Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Malware in FB Win7 Pro 64b


  • This topic is locked This topic is locked
9 replies to this topic

#1 salvoclick

salvoclick

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:09 AM

Posted 21 April 2013 - 03:38 AM

Hello, recently I've been infected with a malware got into Facebook, I have a noticeable slowdown of all browsers (Chrome, Explorer), a series of strange actions that are done automatically etc etc. I used combofix and issued me a log, how can I send it to you to find out if everything is ok or if I should do something?

 



BC AdBot (Login to Remove)

 


#2 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,664 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:03:09 PM

Posted 21 April 2013 - 06:00 PM

Welcome aboard p22002758.gif

 

p22002970.gif Download Security Check from here or here and save it to your Desktop.

  • Double-click SecurityCheck.exe
  • Follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.
NOTE 2 SecurityCheck may produce some false warning(s), so leave the results reading to me.

p22002970.gif Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


p22002970.gif Please download MiniToolBox and run it.

Checkmark following boxes:
  • Report IE Proxy Settings
  • Report FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices (do NOT change any settings here)
  • List Users, Partitions and Memory size

Click Go and post the result.

p22002970.gif Download Malwarebytes' Anti-Malware (aka MBAM): https://www.bleepingcomputer.com/download/malwarebytes-anti-malware/ to your desktop.

* Double-click mbam-setup.exe and follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad.
* Post the log back here.

Be sure to restart the computer.

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

p22002970.gifDownload Malwarebytes Anti-Rootkit from HERE
  • Unzip downloaded file.
  • Open the folder where the contents were unzipped and run mbar.exe
  • Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
  • DO NOT click on the Cleanup button. Simply exit the program.
  • When done, please post the two logs produced they will be in the MBAR folder..... mbar-log-xxxxx.txt and system-log.txt


p22002970.gif NOTE. Make sure all logs are pasted not attached.


