Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

China spying on me? Slow functions & net browser issues.


  • Please log in to reply
5 replies to this topic

#1 Redheadscorpio

Redheadscorpio

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:09:48 AM

Posted 13 December 2013 - 08:43 AM

Recently I logged into an e-mail account to view e-mails, as usual. Then I noticed in the activity log of my account, that right after I had logged in (from my current location), someone else had attempted to login to my account several times, from China!

 

Could this mean that I have a spyware or somethign similar on my computer that is attempting to get my password details?

 

Also during the last few days I have had trouble connecting to websites that I use regularly, and don't usualyl have trouble with. Just opening the pages gives the "Could not find this page" -message. After attempting several times, it usually works, eventually. Could this be caused by a virus, or simply a bad connection?

 

My computer also works slower than usually. Painfully slow, sometimes. But during my AVG and Spybot scans nothing suspicious was found.

 

Any advice or recommended actions I should perform?



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:48 AM

Posted 13 December 2013 - 10:38 AM

Hello possibly something loaded in the email or installer.


Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
.
.
.
ADW Cleaner

Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
    <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • .
    .
    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
    • Shut down your protection software now to avoid potential conflicts.
    • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
    • The tool will open and start scanning your system.
    • Please be patient as this can take a while to complete depending on your system's specifications.
    • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
    • Post the contents of JRT.txt into your next message.
    .
    .
    .
    .
    • Last run ESET.
      • Hold down Control and click on this link to open ESET OnlineScan in a new window.
      • Click the esetonlinebtn.png button.
      • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
      • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
      • Double click on the esetsmartinstaller_enu.png icon on your desktop.
      • Check "YES, I accept the Terms of Use."
      • Click the Start button.
      • Accept any security warnings from your browser.
      • Under scan settings, check "Scan Archives" and "Remove found threats"
      • Click Advanced settings and select the following:
      • Scan potentially unwanted applications
      • Scan for potentially unsafe applications
      • Enable Anti-Stealth technology
      • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
      • When the scan completes, click List Threats
      • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
      • Click the Back button.
      • Click the Finish button.
      • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Redheadscorpio

Redheadscorpio
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:09:48 AM

Posted 14 December 2013 - 07:07 AM

Thankyou for your reply. :)  You have a long list ahead to check on!

 

 

There is also one problematic thing, what comes to these files on MY particular computer. The system and Windows for it are coded for Finland. And the language used is finnish. Apparently, I cannot switch my system language to english so that it would also affect the scan results. I hope you wont have trouble understanding the essentials from the result.

 

But her eare the resultsbas requested! Thankyou again for your attenton to the matter.

 

 

MiniToolbox

 

MiniToolBox by Farbar  Version: 13-07-2013
Ran by Omistaja (administrator) on 13-12-2013 at 18:48:46
Running from "C:\Documents and Settings\Omistaja\Työpöytä"
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP-määritykset

 

DNS-tulkintatoiminnon välimuistin tyhjentäminen onnistui.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

127.0.0.1       localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com

There are 15288 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

1394-verkkosovitin = 1394-yhteys (Connected)
ZTE Wireless Ethernet Adapter = Lähiverkkoyhteys 3 (Connected)
Realtek RTL8169/8110 Family Gigabit Ethernet NIC = Lähiverkkoyhteys (Media disconnected)
Intel® PRO/Wireless 3945ABG Network Connection = Langaton verkkoyhteys (Media disconnected)

# ----------------------------------
# Liittym„n IP-kokoonpano        
# ----------------------------------
pushd interface ip

# Kohteen "L„hiverkkoyhteys" liittym„n IP-kokoonpano

set address name="L„hiverkkoyhteys" source=dhcp
set dns name="L„hiverkkoyhteys" source=dhcp register=PRIMARY
set wins name="L„hiverkkoyhteys" source=dhcp

# Kohteen "Langaton verkkoyhteys" liittym„n IP-kokoonpano

set address name="Langaton verkkoyhteys" source=dhcp
set dns name="Langaton verkkoyhteys" source=dhcp register=PRIMARY
set wins name="Langaton verkkoyhteys" source=dhcp

# Kohteen "L„hiverkkoyhteys 3" liittym„n IP-kokoonpano

set address name="L„hiverkkoyhteys 3" source=dhcp
set dns name="L„hiverkkoyhteys 3" source=dhcp register=PRIMARY
set wins name="L„hiverkkoyhteys 3" source=dhcp

popd
# Liittym„n IP-kokoonpanon loppu

 

Windows IP-määritykset

 

        Isäntänimi  . . . . . . . . . . . : flatty

        Ensisijainen DNS-liite  . . . . . :

        Solmutyyppi . . . . . . . . . . . : Tuntematon

        IP-reititys käytössä  . . . . . . : Ei

        WINS-välityspalvelin käytössä . . : Ei

 

