Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google search redirecting to random websites... rootkit?


  • Please log in to reply
9 replies to this topic

#1 Adalbert

Adalbert

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:06:02 PM

Posted 10 January 2013 - 07:27 PM

Hello,

Like in the title, for quite some time I have a problem with Google search results redirecting me on the first click to different, mostly ad websites. This happens on two browsers that I use, Firefox and Chrome. Win7 64bit. After I installed Kaspersky antivirus it stopped for few days but now it's back...

Another weird thing is that there are always (at least) two iexplorer.exe processes running with no visible IE windows open, and I don't use IE at all. Right now I can mostly block them with moving IE to Untrusted applications in Kaspersky but IE sometimes jumps back to trusted. Kaspersky also reports that a IE process is downloading stuff to the temp folders. Though now the redirecting also happens when I manage to stop&block the IE background processes.

Around the time it started Avira reported that it blocked and quarantined EXP/Pidief.GI, though I already uninstalled Avira so this is not form the logs but what I searched on Google back then so I guess that was it's name.

I already tried out following software, full scans:
Avira Antyvir
Malwarebytes
Ad-aware
Kaspersky

All main scans report no threats. Only Kaspersky found something during rootkit scan it's doing automatically:
PE_Patch.Juba Packed: PE_Patch.Juba 2013-01-09 17:41:52 c:\Program Files (x86)\DAEMON Tools Lite\imgengine.dll/ Scan
I don't know if it was related or not but I uninstalled the Daemon software.

I checked the host file in windows/system folder, it's empty, and the proxy setting are off, but Kaspersky did sometimes display a message that it blocked IE from changing proxy / connection settings:
Internet Explorer INTERNET SETTINGS Blocked: InternetSettingsProxyServer 2013-01-09 19:45:02 hkey_users\S-1-5-21-1167112646

Right now I also use CCleaner to clean the cookies/temp files on all browsers from time to time.

No matter what I use the redirecting problem persists. Any help is appreciated, thanks for your time.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:02 PM

Posted 10 January 2013 - 07:28 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 Adalbert

Adalbert
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:06:02 PM

Posted 11 January 2013 - 08:34 AM

aswMBR
Unfortunately it crashed both on normal mode and safety mode with networking mode.

ESET online scanner LOG
C:\Users\Rafal\AppData\Local\Comcast Modem Release\lwlqhrlw.dll Win32/Kryptik.ARGY.Gen trojan cleaned by deleting (after the next restart) - quarantined

Something still tried to load this dll when I restarted the laptop. As of now I don't see any IE processes in the background / no redirects so far.

