Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I can t use properly my browsers


  • Please log in to reply
34 replies to this topic

#1 AlexMatrix

AlexMatrix

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:09:57 AM

Posted 18 July 2013 - 08:22 AM

Regards,

 

I got problems with browsers,when I start Youtube on any browser no matter if its Mozilla,Google Chrome,Opera,Saffari,after 15 minutes of watching videos on Youtube my browser blocked and I can t load any other page ,he start to load but he never finish and never load page,I changed modem because old one is finished,I uninstall Mozzila,Opera,I clean my PC from viruses but I still got same problem,I can work on Safari if I don t load Youtube but when I use Youube after 15 minutes he block Youtube and I can t load any other page.

 

 

What should I do can anyone help,are anybody got same problem :smash:



BC AdBot (Login to Remove)

 


#2 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:57 AM

Posted 26 July 2013 - 04:30 AM

:welcome:

 

Please try this:

 

====

 

:step1: Install and run MBAM

:step2:  Running TDSSKiller to obtain log

 

Note: Don't cure or delete a threat, but choose skip for all instead.

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters

tds2.jpg

  • In the Additional options: Check Detect TDLFS file system
  • Click Start Scan and allow the scan process to run

tds4-1.jpg

  • Choose for all threats to Skip for all of them.
  • Click Continue
  • Please post the TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)

===================================================

 

:step3: ESET Online Scanner

==================

Note: If your AV is blocking Eset online scanner, please temporarily disable your AV.

 

I'd like us to scan your machine with ESET OnlineScan This process may may take several hours, that is normal.

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and » UNCHECK "Remove found threats" <== Important
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply. (If no malware was found you will not be presented with a log).
  • Click the Back button.
  • Click the Finish button.

===================================================

:step4:  Please download MiniToolBox , save it to your desktop and run it.

 

Checkmark the following checkboxes:

MiniToolBox.PNG

 

  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices
  • List Users, Partitions and Memory size.
  • List Minidump Files

Close your browsers and click Go. Post the Result.txt located in the same directory as the tool.


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#3 AlexMatrix

AlexMatrix
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:09:57 AM

Posted 26 July 2013 - 05:02 AM

MiniToolBox by Farbar  Version: 13-07-2013
Ran by Petkovic (administrator) on 26-07-2013 at 12:00:59
Running from "C:\Documents and Settings\Petkovic\Desktop"
Microsoft Windows XP Professional Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
 
Windows IP Configuration
 
 
 
Successfully flushed the DNS Resolver Cache.
 
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
 
127.0.0.1 activate.adobe.com
 
========================= IP Configuration: ================================
 
1394 Net Adapter = 1394 Connection (Connected)
Attansic L1 Gigabit Ethernet 10/100/1000Base-T Controller = Local Area Connection (Connected)
 
 
# ---------------------------------- 
# Interface IP Configuration         
# ---------------------------------- 
pushd interface ip
 
 
# Interface IP Configuration for "Local Area Connection"
 
set address name="Local Area Connection" source=dhcp 
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp
 
 
popd
# End of interface IP configuration
 
 
 
 
Windows IP Configuration
 
 
 
        Host Name . . . . . . . . . . . . : p-a63f84bca7454
 
        Primary Dns Suffix  . . . . . . . : 
 
        Node Type . . . . . . . . . . . . : Unknown
 
        IP Routing Enabled. . . . . . . . : No
 
        WINS Proxy Enabled. . . . . . . . : No
 
 
 
Ethernet adapter Local Area Connection:
 
 
 
        Connection-specific DNS Suffix  . : 
 
        Description . . . . . . . . . . . : Attansic L1 Gigabit Ethernet 10/100/1000Base-T Controller
 
        Physical Address. . . . . . . . . : 00-1B-FC-E4-7C-FD
 
        Dhcp Enabled. . . . . . . . . . . : Yes
 
        Autoconfiguration Enabled . . . . : Yes
 
        IP Address. . . . . . . . . . . . : 192.168.1.100
 
        Subnet Mask . . . . . . . . . . . : 255.255.255.0
 
        Default Gateway . . . . . . . . . : 192.168.1.1
 
        DHCP Server . . . . . . . . . . . : 192.168.1.1
 
        DNS Servers . . . . . . . . . . . : 192.168.1.1
 
        Lease Obtained. . . . . . . . . . : Friday, July 26, 2013 9:36:06 AM
 
        Lease Expires . . . . . . . . . . : Monday, July 29, 2013 9:36:06 AM
 
Server:  UnKnown
Address:  192.168.1.1
 
Name:    google.com
Addresses:  178.253.195.26, 178.253.195.16, 178.253.195.18, 178.253.195.19
 178.253.195.21, 178.253.195.22, 178.253.195.27, 178.253.195.17, 178.253.195.24
 178.253.195.23, 178.253.195.20, 178.253.195.25
 
 
 
Pinging google.com [178.253.195.16] with 32 bytes of data:
 
 
 
Reply from 178.253.195.16: bytes=32 time=37ms TTL=60
 
Reply from 178.253.195.16: bytes=32 time=54ms TTL=60
 
 
 
Ping statistics for 178.253.195.16:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 37ms, Maximum = 54ms, Average = 45ms
 
Server:  UnKnown
Address:  192.168.1.1
 
Name:    yahoo.com
Addresses:  98.138.253.109, 206.190.36.45, 98.139.183.24
 
 
 
Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
 
 
 
Reply from 206.190.36.45: bytes=32 time=276ms TTL=46
 
Reply from 206.190.36.45: bytes=32 time=235ms TTL=46
 
 
 
Ping statistics for 206.190.36.45:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 235ms, Maximum = 276ms, Average = 255ms
 
 
 
Pinging 127.0.0.1 with 32 bytes of data:
 
 
 
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
 
 
Ping statistics for 127.0.0.1:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
 
===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 1b fc e4 7c fd ...... Attansic L1 Gigabit Ethernet 10/100/1000Base-T Controller - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1   192.168.1.100  20
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1  1
      192.168.1.0    255.255.255.0    192.168.1.100   192.168.1.100  20
    192.168.1.100  255.255.255.255        127.0.0.1       127.0.0.1  20
    192.168.1.255  255.255.255.255    192.168.1.100   192.168.1.100  20
        224.0.0.0        240.0.0.0    192.168.1.100   192.168.1.100  20
  255.255.255.255  255.255.255.255    192.168.1.100   192.168.1.100  1
Default Gateway:       192.168.1.1
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\system32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 17 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (07/25/2013 03:53:49 PM) (Source: Application Error) (User: )
Description: Faulting application explorer.exe, version 6.0.2900.5512, faulting module splitter.ax, version 1.8.122.18, fault address 0x0000c266.
Processing media-specific event for [explorer.exe!ws!]
 
Error: (07/24/2013 11:14:44 PM) (Source: Application Hang) (User: )
Description: Hanging application chrome.exe, version 28.0.1500.72, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
 
Error: (07/23/2013 06:51:42 PM) (Source: Application Hang) (User: )
Description: Hanging application explorer.exe, version 6.0.2900.5512, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
 
Error: (07/21/2013 05:25:28 PM) (Source: Application Error) (User: )
Description: Faulting application deadislandgame_x86_rwdi.exe, version 1.0.0.0, faulting module engine_x86_rwdi.dll, version 1.0.0.0, fault address 0x001d2136.
Processing media-specific event for [deadislandgame_x86_rwdi.exe!ws!]
 
Error: (07/20/2013 10:53:03 PM) (Source: Application Error) (User: )
Description: Faulting application explorer.exe, version 6.0.2900.5512, faulting module unknown, version 0.0.0.0, fault address 0x082d3d84.
Processing media-specific event for [explorer.exe!ws!]
 
Error: (07/20/2013 08:34:59 PM) (Source: Application Hang) (User: )
Description: Hanging application chrome.exe, version 28.0.1500.72, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
 
Error: (07/20/2013 08:34:58 PM) (Source: Application Hang) (User: )
Description: Hanging application chrome.exe, version 28.0.1500.72, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
 
Error: (07/20/2013 08:34:57 PM) (Source: Application Hang) (User: )
Description: Hanging application chrome.exe, version 28.0.1500.72, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
 
Error: (07/19/2013 11:54:22 PM) (Source: Application Hang) (User: )
Description: Hanging application rundll32.exe, version 5.1.2600.5512, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
 
Error: (07/19/2013 11:37:50 PM) (Source: Application Error) (User: )
Description: Faulting application wmplayer.exe, version 9.0.0.4503, faulting module ffdshow.ax, version 1.0.5.2052, fault address 0x00122176.
Processing media-specific event for [wmplayer.exe!ws!]
 
 
System errors:
=============
Error: (07/26/2013 09:29:33 AM) (Source: Dhcp) (User: )
Description: The IP address lease 192.168.1.100 for the Network Card with network address 001BFCE47CFD has been
denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
 
Error: (07/26/2013 09:14:22 AM) (Source: Service Control Manager) (User: )
Description: The AVGIDSAgent service hung on starting.
 
Error: (07/25/2013 07:40:24 PM) (Source: Windows Update Agent) (User: )
Description: Unable to Connect: Windows is unable to connect to the automatic updates service and therefore cannot download and install updates according to the set schedule. Windows will continue to try to establish a connection.
 