Ethernet-sovitin Lähiverkkoyhteys:

 

        Laitteen tila . . . . . . . . . . : Ei kytketty

        Kuvaus  . . . . . . . . . . . . . : Realtek RTL8169/8110 Family Gigabit Ethernet NIC

        Fyysinen osoite . . . . . . . . . : 00-03-0D-4F-26-D6

 

Ethernet-sovitin Langaton verkkoyhteys:

 

        Laitteen tila . . . . . . . . . . : Ei kytketty

        Kuvaus  . . . . . . . . . . . . . : Intel® PRO/Wireless 3945ABG Network Connection

        Fyysinen osoite . . . . . . . . . : 00-18-DE-11-23-5A

 

Ethernet-sovitin Lähiverkkoyhteys 3:

 

        Yhteyskohtainen DNS-liite . . . . :

        Kuvaus  . . . . . . . . . . . . . : ZTE Wireless Ethernet Adapter

        Fyysinen osoite . . . . . . . . . : 00-A0-C6-00-00-00

        DHCP käytössä . . . . . . . . . . : Kyllä

        Automaattinen määritys käytössä . : Kyllä

        IP-osoite . . . . . . . . . . . . : 192.168.0.100

        Aliverkon peite . . . . . . . . . : 255.255.255.0

        Oletusyhdyskäytävä. . . . . . . . : 192.168.0.1

        DHCP-palvelin . . . . . . . . . . : 192.168.0.1

        DNS-palvelimet  . . . . . . . . . : 192.168.0.1

        Käyttölupa myönnetty  . . . . . . : 13. joulukuuta 2013 14:33:23

        Käyttölupa vanhentuu  . . . . . . : 14. joulukuuta 2013 14:33:23

Server:  UnKnown
Address:  192.168.0.1

Name:    google.com
Addresses:  173.194.32.35, 173.194.32.36, 173.194.32.37, 173.194.32.38
   173.194.32.39, 173.194.32.40, 173.194.32.41, 173.194.32.46, 173.194.32.32
   173.194.32.33, 173.194.32.34

 

Ping-is„nt„ google.com [173.194.32.34], 32 tavun paketti:

 

Vastaus is„nn„lt„ 173.194.32.34: tavuja=32 aika=285 ms TTL=53

Vastaus is„nn„lt„ 173.194.32.34: tavuja=32 aika=224 ms TTL=53

 

Ping-tilastot 173.194.32.34:

    Paketit: L„hetetty = 2, Vastaanotettu = 2, Kadonnut = 0 (0% h„vikki),

Arvioitu kiertoaika millisekunteina:

    Pienin = 224 ms, Suurin = 285 ms, Keskiarvo = 254 ms

Server:  UnKnown
Address:  192.168.0.1

Name:    yahoo.com
Addresses:  98.139.183.24, 206.190.36.45, 98.138.253.109

 

Ping-is„nt„ yahoo.com [98.138.253.109], 32 tavun paketti:

 

Vastaus is„nn„lt„ 98.138.253.109: tavuja=32 aika=545 ms TTL=37

Vastaus is„nn„lt„ 98.138.253.109: tavuja=32 aika=475 ms TTL=37

 

Ping-tilastot 98.138.253.109:

    Paketit: L„hetetty = 2, Vastaanotettu = 2, Kadonnut = 0 (0% h„vikki),

Arvioitu kiertoaika millisekunteina:

    Pienin = 475 ms, Suurin = 545 ms, Keskiarvo = 510 ms

 

Ping-is„nt„ 127.0.0.1, 32 tavun paketti:

 

Vastaus is„nn„lt„ 127.0.0.1: tavuja=32 aika<1ms TTL=128

Vastaus is„nn„lt„ 127.0.0.1: tavuja=32 aika<1ms TTL=128

 

Ping-tilastot 127.0.0.1:

    Paketit: L„hetetty = 2, Vastaanotettu = 2, Kadonnut = 0 (0% h„vikki),

Arvioitu kiertoaika millisekunteina:

    Pienin = 0 ms, Suurin = 0 ms, Keskiarvo = 0 ms

===========================================================================
Sovitinluettelo
0x1 ........................... MS TCP Loopback interface
0x2 ...00 03 0d 4f 26 d6 ...... Realtek RTL8169/8110 Family Gigabit Ethernet NIC - Paketinajoituksen miniportti
0x3 ...00 18 de 11 23 5a ...... Intel® PRO/Wireless 3945ABG Network Connection - Paketinajoituksen miniportti
0x10005 ...00 a0 c6 00 00 00 ...... ZTE Wireless Ethernet Adapter - Paketinajoituksen miniportti
===========================================================================
===========================================================================
Active Routes:
Verkkokohde        Verkon peite          Yhdysk„yt„v„       Liittym„  Metric-arvo
          0.0.0.0          0.0.0.0      192.168.0.1   192.168.0.100   25
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1   1
      192.168.0.0    255.255.255.0    192.168.0.100   192.168.0.100   25
    192.168.0.100  255.255.255.255        127.0.0.1       127.0.0.1   25
    192.168.0.255  255.255.255.255    192.168.0.100   192.168.0.100   25
        224.0.0.0        240.0.0.0    192.168.0.100   192.168.0.100   25
  255.255.255.255  255.255.255.255    192.168.0.100               3   1
  255.255.255.255  255.255.255.255    192.168.0.100               2   1
  255.255.255.255  255.255.255.255    192.168.0.100   192.168.0.100   1
Oletus yhdysk„yt„v„:       192.168.0.1
===========================================================================
Jatkuvat reitit:
  Ei mit„„n
========================= Winsock entries =====================================

Catalog5 01 C:\WINDOWS\system32\mswsock.dll [246784] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\system32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\system32\mswsock.dll [246784] (Microsoft Corporation)
Catalog9 01 C:\WINDOWS\system32\mswsock.dll [246784] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\system32\mswsock.dll [246784] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\system32\mswsock.dll [246784] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\system32\mswsock.dll [246784] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\system32\mswsock.dll [246784] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\system32\mswsock.dll [246784] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\system32\mswsock.dll [246784] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\system32\mswsock.dll [246784] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\system32\mswsock.dll [246784] (Microsoft Corporation)
Catalog9 12 C:\WINDOWS\system32\mswsock.dll [246784] (Microsoft Corporation)
Catalog9 13 C:\WINDOWS\system32\mswsock.dll [246784] (Microsoft Corporation)
Catalog9 14 C:\WINDOWS\system32\mswsock.dll [246784] (Microsoft Corporation)
Catalog9 15 C:\WINDOWS\system32\mswsock.dll [246784] (Microsoft Corporation)
Catalog9 16 C:\WINDOWS\system32\mswsock.dll [246784] (Microsoft Corporation)
Catalog9 17 C:\WINDOWS\system32\mswsock.dll [246784] (Microsoft Corporation)
Catalog9 18 C:\WINDOWS\system32\mswsock.dll [246784] (Microsoft Corporation)
Catalog9 19 C:\WINDOWS\system32\mswsock.dll [246784] (Microsoft Corporation)
Catalog9 20 C:\WINDOWS\system32\mswsock.dll [246784] (Microsoft Corporation)
Catalog9 21 C:\WINDOWS\system32\mswsock.dll [246784] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (12/12/2013 02:25:27 PM) (Source: Application Hang) (User: )
Description: Lukkiutunut sovellus Skype.exe, versio 6.11.59.102, lukkiutumismoduuli hungapp, versio 0.0.0.0, lukkiutumisosoite 0x00000000.

Error: (12/12/2013 02:23:51 PM) (Source: Application Hang) (User: )
Description: Lukkiutunut sovellus Skype.exe, versio 6.11.59.102, lukkiutumismoduuli hungapp, versio 0.0.0.0, lukkiutumisosoite 0x00000000.

Error: (12/12/2013 02:18:13 PM) (Source: Application Hang) (User: )
Description: Lukkiutunut sovellus Skype.exe, versio 6.11.59.102, lukkiutumismoduuli hungapp, versio 0.0.0.0, lukkiutumisosoite 0x00000000.

Error: (12/08/2013 08:56:58 PM) (Source: MsiInstaller) (User: NT-HALLINTA)
Description: Product: Skype Click to Call -- Error 1609. An error occurred while applying security settings. Users is not a valid user or group. This could be a problem with the package, or a problem connecting to a domain controller on the network. Check your network connection and click Retry, or Cancel to end the install. Unable to locate the user's SID, system error 1332(NULL)(NULL)(NULL)

Error: (12/08/2013 06:00:54 PM) (Source: Application Hang) (User: )
Description: Lukkiutunut sovellus iexplore.exe, versio 8.0.6001.18702, lukkiutumismoduuli hungapp, versio 0.0.0.0, lukkiutumisosoite 0x00000000.

Error: (12/08/2013 04:46:04 PM) (Source: Application Hang) (User: )
Description: Lukkiutunut sovellus lotroclient.exe, versio 1200.54.447.4006, lukkiutumismoduuli hungapp, versio 0.0.0.0, lukkiutumisosoite 0x00000000.

Error: (12/08/2013 04:21:22 PM) (Source: Application Hang) (User: )
Description: Lukkiutunut sovellus lotroclient.exe, versio 1200.54.447.4006, lukkiutumismoduuli hungapp, versio 0.0.0.0, lukkiutumisosoite 0x00000000.