TDSSkiller LOG
21:25:59.0977 7372 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
21:26:00.0402 7372 ============================================================
21:26:00.0402 7372 Current date / time: 2013/01/10 21:26:00.0402
21:26:00.0402 7372 SystemInfo:
21:26:00.0402 7372
21:26:00.0402 7372 OS Version: 6.1.7601 ServicePack: 1.0
21:26:00.0402 7372 Product type: Workstation
21:26:00.0402 7372 ComputerName: MOBILEROSHI
21:26:00.0405 7372 UserName: Rafal
21:26:00.0405 7372 Windows directory: C:\Windows
21:26:00.0405 7372 System windows directory: C:\Windows
21:26:00.0405 7372 Running under WOW64
21:26:00.0405 7372 Processor architecture: Intel x64
21:26:00.0405 7372 Number of processors: 4
21:26:00.0405 7372 Page size: 0x1000
21:26:00.0405 7372 Boot type: Normal boot
21:26:00.0405 7372 ============================================================
21:26:00.0872 7372 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:26:00.0877 7372 ============================================================
21:26:00.0877 7372 \Device\Harddisk0\DR0:
21:26:00.0877 7372 MBR partitions:
21:26:00.0877 7372 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D4C000
21:26:00.0877 7372 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D7E800, BlocksNum 0x38607030
21:26:00.0877 7372 ============================================================
21:26:00.0902 7372 C: <-> \Device\Harddisk0\DR0\Partition2
21:26:00.0903 7372 ============================================================
21:26:00.0903 7372 Initialize success
21:26:00.0903 7372 ============================================================
21:26:08.0354 7976 ============================================================
21:26:08.0354 7976 Scan started
21:26:08.0354 7976 Mode: Manual;
21:26:08.0354 7976 ============================================================
21:26:08.0963 7976 ================ Scan system memory ========================
21:26:08.0968 7976 System memory - ok
21:26:08.0968 7976 ================ Scan services =============================
21:26:09.0218 7976 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
21:26:09.0223 7976 1394ohci - ok
21:26:09.0278 7976 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
21:26:09.0281 7976 ACPI - ok
21:26:09.0336 7976 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
21:26:09.0336 7976 AcpiPmi - ok
21:26:09.0486 7976 [ B1EA9681502EE57F87DB71D726288A5B ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:26:09.0488 7976 AdobeARMservice - ok
21:26:09.0558 7976 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
21:26:09.0563 7976 adp94xx - ok
21:26:09.0611 7976 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
21:26:09.0613 7976 adpahci - ok
21:26:09.0668 7976 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
21:26:09.0668 7976 adpu320 - ok
21:26:09.0698 7976 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:26:09.0701 7976 AeLookupSvc - ok
21:26:09.0778 7976 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
21:26:09.0778 7976 AESTFilters - ok
21:26:09.0859 7976 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
21:26:09.0863 7976 AFD - ok
21:26:09.0918 7976 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
21:26:09.0919 7976 agp440 - ok
21:26:09.0963 7976 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
21:26:09.0964 7976 ALG - ok
21:26:10.0024 7976 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
21:26:10.0025 7976 aliide - ok
21:26:10.0084 7976 [ 388E79AF1C9E4D84A8559FA77F804CF6 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
21:26:10.0087 7976 AMD External Events Utility - ok
21:26:10.0151 7976 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
21:26:10.0152 7976 amdide - ok
21:26:10.0198 7976 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
21:26:10.0199 7976 AmdK8 - ok
21:26:10.0378 7976 [ 79A11CB10FF02A8425DABBB040249F7D ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
21:26:10.0409 7976 amdkmdag - ok
21:26:10.0476 7976 [ 6F6D47246FBB0CF65619684A0F89179E ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
21:26:10.0477 7976 amdkmdap - ok
21:26:10.0519 7976 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
21:26:10.0520 7976 AmdPPM - ok
21:26:10.0586 7976 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
21:26:10.0587 7976 amdsata - ok
21:26:10.0635 7976 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
21:26:10.0636 7976 amdsbs - ok
21:26:10.0659 7976 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
21:26:10.0660 7976 amdxata - ok
21:26:10.0712 7976 [ 9C59BF508C5D408BB348254E0BA2EE30 ] androidusb C:\Windows\system32\Drivers\androidusb.sys
21:26:10.0713 7976 androidusb - ok
21:26:10.0776 7976 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
21:26:10.0777 7976 AppID - ok
21:26:10.0800 7976 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
21:26:10.0801 7976 AppIDSvc - ok
21:26:10.0860 7976 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
21:26:10.0861 7976 Appinfo - ok
21:26:10.0916 7976 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
21:26:10.0917 7976 arc - ok
21:26:10.0929 7976 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
21:26:10.0930 7976 arcsas - ok
21:26:11.0086 7976 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:26:11.0087 7976 aspnet_state - ok
21:26:11.0130 7976 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:26:11.0131 7976 AsyncMac - ok
21:26:11.0203 7976 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
21:26:11.0204 7976 atapi - ok
21:26:11.0272 7976 [ 2D648572BA9A610952FCAFBA1E119C2D ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
21:26:11.0273 7976 AtiHdmiService - ok
21:26:11.0338 7976 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:26:11.0346 7976 AudioEndpointBuilder - ok
21:26:11.0371 7976 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
21:26:11.0376 7976 AudioSrv - ok
21:26:11.0499 7976 [ EAD65493EDBA0EBEA2192D46B938298E ] Autodesk Licensing Service C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
21:26:11.0500 7976 Autodesk Licensing Service - ok
21:26:11.0719 7976 [ 587EFD6A3A30A35A27904D21AE1FB882 ] AVP C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
21:26:11.0722 7976 AVP - ok
21:26:11.0782 7976 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
21:26:11.0784 7976 AxInstSV - ok
21:26:11.0843 7976 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
21:26:11.0848 7976 b06bdrv - ok
21:26:11.0919 7976 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
21:26:11.0924 7976 b57nd60a - ok
21:26:11.0984 7976 [ AC4E2D84DE54CD3A013AEFF0CC56095C ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
21:26:11.0984 7976 BCM42RLY - ok
21:26:12.0084 7976 [ 8B5D16D20774FC3727F44E161BE2C0AC ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
21:26:12.0109 7976 BCM43XX - ok
21:26:12.0161 7976 [ D224B2E6BB543F1D8F1177D57FEC2950 ] BcmVWL C:\Windows\system32\DRIVERS\bcmvwl64.sys
21:26:12.0164 7976 BcmVWL - ok
21:26:12.0216 7976 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
21:26:12.0219 7976 BDESVC - ok
21:26:12.0286 7976 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
21:26:12.0286 7976 Beep - ok
21:26:12.0344 7976 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
21:26:12.0354 7976 BITS - ok
21:26:12.0406 7976 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
21:26:12.0406 7976 blbdrive - ok
21:26:12.0449 7976 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:26:12.0451 7976 bowser - ok
21:26:12.0501 7976 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:26:12.0501 7976 BrFiltLo - ok
21:26:12.0521 7976 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:26:12.0521 7976 BrFiltUp - ok
21:26:12.0561 7976 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
21:26:12.0564 7976 Browser - ok
21:26:12.0589 7976 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
21:26:12.0589 7976 Brserid - ok
21:26:12.0618 7976 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
21:26:12.0619 7976 BrSerWdm - ok
21:26:12.0654 7976 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
21:26:12.0655 7976 BrUsbMdm - ok
21:26:12.0666 7976 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
21:26:12.0667 7976 BrUsbSer - ok
21:26:12.0738 7976 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
21:26:12.0739 7976 BthEnum - ok
21:26:12.0779 7976 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
21:26:12.0780 7976 BTHMODEM - ok
21:26:12.0807 7976 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
21:26:12.0809 7976 BthPan - ok
21:26:12.0878 7976 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
21:26:12.0883 7976 BTHPORT - ok
21:26:12.0941 7976 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
21:26:12.0943 7976 bthserv - ok
21:26:12.0973 7976 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
21:26:12.0974 7976 BTHUSB - ok
21:26:13.0021 7976 [ D3466F77C2C49C6E393BA5FBA963A33E ] btusbflt C:\Windows\system32\drivers\btusbflt.sys
21:26:13.0022 7976 btusbflt - ok
21:26:13.0046 7976 [ AF838D8029AE7C27470862D63FA54D24 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
21:26:13.0047 7976 btwaudio - ok
21:26:13.0087 7976 [ 5C849BD7C78791C5CEE9F4651D7FE38D ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
21:26:13.0089 7976 btwavdt - ok
21:26:13.0156 7976 [ 10FFB5FA51D5713D872B41A59DFC2213 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
21:26:13.0163 7976 btwdins - ok
21:26:13.0177 7976 [ 6149301DC3F81D6F9667A3FBAC410975 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
21:26:13.0178 7976 btwl2cap - ok
21:26:13.0194 7976 [ 3E1991AFA851A36DC978B0A1B0535C8B ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
21:26:13.0195 7976 btwrchid - ok
21:26:13.0225 7976 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:26:13.0226 7976 cdfs - ok
21:26:13.0293 7976 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
21:26:13.0294 7976 cdrom - ok
21:26:13.0353 7976 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
21:26:13.0355 7976 CertPropSvc - ok
21:26:13.0401 7976 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
21:26:13.0402 7976 circlass - ok
21:26:13.0435 7976 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
21:26:13.0438 7976 CLFS - ok
21:26:13.0517 7976 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:26:13.0518 7976 clr_optimization_v2.0.50727_32 - ok
21:26:13.0560 7976 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:26:13.0562 7976 clr_optimization_v2.0.50727_64 - ok
21:26:13.0662 7976 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:26:13.0664 7976 clr_optimization_v4.0.30319_32 - ok
21:26:13.0710 7976 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:26:13.0712 7976 clr_optimization_v4.0.30319_64 - ok
21:26:13.0764 7976 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
21:26:13.0765 7976 CmBatt - ok
21:26:13.0782 7976 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
21:26:13.0783 7976 cmdide - ok
21:26:13.0832 7976 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
21:26:13.0836 7976 CNG - ok
21:26:13.0878 7976 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
21:26:13.0879 7976 Compbatt - ok
21:26:13.0934 7976 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
21:26:13.0935 7976 CompositeBus - ok
21:26:13.0958 7976 COMSysApp - ok
21:26:13.0983 7976 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
21:26:13.0984 7976 crcdisk - ok
21:26:14.0033 7976 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:26:14.0036 7976 CryptSvc - ok
21:26:14.0104 7976 [ FBE228ABEAB2BE13B9C3A3A112D4D8DC ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
21:26:14.0106 7976 CtClsFlt - ok
21:26:14.0236 7976 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
21:26:14.0243 7976 cvhsvc - ok
21:26:14.0308 7976 [ B1C55A95006D621D04FE4A23F86C0A54 ] DCamUSBEMPIA C:\Windows\system32\DRIVERS\emDevice64.sys
21:26:14.0310 7976 DCamUSBEMPIA - ok
21:26:14.0365 7976 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
21:26:14.0371 7976 DcomLaunch - ok
21:26:14.0402 7976 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
21:26:14.0405 7976 defragsvc - ok
21:26:14.0461 7976 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:26:14.0462 7976 DfsC - ok
21:26:14.0526 7976 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
21:26:14.0530 7976 Dhcp - ok
21:26:14.0549 7976 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
21:26:14.0551 7976 discache - ok
21:26:14.0614 7976 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
21:26:14.0615 7976 Disk - ok
21:26:14.0678 7976 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:26:14.0680 7976 Dnscache - ok
21:26:14.0727 7976 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
21:26:14.0730 7976 dot3svc - ok
21:26:14.0792 7976 [ B42ED0320C6E41102FDE0005154849BB ] dot4 C:\Windows\system32\DRIVERS\Dot4.sys
21:26:14.0794 7976 dot4 - ok
21:26:14.0871 7976 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\drivers\Dot4Prt.sys
21:26:14.0872 7976 Dot4Print - ok
21:26:14.0943 7976 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
21:26:14.0944 7976 dot4usb - ok
21:26:14.0988 7976 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
21:26:14.0991 7976 DPS - ok
21:26:15.0035 7976 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:26:15.0035 7976 drmkaud - ok
21:26:15.0097 7976 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:26:15.0107 7976 DXGKrnl - ok
21:26:15.0140 7976 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
21:26:15.0142 7976 EapHost - ok
21:26:15.0240 7976 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
21:26:15.0262 7976 ebdrv - ok
21:26:15.0305 7976 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
21:26:15.0306 7976 EFS - ok
21:26:15.0386 7976 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
21:26:15.0392 7976 ehRecvr - ok
21:26:15.0415 7976 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
21:26:15.0416 7976 ehSched - ok
21:26:15.0472 7976 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
21:26:15.0477 7976 elxstor - ok
21:26:15.0543 7976 [ 8543BB84CD5872CD1619183F5CBBE3F9 ] emAudio C:\Windows\system32\drivers\emAudio64.sys
21:26:15.0545 7976 emAudio - ok
21:26:15.0590 7976 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
21:26:15.0591 7976 ErrDev - ok
21:26:15.0657 7976 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
21:26:15.0661 7976 EventSystem - ok
21:26:15.0688 7976 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
21:26:15.0690 7976 exfat - ok
21:26:15.0714 7976 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:26:15.0715 7976 fastfat - ok
21:26:15.0765 7976 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
21:26:15.0769 7976 Fax - ok
21:26:15.0799 7976 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
21:26:15.0799 7976 fdc - ok
21:26:15.0825 7976 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
21:26:15.0826 7976 fdPHost - ok
21:26:15.0839 7976 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
21:26:15.0840 7976 FDResPub - ok
21:26:15.0849 7976 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:26:15.0850 7976 FileInfo - ok
21:26:15.0864 7976 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:26:15.0865 7976 Filetrace - ok
21:26:15.0898 7976 [ 73FBB50C4D92ADC30A9D57A269489A0B ] FiltUSBEMPIA C:\Windows\system32\DRIVERS\emFilter64.sys
21:26:15.0899 7976 FiltUSBEMPIA - ok
21:26:15.0998 7976 [ 1F63900E2EB00101B9ACA2B7A870704E ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
21:26:16.0004 7976 FLEXnet Licensing Service - ok
21:26:16.0045 7976 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
21:26:16.0045 7976 flpydisk - ok
21:26:16.0094 7976 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:26:16.0096 7976 FltMgr - ok
21:26:16.0160 7976 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
21:26:16.0169 7976 FontCache - ok
21:26:16.0239 7976 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:26:16.0240 7976 FontCache3.0.0.0 - ok
21:26:16.0272 7976 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
21:26:16.0273 7976 FsDepends - ok
21:26:16.0324 7976 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:26:16.0325 7976 Fs_Rec - ok
21:26:16.0388 7976 [ FA169871D8FADCC6539C4E8726610286 ] FTDIBUS C:\Windows\system32\drivers\ftdibus.sys
21:26:16.0390 7976 FTDIBUS - ok
21:26:16.0427 7976 [ 24237091348D1EFB5635A1CF9649E311 ] FTSER2K C:\Windows\system32\drivers\ftser2k.sys
21:26:16.0428 7976 FTSER2K - ok
21:26:16.0490 7976 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
21:26:16.0493 7976 fvevol - ok
21:26:16.0546 7976 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
21:26:16.0547 7976 gagp30kx - ok
21:26:16.0628 7976 [ 14908F4F9005C29DE8F5587E271390EE ] gfibto C:\Windows\system32\drivers\gfibto.sys
21:26:16.0629 7976 gfibto - ok
21:26:16.0692 7976 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
21:26:16.0700 7976 gpsvc - ok
21:26:16.0831 7976 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:26:16.0833 7976 gupdate - ok
21:26:16.0880 7976 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:26:16.0881 7976 gupdatem - ok
21:26:16.0912 7976 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
21:26:16.0913 7976 hcw85cir - ok
21:26:16.0988 7976 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:26:16.0991 7976 HdAudAddService - ok
21:26:17.0047 7976 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
21:26:17.0049 7976 HDAudBus - ok
21:26:17.0094 7976 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
21:26:17.0095 7976 HECIx64 - ok
21:26:17.0125 7976 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
21:26:17.0126 7976 HidBatt - ok
21:26:17.0171 7976 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
21:26:17.0173 7976 HidBth - ok
21:26:17.0194 7976 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
21:26:17.0195 7976 HidIr - ok
21:26:17.0229 7976 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
21:26:17.0230 7976 hidserv - ok
21:26:17.0295 7976 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
21:26:17.0296 7976 HidUsb - ok
21:26:17.0337 7976 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
21:26:17.0339 7976 hkmsvc - ok
21:26:17.0406 7976 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:26:17.0410 7976 HomeGroupListener - ok
21:26:17.0450 7976 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:26:17.0455 7976 HomeGroupProvider - ok
21:26:17.0504 7976 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
21:26:17.0505 7976 HpSAMD - ok
21:26:17.0534 7976 hshld - ok
21:26:17.0602 7976 [ A60C877E1CD3AA2E4E5CCD8AF305C0F1 ] HssDrv C:\Windows\system32\DRIVERS\HssDrv.sys
21:26:17.0603 7976 HssDrv - ok
21:26:17.0643 7976 [ F919DAECB72C5339BB7BAD519DFB35F4 ] HssDRV6 C:\Windows\system32\DRIVERS\hssdrv6.sys
21:26:17.0644 7976 HssDRV6 - ok
21:26:17.0668 7976 HssSrv - ok
21:26:17.0677 7976 HssWd - ok
21:26:17.0746 7976 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:26:17.0752 7976 HTTP - ok
21:26:17.0791 7976 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
21:26:17.0792 7976 hwpolicy - ok
21:26:17.0858 7976 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
21:26:17.0860 7976 i8042prt - ok
21:26:17.0906 7976 [ 2064090C9FAAD92C090D77E50E735B2E ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
21:26:17.0910 7976 iaStor - ok
21:26:18.0016 7976 [ A9BE186ABF28B3D3D698CB855EDF457E ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
21:26:18.0017 7976 IAStorDataMgrSvc - ok
21:26:18.0056 7976 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
21:26:18.0059 7976 iaStorV - ok
21:26:18.0136 7976 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:26:18.0143 7976 idsvc - ok
21:26:18.0340 7976 [ A87261EF1546325B559374F5689CF5BC ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
21:26:18.0370 7976 igfx - ok
21:26:18.0419 7976 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
21:26:18.0420 7976 iirsp - ok
21:26:18.0492 7976 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
21:26:18.0500 7976 IKEEXT - ok
21:26:18.0549 7976 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
21:26:18.0550 7976 intelide - ok
21:26:18.0587 7976 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
21:26:18.0588 7976 intelppm - ok
21:26:18.0611 7976 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:26:18.0613 7976 IPBusEnum - ok
21:26:18.0650 7976 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:26:18.0652 7976 IpFilterDriver - ok
21:26:18.0703 7976 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
21:26:18.0704 7976 IPMIDRV - ok
21:26:18.0763 7976 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
21:26:18.0765 7976 IPNAT - ok
21:26:18.0799 7976 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:26:18.0800 7976 IRENUM - ok
21:26:18.0839 7976 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
21:26:18.0840 7976 isapnp - ok
21:26:18.0883 7976 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
21:26:18.0886 7976 iScsiPrt - ok
21:26:18.0919 7976 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
21:26:18.0920 7976 kbdclass - ok
21:26:18.0963 7976 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
21:26:18.0964 7976 kbdhid - ok
21:26:18.0972 7976 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
21:26:18.0974 7976 KeyIso - ok
21:26:19.0045 7976 [ 8B5219318DF5895ABD230C373F2DF18A ] kl1 C:\Windows\system32\DRIVERS\kl1.sys
21:26:19.0050 7976 kl1 - ok
21:26:19.0135 7976 [ 65F3B81FA285EAB641F5E6EF7AEB984D ] KLIF C:\Windows\system32\DRIVERS\klif.sys
21:26:19.0141 7976 KLIF - ok
21:26:19.0176 7976 [ 9BD99E1AB3F664120AB95C35F9EC1EB0 ] KLIM6 C:\Windows\system32\DRIVERS\klim6.sys
21:26:19.0177 7976 KLIM6 - ok
21:26:19.0233 7976 [ 2C43FD500522EF3B8C283A5846B7FC41 ] klkbdflt C:\Windows\system32\DRIVERS\klkbdflt.sys
21:26:19.0234 7976 klkbdflt - ok
21:26:19.0279 7976 [ 70A6D2E292017EC47949696F51ABE18D ] klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys
21:26:19.0280 7976 klmouflt - ok
21:26:19.0336 7976 [ A8081ED8D48FA611D11DB97F49A5343D ] kltdi C:\Windows\system32\DRIVERS\kltdi.sys
21:26:19.0337 7976 kltdi - ok
21:26:19.0385 7976 [ 185D21CB8F10CFB351FF65DA88C18BC9 ] kneps C:\Windows\system32\DRIVERS\kneps.sys
21:26:19.0387 7976 kneps - ok
21:26:19.0424 7976 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:26:19.0425 7976 KSecDD - ok
21:26:19.0474 7976 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
21:26:19.0475 7976 KSecPkg - ok
21:26:19.0521 7976 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
21:26:19.0522 7976 ksthunk - ok
21:26:19.0581 7976 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
21:26:19.0587 7976 KtmRm - ok
21:26:19.0643 7976 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
21:26:19.0648 7976 LanmanServer - ok
21:26:19.0706 7976 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:26:19.0710 7976 LanmanWorkstation - ok
21:26:19.0771 7976 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:26:19.0772 7976 lltdio - ok
21:26:19.0839 7976 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:26:19.0844 7976 lltdsvc - ok
21:26:19.0856 7976 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
21:26:19.0858 7976 lmhosts - ok
21:26:19.0920 7976 [ 23DE5B62B0445A6F874BE633C95B483E ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
21:26:19.0923 7976 LMS - ok
21:26:19.0966 7976 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
21:26:19.0967 7976 LSI_FC - ok
21:26:19.0991 7976 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
21:26:19.0993 7976 LSI_SAS - ok
21:26:20.0012 7976 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:26:20.0013 7976 LSI_SAS2 - ok
21:26:20.0027 7976 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:26:20.0028 7976 LSI_SCSI - ok
21:26:20.0048 7976 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
21:26:20.0050 7976 luafv - ok
21:26:20.0105 7976 [ 024DA28053D57E9E32BEE52600576BBB ] MarvinBus C:\Windows\system32\DRIVERS\MarvinBus64.sys
21:26:20.0108 7976 MarvinBus - ok
21:26:20.0192 7976 [ 414008B66A575BEDD6AFEA6B13200CA0 ] massfilter_hs C:\Windows\system32\drivers\massfilter_hs.sys
21:26:20.0193 7976 massfilter_hs - ok
21:26:20.0238 7976 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:26:20.0241 7976 Mcx2Svc - ok
21:26:20.0268 7976 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
21:26:20.0269 7976 megasas - ok
21:26:20.0286 7976 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
21:26:20.0289 7976 MegaSR - ok
21:26:20.0447 7976 [ AA0C4A2C33CE075DF2C272D678734991 ] mi-raysat_3dsMax2009_32 C:\Program Files (x86)\Autodesk\3ds Max 2009\mentalray\satellite\raysat_3dsMax2009_32server.exe
21:26:20.0449 7976 mi-raysat_3dsMax2009_32 - ok
21:26:20.0585 7976 [ AA0C4A2C33CE075DF2C272D678734991 ] mi-raysat_3dsMax2009_64 C:\Program Files\Autodesk\3ds Max 2009\mentalray\satellite\raysat_3dsMax2009_64server.exe
21:26:20.0587 7976 mi-raysat_3dsMax2009_64 - ok
21:26:20.0638 7976 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
21:26:20.0641 7976 MMCSS - ok
21:26:20.0674 7976 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
21:26:20.0675 7976 Modem - ok
21:26:20.0720 7976 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:26:20.0721 7976 monitor - ok
21:26:20.0785 7976 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
21:26:20.0786 7976 mouclass - ok
21:26:20.0825 7976 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
21:26:20.0826 7976 mouhid - ok
21:26:20.0872 7976 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
21:26:20.0874 7976 mountmgr - ok
21:26:20.0934 7976 [ 15D5398EED42C2504BB3D4FC875C15D1 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:26:20.0935 7976 MozillaMaintenance - ok
21:26:20.0967 7976 mozyproFilter - ok
21:26:21.0002 7976 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
21:26:21.0003 7976 mpio - ok
21:26:21.0036 7976 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:26:21.0037 7976 mpsdrv - ok
21:26:21.0079 7976 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:26:21.0081 7976 MRxDAV - ok
21:26:21.0127 7976 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:26:21.0129 7976 mrxsmb - ok
21:26:21.0180 7976 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:26:21.0183 7976 mrxsmb10 - ok
21:26:21.0205 7976 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:26:21.0207 7976 mrxsmb20 - ok
21:26:21.0244 7976 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
21:26:21.0245 7976 msahci - ok
21:26:21.0277 7976 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
21:26:21.0279 7976 msdsm - ok
21:26:21.0306 7976 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
21:26:21.0309 7976 MSDTC - ok
21:26:21.0368 7976 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:26:21.0369 7976 Msfs - ok
21:26:21.0404 7976 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
21:26:21.0405 7976 mshidkmdf - ok
21:26:21.0451 7976 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
21:26:21.0452 7976 msisadrv - ok
21:26:21.0486 7976 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:26:21.0489 7976 MSiSCSI - ok
21:26:21.0494 7976 msiserver - ok
21:26:21.0547 7976 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:26:21.0548 7976 MSKSSRV - ok
21:26:21.0587 7976 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:26:21.0588 7976 MSPCLOCK - ok
21:26:21.0625 7976 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:26:21.0626 7976 MSPQM - ok
21:26:21.0675 7976 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:26:21.0678 7976 MsRPC - ok
21:26:21.0727 7976 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
21:26:21.0728 7976 mssmbios - ok
21:26:21.0810 7976 MSSQL$SQLEXPRESS - ok