Error: (07/25/2013 07:18:02 PM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the avgwd service.
 
Error: (07/25/2013 07:17:32 PM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the avgwd service.
 
Error: (07/25/2013 09:30:47 AM) (Source: Dhcp) (User: )
Description: The IP address lease 192.168.1.100 for the Network Card with network address 001BFCE47CFD has been
denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
 
Error: (07/24/2013 10:28:01 AM) (Source: Service Control Manager) (User: )
Description: The AVGIDSAgent service hung on starting.
 
Error: (07/24/2013 10:26:11 AM) (Source: Dhcp) (User: )
Description: The IP address lease 192.168.1.100 for the Network Card with network address 001BFCE47CFD has been
denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
 
Error: (07/23/2013 07:09:18 PM) (Source: Windows Update Agent) (User: )
Description: Unable to Connect: Windows is unable to connect to the automatic updates service and therefore cannot download and install updates according to the set schedule. Windows will continue to try to establish a connection.
 
Error: (07/23/2013 07:08:04 PM) (Source: W32Time) (User: )
Description: The time provider NtpClient is configured to acquire time from one or more
time sources, however none of the sources are currently accessible. 
No attempt to contact a source will be made for 14 minutes.
NtpClient has no source of accurate time.
 
 
Microsoft Office Sessions:
=========================
 
=========================== Installed Programs ============================
 
3dsmax ancillary install (Version: 1)
4Media MP4 to MP3 Converter 6 (Version: 6.8.0.1101)
Adobe Anchor Service CS4 (Version: 2.0)
Adobe Bridge 1.0 (Version: 001.000.004)
Adobe Bridge CS4 (Version: 3)
Adobe CMaps CS4 (Version: 2.0)
Adobe Color EU Extra Settings CS4 (Version: 2.0)
Adobe Color JA Extra Settings CS4 (Version: 2.0)
Adobe Color NA Recommended Settings CS4 (Version: 2.0)
Adobe Common File Installer (Version: 1.00.0000)
Adobe Community Help (Version: 3.4.980)
Adobe CSI CS4 (Version: 1)
Adobe Default Language CS4 (Version: 2.0)
Adobe Drive CS4 (Version: 1)
Adobe ExtendScript Toolkit CS4 (Version: 3.0.0)
Adobe Extension Manager CS4 (Version: 2.0)
Adobe Fonts All (Version: 2.0)
Adobe Help Center 1.0 (Version: 001.000.000)
Adobe InDesign CS4 (Version: 6.0)
Adobe InDesign CS4 Application Feature Set Files (Roman) (Version: 6.0)
Adobe InDesign CS4 Common Base Files (Version: 6.0)
Adobe InDesign CS4 Icon Handler (Version: 6.0)
Adobe Linguistics CS4 (Version: 4.0.0)
Adobe Media Player (Version: 0.0.0)
Adobe Media Player (Version: 1.1)
Adobe Output Module (Version: 2.0)
Adobe PDF Library Files CS4 (Version: 9.0)
Adobe Photoshop CS2 (Version: 9.0)
Adobe Reader X (10.1.7) (Version: 10.1.7)
Adobe Search for Help (Version: 1.0)
Adobe Service Manager Extension (Version: 1.0)
Adobe Setup (Version: 2.0)
Adobe SGM CS4 (Version: 3.0)
Adobe SING CS4 (Version: 2.0)
Adobe Stock Photos 1.0 (Version: 001.000.000)
Adobe Type Support CS4 (Version: 9.0)
Adobe Update Manager CS4 (Version: 6.0.0)
Adobe WinSoft Linguistics Plugin (Version: 1.1)
Adobe XMP Panels CS4 (Version: 2.0)
AdobeColorCommonSetCMYK (Version: 2.0)
AdobeColorCommonSetRGB (Version: 2.0)
Ashampoo Burning Studio 2013 v.11.0.5 (Version: 11.0.5)
ATI Catalyst Registration (Version: 3.00.0000)
Attansic Ethernet Utility (Version: 2.0.60.4)
Attansic L1 Gigabit Ethernet Driver
Autodesk Backburner 2013.0.0 (Version: 2013.0.0)
AVG 2013 (Version: 13.0.3209)
AVG 2013 (Version: 13.0.3349)
AVG 2013 (Version: 2013.0.3349)
BitTorrent (Version: 7.8.0.29676)
Canon Camera Access Library (Version: 8.1.1.17)
Canon Camera Support Core Library (Version: 7.3.1.6)
Canon Camera Window DC_DV 5 for ZoomBrowser EX (Version: 5.4.5.17)
Canon Camera Window DC_DV 6 for ZoomBrowser EX (Version: 6.2.0.8)
Canon Camera Window MC 6 for ZoomBrowser EX (Version: 6.1.0.7)
Canon G.726 WMP-Decoder (Version: 1.0.1.3)
Canon iP4500 series
Canon MovieEdit Task for ZoomBrowser EX (Version: 2.2.0.13)
Canon RAW Image Task for ZoomBrowser EX (Version: 2.3.0.11)
Canon RemoteCapture Task for ZoomBrowser EX (Version: 1.5.0.5)
Canon Utilities EOS Utility (Version: 1.0.3.17)
Canon Utilities My Printer
Canon Utilities PhotoStitch (Version: 3.1.17.41)
Canon Utilities ZoomBrowser EX (Version: 5.6.0.27)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2010.0706.2128.36662)
Catalyst Control Center InstallProxy (Version: 2010.0706.2128.36662)
CCC Help English (Version: 2010.0706.2127.36662)
ccc-core-static (Version: 2010.0706.2128.36662)
ccc-utility (Version: 2010.0706.2128.36662)
CDex extraction audio (Version: 1.70.4.2009)
CDisplay (Version: 1.8.5)
CDisplay 1.8
Connect (Version: 1.0.0.1)
Convert Image To PDF
Copy (Version: 43.0.123.000)
CreativeProjects (Version: 43.0.120.000)
CreativeProjectsTemplates (Version: 43.0.120.000)
CueTour (Version: 43.0.120.000)
CyberLink PowerDirector 11 (Version: 11.0.0.2110)
CyberLink PowerDVD 11 (Version: 11.0.2114.53)
Destinations (Version: 43.0.120.000)
Director (Version: 43.0.120.000)
DocProc (Version: 4.0.0.0)
DS4 Default Content (Version: 4.0.0.14)
DVD Audio Extractor 7.0.0
DVD X Player 5.5 Professional
ESET Online Scanner v3
FBX Plugin 2006.08 for Max 9.0
FLAV FLV to MP3 Converter 2.58.15
FLV To 3GP 5.0
FLV to AVI MPEG WMV 3GP MP4 iPod Converter
Free 3GP Video Converter version 3.7.15
Google Chrome (Version: 28.0.1500.72)
Google Update Helper (Version: 1.3.21.153)
Grand Theft Auto IV (Version: 1.0.0013.131)
H.264 Encoder 1.5
Hide Your IP Address
HP Diagnostic Assistant (Version: 1.0.0.0)
HP Image Zone 4.0 (Version: 4.0)
HP Scanjet 3770 (Version: 4.0)
HP Software Update (Version: 2.0.39.20040212)
hpg3770 (Version: 4.0.0.0)
HPSystemDiagnostics (Version: 1.5.0.0)
Indeo® software
InstantShare (Version: 4.0.0.40)
InterVideo DeviceService (Version: 1.0.0)
Java 2 Runtime Environment, SE v1.4.2_04 (Version: 1.4.2_04)
Java 7 Update 9 (Version: 7.0.90)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 30 (Version: 6.0.300)
JavaFX 2.1.1 (Version: 2.1.1)
JPEG to PDF 1.0
Kingconvert Video Converter (Version: 5.0)
K-Lite Mega Codec Pack 6.1.0 (Version: 6.1.0)
kuler (Version: 2.0)
Lernout & Hauspie TruVoice American English TTS Engine
License Support (Version: 1.2.0.5555)
Maxthon Cloud Browser (Version: 4.1.0.4000)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (Version: 3.5.0.0)
Microsoft Games for Windows - LIVE (Version: 3.3.24.0)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.2.3.0)
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft Office Access MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Professional Plus 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Software Update for Web Folders  (English) 12 (Version: 12.0.4518.1014)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable - x86 8.0.59193 (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)
Mobipocket Reader 6.1 (Version: 6.1.592)
Mozilla Firefox 22.0 (x86 en-US) (Version: 22.0)
Mozilla Maintenance Service (Version: 22.0)
MP4 to MP3 Converter (Version: 3.1.39.0809b)
MSXML 6.0 Parser (Version: 6.10.1129.0)
NET Render Client 12.016 (Version: 12.016)
Newblue Art Effects for PowerDirector (Version: 2.0)
Nokia Connectivity Cable Driver (Version: 7.1.31.0)
Nokia Software Updater (Version: 02.06.003.44043)
NVIDIA PhysX (Version: 9.10.0513)
OJOsoft Total Video Converter (Version: 2.7.6.0419)
Opera
Opera Stable 15.0.1147.148 (Version: 15.0.1147.148)
Overland (Version: 2.1.4)
overland (Version: 2.1.5)
Pazera Free Audio Extractor 1.4 (Version: 1.4)
Pazera Free Video to 3GP Converter 1.2 (Version: 1.2)
PC Connectivity Solution (Version: 10.39.0.0)
PDF Settings CS4 (Version: 9.0)
PhotoGallery (Version: 43.0.120.000)
Photoshop Camera Raw (Version: 5.0)
Postal 2 Share The Pain
PowerISO (Version: 4.7)
PrintScreen (Version: 43.0.120.000)
PxMergeModule (Version: 1.00.0000)
QFolder (Version: 1.00.0000)
Quick AVI Splitter v2.0 (Version: 2.0)
QuickProjects (Version: 43.0.120.000)
QuickTime
Readiris Pro 9
RealDownloader (Version: 1.3.2)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealPlayer (Version: 16.0.2)
RealUpgrade 1.1 (Version: 1.1.0)
Reason 5.0 (Version: 5.0)
Scan (Version: 4.0.0.0)
ShareIns (Version: 1.00.0000)
Simpo PDF Converter Ultimate 1.5.0.0
SkinsHP1 (Version: 43.0.120.000)
SmartSound Quicktracks 5 (Version: 5.1.8)
SmartSound Quicktracks Plugin (Version: 3.0.2.6)
Sony Noise Reduction Plug-In 2.0h (Version: 2.0.451)
Sony Sound Forge 9.0 (Version: 9.0.441)
Suite Shared Configuration CS4 (Version: 1.0)
swMSM (Version: 12.0.0.1)
Text-To-Speech-Runtime (Version: 1.0.0.0)
The Lord of the Rings FREE Trial  (Version: 1.00.0000)
TrayApp (Version: 43.0.120.000)
Ulead DVD DiskRecorder 2.1.1
Unload (Version: 4.0.0)
Visual C++ Redistributables (Version: 1.2.0.5555)
VLC media player 2.0.7 (Version: 2.0.7)
WebFldrs XP (Version: 9.50.7523)
WebReg (Version: 43.0.122.000)
Windows Driver Package - Hewlett-Packard Image  (12/27/2006 8.0.0.0) (Version: 12/27/2006 8.0.0.0)
Windows Driver Package - Nokia pccsmcfd  (08/22/2008 7.0.0.0) (Version: 08/22/2008 7.0.0.0)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Media Encoder 9 Series
Windows Media Encoder 9 Series (Version: 9.00.2980)
Windows Media Format 11 runtime
WinPcap 4.1.1 (Version: 4.1.0.1753)
WinRAR 4.20 (32-bit) (Version: 4.20.0)
Xilisoft MP4 to MP3 Converter (Version: 6.5.2.0216)
XviD MPEG-4 Video Codec (Version: XviD-1.0.3-20122004)
YourFileDownloader (Version: 1.0.0)
 
