11-20 20:24:15, Info CSI 00000040 [SR] Verify complete
2012-11-20 20:24:15, Info CSI 00000041 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:24:15, Info CSI 00000042 [SR] Beginning Verify and Repair transaction
2012-11-20 20:24:18, Info CSI 00000044 [SR] Verify complete
2012-11-20 20:24:18, Info CSI 00000045 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:24:18, Info CSI 00000046 [SR] Beginning Verify and Repair transaction
2012-11-20 20:24:22, Info CSI 00000049 [SR] Verify complete
2012-11-20 20:24:22, Info CSI 0000004a [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:24:22, Info CSI 0000004b [SR] Beginning Verify and Repair transaction
2012-11-20 20:24:27, Info CSI 00000050 [SR] Verify complete
2012-11-20 20:24:28, Info CSI 00000051 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:24:28, Info CSI 00000052 [SR] Beginning Verify and Repair transaction
2012-11-20 20:24:34, Info CSI 00000074 [SR] Verify complete
2012-11-20 20:24:34, Info CSI 00000075 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:24:34, Info CSI 00000076 [SR] Beginning Verify and Repair transaction
2012-11-20 20:24:40, Info CSI 00000078 [SR] Verify complete
2012-11-20 20:24:40, Info CSI 00000079 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:24:40, Info CSI 0000007a [SR] Beginning Verify and Repair transaction
2012-11-20 20:24:44, Info CSI 0000007c [SR] Verify complete
2012-11-20 20:24:44, Info CSI 0000007d [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:24:44, Info CSI 0000007e [SR] Beginning Verify and Repair transaction
2012-11-20 20:24:49, Info CSI 00000080 [SR] Verify complete
2012-11-20 20:24:49, Info CSI 00000081 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:24:49, Info CSI 00000082 [SR] Beginning Verify and Repair transaction
2012-11-20 20:24:54, Info CSI 00000084 [SR] Verify complete
2012-11-20 20:24:55, Info CSI 00000085 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:24:55, Info CSI 00000086 [SR] Beginning Verify and Repair transaction
2012-11-20 20:25:04, Info CSI 0000008a [SR] Verify complete
2012-11-20 20:25:04, Info CSI 0000008b [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:25:04, Info CSI 0000008c [SR] Beginning Verify and Repair transaction
2012-11-20 20:25:14, Info CSI 000000ad [SR] Verify complete
2012-11-20 20:25:14, Info CSI 000000ae [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:25:14, Info CSI 000000af [SR] Beginning Verify and Repair transaction
2012-11-20 20:25:26, Info CSI 000000b1 [SR] Verify complete
2012-11-20 20:25:27, Info CSI 000000b2 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:25:27, Info CSI 000000b3 [SR] Beginning Verify and Repair transaction
2012-11-20 20:25:42, Info CSI 000000b7 [SR] Verify complete
2012-11-20 20:25:42, Info CSI 000000b8 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:25:42, Info CSI 000000b9 [SR] Beginning Verify and Repair transaction
2012-11-20 20:25:45, Info CSI 000000bb [SR] Verify complete
2012-11-20 20:25:45, Info CSI 000000bc [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:25:45, Info CSI 000000bd [SR] Beginning Verify and Repair transaction
2012-11-20 20:25:47, Info CSI 000000bf [SR] Verify complete
2012-11-20 20:25:48, Info CSI 000000c0 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:25:48, Info CSI 000000c1 [SR] Beginning Verify and Repair transaction
2012-11-20 20:25:50, Info CSI 000000c3 [SR] Verify complete
2012-11-20 20:25:51, Info CSI 000000c4 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:25:51, Info CSI 000000c5 [SR] Beginning Verify and Repair transaction
2012-11-20 20:26:01, Info CSI 000000d8 [SR] Verify complete
2012-11-20 20:26:01, Info CSI 000000d9 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:26:01, Info CSI 000000da [SR] Beginning Verify and Repair transaction
2012-11-20 20:26:04, Info CSI 000000dc [SR] Verify complete
2012-11-20 20:26:04, Info CSI 000000dd [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:26:04, Info CSI 000000de [SR] Beginning Verify and Repair transaction
2012-11-20 20:26:06, Info CSI 000000e0 [SR] Verify complete
2012-11-20 20:26:06, Info CSI 000000e1 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:26:06, Info CSI 000000e2 [SR] Beginning Verify and Repair transaction
2012-11-20 20:26:10, Info CSI 000000e4 [SR] Verify complete