21:26:21.0923 7976 [ 7A2A8C975356858EB38466A6B1592E8D ] MSSQLServerADHelper100 c:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
21:26:21.0925 7976 MSSQLServerADHelper100 - ok
21:26:21.0970 7976 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:26:21.0971 7976 MSTEE - ok
21:26:22.0185 7976 [ CB4A082AF58D1A0969F931816D5CFB05 ] msvsmon90 C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe
21:26:22.0210 7976 msvsmon90 - ok
21:26:22.0230 7976 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
21:26:22.0230 7976 MTConfig - ok
21:26:22.0250 7976 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
21:26:22.0255 7976 Mup - ok
21:26:22.0300 7976 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
21:26:22.0305 7976 napagent - ok
21:26:22.0355 7976 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:26:22.0355 7976 NativeWifiP - ok
21:26:22.0460 7976 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
21:26:22.0470 7976 NDIS - ok
21:26:22.0515 7976 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
21:26:22.0520 7976 NdisCap - ok
21:26:22.0560 7976 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:26:22.0560 7976 NdisTapi - ok
21:26:22.0615 7976 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:26:22.0615 7976 Ndisuio - ok
21:26:22.0655 7976 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:26:22.0655 7976 NdisWan - ok
21:26:22.0705 7976 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:26:22.0705 7976 NDProxy - ok
21:26:22.0755 7976 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:26:22.0755 7976 NetBIOS - ok
21:26:22.0807 7976 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
21:26:22.0810 7976 NetBT - ok
21:26:22.0827 7976 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
21:26:22.0830 7976 Netlogon - ok
21:26:22.0897 7976 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
21:26:22.0902 7976 Netman - ok
21:26:22.0960 7976 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:26:22.0962 7976 NetMsmqActivator - ok
21:26:22.0980 7976 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:26:22.0982 7976 NetPipeActivator - ok
21:26:23.0030 7976 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
21:26:23.0037 7976 netprofm - ok
21:26:23.0080 7976 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:26:23.0082 7976 NetTcpActivator - ok
21:26:23.0087 7976 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:26:23.0090 7976 NetTcpPortSharing - ok
21:26:23.0122 7976 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
21:26:23.0125 7976 nfrd960 - ok
21:26:23.0192 7976 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
21:26:23.0197 7976 NlaSvc - ok
21:26:23.0215 7976 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:26:23.0215 7976 Npfs - ok
21:26:23.0247 7976 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
21:26:23.0250 7976 nsi - ok
21:26:23.0275 7976 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:26:23.0275 7976 nsiproxy - ok
21:26:23.0362 7976 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:26:23.0375 7976 Ntfs - ok
21:26:23.0402 7976 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
21:26:23.0402 7976 Null - ok
21:26:23.0460 7976 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
21:26:23.0460 7976 nvraid - ok
21:26:23.0502 7976 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
21:26:23.0502 7976 nvstor - ok
21:26:23.0540 7976 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
21:26:23.0542 7976 nv_agp - ok
21:26:23.0577 7976 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
21:26:23.0577 7976 ohci1394 - ok
21:26:23.0640 7976 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:26:23.0641 7976 ose - ok
21:26:23.0774 7976 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:26:23.0796 7976 osppsvc - ok
21:26:23.0835 7976 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
21:26:23.0837 7976 p2pimsvc - ok
21:26:23.0862 7976 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
21:26:23.0866 7976 p2psvc - ok
21:26:23.0894 7976 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
21:26:23.0895 7976 Parport - ok
21:26:23.0934 7976 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:26:23.0935 7976 partmgr - ok
21:26:23.0962 7976 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
21:26:23.0964 7976 PcaSvc - ok
21:26:24.0007 7976 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
21:26:24.0009 7976 pci - ok
21:26:24.0051 7976 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
21:26:24.0051 7976 pciide - ok
21:26:24.0087 7976 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
21:26:24.0089 7976 pcmcia - ok
21:26:24.0109 7976 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
21:26:24.0110 7976 pcw - ok
21:26:24.0130 7976 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:26:24.0134 7976 PEAUTH - ok
21:26:24.0237 7976 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
21:26:24.0240 7976 PerfHost - ok
21:26:24.0320 7976 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
21:26:24.0332 7976 pla - ok
21:26:24.0414 7976 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:26:24.0419 7976 PlugPlay - ok
21:26:24.0445 7976 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
21:26:24.0447 7976 PNRPAutoReg - ok
21:26:24.0469 7976 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
21:26:24.0474 7976 PNRPsvc - ok
21:26:24.0521 7976 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:26:24.0526 7976 PolicyAgent - ok
21:26:24.0554 7976 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
21:26:24.0557 7976 Power - ok
21:26:24.0612 7976 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:26:24.0614 7976 PptpMiniport - ok
21:26:24.0642 7976 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
21:26:24.0644 7976 Processor - ok
21:26:24.0701 7976 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
21:26:24.0705 7976 ProfSvc - ok
21:26:24.0716 7976 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
21:26:24.0717 7976 ProtectedStorage - ok
21:26:24.0768 7976 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
21:26:24.0770 7976 Psched - ok
21:26:24.0829 7976 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
21:26:24.0831 7976 PxHlpa64 - ok
21:26:24.0929 7976 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
21:26:24.0944 7976 ql2300 - ok
21:26:24.0966 7976 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
21:26:24.0967 7976 ql40xx - ok
21:26:24.0999 7976 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
21:26:25.0001 7976 QWAVE - ok
21:26:25.0017 7976 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:26:25.0018 7976 QWAVEdrv - ok
21:26:25.0046 7976 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:26:25.0047 7976 RasAcd - ok
21:26:25.0093 7976 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
21:26:25.0094 7976 RasAgileVpn - ok
21:26:25.0118 7976 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
21:26:25.0121 7976 RasAuto - ok
21:26:25.0160 7976 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:26:25.0162 7976 Rasl2tp - ok
21:26:25.0214 7976 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
21:26:25.0218 7976 RasMan - ok
21:26:25.0243 7976 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:26:25.0245 7976 RasPppoe - ok
21:26:25.0289 7976 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:26:25.0290 7976 RasSstp - ok
21:26:25.0338 7976 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:26:25.0341 7976 rdbss - ok
21:26:25.0354 7976 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
21:26:25.0355 7976 rdpbus - ok
21:26:25.0370 7976 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:26:25.0371 7976 RDPCDD - ok
21:26:25.0406 7976 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:26:25.0407 7976 RDPENCDD - ok
21:26:25.0422 7976 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
21:26:25.0423 7976 RDPREFMP - ok
21:26:25.0468 7976 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:26:25.0471 7976 RDPWD - ok
21:26:25.0541 7976 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
21:26:25.0544 7976 rdyboost - ok
21:26:25.0592 7976 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
21:26:25.0594 7976 RemoteAccess - ok
21:26:25.0621 7976 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:26:25.0625 7976 RemoteRegistry - ok
21:26:25.0693 7976 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
21:26:25.0695 7976 RFCOMM - ok
21:26:25.0745 7976 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
21:26:25.0748 7976 RpcEptMapper - ok
21:26:25.0767 7976 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
21:26:25.0769 7976 RpcLocator - ok
21:26:25.0822 7976 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
21:26:25.0830 7976 RpcSs - ok
21:26:25.0870 7976 [ CD553B8633466A6D1C115812F2619F1F ] RsFx0103 C:\Windows\system32\DRIVERS\RsFx0103.sys
21:26:25.0872 7976 RsFx0103 - ok
21:26:25.0914 7976 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:26:25.0915 7976 rspndr - ok
21:26:25.0969 7976 [ 30F463768D5143BFD7B2DF822B53CF4D ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
21:26:25.0972 7976 RSUSBSTOR - ok
21:26:26.0034 7976 [ 16D4E350420BAA7E63E16E3FC033E1F5 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
21:26:26.0039 7976 RTL8167 - ok
21:26:26.0050 7976 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
21:26:26.0054 7976 SamSs - ok
21:26:26.0096 7976 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
21:26:26.0097 7976 sbp2port - ok
21:26:26.0154 7976 [ EECBBF7D76300E5558D316983961FFC1 ] ScanUSBEMPIA C:\Windows\system32\DRIVERS\emScan64.sys
21:26:26.0155 7976 ScanUSBEMPIA - ok
21:26:26.0186 7976 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:26:26.0190 7976 SCardSvr - ok
21:26:26.0234 7976 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
21:26:26.0235 7976 scfilter - ok
21:26:26.0299 7976 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
21:26:26.0309 7976 Schedule - ok
21:26:26.0365 7976 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
21:26:26.0367 7976 SCPolicySvc - ok
21:26:26.0405 7976 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:26:26.0409 7976 SDRSVC - ok
21:26:26.0458 7976 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:26:26.0459 7976 secdrv - ok
21:26:26.0500 7976 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
21:26:26.0503 7976 seclogon - ok
21:26:26.0549 7976 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
21:26:26.0553 7976 SENS - ok
21:26:26.0590 7976 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
21:26:26.0592 7976 SensrSvc - ok
21:26:26.0621 7976 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
21:26:26.0622 7976 Serenum - ok
21:26:26.0660 7976 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
21:26:26.0662 7976 Serial - ok
21:26:26.0728 7976 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
21:26:26.0729 7976 sermouse - ok
21:26:26.0780 7976 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
21:26:26.0785 7976 SessionEnv - ok
21:26:26.0819 7976 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
21:26:26.0820 7976 sffdisk - ok
21:26:26.0836 7976 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
21:26:26.0837 7976 sffp_mmc - ok
21:26:26.0855 7976 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
21:26:26.0855 7976 sffp_sd - ok
21:26:26.0880 7976 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
21:26:26.0881 7976 sfloppy - ok
21:26:26.0951 7976 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
21:26:26.0957 7976 Sftfs - ok
21:26:27.0051 7976 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
21:26:27.0055 7976 sftlist - ok
21:26:27.0103 7976 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
21:26:27.0106 7976 Sftplay - ok
21:26:27.0120 7976 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
21:26:27.0121 7976 Sftredir - ok
21:26:27.0181 7976 [ 38F88F0DF46C4D42125EF721ABD7F6B9 ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
21:26:27.0187 7976 SftService - ok
21:26:27.0198 7976 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
21:26:27.0199 7976 Sftvol - ok
21:26:27.0254 7976 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
21:26:27.0256 7976 sftvsa - ok
21:26:27.0318 7976 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
21:26:27.0324 7976 SharedAccess - ok
21:26:27.0366 7976 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:26:27.0371 7976 ShellHWDetection - ok
21:26:27.0411 7976 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:26:27.0413 7976 SiSRaid2 - ok
21:26:27.0442 7976 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
21:26:27.0443 7976 SiSRaid4 - ok
21:26:27.0527 7976 [ 50AAD2A07BD8B90A8CFB4F6D7A4D165A ] SIUSBXP C:\Windows\system32\drivers\SiUSBXp.sys
21:26:27.0528 7976 SIUSBXP - ok
21:26:27.0620 7976 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
21:26:27.0622 7976 SkypeUpdate - ok
21:26:27.0654 7976 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:26:27.0655 7976 Smb - ok
21:26:27.0712 7976 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:26:27.0715 7976 SNMPTRAP - ok
21:26:27.0737 7976 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
21:26:27.0738 7976 spldr - ok
21:26:27.0789 7976 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
21:26:27.0796 7976 Spooler - ok
21:26:27.0916 7976 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
21:26:27.0933 7976 sppsvc - ok
21:26:27.0966 7976 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
21:26:27.0968 7976 sppuinotify - ok
21:26:28.0098 7976 [ 12E6D95CDE974B131DEFAA44BAB8B056 ] SQLAgent$SQLEXPRESS c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
21:26:28.0103 7976 SQLAgent$SQLEXPRESS - ok
21:26:28.0202 7976 [ B54B48F6D92423440C264E91225C5FF1 ] SQLBrowser c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
21:26:28.0205 7976 SQLBrowser - ok
21:26:28.0284 7976 [ 6D65985945B03CA59B67D0B73702FC7B ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
21:26:28.0286 7976 SQLWriter - ok
21:26:28.0333 7976 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
21:26:28.0337 7976 srv - ok
21:26:28.0354 7976 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:26:28.0358 7976 srv2 - ok
21:26:28.0380 7976 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:26:28.0381 7976 srvnet - ok
21:26:28.0432 7976 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:26:28.0436 7976 SSDPSRV - ok
21:26:28.0448 7976 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:26:28.0451 7976 SstpSvc - ok
21:26:28.0517 7976 [ 463E33B1EA7AF1E6EB87B66B831DB41A ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
21:26:28.0520 7976 STacSV - ok
21:26:28.0585 7976 Steam Client Service - ok
21:26:28.0625 7976 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
21:26:28.0626 7976 stexstor - ok
21:26:28.0696 7976 [ 4304B75094E106FB5423A290C95841E5 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
21:26:28.0700 7976 STHDA - ok
21:26:28.0744 7976 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
21:26:28.0751 7976 stisvc - ok
21:26:28.0793 7976 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
21:26:28.0794 7976 swenum - ok
21:26:28.0825 7976 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
21:26:28.0831 7976 swprv - ok
21:26:28.0906 7976 [ 8A3FBCB3D6D4710730D27DA4392A4863 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
21:26:28.0910 7976 SynTP - ok
21:26:28.0988 7976 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
21:26:28.0999 7976 SysMain - ok
21:26:29.0054 7976 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:26:29.0057 7976 TabletInputService - ok
21:26:29.0097 7976 [ B70DF208E97536CA9F29289E609F5B16 ] taphss C:\Windows\system32\DRIVERS\taphss.sys
21:26:29.0098 7976 taphss - ok
21:26:29.0148 7976 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
21:26:29.0154 7976 TapiSrv - ok
21:26:29.0181 7976 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
21:26:29.0183 7976 TBS - ok
21:26:29.0264 7976 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:26:29.0283 7976 Tcpip - ok
21:26:29.0375 7976 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
21:26:29.0395 7976 TCPIP6 - ok
21:26:29.0458 7976 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:26:29.0460 7976 tcpipreg - ok
21:26:29.0495 7976 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:26:29.0496 7976 TDPIPE - ok
21:26:29.0545 7976 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:26:29.0546 7976 TDTCP - ok
21:26:29.0591 7976 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:26:29.0593 7976 tdx - ok
21:26:29.0640 7976 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
21:26:29.0641 7976 TermDD - ok
21:26:29.0694 7976 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
21:26:29.0702 7976 TermService - ok
21:26:29.0730 7976 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
21:26:29.0733 7976 Themes - ok
21:26:29.0760 7976 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
21:26:29.0762 7976 THREADORDER - ok
21:26:29.0806 7976 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
21:26:29.0810 7976 TrkWks - ok
21:26:29.0876 7976 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:26:29.0878 7976 TrustedInstaller - ok
21:26:29.0927 7976 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:26:29.0928 7976 tssecsrv - ok
21:26:30.0004 7976 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
21:26:30.0006 7976 TsUsbFlt - ok
21:26:30.0062 7976 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:26:30.0064 7976 tunnel - ok
21:26:30.0122 7976 [ 825E7A1F48FB8BCFBA27C178AAB4E275 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys
21:26:30.0123 7976 TurboB - ok
21:26:30.0174 7976 [ B206BE1174D5964D49A56BB6C4E0524A ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
21:26:30.0176 7976 TurboBoost - ok
21:26:30.0318 7976 [ D7A79C395EEDA6AD2A5CD6993027A070 ] tvnserver C:\Program Files\TightVNC\tvnserver.exe
21:26:30.0332 7976 tvnserver - ok
21:26:30.0372 7976 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
21:26:30.0373 7976 uagp35 - ok
21:26:30.0426 7976 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:26:30.0429 7976 udfs - ok
21:26:30.0466 7976 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:26:30.0468 7976 UI0Detect - ok
21:26:30.0514 7976 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
21:26:30.0515 7976 uliagpkx - ok
21:26:30.0569 7976 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
21:26:30.0570 7976 umbus - ok
21:26:30.0588 7976 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
21:26:30.0588 7976 UmPass - ok
21:26:30.0739 7976 [ CC3775100ABA633984F73DFAE1F55CAE ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
21:26:30.0757 7976 UNS - ok
21:26:30.0813 7976 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
21:26:30.0819 7976 upnphost - ok
21:26:30.0875 7976 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
21:26:30.0876 7976 usbaudio - ok
21:26:30.0929 7976 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
21:26:30.0931 7976 usbccgp - ok
21:26:30.0977 7976 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
21:26:30.0978 7976 usbcir - ok
21:26:31.0021 7976 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
21:26:31.0022 7976 usbehci - ok
21:26:31.0049 7976 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
21:26:31.0052 7976 usbhub - ok
21:26:31.0087 7976 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
21:26:31.0088 7976 usbohci - ok
21:26:31.0111 7976 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
21:26:31.0112 7976 usbprint - ok
21:26:31.0162 7976 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:26:31.0164 7976 USBSTOR - ok
21:26:31.0180 7976 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
21:26:31.0181 7976 usbuhci - ok
21:26:31.0236 7976 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
21:26:31.0238 7976 usbvideo - ok
21:26:31.0262 7976 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
21:26:31.0265 7976 UxSms - ok
21:26:31.0283 7976 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
21:26:31.0285 7976 VaultSvc - ok
21:26:31.0349 7976 [ B4FFC1739B9BD3B0177B16B46CAF8420 ] VBoxNetAdp C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
21:26:31.0351 7976 VBoxNetAdp - ok
21:26:31.0371 7976 VBoxNetFlt - ok
21:26:31.0421 7976 [ 7A4CAB9EC7153741520EC8513ACDBA1D ] VBoxUSB C:\Windows\system32\Drivers\VBoxUSB.sys
21:26:31.0422 7976 VBoxUSB - ok
21:26:31.0464 7976 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
21:26:31.0465 7976 vdrvroot - ok
21:26:31.0512 7976 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
21:26:31.0519 7976 vds - ok
21:26:31.0571 7976 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
21:26:31.0572 7976 vga - ok
21:26:31.0602 7976 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
21:26:31.0604 7976 VgaSave - ok
21:26:31.0652 7976 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
21:26:31.0655 7976 vhdmp - ok
21:26:31.0690 7976 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
21:26:31.0691 7976 viaide - ok
21:26:31.0710 7976 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
21:26:31.0711 7976 volmgr - ok
21:26:31.0754 7976 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
21:26:31.0758 7976 volmgrx - ok
21:26:31.0776 7976 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
21:26:31.0779 7976 volsnap - ok
21:26:31.0827 7976 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
21:26:31.0829 7976 vsmraid - ok
21:26:32.0004 7976 [ CA64A8838B4674D14BDF88ABA2F253EA ] VSPerfDrv100 C:\Program Files (x86)\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\x64\VSPerfDrv100.sys
21:26:32.0005 7976 VSPerfDrv100 - ok
21:26:32.0081 7976 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
21:26:32.0099 7976 VSS - ok
21:26:32.0139 7976 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
21:26:32.0140 7976 vwifibus - ok
21:26:32.0149 7976 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
21:26:32.0150 7976 vwififlt - ok
21:26:32.0193 7976 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
21:26:32.0194 7976 vwifimp - ok
21:26:32.0232 7976 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
21:26:32.0236 7976 W32Time - ok
21:26:32.0250 7976 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
21:26:32.0251 7976 WacomPen - ok
21:26:32.0320 7976 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
21:26:32.0321 7976 WANARP - ok
21:26:32.0345 7976 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
21:26:32.0346 7976 Wanarpv6 - ok
21:26:32.0418 7976 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
21:26:32.0431 7976 WatAdminSvc - ok
21:26:32.0526 7976 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
21:26:32.0542 7976 wbengine - ok
21:26:32.0578 7976 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
21:26:32.0582 7976 WbioSrvc - ok
21:26:32.0638 7976 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
21:26:32.0645 7976 wcncsvc - ok
21:26:32.0658 7976 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:26:32.0661 7976 WcsPlugInService - ok
21:26:32.0692 7976 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
21:26:32.0693 7976 Wd - ok
21:26:32.0754 7976 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
21:26:32.0763 7976 Wdf01000 - ok
21:26:32.0786 7976 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
21:26:32.0788 7976 WdiServiceHost - ok
21:26:32.0792 7976 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
21:26:32.0794 7976 WdiSystemHost - ok
21:26:32.0837 7976 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
21:26:32.0840 7976 WebClient - ok
21:26:32.0854 7976 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
21:26:32.0857 7976 Wecsvc - ok
21:26:32.0876 7976 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
21:26:32.0878 7976 wercplsupport - ok
21:26:32.0916 7976 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
21:26:32.0918 7976 WerSvc - ok
21:26:32.0970 7976 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
21:26:32.0971 7976 WfpLwf - ok
21:26:33.0024 7976 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
21:26:33.0027 7976 WimFltr - ok
21:26:33.0052 7976 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
21:26:33.0052 7976 WIMMount - ok
21:26:33.0063 7976 WinHttpAutoProxySvc - ok
21:26:33.0117 7976 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
21:26:33.0120 7976 Winmgmt - ok
21:26:33.0207 7976 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
21:26:33.0224 7976 WinRM - ok
21:26:33.0299 7976 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
21:26:33.0300 7976 WinUsb - ok
21:26:33.0338 7976 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
21:26:33.0346 7976 Wlansvc - ok
21:26:33.0524 7976 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:26:33.0539 7976 wlidsvc - ok
21:26:33.0594 7976 [ DE816A0624D54D68E1FB8A9028DCF81A ] wltrysvc C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
21:26:33.0594 7976 wltrysvc - ok
21:26:33.0654 7976 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
21:26:33.0654 7976 WmiAcpi - ok
21:26:33.0684 7976 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
21:26:33.0687 7976 wmiApSrv - ok
21:26:33.0729 7976 WMPNetworkSvc - ok
21:26:33.0752 7976 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
21:26:33.0757 7976 WPCSvc - ok
21:26:33.0804 7976 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
21:26:33.0807 7976 WPDBusEnum - ok
21:26:33.0832 7976 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
21:26:33.0832 7976 ws2ifsl - ok
21:26:33.0842 7976 WSearch - ok
21:26:33.0959 7976 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
21:26:33.0979 7976 wuauserv - ok
21:26:34.0024 7976 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
21:26:34.0024 7976 WudfPf - ok
21:26:34.0069 7976 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
21:26:34.0072 7976 WUDFRd - ok
21:26:34.0097 7976 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
21:26:34.0099 7976 wudfsvc - ok
21:26:34.0132 7976 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
21:26:34.0137 7976 WwanSvc - ok
21:26:34.0167 7976 [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
21:26:34.0172 7976 yukonw7 - ok
21:26:34.0237 7976 [ C80F87A1331B9FC21E514B0762B87EF7 ] zghsmdm C:\Windows\system32\DRIVERS\zghsmdm.sys
21:26:34.0239 7976 zghsmdm - ok
21:26:34.0274 7976 ================ Scan global ===============================
21:26:34.0309 7976 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
21:26:34.0354 7976 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
21:26:34.0364 7976 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
21:26:34.0389 7976 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
21:26:34.0422 7976 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
21:26:34.0427 7976 [Global] - ok
21:26:34.0429 7976 ================ Scan MBR ==================================
21:26:34.0439 7976 [ C3220EB08ADD62E3ED9F72A1F4E4B1BB ] \Device\Harddisk0\DR0
21:26:34.0744 7976 \Device\Harddisk0\DR0 - ok
21:26:34.0747 7976 ================ Scan VBR ==================================
21:26:34.0749 7976 [ B4A651EA79A9998884DA67ECFFB5E2E7 ] \Device\Harddisk0\DR0\Partition1
21:26:34.0752 7976 \Device\Harddisk0\DR0\Partition1 - ok
21:26:34.0787 7976 [ 9353CF31A6EC515E78353D1600509A2F ] \Device\Harddisk0\DR0\Partition2
21:26:34.0789 7976 \Device\Harddisk0\DR0\Partition2 - ok
21:26:34.0789 7976 ============================================================
21:26:34.0789 7976 Scan finished
21:26:34.0789 7976 ============================================================
21:26:34.0829 5064 Detected object count: 0
21:26:34.0829 5064 Actual detected object count: 0
21:26:39.0566 5376 Deinitialize success