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#3 salvoclick

salvoclick
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:09 AM

Posted 22 April 2013 - 09:51 AM

Results of screen317's Security Check version 0.99.62  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 9  
``````````````Antivirus/Firewall Check:``````````````
Kaspersky PURE 3.0   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:`````````
 Malwarebytes Anti-Malware versione 1.75.0.1300  
 Wise Registry Cleaner 7.35  
 Java 7 Update 21  
 Java version out of Date!
 Adobe Flash Player 11.6.602.180  
 Adobe Reader 10.1.6 Adobe Reader out of Date!  
 Mozilla Firefox (20.0)
 Google Chrome 26.0.1410.64  
````````Process Check: objlist.exe by Laurent````````  
 Malwarebytes Anti-Malware mbamservice.exe  
 Malwarebytes Anti-Malware mbamgui.exe  
 Malwarebytes' Anti-Malware mbamscheduler.exe   
 Kaspersky Lab Kaspersky PURE 3.0 avp.exe  
 Kaspersky Lab Kaspersky PURE 3.0 klwtblfs.exe  
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 5%
````````````````````End of Log``````````````````````



#4 salvoclick

salvoclick
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:09 AM

Posted 22 April 2013 - 09:55 AM

Fss

 

 

Farbar Service Scanner Version: 14-04-2013
Ran by Utente (administrator) on 22-04-2013 at 16:54:23
Running from "C:\Users\Utente\Downloads"
Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Attempt to access Yahoo IP returned error. Yahoo IP is offline
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****



#5 salvoclick

salvoclick
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:09 AM

Posted 22 April 2013 - 10:00 AM

MiniToolBox by Farbar  Version:21-04-2013
Ran by Utente (administrator) on 22-04-2013 at 16:57:06
Running from "C:\Users\Utente\Downloads"
Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

========================= FF Proxy Settings: ==============================

========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

Realtek PCI GBE Family Controller = Connessione alla rete locale (LAN) (Connected)
Intel® 82579V Gigabit Network Connection = Connessione alla rete locale (LAN) 2 (Media disconnected)
Dispositivo Bluetooth (Personal Area Network) = Connessione di rete Bluetooth (Media disconnected)


# ----------------------------------
# Configurazione IPv4
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# Fine configurazione IPv4



Configurazione IP di Windows

   Nome host . . . . . . . . . . . . . . : VideoStation
   Suffisso DNS primario . . . . . . . . :
   Tipo nodo . . . . . . . . . . . . . . : Ibrido
   Routing IP abilitato. . . . . . . . . : No
   Proxy WINS abilitato . . . . . . . .  : No

Scheda Ethernet Connessione di rete Bluetooth:

   Stato supporto. . . . . . . . . . . . : Supporto disconnesso
   Suffisso DNS specifico per connessione:
   Descrizione . . . . . . . . . . . . . : Dispositivo Bluetooth (Personal Area Network)
   Indirizzo fisico. . . . . . . . . . . : 00-26-83-2B-F8-39
   DHCP abilitato. . . . . . . . . . . . : S
   Configurazione automatica abilitata   : S

Scheda Ethernet Connessione alla rete locale (LAN) 2:

   Stato supporto. . . . . . . . . . . . : Supporto disconnesso
   Suffisso DNS specifico per connessione:
   Descrizione . . . . . . . . . . . . . : Intel® 82579V Gigabit Network Connection
   Indirizzo fisico. . . . . . . . . . . : F4-6D-04-AE-E6-23
   DHCP abilitato. . . . . . . . . . . . : S
   Configurazione automatica abilitata   : S

Scheda Ethernet Connessione alla rete locale (LAN):

   Suffisso DNS specifico per connessione:
   Descrizione . . . . . . . . . . . . . : Realtek PCI GBE Family Controller
   Indirizzo fisico. . . . . . . . . . . : F4-6D-04-AE-FB-EB
   DHCP abilitato. . . . . . . . . . . . : S
   Configurazione automatica abilitata   : S
   Indirizzo IPv6 locale rispetto al collegamento . : fe80::d955:fec3:bead:d7c1%14(Preferenziale)
   Indirizzo IPv4. . . . . . . . . . . . : 192.168.0.2(Preferenziale)
   Subnet mask . . . . . . . . . . . . . : 255.255.255.0
   Lease ottenuto. . . . . . . . . . . . : luned 22 aprile 2013 14:36:22
   Scadenza lease . . . . . . . . . . .  : marted 23 aprile 2013 14:36:49
   Gateway predefinito . . . . . . . . . : 192.168.0.1
   Server DHCP . . . . . . . . . . . . . : 192.168.0.1
   IAID DHCPv6 . . . . . . . . . . . : 267676932
   DUID Client DHCPv6. . . . . . . . : 00-01-00-01-15-C0-AA-3C-78-44-76-7C-96-AD
   Server DNS . . . . . . . . . . . . .  : 8.8.8.8
                                           8.8.4.4
   NetBIOS su TCP/IP . . . . . . . . . . : Attivato

Scheda Tunnel isatap.{35FE2A42-36E5-482F-AC52-E4A69BB9721D}:

   Stato supporto. . . . . . . . . . . . : Supporto disconnesso
   Suffisso DNS specifico per connessione:
   Descrizione . . . . . . . . . . . . . : Microsoft ISATAP Adapter
   Indirizzo fisico. . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP abilitato. . . . . . . . . . . . : No
   Configurazione automatica abilitata   : S

Scheda Tunnel Teredo Tunneling Pseudo-Interface:

   Suffisso DNS specifico per connessione:
   Descrizione . . . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Indirizzo fisico. . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP abilitato. . . . . . . . . . . . : No
   Configurazione automatica abilitata   : S
   Indirizzo IPv6 . . . . . . . . . . . . . . . . . : 2001:0:4137:9e76:1c45:fdb:3f57:fffd(Preferenziale)
   Indirizzo IPv6 locale rispetto al collegamento . : fe80::1c45:fdb:3f57:fffd%19(Preferenziale)
   Gateway predefinito . . . . . . . . . : ::
   NetBIOS su TCP/IP . . . . . . . . . . : Disattivato

Scheda Tunnel isatap.{1E308598-C4D6-4CDB-9D19-E8A7BF38E6D5}:

   Stato supporto. . . . . . . . . . . . : Supporto disconnesso
   Suffisso DNS specifico per connessione:
   Descrizione . . . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Indirizzo fisico. . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP abilitato. . . . . . . . . . . . : No
   Configurazione automatica abilitata   : S

Scheda Tunnel isatap.{3636DD3F-F388-4399-8DC1-7B7F7DC2284A}:

   Stato supporto. . . . . . . . . . . . : Supporto disconnesso
   Suffisso DNS specifico per connessione:
   Descrizione . . . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Indirizzo fisico. . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP abilitato. . . . . . . . . . . . : No
   Configurazione automatica abilitata   : S
Server:  google-public-dns-a.google.com
Address:  8.8.8.8

Nome:    google.com
Addresses:  2a00:1450:4002:801::1007
      173.194.35.0
      173.194.35.9
      173.194.35.2
      173.194.35.3
      173.194.35.7
      173.194.35.14
      173.194.35.1
      173.194.35.5
      173.194.35.6
      173.194.35.8
      173.194.35.4


Esecuzione di Ping google.com [173.194.35.0] con 32 byte di dati:
Risposta da 173.194.35.0: byte=32 durata=52ms TTL=53
Risposta da 173.194.35.0: byte=32 durata=48ms TTL=53

Statistiche Ping per 173.194.35.0:
    Pacchetti: Trasmessi = 2, Ricevuti = 2,
    Persi = 0 (0% persi),
Tempo approssimativo percorsi andata/ritorno in millisecondi:
    Minimo = 48ms, Massimo =  52ms, Medio =  50ms
Server:  google-public-dns-a.google.com
Address:  8.8.8.8

Nome:    yahoo.com
Addresses:  98.139.183.24
      206.190.36.45
      98.138.253.109


Esecuzione di Ping yahoo.com [98.139.183.24] con 32 byte di dati:
Risposta da 98.139.183.24: byte=32 durata=438ms TTL=48
Risposta da 98.139.183.24: byte=32 durata=664ms TTL=48

Statistiche Ping per 98.139.183.24:
    Pacchetti: Trasmessi = 2, Ricevuti = 2,
    Persi = 0 (0% persi),
Tempo approssimativo percorsi andata/ritorno in millisecondi:
    Minimo = 438ms, Massimo =  664ms, Medio =  551ms

Esecuzione di Ping 127.0.0.1 con 32 byte di dati:
Risposta da 127.0.0.1: byte=32 durata=2ms TTL=128
Risposta da 127.0.0.1: byte=32 durata<1ms TTL=128

Statistiche Ping per 127.0.0.1:
    Pacchetti: Trasmessi = 2, Ricevuti = 2,
    Persi = 0 (0% persi),
Tempo approssimativo percorsi andata/ritorno in millisecondi:
    Minimo = 0ms, Massimo =  2ms, Medio =  1ms
===========================================================================
Elenco interfacce
 16...00 26 83 2b f8 39 ......Dispositivo Bluetooth (Personal Area Network)
 15...f4 6d 04 ae e6 23 ......Intel® 82579V Gigabit Network Connection
 14...f4 6d 04 ae fb eb ......Realtek PCI GBE Family Controller
  1...........................Software Loopback Interface 1
 18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 19...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 12...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 13...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Tabella route
===========================================================================
Route attive:
     Indirizzo rete             Mask          Gateway     Interfaccia Metrica
          0.0.0.0          0.0.0.0      192.168.0.1      192.168.0.2     10
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link       192.168.0.2    266
      192.168.0.2  255.255.255.255         On-link       192.168.0.2    266
    192.168.0.255  255.255.255.255         On-link       192.168.0.2    266
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.0.2    266
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.0.2    266
===========================================================================
Route permanenti:
  Nessuna

IPv6 Tabella route
===========================================================================
Route attive:
 Interf Metrica Rete Destinazione      Gateway
 19     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 19     58 2001::/32                On-link
 19    306 2001:0:4137:9e76:1c45:fdb:3f57:fffd/128
                                    On-link
 14    266 fe80::/64                On-link
 19    306 fe80::/64                On-link
 19    306 fe80::1c45:fdb:3f57:fffd/128
                                    On-link
 14    266 fe80::d955:fec3:bead:d7c1/128
                                    On-link
  1    306 ff00::/8                 On-link
 19    306 ff00::/8                 On-link
 14    266 ff00::/8                 On-link
===========================================================================
Route permanenti:
  Nessuna

========================= Event log errors: ===============================

Application errors:
==================
Error: (04/22/2013 02:38:31 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/21/2013 09:24:02 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/21/2013 09:23:01 AM) (Source: PandoraService.exe) (User: )
Description: Socket Error # 11001
Host not found.

Error: (04/20/2013 08:17:28 PM) (Source: Application Error) (User: )
Description: Nome dell'applicazione che ha generato l'errore: IEXPLORE.EXE, versione: 10.0.9200.16537, timestamp: 0x512347f7
Nome del modulo che ha generato l'errore: MSHTML.dll, versione: 10.0.9200.16540, timestamp: 0x5125ef5c
Codice eccezione: 0xc000041d
Offset errore 0x00571782
ID processo che ha generato l'errore: 0x2d2c
Ora di avvio dell'applicazione che ha generato l'errore: 0xIEXPLORE.EXE0
Percorso dell'applicazione che ha generato l'errore: IEXPLORE.EXE1
Percorso del modulo che ha generato l'errore: IEXPLORE.EXE2
ID segnalazione: IEXPLORE.EXE3

Error: (04/20/2013 08:16:24 PM) (Source: Application Error) (User: )
Description: Nome dell'applicazione che ha generato l'errore: AfterFX.exe, versione: 10.0.2.4, timestamp: 0x4d6ff933
Nome del modulo che ha generato l'errore: wdmaud.drv, versione: 6.1.7601.17514, timestamp: 0x4ce7c9f8
Codice eccezione: 0xc0000005
Offset errore 0x000000000000f827
ID processo che ha generato l'errore: 0x2e8c
Ora di avvio dell'applicazione che ha generato l'errore: 0xAfterFX.exe0
Percorso dell'applicazione che ha generato l'errore: AfterFX.exe1
Percorso del modulo che ha generato l'errore: AfterFX.exe2
ID segnalazione: AfterFX.exe3

Error: (04/20/2013 08:16:10 PM) (Source: Application Error) (User: )
Description: Nome dell'applicazione che ha generato l'errore: IEXPLORE.EXE, versione: 10.0.9200.16537, timestamp: 0x512347f7
Nome del modulo che ha generato l'errore: MSHTML.dll, versione: 10.0.9200.16540, timestamp: 0x5125ef5c
Codice eccezione: 0xc0000005
Offset errore 0x00571782
ID processo che ha generato l'errore: 0x2d2c
Ora di avvio dell'applicazione che ha generato l'errore: 0xIEXPLORE.EXE0
Percorso dell'applicazione che ha generato l'errore: IEXPLORE.EXE1
Percorso del modulo che ha generato l'errore: IEXPLORE.EXE2
ID segnalazione: IEXPLORE.EXE3

Error: (04/20/2013 02:56:27 PM) (Source: Application Error) (User: )
Description: Nome dell'applicazione che ha generato l'errore: EDIUS.exe, versione: 7.0.3.178, timestamp: 0x511cafb6
Nome del modulo che ha generato l'errore: Looks3.aex_unloaded, versione: 0.0.0.0, timestamp: 0x4fd10990
Codice eccezione: 0xc0000005
Offset errore 0x161c0a56
ID processo che ha generato l'errore: 0x3180
Ora di avvio dell'applicazione che ha generato l'errore: 0xEDIUS.exe0
Percorso dell'applicazione che ha generato l'errore: EDIUS.exe1
Percorso del modulo che ha generato l'errore: EDIUS.exe2
ID segnalazione: EDIUS.exe3

Error: (04/20/2013 02:56:21 PM) (Source: Application Error) (User: )