2012-11-20 20:26:11, Info CSI 000000e5 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:26:11, Info CSI 000000e6 [SR] Beginning Verify and Repair transaction
2012-11-20 20:26:16, Info CSI 000000e8 [SR] Verify complete
2012-11-20 20:26:16, Info CSI 000000e9 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:26:16, Info CSI 000000ea [SR] Beginning Verify and Repair transaction
2012-11-20 20:26:26, Info CSI 000000ee [SR] Verify complete
2012-11-20 20:26:26, Info CSI 000000ef [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:26:26, Info CSI 000000f0 [SR] Beginning Verify and Repair transaction
2012-11-20 20:26:29, Info CSI 000000f2 [SR] Verify complete
2012-11-20 20:26:30, Info CSI 000000f3 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:26:30, Info CSI 000000f4 [SR] Beginning Verify and Repair transaction
2012-11-20 20:26:32, Info CSI 000000f6 [SR] Verify complete
2012-11-20 20:26:33, Info CSI 000000f7 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:26:33, Info CSI 000000f8 [SR] Beginning Verify and Repair transaction
2012-11-20 20:26:43, Info CSI 000000fa [SR] Verify complete
2012-11-20 20:26:43, Info CSI 000000fb [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:26:43, Info CSI 000000fc [SR] Beginning Verify and Repair transaction
2012-11-20 20:26:50, Info CSI 000000fe [SR] Verify complete
2012-11-20 20:26:51, Info CSI 000000ff [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:26:51, Info CSI 00000100 [SR] Beginning Verify and Repair transaction
2012-11-20 20:27:00, Info CSI 00000102 [SR] Verify complete
2012-11-20 20:27:01, Info CSI 00000103 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:27:01, Info CSI 00000104 [SR] Beginning Verify and Repair transaction
2012-11-20 20:27:12, Info CSI 0000010e [SR] Verify complete
2012-11-20 20:27:12, Info CSI 0000010f [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:27:12, Info CSI 00000110 [SR] Beginning Verify and Repair transaction
2012-11-20 20:27:19, Info CSI 00000120 [SR] Verify complete
2012-11-20 20:27:19, Info CSI 00000121 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:27:19, Info CSI 00000122 [SR] Beginning Verify and Repair transaction
2012-11-20 20:27:25, Info CSI 00000124 [SR] Verify complete
2012-11-20 20:27:26, Info CSI 00000125 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:27:26, Info CSI 00000126 [SR] Beginning Verify and Repair transaction
2012-11-20 20:27:44, Info CSI 00000128 [SR] Verify complete
2012-11-20 20:27:44, Info CSI 00000129 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:27:44, Info CSI 0000012a [SR] Beginning Verify and Repair transaction
2012-11-20 20:28:05, Info CSI 0000012d [SR] Verify complete
2012-11-20 20:28:05, Info CSI 0000012e [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:28:05, Info CSI 0000012f [SR] Beginning Verify and Repair transaction
2012-11-20 20:28:14, Info CSI 00000131 [SR] Verify complete
2012-11-20 20:28:14, Info CSI 00000132 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:28:14, Info CSI 00000133 [SR] Beginning Verify and Repair transaction
2012-11-20 20:28:22, Info CSI 00000135 [SR] Verify complete
2012-11-20 20:28:23, Info CSI 00000136 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:28:23, Info CSI 00000137 [SR] Beginning Verify and Repair transaction
2012-11-20 20:28:28, Info CSI 00000139 [SR] Verify complete
2012-11-20 20:28:28, Info CSI 0000013a [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:28:28, Info CSI 0000013b [SR] Beginning Verify and Repair transaction
2012-11-20 20:28:36, Info CSI 0000013f [SR] Verify complete
2012-11-20 20:28:36, Info CSI 00000140 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:28:36, Info CSI 00000141 [SR] Beginning Verify and Repair transaction
2012-11-20 20:28:51, Info CSI 00000143 [SR] Verify complete
2012-11-20 20:28:51, Info CSI 00000144 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:28:51, Info CSI 00000145 [SR] Beginning Verify and Repair transaction
2012-11-20 20:28:58, Info CSI 00000148 [SR] Verify complete
2012-11-20 20:28:58, Info CSI 00000149 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:28:58, Info CSI 0000014a [SR] Beginning Verify and Repair transaction
2012-11-20 20:29:05, Info CSI 0000014d [SR] Verify complete
2012-11-20 20:29:05, Info CSI 0000014e [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:29:05, Info CSI 0000014f [SR] Beginning Verify and Repair transaction