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:02 PM

Posted 11 January 2013 - 11:51 AM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

#5 Adalbert

Adalbert
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:06:02 PM

Posted 11 January 2013 - 10:30 PM

I couldn't change the language to English in some of those logs, sorry, I hope it's not a huge problem.
Thanks for your help.

Logs:

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Database version: v2013.01.11.14

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Rafal :: MOBILEROSHI [administrator]

2013-01-11 16:30:36
mbam-log-2013-01-11 (16-30-36).txt

Scan type: Full scan (C:\|Q:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 641847
Time elapsed: 2 hour(s), 35 minute(s), 12 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

=====================================================================================

MiniToolBox by Farbar Version:10-01-2013
Ran by Rafal (administrator) on 11-01-2013 at 19:37:08
Running from "C:\Users\Rafal\Downloads"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Konfiguracja IP systemu Windows

Pomyślnie opr˘ľniono pamięć podręcznĄ programu rozpoznawania nazw DNS.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Karta DW1501 Wireless-N WLAN Half-Mini = Połączenie sieci bezprzewodowej (Connected)
Broadcom Virtual Wireless Adapter = Połączenie lokalne 2 (Hardware not present)
Realtek PCIe FE Family Controller = Połączenie lokalne (Media disconnected)
Urządzenie Bluetooth (sieć osobista) = Połączenie sieciowe Bluetooth (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Połączenie sieci bezprzewodowej 2 (Media disconnected)


# ----------------------------------
# Konfiguracja IPv4
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# Koniec konfiguracji IPv4



Konfiguracja IP systemu Windows

Nazwa hosta . . . . . . . . . . . : MobileRoshi
Sufiks podstawowej domeny DNS . . :
Typ węzła . . . . . . . . . . . . : Hybrydowy
Routing IP włĄczony . . . . . . . : Nie
Serwer WINS Proxy włĄczony. . . . : Nie
Lista przeszukiwania sufiks˘w DNS : Belkin

Karta Ethernet PołĄczenie lokalne* 14:

Stan nośnika . . . . . . . . . . .: Nośnik odłĄczony
Sufiks DNS konkretnego połĄczenia : hshld.com
Opis. . . . . . . . . . . . . . . : Anchorfree HSS Adapter
Adres fizyczny. . . . . . . . . . : 00-FF-12-B6-A3-B5
DHCP włĄczone . . . . . . . . . . : Tak
Autokonfiguracja włĄczona . . . . : Tak

Karta Ethernet PołĄczenie sieciowe Bluetooth:

Stan nośnika . . . . . . . . . . .: Nośnik odłĄczony
Sufiks DNS konkretnego połĄczenia :
Opis. . . . . . . . . . . . . . . : UrzĄdzenie Bluetooth (sieć osobista)
Adres fizyczny. . . . . . . . . . : C0-CB-38-B0-22-0D
DHCP włĄczone . . . . . . . . . . : Tak
Autokonfiguracja włĄczona . . . . : Tak

Karta bezprzewodowej sieci LAN PołĄczenie sieci bezprzewodowej 2:

Stan nośnika . . . . . . . . . . .: Nośnik odłĄczony
Sufiks DNS konkretnego połĄczenia :
Opis. . . . . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Adres fizyczny. . . . . . . . . . : 1C-65-9D-8B-AA-32
DHCP włĄczone . . . . . . . . . . : Tak
Autokonfiguracja włĄczona . . . . : Tak

Karta bezprzewodowej sieci LAN PołĄczenie sieci bezprzewodowej:

Sufiks DNS konkretnego połĄczenia : Belkin
Opis. . . . . . . . . . . . . . . : Karta DW1501 Wireless-N WLAN Half-Mini
Adres fizyczny. . . . . . . . . . : 1C-65-9D-8B-AA-32
DHCP włĄczone . . . . . . . . . . : Tak
Autokonfiguracja włĄczona . . . . : Tak
Adres IPv6 połĄczenia lokalnego . : fe80::71b4:e9fc:663e:68b9%11(Preferowane)
Adres IPv4. . . . . . . . . . . . . : 192.168.2.4(Preferowane)
Maska podsieci. . . . . . . . . . : 255.255.255.0
Dzierľawa uzyskana. . . . . . . . : 11 stycznia 2013 16:24:13
Dzierľawa wygasa. . . . . . . . . : 18 lutego 2149 02:05:36
Brama domyślna. . . . . . . . . . : 192.168.2.1
Serwer DHCP . . . . . . . . . . . : 192.168.2.1
Identyfikator IAID DHCPv6 . . . . : 219964829
Identyfikator DUID klienta DHCPv6 : 00-01-00-01-14-64-B1-20-F0-4D-A2-A8-22-1D
Serwery DNS . . . . . . . . . . . : 192.168.2.1
NetBIOS przez Tcpip . . . . . . . : WłĄczony

Karta Ethernet PołĄczenie lokalne:

Stan nośnika . . . . . . . . . . .: Nośnik odłĄczony
Sufiks DNS konkretnego połĄczenia :
Opis. . . . . . . . . . . . . . . : Realtek PCIe FE Family Controller
Adres fizyczny. . . . . . . . . . : F0-4D-A2-A8-22-1D
DHCP włĄczone . . . . . . . . . . : Tak
Autokonfiguracja włĄczona . . . . : Tak

Karta tunelowa isatap.{1D01426C-A498-4323-B68D-019F65687A5D}:

Stan nośnika . . . . . . . . . . .: Nośnik odłĄczony
Sufiks DNS konkretnego połĄczenia :
Opis. . . . . . . . . . . . . . . : Karta Microsoft ISATAP
Adres fizyczny. . . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP włĄczone . . . . . . . . . . : Nie
Autokonfiguracja włĄczona . . . . : Tak

Karta tunelowa isatap.{F3AC138C-6B3C-4F54-9741-7F0E838595A1}:

Stan nośnika . . . . . . . . . . .: Nośnik odłĄczony
Sufiks DNS konkretnego połĄczenia :
Opis. . . . . . . . . . . . . . . : Karta Microsoft ISATAP #2
Adres fizyczny. . . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP włĄczone . . . . . . . . . . : Nie
Autokonfiguracja włĄczona . . . . : Tak

Karta tunelowa isatap.{ECD9D89D-A221-4A96-8084-CC5890705A12}:

Stan nośnika . . . . . . . . . . .: Nośnik odłĄczony
Sufiks DNS konkretnego połĄczenia :
Opis. . . . . . . . . . . . . . . : Karta Microsoft ISATAP #3
Adres fizyczny. . . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP włĄczone . . . . . . . . . . : Nie
Autokonfiguracja włĄczona . . . . : Tak

Karta tunelowa Teredo Tunneling Pseudo-Interface:

Stan nośnika . . . . . . . . . . .: Nośnik odłĄczony
Sufiks DNS konkretnego połĄczenia :
Opis. . . . . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Adres fizyczny. . . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP włĄczone . . . . . . . . . . : Nie
Autokonfiguracja włĄczona . . . . : Tak
Serwer:
Address: 192.168.2.1

Nazwa: google.com
Addresses: 2607:f8b0:4006:800::1005
74.125.226.227
74.125.226.232
74.125.226.228
74.125.226.230
74.125.226.231
74.125.226.224
74.125.226.229
74.125.226.225
74.125.226.226
74.125.226.233
74.125.226.238


Badanie google.com [74.125.226.196] z 32 bajtami danych:
Odpowiedź z 74.125.226.196: bajt˘w=32 czas=39ms TTL=54
Odpowiedź z 74.125.226.196: bajt˘w=32 czas=38ms TTL=54

Statystyka badania ping dla 74.125.226.196:
Pakiety: Wysłane = 2, Odebrane = 2, Utracone = 0
(0% straty),
Szacunkowy czas błĄdzenia pakiet˘w w millisekundach:
Minimum = 38 ms, Maksimum = 39 ms, Czas średni = 38 ms
Serwer:
Address: 192.168.2.1

Nazwa: yahoo.com
Addresses: 98.139.183.24
98.138.253.109
72.30.38.140


Badanie yahoo.com [98.139.183.24] z 32 bajtami danych:
Odpowiedź z 98.139.183.24: bajt˘w=32 czas=192ms TTL=51
Odpowiedź z 98.139.183.24: bajt˘w=32 czas=142ms TTL=51

Statystyka badania ping dla 98.139.183.24:
Pakiety: Wysłane = 2, Odebrane = 2, Utracone = 0
(0% straty),
Szacunkowy czas błĄdzenia pakiet˘w w millisekundach:
Minimum = 142 ms, Maksimum = 192 ms, Czas średni = 167 ms

Badanie 127.0.0.1 z 32 bajtami danych:
Odpowiedź z 127.0.0.1: bajt˘w=32 czas<1 ms TTL=128
Odpowiedź z 127.0.0.1: bajt˘w=32 czas<1 ms TTL=128

Statystyka badania ping dla 127.0.0.1:
Pakiety: Wysłane = 2, Odebrane = 2, Utracone = 0
(0% straty),
Szacunkowy czas błĄdzenia pakiet˘w w millisekundach:
Minimum = 0 ms, Maksimum = 0 ms, Czas średni = 0 ms
===========================================================================
Lista interfejs˘w
22...00 ff 12 b6 a3 b5 ......Anchorfree HSS Adapter
20...c0 cb 38 b0 22 0d ......UrzĄdzenie Bluetooth (sieć osobista)
19...1c 65 9d 8b aa 32 ......Microsoft Virtual WiFi Miniport Adapter
11...1c 65 9d 8b aa 32 ......Karta DW1501 Wireless-N WLAN Half-Mini
10...f0 4d a2 a8 22 1d ......Realtek PCIe FE Family Controller
1...........................Software Loopback Interface 1
17...00 00 00 00 00 00 00 e0 Karta Microsoft ISATAP
16...00 00 00 00 00 00 00 e0 Karta Microsoft ISATAP #2
18...00 00 00 00 00 00 00 e0 Karta Microsoft ISATAP #3
13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

Tabela tras IPv4
===========================================================================
Aktywne trasy:
Miejsce docelowe w sieci Maska sieci Brama Interfejs Metryka
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.4 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.2.0 255.255.255.0 On-link 192.168.2.4 281
192.168.2.4 255.255.255.255 On-link 192.168.2.4 281
192.168.2.255 255.255.255.255 On-link 192.168.2.4 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.2.4 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.2.4 281
===========================================================================
Trasy trwałe:
Brak

Tabela tras IPv6
===========================================================================
Aktywne trasy:
Jeśli Metryka Miejsce docelowe w sieci Brama
1 306 ::1/128 On-link
11 281 fe80::/64 On-link
11 281 fe80::71b4:e9fc:663e:68b9/128
On-link
1 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Trasy trwałe:
Brak
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 09 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 09 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/11/2013 02:25:13 AM) (Source: SideBySide) (User: )
Description: Nie można wygenerować kontekstu aktywacji dla äC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1ö. Błąd w pliku manifestu lub w pliku zasad äC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2ö w wierszu C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, ktˇra jest już aktywna.
Składniki powodujące konflikt:
Składnik 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Składnik 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.