========================= Devices: ================================
 
Name: Audio Device on High Definition Audio Bus
Description: Audio Device on High Definition Audio Bus
Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Manufacturer: 
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: Audio Device on High Definition Audio Bus
Description: Audio Device on High Definition Audio Bus
Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
Name: SM Bus Controller
Description: SM Bus Controller
Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
Name: AVG miniport driver #7
Description: 
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: AVG Technologies
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: AVG miniport driver #8
Description: 
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: AVG Technologies
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
 
========================= Memory info: ===================================
 
Percentage of memory in use: 90%
Total physical RAM: 2047.04 MB
Available physical RAM: 195.4 MB
Total Pagefile: 3938.92 MB
Available Pagefile: 1798.88 MB
Total Virtual: 2047.88 MB
Available Virtual: 1969.79 MB
 
========================= Partitions: =====================================
 
2 Drive c: () (Fixed) (Total:78.13 GB) (Free:38.18 GB) NTFS
3 Drive d: () (Fixed) (Total:74.53 GB) (Free:31.45 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\P-A63F84BCA7454
 
Administrator            ASPNET                   Guest                    
HelpAssistant            Petkovic                 SUPPORT_388945a0         
 
========================= Minidump Files ==================================
 
C:\WINDOWS\Minidump\Mini072213-01.dmp
========================= Restore Points ==================================
 
21-07-2013 18:45:04 System Checkpoint
22-07-2013 08:11:00 Installed Street Fighter X Tekken
22-07-2013 08:15:27 Installed Street Fighter X Tekken
23-07-2013 08:39:43 System Checkpoint
24-07-2013 19:08:47 System Checkpoint
24-07-2013 20:37:13 Removed Street Fighter X Tekken
24-07-2013 20:59:58 Removed Apple Software Update
 
**** End of log ****
 

 