Description: Nome dell'applicazione che ha generato l'errore: EDIUS.exe, versione: 7.0.3.178, timestamp: 0x511cafb6
Nome del modulo che ha generato l'errore: Looks3.aex_unloaded, versione: 0.0.0.0, timestamp: 0x4fd10990
Codice eccezione: 0xc0000005
Offset errore 0x161e51e0
ID processo che ha generato l'errore: 0x3180
Ora di avvio dell'applicazione che ha generato l'errore: 0xEDIUS.exe0
Percorso dell'applicazione che ha generato l'errore: EDIUS.exe1
Percorso del modulo che ha generato l'errore: EDIUS.exe2
ID segnalazione: EDIUS.exe3

Error: (04/20/2013 11:41:31 AM) (Source: Application Error) (User: )
Description: Nome dell'applicazione che ha generato l'errore: ACDSeePro5.exe, versione: 5.3.168.0, timestamp: 0x4fe9a958
Nome del modulo che ha generato l'errore: ntdll.dll, versione: 6.1.7601.17725, timestamp: 0x4ec49b8f
Codice eccezione: 0xc0150010
Offset errore 0x000847db
ID processo che ha generato l'errore: 0xcd0
Ora di avvio dell'applicazione che ha generato l'errore: 0xACDSeePro5.exe0
Percorso dell'applicazione che ha generato l'errore: ACDSeePro5.exe1
Percorso del modulo che ha generato l'errore: ACDSeePro5.exe2
ID segnalazione: ACDSeePro5.exe3

Error: (04/20/2013 11:41:25 AM) (Source: Application Error) (User: )
Description: Nome dell'applicazione che ha generato l'errore: ACDSeePro5.exe, versione: 5.3.168.0, timestamp: 0x4fe9a958
Nome del modulo che ha generato l'errore: mfc90u.dll, versione: 9.0.30729.6161, timestamp: 0x4dad06e1
Codice eccezione: 0xc0000005
Offset errore 0x0008c474
ID processo che ha generato l'errore: 0xcd0
Ora di avvio dell'applicazione che ha generato l'errore: 0xACDSeePro5.exe0
Percorso dell'applicazione che ha generato l'errore: ACDSeePro5.exe1
Percorso del modulo che ha generato l'errore: ACDSeePro5.exe2
ID segnalazione: ACDSeePro5.exe3


System errors:
=============
Error: (04/22/2013 02:37:28 PM) (Source: Service Control Manager) (User: )
Description: Il servizio DgiVecp non è stato avviato per il seguente errore:
%%20

Error: (04/22/2013 02:36:43 PM) (Source: Service Control Manager) (User: )
Description: Il servizio EpsonBidirectionalService non è stato avviato per il seguente errore:
%%1053

Error: (04/22/2013 02:36:43 PM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 millisecondi) durante l'attesa della connessione del servizio EpsonBidirectionalService.

Error: (04/22/2013 02:36:12 PM) (Source: Service Control Manager) (User: )
Description: Il servizio Virtual USB MultiKey non è stato avviato per il seguente errore:
%%2

Error: (04/21/2013 09:48:48 AM) (Source: Service Control Manager) (User: )
Description: Il servizio PEVSystemStart è contrassegnato come interattivo. Il sistema non è configurato per consentire servizi interattivi. Questo servizio potrà non funzionare correttamente.

Error: (04/21/2013 09:47:03 AM) (Source: Application Popup) (User: )
Description: Caricamento del driver \??\C:\ComboFix\catchme.sys bloccato a causa di incompatibilità con il sistema in uso. Rivolgersi al fornitore del software per richiedere una versione compatibile del driver.

Error: (04/21/2013 09:44:28 AM) (Source: Service Control Manager) (User: )
Description: Il servizio PEVSystemStart è contrassegnato come interattivo. Il sistema non è configurato per consentire servizi interattivi. Questo servizio potrà non funzionare correttamente.

Error: (04/21/2013 09:40:35 AM) (Source: Service Control Manager) (User: )
Description: Arresto imprevista del servizio ONDA Autorun CDROM Monitor. Questo evento si è già verificato 1 volta(e).

Error: (04/21/2013 09:38:50 AM) (Source: Service Control Manager) (User: )
Description: Arresto imprevista del servizio Skype C2C Service. Questo evento si è già verificato 1 volta(e).

Error: (04/21/2013 09:22:36 AM) (Source: Service Control Manager) (User: )
Description: Il servizio DgiVecp non è stato avviato per il seguente errore:
%%20


Microsoft Office Sessions:
=========================
Error: (04/22/2013 02:38:31 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/21/2013 09:24:02 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/21/2013 09:23:01 AM) (Source: PandoraService.exe)(User: )
Description: Socket Error # 11001
Host not found.

Error: (04/20/2013 08:17:28 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE10.0.9200.16537512347f7MSHTML.dll10.0.9200.165405125ef5cc000041d005717822d2c01ce3da9c579b807C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\system32\MSHTML.dll8eb159a1-a9e6-11e2-99b1-0026832bf839

Error: (04/20/2013 08:16:24 PM) (Source: Application Error)(User: )
Description: AfterFX.exe10.0.2.44d6ff933wdmaud.drv6.1.7601.175144ce7c9f8c0000005000000000000f8272e8c01ce3dc6cb574ec8C:\Program Files\Adobe\Adobe After Effects CS5\Support Files\AfterFX.exeC:\Windows\system32\wdmaud.drv682b55fa-a9e6-11e2-99b1-0026832bf839

Error: (04/20/2013 08:16:10 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE10.0.9200.16537512347f7MSHTML.dll10.0.9200.165405125ef5cc0000005005717822d2c01ce3da9c579b807C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\system32\MSHTML.dll604ee443-a9e6-11e2-99b1-0026832bf839

Error: (04/20/2013 02:56:27 PM) (Source: Application Error)(User: )
Description: EDIUS.exe7.0.3.178511cafb6Looks3.aex_unloaded0.0.0.04fd10990c0000005161c0a56318001ce3dc075674c49C:\Program Files (x86)\Grass Valley\EDIUS 6.5\EDIUS.exeLooks3.aexb66c1fb8-a9b9-11e2-99b1-0026832bf839

Error: (04/20/2013 02:56:21 PM) (Source: Application Error)(User: )
Description: EDIUS.exe7.0.3.178511cafb6Looks3.aex_unloaded0.0.0.04fd10990c0000005161e51e0318001ce3dc075674c49C:\Program Files (x86)\Grass Valley\EDIUS 6.5\EDIUS.exeLooks3.aexb25a31b7-a9b9-11e2-99b1-0026832bf839

Error: (04/20/2013 11:41:31 AM) (Source: Application Error)(User: )
Description: ACDSeePro5.exe5.3.168.04fe9a958ntdll.dll6.1.7601.177254ec49b8fc0150010000847dbcd001ce3daac5ee6e26C:\Program Files (x86)\ACD Systems\ACDSee Pro\5.0\ACDSeePro5.exeC:\Windows\SysWOW64\ntdll.dll7ac4519b-a99e-11e2-99b1-0026832bf839

Error: (04/20/2013 11:41:25 AM) (Source: Application Error)(User: )
Description: ACDSeePro5.exe5.3.168.04fe9a958mfc90u.dll9.0.30729.61614dad06e1c00000050008c474cd001ce3daac5ee6e26C:\Program Files (x86)\ACD Systems\ACDSee Pro\5.0\ACDSeePro5.exeC:\Windows\WinSxS\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll7727472f-a99e-11e2-99b1-0026832bf839


CodeIntegrity Errors:
===================================
  Date: 2013-04-21 09:47:03.363
  Description: Impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\ComboFix\catchme.sys. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.

  Date: 2013-04-21 09:47:03.332
  Description: Impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\ComboFix\catchme.sys. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.

  Date: 2013-04-19 21:52:58.104
  Description: Controllo dell'integrità del codice: impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys. Impossibile trovare l'insieme di hash dell'immagine per pagina nel sistema.

  Date: 2013-04-19 21:52:58.104
  Description: Controllo dell'integrità del codice: impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys. Impossibile trovare l'insieme di hash dell'immagine per pagina nel sistema.

  Date: 2013-04-19 21:52:58.073
  Description: Controllo dell'integrità del codice: impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys. Impossibile trovare l'insieme di hash dell'immagine per pagina nel sistema.

  Date: 2013-04-19 21:12:25.392
  Description: Controllo dell'integrità del codice: impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\KLELAMX64\klelam.sys. Impossibile trovare l'insieme di hash dell'immagine per pagina nel sistema.

  Date: 2013-04-19 21:12:25.369
  Description: Controllo dell'integrità del codice: impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\KLELAMX64\klelam.sys. Impossibile trovare l'insieme di hash dell'immagine per pagina nel sistema.

  Date: 2013-04-19 21:12:25.367
  Description: Controllo dell'integrità del codice: impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\KLELAMX64\klelam.sys. Impossibile trovare l'insieme di hash dell'immagine per pagina nel sistema.


=========================== Installed Programs ============================

ABBYY FineReader 9.0 Sprint (Version: 9.00.631.5823)
ACDSee Pro 5 (Version: 5.3.168)
AChat 1.17 high detail textures and additional music
Add or Remove Adobe Premiere Pro CS5 (Version: 5.0)
Adobe After Effects CS5 (Version: 10)
Adobe After Effects CS5 Third Party Content (Version: 10.0.2)
Adobe After Effects CS5 Third Party Royalty Content (Version: 10.0.2)
Adobe AIR (Version: 3.1.0.4880)
Adobe Audition CS6 (Version: 5.0)
Adobe Encore CS5 Third Party Royalty Content (Version: 5.0.0)
Adobe Flash Player 11 ActiveX (Version: 11.7.700.169)
Adobe Flash Player 11 Plugin (Version: 11.6.602.180)
Adobe Help Manager (Version: 4.0.244)
Adobe Illustrator CS6 (Version: 16.0)
Adobe Media Player (Version: 1.8)
Adobe Photoshop CS5 (Version: 12.0)
Adobe Photoshop Lightroom 4.1 64-bit (Version: 4.1.2)
Adobe Reader X (10.1.6) - Italiano (Version: 10.1.6)
Adobe Shockwave Player 11.6 (Version: 11.6.0.626)
Aimersoft DVD Ripper(Build 2.7.3.4)
AIMP3 (Version: v3.20.1165, 21.12.2012)
Akamai NetSession Interface
AMD Accelerated Video Transcoding (Version: 12.5.100.21219)
AMD APP SDK Runtime (Version: 10.0.1084.4)
AMD Catalyst Install Manager (Version: 8.0.903.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Media Foundation Decoders (Version: 1.0.71219.1540)
Any Video Converter 3.4.2
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
ArcSoft Panorama Maker 6 (Version: 6.0.0.92)
Audiograbber 1.83 SE  (Version: 1.83 SE )
Audiograbber MP3 Plugin (Version: 1.0)
AVCHD converter (Version: 3.31.000)
BenVista PhotoZoom Pro 5.0.2 (Version: 5.0.2)
bl (Version: 1.0.0)
Bluetooth Win7 Suite (64) (Version: 7.2.0.40)
BluffTitler
Bonjour (Version: 3.0.0.10)
Canopus Codec Option (Version: 3.04)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center (Version: 2012.1219.1521.27485)
Catalyst Control Center Graphics Previews Common (Version: 2012.1219.1521.27485)
Catalyst Control Center Localization All (Version: 2012.1219.1521.27485)
CCC Help Chinese Standard (Version: 2012.1219.1520.27485)
CCC Help Chinese Traditional (Version: 2012.1219.1520.27485)
CCC Help Czech (Version: 2012.1219.1520.27485)
CCC Help Danish (Version: 2012.1219.1520.27485)
CCC Help Dutch (Version: 2012.1219.1520.27485)
CCC Help English (Version: 2012.1219.1520.27485)
CCC Help Finnish (Version: 2012.1219.1520.27485)
CCC Help French (Version: 2012.1219.1520.27485)
CCC Help German (Version: 2012.1219.1520.27485)
CCC Help Greek (Version: 2012.1219.1520.27485)
CCC Help Hungarian (Version: 2012.1219.1520.27485)
CCC Help Italian (Version: 2012.1219.1520.27485)
CCC Help Japanese (Version: 2012.1219.1520.27485)
CCC Help Korean (Version: 2012.1219.1520.27485)
CCC Help Norwegian (Version: 2012.1219.1520.27485)
CCC Help Polish (Version: 2012.1219.1520.27485)
CCC Help Portuguese (Version: 2012.1219.1520.27485)
CCC Help Russian (Version: 2012.1219.1520.27485)
CCC Help Spanish (Version: 2012.1219.1520.27485)
CCC Help Swedish (Version: 2012.1219.1520.27485)
CCC Help Thai (Version: 2012.1219.1520.27485)
CCC Help Turkish (Version: 2012.1219.1520.27485)
ccc-utility64 (Version: 2012.1219.1521.27485)
CCleaner (Version: 4.00)
Contour Shuttle (Version: 2.81)
Corel DVD MovieFactory (Version: 7.0.0)
Corel DVD MovieFactory 7 (Version: 7.0.0)
CrystalDiskInfo 4.3.0a (Version: 4.3.0a)
CyberLink PowerDVD 11 (Version: 11.0.2608.53)
D3DX10 (Version: 15.4.2368.0902)
Direct DiscRecorder (Version: 1.00.0000)
Disinstalla EPSON Remote Print Printer
Disketch Disc Label Software
DivX Setup (Version: 2.5.0.15)
Download Navigator (Version: 3.4.1)
Dropbox (Version: 1.6.18)
DVD Architect Pro 5.2 (Version: 5.2.124)
DVD Shrink 3.2
EaseUS Partition Master 9.1.1 Home Edition
EasyBCD 2.1.2 (Version: 2.1.2)
EDIUS (Version: 6.53)
EDIUS Codec Option 6.53 (Version: 6.53)
EDIUS DVD Menu Style 1.00 (Version: 1.00)
Epson Connect Printer Setup (Version: 1.1.1)
Epson Easy Photo Print 2 (Version: 2.4.0.0)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (Version: 1.00.0000)
Epson Event Manager (Version: 3.01.0005)
Epson E-Web Print (Version: 1.17.0000)
Epson Guida di rete XP-600 Series
Epson Guida utente XP-600 Series
Epson Print CD (Version: 2.05.00)
EPSON Printer Finder (Version: 1.0.0)
EPSON Printer Software
EPSON Scan
EPSON XP-600 Series Printer Uninstall
EpsonNet Print (Version: 2.5.00)
eReg (Version: 1.20.138.34)
EximiousSoft Logo Designer V3.20
Facebook Video Calling 1.2.0.287 (Version: 1.2.287)
FastStone Image Viewer 4.6 (Version: 4.6)
Free Download Manager 3.9.2
Free Mp3 Wma Converter V 2.2 (Version: 2.2.0.0)
Google Chrome (Version: 26.0.1410.64)
Google Talk Plugin (Version: 3.18.1.12731)
Google Update Helper (Version: 1.3.21.135)
GoPro CineForm Studio 1.3.2 (Version: 1.3.2)
Guida di Epson Connect
GV LicenseManager 1.03 (Version: 1.03)
High-Definition Video Playback (Version: 11.1.10400.2.65)
HydraVision (Version: 4.2.248.0)
iCloud (Version: 2.1.2.8)
Image Rescue 4
Imagenomic Noiseware 4.2 Professional Plug-in (build 4205)
Imagenomic Portraiture 2.3 Plug-in (build 2308)
Imagenomic RealGrain 1.1 Plug-in (build 1103)
Imaginate
Inkscape 0.48.2 (Version: 0.48.2)