Error: (01/10/2013 10:11:42 PM) (Source: SideBySide) (User: )
Description: Nie można wygenerować kontekstu aktywacji dla äC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1ö. Błąd w pliku manifestu lub w pliku zasad äC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2ö w wierszu C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, ktˇra jest już aktywna.
Składniki powodujące konflikt:
Składnik 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Składnik 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (01/10/2013 10:11:37 PM) (Source: SideBySide) (User: )
Description: Nie można wygenerować kontekstu aktywacji dla äC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1ö. Błąd w pliku manifestu lub w pliku zasad äC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2ö w wierszu C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, ktˇra jest już aktywna.
Składniki powodujące konflikt:
Składnik 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Składnik 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (01/10/2013 10:11:36 PM) (Source: SideBySide) (User: )
Description: Nie można wygenerować kontekstu aktywacji dla äC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1ö. Błąd w pliku manifestu lub w pliku zasad äC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2ö w wierszu C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, ktˇra jest już aktywna.
Składniki powodujące konflikt:
Składnik 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Składnik 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (01/10/2013 10:11:34 PM) (Source: SideBySide) (User: )
Description: Nie można wygenerować kontekstu aktywacji dla äC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1ö. Błąd w pliku manifestu lub w pliku zasad äC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2ö w wierszu C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, ktˇra jest już aktywna.
Składniki powodujące konflikt:
Składnik 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Składnik 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (01/10/2013 09:46:49 PM) (Source: SideBySide) (User: )
Description: Nie można wygenerować kontekstu aktywacji dla äC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1ö. Błąd w pliku manifestu lub w pliku zasad äC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2ö w wierszu C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, ktˇra jest już aktywna.
Składniki powodujące konflikt:
Składnik 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Składnik 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (01/10/2013 09:45:42 PM) (Source: Application Error) (User: )
Description: Nazwa aplikacji powodującej błąd: aswMBR.exe, wersja: 0.9.9.1707, sygnatura czasowa: 0x509be8bf
Nazwa modułu powodującego błąd: ntdll.dll, wersja: 6.1.7601.17725, sygnatura czasowa: 0x4ec49b8f
Kod wyjątku: 0xc0000005
Przesunięcie błędu: 0x0002e3be
Identyfikator procesu powodującego błąd: 0x5d8
Godzina uruchomienia aplikacji powodującej błąd: 0xaswMBR.exe0
Ścieżka aplikacji powodującej błąd: aswMBR.exe1
Ścieżka modułu powodującego błąd: aswMBR.exe2
Identyfikator raportu: aswMBR.exe3

Error: (01/10/2013 09:41:10 PM) (Source: SideBySide) (User: )
Description: Nie można wygenerować kontekstu aktywacji dla äC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1ö. Błąd w pliku manifestu lub w pliku zasad äC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2ö w wierszu C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, ktˇra jest już aktywna.
Składniki powodujące konflikt:
Składnik 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Składnik 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (01/10/2013 09:34:28 PM) (Source: Application Error) (User: )
Description: Nazwa aplikacji powodującej błąd: aswMBR.exe, wersja: 0.9.9.1707, sygnatura czasowa: 0x509be8bf
Nazwa modułu powodującego błąd: ntdll.dll, wersja: 6.1.7601.17725, sygnatura czasowa: 0x4ec49b8f
Kod wyjątku: 0xc0000005
Przesunięcie błędu: 0x0002e3be
Identyfikator procesu powodującego błąd: 0x1b18
Godzina uruchomienia aplikacji powodującej błąd: 0xaswMBR.exe0
Ścieżka aplikacji powodującej błąd: aswMBR.exe1
Ścieżka modułu powodującego błąd: aswMBR.exe2
Identyfikator raportu: aswMBR.exe3

Error: (01/10/2013 09:19:49 PM) (Source: SideBySide) (User: )
Description: Nie można wygenerować kontekstu aktywacji dla äC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1ö. Błąd w pliku manifestu lub w pliku zasad äC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2ö w wierszu C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, ktˇra jest już aktywna.
Składniki powodujące konflikt:
Składnik 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Składnik 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.


System errors:
=============
Error: (01/11/2013 07:35:29 PM) (Source: BTHUSB) (User: )
Description: W lokalnym adapterze Bluetooth wystąpił nieokreślony błąd. Adapter nie będzie używany. Sterownik został usunięty z pamięci.

Error: (01/11/2013 07:26:16 PM) (Source: BTHUSB) (User: )
Description: W lokalnym adapterze Bluetooth wystąpił nieokreślony błąd. Adapter nie będzie używany. Sterownik został usunięty z pamięci.

Error: (01/11/2013 04:26:17 PM) (Source: Service Control Manager) (User: )
Description: Usługa Usługa nasłuchująca grup domowych zakończyła działanie; wystąpił specyficzny dla niej błąd %%-2147023143.

Error: (01/11/2013 04:24:58 PM) (Source: Service Control Manager) (User: )
Description: Nie można załadować następujących sterownikˇw startu rozruchowego lub systemowego:
mozyproFilter

Error: (01/11/2013 04:24:20 PM) (Source: Service Control Manager) (User: )
Description: Usługa Agent zasad IPsec zależy od następującej usługi: BFE. Ta usługa może nie być zainstalowana.

Error: (01/11/2013 04:24:19 PM) (Source: Service Control Manager) (User: )
Description: Usługa Moduły obsługi kluczy IPsec IKE i AuthIP zależy od następującej usługi: BFE. Ta usługa może nie być zainstalowana.

Error: (01/11/2013 04:24:19 PM) (Source: Service Control Manager) (User: )
Description: Nie można uruchomić usługi Hotspot Shield Monitoring Service z powodu następującego błędu:
%%2

Error: (01/11/2013 04:24:19 PM) (Source: Service Control Manager) (User: )
Description: Nie można uruchomić usługi Hotspot Shield Routing Service z powodu następującego błędu:
%%2

Error: (01/11/2013 04:24:19 PM) (Source: Service Control Manager) (User: )
Description: Nie można uruchomić usługi Hotspot Shield Service z powodu następującego błędu:
%%2

Error: (01/11/2013 04:24:12 PM) (Source: Service Control Manager) (User: )
Description: Usługa Przeglądarka komputera zakończyła działanie; wystąpił następujący błąd:
%%1060


Microsoft Office Sessions:
=========================
Error: (01/11/2013 02:25:13 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (01/10/2013 10:11:42 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Rafal\Downloads\esetsmartinstaller_enu.exe

Error: (01/10/2013 10:11:37 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Rafal\Downloads\esetsmartinstaller_enu.exe

Error: (01/10/2013 10:11:36 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Rafal\Downloads\esetsmartinstaller_enu.exe

Error: (01/10/2013 10:11:34 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Rafal\Downloads\esetsmartinstaller_enu.exe

Error: (01/10/2013 09:46:49 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Rafal\Downloads\esetsmartinstaller_enu.exe

Error: (01/10/2013 09:45:42 PM) (Source: Application Error)(User: )
Description: aswMBR.exe0.9.9.1707509be8bfntdll.dll6.1.7601.177254ec49b8fc00000050002e3be5d801cdefa51ee5d9edC:\Users\Rafal\Downloads\aswMBR.exeC:\Windows\SysWOW64\ntdll.dllfd609a90-5b98-11e2-836a-d5bec6af3427

Error: (01/10/2013 09:41:10 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Rafal\Downloads\esetsmartinstaller_enu.exe

Error: (01/10/2013 09:34:28 PM) (Source: Application Error)(User: )
Description: aswMBR.exe0.9.9.1707509be8bfntdll.dll6.1.7601.177254ec49b8fc00000050002e3be1b1801cdefa36479a297C:\Users\Rafal\Downloads\aswMBR.exeC:\Windows\SysWOW64\ntdll.dll6b7bb77d-5b97-11e2-88d5-eee5b3b44726

Error: (01/10/2013 09:19:49 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Rafal\Downloads\esetsmartinstaller_enu.exe


CodeIntegrity Errors:
===================================
Date: 2013-01-11 18:17:37.410
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-01-11 18:17:37.407
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-01-11 18:17:37.404
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-01-11 17:16:34.263
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-01-11 17:16:34.263
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-01-11 17:16:34.263
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

???? 3.7.0
Adobe AIR (Version: 3.3.0.3650)
Adobe Anchor Service CS4 (Version: 2.0)
Adobe Bridge CS4 (Version: 3)
Adobe CMaps CS4 (Version: 2.0)
Adobe Color EU Extra Settings CS4 (Version: 2.0)
Adobe Color JA Extra Settings CS4 (Version: 2.0)
Adobe Color NA Recommended Settings CS4 (Version: 2.0)
Adobe CSI CS4 (Version: 1)
Adobe CSI CS4 x64 (Version: 1)
Adobe Default Language CS4 (Version: 2.0)
Adobe Download Assistant (Version: 1.0.3)
Adobe ExtendScript Toolkit CS4 (Version: 3.0.0)
Adobe Extension Manager CS4 (Version: 2.0)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.1.102.55)
Adobe Flash Player 11 Plugin (Version: 11.5.502.135)
Adobe Flash Player 11 Plugin 64-bit (Version: 11.5.502.135)
Adobe Fonts All (Version: 2.0)
Adobe InDesign CS4 (Version: 6.0)
Adobe InDesign CS4 Application Feature Set Files (Roman) (Version: 6.0)
Adobe InDesign CS4 Common Base Files (Version: 6.0)
Adobe InDesign CS4 Icon Handler (Version: 6.0)
Adobe InDesign CS4 Icon Handler x64 (Version: 6.0)
Adobe Linguistics CS4 (Version: 4.0.0)
Adobe Output Module (Version: 2.0)
Adobe PDF Library Files CS4 (Version: 9.0)
Adobe Reader XI - Polish (Version: 11.0.00)
Adobe Search for Help (Version: 1.0)
Adobe Service Manager Extension (Version: 1.0)
Adobe Setup (Version: 2.0)
Adobe SGM CS4 (Version: 3.0)
Adobe Shockwave Player 11.6 (Version: 11.6.8.638)
Adobe SING CS4 (Version: 2.0)
Adobe Type Support CS4 (Version: 9.0)
Adobe Update Manager CS4 (Version: 6.0.0)
Adobe WinSoft Linguistics Plugin (Version: 1.1)
Adobe XMP Panels CS4 (Version: 2.0)
AdobeColorCommonSetCMYK (Version: 2.0)
AdobeColorCommonSetRGB (Version: 2.0)
Advanced Audio FX Engine (Version: 1.12.05)
AMCap (Version: 9.20.132.2)
Android Screencast
Android SDK Tools (Version: 1.16)
Archiwizator WinRAR
ASUS Android USB Drivers (Version: 1.0.6292)
ASUS Sync (Version: 1.0.82)
ATI AVIVO64 Codecs (Version: 11.6.0.50601)
ATI Catalyst Install Manager (Version: 3.0.778.0)
Attribute Changer 6.20 (Version: 6.20)
Autodesk 3ds Max 2009 32-bit (Version: 11.0)
Autodesk 3ds Max 2009 64-bit (Version: 11.0)
Autodesk Backburner 2008.1 (Version: 2008.1)
Borland C++Builder 6 (Version: 6.0)
Bulletstorm Demo
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2010.0601.2152.37421)
Catalyst Control Center Graphics Previews Vista (Version: 2010.0601.2152.37421)
Catalyst Control Center InstallProxy (Version: 2010.0601.2152.37421)
Catalyst Control Center Localization All (Version: 2010.0601.2152.37421)
ccc-core-static (Version: 2010.0601.2152.37421)
ccc-utility64 (Version: 2010.0601.2152.37421)
CCC Help Chinese Standard (Version: 2010.0601.2151.37421)
CCC Help Chinese Traditional (Version: 2010.0601.2151.37421)
CCC Help Danish (Version: 2010.0601.2151.37421)
CCC Help Dutch (Version: 2010.0601.2151.37421)
CCC Help English (Version: 2010.0601.2151.37421)
CCC Help Finnish (Version: 2010.0601.2151.37421)
CCC Help French (Version: 2010.0601.2151.37421)
CCC Help German (Version: 2010.0601.2151.37421)
CCC Help Italian (Version: 2010.0601.2151.37421)
CCC Help Japanese (Version: 2010.0601.2151.37421)
CCC Help Korean (Version: 2010.0601.2151.37421)
CCC Help Norwegian (Version: 2010.0601.2151.37421)
CCC Help Portuguese (Version: 2010.0601.2151.37421)
CCC Help Russian (Version: 2010.0601.2151.37421)
CCC Help Spanish (Version: 2010.0601.2151.37421)
CCC Help Swedish (Version: 2010.0601.2151.37421)
CCleaner (Version: 3.26)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
CL-Eye Driver (Version: 4.0.0.1230)
CL-Eye Platform SDK (Version: 1.0.1.0108)
Connect (Version: 1.0.0.1)
Crystal Reports for Visual Studio (Version: 12.51.0.240)
Dell DataSafe Local Backup - Support Software
Dell DataSafe Local Backup (Version: 9.4.51)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Webcam Central (Version: 2.00.35)
Detektor Winampa (Version: 1.0.0.1)
Dotfuscator Software Services - Community Edition (Version: 5.0.2300.0)
DW WLAN Card Utility (Version: 5.60.48.35)
ESET Online Scanner v3
FBX Plugin 2009.0 for Max 2009 64
FruitNinja 1.6.1 (Version: 1.6.1)
Gadu-Gadu 10
GIMP 2.8.0 (Version: 2.8.0)
Google Chrome (Version: 23.0.1271.97)
Google Chrome Frame (Version: 24.0.1312.52)
Google Earth (Version: 6.1.0.5001)
Google SketchUp 8 (Version: 3.0.4811)
Google Talk Plugin (Version: 3.10.2.10212)
Google Update Helper (Version: 1.3.21.123)
GoToMeeting 5.2.0.952 (Version: 5.2.0.952)
GPL MPEG-1/2 DirectShow Decoder Filter (Version: 0.1.2)
HHD Software Hex Editor (Version: 2.0.0.0003)
Intel AppUp(SM) center (Version: 38139)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® Rapid Storage Technology (Version: 9.6.4.1002)
Intel® Turbo Boost Technology Monitor (Version: 1.0.186.6)
Java 7 Update 9 (Version: 7.0.90)
Java Auto Updater (Version: 2.1.9.0)
K-Lite Codec Pack 8.9.5 (Standard) (Version: 8.9.5)
Kaspersky Internet Security 2013 (Version: 13.0.1.4190)
kuler (Version: 2.0)
Macromedia Dreamweaver 8 (Version: 8.0.0.2734)
Macromedia Extension Manager (Version: 1.7.240)
Malwarebytes Anti-Malware wersja 1.70.0.1100 (Version: 1.70.0.1100)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile PLK Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Multi-Targeting Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools (Version: 2.0.50217.0)
Microsoft ASP.NET MVC 2 (Version: 2.0.50217.0)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.88.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Help Viewer 1.0 (Version: 1.0.30319)
Microsoft Office Starter 2010 - Polski (Version: 14.0.4763.1000)
Microsoft PowerPoint Viewer (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Silverlight 3 SDK (Version: 3.0.40818.0)
Microsoft Silverlight 4 SDK (Version: 4.0.50826.0)
Microsoft SQL Server 2008 (64-bit)
Microsoft SQL Server 2008 Browser (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Common Files (Version: 10.0.1600.22)
Microsoft SQL Server 2008 Common Files (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Database Engine Services (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Database Engine Shared (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Native Client (Version: 10.1.2531.0)
Microsoft SQL Server 2008 R2 Data-Tier Application Framework (Version: 10.50.1447.4)
Microsoft SQL Server 2008 R2 Data-Tier Application Project (Version: 10.50.1447.4)
Microsoft SQL Server 2008 R2 Management Objects (Version: 10.50.1447.4)
Microsoft SQL Server 2008 R2 Management Objects (x64) (Version: 10.50.1447.4)
Microsoft SQL Server 2008 R2 Transact-SQL Language Service (Version: 10.50.1447.4)
Microsoft SQL Server 2008 RsFx Driver (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Setup Support Files (Version: 10.1.2731.0)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version: 3.5.8080.0)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (Version: 3.5.8080.0)
Microsoft SQL Server Database Publishing Wizard 1.4 (Version: 10.1.2512.8)
Microsoft SQL Server System CLR Types (Version: 10.50.1447.4)
Microsoft SQL Server System CLR Types (x64) (Version: 10.50.1447.4)
Microsoft SQL Server VSS Writer (Version: 10.1.2531.0)
Microsoft Sync Framework Runtime v1.0 SP1 (x64) (Version: 1.0.3010.0)
Microsoft Sync Framework SDK v1.0 SP1 (Version: 1.0.3010.0)
Microsoft Sync Framework Services v1.0 SP1 (x64) (Version: 1.0.3010.0)
Microsoft Sync Services for ADO.NET v2.0 SP1 (x64) (Version: 2.0.3010.0)
Microsoft Team Foundation Server 2010 Object Model - ENU (Version: 10.0.40219)
Microsoft Visual Basic 2010 Express - ENU (Version: 10.0.30319)
Microsoft Visual C# 2010 Express - ENU (Version: 10.0.30319)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.58299)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Express Edition with SP1 - ENU
Microsoft Visual C++ 2008 Express Edition with SP1 - ENU (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Designtime - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x64 Runtime - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Runtime - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual F# 2.0 Runtime (Version: 10.0.30319)
Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU
Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU (Version: 9.0.30729)
Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU Service Pack 1 (KB945140) (Version: 1)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (Version: 10.0.30319)
Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (Version: 10.0.30319)
Microsoft Visual Studio 2010 IntelliTrace Collection (x64) (Version: 10.0.40219)
Microsoft Visual Studio 2010 Office Developer Tools (x64) (Version: 10.0.30319)
Microsoft Visual Studio 2010 Performance Collection Tools SP1 - ENU (Version: 10.0.40219)
Microsoft Visual Studio 2010 Service Pack 1 (Version: 10.0.40219)
Microsoft Visual Studio 2010 SharePoint Developer Tools (Version: 10.0.30319)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.40303)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.40308)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PLK (Version: 10.0.40303)
Microsoft Visual Studio 2010 Ultimate - ENU (Version: 10.0.30319)
Microsoft Visual Studio Macro Tools (Version: 9.0.30729)
Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries (Version: 6.1.5288.17011)
Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for .NET Framework - enu (Version: 3.5.30729)
Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for Win32 (Version: 6.1.5295.17011)
MirrorOp Receiver\1.2.0.0
Mixman Spin Control (Version: 5.3.34)
Moduł Szybka instalacja pakietu Microsoft Office 2010 (Version: 14.0.4763.1000)
Mozilla Firefox 13.0.1 (x86 en-US) (Version: 13.0.1)
Mozilla Maintenance Service (Version: 13.0.1)
MSVCRT Redists (Version: 1.0)
MSXML 4.0 SP3 Parser (KB2721691) (Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
NVIDIA PhysX (Version: 9.10.0513)
Open Source Computer Vision Library 1.1pre1
PDF Settings CS4 (Version: 9.0)
Photoshop Camera Raw (Version: 5.0)
Pinnacle Instant DVD Recorder (Version: 2.6.1.127)
Polski pakiet językowy dla narzędzi Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.40303)
Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Portal 2
PTGui Pro 8.1.2
Quickset64 (Version: 10.5.0)
Razer Hydra (Version: 1.00.07)
Roxio Burn (Version: 1.01)
Safari (Version: 5.34.51.22)
Service Pack 1 for SQL Server 2008 (KB968369) (64-bit) (Version: 10.1.2531.0)
Silicon Laboratories USBXpress Device (Driver Removal)
Skype Click to Call (Version: 5.9.9216)
SkypeÖ 6.0 (Version: 6.0.126)
Source Insight 3.5
Sql Server Customer Experience Improvement Program (Version: 10.1.2531.0)
Steam (Version: 1.0.0.0)
Sterownik wideo firmy Pinnacle (Version: 12.1.0.029)
Suite Shared Configuration CS4 (Version: 1.0)
swMSM (Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 15.0.0.1)
TightVNC (Version: 2.5.1.0)
Total Video Converter 3.10
UFRaw 0.10
Unity (Version: )
Unity Web Player (Version: )
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
V-Ray for 3dsmax 2009 for x86 (Version: 1.50.SP2)
Vegas Movie Studio HD 11.0 (Version: 11.0.75)
VisiBroker for Cpp 4.5
Visual Studio 2010 Prerequisites - English (Version: 10.0.30319)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (Version: 4.0.8080.0)
Wakan 1.67 (Version: 1.67)
WCF RIA Services V1.0 SP1 (Version: 4.1.60114.0)
Web Deployment Tool (Version: 1.1.0618)
WIDCOMM Bluetooth Software (Version: 6.2.1.1100)
Winamp (Version: 5.63 )
Windows Driver Package - Broadcom Corporation (BTHUSB) Bluetooth (03/24/2010 6.3.0.2501) (Version: 03/24/2010 6.3.0.2501)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
Windows Movie Maker 2.6 (Version: 2.6.4037.0)
zkanji v0.717 (Version: 0.717)
ZTE 3GPhone USB Driver 5.2066.1.6 (Version: 5.2066.1.6)