#4 AlexMatrix

AlexMatrix
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:09:57 AM

Posted 26 July 2013 - 05:04 AM

12:02:39.0171 1336  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
12:02:39.0640 1336  ============================================================
12:02:39.0640 1336  Current date / time: 2013/07/26 12:02:39.0640
12:02:39.0640 1336  SystemInfo:
12:02:39.0640 1336  
12:02:39.0640 1336  OS Version: 5.1.2600 ServicePack: 2.0
12:02:39.0640 1336  Product type: Workstation
12:02:39.0640 1336  ComputerName: P-A63F84BCA7454
12:02:39.0656 1336  UserName: Petkovic
12:02:39.0656 1336  Windows directory: C:\WINDOWS
12:02:39.0656 1336  System windows directory: C:\WINDOWS
12:02:39.0656 1336  Processor architecture: Intel x86
12:02:39.0656 1336  Number of processors: 2
12:02:39.0656 1336  Page size: 0x1000
12:02:39.0656 1336  Boot type: Normal boot
12:02:39.0656 1336  ============================================================
12:02:42.0468 1336  Drive \Device\Harddisk0\DR0 - Size: 0x262AE80000 (152.67 Gb), SectorSize: 0x200, Cylinders: 0x4DD9, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
12:02:42.0468 1336  ============================================================
12:02:42.0468 1336  \Device\Harddisk0\DR0:
12:02:42.0468 1336  MBR partitions:
12:02:42.0468 1336  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x9C41AD8
12:02:42.0484 1336  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x9C41B56, BlocksNum 0x950E482
12:02:42.0484 1336  ============================================================
12:02:42.0562 1336  D: <-> \Device\Harddisk0\DR0\Partition2
12:02:42.0625 1336  C: <-> \Device\Harddisk0\DR0\Partition1
12:02:42.0625 1336  ============================================================
12:02:42.0625 1336  Initialize success
12:02:42.0625 1336  ============================================================
12:02:43.0750 3592  ============================================================
12:02:43.0750 3592  Scan started
12:02:43.0750 3592  Mode: Manual; 
12:02:43.0750 3592  ============================================================
12:02:49.0265 3592  ================ Scan system memory ========================
12:02:49.0265 3592  System memory - ok
12:02:49.0265 3592  ================ Scan services =============================
12:02:49.0562 3592  Abiosdsk - ok
12:02:49.0562 3592  abp480n5 - ok
12:02:49.0640 3592  [ 8FD99680A539792A30E97944FDAECF17 ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
12:02:49.0671 3592  ACPI - ok
12:02:49.0718 3592  [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
12:02:49.0718 3592  ACPIEC - ok
12:02:49.0796 3592  [ 6D7F09CD92A9FEF3A8EFCE66231FDD79 ] adfs            C:\WINDOWS\system32\drivers\adfs.sys
12:02:49.0843 3592  adfs - ok
12:02:49.0984 3592  [ C1EB9968EC89FBA5F3A264E2E57923AB ] Adobe LM Service C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
12:02:49.0984 3592  Adobe LM Service - ok
12:02:50.0093 3592  [ 249A44DCFA2500EB1C020E33A3E9F25B ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
12:02:50.0093 3592  AdobeFlashPlayerUpdateSvc - ok
12:02:50.0093 3592  adpu160m - ok
12:02:50.0140 3592  [ 8BED39E3C35D6A489438B8141717A557 ] aec             C:\WINDOWS\system32\drivers\aec.sys
12:02:50.0187 3592  aec - ok
12:02:50.0296 3592  [ 322D0E36693D6E24A2398BEE62A268CD ] AFD             C:\WINDOWS\System32\drivers\afd.sys
12:02:50.0312 3592  AFD - ok
12:02:50.0312 3592  Aha154x - ok
12:02:50.0328 3592  aic78u2 - ok
12:02:50.0343 3592  aic78xx - ok
12:02:50.0359 3592  [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
12:02:50.0375 3592  Alerter - ok
12:02:50.0406 3592  [ 8C515081584A38AA007909CD02020B3D ] ALG             C:\WINDOWS\System32\alg.exe
12:02:50.0406 3592  ALG - ok
12:02:50.0421 3592  AliIde - ok
12:02:50.0421 3592  amsint - ok
12:02:50.0453 3592  [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
12:02:50.0468 3592  AppMgmt - ok
12:02:50.0500 3592  [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394         C:\WINDOWS\system32\DRIVERS\arp1394.sys
12:02:50.0500 3592  Arp1394 - ok
12:02:50.0515 3592  asc - ok
12:02:50.0515 3592  asc3350p - ok
12:02:50.0531 3592  asc3550 - ok
12:02:50.0625 3592  [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
12:02:50.0671 3592  aspnet_state - ok
12:02:50.0687 3592  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
12:02:50.0687 3592  AsyncMac - ok
12:02:50.0734 3592  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
12:02:50.0750 3592  atapi - ok
12:02:50.0765 3592  [ 19F277BC4CE5689F20F347A6B8AA8C42 ] AtcL001         C:\WINDOWS\system32\DRIVERS\atl01_xp.sys
12:02:50.0781 3592  AtcL001 - ok
12:02:50.0796 3592  Atdisk - ok
12:02:50.0843 3592  [ 327EAC8C955C19D3F6384CE3AAB5ED31 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
12:02:50.0875 3592  Ati HotKey Poller - ok
12:02:51.0031 3592  [ 1D99D1B43638E31EA5CF4A8FD199762B ] ati2mtag        C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
12:02:51.0187 3592  ati2mtag - ok
12:02:51.0218 3592  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
12:02:51.0218 3592  Atmarpc - ok
12:02:51.0250 3592  [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
12:02:51.0265 3592  AudioSrv - ok
12:02:51.0296 3592  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
12:02:51.0296 3592  audstub - ok
12:02:51.0328 3592  [ 8BE661C16FBF84A73BCEC84B6B4A9DB5 ] Avgfwdx         C:\WINDOWS\system32\DRIVERS\avgfwdx.sys
12:02:51.0343 3592  Avgfwdx - ok
12:02:51.0359 3592  [ 8BE661C16FBF84A73BCEC84B6B4A9DB5 ] Avgfwfd         C:\WINDOWS\system32\DRIVERS\avgfwdx.sys
12:02:51.0359 3592  Avgfwfd - ok
12:02:51.0468 3592  [ 6D3A517FE33AD047578BF73BB447EEAD ] avgfws          C:\Program Files\AVG\AVG2013\avgfws.exe
12:02:51.0500 3592  avgfws - ok
12:02:51.0656 3592  [ 50185186719134FA8F307D269106A51C ] AVGIDSAgent     C:\Program Files\AVG\AVG2013\avgidsagent.exe
12:02:51.0796 3592  AVGIDSAgent - ok
12:02:51.0828 3592  [ 4750A2A188D39034F5DDDDAE1BF38BF8 ] AVGIDSDriver    C:\WINDOWS\system32\DRIVERS\avgidsdriverx.sys
12:02:51.0843 3592  AVGIDSDriver - ok
12:02:51.0859 3592  [ B0DEF92F4E1E6B9242E6C8FAB82703F7 ] AVGIDSHX        C:\WINDOWS\system32\DRIVERS\avgidshx.sys
12:02:51.0875 3592  AVGIDSHX - ok
12:02:51.0906 3592  [ A426B2DC795531D99E2EE1952AEC051A ] AVGIDSShim      C:\WINDOWS\system32\DRIVERS\avgidsshimx.sys
12:02:51.0921 3592  AVGIDSShim - ok
12:02:51.0968 3592  [ 08FA13787D77A75DC413E27FD92B44E8 ] Avgldx86        C:\WINDOWS\system32\DRIVERS\avgldx86.sys
12:02:51.0984 3592  Avgldx86 - ok
12:02:52.0187 3592  [ 3E587EE55C70E6DB78A98D7121D3052E ] Avglogx         C:\WINDOWS\system32\DRIVERS\avglogx.sys
12:02:52.0390 3592  Avglogx - ok
12:02:52.0468 3592  [ 5AC56B2CF8EE751796C5A8FC5C631B66 ] Avgmfx86        C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
12:02:52.0578 3592  Avgmfx86 - ok
12:02:52.0640 3592  [ C29E6070396E437FDE184D739CCBA2C7 ] Avgrkx86        C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
12:02:52.0781 3592  Avgrkx86 - ok
12:02:53.0328 3592  [ 14370FB29526F593C04FA48B5D69F7F0 ] Avgtdix         C:\WINDOWS\system32\DRIVERS\avgtdix.sys
12:02:53.0468 3592  Avgtdix - ok
12:02:53.0609 3592  [ C6C470CD49FE9DBA0F082540D7AF7642 ] avgtp           C:\WINDOWS\system32\drivers\avgtpx86.sys
12:02:53.0609 3592  avgtp - ok
12:02:53.0687 3592  [ 3A0977CB68AF13E2579E47EB8984056B ] avgwd           C:\Program Files\AVG\AVG2013\avgwdsvc.exe
12:02:53.0734 3592  avgwd - ok
12:02:53.0765 3592  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
12:02:53.0765 3592  Beep - ok
12:02:53.0828 3592  [ 574738F61FCA2935F5265DC4E5691314 ] BITS            C:\WINDOWS\system32\qmgr.dll
12:02:53.0875 3592  BITS - ok
12:02:53.0953 3592  [ A06CE3399D16DB864F55FAEB1F1927A9 ] Browser         C:\WINDOWS\System32\browser.dll
12:02:53.0968 3592  Browser - ok
12:02:54.0015 3592  [ 1778EBA872274C1226D869CD9486847E ] Capture Device Service C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
12:02:54.0046 3592  Capture Device Service - ok
12:02:54.0109 3592  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
12:02:54.0109 3592  cbidf2k - ok
12:02:54.0203 3592  [ 5753532C476B83119D85AA43B1B10AB3 ] CCALib8         C:\Program Files\Canon\CAL\CALMAIN.exe
12:02:54.0203 3592  CCALib8 - ok
12:02:54.0203 3592  cd20xrnt - ok
12:02:54.0281 3592  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
12:02:54.0281 3592  Cdaudio - ok
12:02:54.0312 3592  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
12:02:54.0312 3592  Cdfs - ok
12:02:54.0375 3592  [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
12:02:54.0390 3592  Cdrom - ok
12:02:54.0390 3592  Changer - ok
12:02:54.0437 3592  [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc           C:\WINDOWS\system32\cisvc.exe
12:02:54.0437 3592  CiSvc - ok
12:02:54.0640 3592  [ DB26C2BA2AC0AB6BE1CFA59F61CE22DA ] CLHNServiceForPowerDVD C:\Program Files\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe
12:02:54.0640 3592  CLHNServiceForPowerDVD - ok
12:02:54.0671 3592  [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
12:02:54.0703 3592  ClipSrv - ok
12:02:54.0828 3592  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:02:54.0859 3592  clr_optimization_v2.0.50727_32 - ok
12:02:54.0953 3592  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:02:55.0046 3592  clr_optimization_v4.0.30319_32 - ok
12:02:55.0046 3592  CmdIde - ok
12:02:55.0046 3592  COMSysApp - ok
12:02:55.0062 3592  Cpqarray - ok
12:02:58.0375 3592  cpuz134 - ok
12:02:58.0609 3592  [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
12:02:58.0625 3592  CryptSvc - ok
12:02:58.0656 3592  [ 71007BD2E1E26927FE3E4EB00C0BEEDF ] ctljystk        C:\WINDOWS\system32\DRIVERS\ctljystk.sys
12:02:58.0671 3592  ctljystk - ok
12:02:58.0828 3592  [ E27D60E5A51EEDF9A57F5B69A9A6457D ] CyberLink PowerDVD 11.0 Monitor Service C:\Program Files\CyberLink\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe
12:02:58.0843 3592  CyberLink PowerDVD 11.0 Monitor Service - ok