2012-11-20 20:29:16, Info CSI 00000151 [SR] Verify complete
2012-11-20 20:29:17, Info CSI 00000152 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:29:17, Info CSI 00000153 [SR] Beginning Verify and Repair transaction
2012-11-20 20:29:28, Info CSI 00000156 [SR] Verify complete
2012-11-20 20:29:29, Info CSI 00000157 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:29:29, Info CSI 00000158 [SR] Beginning Verify and Repair transaction
2012-11-20 20:29:35, Info CSI 0000015a [SR] Verify complete
2012-11-20 20:29:35, Info CSI 0000015b [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:29:35, Info CSI 0000015c [SR] Beginning Verify and Repair transaction
2012-11-20 20:29:43, Info CSI 0000015e [SR] Verify complete
2012-11-20 20:29:44, Info CSI 0000015f [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:29:44, Info CSI 00000160 [SR] Beginning Verify and Repair transaction
2012-11-20 20:29:51, Info CSI 00000163 [SR] Verify complete
2012-11-20 20:29:51, Info CSI 00000164 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:29:51, Info CSI 00000165 [SR] Beginning Verify and Repair transaction
2012-11-20 20:30:00, Info CSI 00000167 [SR] Verify complete
2012-11-20 20:30:01, Info CSI 00000168 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:30:01, Info CSI 00000169 [SR] Beginning Verify and Repair transaction
2012-11-20 20:30:06, Info CSI 0000016b [SR] Verify complete
2012-11-20 20:30:07, Info CSI 0000016c [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:30:07, Info CSI 0000016d [SR] Beginning Verify and Repair transaction
2012-11-20 20:30:13, Info CSI 00000170 [SR] Verify complete
2012-11-20 20:30:14, Info CSI 00000171 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:30:14, Info CSI 00000172 [SR] Beginning Verify and Repair transaction
2012-11-20 20:30:21, Info CSI 00000176 [SR] Verify complete
2012-11-20 20:30:21, Info CSI 00000177 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:30:21, Info CSI 00000178 [SR] Beginning Verify and Repair transaction
2012-11-20 20:30:29, Info CSI 0000017a [SR] Verify complete
2012-11-20 20:30:29, Info CSI 0000017b [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:30:29, Info CSI 0000017c [SR] Beginning Verify and Repair transaction
2012-11-20 20:30:37, Info CSI 0000017f [SR] Verify complete
2012-11-20 20:30:38, Info CSI 00000180 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:30:38, Info CSI 00000181 [SR] Beginning Verify and Repair transaction
2012-11-20 20:30:48, Info CSI 00000183 [SR] Verify complete
2012-11-20 20:30:48, Info CSI 00000184 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:30:48, Info CSI 00000185 [SR] Beginning Verify and Repair transaction
2012-11-20 20:30:51, Info CSI 00000187 [SR] Verify complete
2012-11-20 20:30:51, Info CSI 00000188 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:30:51, Info CSI 00000189 [SR] Beginning Verify and Repair transaction
2012-11-20 20:30:56, Info CSI 0000018b [SR] Verify complete
2012-11-20 20:30:56, Info CSI 0000018c [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:30:56, Info CSI 0000018d [SR] Beginning Verify and Repair transaction
2012-11-20 20:31:01, Info CSI 0000018f [SR] Verify complete
2012-11-20 20:31:01, Info CSI 00000190 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:31:01, Info CSI 00000191 [SR] Beginning Verify and Repair transaction
2012-11-20 20:31:07, Info CSI 00000193 [SR] Verify complete
2012-11-20 20:31:07, Info CSI 00000194 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:31:07, Info CSI 00000195 [SR] Beginning Verify and Repair transaction
2012-11-20 20:31:12, Info CSI 00000197 [SR] Verify complete
2012-11-20 20:31:13, Info CSI 00000198 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:31:13, Info CSI 00000199 [SR] Beginning Verify and Repair transaction
2012-11-20 20:31:16, Info CSI 0000019b [SR] Verify complete
2012-11-20 20:31:16, Info CSI 0000019c [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:31:16, Info CSI 0000019d [SR] Beginning Verify and Repair transaction
2012-11-20 20:31:29, Info CSI 0000019f [SR] Verify complete
2012-11-20 20:31:29, Info CSI 000001a0 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:31:29, Info CSI 000001a1 [SR] Beginning Verify and Repair transaction
2012-11-20 20:32:04, Info CSI 000001a3 [SR] Verify complete