========================= Memory info: ===================================

Percentage of memory in use: 63%
Total physical RAM: 3958.68 MB
Available physical RAM: 1455.51 MB
Total Pagefile: 7915.56 MB
Available Pagefile: 5179.96 MB
Total Virtual: 4095.88 MB
Available Virtual: 3982.59 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:451.01 GB) (Free:230.45 GB) NTFS

========================= Users: ========================================

Konta uľytkownik˘w dla \\MOBILEROSHI

Administrator Emilka Gość
Rafal
Polecenie zostało wykonane pomyślnie.

========================= Restore Points ==================================

29-12-2012 05:41:16 Removed Java 7 Update 9
29-12-2012 15:16:09 Removed Adobe Reader 9.1 - Polish.
29-12-2012 15:38:17 Instalacja pakietu sterownika urządzenia: DT Soft Ltd Urządzenia systemowe
29-12-2012 15:47:38 Removed Oracle VM VirtualBox 4.0.6
29-12-2012 15:55:35 Installed Adobe Reader XI - Polish.
11-01-2013 07:28:10 Zaplanowany punkt kontrolny
11-01-2013 20:53:32 Windows Update

**** End of log ****


==============================================================================

Farbar Service Scanner Version: 05-01-2013
Ran by Rafal (administrator) on 11-01-2013 at 19:46:14
Running from "C:\Users\Rafal\Downloads"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is offline
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to retrieve start type of wscsvc. The value does not exist.
Checking ImagePath: ATTENTION!=====> Unable to retrieve ImagePath of wscsvc. The value does not exist.
Unable to retrieve ServiceDll of wscsvc. The value does not exist.


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to retrieve start type of WinDefend. The value does not exist.
Checking ImagePath: ATTENTION!=====> Unable to retrieve ImagePath of WinDefend. The value does not exist.
Unable to retrieve ServiceDll of WinDefend. The value does not exist.


Other Services:
==============
Checking Start type of iphlpsvc: ATTENTION!=====> Unable to retrieve start type of iphlpsvc. The value does not exist.
Checking ImagePath of iphlpsvc: ATTENTION!=====> Unable to retrieve ImagePath of iphlpsvc. The value does not exist.
Checking ServiceDll of iphlpsvc: ATTENTION!=====> Unable to retrieve ServiceDll of iphlpsvc. The value does not exist.


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

=======================================================================

# AdwCleaner v2.105 - Log utworzony 11/01/2013 o 19:48:01
# Aktualizacja 08/01/2013 przez Xplode
# System operacyjny : Windows 7 Home Premium Service Pack 1 (64 bits)
# Użytkownik : Rafal - MOBILEROSHI
# Tryb uruchomienia : Normalny
# Ścieżka : C:\Users\Rafal\Downloads\adwcleaner.exe
# Opcja [Usuń]

***** [Usługi] *****


***** [Pliki / Foldery] *****

Folder Usunięto : C:\Program Files (x86)\adawaretb
Folder Usunięto : C:\ProgramData\blekko toolbars
Folder Usunięto : C:\Users\Rafal\AppData\LocalLow\adawaretb
Folder Usunięto : C:\Users\Rafal\AppData\Roaming\Mozilla\Firefox\Profiles\s7ccnr3f.default\adawaretb

***** [Rejestr] *****

Klucz Usunięto : HKCU\Software\Conduit
Klucz Usunięto : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Klucz Usunięto : HKCU\Software\Softonic
Klucz Usunięto : HKLM\Software\Conduit
Klucz Usunięto : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Klucz Usunięto : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}

***** [Przeglądarki Internetowe] *****

-\\ Internet Explorer v9.0.8112.16457

[OK] Rejestr w porządku.

-\\ Mozilla Firefox v13.0.1 (en-US)

Plik : C:\Users\Rafal\AppData\Roaming\Mozilla\Firefox\Profiles\s7ccnr3f.default\prefs.js

[OK] Plik w porządku.

-\\ Google Chrome v23.0.1271.97

Plik : C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Plik w porządku.

Plik : C:\Users\Emilka\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Plik w porządku.

*************************

AdwCleaner[S1].txt - [1731 octets] - [11/01/2013 19:48:01]

########## EOF - C:\AdwCleaner[S1].txt - [1791 octets] ##########


===========================================================================

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.4.2 (01.08.2013:1)
OS: Windows 7 Home Premium x64
Ran by Rafal on 2013-01-11 at 21:32:41,17
Blog: http://thisisudax.blogspot.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Suspicious HKCU\..\Run entries found. Trojan:JS/Medfos.B?

Val Name Type Value Data
======== ==== ==========
Comcast Modem Release REG_SZ RUNDLL32.EXE "C:\Users\Rafal\AppData\Local\Comcast Modem Release\lwlqhrlw.dll",gss_wrap_size_limit




~~~ Registry Keys

Successfully deleted: [Registry Key] hkey_current_user\software\smallfrogs studio



~~~ Files



~~~ Folders



~~~ FireFox

Emptied folder: C:\Users\Rafal\AppData\Roaming\mozilla\firefox\profiles\s7ccnr3f.default\minidumps [3 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 2013-01-11 at 21:41:38,47
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

==========================================================================

Rkill 2.4.5 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 01/11/2013 09:43:51 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
* HKLM\Software\Classes\.exe\shell found and deleted!


Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* Sterownik uwierzytelniania Zapory systemu Windows (mpsdrv) is not Running.
Startup Type set to: Manual

* BFE [Missing Service]
* MpsSvc [Missing Service]

* iphlpsvc [Missing ImagePath]
* WinDefend [Missing ImagePath]
* wscsvc [Missing ImagePath]

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* No issues found.

Program finished at: 01/11/2013 09:44:06 PM
Execution time: 0 hours(s), 0 minute(s), and 15 seconds(s)