Error: (12/07/2013 01:39:51 PM) (Source: Application Hang) (User: )
Description: Lukkiutunut sovellus iexplore.exe, versio 8.0.6001.18702, lukkiutumismoduuli hungapp, versio 0.0.0.0, lukkiutumisosoite 0x00000000.

Error: (12/05/2013 08:18:29 PM) (Source: Application Hang) (User: )
Description: Lukkiutunut sovellus iexplore.exe, versio 8.0.6001.18702, lukkiutumismoduuli hungapp, versio 0.0.0.0, lukkiutumisosoite 0x00000000.

Error: (12/04/2013 06:41:45 PM) (Source: Application Hang) (User: )
Description: Lukkiutunut sovellus iexplore.exe, versio 8.0.6001.18702, lukkiutumismoduuli hungapp, versio 0.0.0.0, lukkiutumisosoite 0x00000000.

System errors:
=============
Error: (12/11/2013 09:44:50 AM) (Source: Service Control Manager) (User: )
Description: Palvelu NVIDIA Display Driver Service lopetti yllättäen toimintansa. Se on tehnyt näin jo 1 kertaa.

Error: (12/07/2013 00:41:21 PM) (Source: Service Control Manager) (User: )
Description: Palvelu NVIDIA Display Driver Service lopetti yllättäen toimintansa. Se on tehnyt näin jo 1 kertaa.

Error: (12/05/2013 08:17:57 AM) (Source: Service Control Manager) (User: )
Description: Palvelu NVIDIA Display Driver Service lopetti yllättäen toimintansa. Se on tehnyt näin jo 1 kertaa.

Error: (11/28/2013 07:10:51 AM) (Source: Service Control Manager) (User: )
Description: Palvelu NVIDIA Display Driver Service lopetti yllättäen toimintansa. Se on tehnyt näin jo 1 kertaa.

Error: (11/28/2013 07:10:50 AM) (Source: 0) (User: )
Description: 0xC0000001HarddiskVolume1

Error: (11/24/2013 11:13:04 AM) (Source: Service Control Manager) (User: )
Description: Palvelu NVIDIA Display Driver Service lopetti yllättäen toimintansa. Se on tehnyt näin jo 1 kertaa.

Error: (11/23/2013 11:38:49 AM) (Source: Service Control Manager) (User: )
Description: Palvelu NVIDIA Display Driver Service lopetti yllättäen toimintansa. Se on tehnyt näin jo 1 kertaa.

Error: (11/21/2013 10:09:10 AM) (Source: Service Control Manager) (User: )
Description: Palvelu NVIDIA Display Driver Service lopetti yllättäen toimintansa. Se on tehnyt näin jo 1 kertaa.

Error: (11/15/2013 09:17:50 PM) (Source: Service Control Manager) (User: )
Description: Palvelu AVGIDSAgent lopetettiin palvelukohtaisen virheen takia. Virhe: 3758213669 (0xE001CA25).

Error: (11/15/2013 09:17:49 PM) (Source: Service Control Manager) (User: )
Description: Palvelu AVGIDSAgent lopetettiin palvelukohtaisen virheen takia. Virhe: 3758213669 (0xE001CA25).

Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

µTorrent (Version: 3.3.2.30303)
7-Zip 9.20
Adobe Flash Player 11 ActiveX (Version: 11.9.900.170)
Adobe Reader X (10.1.8) - Suomi (Version: 10.1.8)
AVG 2014 (Version: 14.0.3658)
AVG 2014 (Version: 14.0.4259)
AVG 2014 (Version: 2014.0.4259)
Belkin F7D1101 Basic Wireless USB Adapter (Version: 1.0.0.4)
DNA Mokkula MF80 (Version: 1.0.0.1)
GameSpy Comrade (Version: 1.4.3.154)
GIMP 2.6.11 (Version: 2.6.11)
High Definition Audio - KB888111 (Version: 20040219.000000)
Hotfix-korjauspäivitys Windows Media Player 11:lle (KB939683)
Hotfix-päivitys Windows XP:lle (KB2443685) (Version: 1)
Hotfix-päivitys Windows XP:lle (KB2570791) (Version: 1)
Hotfix-päivitys Windows XP:lle (KB2633952) (Version: 1)
Hotfix-päivitys Windows XP:lle (KB2756822) (Version: 1)
Hotfix-päivitys Windows XP:lle (KB2779562) (Version: 1)
Hotfix-päivitys Windows XP:lle (KB952287) (Version: 1)
Hotfix-päivitys Windows XP:lle (KB961118) (Version: 1)
Hotfix-päivitys Windows XP:lle (KB981793) (Version: 1)
Java 7 Update 45 (Version: 7.0.450)
Java Auto Updater (Version: 2.1.9.8)
Left 4 Dead 2
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Finnish Language Pack (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2698023)
Microsoft .NET Framework 1.1 Security Update (KB2833941)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Office 2007 Help Tab (Version: 1.0.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Software Update for Web Folders  (English) 12 (Version: 12.0.6612.1000)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Windowsin Tietoturvapäivitys (KB2564958)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (Version: 9.0.21022.218)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Motorola SM56 Data Fax Modem
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
NVIDIA Drivers
Päivitys Windows Internet Explorer 8:lle (KB976662) (Version: 1)
Päivitys Windows XP:lle (KB2345886) (Version: 1)
Päivitys Windows XP:lle (KB2541763) (Version: 1)
Päivitys Windows XP:lle (KB2607712) (Version: 1)
Päivitys Windows XP:lle (KB2616676) (Version: 1)
Päivitys Windows XP:lle (KB2641690) (Version: 1)
Päivitys Windows XP:lle (KB2661254-v2) (Version: 2)
Päivitys Windows XP:lle (KB2718704) (Version: 1)
Päivitys Windows XP:lle (KB2736233) (Version: 1)
Päivitys Windows XP:lle (KB2749655) (Version: 1)
Päivitys Windows XP:lle (KB2863058) (Version: 1)
Päivitys Windows XP:lle (KB2904266) (Version: 1)
Päivitys Windows XP:lle (KB951978) (Version: 1)
Päivitys Windows XP:lle (KB955759) (Version: 1)
Päivitys Windows XP:lle (KB967715) (Version: 1)
Päivitys Windows XP:lle (KB968389) (Version: 1)
Päivitys Windows XP:lle (KB971029) (Version: 1)
Päivitys Windows XP:lle (KB971737) (Version: 1)
Päivitys Windows XP:lle (KB973687) (Version: 1)
Päivitys Windows XP:lle (KB973815) (Version: 1)
REALTEK Gigabit and Fast Ethernet NIC Driver (Version: 1.80)
Realtek High Definition Audio Driver (Version: 2.04)
Sid Meier's Civilization 4 - Beyond the Sword (Version: 3.19)
Sid Meier's Civilization 4 Complete (Version: 1.74)
SimCity 4 Deluxe
SimpleMU MUD Client (Version: 4.4)
Skype Click to Call (Version: 6.4.11328)
Skype™ 6.11 (Version: 6.11.102)
Spybot - Search & Destroy (Version: 1.6.2)
Steam (Version: 1.0.0.0)
Suojauspäivitys ohjelmistolle Windows XP (KB941569)
Suojauspäivitys Windows Internet Explorer 8:lle (KB2510531) (Version: 1)
Suojauspäivitys Windows Internet Explorer 8:lle (KB2530548) (Version: 1)
Suojauspäivitys Windows Internet Explorer 8:lle (KB2544521) (Version: 1)
Suojauspäivitys Windows Internet Explorer 8:lle (KB2559049) (Version: 1)
Suojauspäivitys Windows Internet Explorer 8:lle (KB2586448) (Version: 1)
Suojauspäivitys Windows Internet Explorer 8:lle (KB2618444) (Version: 1)
Suojauspäivitys Windows Internet Explorer 8:lle (KB2647516) (Version: 1)
Suojauspäivitys Windows Internet Explorer 8:lle (KB2675157) (Version: 1)
Suojauspäivitys Windows Internet Explorer 8:lle (KB2699988) (Version: 1)
Suojauspäivitys Windows Internet Explorer 8:lle (KB2722913) (Version: 1)
Suojauspäivitys Windows Internet Explorer 8:lle (KB2744842) (Version: 1)
Suojauspäivitys Windows Internet Explorer 8:lle (KB2761465) (Version: 1)
Suojauspäivitys Windows Internet Explorer 8:lle (KB2792100) (Version: 1)
Suojauspäivitys Windows Internet Explorer 8:lle (KB2797052) (Version: 1)
Suojauspäivitys Windows Internet Explorer 8:lle (KB2799329) (Version: 1)
Suojauspäivitys Windows Internet Explorer 8:lle (KB2809289) (Version: 1)
Suojauspäivitys Windows Internet Explorer 8:lle (KB2817183) (Version: 1)
Suojauspäivitys Windows Internet Explorer 8:lle (KB2829530) (Version: 1)
Suojauspäivitys Windows Internet Explorer 8:lle (KB2838727) (Version: 1)
Suojauspäivitys Windows Internet Explorer 8:lle (KB2846071) (Version: 1)
Suojauspäivitys Windows Internet Explorer 8:lle (KB2847204) (Version: 1)
Suojauspäivitys Windows Internet Explorer 8:lle (KB2862772) (Version: 1)
Suojauspäivitys Windows Internet Explorer 8:lle (KB2870699) (Version: 1)
Suojauspäivitys Windows Internet Explorer 8:lle (KB2879017) (Version: 1)
Suojauspäivitys Windows Internet Explorer 8:lle (KB2888505) (Version: 1)
Suojauspäivitys Windows Internet Explorer 8:lle (KB2898785) (Version: 1)
Suojauspäivitys Windows Internet Explorer 8:lle (KB971961) (Version: 1)
Suojauspäivitys Windows Internet Explorer 8:lle (KB981332) (Version: 1)
Suojauspäivitys Windows Internet Explorer 8:lle (KB982381) (Version: 1)
Suojauspäivitys Windows Media Player 11:lle (KB954154)
Suojauspäivitys Windows Media Player 9:lle (KB911565)
Suojauspäivitys Windows Media Playerille  (KB2378111)
Suojauspäivitys Windows Media Playerille  (KB2834904)
Suojauspäivitys Windows Media Playerille  (KB2834904-v2)
Suojauspäivitys Windows Media Playerille  (KB952069)
Suojauspäivitys Windows Media Playerille  (KB954155)
Suojauspäivitys Windows Media Playerille  (KB973540)