2012-11-20 20:32:04, Info CSI 000001a4 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:32:04, Info CSI 000001a5 [SR] Beginning Verify and Repair transaction
2012-11-20 20:32:14, Info CSI 000001a7 [SR] Verify complete
2012-11-20 20:32:14, Info CSI 000001a8 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:32:14, Info CSI 000001a9 [SR] Beginning Verify and Repair transaction
2012-11-20 20:32:26, Info CSI 000001ab [SR] Verify complete
2012-11-20 20:32:26, Info CSI 000001ac [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:32:26, Info CSI 000001ad [SR] Beginning Verify and Repair transaction
2012-11-20 20:32:28, Info CSI 000001af [SR] Verify complete
2012-11-20 20:32:29, Info CSI 000001b0 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:32:29, Info CSI 000001b1 [SR] Beginning Verify and Repair transaction
2012-11-20 20:32:34, Info CSI 000001b3 [SR] Verify complete
2012-11-20 20:32:34, Info CSI 000001b4 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:32:34, Info CSI 000001b5 [SR] Beginning Verify and Repair transaction
2012-11-20 20:32:39, Info CSI 000001b7 [SR] Verify complete
2012-11-20 20:32:39, Info CSI 000001b8 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:32:39, Info CSI 000001b9 [SR] Beginning Verify and Repair transaction
2012-11-20 20:32:49, Info CSI 000001c1 [SR] Verify complete
2012-11-20 20:32:49, Info CSI 000001c2 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:32:49, Info CSI 000001c3 [SR] Beginning Verify and Repair transaction
2012-11-20 20:32:54, Info CSI 000001c5 [SR] Verify complete
2012-11-20 20:32:54, Info CSI 000001c6 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:32:54, Info CSI 000001c7 [SR] Beginning Verify and Repair transaction
2012-11-20 20:32:58, Info CSI 000001c9 [SR] Verify complete
2012-11-20 20:32:58, Info CSI 000001ca [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:32:58, Info CSI 000001cb [SR] Beginning Verify and Repair transaction
2012-11-20 20:33:02, Info CSI 000001cd [SR] Verify complete
2012-11-20 20:33:02, Info CSI 000001ce [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:33:02, Info CSI 000001cf [SR] Beginning Verify and Repair transaction
2012-11-20 20:33:08, Info CSI 000001d1 [SR] Verify complete
2012-11-20 20:33:09, Info CSI 000001d2 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:33:09, Info CSI 000001d3 [SR] Beginning Verify and Repair transaction
2012-11-20 20:33:18, Info CSI 000001d6 [SR] Verify complete
2012-11-20 20:33:18, Info CSI 000001d7 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:33:18, Info CSI 000001d8 [SR] Beginning Verify and Repair transaction
2012-11-20 20:33:22, Info CSI 000001da [SR] Verify complete
2012-11-20 20:33:22, Info CSI 000001db [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:33:22, Info CSI 000001dc [SR] Beginning Verify and Repair transaction
2012-11-20 20:33:25, Info CSI 000001de [SR] Verify complete
2012-11-20 20:33:25, Info CSI 000001df [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:33:25, Info CSI 000001e0 [SR] Beginning Verify and Repair transaction
2012-11-20 20:33:38, Info CSI 000001e5 [SR] Verify complete
2012-11-20 20:33:39, Info CSI 000001e6 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:33:39, Info CSI 000001e7 [SR] Beginning Verify and Repair transaction
2012-11-20 20:33:54, Info CSI 000001ea [SR] Verify complete
2012-11-20 20:33:54, Info CSI 000001eb [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:33:54, Info CSI 000001ec [SR] Beginning Verify and Repair transaction
2012-11-20 20:34:02, Info CSI 000001f0 [SR] Verify complete
2012-11-20 20:34:03, Info CSI 000001f1 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:34:03, Info CSI 000001f2 [SR] Beginning Verify and Repair transaction
2012-11-20 20:34:11, Info CSI 000001fd [SR] Verify complete
2012-11-20 20:34:11, Info CSI 000001fe [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:34:11, Info CSI 000001ff [SR] Beginning Verify and Repair transaction
2012-11-20 20:34:20, Info CSI 00000206 [SR] Verify complete
2012-11-20 20:34:21, Info CSI 00000207 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:34:21, Info CSI 00000208 [SR] Beginning Verify and Repair transaction
2012-11-20 20:34:27, Info CSI 0000020a [SR] Verify complete