===========================================================================

"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms" "" "" ""
+ "rdpclip" "" "" "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Broadcom Wireless Manager UI" "DW WLAN Card Wireless Network Tray Applet" "Dell Inc." "c:\program files\dell\dw wlan card\wltray.exe"
+ "QuickSet" "QuickSet" "Dell Inc." "c:\program files\dell\quickset\quickset.exe"
+ "SynTPEnh" "Synaptics TouchPad Enhancements" "Synaptics Incorporated" "c:\program files\synaptics\syntp\syntpenh.exe"
+ "SysTrayApp" "IDT PC Audio" "IDT, Inc." "c:\program files\idt\wdm\sttray64.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe"
+ "AdobeCS4ServiceManager" "" "" "File not found: ;"
+ "AVP" "Kaspersky Anti-Virus" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky internet security 2013\avp.exe"
+ "Desktop Disc Tool" "Roxio Burn Launcher" "" "c:\program files (x86)\roxio\roxio burn\roxioburnlauncher.exe"
+ "IAStorIcon" "IAStorIcon" "Intel Corporation" "c:\program files (x86)\intel\intel® rapid storage technology\iastoricon.exe"
+ "Razer Hydra Driver" "" "" "File not found: ;"
+ "StartCCC" "Catalyst« Control Center Launcher" "Advanced Micro Devices, Inc." "c:\program files (x86)\ati technologies\ati.ace\core-static\clistart.exe"
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files (x86)\common files\java\java update\jusched.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce" "" "" ""
+ ""C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"" "Update Client for Dell DataSafe Local Backup" "Dell" "c:\program files (x86)\dell datasafe local backup\components\dsupdate\dsupdate.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Poczta systemu Windows" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Poczta systemu Windows" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Comcast Modem Release" "" "" "File not found: C:\Users\Rafal\AppData\Local\Comcast Modem Release\lwlqhrlw.dll"
+ "Google Update" "Google Installer" "Google Inc." "c:\users\rafal\appdata\local\google\update\googleupdate.exe"
+ "Sidebar" "Gadżety pulpitu systemu Windows" "Microsoft Corporation" "c:\program files\windows sidebar\sidebar.exe"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "Kaspersky Anti-Virus" "Windows Shell Extension" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky internet security 2013\x64\shellex.dll"
+ "WinRAR" "Rozszerzenie powłoki" "Alexander Roshal" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "Kaspersky Anti-Virus" "Windows Shell Extension" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky internet security 2013\shellex.dll"
+ "WinRAR32" "Rozszerzenie powłoki" "Alexander Roshal" "c:\program files\winrar\rarext32.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "ACShell" "Attribute Changer Shell Extension" "Romain Petges" "c:\program files (x86)\attribute changer\acshell.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "Kaspersky Anti-Virus" "Windows Shell Extension" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky internet security 2013\x64\shellex.dll"
+ "WinRAR" "Rozszerzenie powłoki" "Alexander Roshal" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "Kaspersky Anti-Virus" "Windows Shell Extension" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky internet security 2013\shellex.dll"
+ "WinRAR32" "Rozszerzenie powłoki" "Alexander Roshal" "c:\program files\winrar\rarext32.dll"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "WinRAR" "Rozszerzenie powłoki" "Alexander Roshal" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "WinRAR32" "Rozszerzenie powłoki" "Alexander Roshal" "c:\program files\winrar\rarext32.dll"
"HKLM\Software\Classes\Directory\Shellex\CopyHookHandlers" "" "" ""
+ "Monitor" "BTNCopy Module" "Broadcom Corporation." "c:\program files\widcomm\bluetooth software\btncopy.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "ACE" "AMD Desktop Control Panel" "Advanced Micro Devices, Inc." "c:\program files (x86)\ati technologies\ati.ace\core-static\atiacm64.dll"
+ "Gadgets" "Element docelowy paska bocznego" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Element docelowy paska bocznego" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sbdrop.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "Kaspersky Anti-Virus" "Windows Shell Extension" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky internet security 2013\x64\shellex.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "WinRAR" "Rozszerzenie powłoki" "Alexander Roshal" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "Kaspersky Anti-Virus" "Windows Shell Extension" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky internet security 2013\shellex.dll"
+ "WinRAR32" "Rozszerzenie powłoki" "Alexander Roshal" "c:\program files\winrar\rarext32.dll"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinRAR" "Rozszerzenie powłoki" "Alexander Roshal" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinRAR32" "Rozszerzenie powłoki" "Alexander Roshal" "c:\program files\winrar\rarext32.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Content Blocker Plugin" "Content Blocker Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky internet security 2013\x64\ieext\contentblocker\ie_content_blocker_plugin.dll"
+ "Safe Money Plugin" "Safe Money Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky internet security 2013\x64\ieext\onlinebanking\online_banking_bho.dll"
+ "URL Advisor Plugin" "URL Advisor Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky internet security 2013\x64\ieext\urladvisor\klwtbbho.dll"
+ "Virtual Keyboard Plugin" "Virtual Keyboard Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky internet security 2013\x64\ieext\virtualkeyboard\ie_virtual_keyboard_plugin.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft« Windows Live ID Login Helper" "Microsoft Corporation" "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "ChromeFrame BHO" "Chrome Frame renders the Web of the future in the browsers of the past. It's like strapping a rocket engine to a minivan." "Google Inc." "c:\program files (x86)\google\chrome frame\application\24.0.1312.52\npchrome_frame.dll"
+ "Content Blocker Plugin" "Content Blocker Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky internet security 2013\ieext\contentblocker\ie_content_blocker_plugin.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre7\bin\ssv.dll"
+ "Microsoft Web Test Recorder 10.0 Helper" "Microsoft Web Test Recorder Helper" "Microsoft Corporation" "c:\program files (x86)\microsoft visual studio 10.0\common7\ide\privateassemblies\microsoft.visualstudio.qualitytools.recorderbarbho100.dll"
+ "Safe Money Plugin" "Safe Money Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky internet security 2013\ieext\onlinebanking\online_banking_bho.dll"
+ "Skype Browser Helper" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "URL Advisor Plugin" "URL Advisor Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky internet security 2013\ieext\urladvisor\klwtbbho.dll"
+ "Virtual Keyboard Plugin" "Virtual Keyboard Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky internet security 2013\ieext\virtualkeyboard\ie_virtual_keyboard_plugin.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft« Windows Live ID Login Helper" "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "URLs check" "URL Advisor Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky internet security 2013\x64\ieext\urladvisor\klwtbbho.dll"
+ "Virtual Keyboard" "Virtual Keyboard Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky internet security 2013\x64\ieext\virtualkeyboard\ie_virtual_keyboard_plugin.dll"
+ "Wyślij do urządzenia &Bluetooth..." "" "" "c:\program files\widcomm\bluetooth software\btsendto_ie.htm"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "Skype Click to Call" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "URLs check" "URL Advisor Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky internet security 2013\ieext\urladvisor\klwtbbho.dll"
+ "Virtual Keyboard" "Virtual Keyboard Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky internet security 2013\ieext\virtualkeyboard\ie_virtual_keyboard_plugin.dll"
+ "Wyślij do urządzenia &Bluetooth..." "" "" "c:\program files\widcomm\bluetooth software\btsendto_ie.htm"
"Task Scheduler" "" "" ""
+ "\CCleanerSkipUAC" "CCleaner" "Piriform Ltd" "c:\program files\ccleaner\ccleaner.exe"
+ "\GoogleUpdateTaskMachineCore" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskMachineUA" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-1167112646-1509495238-3952797457-1000Core" "Google Installer" "Google Inc." "c:\users\rafal\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-1167112646-1509495238-3952797457-1000UA" "Google Installer" "Google Inc." "c:\users\rafal\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-1167112646-1509495238-3952797457-1010Core" "Google Installer" "Google Inc." "c:\users\emilka\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-1167112646-1509495238-3952797457-1010UA" "Google Installer" "Google Inc." "c:\users\emilka\appdata\local\google\update\googleupdate.exe"
+ "\Launch ASUS Sync Loader" "ASUS Sync" "Futuredial Inc." "c:\program files (x86)\asus\asus sync\asusupctloader.exe"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Aplikacja konfiguracji Usługi udostępniania w sieci programu Windows Media Player" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
+ "\SidebarExecute" "Gadżety pulpitu systemu Windows" "Microsoft Corporation" "c:\program files\windows sidebar\sidebar.exe"
+ "\{220651E8-8EF5-4A5B-965F-49D3C79E5EDF}" "" "" "File not found: C:\Users\Rafal\Documents\Studia\Assembler\Avi\Tokyo Lover\tl.exe"
+ "\{2A2C46AE-4508-44E7-8F3E-10C5D136EC9B}" "" "" "File not found: C:\Users\Rafal\Desktop\house of the dead 2 (pc)\Hod2.exe"
+ "\{391EB81A-BDD0-40F1-A3B4-C31C181BEA07}" "" "" "c:\program files (x86)\code laboratories\cl-eye driver\cl-eyetest.exe"
+ "\{71B8B6D4-FC51-4B43-BB56-CFDF6A046C8C}" "" "" "File not found: C:\Users\Rafal\Desktop\lion-king\Lion King\LIONKING.EXE"
+ "\{9C866517-44AF-4C7D-8D2E-3EA4F1806B60}" "" "" "File not found: C:\Users\Rafal\Desktop\house of the dead 2 (pc)\Hod2.exe"
+ "\{CD32C394-5102-4A75-8AF7-C27A2FE16BEC}" "" "" "File not found: C:\Users\Rafal\Desktop\lion-king\Lion King\LIONKING.EXE"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AdobeARMservice" "Narzedzie Adobe Acrobat Updater zapewnia aktualnosc oprogramowania firmy Adobe." "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe"
+ "AESTFilters" "Andrea filters APO access service (64-bit)" "Andrea Electronics Corporation" "c:\program files\idt\wdm\aestsr64.exe"
+ "AMD External Events Utility" "AMD External Events Service Module" "AMD" "c:\windows\system32\atiesrxx.exe"
+ "Autodesk Licensing Service" "Anchor service for Autodesk products licensed with SafeCast" "Autodesk" "c:\program files (x86)\common files\autodesk shared\service\adskscsrv.exe"
+ "AVP" "Provides computer protection against viruses, dangerous software, network attacks, internet fraud and spam." "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky internet security 2013\avp.exe"
+ "btwdins" "Obsługuje instalację i usuwanie urządzeń Bluetooth." "Broadcom Corporation." "c:\program files\widcomm\bluetooth software\btwdins.exe"
+ "cvhsvc" "Client Virtualization Handler Service (unlocalized description)" "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\virtualization handler\cvhsvc.exe"
+ "FLEXnet Licensing Service" "This service performs licensing functions on behalf of FLEXnet enabled products." "Acresso Software Inc." "c:\program files (x86)\common files\macrovision shared\flexnet publisher\fnplicensingservice.exe"
+ "gupdate" "Zapewnia aktualizację Twojego oprogramowania Google. Jeśli ta usługa zostanie wyłączona lub zatrzymana, oprogramowanie Google nie będzie aktualizowane, co oznacza, że zauważone luki w zabezpieczeniach nie mogą być naprawiane, a funkcje mogą nie działać. Ta usługa odinstalowuje się samoczynnie, gdy nie ma żadnego oprogramowania Google, ktˇre z niej korzysta." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gupdatem" "Zapewnia aktualizację Twojego oprogramowania Google. Jeśli ta usługa zostanie wyłączona lub zatrzymana, oprogramowanie Google nie będzie aktualizowane, co oznacza, że zauważone luki w zabezpieczeniach nie mogą być naprawiane, a funkcje mogą nie działać. Ta usługa odinstalowuje się samoczynnie, gdy nie ma żadnego oprogramowania Google, ktˇre z niej korzysta." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "hshld" "" "" "File not found: C:\Program Files (x86)\Hotspot Shield\bin\openvpnas.exe"
+ "HssSrv" "" "" "File not found: C:\Program Files (x86)\Hotspot Shield\HssWPR\hsssrv.exe"
+ "HssWd" "" "" "File not found: C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe"
+ "IAStorDataMgrSvc" "Zapewnia powiadomienia o zdarzeniach pamięci masowej i umożliwia zarządzanie komunikacją między sterownikiem pamięci masowej i aplikacjami z przestrzeni użytkownika." "Intel Corporation" "c:\program files (x86)\intel\intel® rapid storage technology\iastordatamgrsvc.exe"
+ "LMS" "Allows applications to access the local Intel® Management and Security Application using its locally-available selected network interfaces." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\lms\lms.exe"
+ "mi-raysat_3dsMax2009_32" "mental ray 3.6 Satellite for Autodesk 3ds Max 2009 32-bit 32-bit" "" "c:\program files (x86)\autodesk\3ds max 2009\mentalray\satellite\raysat_3dsmax2009_32server.exe"
+ "mi-raysat_3dsMax2009_64" "mental ray 3.6 Satellite for Autodesk 3ds Max 2009 64-bit 64-bit" "" "c:\program files\autodesk\3ds max 2009\mentalray\satellite\raysat_3dsmax2009_64server.exe"
+ "MozillaMaintenance" "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled." "Mozilla Foundation" "c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe"
+ "MSSQL$SQLEXPRESS" "Provides storage, processing and controlled access of data, and rapid transaction processing." "Microsoft Corporation" "c:\program files\microsoft sql server\mssql10.sqlexpress\mssql\binn\sqlservr.exe"
+ "ose" "Zapisuje pliki instalacyjne używane przy aktualizacjach i naprawach. Jest niezbędny do pobierania aktualizacji Instalatora i zgłaszania raportˇw programu Watson o błędach." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "osppsvc" "Office Software Protection Platform Service (unlocalized description)" "Microsoft Corporation" "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"
+ "sftlist" "Streams and manages applications." "Microsoft Corporation" "c:\program files (x86)\microsoft application virtualization client\sftlist.exe"
+ "sftvsa" "Monitors global service events and launches virtual services." "Microsoft Corporation" "c:\program files (x86)\microsoft application virtualization client\sftvsa.exe"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files (x86)\skype\updater\updater.exe"
+ "SQLWriter" "Provides the interface to backup/restore Microsoft SQL server through the Windows VSS infrastructure." "Microsoft Corporation" "c:\program files\microsoft sql server\90\shared\sqlwriter.exe"
+ "STacSV" "Manages audio jack configurations." "IDT, Inc." "c:\program files\idt\wdm\stacsv64.exe"
+ "Steam Client Service" "Steam Client Service monitors and updates Steam content" "Valve Corporation" "c:\program files (x86)\common files\steam\steamservice.exe"
+ "TurboBoost" "Turbo Boost Monitor Service" "Intel® Corporation" "c:\program files\intel\turboboost\turboboost.exe"
+ "tvnserver" "TightVNC Server" "GlavSoft LLC." "c:\program files\tightvnc\tvnserver.exe"
+ "UNS" "Intel® Management and Security Application User Notification Service - Updates the Windows Event Log with notifications of pre defined events received from the local Intel® Management and Security Application Device." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\uns\uns.exe"
+ "wlidsvc" "Enables Windows Live ID authentication." "Microsoft Corporation" "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"
+ "wltrysvc" "Provides automatic configuration for the 802.11 adapter using the Broadcom supplicant." "Dell Inc." "c:\program files\dell\dw wlan card\wltrysvc.exe"
+ "WMPNetworkSvc" "Udostępnia biblioteki programu Windows Media Player innym odtwarzaczom i urządzeniom multimedialnym w sieci przy użyciu technologii Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "amdkmdag" "ATI Radeon Kernel Mode Driver" "ATI Technologies Inc." "c:\windows\system32\drivers\atikmdag.sys"
+ "amdkmdap" "AMD multi-vendor Miniport Driver" "Advanced Micro Devices, Inc." "c:\windows\system32\drivers\atikmpag.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "androidusb" "ADB Interface" "Google Inc" "c:\windows\system32\drivers\androidusb.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "AtiHdmiService" "ATI High Definition Audio Function Driver" "ATI Technologies, Inc." "c:\windows\system32\drivers\atihdmi.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys"
+ "BCM42RLY" "Broadcom iLine10™ PCI Network Adapter Proxy Protocol Driver" "Broadcom Corporation" "c:\windows\system32\drivers\bcm42rly.sys"
+ "BCM43XX" "Broadcom 802.11 Network Adapter wireless driver" "Broadcom Corporation" "c:\windows\system32\drivers\bcmwl664.sys"
+ "BcmVWL" "Broadcom 802.11 Network Adapter Virtual Wireless Driver" "Broadcom Corporation" "c:\windows\system32\drivers\bcmvwl64.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Sterownik szeregowy I/F (WDM) firmy Brother" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "btusbflt" "Widcomm Bluetooth USB Filter for Windows XP" "Broadcom Corporation." "c:\windows\system32\drivers\btusbflt.sys"
+ "btwaudio" "Bluetooth Audio Device" "Broadcom Corporation." "c:\windows\system32\drivers\btwaudio.sys"
+ "btwavdt" "Broadcom Bluetooth AVDT Service" "Broadcom Corporation." "c:\windows\system32\drivers\btwavdt.sys"
+ "btwl2cap" "Broadcom Bluetooth L2CAP Service" "Broadcom Corporation." "c:\windows\system32\drivers\btwl2cap.sys"
+ "btwrchid" "Bluetooth Remote Control HID Minidriver" "Broadcom Corporation." "c:\windows\system32\drivers\btwrchid.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "CtClsFlt" "Video Class Upper Filter Driver (64-bit)" "Creative Technology Ltd." "c:\windows\system32\drivers\ctclsflt.sys"
+ "DCamUSBEMPIA" "USB 28xx WDM Driver" "eMPIA Technology, Inc." "c:\windows\system32\drivers\emdevice64.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "emAudio" "USB EMP Audio Device" "eMPIA Technology, Inc." "c:\windows\system32\drivers\emaudio64.sys"
+ "FiltUSBEMPIA" "USB 28xx WDM Lower filter" "eMPIA Technology, Inc." "c:\windows\system32\drivers\emfilter64.sys"
+ "FTDIBUS" "FTDIBUS USB Driver" "FTDI Ltd." "c:\windows\system32\drivers\ftdibus.sys"
+ "FTSER2K" "FTDIBUS Serial Device Driver" "FTDI Ltd." "c:\windows\system32\drivers\ftser2k.sys"
+ "gfibto" "GFI Boot Time Operations Driver" "GFI Software" "c:\windows\system32\drivers\gfibto.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "HECIx64" "Intel® Management Engine Interface" "Intel Corporation" "c:\windows\system32\drivers\hecix64.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "HssDrv" "Hotspot Shield Routing Driver" "AnchorFree Inc." "c:\windows\system32\drivers\hssdrv.sys"
+ "HssDRV6" "Hotspot Shield Routing Driver 6" "AnchorFree Inc." "c:\windows\system32\drivers\hssdrv6.sys"
+ "iaStor" "Intel Rapid Storage Technology driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastor.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "igfx" "Intel Graphics Kernel Mode Driver" "Intel Corporation" "c:\windows\system32\drivers\igdkmd64.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "kl1" "Kaspersky Unified Driver" "Kaspersky Lab ZAO" "c:\windows\system32\drivers\kl1.sys"
+ "KLIF" "Kaspersky Lab Interceptor and Filter" "Kaspersky Lab" "c:\windows\system32\drivers\klif.sys"
+ "KLIM6" "Kaspersky Anti-Virus NDIS 6 Filter" "Kaspersky Lab ZAO" "c:\windows\system32\drivers\klim6.sys"
+ "klkbdflt" "Kaspersky Lab Keyboard Class Filter" "Kaspersky Lab" "c:\windows\system32\drivers\klkbdflt.sys"
+ "klmouflt" "Kaspersky Lab Mouse Class Filter" "Kaspersky Lab" "c:\windows\system32\drivers\klmouflt.sys"
+ "kltdi" "Network filtering component" "Kaspersky Lab" "c:\windows\system32\drivers\kltdi.sys"
+ "kneps" "KNEPS Power" "Kaspersky Lab" "c:\windows\system32\drivers\kneps.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "MarvinBus" "Pinnacle Marvin Discrete Bus Enumerator" "Pinnacle Systems GmbH" "c:\windows\system32\drivers\marvinbus64.sys"
+ "massfilter_hs" "HandSet CDROM Filter" "HandSet Incorporated" "c:\windows\system32\drivers\massfilter_hs.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "mozyproFilter" "MozyPro Change Monitor" "" "File not found: system32\DRIVERS\mozypro.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "nvraid" "NVIDIA« nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA« nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "PxHlpa64" "Px Engine Device Driver for 64-bit Windows" "Sonic Solutions" "c:\windows\system32\drivers\pxhlpa64.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "RSUSBSTOR" "Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtsustor.sys"
+ "RTL8167" "Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver " "Realtek " "c:\windows\system32\drivers\rt64win7.sys"
+ "ScanUSBEMPIA" "USB 28xx WDM Upper Filter" "eMPIA Technology, Inc." "c:\windows\system32\drivers\emscan64.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "SIUSBXP" "SiUSBXp.sys" "Silicon Laboratories" "c:\windows\system32\drivers\siusbxp.sys"
+ "stexstor" "Promise SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "STHDA" "IDT PC Audio" "IDT, Inc." "c:\windows\system32\drivers\stwrt64.sys"
+ "SynTP" "Synaptics Touchpad Driver" "Synaptics Incorporated" "c:\windows\system32\drivers\syntp.sys"
+ "taphss" "TAP-Win32 Virtual Network Driver" "AnchorFree Inc" "c:\windows\system32\drivers\taphss.sys"
+ "TurboB" "Turbo Boost UI Monitor driver" "" "c:\windows\system32\drivers\turbob.sys"
+ "VBoxNetAdp" "VirtualBox Host-Only Network Adapter Driver" "Oracle Corporation" "c:\windows\system32\drivers\vboxnetadp.sys"
+ "VBoxNetFlt" "" "" "File not found: system32\DRIVERS\VBoxNetFlt.sys"
+ "VBoxUSB" "VirtualBox USB Driver" "Oracle Corporation" "c:\windows\system32\drivers\vboxusb.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
+ "VSPerfDrv100" "VSPerf Profiling Control Driver" "Microsoft Corporation" "c:\program files (x86)\microsoft visual studio 10.0\team tools\performance tools\x64\vsperfdrv100.sys"
+ "yukonw7" "Miniport Driver for Marvell Yukon Ethernet Controller." "Marvell" "c:\windows\system32\drivers\yk62x64.sys"
+ "zghsmdm" "USB Modem/Serial Device Driver" "ZTE Incorporated" "c:\windows\system32\drivers\zghsmdm.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm"
+ "vidc.cvid" "Koder-dekoder Cinepak«" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
"HKLM\Software\Classes\Filter" "" "" ""
+ "Sony Amplitude Modulation" "Sony XFX 3 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack3.dll"
+ "Sony Chorus" "Sony XFX 1 Plug-In Pack " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack1.dll"
+ "Sony Distortion" "Sony XFX 3 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack3.dll"
+ "Sony Dither" "Sony TrackFX 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sftrkfx1.dll"
+ "Sony ExpressFX Amplitude Modulation" "Sony ExpressFX 2 " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx2.dll"
+ "Sony ExpressFX Audio Restoration" "Sony ExpressFX Audio Restoration" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\xpvinyl.dll"
+ "Sony ExpressFX Chorus" "Sony ExpressFX 2 " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx2.dll"
+ "Sony ExpressFX Delay" "Sony ExpressFX 2 " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx2.dll"
+ "Sony ExpressFX Distortion" "Sony ExpressFX 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx1.dll"
+ "Sony ExpressFX Dynamics" "Sony ExpressFX 3 " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx3.dll"
+ "Sony ExpressFX Equalization" "Sony ExpressFX 2 " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx2.dll"
+ "Sony ExpressFX Flange/Wah-Wah" "Sony ExpressFX 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx1.dll"
+ "Sony ExpressFX Graphic EQ" "Sony ExpressFX 3 " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx3.dll"
+ "Sony ExpressFX Noise Gate" "Sony ExpressFX 3 " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx3.dll"
+ "Sony ExpressFX Reverb" "Sony ExpressFX 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx1.dll"
+ "Sony ExpressFX Stutter" "Sony ExpressFX 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx1.dll"
+ "Sony ExpressFX Time Stretch" "Sony ExpressFX 3 " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfxpfx3.dll"
+ "Sony Flange/Wah-wah" "Sony XFX 3 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack3.dll"
+ "Sony Gapper/Snipper" "Sony XFX 3 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack3.dll"
+ "Sony Graphic Dynamics" "Sony XFX 2 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack2.dll"
+ "Sony Graphic EQ" "Sony XFX 2 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack2.dll"
+ "Sony Multi-Band Dynamics" "Sony XFX 2 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack2.dll"
+ "Sony Multi-Tap Delay" "Sony XFX 1 Plug-In Pack " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack1.dll"
+ "Sony Noise Gate" "Sony XFX 2 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack2.dll"
+ "Sony Pan" "Sound Forge Pro Pan and Volume 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sffrgpnv.dll"
+ "Sony Paragraphic EQ" "Sony XFX 2 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack2.dll"
+ "Sony Parametric EQ" "Sony XFX 2 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack2.dll"
+ "Sony Pitch Shift" "Sony XFX 1 Plug-In Pack " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack1.dll"
+ "Sony Resonant Filter" "Sony Resonant Filter" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfresfilter.dll"
+ "Sony Reverb" "Sony XFX 1 Plug-In Pack " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack1.dll"
+ "Sony Simple Delay" "Sony XFX 1 Plug-In Pack " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack1.dll"
+ "Sony Smooth/Enhance" "Sony XFX 3 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack3.dll"
+ "Sony Time Stretch" "Sony XFX 1 Plug-In Pack " "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack1.dll"
+ "Sony Track Compressor" "Sony TrackFX 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sftrkfx1.dll"
+ "Sony Track EQ" "Sony TrackFX 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sftrkfx1.dll"
+ "Sony Track Noise Gate" "Sony TrackFX 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sftrkfx1.dll"
+ "Sony Vibrato" "Sony XFX 3 Plug-In Pack" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sfppack3.dll"
+ "Sony Volume" "Sound Forge Pro Pan and Volume 1" "Sony Creative Software Inc." "c:\program files (x86)\sony\shared plug-ins\audio\sffrgpnv.dll"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "ATI MPEG Audio Encoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI MPEG File Writer" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI MPEG Multiplexer" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI MPEG Video Decoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI MPEG Video Encoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI Video Rotation Filter" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI Video Scaler Filter" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "9x8Resize" "Movie Maker Filters" "Microsoft Corporation" "c:\program files (x86)\movie maker 2.6\wmm2filt.dll"
+ "Allocator Fix" "Movie Maker Filters" "Microsoft Corporation" "c:\program files (x86)\movie maker 2.6\wmm2filt.dll"
+ "ATI MPEG Audio Encoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI MPEG File Writer" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI MPEG Multiplexer" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI MPEG Video Decoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI MPEG Video Encoder" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI Ticker" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\ticker.ax"
+ "ATI Video Rotation Filter" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI Video Scaler Filter" "ATI MPEG Encoder" "Advanced Micro Devices Inc." "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"
+ "Audio Destination" "WAVDest Filter (Sample)" "Microsoft Corporation" "c:\program files (x86)\google\google earth\client\wavdest.ax"
+ "Bitmap" "Movie Maker Filters" "Microsoft Corporation" "c:\program files (x86)\movie maker 2.6\wmm2filt.dll"
+ "Creative Correct TimeStamp Filter" "Creative Correct TimeStamp Filter" "Creative Technology Ltd." "c:\program files (x86)\creative\shared files\ctfrfix.ax"
+ "Creative H264 No Quality Control Filter" "Creative No Quality Control Filter" "Creative Technology Ltd." "c:\program files (x86)\dell webcam\dell webcam central\cth264noqc.ax"
+ "Creative MJPEG Decoder 2" "Decoder" "Creative Technology Ltd." "c:\program files (x86)\creative\shared files\ctmjpgdec2.ax"
+ "Creative Video Processing Filter" "Creative Video Processing Filter" "Creative Technology Ltd." "c:\program files (x86)\creative\shared files\vidprocu.ax"
+ "DirectVobSub" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "MPC-HC Team" "c:\program files (x86)\k-lite codec pack\filters\vsfilter.dll"
+ "DirectVobSub (auto-loading version)" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "MPC-HC Team" "c:\program files (x86)\k-lite codec pack\filters\vsfilter.dll"
+ "ffdshow Audio Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\k-lite codec pack\ffdshow\ffdshow.ax"
+ "ffdshow Audio Processor" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\k-lite codec pack\ffdshow\ffdshow.ax"
+ "ffdshow DXVA Video Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\k-lite codec pack\ffdshow\ffdshow.ax"
+ "ffdshow raw video filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\k-lite codec pack\ffdshow\ffdshow.ax"
+ "ffdshow subtitles filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\k-lite codec pack\ffdshow\ffdshow.ax"
+ "ffdshow Video Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\k-lite codec pack\ffdshow\ffdshow.ax"
+ "Frame Eater" "Movie Maker Filters" "Microsoft Corporation" "c:\program files (x86)\movie maker 2.6\wmm2filt.dll"
+ "GPL MPEG-1/2 Decoder" "GPL MPEG-1/2 Decoder Filter for DirectShow" "Peter Wimmer, Gabest" "c:\program files (x86)\gpl mpeg decoder\gplmpgdec.ax"
+ "Haali Matroska Muxer" "Haali Media Splitter" "" "c:\program files (x86)\k-lite codec pack\filters\haali\splitter.ax"
+ "Haali Media Splitter" "Haali Media Splitter" "" "c:\program files (x86)\k-lite codec pack\filters\haali\splitter.ax"
+ "Haali Media Splitter (AR)" "Haali Media Splitter" "" "c:\program files (x86)\k-lite codec pack\filters\haali\splitter.ax"
+ "Haali Simple Media Splitter" "Haali Media Splitter" "" "c:\program files (x86)\k-lite codec pack\filters\haali\splitter.ax"
+ "Haali Video Renderer" "" "" "c:\program files (x86)\k-lite codec pack\filters\haali\dxr.dll"
+ "Haali Video Sink" "Haali Media Splitter" "" "c:\program files (x86)\k-lite codec pack\filters\haali\splitter.ax"
+ "LAV Audio Decoder" "LAV Audio Decoder - DirectShow Audio Decoder" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\k-lite codec pack\filters\lav\lavaudio.ax"
+ "LAV Splitter" "LAV Splitter - DirectShow Media Splitter" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\k-lite codec pack\filters\lav\lavsplitter.ax"
+ "LAV Splitter Source" "LAV Splitter - DirectShow Media Splitter" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\k-lite codec pack\filters\lav\lavsplitter.ax"
+ "LAV Video Decoder" "LAV Video Decoder - DirectShow Video Decoder" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\k-lite codec pack\filters\lav\lavvideo.ax"
+ "MMACE Deinterlace" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "MMACE ProcAmp" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "MMACE SoftEmu" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "MPV Decoder Filter" "MPEG-1/2 Decoder Filter for DirectShow" "Gabest" "c:\program files (x86)\total video converter\mpeg2decfilter.ax"
+ "PS3Eye Camera" "CLEye Platform DirectShow Video Camera Source" "Code Laboratories, Inc." "c:\program files (x86)\code laboratories\cl-eye driver\ps3eyeaxfilter.ax"
+ "QIC1802 Demux" "QIC1802 Demux" "Quanta Computer Inc." "c:\program files (x86)\dell webcam\dell webcam central\qicdemux.ax"
+ "QTSrc" "CLQTSrc" "Cyberlink" "c:\program files (x86)\total video converter\quicktime.ax"
+ "RealAudio Decoder" "RealMedia Splitter" "Gabest" "c:\program files (x86)\total video converter\realmediasplitter.ax"
+ "RealMedia Source" "RealMedia Splitter" "Gabest" "c:\program files (x86)\total video converter\realmediasplitter.ax"
+ "RealMedia Splitter" "RealMedia Splitter" "Gabest" "c:\program files (x86)\total video converter\realmediasplitter.ax"
+ "RealVideo Decoder" "RealMedia Splitter" "Gabest" "c:\program files (x86)\total video converter\realmediasplitter.ax"
+ "Record Queue" "Movie Maker Filters" "Microsoft Corporation" "c:\program files (x86)\movie maker 2.6\wmm2filt.dll"
+ "ShotDetect" "Movie Maker Filters" "Microsoft Corporation" "c:\program files (x86)\movie maker 2.6\wmm2filt.dll"
+ "Stetch" "Movie Maker Filters" "Microsoft Corporation" "c:\program files (x86)\movie maker 2.6\wmm2filt.dll"
+ "T" "VP6 Decompression Filter" "On2.com Inc." "c:\program files (x86)\total video converter\vp6dec.ax"
+ "WM VIH2 Fix" "Movie Maker Filters" "Microsoft Corporation" "c:\program files (x86)\movie maker 2.6\wmm2filt.dll"
+ "WMT Audio Analyzer" "Movie Maker Filters" "Microsoft Corporation" "c:\program files (x86)\movie maker 2.6\wmm2filt.dll"
+ "WMT Audio Mixer" "Movie Maker Filters" "Microsoft Corporation" "c:\program files (x86)\movie maker 2.6\wmm2filt.dll"
+ "WMT Black Frame Generator" "Movie Maker Filters" "Microsoft Corporation" "c:\program files (x86)\movie maker 2.6\wmm2filt.dll"
+ "WMT DirectX Transform Wrapper" "Movie Maker Filters" "Microsoft Corporation" "c:\program files (x86)\movie maker 2.6\wmm2filt.dll"
+ "WMT DV Extract" "Movie Maker Filters" "Microsoft Corporation" "c:\program files (x86)\movie maker 2.6\wmm2filt.dll"
+ "WMT Format Conversion" "Movie Maker Filters" "Microsoft Corporation" "c:\program files (x86)\movie maker 2.6\wmm2filt.dll"
+ "WMT Import Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files (x86)\movie maker 2.6\wmm2filt.dll"
+ "WMT Interlacer" "Movie Maker Filters" "Microsoft Corporation" "c:\program files (x86)\movie maker 2.6\wmm2filt.dll"
+ "WMT Log Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files (x86)\movie maker 2.6\wmm2filt.dll"
+ "WMT MuxDeMux Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files (x86)\movie maker 2.6\wmm2filt.dll"
+ "WMT Sample Info Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files (x86)\movie maker 2.6\wmm2filt.dll"
+ "WMT Screen Capture filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files (x86)\movie maker 2.6\wmm2filt.dll"
+ "WMT Switch Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files (x86)\movie maker 2.6\wmm2filt.dll"
+ "WMT Virtual Renderer" "Movie Maker Filters" "Microsoft Corporation" "c:\program files (x86)\movie maker 2.6\wmm2filt.dll"
+ "WMT Virtual Source" "Movie Maker Filters" "Microsoft Corporation" "c:\program files (x86)\movie maker 2.6\wmm2filt.dll"
+ "WMT Volume" "Movie Maker Filters" "Microsoft Corporation" "c:\program files (x86)\movie maker 2.6\wmm2filt.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" ""
+ "BtwCredentialProvider" "BtwCP DLL" "Broadcom Corporation." "c:\program files\widcomm\bluetooth software\btwcp.dll"
+ "WLIDCredentialProvider" "Microsoft« Windows Live ID Credential Provider" "Microsoft Corporation" "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "WindowsLive Local NSP" "Microsoft« Windows Live ID Namespace Provider" "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft« Windows Live ID Namespace Provider" "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" ""
+ "WindowsLive Local NSP" "Microsoft« Windows Live ID Namespace Provider" "Microsoft Corporation" "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft« Windows Live ID Namespace Provider" "Microsoft Corporation" "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order" "" "" ""
+ "BCMLogon" "DW WLAN Card Logon Provider" "Dell Inc." "c:\windows\system32\bcmlogon.dll"
"C:\Users\Rafal\AppData\Local\Microsoft\Windows Sidebar\Settings.ini" "" "" ""
+ "Pogoda" "Obserwuj pogodę w rˇżnych miejscach na świecie." "Microsoft Corporation" "C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\pl-PL\Gadget.xml"