Suojauspäivitys Windows Media Playerille  (KB975558)
Suojauspäivitys Windows Media Playerille  (KB978695)
Suojauspäivitys Windows Media Playerille  (KB979402)
Suojauspäivitys Windows XP:lle (KB2079403) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2115168) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2121546) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2229593) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2296011) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2347290) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2360937) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2387149) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2393802) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2412687) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2419632) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2423089) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2440591) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2443105) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2476490) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2476687) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2478960) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2478971) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2479943) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2481109) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2483185) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2485663) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2503665) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2506212) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2506223) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2507618) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2507938) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2508272) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2508429) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2509553) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2524375) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2535512) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2536276) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2536276-v2) (Version: 2)
Suojauspäivitys Windows XP:lle (KB2544893) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2544893-v2) (Version: 2)
Suojauspäivitys Windows XP:lle (KB2555917) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2562937) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2566454) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2567053) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2567680) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2570222) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2570947) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2584146) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2585542) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2592799) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2598479) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2603381) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2618451) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2619339) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2620712) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2621440) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2624667) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2631813) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2633171) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2639417) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2641653) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2646524) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2647518) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2653956) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2655992) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2659262) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2660465) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2661637) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2676562) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2685939) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2686509) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2691442) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2695962) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2698365) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2705219) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2707511) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2709162) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2712808) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2718523) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2719985) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2723135) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2724197) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2727528) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2731847) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2753842) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2753842-v2) (Version: 2)