2012-11-20 20:34:27, Info CSI 0000020b [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:34:27, Info CSI 0000020c [SR] Beginning Verify and Repair transaction
2012-11-20 20:34:31, Info CSI 00000210 [SR] Verify complete
2012-11-20 20:34:32, Info CSI 00000211 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:34:32, Info CSI 00000212 [SR] Beginning Verify and Repair transaction
2012-11-20 20:34:37, Info CSI 00000214 [SR] Verify complete
2012-11-20 20:34:37, Info CSI 00000215 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:34:37, Info CSI 00000216 [SR] Beginning Verify and Repair transaction
2012-11-20 20:34:45, Info CSI 0000023b [SR] Verify complete
2012-11-20 20:34:45, Info CSI 0000023c [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:34:45, Info CSI 0000023d [SR] Beginning Verify and Repair transaction
2012-11-20 20:34:51, Info CSI 0000023f [SR] Verify complete
2012-11-20 20:34:51, Info CSI 00000240 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:34:51, Info CSI 00000241 [SR] Beginning Verify and Repair transaction
2012-11-20 20:34:56, Info CSI 00000243 [SR] Verify complete
2012-11-20 20:34:57, Info CSI 00000244 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:34:57, Info CSI 00000245 [SR] Beginning Verify and Repair transaction
2012-11-20 20:35:01, Info CSI 00000247 [SR] Verify complete
2012-11-20 20:35:01, Info CSI 00000248 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:35:01, Info CSI 00000249 [SR] Beginning Verify and Repair transaction
2012-11-20 20:35:08, Info CSI 00000257 [SR] Verify complete
2012-11-20 20:35:08, Info CSI 00000258 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:35:08, Info CSI 00000259 [SR] Beginning Verify and Repair transaction
2012-11-20 20:35:20, Info CSI 0000025d [SR] Verify complete
2012-11-20 20:35:20, Info CSI 0000025e [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:35:20, Info CSI 0000025f [SR] Beginning Verify and Repair transaction
2012-11-20 20:35:26, Info CSI 0000026b [SR] Verify complete
2012-11-20 20:35:27, Info CSI 0000026c [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:35:27, Info CSI 0000026d [SR] Beginning Verify and Repair transaction
2012-11-20 20:35:29, Info CSI 0000026f [SR] Verify complete
2012-11-20 20:35:30, Info CSI 00000270 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:35:30, Info CSI 00000271 [SR] Beginning Verify and Repair transaction
2012-11-20 20:35:36, Info CSI 00000274 [SR] Verify complete
2012-11-20 20:35:37, Info CSI 00000275 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:35:37, Info CSI 00000276 [SR] Beginning Verify and Repair transaction
2012-11-20 20:35:39, Info CSI 00000278 [SR] Verify complete
2012-11-20 20:35:39, Info CSI 00000279 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:35:39, Info CSI 0000027a [SR] Beginning Verify and Repair transaction
2012-11-20 20:35:47, Info CSI 0000027c [SR] Verify complete
2012-11-20 20:35:48, Info CSI 0000027d [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:35:48, Info CSI 0000027e [SR] Beginning Verify and Repair transaction
2012-11-20 20:35:53, Info CSI 00000280 [SR] Verify complete
2012-11-20 20:35:54, Info CSI 00000281 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:35:54, Info CSI 00000282 [SR] Beginning Verify and Repair transaction
2012-11-20 20:35:58, Info CSI 00000284 [SR] Verify complete
2012-11-20 20:35:59, Info CSI 00000285 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:35:59, Info CSI 00000286 [SR] Beginning Verify and Repair transaction
2012-11-20 20:36:07, Info CSI 000002a0 [SR] Verify complete
2012-11-20 20:36:07, Info CSI 000002a1 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:36:07, Info CSI 000002a2 [SR] Beginning Verify and Repair transaction
2012-11-20 20:36:13, Info CSI 000002a4 [SR] Verify complete
2012-11-20 20:36:13, Info CSI 000002a5 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:36:13, Info CSI 000002a6 [SR] Beginning Verify and Repair transaction
2012-11-20 20:36:28, Info CSI 000002a8 [SR] Verify complete
2012-11-20 20:36:28, Info CSI 000002a9 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:36:28, Info CSI 000002aa [SR] Beginning Verify and Repair transaction
2012-11-20 20:36:33, Info CSI 000002ac [SR] Verify complete
2012-11-20 20:36:33, Info CSI 000002ad [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:36:33, Info CSI 000002ae [SR] Beginning Verify and Repair transaction