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:02 PM

Posted 11 January 2013 - 11:34 PM

Launch Autoruns and uncheck this entry
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Comcast Modem Release" "" "" "File not found: C:\Users\Rafal\AppData\Local\Comcast Modem Release\lwlqhrlw.dll"

Run the services repair tool

http://kb.eset.com/library/ESET/KB%20Team%20Only/Malware/ServicesRepair.exe

Run Farbar service scanner again and post the new log

#7 Adalbert

Adalbert
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:06:02 PM

Posted 12 January 2013 - 10:15 PM

Done.

Farbar Service Scanner Version: 05-01-2013
Ran by Rafal (administrator) on 12-01-2013 at 22:12:01
Running from "C:\Users\Rafal\Downloads"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is offline
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:02 PM

Posted 12 January 2013 - 11:30 PM

That looks good

Remove temporary and junk files

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode


Create a new restore point

Follow this guide to turn off and turn on your restore points

XP- http://support.microsoft.com/kb/310405

Vista & windows 7- http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Turn off your system restore-It deletes old infected restore points

Turn on system restore and create a new restore point

Update JAVA and Flash player

Uninstall old version of java from control panel-Add or remove programs.Download the latest version from here

http://java.com/en/

Update your flash player

Antivirus recommendations

Update your antivirus frequently.Two free antivirus that i would suggest are

Microsoft security essentials or Avast.You can select either one of them.

If you have a paid one,make sure to update it frequently.Do not use multiple security softwares.

Informative guides that could prevent you from being infected again

How did I get infected?

http://www.bleepingcomputer.com/forums/topic2520.html

Best Practices for Safe Computing - Prevention of Malware Infection

http://www.bleepingcomputer.com/forums/topic407147.html

Simple and easy ways to keep your computer safe and secure on the Internet

http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/

Safe surfing :)

#9 Adalbert

Adalbert
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:06:02 PM

Posted 13 January 2013 - 08:05 AM

Thanks! :thumbup2:

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:02 PM

Posted 13 January 2013 - 11:06 AM

You're welcome :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users