12:02:58.0875 3592  [ 857943A77B06AC056771A3B12CD318DD ] CyberLink PowerDVD 11.0 Service C:\Program Files\CyberLink\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe
12:02:58.0906 3592  CyberLink PowerDVD 11.0 Service - ok
12:02:58.0906 3592  dac2w2k - ok
12:02:58.0906 3592  dac960nt - ok
12:02:58.0953 3592  [ 2589FE6015A316C0F5D5112B4DA7B509 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
12:02:59.0000 3592  DcomLaunch - ok
12:02:59.0031 3592  [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
12:02:59.0046 3592  Dhcp - ok
12:02:59.0062 3592  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
12:02:59.0078 3592  Disk - ok
12:02:59.0078 3592  dmadmin - ok
12:02:59.0156 3592  [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
12:02:59.0234 3592  dmboot - ok
12:02:59.0250 3592  [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
12:02:59.0250 3592  dmio - ok
12:02:59.0265 3592  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
12:02:59.0265 3592  dmload - ok
12:02:59.0296 3592  [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver        C:\WINDOWS\System32\dmserver.dll
12:02:59.0296 3592  dmserver - ok
12:02:59.0328 3592  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
12:02:59.0343 3592  DMusic - ok
12:02:59.0359 3592  [ 474B4DC3983173E4B4C9740B0DAC98A6 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
12:02:59.0375 3592  Dnscache - ok
12:02:59.0406 3592  [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
12:02:59.0437 3592  Dot3svc - ok
12:02:59.0453 3592  dpti2o - ok
12:02:59.0484 3592  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
12:02:59.0484 3592  drmkaud - ok
12:02:59.0515 3592  [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost         C:\WINDOWS\System32\eapsvc.dll
12:02:59.0531 3592  EapHost - ok
12:02:59.0546 3592  [ 01F83E1B5DCE05F5CB7D99113CA9E890 ] emu10k          C:\WINDOWS\system32\drivers\emu10k1m.sys
12:02:59.0578 3592  emu10k - ok
12:02:59.0578 3592  [ 7FFA171CCE6A8BFC774862A578BA39A2 ] emu10k1         C:\WINDOWS\system32\drivers\ctlfacem.sys
12:02:59.0593 3592  emu10k1 - ok
12:02:59.0593 3592  [ BC93B4A066477954555966D77FEC9ECB ] ERSvc           C:\WINDOWS\System32\ersvc.dll
12:02:59.0609 3592  ERSvc - ok
12:03:01.0812 3592  esihdrv - ok
12:03:02.0062 3592  [ 0E776ED5F7CC9F94299E70461B7B8185 ] Eventlog        C:\WINDOWS\system32\services.exe
12:03:02.0062 3592  Eventlog - ok
12:03:02.0093 3592  [ 19A799805B24990867B00C120D300C3A ] EventSystem     C:\WINDOWS\system32\es.dll
12:03:02.0140 3592  EventSystem - ok
12:03:02.0156 3592  [ 38D332A6D56AF32635675F132548343E ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
12:03:02.0187 3592  Fastfat - ok
12:03:02.0203 3592  [ 1926899BF9FFE2602B63074971700412 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
12:03:02.0312 3592  FastUserSwitchingCompatibility - ok
12:03:02.0359 3592  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys
12:03:02.0359 3592  Fdc - ok
12:03:02.0390 3592  [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
12:03:02.0406 3592  Fips - ok
12:03:02.0562 3592  [ ACEFEEA621DCA62EFB7A7EEA59F5E91B ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
12:03:02.0640 3592  FLEXnet Licensing Service - ok
12:03:02.0656 3592  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        C:\WINDOWS\system32\DRIVERS\flpydisk.sys
12:03:02.0656 3592  Flpydisk - ok
12:03:02.0718 3592  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          C:\WINDOWS\system32\DRIVERS\fltMgr.sys
12:03:02.0718 3592  FltMgr - ok
12:03:02.0812 3592  [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
12:03:02.0828 3592  FontCache3.0.0.0 - ok
12:03:02.0859 3592  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
12:03:02.0875 3592  Fs_Rec - ok
12:03:02.0875 3592  [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
12:03:02.0890 3592  Ftdisk - ok
12:03:02.0937 3592  [ 065639773D8B03F33577F6CDAEA21063 ] gameenum        C:\WINDOWS\system32\DRIVERS\gameenum.sys
12:03:02.0937 3592  gameenum - ok
12:03:02.0937 3592  GMSIPCI - ok
12:03:03.0062 3592  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
12:03:03.0093 3592  Gpc - ok
12:03:03.0156 3592  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
12:03:03.0218 3592  gupdate - ok
12:03:03.0218 3592  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
12:03:03.0218 3592  gupdatem - ok
12:03:03.0281 3592  [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
12:03:03.0328 3592  HDAudBus - ok
12:03:03.0406 3592  [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
12:03:03.0406 3592  helpsvc - ok
12:03:03.0421 3592  HidServ - ok
12:03:03.0453 3592  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
12:03:03.0453 3592  hidusb - ok
12:03:03.0500 3592  [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
12:03:03.0500 3592  hkmsvc - ok
12:03:03.0500 3592  hpn - ok
12:03:03.0546 3592  [ F6AACF5BCE2893E0C1754AFEB672E5C9 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
12:03:03.0562 3592  HTTP - ok
12:03:03.0609 3592  [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
12:03:03.0609 3592  HTTPFilter - ok
12:03:03.0625 3592  i2omgmt - ok
12:03:03.0625 3592  i2omp - ok
12:03:03.0640 3592  [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
12:03:03.0640 3592  i8042prt - ok
12:03:03.0718 3592  [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc           C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:03:03.0781 3592  idsvc - ok
12:03:03.0796 3592  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
12:03:03.0796 3592  Imapi - ok
12:03:03.0859 3592  [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService    C:\WINDOWS\system32\imapi.exe
12:03:03.0875 3592  ImapiService - ok
12:03:03.0890 3592  ini910u - ok
12:03:03.0906 3592  IntelIde - ok
12:03:03.0937 3592  [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
12:03:03.0953 3592  intelppm - ok
12:03:03.0953 3592  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw           C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
12:03:03.0984 3592  Ip6Fw - ok
12:03:04.0015 3592  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
12:03:04.0015 3592  IpFilterDriver - ok
12:03:04.0015 3592  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
12:03:04.0015 3592  IpInIp - ok
12:03:04.0046 3592  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
12:03:04.0062 3592  IpNat - ok
12:03:04.0093 3592  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
12:03:04.0093 3592  IPSec - ok
12:03:04.0140 3592  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
12:03:04.0156 3592  IRENUM - ok
12:03:04.0171 3592  [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
12:03:04.0171 3592  isapnp - ok
12:03:04.0406 3592  [ B591E761161D1EF547D76EF236EAA6A5 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
12:03:04.0437 3592  JavaQuickStarterService - ok
12:03:04.0468 3592  [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
12:03:04.0500 3592  Kbdclass - ok
12:03:04.0546 3592  [ 692BCF44383D056AED41B045A323D378 ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
12:03:04.0546 3592  kmixer - ok
12:03:04.0578 3592  [ 1705745D900DABF2D89F90EBADDC7517 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
12:03:04.0593 3592  KSecDD - ok
12:03:04.0593 3592  [ F385F4B02C535BFFE1D70CAB80838123 ] LanmanServer    C:\WINDOWS\System32\srvsvc.dll
12:03:04.0609 3592  LanmanServer - ok
12:03:04.0656 3592  [ 1B67B632786FEF1C1BBAEF46C2F3F2E6 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
12:03:04.0656 3592  lanmanworkstation - ok
12:03:04.0671 3592  lbrtfdc - ok
12:03:04.0687 3592  [ A7DB739AE99A796D91580147E919CC59 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
12:03:04.0687 3592  LmHosts - ok
12:03:04.0718 3592  [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
12:03:04.0734 3592  Messenger - ok
12:03:04.0765 3592  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
12:03:04.0765 3592  mnmdd - ok
12:03:04.0781 3592  [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
12:03:04.0796 3592  mnmsrvc - ok
12:03:04.0812 3592  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
12:03:04.0828 3592  Modem - ok
12:03:04.0843 3592  [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
12:03:04.0843 3592  Mouclass - ok
12:03:04.0875 3592  [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
12:03:04.0890 3592  mouhid - ok
12:03:04.0921 3592  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
12:03:04.0937 3592  MountMgr - ok
12:03:04.0937 3592  MozillaMaintenance - ok
12:03:04.0953 3592  mraid35x - ok
12:03:04.0953 3592  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
12:03:04.0968 3592  MRxDAV - ok
12:03:05.0000 3592  [ 68755F0FF16070178B54674FE5B847B0 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
12:03:05.0031 3592  MRxSmb - ok
12:03:05.0062 3592  [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
12:03:05.0078 3592  MSDTC - ok
12:03:05.0093 3592  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
12:03:05.0109 3592  Msfs - ok
12:03:05.0109 3592  MSIServer - ok
12:03:05.0125 3592  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
12:03:05.0125 3592  MSKSSRV - ok
12:03:05.0140 3592  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
12:03:05.0140 3592  MSPCLOCK - ok
12:03:05.0156 3592  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
12:03:05.0187 3592  MSPQM - ok
12:03:05.0203 3592  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
12:03:05.0296 3592  mssmbios - ok
12:03:05.0343 3592  [ D48659BB24C48345D926ECB45C1EBDF5 ] MTsensor        C:\WINDOWS\system32\DRIVERS\ASACPI.sys
12:03:05.0343 3592  MTsensor - ok
12:03:05.0421 3592  [ 2F625D11385B1A94360BFC70AAEFDEE1 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
12:03:05.0437 3592  Mup - ok
12:03:05.0484 3592  [ 0102140028FAD045756796E1C685D695 ] napagent        C:\WINDOWS\System32\qagentrt.dll
12:03:05.0515 3592  napagent - ok
12:03:05.0531 3592  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
12:03:05.0546 3592  NDIS - ok
12:03:05.0562 3592  [ 1AB3D00C991AB086E69DB84B6C0ED78F ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
12:03:05.0562 3592  NdisTapi - ok