2012-11-20 20:36:37, Info CSI 000002b2 [SR] Verify complete
2012-11-20 20:36:38, Info CSI 000002b3 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:36:38, Info CSI 000002b4 [SR] Beginning Verify and Repair transaction
2012-11-20 20:36:42, Info CSI 000002b6 [SR] Verify complete
2012-11-20 20:36:43, Info CSI 000002b7 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:36:43, Info CSI 000002b8 [SR] Beginning Verify and Repair transaction
2012-11-20 20:36:48, Info CSI 000002ba [SR] Verify complete
2012-11-20 20:36:48, Info CSI 000002bb [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:36:48, Info CSI 000002bc [SR] Beginning Verify and Repair transaction
2012-11-20 20:36:53, Info CSI 000002be [SR] Verify complete
2012-11-20 20:36:53, Info CSI 000002bf [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:36:53, Info CSI 000002c0 [SR] Beginning Verify and Repair transaction
2012-11-20 20:36:58, Info CSI 000002c3 [SR] Verify complete
2012-11-20 20:36:59, Info CSI 000002c4 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:36:59, Info CSI 000002c5 [SR] Beginning Verify and Repair transaction
2012-11-20 20:37:03, Info CSI 000002c7 [SR] Verify complete
2012-11-20 20:37:03, Info CSI 000002c8 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:37:03, Info CSI 000002c9 [SR] Beginning Verify and Repair transaction
2012-11-20 20:37:09, Info CSI 000002cb [SR] Verify complete
2012-11-20 20:37:09, Info CSI 000002cc [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:37:09, Info CSI 000002cd [SR] Beginning Verify and Repair transaction
2012-11-20 20:37:14, Info CSI 000002cf [SR] Verify complete
2012-11-20 20:37:15, Info CSI 000002d0 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:37:15, Info CSI 000002d1 [SR] Beginning Verify and Repair transaction
2012-11-20 20:37:23, Info CSI 000002d4 [SR] Verify complete
2012-11-20 20:37:24, Info CSI 000002d5 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:37:24, Info CSI 000002d6 [SR] Beginning Verify and Repair transaction
2012-11-20 20:37:29, Info CSI 000002d8 [SR] Verify complete
2012-11-20 20:37:29, Info CSI 000002d9 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:37:29, Info CSI 000002da [SR] Beginning Verify and Repair transaction
2012-11-20 20:37:34, Info CSI 000002dc [SR] Verify complete
2012-11-20 20:37:35, Info CSI 000002dd [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:37:35, Info CSI 000002de [SR] Beginning Verify and Repair transaction
2012-11-20 20:37:41, Info CSI 000002e0 [SR] Verify complete
2012-11-20 20:37:41, Info CSI 000002e1 [SR] Verifying 100 (0x0000000000000064) components
2012-11-20 20:37:41, Info CSI 000002e2 [SR] Beginning Verify and Repair transaction
2012-11-20 20:37:46, Info CSI 000002e4 [SR] Verify complete
2012-11-20 20:37:46, Info CSI 000002e5 [SR] Verifying 3 components
2012-11-20 20:37:46, Info CSI 000002e6 [SR] Beginning Verify and Repair transaction
2012-11-20 20:37:46, Info CSI 000002e8 [SR] Verify complete
2012-11-20 20:37:46, Info CSI 000002e9 [SR] Repairing 0 components
2012-11-20 20:37:46, Info CSI 000002ea [SR] Beginning Verify and Repair transaction
2012-11-20 20:37:46, Info CSI 000002ec [SR] Repair complete

#14 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:08:24 PM

Posted 22 November 2012 - 02:13 PM

Hi, please let me know the following:

:step3:

How is the computer running now?


Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#15 Jenxjen

Jenxjen
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:03:24 PM

Posted 23 November 2012 - 09:10 AM

Hello.
:thumbsup:
So far so good!

On 17th after the last 'freeze' I dissabled MBAM and it did't happen again for 3-4 days. And after carrying out your last instructions, Check Disk and the sfc/scannow I re enabled MBMA again and it hasn't happened since!!
So that is 3-4 days with MBAM enabled and a week altogether.

I hope I'm not talking too soon!

I so appreciate your time and help. I've kept all these notes for future issues.

Just one question. With all the info I posted I know that IP addresses change so that's not a worry but can hackers use Mac addresses that are dissplayed? I'm guessing you wouldn't have suggested to post them if that was the case. I just need to reassure my hubby as he's worried.

J




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users