Intel® Management Engine Components (Version: 8.0.10.1464)
Intel® Network Connections 17.2.154.0 (Version: 17.2.154.0)
Intel® Rapid Storage Technology (Version: 11.1.0.1006)
Intel® Trusted Connect Service Client (Version: 1.23.943.1)
iTunes (Version: 11.0.2.26)
IZArc 4.1.6 (Version: 4.1.6)
iZotope RX 2 (Version: 2.10)
iZotope VST Plug-ins (Version: 1.00)
Java 7 Update 21 (Version: 7.0.210)
Java Auto Updater (Version: 2.1.9.5)
Kaspersky PURE 3.0 (Version: 13.0.2.558)
LaCie Desktop Manager 1.5.6 (Version: 1.5.6)
LaCieRemoteComms 1.1.1 (Version: 1.1.1)
LibreOffice 3.5 Help Pack (Italian) (Version: 3.5.5.3)
LibreOffice 3.6 (Version: 3.6.5.2)
LightScribe Diagnostic Utility (Version: 1.18.26.7)
LightScribe System Software (Version: 1.18.22.2)
LightScribe Template Labeler (Version: 1.18.26.7)
Logitech SetPoint 6.32 (Version: 6.32.20)
Magic Bullet Suite 32-bit (Version: 11.4.1)
Magic Bullet Suite 64-bit (Version: 11.4.1)
Malwarebytes Anti-Malware versione 1.75.0.1300 (Version: 1.75.0.1300)
Memopal 4.0.0 (Version: 4.0.0)
Messenger Plus! (Version: 6.00.0.773)
Messenger Plus! for Skype (Version: 1.5.0.121)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 4 Client Profile - Language Pack (ITA) (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile ITA Language Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Corporation (Version: 9.1.0.0)
Microsoft LifeCam (Version: 3.22.270.0)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Web Platform Installer 3.0 (Version: 3.0.5)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
MiPony 2.0.4 (Version: 2.0.4)
Mosaic Creator 3.1
Mozilla Firefox 20.0.1 (x86 en-US) (Version: 20.0.1)
Mozilla Maintenance Service (Version: 20.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT Redists (Version: 1.0)
MSVCRT110 (Version: 16.4.1108.0727)
MSVCRT110_amd64 (Version: 16.4.1109.0912)
NEF Codec (Version: 1.00.0000)
Nero 11 (Version: 11.0.15800)
Nero 11 Cliparts (Version: 11.0.11200.12.0)
Nero 11 Disc Menus 1 (Version: 11.0.11200.12.0)
Nero 11 Disc Menus 2 (Version: 11.0.11200.12.0)
Nero 11 Disc Menus 3 (Version: 11.0.11200.12.0)
Nero 11 Disc Menus Basic (Version: 11.0.11200.12.0)
Nero 11 Effects Basic (Version: 11.0.11200.12.0)
Nero 11 Image Samples (Version: 11.0.11200.12.0)
Nero 11 Kwik Themes 1 (Version: 11.0.11200.12.0)
Nero 11 Kwik Themes 2 (Version: 11.0.11200.12.0)
Nero 11 Kwik Themes 3 (Version: 11.0.11200.12.0)
Nero 11 Kwik Themes 4 (Version: 11.0.11200.12.0)
Nero 11 Kwik Themes Basic (Version: 11.0.11200.12.0)
Nero 11 PiP Effects 1 (Version: 11.0.11200.12.0)
Nero 11 PiP Effects Basic (Version: 11.0.11300.12.0)
Nero 11 Video Samples (Version: 11.0.11200.12.0)
Nero 11 Video Transitions 1 (Version: 11.0.11200.12.0)
Nero Audio Pack 1 (Version: 11.0.11500.110.0)
Nero BackItUp 11 Help (CHM) (Version: 11.0.10200)
Nero Backup Drivers (Version: 1.0.10000.1.0)
Nero Burning ROM 11 (Version: 11.0.12200.23.100)
Nero Burning ROM 11 Help (CHM) (Version: 11.0.10300)
Nero ControlCenter 11 (Version: 11.0.12300.0.23)
Nero ControlCenter 11 Help (CHM) (Version: 11.0.10300)
Nero Core Components 11 (Version: 11.0.15000.1.12)
Nero CoverDesigner 11 (Version: 6.0.10800.11.100)
Nero CoverDesigner 11 Help (CHM) (Version: 11.0.10300)
Nero Express 11 (Version: 11.0.11700.23.100)
Nero Express 11 Help (CHM) (Version: 11.0.10300)
Nero Kwik Media (Version: 1.10.19300.93.100)
Nero Kwik Media Help (CHM) (Version: 11.0.10200)
Nero Recode 11 (Version: 5.0.13300.32.100)
Nero Recode 11 Help (CHM) (Version: 11.0.10300)
Nero RescueAgent 11 (Version: 4.0.10600.10.100)
Nero RescueAgent 11 Help (CHM) (Version: 11.0.10400)
Nero SoundTrax 11 (Version: 5.0.10400.4.100)
Nero SoundTrax 11 Help (CHM) (Version: 11.0.10400)
Nero Video 11 (Version: 8.0.14000.21.100)
Nero Video 11 Help (CHM) (Version: 11.0.10300)
Nero WaveEditor 11 (Version: 6.0.10800.5.100)
Nero WaveEditor 11 Help (CHM) (Version: 11.0.10400)
nero.prerequisites.msi (Version: 11.0.20008)
NexusFont 2.5 (ver 2.5.8.1582)
NVIDIA Install Application (Version: 2.1002.62.312)
onOne PerfectPresets (Version: 1.0)
OpenOffice.org 3.4.1 (Version: 3.41.9593)
Pacchetto di codec della fotocamera Microsoft (Version: 16.0.0652.0621)
Paint.NET v3.5.10 (Version: 3.60.0)
Pandora Service
particleIllusion 3.0.4 demo
PDF Settings CS5 (Version: 10.0)
PDF Settings CS6 (Version: 11.0)
Perfect Effects 4 (Version: 4.0)
Perfect Photo Suite 6.1 (Version: 6.1)
ph (Version: 1.0.0)
Photo Common (Version: 16.4.3505.0912)
Photodex Presenter
PhotoME Beta-Release (Version: 0.8ß2)
PhotoPresets with One-Click WOW! for Adobe Camera Raw (Version: 1.0)
PhotoPresets Wow Effects for Adobe Camera Raw (Version: 1.0)
PhotoScape
Picasa 3 (Version: 3.8)
Portrait Professional Studio 64 v11.1 (Version: 11.1)
PostworkShop 3 64
ProCoder 3 (Version: 3.06.00.24320)
proDAD Adorage 3.0 (Version: 3.0.93)
proDAD Vitascene 2.0 (Version: 2.0.193)
ProShow Producer
PxMergeModule (Version: 1.00.0000)
QuickTime (Version: 7.73.80.64)
Realtek Ethernet Controller Driver For Windows 7 (Version: 7.21.531.2010)
Realtek High Definition Audio Driver (Version: 6.0.1.6235)
Recuva (Version: 1.43)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.0.32.0)
RonyaSoft Poster Designer (Poster Forge) 2.01 (Version: 2.01)
Samsung ML-1520 Series
Sandboxie 3.56 (64-bit)
ScenalyzerLive (remove)
Sentinel System Driver Installer 7.5.0 (Version: 7.5.0)
Setup (Version: 2.01.01)
Skype Click to Call (Version: 6.7.12055)
Skype™ 6.1 (Version: 6.1.129)
Smart Defrag 2 (Version: 2.7)
Smart Photo Editor (Version: 1.18)
Software Logitech Unifying 2.00 (Version: 2.00.43)
Supporto applicazioni Apple (Version: 2.3.3)
Tavoletta Wacom (Version: 6.3.3-4)
The KMPlayer (remove only) (Version: 3.4.0.59)
Topaz Adjust 5 (64-bit) (Version: 5.0.0)
Topaz Adjust 5 (Version: 5.0.0)
Topaz B&W Effects (64-bit) (Version: 1.1.0)
Topaz B&W Effects (Version: 1.1.0)
Topaz Clean 3 (64-bit) (Version: 3.0.2)
Topaz Clean 3 (Version: 3.0.2)
Topaz DeJpeg 4 (64-bit) (Version: 4.0.2)
Topaz DeJpeg 4 (Version: 4.0.2)
Topaz DeNoise 5 (64-bit) (Version: 5.0.1)
Topaz DeNoise 5 (Version: 5.0.1)
Topaz Detail 2 (64-bit) (Version: 2.0.5)
Topaz Detail 2 (Version: 2.0.5)
Topaz Fusion Express 2 (64-bit) (Version: 2.1.1)
Topaz Fusion Express 2 (Version: 2.1.1)
Topaz InFocus (64-bit) (Version: 1.0.0)
Topaz InFocus (Version: 1.0.0)
Topaz Lens Effects (64-bit) (Version: 1.2.0)
Topaz Lens Effects (Version: 1.2.0)
Topaz ReMask 3 (64-bit) (Version: 3.2.0)
Topaz ReMask 3 (Version: 3.2.0)
Topaz Simplify 3 (64-bit) (Version: 3.0.2)
Topaz Simplify 3 (Version: 3.0.2)
TopazSoftwareManager (Version: 1.0.8)
Total Commander (Remove or Repair) (Version: 7.56a)
TotalAudioConverter (Version: 5.1)
Unlocker 1.9.1-x64 (Version: 1.9.1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0)
VisTitle Ver1.8.6.0 for EDIUS
Visual C++ 9.0 CRT (x86) WinSXS MSM (Version: 9.0)
VLC media player 2.0.5 (Version: 2.0.5)
WebTablet FB Plugin 32 bit (Version: 2.1.0.2)
WebTablet FB Plugin 64 bit (Version: 2.1.0.2)
welcome (Version: 11.0.21500.0.4)
Windows Driver Package - GoPro (WinUSB) Universal Serial Bus devices  (03/07/2012 ) (Version: 03/07/2012 )
Windows Live Communications Platform (Version: 16.4.3505.0912)
Windows Live Essentials (Version: 16.4.3505.0912)
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0)
Windows Live Installer (Version: 16.4.3505.0912)
Windows Live Messenger (Version: 16.4.3505.0912)
Windows Live Photo Common (Version: 16.4.3505.0912)
Windows Live PIMT Platform (Version: 16.4.3505.0912)
Windows Live SOXE (Version: 16.4.3505.0912)
Windows Live SOXE Definitions (Version: 16.4.3505.0912)
Windows Live UX Platform (Version: 16.4.3505.0912)
Windows Live UX Platform Language Pack (Version: 16.4.3505.0912)
Windows Media Encoder 9 Series
Windows Media Encoder 9 Series (Version: 9.00.2980)
Wise Registry Cleaner 7.35
Yahoo! Messenger
Yahoo! Software Update
YTD Video Downloader 3.9.6 (Version: 3.9.6)
Zoner Photo Studio 15 (Version: 15.0.1.4)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 22%
Total physical RAM: 16351.14 MB
Available physical RAM: 12708.05 MB
Total Pagefile: 32700.46 MB
Available Pagefile: 28671.59 MB
Total Virtual: 4095.88 MB
Available Virtual: 3980.34 MB

========================= Partitions: =====================================

1 Drive c: (Sistema) (Fixed) (Total:171.94 GB) (Free:43.21 GB) NTFS
2 Drive d: (Backup) (Fixed) (Total:293.72 GB) (Free:293.45 GB) NTFS
5 Drive g: (Media) (Fixed) (Total:931.51 GB) (Free:509.76 GB) NTFS
6 Drive h: (Elements) (Fixed) (Total:465.76 GB) (Free:386.96 GB) NTFS
7 Drive i: (MY DISK) (Fixed) (Total:465.64 GB) (Free:248.64 GB) FAT32
8 Drive j: (VERBATIM 1T) (Fixed) (Total:931.28 GB) (Free:806.2 GB) FAT32
9 Drive k: (Audio) (Fixed) (Total:465.76 GB) (Free:242.41 GB) NTFS
10 Drive l: (LACIE SETUP) (Fixed) (Total:0.68 GB) (Free:0 GB) FAT32
11 Drive m: (Lacie Storage Video) (Fixed) (Total:1862.33 GB) (Free:1658.67 GB) NTFS

========================= Users: ========================================

Account utente per \\VIDEOSTATION

Administrator            ASPNET                   Guest                    
Utente                   
Esecuzione comando riuscita.


**** End of log ****
 



#6 salvoclick

salvoclick
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:09 AM

Posted 22 April 2013 - 10:04 AM

Malwarebytes Anti-Malware (PRO) 1.75.0.1300
www.malwarebytes.org

Versione database: v2013.04.22.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16540
Utente :: VIDEOSTATION [amministratore]

Protezione: Attivata

22/04/2013 17:01:31
mbam-log-2013-04-22 (17-01-31).txt

Tipo di scansione: Scansione veloce
Opzioni di scansione attive: Memoria | Esecuzione automatica | Registro | File di sistema | Euristica/Extra | Euristica/Shuriken | PUP | PUM
Opzioni di scansione disattivate: P2P
Elementi esaminati: 223720
Tempo impiegato: 2 minuti, 51 secondi

Processi rilevati in memoria: 0
(non sono stati rilevati elementi nocivi)

Moduli di memoria rilevati: 0
(non sono stati rilevati elementi nocivi)

Chiavi di registro rilevate: 0
(non sono stati rilevati elementi nocivi)

Valori di registro rilevati: 0
(non sono stati rilevati elementi nocivi)

Voci rilevate nei dati di registro: 0
(non sono stati rilevati elementi nocivi)

Cartelle rilevate: 0
(non sono stati rilevati elementi nocivi)

File rilevati: 0
(non sono stati rilevati elementi nocivi)

(fine)
 



#7 salvoclick

salvoclick
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:09 AM

Posted 22 April 2013 - 10:37 AM

Malwarebytes Anti-Rootkit BETA 1.05.0.1001
www.malwarebytes.org

Database version: v2013.04.22.05

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16540
Utente :: VIDEOSTATION [administrator]

22/04/2013 17:34:15
mbar-log-2013-04-22 (17-34-15).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 32574
Time elapsed: 28 minute(s),

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
 



Malwarebytes Anti-Rootkit BETA 1.05.0.1001

© Malwarebytes Corporation 2011-2012

OS version: 6.1.7601 Windows 7 Service Pack 1 x64

Account is Administrative

Internet Explorer version: 10.0.9200.16540

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED, G:\ DRIVE_FIXED, H:\ DRIVE_FIXED, I:\ DRIVE_FIXED, J:\ DRIVE_FIXED, K:\ DRIVE_FIXED, L:\ DRIVE_FIXED, M:\ DRIVE_FIXED
CPU speed: 3.411000 GHz
Memory total: 17145413632, free: 13212065792

------------ Kernel report ------------
     04/22/2013 17:05:44
------------ Loaded modules -----------
\SystemRoot\system32\ntoskrnl.exe
\SystemRoot\system32\hal.dll
\SystemRoot\system32\kdcom.dll
\SystemRoot\system32\mcupdate_GenuineIntel.dll
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\CLFS.SYS
\SystemRoot\system32\CI.dll
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\system32\drivers\ACPI.sys
\SystemRoot\system32\drivers\WMILIB.SYS
\SystemRoot\system32\drivers\msisadrv.sys
\SystemRoot\system32\drivers\pci.sys
\SystemRoot\system32\drivers\vdrvroot.sys
\SystemRoot\system32\DRIVERS\CSCrySec.sys
\SystemRoot\system32\DRIVERS\kl1.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\system32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\system32\DRIVERS\pciide.sys
\SystemRoot\system32\DRIVERS\PCIIDEX.SYS
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\system32\DRIVERS\iaStor.sys
\SystemRoot\system32\drivers\atapi.sys
\SystemRoot\system32\drivers\ataport.SYS
\SystemRoot\system32\drivers\msahci.sys
\SystemRoot\system32\DRIVERS\mv91xx.sys
\SystemRoot\system32\DRIVERS\SCSIPORT.SYS
\SystemRoot\system32\DRIVERS\mvxxmm.sys
\SystemRoot\system32\drivers\amdxata.sys
\SystemRoot\system32\drivers\fltmgr.sys
\SystemRoot\system32\drivers\fileinfo.sys
\SystemRoot\System32\Drivers\PxHlpa64.sys
\SystemRoot\System32\Drivers\Ntfs.sys
\SystemRoot\System32\Drivers\msrpc.sys
\SystemRoot\System32\Drivers\ksecdd.sys
\SystemRoot\System32\Drivers\cng.sys
\SystemRoot\System32\drivers\pcw.sys
\SystemRoot\System32\Drivers\Fs_Rec.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\Drivers\ksecpkg.sys
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\system32\drivers\vmstorfl.sys
\SystemRoot\system32\drivers\volsnap.sys
\SystemRoot\System32\Drivers\spldr.sys
\SystemRoot\System32\Drivers\SmartDefragDriver.sys
\SystemRoot\System32\drivers\rdyboost.sys
\SystemRoot\system32\DRIVERS\NBVol.sys