12:03:05.0593 3592  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
12:03:05.0609 3592  Ndisuio - ok
12:03:05.0625 3592  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
12:03:05.0640 3592  NdisWan - ok
12:03:05.0640 3592  [ 6215023940CFD3702B46ABC304E1D45A ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
12:03:05.0671 3592  NDProxy - ok
12:03:05.0671 3592  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
12:03:05.0687 3592  NetBIOS - ok
12:03:05.0687 3592  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
12:03:05.0703 3592  NetBT - ok
12:03:05.0734 3592  [ B857BA82860D7FF85AE29B095645563B ] NetDDE          C:\WINDOWS\system32\netdde.exe
12:03:05.0750 3592  NetDDE - ok
12:03:05.0765 3592  [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
12:03:05.0781 3592  NetDDEdsdm - ok
12:03:05.0796 3592  [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon        C:\WINDOWS\system32\lsass.exe
12:03:05.0812 3592  Netlogon - ok
12:03:05.0859 3592  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman          C:\WINDOWS\System32\netman.dll
12:03:05.0906 3592  Netman - ok
12:03:05.0984 3592  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:03:06.0031 3592  NetTcpPortSharing - ok
12:03:06.0078 3592  [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394         C:\WINDOWS\system32\DRIVERS\nic1394.sys
12:03:06.0093 3592  NIC1394 - ok
12:03:06.0125 3592  [ B4138E99236F0F57D4CF49BAE98A0746 ] Nla             C:\WINDOWS\System32\mswsock.dll
12:03:06.0140 3592  Nla - ok
12:03:06.0171 3592  [ C3963D85B721A7F80D8A55F4E2867A3A ] nmwcd           C:\WINDOWS\system32\drivers\ccdcmb.sys
12:03:06.0187 3592  nmwcd - ok
12:03:06.0265 3592  [ 3859C69A77793180548802DAC9F34A38 ] nmwcdc          C:\WINDOWS\system32\drivers\ccdcmbo.sys
12:03:06.0281 3592  nmwcdc - ok
12:03:06.0328 3592  [ 338F83EE9CB9E15EEACF0CBB90218CBF ] nmwcdnsu        C:\WINDOWS\system32\drivers\nmwcdnsu.sys
12:03:06.0375 3592  nmwcdnsu - ok
12:03:06.0390 3592  [ D15BAC979144FB69ED28F97B2DD84D48 ] nmwcdnsuc       C:\WINDOWS\system32\drivers\nmwcdnsuc.sys
12:03:06.0406 3592  nmwcdnsuc - ok
12:03:06.0453 3592  [ B9730495E0CF674680121E34BD95A73B ] npf             C:\WINDOWS\system32\drivers\npf.sys
12:03:06.0453 3592  npf - ok
12:03:06.0468 3592  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
12:03:06.0500 3592  Npfs - ok
12:03:06.0531 3592  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
12:03:06.0578 3592  Ntfs - ok
12:03:06.0703 3592  [ 170EE229D4DEF31DBE95348C9A88FE74 ] ntk_PowerDVD    C:\Program Files\CyberLink\PowerDVD11\Kernel\DMP\ntk_PowerDVD.sys
12:03:06.0734 3592  ntk_PowerDVD - ok
12:03:06.0750 3592  [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
12:03:06.0750 3592  NtLmSsp - ok
12:03:06.0781 3592  [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
12:03:06.0828 3592  NtmsSvc - ok
12:03:06.0843 3592  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys
12:03:06.0859 3592  Null - ok
12:03:06.0875 3592  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
12:03:06.0906 3592  NwlnkFlt - ok
12:03:06.0906 3592  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
12:03:06.0921 3592  NwlnkFwd - ok
12:03:07.0015 3592  [ 84DE1DD996B48B05ACE31AD015FA108A ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
12:03:07.0046 3592  odserv - ok
12:03:07.0062 3592  [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394        C:\WINDOWS\system32\DRIVERS\ohci1394.sys
12:03:07.0078 3592  ohci1394 - ok
12:03:07.0093 3592  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:03:07.0140 3592  ose - ok
12:03:07.0375 3592  [ 673E36852E2F9FA778D5D3DDCEFA591B ] PaceLicenseDServices C:\Program Files\Common Files\PACE\Services\LicenseServices\LDSvc.exe
12:03:07.0765 3592  PaceLicenseDServices - ok
12:03:07.0953 3592  [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport         C:\WINDOWS\system32\drivers\Parport.sys
12:03:07.0984 3592  Parport - ok
12:03:08.0093 3592  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
12:03:08.0093 3592  PartMgr - ok
12:03:08.0171 3592  [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
12:03:08.0187 3592  ParVdm - ok
12:03:08.0343 3592  [ FD2041E9BA03DB7764B2248F02475079 ] pccsmcfd        C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
12:03:08.0359 3592  pccsmcfd - ok
12:03:08.0406 3592  [ A219903CCF74233761D92BEF471A07B1 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
12:03:08.0406 3592  PCI - ok
12:03:08.0421 3592  PCIDump - ok
12:03:08.0500 3592  [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
12:03:08.0500 3592  PCIIde - ok
12:03:08.0546 3592  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
12:03:08.0546 3592  Pcmcia - ok
12:03:08.0546 3592  PDCOMP - ok
12:03:08.0562 3592  PDFRAME - ok
12:03:08.0562 3592  PDRELI - ok
12:03:08.0562 3592  PDRFRAME - ok
12:03:08.0578 3592  perc2 - ok
12:03:08.0578 3592  perc2hib - ok
12:03:08.0625 3592  [ 0E776ED5F7CC9F94299E70461B7B8185 ] PlugPlay        C:\WINDOWS\system32\services.exe
12:03:08.0625 3592  PlugPlay - ok
12:03:08.0640 3592  [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
12:03:08.0656 3592  PolicyAgent - ok
12:03:08.0671 3592  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
12:03:08.0671 3592  PptpMiniport - ok
12:03:08.0687 3592  [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
12:03:08.0687 3592  ProtectedStorage - ok
12:03:08.0703 3592  [ 09298EC810B07E5D582CB3A3F9255424 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
12:03:08.0718 3592  PSched - ok
12:03:08.0750 3592  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
12:03:08.0765 3592  Ptilink - ok
12:03:08.0796 3592  [ 40FEDD328F98245AD201CF5F9F311724 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
12:03:08.0812 3592  PxHelp20 - ok
12:03:08.0812 3592  ql1080 - ok
12:03:08.0812 3592  Ql10wnt - ok
12:03:08.0828 3592  ql12160 - ok
12:03:08.0828 3592  ql1240 - ok
12:03:08.0843 3592  ql1280 - ok
12:03:08.0859 3592  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
12:03:08.0875 3592  RasAcd - ok
12:03:08.0906 3592  [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
12:03:08.0906 3592  RasAuto - ok
12:03:08.0921 3592  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
12:03:08.0921 3592  Rasl2tp - ok
12:03:08.0984 3592  [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan          C:\WINDOWS\System32\rasmans.dll
12:03:09.0015 3592  RasMan - ok
12:03:09.0031 3592  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
12:03:09.0031 3592  RasPppoe - ok
12:03:09.0093 3592  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
12:03:09.0093 3592  Raspti - ok
12:03:09.0125 3592  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
12:03:09.0171 3592  Rdbss - ok
12:03:09.0203 3592  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
12:03:09.0218 3592  RDPCDD - ok
12:03:09.0265 3592  [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
12:03:09.0312 3592  rdpdr - ok
12:03:09.0359 3592  [ 6728E45B66F93C08F11DE2E316FC70DD ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
12:03:09.0390 3592  RDPWD - ok
12:03:09.0437 3592  [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
12:03:09.0468 3592  RDSessMgr - ok
12:03:09.0546 3592  [ B2D01290C0E0465ACA54C2088E947823 ] RealNetworks Downloader Resolver Service C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
12:03:09.0546 3592  RealNetworks Downloader Resolver Service - ok
12:03:09.0578 3592  [ F828DD7E1419B6653894A8F97A0094C5 ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
12:03:09.0593 3592  redbook - ok
12:03:09.0656 3592  [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
12:03:09.0671 3592  RemoteAccess - ok
12:03:09.0718 3592  [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
12:03:09.0718 3592  RemoteRegistry - ok
12:03:09.0828 3592  [ 9C675492B635CC1756AE4EAB3937552A ] RichVideo       C:\Program Files\CyberLink\Shared files\RichVideo.exe
12:03:09.0875 3592  RichVideo - ok
12:03:09.0937 3592  [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] ROOTMODEM       C:\WINDOWS\system32\Drivers\RootMdm.sys
12:03:09.0937 3592  ROOTMODEM - ok
12:03:09.0968 3592  [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator      C:\WINDOWS\system32\locator.exe
12:03:09.0984 3592  RpcLocator - ok
12:03:10.0015 3592  [ 2589FE6015A316C0F5D5112B4DA7B509 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
12:03:10.0031 3592  RpcSs - ok
12:03:10.0078 3592  [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP            C:\WINDOWS\system32\rsvp.exe
12:03:10.0125 3592  RSVP - ok
12:03:10.0156 3592  [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs           C:\WINDOWS\system32\lsass.exe
12:03:10.0156 3592  SamSs - ok
12:03:10.0218 3592  [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
12:03:10.0234 3592  SCardSvr - ok
12:03:10.0281 3592  [ 20B2751CD4C8F3FD989739CA661B9F30 ] SCDEmu          C:\WINDOWS\system32\drivers\SCDEmu.sys
12:03:10.0328 3592  SCDEmu - ok
12:03:10.0406 3592  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule        C:\WINDOWS\system32\schedsvc.dll
12:03:10.0437 3592  Schedule - ok
12:03:10.0468 3592  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
12:03:10.0468 3592  Secdrv - ok
12:03:10.0593 3592  [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon        C:\WINDOWS\System32\seclogon.dll
12:03:10.0593 3592  seclogon - ok
12:03:10.0625 3592  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS            C:\WINDOWS\system32\sens.dll
12:03:10.0625 3592  SENS - ok
12:03:10.0656 3592  [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
12:03:10.0656 3592  serenum - ok
12:03:10.0703 3592  [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys
12:03:10.0703 3592  Serial - ok
12:03:10.0843 3592  [ 376E3C718ACF79E84F0F5FF41C6E32DE ] ServiceLayer    C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
12:03:10.0921 3592  ServiceLayer - ok
12:03:10.0953 3592  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
12:03:10.0968 3592  Sfloppy - ok
12:03:11.0000 3592  [ 0B1A5E9CACB5CDD54A2815107BD7C772 ] sfman           C:\WINDOWS\system32\drivers\sfmanm.sys