Suojauspäivitys Windows XP:lle (KB2757638) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2758857) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2761226) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2770660) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2778344) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2779030) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2780091) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2799494) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2802968) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2807986) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2808735) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2813170) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2813345) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2820197) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2820917) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2829361) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2834886) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2839229) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2845187) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2847311) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2849470) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2850851) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2850869) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2859537) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2862152) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2862330) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2862335) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2864063) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2868038) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2868626) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2876217) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2876315) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2876331) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2883150) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2892075) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2893294) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2893984) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2898715) (Version: 1)
Suojauspäivitys Windows XP:lle (KB2900986) (Version: 1)
Suojauspäivitys Windows XP:lle (KB923561) (Version: 1)
Suojauspäivitys Windows XP:lle (KB923789)
Suojauspäivitys Windows XP:lle (KB946648) (Version: 1)
Suojauspäivitys Windows XP:lle (KB950762) (Version: 1)
Suojauspäivitys Windows XP:lle (KB950974) (Version: 1)
Suojauspäivitys Windows XP:lle (KB951376-v2) (Version: 2)
Suojauspäivitys Windows XP:lle (KB951748) (Version: 1)
Suojauspäivitys Windows XP:lle (KB952004) (Version: 1)
Suojauspäivitys Windows XP:lle (KB952954) (Version: 1)
Suojauspäivitys Windows XP:lle (KB955069) (Version: 1)
Suojauspäivitys Windows XP:lle (KB956572) (Version: 1)
Suojauspäivitys Windows XP:lle (KB956744) (Version: 1)
Suojauspäivitys Windows XP:lle (KB956802) (Version: 1)
Suojauspäivitys Windows XP:lle (KB956803) (Version: 1)
Suojauspäivitys Windows XP:lle (KB956844) (Version: 1)
Suojauspäivitys Windows XP:lle (KB958644) (Version: 1)
Suojauspäivitys Windows XP:lle (KB958869) (Version: 1)
Suojauspäivitys Windows XP:lle (KB959426) (Version: 1)
Suojauspäivitys Windows XP:lle (KB960225) (Version: 1)
Suojauspäivitys Windows XP:lle (KB960803) (Version: 1)
Suojauspäivitys Windows XP:lle (KB960859) (Version: 1)
Suojauspäivitys Windows XP:lle (KB961501) (Version: 1)
Suojauspäivitys Windows XP:lle (KB969059) (Version: 1)
Suojauspäivitys Windows XP:lle (KB970238) (Version: 1)
Suojauspäivitys Windows XP:lle (KB970430) (Version: 1)
Suojauspäivitys Windows XP:lle (KB971468) (Version: 1)
Suojauspäivitys Windows XP:lle (KB971657) (Version: 1)
Suojauspäivitys Windows XP:lle (KB972270) (Version: 1)
Suojauspäivitys Windows XP:lle (KB973507) (Version: 1)
Suojauspäivitys Windows XP:lle (KB973869) (Version: 1)
Suojauspäivitys Windows XP:lle (KB973904) (Version: 1)
Suojauspäivitys Windows XP:lle (KB974112) (Version: 1)
Suojauspäivitys Windows XP:lle (KB974318) (Version: 1)
Suojauspäivitys Windows XP:lle (KB974392) (Version: 1)
Suojauspäivitys Windows XP:lle (KB974571) (Version: 1)
Suojauspäivitys Windows XP:lle (KB975025) (Version: 1)
Suojauspäivitys Windows XP:lle (KB975467) (Version: 1)
Suojauspäivitys Windows XP:lle (KB975560) (Version: 1)
Suojauspäivitys Windows XP:lle (KB975561) (Version: 1)
Suojauspäivitys Windows XP:lle (KB975562) (Version: 1)
Suojauspäivitys Windows XP:lle (KB975713) (Version: 1)
Suojauspäivitys Windows XP:lle (KB977816) (Version: 1)
Suojauspäivitys Windows XP:lle (KB977914) (Version: 1)
Suojauspäivitys Windows XP:lle (KB978037) (Version: 1)
Suojauspäivitys Windows XP:lle (KB978338) (Version: 1)
Suojauspäivitys Windows XP:lle (KB978542) (Version: 1)
Suojauspäivitys Windows XP:lle (KB978601) (Version: 1)
Suojauspäivitys Windows XP:lle (KB978706) (Version: 1)
Suojauspäivitys Windows XP:lle (KB979309) (Version: 1)
Suojauspäivitys Windows XP:lle (KB979482) (Version: 1)
Suojauspäivitys Windows XP:lle (KB979559) (Version: 1)
Suojauspäivitys Windows XP:lle (KB979683) (Version: 1)
Suojauspäivitys Windows XP:lle (KB979687) (Version: 1)
Suojauspäivitys Windows XP:lle (KB980195) (Version: 1)
Suojauspäivitys Windows XP:lle (KB980218) (Version: 1)
Suojauspäivitys Windows XP:lle (KB980232) (Version: 1)
Suojauspäivitys Windows XP:lle (KB980436) (Version: 1)
Suojauspäivitys Windows XP:lle (KB981322) (Version: 1)
Suojauspäivitys Windows XP:lle (KB981997) (Version: 1)
Suojauspäivitys Windows XP:lle (KB982132) (Version: 1)
Suojauspäivitys Windows XP:lle (KB982381) (Version: 1)
Suojauspäivitys Windows XP:lle (KB982665) (Version: 1)
Synaptics Pointing Device Driver (Version: 8.1.6.0)
The Lord of the Rings Online™ v03.03.00.8048 (Version: 03.03.00.8048)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Web Camera (Version: 1.0.3.5)
WebFldrs XP (Version: 9.50.7523)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Media Format 11 runtime
Windows XP Service Pack 3 (Version: 20080414.052804)
Windowsin ohjainpaketti - MobileTop (sshpmdm) Modem  (02/23/2007 2.5.0.0) (Version: 02/23/2007 2.5.0.0)
Windowsin ohjainpaketti - MobileTop (sshpusb) USB  (02/23/2007 2.5.0.0) (Version: 02/23/2007 2.5.0.0)
Visual Studio 2012 x86 Redistributables (Version: 14.0.0.1)
VLC media player 2.1.1 (Version: 2.1.1)
YTD Video Downloader 4.7.1 (Version: 4.7.1)