\SystemRoot\system32\DRIVERS\NBVolUp.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\System32\drivers\hwpolicy.sys
\SystemRoot\System32\DRIVERS\fvevol.sys
\SystemRoot\system32\drivers\disk.sys
\SystemRoot\system32\drivers\CLASSPNP.SYS
\SystemRoot\system32\DRIVERS\cdrom.sys
\SystemRoot\system32\DRIVERS\klif.sys
\SystemRoot\system32\DRIVERS\klflt.sys
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\drivers\VIDEOPRT.SYS
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\system32\drivers\rdpencdd.sys
\SystemRoot\system32\drivers\rdprefmp.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\tdx.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\system32\DRIVERS\kltdi.sys
\SystemRoot\system32\drivers\afd.sys
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\system32\drivers\ws2ifsl.sys
\SystemRoot\system32\DRIVERS\wfplwf.sys
\SystemRoot\system32\DRIVERS\pacer.sys
\SystemRoot\system32\DRIVERS\vwififlt.sys
\SystemRoot\system32\DRIVERS\klim6.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\serial.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\system32\DRIVERS\termdd.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\drivers\nsiproxy.sys
\SystemRoot\system32\DRIVERS\mssmbios.sys
\SystemRoot\system32\DRIVERS\kneps.sys
\SystemRoot\System32\drivers\discache.sys
\SystemRoot\System32\Drivers\dfsc.sys
\SystemRoot\system32\DRIVERS\CSVirtualDiskDrv.sys
\SystemRoot\system32\drivers\csc.sys
\SystemRoot\system32\DRIVERS\cdrblock.sys
\SystemRoot\system32\DRIVERS\blbdrive.sys
\SystemRoot\system32\DRIVERS\tunnel.sys
\SystemRoot\system32\DRIVERS\atikmpag.sys
\SystemRoot\system32\DRIVERS\atikmdag.sys
\SystemRoot\System32\drivers\dxgkrnl.sys
\SystemRoot\System32\drivers\dxgmms1.sys
\SystemRoot\system32\DRIVERS\HDAudBus.sys
\SystemRoot\system32\DRIVERS\HECIx64.sys
\SystemRoot\system32\DRIVERS\e1c62x64.sys
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\nusb3xhc.sys
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\system32\DRIVERS\gvzkrnl.sys
\SystemRoot\system32\drivers\ksthunk.sys
\SystemRoot\system32\drivers\ks.sys
\SystemRoot\system32\DRIVERS\1394ohci.sys
\SystemRoot\system32\DRIVERS\Rt64win7.sys
\SystemRoot\system32\DRIVERS\serenum.sys
\SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
\SystemRoot\system32\DRIVERS\wmiacpi.sys
\SystemRoot\system32\DRIVERS\intelppm.sys
\SystemRoot\system32\DRIVERS\CompositeBus.sys
\SystemRoot\system32\DRIVERS\MsgPlusDriver.sys
\SystemRoot\system32\DRIVERS\STREAM.SYS
\SystemRoot\system32\DRIVERS\AgileVpn.sys
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\rassstp.sys
\SystemRoot\system32\DRIVERS\rdpbus.sys
\SystemRoot\system32\DRIVERS\kbdclass.sys
\SystemRoot\system32\DRIVERS\mouclass.sys
\SystemRoot\system32\DRIVERS\swenum.sys
\SystemRoot\system32\DRIVERS\btath_bus.sys
\SystemRoot\system32\DRIVERS\umbus.sys
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\system32\DRIVERS\nusb3hub.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\drivers\AtihdW76.sys
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\system32\drivers\RTKVHD64.sys
\SystemRoot\system32\DRIVERS\USBSTOR.SYS
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\System32\Drivers\fastfat.SYS
\SystemRoot\system32\DRIVERS\usbccgp.sys
\SystemRoot\system32\DRIVERS\hidusb.sys
\SystemRoot\system32\DRIVERS\HIDCLASS.SYS
\SystemRoot\system32\DRIVERS\HIDPARSE.SYS
\SystemRoot\system32\DRIVERS\monitor.sys
\SystemRoot\system32\DRIVERS\usbprint.sys
\SystemRoot\System32\Drivers\crashdmp.sys
\SystemRoot\System32\Drivers\dump_iaStor.sys
\SystemRoot\System32\Drivers\dump_dumpfve.sys
\SystemRoot\system32\DRIVERS\SNTUSB64.SYS
\SystemRoot\system32\DRIVERS\LEqdUsb.Sys
\SystemRoot\system32\DRIVERS\kbdhid.sys
\SystemRoot\system32\DRIVERS\klkbdflt.sys
\SystemRoot\system32\DRIVERS\mouhid.sys
\SystemRoot\system32\DRIVERS\klmouflt.sys
\SystemRoot\system32\DRIVERS\LHidEqd.Sys
\SystemRoot\system32\DRIVERS\LHidFilt.Sys
\SystemRoot\system32\DRIVERS\LMouFilt.Sys
\SystemRoot\System32\TSDDD.dll
\SystemRoot\System32\cdd.dll
\SystemRoot\System32\Drivers\nx6000.sys
\SystemRoot\System32\Drivers\usbvideo.sys
\SystemRoot\system32\drivers\usbaudio.sys
\SystemRoot\system32\DRIVERS\wachidrouter.sys
\SystemRoot\system32\DRIVERS\hidkmdf.sys
\SystemRoot\system32\DRIVERS\wacomrouterfilter.sys
\SystemRoot\system32\DRIVERS\btfilter.sys
\SystemRoot\System32\Drivers\BTHUSB.sys
\SystemRoot\System32\Drivers\bthport.sys
\SystemRoot\system32\drivers\luafv.sys
\??\C:\Windows\system32\drivers\mbam.sys
\SystemRoot\system32\drivers\WudfPf.sys
\??\C:\Program Files\Sandboxie\SbieDrv.sys
\SystemRoot\system32\DRIVERS\lltdio.sys
\SystemRoot\system32\DRIVERS\nwifi.sys
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\system32\DRIVERS\rspndr.sys
\SystemRoot\system32\DRIVERS\rfcomm.sys
\SystemRoot\system32\drivers\BthEnum.sys
\SystemRoot\system32\DRIVERS\bthpan.sys
\SystemRoot\system32\DRIVERS\btath_rcp.sys
\SystemRoot\system32\drivers\btath_a2dp.sys
\SystemRoot\system32\DRIVERS\btath_hcrp.sys
\SystemRoot\system32\DRIVERS\btath_flt.sys
\SystemRoot\system32\DRIVERS\btath_lwflt.sys
\SystemRoot\system32\drivers\HTTP.sys
\SystemRoot\system32\DRIVERS\bowser.sys
\SystemRoot\System32\drivers\mpsdrv.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\system32\DRIVERS\mrxsmb10.sys
\SystemRoot\system32\DRIVERS\mrxsmb20.sys
\SystemRoot\System32\Drivers\Sentinel64.sys
\SystemRoot\System32\ATMFD.DLL
\SystemRoot\system32\DRIVERS\aksdf.sys
\SystemRoot\system32\DRIVERS\aksfridge.sys
\??\C:\Windows\system32\drivers\hardlock.sys
\??\C:\Program Files (x86)\CyberLink\PowerDVD11\Kernel\DMP\ntk_PowerDVD_64.sys
\SystemRoot\system32\drivers\peauth.sys
\SystemRoot\System32\Drivers\secdrv.SYS
\SystemRoot\System32\DRIVERS\srvnet.sys
\??\C:\Windows\system32\Drivers\SSPORT.sys
\SystemRoot\System32\drivers\tcpipreg.sys
\??\C:\Program Files (x86)\CyberLink\PowerDVD11\Common\NavFilter\000.fcl
\SystemRoot\System32\DRIVERS\srv2.sys
\SystemRoot\System32\DRIVERS\srv.sys
\SystemRoot\system32\DRIVERS\WUDFRd.sys
\SystemRoot\system32\DRIVERS\asyncmac.sys
\??\C:\Windows\system32\drivers\mbamchameleon.sys
\??\C:\Windows\system32\drivers\mbamswissarmy.sys
\Windows\System32\ntdll.dll
\Windows\System32\smss.exe
\Windows\System32\apisetschema.dll
\Windows\System32\autochk.exe
\Windows\System32\urlmon.dll
\Windows\System32\rpcrt4.dll
\Windows\System32\iertutil.dll
\Windows\System32\advapi32.dll
\Windows\System32\sechost.dll
\Windows\System32\difxapi.dll
\Windows\System32\usp10.dll
\Windows\System32\user32.dll
\Windows\System32\nsi.dll
\Windows\System32\ole32.dll
\Windows\System32\wininet.dll
\Windows\System32\imagehlp.dll
\Windows\System32\clbcatq.dll
\Windows\System32\setupapi.dll
\Windows\System32\gdi32.dll
\Windows\System32\oleaut32.dll
\Windows\System32\ws2_32.dll
\Windows\System32\comdlg32.dll
\Windows\System32\msvcrt.dll
\Windows\System32\Wldap32.dll
\Windows\System32\lpk.dll
\Windows\System32\kernel32.dll
\Windows\System32\psapi.dll
\Windows\System32\shlwapi.dll
\Windows\System32\shell32.dll
\Windows\System32\normaliz.dll
\Windows\System32\imm32.dll
\Windows\System32\msctf.dll
\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
\Windows\System32\crypt32.dll
\Windows\System32\wintrust.dll
\Windows\System32\comctl32.dll
\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
\Windows\System32\cfgmgr32.dll
\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
\Windows\System32\devobj.dll
\Windows\System32\KernelBase.dll
\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
\Windows\System32\msasn1.dll
\Windows\SysWOW64\normaliz.dll
----------- End -----------
<<<1>>>
Upper Device Name: \Device\Harddisk3\DR12
Upper Device Object: 0xfffffa8012c64790
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\000000de\
Lower Device Object: 0xfffffa8011c4cb60
Lower Device Driver Name: \Driver\USBSTOR\
Driver name found: USBSTOR
Initialization returned 0x0
Load Function returned 0x0
<<<1>>>
Upper Device Name: \Device\Harddisk10\DR10
Upper Device Object: 0xfffffa80106b5790
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\000000ae\
Lower Device Object: 0xfffffa8010ced060
Lower Device Driver Name: \Driver\USBSTOR\
Driver name found: USBSTOR
<<<1>>>
Upper Device Name: \Device\Harddisk9\DR9
Upper Device Object: 0xfffffa80106a6790
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\000000ab\
Lower Device Object: 0xfffffa801204bb60
Lower Device Driver Name: \Driver\USBSTOR\
Driver name found: USBSTOR
<<<1>>>
Upper Device Name: \Device\Harddisk8\DR8
Upper Device Object: 0xfffffa80106bb790
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\000000a5\
Lower Device Object: 0xfffffa80106c7b60
Lower Device Driver Name: \Driver\USBSTOR\
Driver name found: USBSTOR
<<<1>>>
Upper Device Name: \Device\Harddisk7\DR7
Upper Device Object: 0xfffffa8011cf2060
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\000000a0\
Lower Device Object: 0xfffffa8010558b60
Lower Device Driver Name: \Driver\USBSTOR\
Driver name found: USBSTOR
<<<1>>>
Upper Device Name: \Device\Harddisk6\DR6
Upper Device Object: 0xfffffa8011d61060
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\0000009f\
Lower Device Object: 0xfffffa8011d4ab60
Lower Device Driver Name: \Driver\USBSTOR\
Driver name found: USBSTOR
<<<1>>>
Upper Device Name: \Device\Harddisk5\DR5
Upper Device Object: 0xfffffa8011d4b790
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\0000009e\
Lower Device Object: 0xfffffa8011ccc060
Lower Device Driver Name: \Driver\USBSTOR\
Driver name found: USBSTOR
<<<1>>>
Upper Device Name: \Device\Harddisk4\DR4
Upper Device Object: 0xfffffa8010557790
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\0000009d\
Lower Device Object: 0xfffffa80106f2b60
Lower Device Driver Name: \Driver\USBSTOR\
Driver name found: USBSTOR
<<<1>>>
Upper Device Name: \Device\Harddisk2\DR2
Upper Device Object: 0xfffffa8011bb1060
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\00000094\
Lower Device Object: 0xfffffa8011bb2a50
Lower Device Driver Name: \Driver\USBSTOR\
Driver name found: USBSTOR
<<<1>>>
Upper Device Name: \Device\Harddisk1\DR1
Upper Device Object: 0xfffffa800d842790
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\Ide\IAAStorageDevice-3\
Lower Device Object: 0xfffffa800d5b7050
Lower Device Driver Name: \Driver\iaStor\
Driver name found: iaStor
Initialization returned 0x0
Load Function returned 0x0
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xfffffa800d83c790
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\Ide\IAAStorageDevice-2\
Lower Device Object: 0xfffffa800d5af050
Lower Device Driver Name: \Driver\iaStor\
Driver name found: iaStor
Downloaded database version: v2013.04.22.05
Downloaded database version: v2013.04.17.03
Initializing...
Done!
<<<2>>>
Device number: 0, partition: 2
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xfffffa800d83c790, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa800d747960, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa800d83c790, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa800d640b10, DeviceName: Unknown, DriverName: \Driver\ACPI\
DevicePointer: 0xfffffa800d5af050, DeviceName: \Device\Ide\IAAStorageDevice-2\, DriverName: \Driver\iaStor\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
Upper DeviceData: 0xfffff8a014f0c810, 0xfffffa800d83c790, 0xfffffa8016774090
Lower DeviceData: 0xfffff8a0131be040, 0xfffffa800d5af050, 0xfffffa8014fff090
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning directory: C:\Windows\system32\drivers...
<<<2>>>
Device number: 0, partition: 2
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Done!
Drive 0
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 50E16462

Partition information:

    Partition 0 type is Primary (0x7)
    Partition is ACTIVE.
    Partition starts at LBA: 2048  Numsec = 204800
    Partition file system is NTFS
    Partition is bootable

    Partition 1 type is Primary (0x7)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 206848  Numsec = 360580922

    Partition 2 type is Primary (0x7)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 360787968  Numsec = 615981056

    Partition 3 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

Disk Size: 500107862016 bytes
Sector size: 512 bytes

Scanning physical sectors of unpartitioned space on drive 0 (1-2047-976753168-976773168)...
Physical Sector Size: 512
Drive: 1, DevicePointer: 0xfffffa800d842790, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa800d8422c0, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa800d842790, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa800d5ace40, DeviceName: Unknown, DriverName: \Driver\ACPI\
DevicePointer: 0xfffffa800d5b7050, DeviceName: \Device\Ide\IAAStorageDevice-3\, DriverName: \Driver\iaStor\
------------ End ----------
Alternate DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\
Upper DeviceData: 0xfffff8a014c5d6c0, 0xfffffa800d842790, 0xfffffa8016776090
Lower DeviceData: 0xfffff8a0131be070, 0xfffffa800d5b7050, 0xfffffa800d4bda10
Drive 1
Scanning MBR on drive 1...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 9061618F

Partition information:

    Partition 0 type is Primary (0x7)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 2048  Numsec = 1953519616