12:03:11.0000 3592  sfman - ok
12:03:11.0046 3592  [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
12:03:11.0078 3592  SharedAccess - ok
12:03:11.0125 3592  [ 1926899BF9FFE2602B63074971700412 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
12:03:11.0125 3592  ShellHWDetection - ok
12:03:11.0140 3592  Simbad - ok
12:03:11.0140 3592  Sparrow - ok
12:03:11.0171 3592  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
12:03:11.0171 3592  splitter - ok
12:03:11.0187 3592  [ D8E14A61ACC1D4A6CD0D38AEBAC7FA3B ] Spooler         C:\WINDOWS\system32\spoolsv.exe
12:03:11.0187 3592  Spooler - ok
12:03:11.0312 3592  [ CDDDEC541BC3C96F91ECB48759673505 ] sptd            C:\WINDOWS\system32\Drivers\sptd.sys
12:03:11.0312 3592  Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: CDDDEC541BC3C96F91ECB48759673505
12:03:11.0312 3592  sptd ( LockedFile.Multi.Generic ) - warning
12:03:11.0312 3592  sptd - detected LockedFile.Multi.Generic (1)
12:03:11.0343 3592  [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
12:03:11.0390 3592  sr - ok
12:03:11.0406 3592  [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice       C:\WINDOWS\system32\srsvc.dll
12:03:11.0437 3592  srservice - ok
12:03:11.0484 3592  [ 5252605079810904E31C332E241CD59B ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
12:03:11.0531 3592  Srv - ok
12:03:11.0578 3592  [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
12:03:11.0578 3592  SSDPSRV - ok
12:03:11.0640 3592  [ B1691AF4A072CB674D600DB16DD7308E ] StarWindServiceAE C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
12:03:11.0671 3592  StarWindServiceAE - ok
12:03:11.0703 3592  [ A9573045BAA16EAB9B1085205B82F1ED ] StillCam        C:\WINDOWS\system32\DRIVERS\serscan.sys
12:03:11.0703 3592  StillCam - ok
12:03:11.0734 3592  [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
12:03:11.0750 3592  stisvc - ok
12:03:11.0765 3592  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
12:03:11.0781 3592  swenum - ok
12:03:11.0828 3592  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
12:03:11.0828 3592  swmidi - ok
12:03:11.0828 3592  SwPrv - ok
12:03:11.0843 3592  symc810 - ok
12:03:11.0843 3592  symc8xx - ok
12:03:11.0859 3592  sym_hi - ok
12:03:11.0859 3592  sym_u3 - ok
12:03:11.0875 3592  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
12:03:11.0890 3592  sysaudio - ok
12:03:11.0953 3592  [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
12:03:11.0968 3592  SysmonLog - ok
12:03:11.0984 3592  [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
12:03:12.0015 3592  TapiSrv - ok
12:03:12.0046 3592  [ 93EA8D04EC73A85DB02EB8805988F733 ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
12:03:12.0078 3592  Tcpip - ok
12:03:12.0093 3592  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
12:03:12.0093 3592  TDPIPE - ok
12:03:12.0109 3592  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
12:03:12.0140 3592  TDTCP - ok
12:03:12.0140 3592  [ 88155247177638048422893737429D9E ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
12:03:12.0156 3592  TermDD - ok
12:03:12.0187 3592  [ FF3477C03BE7201C294C35F684B3479F ] TermService     C:\WINDOWS\System32\termsrv.dll
12:03:12.0203 3592  TermService - ok
12:03:12.0250 3592  [ 1926899BF9FFE2602B63074971700412 ] Themes          C:\WINDOWS\System32\shsvcs.dll
12:03:12.0250 3592  Themes - ok
12:03:12.0281 3592  [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
12:03:12.0281 3592  TlntSvr - ok
12:03:12.0281 3592  TosIde - ok
12:03:12.0312 3592  [ E830CDA96B3C43971874C3BEE2D0BB18 ] TPkd            C:\WINDOWS\system32\drivers\TPkd.sys
12:03:12.0312 3592  TPkd - ok
12:03:12.0328 3592  [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks          C:\WINDOWS\system32\trkwks.dll
12:03:12.0328 3592  TrkWks - ok
12:03:12.0343 3592  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
12:03:12.0359 3592  Udfs - ok
12:03:12.0359 3592  ultra - ok
12:03:13.0015 3592  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
12:03:13.0125 3592  Update - ok
12:03:13.0484 3592  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost        C:\WINDOWS\System32\upnphost.dll
12:03:13.0578 3592  upnphost - ok
12:03:13.0625 3592  [ 0CCADC7391021376EDBB8AA649D04E68 ] upperdev        C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
12:03:13.0625 3592  upperdev - ok
12:03:13.0687 3592  [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS             C:\WINDOWS\System32\ups.exe
12:03:13.0687 3592  UPS - ok
12:03:13.0718 3592  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
12:03:13.0734 3592  usbehci - ok
12:03:13.0765 3592  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
12:03:13.0781 3592  usbhub - ok
12:03:13.0828 3592  [ A717C8721046828520C9EDF31288FC00 ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
12:03:13.0828 3592  usbprint - ok
12:03:13.0875 3592  [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
12:03:13.0875 3592  usbscan - ok
12:03:13.0937 3592  [ 1C888B000C2F9492F4B15B5B6B84873E ] usbser          C:\WINDOWS\system32\drivers\usbser.sys
12:03:13.0953 3592  usbser - ok
12:03:14.0015 3592  [ 68B4F83CCCF70A2FF32EE142C234332A ] UsbserFilt      C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
12:03:14.0015 3592  UsbserFilt - ok
12:03:14.0078 3592  [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
12:03:14.0078 3592  USBSTOR - ok
12:03:14.0156 3592  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
12:03:14.0171 3592  usbuhci - ok
12:03:14.0234 3592  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
12:03:14.0250 3592  VgaSave - ok
12:03:14.0265 3592  ViaIde - ok
12:03:14.0328 3592  [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
12:03:14.0328 3592  VolSnap - ok
12:03:14.0421 3592  [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS             C:\WINDOWS\System32\vssvc.exe
12:03:14.0515 3592  VSS - ok
12:03:14.0718 3592  [ 254E8F9BA44E9F55416B0E51DBFF3C5F ] vToolbarUpdater15.3.0 C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.3.0\ToolbarUpdater.exe
12:03:14.0968 3592  vToolbarUpdater15.3.0 - ok
12:03:15.0015 3592  [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time         C:\WINDOWS\system32\w32time.dll
12:03:15.0062 3592  W32Time - ok
12:03:15.0109 3592  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
12:03:15.0125 3592  Wanarp - ok
12:03:15.0187 3592  [ D918617B46457B9AC28027722E30F647 ] Wdf01000        C:\WINDOWS\system32\Drivers\wdf01000.sys
12:03:15.0281 3592  Wdf01000 - ok
12:03:15.0296 3592  WDICA - ok
12:03:15.0343 3592  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
12:03:15.0359 3592  wdmaud - ok
12:03:15.0406 3592  [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient       C:\WINDOWS\System32\webclnt.dll
12:03:15.0421 3592  WebClient - ok
12:03:15.0500 3592  [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
12:03:15.0515 3592  winmgmt - ok
12:03:15.0546 3592  [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
12:03:15.0562 3592  WmdmPmSN - ok
12:03:15.0625 3592  [ BAB489A5FE26F2D0C910CF7AF7E4CF92 ] Wmi             C:\WINDOWS\System32\advapi32.dll
12:03:15.0781 3592  Wmi - ok
12:03:15.0812 3592  [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
12:03:15.0843 3592  WmiApSrv - ok
12:03:15.0875 3592  [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb          C:\WINDOWS\system32\DRIVERS\wpdusb.sys
12:03:15.0890 3592  WpdUsb - ok
12:03:16.0031 3592  [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
12:03:16.0171 3592  WPFFontCache_v0400 - ok
12:03:16.0281 3592  [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
12:03:16.0296 3592  wscsvc - ok
12:03:16.0390 3592  [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
12:03:16.0406 3592  wuauserv - ok
12:03:16.0468 3592  [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
12:03:16.0468 3592  WudfPf - ok
12:03:16.0500 3592  [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
12:03:16.0515 3592  WudfRd - ok
12:03:16.0546 3592  [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
12:03:16.0546 3592  WudfSvc - ok
12:03:16.0609 3592  [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
12:03:16.0671 3592  WZCSVC - ok
12:03:16.0765 3592  [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
12:03:16.0828 3592  xmlprov - ok
12:03:16.0921 3592  [ 3CB263CF60B253BEAD6E0205E1FA5669 ] {329F96B6-DF1E-4328-BFDA-39EA953C1312} C:\Program Files\CyberLink\PowerDVD11\Common\NavFilter\000.fcl
12:03:16.0953 3592  {329F96B6-DF1E-4328-BFDA-39EA953C1312} - ok
12:03:17.0078 3592  ================ Scan global ===============================
12:03:17.0109 3592  [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
12:03:17.0156 3592  [ 1618F36D4F7F6CCCEB3EE44BA95BE85C ] C:\WINDOWS\system32\winsrv.dll
12:03:17.0218 3592  [ 1618F36D4F7F6CCCEB3EE44BA95BE85C ] C:\WINDOWS\system32\winsrv.dll
12:03:17.0218 3592  [ 0E776ED5F7CC9F94299E70461B7B8185 ] C:\WINDOWS\system32\services.exe
12:03:17.0234 3592  [Global] - ok
12:03:17.0234 3592  ================ Scan MBR ==================================
12:03:17.0250 3592  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
12:03:20.0750 3592  \Device\Harddisk0\DR0 - ok
12:03:20.0750 3592  ================ Scan VBR ==================================
12:03:20.0750 3592  [ 07DE73DDF221C356EBAD52054FB27DA8 ] \Device\Harddisk0\DR0\Partition1
12:03:20.0750 3592  \Device\Harddisk0\DR0\Partition1 - ok
12:03:20.0796 3592  [ 98E861B680F65A3092C6FE8759745EFB ] \Device\Harddisk0\DR0\Partition2
12:03:20.0859 3592  \Device\Harddisk0\DR0\Partition2 - ok
12:03:20.0859 3592  ============================================================
12:03:20.0859 3592  Scan finished
12:03:20.0859 3592  ============================================================
12:03:20.0890 0612  Detected object count: 1
12:03:20.0890 0612  Actual detected object count: 1
12:03:23.0031 0612  sptd ( LockedFile.Multi.Generic ) - skipped by user
12:03:23.0031 0612  sptd ( LockedFile.Multi.Generic ) - User select action: Skip 
12:03:28.0375 4800  Deinitialize success