    Partition 1 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

    Partition 2 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

    Partition 3 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

Disk Size: 1000204886016 bytes
Sector size: 512 bytes

Physical Sector Size: 512
Drive: 2, DevicePointer: 0xfffffa8011bb1060, DeviceName: \Device\Harddisk2\DR2\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa8011bb1b90, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa8011bb1060, DeviceName: \Device\Harddisk2\DR2\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa8011bb2a50, DeviceName: \Device\00000094\, DriverName: \Driver\USBSTOR\
------------ End ----------
Alternate DeviceName: \Device\Harddisk2\DR2\, DriverName: \Driver\Disk\
Upper DeviceData: 0xfffff8a002206320, 0xfffffa8011bb1060, 0xfffffa80165c6090
Lower DeviceData: 0xfffff8a0153f2da0, 0xfffffa8011bb2a50, 0xfffffa80121a4090
Drive 2
Scanning MBR on drive 2...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 2941A

Partition information:

    Partition 0 type is Primary (0x7)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 2048  Numsec = 976766976

    Partition 1 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

    Partition 2 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

    Partition 3 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

Disk Size: 500105740288 bytes
Sector size: 512 bytes

Physical Sector Size: 512
Drive: 3, DevicePointer: 0xfffffa8012c64790, DeviceName: \Device\Harddisk3\DR12\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa8012c67040, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa8012c64790, DeviceName: \Device\Harddisk3\DR12\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa8011c4cb60, DeviceName: \Device\000000de\, DriverName: \Driver\USBSTOR\
------------ End ----------
Alternate DeviceName: \Device\Harddisk3\DR12\, DriverName: \Driver\Disk\
Upper DeviceData: 0xfffff8a01aa8b4e0, 0xfffffa8012c64790, 0xfffffa8015288090
Lower DeviceData: 0xfffff8a01ab0e590, 0xfffffa8011c4cb60, 0xfffffa8015289730
Drive 3
Scanning MBR on drive 3...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 87588254

Partition information:

    Partition 0 type is Other (0xb)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 63  Numsec = 1429722

    Partition 1 type is Primary (0x7)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 1431552  Numsec = 3905593344

    Partition 2 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

    Partition 3 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

Disk Size: 2000398934016 bytes
Sector size: 512 bytes

Physical Sector Size: 0
Drive: 4, DevicePointer: 0xfffffa8010557790, DeviceName: \Device\Harddisk4\DR4\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa8010558290, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa8010557790, DeviceName: \Device\Harddisk4\DR4\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa80106f2b60, DeviceName: \Device\0000009d\, DriverName: \Driver\USBSTOR\
------------ End ----------
Physical Sector Size: 0
Drive: 5, DevicePointer: 0xfffffa8011d4b790, DeviceName: \Device\Harddisk5\DR5\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa8011cef040, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa8011d4b790, DeviceName: \Device\Harddisk5\DR5\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa8011ccc060, DeviceName: \Device\0000009e\, DriverName: \Driver\USBSTOR\
------------ End ----------
Physical Sector Size: 0
Drive: 6, DevicePointer: 0xfffffa8011d61060, DeviceName: \Device\Harddisk6\DR6\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa8011d61b90, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa8011d61060, DeviceName: \Device\Harddisk6\DR6\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa8011d4ab60, DeviceName: \Device\0000009f\, DriverName: \Driver\USBSTOR\
------------ End ----------
Physical Sector Size: 0
Drive: 7, DevicePointer: 0xfffffa8011cf2060, DeviceName: \Device\Harddisk7\DR7\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa8011d4b040, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa8011cf2060, DeviceName: \Device\Harddisk7\DR7\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa8010558b60, DeviceName: \Device\000000a0\, DriverName: \Driver\USBSTOR\
------------ End ----------
Physical Sector Size: 512
Drive: 8, DevicePointer: 0xfffffa80106bb790, DeviceName: \Device\Harddisk8\DR8\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa8010695b90, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa80106bb790, DeviceName: \Device\Harddisk8\DR8\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa80106c7b60, DeviceName: \Device\000000a5\, DriverName: \Driver\USBSTOR\
------------ End ----------
Alternate DeviceName: \Device\Harddisk8\DR8\, DriverName: \Driver\Disk\
Upper DeviceData: 0xfffff8a004218cb0, 0xfffffa80106bb790, 0xfffffa8015287090
Lower DeviceData: 0xfffff8a01aa87ce0, 0xfffffa80106c7b60, 0xfffffa8014e1ce40
Drive 8
Scanning MBR on drive 8...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 8D399BC0

Partition information:

    Partition 0 type is Other (0xc)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 63  Numsec = 976751937

    Partition 1 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

    Partition 2 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

    Partition 3 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

Disk Size: 500107862016 bytes
Sector size: 512 bytes

Physical Sector Size: 512
Drive: 9, DevicePointer: 0xfffffa80106a6790, DeviceName: \Device\Harddisk9\DR9\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa80106a62c0, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa80106a6790, DeviceName: \Device\Harddisk9\DR9\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa801204bb60, DeviceName: \Device\000000ab\, DriverName: \Driver\USBSTOR\
------------ End ----------
Alternate DeviceName: \Device\Harddisk9\DR9\, DriverName: \Driver\Disk\
Upper DeviceData: 0xfffff8a01a9eb7a0, 0xfffffa80106a6790, 0xfffffa801467e090
Lower DeviceData: 0xfffff8a00cf6d640, 0xfffffa801204bb60, 0xfffffa8014614090
Drive 9
Scanning MBR on drive 9...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 4EF27132

Partition information:

    Partition 0 type is Other (0xc)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 2048  Numsec = 1953518017

    Partition 1 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

    Partition 2 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

    Partition 3 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

Disk Size: 1000204886016 bytes
Sector size: 512 bytes

Done!
Performing system, memory and registry scan...
Read File: File "c:\ProgramData\{0C544878-1DB6-409D-A998-0664599014C4}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{0C544878-1DB6-409D-A998-0664599014C4}\simplify3_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{0C544878-1DB6-409D-A998-0664599014C4}\{8A1EBF29-7CF8-471E-B90B-95FF36AC8248}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{0C544878-1DB6-409D-A998-0664599014C4}\{8A1EBF29-7CF8-471E-B90B-95FF36AC8248}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{0C544878-1DB6-409D-A998-0664599014C4}\{8A1EBF29-7CF8-471E-B90B-95FF36AC8248}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{1CD9BC02-6909-4C6D-9DE6-AD1CF151FF24}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{1CD9BC02-6909-4C6D-9DE6-AD1CF151FF24}\remask3_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{33570351-B6F8-4097-AC41-91625CF5D4EF}\bw_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{33570351-B6F8-4097-AC41-91625CF5D4EF}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{33570351-B6F8-4097-AC41-91625CF5D4EF}\{F375FC22-BC8A-4A15-ABE6-15EE1450BF86}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{33570351-B6F8-4097-AC41-91625CF5D4EF}\{F375FC22-BC8A-4A15-ABE6-15EE1450BF86}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{33570351-B6F8-4097-AC41-91625CF5D4EF}\{F375FC22-BC8A-4A15-ABE6-15EE1450BF86}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{36DC9A85-0AC4-4BA0-BEDB-99E0F95BA4F1}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{36DC9A85-0AC4-4BA0-BEDB-99E0F95BA4F1}\simplify3_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{36DC9A85-0AC4-4BA0-BEDB-99E0F95BA4F1}\{8D93BD99-EECF-4812-B3BA-B8A2E7FEEA11}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{36DC9A85-0AC4-4BA0-BEDB-99E0F95BA4F1}\{8D93BD99-EECF-4812-B3BA-B8A2E7FEEA11}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{36DC9A85-0AC4-4BA0-BEDB-99E0F95BA4F1}\{8D93BD99-EECF-4812-B3BA-B8A2E7FEEA11}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{3C2CC1BA-EC03-48E5-A0EF-A0B455E1343F}\fusion2_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{3C2CC1BA-EC03-48E5-A0EF-A0B455E1343F}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{3C2CC1BA-EC03-48E5-A0EF-A0B455E1343F}\{770D3BDC-19D7-49D0-B60B-C5BB77553FBB}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{3C2CC1BA-EC03-48E5-A0EF-A0B455E1343F}\{770D3BDC-19D7-49D0-B60B-C5BB77553FBB}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{447B4BF8-DCC8-4693-A8CD-A6A63F5BC176}\dejpeg4_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{447B4BF8-DCC8-4693-A8CD-A6A63F5BC176}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{447B4BF8-DCC8-4693-A8CD-A6A63F5BC176}\{9E146BA1-26DD-4C3B-9F0F-90F2E3CEC9D2}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{447B4BF8-DCC8-4693-A8CD-A6A63F5BC176}\{9E146BA1-26DD-4C3B-9F0F-90F2E3CEC9D2}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{447B4BF8-DCC8-4693-A8CD-A6A63F5BC176}\{9E146BA1-26DD-4C3B-9F0F-90F2E3CEC9D2}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{60E17BBA-9D2D-4E1B-BDCF-1D654329EA31}\bw_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{60E17BBA-9D2D-4E1B-BDCF-1D654329EA31}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{69A57C2A-4B82-4C12-A998-7EE1C7C0256F}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{69A57C2A-4B82-4C12-A998-7EE1C7C0256F}\remask3_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{6B992C6A-E6B0-418F-9B21-FE4BF85AD3BE}\adjust5_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{6B992C6A-E6B0-418F-9B21-FE4BF85AD3BE}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{774331FE-B8E8-4A4B-AFDF-F018F99FB73A}\adjust5_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{774331FE-B8E8-4A4B-AFDF-F018F99FB73A}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{774331FE-B8E8-4A4B-AFDF-F018F99FB73A}\{3F42809C-7174-4E06-810F-A0C15B00DEAD}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{774331FE-B8E8-4A4B-AFDF-F018F99FB73A}\{3F42809C-7174-4E06-810F-A0C15B00DEAD}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{774331FE-B8E8-4A4B-AFDF-F018F99FB73A}\{3F42809C-7174-4E06-810F-A0C15B00DEAD}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7B507839-38D8-4587-A29F-FE5A5EC55A03}\denoise5_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7B507839-38D8-4587-A29F-FE5A5EC55A03}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7B507839-38D8-4587-A29F-FE5A5EC55A03}\{06B60360-9DBD-4593-90A0-FD237F0845A2}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7B507839-38D8-4587-A29F-FE5A5EC55A03}\{06B60360-9DBD-4593-90A0-FD237F0845A2}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7B507839-38D8-4587-A29F-FE5A5EC55A03}\{06B60360-9DBD-4593-90A0-FD237F0845A2}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7CAFEB17-971D-44F2-91C0-1EEC4F54E1DB}\clean3_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7CAFEB17-971D-44F2-91C0-1EEC4F54E1DB}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7CAFEB17-971D-44F2-91C0-1EEC4F54E1DB}\{85E00941-FDFF-4796-A3B8-3ACC766FFCA5}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7CAFEB17-971D-44F2-91C0-1EEC4F54E1DB}\{85E00941-FDFF-4796-A3B8-3ACC766FFCA5}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7CAFEB17-971D-44F2-91C0-1EEC4F54E1DB}\{85E00941-FDFF-4796-A3B8-3ACC766FFCA5}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{8331949C-0661-45E0-BDFD-C71C7F94A6E2}\dejpeg4_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{8331949C-0661-45E0-BDFD-C71C7F94A6E2}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{8331949C-0661-45E0-BDFD-C71C7F94A6E2}\{DC8F0C18-E6B0-4722-A4AB-D134473091C2}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{8331949C-0661-45E0-BDFD-C71C7F94A6E2}\{DC8F0C18-E6B0-4722-A4AB-D134473091C2}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{8331949C-0661-45E0-BDFD-C71C7F94A6E2}\{DC8F0C18-E6B0-4722-A4AB-D134473091C2}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{86A7919A-1CA3-4459-8124-76C789A6402B}\detail2_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{86A7919A-1CA3-4459-8124-76C789A6402B}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{86A7919A-1CA3-4459-8124-76C789A6402B}\{A981E64B-0F10-45D9-BD5C-A4DF7B87E218}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{86A7919A-1CA3-4459-8124-76C789A6402B}\{A981E64B-0F10-45D9-BD5C-A4DF7B87E218}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{86A7919A-1CA3-4459-8124-76C789A6402B}\{A981E64B-0F10-45D9-BD5C-A4DF7B87E218}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{90230F46-BE74-4EE2-8E60-E2EC40A3EF30}\infocus_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{90230F46-BE74-4EE2-8E60-E2EC40A3EF30}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{961C7791-DF59-4BC0-9DC6-D2A8D3F2B1B5}\bokeh_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{961C7791-DF59-4BC0-9DC6-D2A8D3F2B1B5}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{961C7791-DF59-4BC0-9DC6-D2A8D3F2B1B5}\{FF0EBE64-45AA-4B16-A0CC-945CECDCA0B6}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{961C7791-DF59-4BC0-9DC6-D2A8D3F2B1B5}\{FF0EBE64-45AA-4B16-A0CC-945CECDCA0B6}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{961C7791-DF59-4BC0-9DC6-D2A8D3F2B1B5}\{FF0EBE64-45AA-4B16-A0CC-945CECDCA0B6}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{A3BF8AE0-D933-4056-88A7-28E0C483C866}\clean3_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{A3BF8AE0-D933-4056-88A7-28E0C483C866}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{A3BF8AE0-D933-4056-88A7-28E0C483C866}\{FA85C599-2569-4C48-9AA6-2B8D8F029FA7}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{A3BF8AE0-D933-4056-88A7-28E0C483C866}\{FA85C599-2569-4C48-9AA6-2B8D8F029FA7}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{A3BF8AE0-D933-4056-88A7-28E0C483C866}\{FA85C599-2569-4C48-9AA6-2B8D8F029FA7}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{AA5C05EA-7FB9-4519-BBE2-03ADD8EF0E5D}\fusion2_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{AA5C05EA-7FB9-4519-BBE2-03ADD8EF0E5D}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{AA5C05EA-7FB9-4519-BBE2-03ADD8EF0E5D}\{BA3D5FF2-A405-4654-826E-A09FABB01853}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{AA5C05EA-7FB9-4519-BBE2-03ADD8EF0E5D}\{BA3D5FF2-A405-4654-826E-A09FABB01853}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{C081E8AB-3AD3-4F73-A2C4-BB04BB77DB08}\infocus_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{C081E8AB-3AD3-4F73-A2C4-BB04BB77DB08}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E176482F-0DEA-4B06-9697-D12D614FECB9}\denoise5_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E176482F-0DEA-4B06-9697-D12D614FECB9}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E176482F-0DEA-4B06-9697-D12D614FECB9}\{9E82D1DB-3AFB-4D18-A221-081F1B4B4789}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E176482F-0DEA-4B06-9697-D12D614FECB9}\{9E82D1DB-3AFB-4D18-A221-081F1B4B4789}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E176482F-0DEA-4B06-9697-D12D614FECB9}\{9E82D1DB-3AFB-4D18-A221-081F1B4B4789}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E6FD2223-C904-40C1-A119-7C0A8A7FE045}\detail2_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E6FD2223-C904-40C1-A119-7C0A8A7FE045}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E6FD2223-C904-40C1-A119-7C0A8A7FE045}\{C921D7C4-24D7-4210-AEE9-DFC5DDC78428}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E6FD2223-C904-40C1-A119-7C0A8A7FE045}\{C921D7C4-24D7-4210-AEE9-DFC5DDC78428}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E6FD2223-C904-40C1-A119-7C0A8A7FE045}\{C921D7C4-24D7-4210-AEE9-DFC5DDC78428}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E7058808-8C97-4A08-99A2-015D24FDC13B}\bokeh_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E7058808-8C97-4A08-99A2-015D24FDC13B}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{0C544878-1DB6-409D-A998-0664599014C4}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{0C544878-1DB6-409D-A998-0664599014C4}\simplify3_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{0C544878-1DB6-409D-A998-0664599014C4}\{8A1EBF29-7CF8-471E-B90B-95FF36AC8248}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{0C544878-1DB6-409D-A998-0664599014C4}\{8A1EBF29-7CF8-471E-B90B-95FF36AC8248}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{0C544878-1DB6-409D-A998-0664599014C4}\{8A1EBF29-7CF8-471E-B90B-95FF36AC8248}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{1CD9BC02-6909-4C6D-9DE6-AD1CF151FF24}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{1CD9BC02-6909-4C6D-9DE6-AD1CF151FF24}\remask3_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{33570351-B6F8-4097-AC41-91625CF5D4EF}\bw_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{33570351-B6F8-4097-AC41-91625CF5D4EF}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{33570351-B6F8-4097-AC41-91625CF5D4EF}\{F375FC22-BC8A-4A15-ABE6-15EE1450BF86}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{33570351-B6F8-4097-AC41-91625CF5D4EF}\{F375FC22-BC8A-4A15-ABE6-15EE1450BF86}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{33570351-B6F8-4097-AC41-91625CF5D4EF}\{F375FC22-BC8A-4A15-ABE6-15EE1450BF86}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{36DC9A85-0AC4-4BA0-BEDB-99E0F95BA4F1}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{36DC9A85-0AC4-4BA0-BEDB-99E0F95BA4F1}\simplify3_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{36DC9A85-0AC4-4BA0-BEDB-99E0F95BA4F1}\{8D93BD99-EECF-4812-B3BA-B8A2E7FEEA11}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{36DC9A85-0AC4-4BA0-BEDB-99E0F95BA4F1}\{8D93BD99-EECF-4812-B3BA-B8A2E7FEEA11}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{36DC9A85-0AC4-4BA0-BEDB-99E0F95BA4F1}\{8D93BD99-EECF-4812-B3BA-B8A2E7FEEA11}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{3C2CC1BA-EC03-48E5-A0EF-A0B455E1343F}\fusion2_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{3C2CC1BA-EC03-48E5-A0EF-A0B455E1343F}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{3C2CC1BA-EC03-48E5-A0EF-A0B455E1343F}\{770D3BDC-19D7-49D0-B60B-C5BB77553FBB}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{3C2CC1BA-EC03-48E5-A0EF-A0B455E1343F}\{770D3BDC-19D7-49D0-B60B-C5BB77553FBB}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{447B4BF8-DCC8-4693-A8CD-A6A63F5BC176}\dejpeg4_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{447B4BF8-DCC8-4693-A8CD-A6A63F5BC176}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{447B4BF8-DCC8-4693-A8CD-A6A63F5BC176}\{9E146BA1-26DD-4C3B-9F0F-90F2E3CEC9D2}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{447B4BF8-DCC8-4693-A8CD-A6A63F5BC176}\{9E146BA1-26DD-4C3B-9F0F-90F2E3CEC9D2}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{447B4BF8-DCC8-4693-A8CD-A6A63F5BC176}\{9E146BA1-26DD-4C3B-9F0F-90F2E3CEC9D2}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{60E17BBA-9D2D-4E1B-BDCF-1D654329EA31}\bw_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{60E17BBA-9D2D-4E1B-BDCF-1D654329EA31}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{69A57C2A-4B82-4C12-A998-7EE1C7C0256F}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{69A57C2A-4B82-4C12-A998-7EE1C7C0256F}\remask3_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{6B992C6A-E6B0-418F-9B21-FE4BF85AD3BE}\adjust5_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{6B992C6A-E6B0-418F-9B21-FE4BF85AD3BE}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{774331FE-B8E8-4A4B-AFDF-F018F99FB73A}\adjust5_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{774331FE-B8E8-4A4B-AFDF-F018F99FB73A}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{774331FE-B8E8-4A4B-AFDF-F018F99FB73A}\{3F42809C-7174-4E06-810F-A0C15B00DEAD}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{774331FE-B8E8-4A4B-AFDF-F018F99FB73A}\{3F42809C-7174-4E06-810F-A0C15B00DEAD}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{774331FE-B8E8-4A4B-AFDF-F018F99FB73A}\{3F42809C-7174-4E06-810F-A0C15B00DEAD}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7B507839-38D8-4587-A29F-FE5A5EC55A03}\denoise5_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7B507839-38D8-4587-A29F-FE5A5EC55A03}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7B507839-38D8-4587-A29F-FE5A5EC55A03}\{06B60360-9DBD-4593-90A0-FD237F0845A2}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7B507839-38D8-4587-A29F-FE5A5EC55A03}\{06B60360-9DBD-4593-90A0-FD237F0845A2}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7B507839-38D8-4587-A29F-FE5A5EC55A03}\{06B60360-9DBD-4593-90A0-FD237F0845A2}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7CAFEB17-971D-44F2-91C0-1EEC4F54E1DB}\clean3_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7CAFEB17-971D-44F2-91C0-1EEC4F54E1DB}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7CAFEB17-971D-44F2-91C0-1EEC4F54E1DB}\{85E00941-FDFF-4796-A3B8-3ACC766FFCA5}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7CAFEB17-971D-44F2-91C0-1EEC4F54E1DB}\{85E00941-FDFF-4796-A3B8-3ACC766FFCA5}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7CAFEB17-971D-44F2-91C0-1EEC4F54E1DB}\{85E00941-FDFF-4796-A3B8-3ACC766FFCA5}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{8331949C-0661-45E0-BDFD-C71C7F94A6E2}\dejpeg4_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{8331949C-0661-45E0-BDFD-C71C7F94A6E2}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{8331949C-0661-45E0-BDFD-C71C7F94A6E2}\{DC8F0C18-E6B0-4722-A4AB-D134473091C2}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{8331949C-0661-45E0-BDFD-C71C7F94A6E2}\{DC8F0C18-E6B0-4722-A4AB-D134473091C2}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{8331949C-0661-45E0-BDFD-C71C7F94A6E2}\{DC8F0C18-E6B0-4722-A4AB-D134473091C2}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{86A7919A-1CA3-4459-8124-76C789A6402B}\detail2_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{86A7919A-1CA3-4459-8124-76C789A6402B}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{86A7919A-1CA3-4459-8124-76C789A6402B}\{A981E64B-0F10-45D9-BD5C-A4DF7B87E218}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{86A7919A-1CA3-4459-8124-76C789A6402B}\{A981E64B-0F10-45D9-BD5C-A4DF7B87E218}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{86A7919A-1CA3-4459-8124-76C789A6402B}\{A981E64B-0F10-45D9-BD5C-A4DF7B87E218}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{90230F46-BE74-4EE2-8E60-E2EC40A3EF30}\infocus_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{90230F46-BE74-4EE2-8E60-E2EC40A3EF30}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{961C7791-DF59-4BC0-9DC6-D2A8D3F2B1B5}\bokeh_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{961C7791-DF59-4BC0-9DC6-D2A8D3F2B1B5}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{961C7791-DF59-4BC0-9DC6-D2A8D3F2B1B5}\{FF0EBE64-45AA-4B16-A0CC-945CECDCA0B6}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{961C7791-DF59-4BC0-9DC6-D2A8D3F2B1B5}\{FF0EBE64-45AA-4B16-A0CC-945CECDCA0B6}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{961C7791-DF59-4BC0-9DC6-D2A8D3F2B1B5}\{FF0EBE64-45AA-4B16-A0CC-945CECDCA0B6}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{A3BF8AE0-D933-4056-88A7-28E0C483C866}\clean3_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{A3BF8AE0-D933-4056-88A7-28E0C483C866}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{A3BF8AE0-D933-4056-88A7-28E0C483C866}\{FA85C599-2569-4C48-9AA6-2B8D8F029FA7}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{A3BF8AE0-D933-4056-88A7-28E0C483C866}\{FA85C599-2569-4C48-9AA6-2B8D8F029FA7}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{A3BF8AE0-D933-4056-88A7-28E0C483C866}\{FA85C599-2569-4C48-9AA6-2B8D8F029FA7}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{AA5C05EA-7FB9-4519-BBE2-03ADD8EF0E5D}\fusion2_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{AA5C05EA-7FB9-4519-BBE2-03ADD8EF0E5D}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{AA5C05EA-7FB9-4519-BBE2-03ADD8EF0E5D}\{BA3D5FF2-A405-4654-826E-A09FABB01853}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{AA5C05EA-7FB9-4519-BBE2-03ADD8EF0E5D}\{BA3D5FF2-A405-4654-826E-A09FABB01853}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{C081E8AB-3AD3-4F73-A2C4-BB04BB77DB08}\infocus_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{C081E8AB-3AD3-4F73-A2C4-BB04BB77DB08}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E176482F-0DEA-4B06-9697-D12D614FECB9}\denoise5_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E176482F-0DEA-4B06-9697-D12D614FECB9}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E176482F-0DEA-4B06-9697-D12D614FECB9}\{9E82D1DB-3AFB-4D18-A221-081F1B4B4789}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E176482F-0DEA-4B06-9697-D12D614FECB9}\{9E82D1DB-3AFB-4D18-A221-081F1B4B4789}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E176482F-0DEA-4B06-9697-D12D614FECB9}\{9E82D1DB-3AFB-4D18-A221-081F1B4B4789}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E6FD2223-C904-40C1-A119-7C0A8A7FE045}\detail2_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E6FD2223-C904-40C1-A119-7C0A8A7FE045}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E6FD2223-C904-40C1-A119-7C0A8A7FE045}\{C921D7C4-24D7-4210-AEE9-DFC5DDC78428}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E6FD2223-C904-40C1-A119-7C0A8A7FE045}\{C921D7C4-24D7-4210-AEE9-DFC5DDC78428}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E6FD2223-C904-40C1-A119-7C0A8A7FE045}\{C921D7C4-24D7-4210-AEE9-DFC5DDC78428}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E7058808-8C97-4A08-99A2-015D24FDC13B}\bokeh_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E7058808-8C97-4A08-99A2-015D24FDC13B}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{0C544878-1DB6-409D-A998-0664599014C4}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{0C544878-1DB6-409D-A998-0664599014C4}\simplify3_