#5 AlexMatrix

AlexMatrix
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:09:57 AM

Posted 26 July 2013 - 05:13 AM

Here the ESET



#6 AlexMatrix

AlexMatrix
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:09:57 AM

Posted 26 July 2013 - 05:14 AM

I also try this things Regards


I need help I got big problem with Youtube,every time when I turn on video on youtube and start to watch after 10 or 15 minutes he blocked and don t want to load again that not all he also blocked all my other pages and I can work in Google chrome until I restart my computer,I got Windows XP SP 3,I uninstall flash and shock wave players and install them again,I go here www.youtube.com/my_speed,and do next:Show test video,right click settings,unchecked enable hardware acceleration but even then ho don want to work properly,what should I do please help. icon_mad.gif 

P.S I don t want to restart my computer every 15 minutes
NeoTrinity   Posts: 1 Joined: Fri Jul 26, 2013 2:14 am
  •  


#7 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:57 AM

Posted 26 July 2013 - 05:46 AM

The Eset report is missing and please also post the MBAM log.

 

===

 

Your available physical RAM is probably too low. 

 

Percentage of memory in use: 90%
Total physical RAM: 2047.04 MB
Available physical RAM: 195.4 MB

If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#8 AlexMatrix

AlexMatrix
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:09:57 AM

Posted 26 July 2013 - 06:00 AM

come here if you can in 15:30 i hope that ESET gonna finish in that time :)because now is 29% 



#9 AlexMatrix

AlexMatrix
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:09:57 AM

Posted 26 July 2013 - 10:16 AM

Malwarebytes Anti-Malware (Trial) 1.75.0.1300
www.malwarebytes.org
 
Database version: v2013.07.26.03
 
Windows XP Service Pack 2 x86 NTFS
Internet Explorer 8.0.6001.18702
Petkovic :: P-A63F84BCA7454 [administrator]
 
Protection: Disabled
 
7/26/2013 12:53:42 PM
MBAM-log-2013-07-26 (17-15-09).txt
 
Scan type: Full scan (C:\|D:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 329927
Time elapsed: 2 hour(s), 50 minute(s), 8 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 3
C:\Documents and Settings\Petkovic\Application Data\WindowsHelp\miner.dll (PUP.BitCoinMiner) -> No action taken.
C:\Documents and Settings\Petkovic\Application Data\WindowsHelp\usft_ext.dll (PUP.BitCoinMiner) -> No action taken.
C:\Documents and Settings\Petkovic\Application Data\WindowsHelp\coinutil.dll (PUP.BitcoinMiner) -> No action taken.
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 9
C:\Documents and Settings\Petkovic\Application Data\WindowsHelp\miner.dll (PUP.BitCoinMiner) -> No action taken.
C:\Documents and Settings\Petkovic\Application Data\WindowsHelp\usft_ext.dll (PUP.BitCoinMiner) -> No action taken.
C:\Documents and Settings\Petkovic\Application Data\WindowsHelp\coinutil.dll (PUP.BitcoinMiner) -> No action taken.
C:\Documents and Settings\Petkovic\Local Settings\Temp\rjmyxjjtuam.exe (PUP.BitcoinMiner) -> No action taken.
C:\Program Files\Alcohol Soft\Alcohol 120\AutoLoader_AxLaUn.exe (Trojan.ExploitDrop.BV) -> No action taken.
C:\Program Files\Alcohol Soft\Alcohol 120\AxLaUn.exe (Trojan.ExploitDrop.BV) -> No action taken.
C:\System Volume Information\_restore{8C3716E2-55E3-4A4E-966A-69A5CECEE51B}\RP1234\A0501452.exe (Malware.Packer.Gen) -> No action taken.
C:\System Volume Information\_restore{8C3716E2-55E3-4A4E-966A-69A5CECEE51B}\RP1234\A0501494.exe (Malware.Packer.Gen) -> No action taken.
D:\System Volume Information\_restore{4CDFD8E4-A83A-431A-B616-798747CD006C}\RP265\A0268375.exe (Malware.Gen) -> No action taken.
 
(end)


Should I delete fined trojans,malwares in Malware bytes?



#10 AlexMatrix

AlexMatrix
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:09:57 AM

Posted 26 July 2013 - 10:18 AM

Eset don t give me scan details what should I do?



#11 AlexMatrix

AlexMatrix
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:09:57 AM

Posted 26 July 2013 - 10:25 AM

Maybe should I scan again  :smash:



#12 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:57 AM

Posted 26 July 2013 - 10:28 AM

Quarantine these infections:

 

C:\Documents and Settings\Petkovic\Application Data\WindowsHelp\miner.dll (PUP.BitCoinMiner) -> No action taken.
C:\Documents and Settings\Petkovic\Application Data\WindowsHelp\usft_ext.dll (PUP.BitCoinMiner) -> No action taken.
C:\Documents and Settings\Petkovic\Application Data\WindowsHelp\coinutil.dll (PUP.BitcoinMiner) -> No action taken.
C:\Documents and Settings\Petkovic\Local Settings\Temp\rjmyxjjtuam.exe (PUP.BitcoinMiner) -> No action taken.
C:\Program Files\Alcohol Soft\Alcohol 120\AutoLoader_AxLaUn.exe (Trojan.ExploitDrop.BV) -> No action taken.
C:\Program Files\Alcohol Soft\Alcohol 120\AxLaUn.exe (Trojan.ExploitDrop.BV) -> No action taken.
 
 
The other infections are in the C:\System Volume Information\ this is where the restore point are located.
 
 
=== 
 
Beste is to choice method A. (For safety) 
 
Method A: Remove all but the latest restore point.
 
XP has a utility called Disk Cleanup, (Start > All programs > Accessories > System tools > Disk Cleanup). Open that. If you have more than one hard drive, select the C drive. The utility will check for compressed files, which may take a few minutes. When done, it will present a list of all temporary files that can be deleted. There is another tab, More Options, so click that, and you will see the option to "Remove all but the latest Restore point". Select that, then continue.
 
Method B: Remove all restore points
 
Right click your My Computer icon and select Properties. In the new window, select the System Restore tab then select the "Turn off System Restore" option. Click OK and respond to any prompts. That deletes all System Restore Points. As soon as that is done, de-select that "Turn off System Restore", and click OK.
 
===
 
Then create your own System Restore Point the way you normally do it.

 

 
Eset log (log.txt) can be found
 
C:\Program Files (x86)\ESET\ESET Online Scanner

 

[OR]

 

C:\Program Files\ESET\ESET Online Scanner

 

 
 

 


Edited by GodfatherKing, 26 July 2013 - 10:31 AM.

If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#13 AlexMatrix

AlexMatrix
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:09:57 AM

Posted 26 July 2013 - 11:41 AM

Here s Eset C:\Documents and Settings\Petkovic\Local Settings\Temp\NODB021.tmp probably a variant of Win32/BitCoinMiner.H application cleaned by deleting - quarantined

C:\Program Files\Common Files\Windows Service Manager0\ofzlzhsqk.exe Win32/Neurevt.A trojan cleaned by deleting (after the next restart) - quarantined


#14 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:57 AM

Posted 26 July 2013 - 01:48 PM

:thumbup2: I think we have removed the most malware.

 

Reboot the computer, does the system now better work?

 

If not, the cause:

 

===

 

Your available physical RAM is probably too low. 

 

Percentage of memory in use: 90%
Total physical RAM: 2047.04 MB
Available physical RAM: 195.4 MB

Edited by GodfatherKing, 26 July 2013 - 01:49 PM.

If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#15 AlexMatrix

AlexMatrix
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:09:57 AM

Posted 27 July 2013 - 04:42 AM

Non of those things help me man,I still got same problem,I can t reboot computer because I got valuable information's and I don t got time to burning CD because my time is limited,do you got some other step because I don t know how much Method B is safe,tell me man please :killcomp:






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users