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{0C544878-1DB6-409D-A998-0664599014C4}\{8A1EBF29-7CF8-471E-B90B-95FF36AC8248}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{0C544878-1DB6-409D-A998-0664599014C4}\{8A1EBF29-7CF8-471E-B90B-95FF36AC8248}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{0C544878-1DB6-409D-A998-0664599014C4}\{8A1EBF29-7CF8-471E-B90B-95FF36AC8248}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{1CD9BC02-6909-4C6D-9DE6-AD1CF151FF24}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{1CD9BC02-6909-4C6D-9DE6-AD1CF151FF24}\remask3_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{33570351-B6F8-4097-AC41-91625CF5D4EF}\bw_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{33570351-B6F8-4097-AC41-91625CF5D4EF}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{33570351-B6F8-4097-AC41-91625CF5D4EF}\{F375FC22-BC8A-4A15-ABE6-15EE1450BF86}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{33570351-B6F8-4097-AC41-91625CF5D4EF}\{F375FC22-BC8A-4A15-ABE6-15EE1450BF86}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{33570351-B6F8-4097-AC41-91625CF5D4EF}\{F375FC22-BC8A-4A15-ABE6-15EE1450BF86}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{36DC9A85-0AC4-4BA0-BEDB-99E0F95BA4F1}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{36DC9A85-0AC4-4BA0-BEDB-99E0F95BA4F1}\simplify3_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{36DC9A85-0AC4-4BA0-BEDB-99E0F95BA4F1}\{8D93BD99-EECF-4812-B3BA-B8A2E7FEEA11}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{36DC9A85-0AC4-4BA0-BEDB-99E0F95BA4F1}\{8D93BD99-EECF-4812-B3BA-B8A2E7FEEA11}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{36DC9A85-0AC4-4BA0-BEDB-99E0F95BA4F1}\{8D93BD99-EECF-4812-B3BA-B8A2E7FEEA11}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{3C2CC1BA-EC03-48E5-A0EF-A0B455E1343F}\fusion2_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{3C2CC1BA-EC03-48E5-A0EF-A0B455E1343F}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{3C2CC1BA-EC03-48E5-A0EF-A0B455E1343F}\{770D3BDC-19D7-49D0-B60B-C5BB77553FBB}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{3C2CC1BA-EC03-48E5-A0EF-A0B455E1343F}\{770D3BDC-19D7-49D0-B60B-C5BB77553FBB}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{447B4BF8-DCC8-4693-A8CD-A6A63F5BC176}\dejpeg4_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{447B4BF8-DCC8-4693-A8CD-A6A63F5BC176}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{447B4BF8-DCC8-4693-A8CD-A6A63F5BC176}\{9E146BA1-26DD-4C3B-9F0F-90F2E3CEC9D2}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{447B4BF8-DCC8-4693-A8CD-A6A63F5BC176}\{9E146BA1-26DD-4C3B-9F0F-90F2E3CEC9D2}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{447B4BF8-DCC8-4693-A8CD-A6A63F5BC176}\{9E146BA1-26DD-4C3B-9F0F-90F2E3CEC9D2}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{60E17BBA-9D2D-4E1B-BDCF-1D654329EA31}\bw_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{60E17BBA-9D2D-4E1B-BDCF-1D654329EA31}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{69A57C2A-4B82-4C12-A998-7EE1C7C0256F}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{69A57C2A-4B82-4C12-A998-7EE1C7C0256F}\remask3_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{6B992C6A-E6B0-418F-9B21-FE4BF85AD3BE}\adjust5_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{6B992C6A-E6B0-418F-9B21-FE4BF85AD3BE}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{774331FE-B8E8-4A4B-AFDF-F018F99FB73A}\adjust5_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{774331FE-B8E8-4A4B-AFDF-F018F99FB73A}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{774331FE-B8E8-4A4B-AFDF-F018F99FB73A}\{3F42809C-7174-4E06-810F-A0C15B00DEAD}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{774331FE-B8E8-4A4B-AFDF-F018F99FB73A}\{3F42809C-7174-4E06-810F-A0C15B00DEAD}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{774331FE-B8E8-4A4B-AFDF-F018F99FB73A}\{3F42809C-7174-4E06-810F-A0C15B00DEAD}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7B507839-38D8-4587-A29F-FE5A5EC55A03}\denoise5_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7B507839-38D8-4587-A29F-FE5A5EC55A03}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7B507839-38D8-4587-A29F-FE5A5EC55A03}\{06B60360-9DBD-4593-90A0-FD237F0845A2}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7B507839-38D8-4587-A29F-FE5A5EC55A03}\{06B60360-9DBD-4593-90A0-FD237F0845A2}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7B507839-38D8-4587-A29F-FE5A5EC55A03}\{06B60360-9DBD-4593-90A0-FD237F0845A2}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7CAFEB17-971D-44F2-91C0-1EEC4F54E1DB}\clean3_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7CAFEB17-971D-44F2-91C0-1EEC4F54E1DB}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7CAFEB17-971D-44F2-91C0-1EEC4F54E1DB}\{85E00941-FDFF-4796-A3B8-3ACC766FFCA5}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7CAFEB17-971D-44F2-91C0-1EEC4F54E1DB}\{85E00941-FDFF-4796-A3B8-3ACC766FFCA5}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{7CAFEB17-971D-44F2-91C0-1EEC4F54E1DB}\{85E00941-FDFF-4796-A3B8-3ACC766FFCA5}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{8331949C-0661-45E0-BDFD-C71C7F94A6E2}\dejpeg4_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{8331949C-0661-45E0-BDFD-C71C7F94A6E2}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{8331949C-0661-45E0-BDFD-C71C7F94A6E2}\{DC8F0C18-E6B0-4722-A4AB-D134473091C2}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{8331949C-0661-45E0-BDFD-C71C7F94A6E2}\{DC8F0C18-E6B0-4722-A4AB-D134473091C2}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{8331949C-0661-45E0-BDFD-C71C7F94A6E2}\{DC8F0C18-E6B0-4722-A4AB-D134473091C2}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{86A7919A-1CA3-4459-8124-76C789A6402B}\detail2_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{86A7919A-1CA3-4459-8124-76C789A6402B}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{86A7919A-1CA3-4459-8124-76C789A6402B}\{A981E64B-0F10-45D9-BD5C-A4DF7B87E218}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{86A7919A-1CA3-4459-8124-76C789A6402B}\{A981E64B-0F10-45D9-BD5C-A4DF7B87E218}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{86A7919A-1CA3-4459-8124-76C789A6402B}\{A981E64B-0F10-45D9-BD5C-A4DF7B87E218}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{90230F46-BE74-4EE2-8E60-E2EC40A3EF30}\infocus_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{90230F46-BE74-4EE2-8E60-E2EC40A3EF30}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{961C7791-DF59-4BC0-9DC6-D2A8D3F2B1B5}\bokeh_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{961C7791-DF59-4BC0-9DC6-D2A8D3F2B1B5}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{961C7791-DF59-4BC0-9DC6-D2A8D3F2B1B5}\{FF0EBE64-45AA-4B16-A0CC-945CECDCA0B6}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{961C7791-DF59-4BC0-9DC6-D2A8D3F2B1B5}\{FF0EBE64-45AA-4B16-A0CC-945CECDCA0B6}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{961C7791-DF59-4BC0-9DC6-D2A8D3F2B1B5}\{FF0EBE64-45AA-4B16-A0CC-945CECDCA0B6}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{A3BF8AE0-D933-4056-88A7-28E0C483C866}\clean3_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{A3BF8AE0-D933-4056-88A7-28E0C483C866}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{A3BF8AE0-D933-4056-88A7-28E0C483C866}\{FA85C599-2569-4C48-9AA6-2B8D8F029FA7}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{A3BF8AE0-D933-4056-88A7-28E0C483C866}\{FA85C599-2569-4C48-9AA6-2B8D8F029FA7}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{A3BF8AE0-D933-4056-88A7-28E0C483C866}\{FA85C599-2569-4C48-9AA6-2B8D8F029FA7}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{AA5C05EA-7FB9-4519-BBE2-03ADD8EF0E5D}\fusion2_setup_ext.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{AA5C05EA-7FB9-4519-BBE2-03ADD8EF0E5D}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{AA5C05EA-7FB9-4519-BBE2-03ADD8EF0E5D}\{BA3D5FF2-A405-4654-826E-A09FABB01853}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{AA5C05EA-7FB9-4519-BBE2-03ADD8EF0E5D}\{BA3D5FF2-A405-4654-826E-A09FABB01853}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{C081E8AB-3AD3-4F73-A2C4-BB04BB77DB08}\infocus_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{C081E8AB-3AD3-4F73-A2C4-BB04BB77DB08}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E176482F-0DEA-4B06-9697-D12D614FECB9}\denoise5_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E176482F-0DEA-4B06-9697-D12D614FECB9}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E176482F-0DEA-4B06-9697-D12D614FECB9}\{9E82D1DB-3AFB-4D18-A221-081F1B4B4789}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E176482F-0DEA-4B06-9697-D12D614FECB9}\{9E82D1DB-3AFB-4D18-A221-081F1B4B4789}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E176482F-0DEA-4B06-9697-D12D614FECB9}\{9E82D1DB-3AFB-4D18-A221-081F1B4B4789}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E6FD2223-C904-40C1-A119-7C0A8A7FE045}\detail2_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E6FD2223-C904-40C1-A119-7C0A8A7FE045}\instance.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E6FD2223-C904-40C1-A119-7C0A8A7FE045}\{C921D7C4-24D7-4210-AEE9-DFC5DDC78428}.native.bitness.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E6FD2223-C904-40C1-A119-7C0A8A7FE045}\{C921D7C4-24D7-4210-AEE9-DFC5DDC78428}.native.elements.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E6FD2223-C904-40C1-A119-7C0A8A7FE045}\{C921D7C4-24D7-4210-AEE9-DFC5DDC78428}.native.weight.log" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E7058808-8C97-4A08-99A2-015D24FDC13B}\bokeh_setup.dat" is compressed (flags = 1)
Read File: File "c:\ProgramData\{E7058808-8C97-4A08-99A2-015D24FDC13B}\instance.dat" is compressed (flags = 1)
Done!
Scan finished
=======================================

 



#8 salvoclick

salvoclick
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:09 AM

Posted 22 April 2013 - 10:43 AM

ok, I copied all the logs that I have requested and in addition my combofix log.
Please Help me ;)

 

*Moderator Edit: Your Combofix log was removed. If needed you will be directed to the proper forum  ~ Queen-Evie*


Edited by Queen-Evie, 22 April 2013 - 06:54 PM.


#9 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,664 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:03:09 PM

Posted 22 April 2013 - 06:14 PM

I didn't ask for Combofix log.

Combofix is not allowed in this forum.

 

All looks clean so far.

 

p22002970.gif Download Temp File Cleaner (TFC)
Alternate download: http://www.itxassociates.com/OT-Tools/TFC.exe
Double click on TFC.exe to run the program.
Click on Start button to begin cleaning process.
TFC will close all running programs, and it may ask you to restart computer.

=============================================================================

p22002970.gif Please download AdwCleaner by Xplode onto your desktop.

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.


=============================================================================

p22002970.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.


=======================================

p22002970.gif Please run a free online scan with the ESET Online Scanner

  • Disable your antivirus program
  • Tick the box next to YES, I accept the Terms of Use
  • Click Start
  • Accept any security warnings from your browser.
  • Check Scan archives
  • Click Start
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click on List of found threats
  • Click on Export to text file , and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
    NOTE. If Eset doesn't find any threats it'll NOT produce any log.


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#10 Blade

Blade

    Strong in the Bleepforce


  • Site Admin
  • 12,702 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:US
  • Local time:06:09 PM

Posted 22 April 2013 - 07:06 PM

Hello,

Because you had run ComboFix before creating a topic here and requesting help, our forum policy is to refer you to the MRT for analysis of the log.

I have split out your ComboFix log to a new topic in the proper forum. You may find that topic HERE. You should now monitor that topic for further replies.

Additionally, please note the following:

ComboFix (CF for short) is intended by its creator to be "used under the guidance and supervision of an expert", NOT for personal, unsupervised use. Please read Combofix's Disclaimer. When CF is run without trained assistance, it can no longer be considered a "safe" tool. Using this tool incorrectly could lead to disastrous problems with your operating system such as preventing it from ever starting again.

You may find this topic to be informative - ComboFix usage, Questions, Help? - Look here

I am now closing this topic to avoid confusion. You should expect a member of the MRT to reply to your new topic within 1-2 days.

Thank you for your patience, and good luck!

~Blade
Forum Administrator

Posted Image

If I am helping you, it has been 48 hours since your last post, and I have yet to reply to your topic, please send me a PM
Become a BleepingComputer fan: Facebook
Follow us on Twitter!
Circle us on Google+





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users