========================= Memory info: ===================================

Percentage of memory in use: 65%
Total physical RAM: 1022.11 MB
Available physical RAM: 348.71 MB
Total Pagefile: 2458.13 MB
Available Pagefile: 1612.48 MB
Total Virtual: 2047.88 MB
Available Virtual: 1970.61 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:111.79 GB) (Free:26.47 GB) NTFS
2 Drive d: (CIV4_COMPLETE) (CDROM) (Total:2.54 GB) (Free:0 GB) UDF
3 Drive e: (DNA Mokkula MF80) (CDROM) (Total:0.01 GB) (Free:0 GB) CDFS

========================= Users: ========================================

K„ytt„j„tilit \\FLATTY

ASPNET                   HelpAssistant            J„rjestelm„nvalvoja     
Omistaja                 SUPPORT_388945a0         Vieras                  
Komento on suoritettu.

**** End of log ****

 

TDSSKiller

 

18:59:52.0937 0x082c  TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
19:00:03.0062 0x082c  ============================================================
19:00:03.0062 0x082c  Current date / time: 2013/12/13 19:00:03.0062
19:00:03.0062 0x082c  SystemInfo:
19:00:03.0062 0x082c 
19:00:03.0062 0x082c  OS Version: 5.1.2600 ServicePack: 3.0
19:00:03.0062 0x082c  Product type: Workstation
19:00:03.0062 0x082c  ComputerName: FLATTY
19:00:03.0062 0x082c  UserName: Omistaja
19:00:03.0062 0x082c  Windows directory: C:\WINDOWS
19:00:03.0062 0x082c  System windows directory: C:\WINDOWS
19:00:03.0062 0x082c  Processor architecture: Intel x86
19:00:03.0062 0x082c  Number of processors: 2
19:00:03.0062 0x082c  Page size: 0x1000
19:00:03.0062 0x082c  Boot type: Normal boot
19:00:03.0062 0x082c  ============================================================
19:00:04.0171 0x082c  KLMD registered as C:\WINDOWS\system32\drivers\43031943.sys
19:00:04.0625 0x082c  System UUID: {0B84383F-AD75-7ED1-0D69-F51881E26F71}
19:00:05.0796 0x082c  Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
19:00:05.0890 0x082c  ============================================================
19:00:05.0890 0x082c  \Device\Harddisk0\DR0:
19:00:05.0890 0x082c  MBR partitions:
19:00:05.0890 0x082c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xDF93782
19:00:05.0890 0x082c  ============================================================
19:00:06.0015 0x082c  C: <-> \Device\Harddisk0\DR0\Partition1
19:00:06.0015 0x082c  ============================================================
19:00:06.0015 0x082c  Initialize success
19:00:06.0015 0x082c  ============================================================
19:00:44.0203 0x0f84  ============================================================
19:00:44.0203 0x0f84  Scan started
19:00:44.0203 0x0f84  Mode: Manual;
19:00:44.0203 0x0f84  ============================================================
19:00:44.0203 0x0f84  KSN ping started
19:00:48.0531 0x0f84  KSN ping finished: true
19:00:50.0203 0x0f84  ================ Scan system memory ========================
19:00:50.0203 0x0f84  System memory - ok
19:00:50.0203 0x0f84  ================ Scan services =============================
19:00:50.0421 0x0f84  Abiosdsk - ok
19:00:50.0421 0x0f84  abp480n5 - ok
19:00:50.0500 0x0f84  [ 86EBA3468D103FC807ADCF6AE577F203, 08C89FA1D2A4A398189F5BA77809E3759872143F2967644C299551B169E38853 ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:00:50.0500 0x0f84  ACPI - ok
19:00:51.0015 0x0f84  [ 9322A12C6362FD4CE1F6ADCA40EDECED, EBD8C0749EFE0E10265D7F7C012C8B1119421620C740C7C84695A78A981AFF79 ] ACPIEC          C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
19:00:51.0031 0x0f84  ACPIEC - ok
19:00:51.0187 0x0f84  [ 1BA1AB4141A92EB34DA99F1249CA2D4D, 43ADF35146E61E0DE58D2ACC2994538F6025135ECEB30073BEF05A804BB38107 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:00:51.0187 0x0f84  AdobeFlashPlayerUpdateSvc - ok
19:00:51.0203 0x0f84  adpu160m - ok
19:00:51.0234 0x0f84  [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec             C:\WINDOWS\system32\drivers\aec.sys
19:00:51.0265 0x0f84  aec - ok
19:00:51.0312 0x0f84  [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
19:00:51.0328 0x0f84  AFD - ok
19:00:51.0328 0x0f84  Aha154x - ok
19:00:51.0328 0x0f84  aic78u2 - ok
19:00:51.0328 0x0f84  aic78xx - ok
19:00:51.0390 0x0f84  [ 482B55310BE9722D99E88FFF91248523, 64A2AE2D8C9B08260671478E6028918E6D69B7701771CAA159CA847E4AF63D76 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
19:00:51.0406 0x0f84  Alerter - ok
19:00:51.0421 0x0f84  [ 00FCC4AD2249070CA8F918823C69B060, C96866962656AB45DEE7256F1A334A18DC36540D246821D51D2211BBEC21BE84 ] ALG             C:\WINDOWS\System32\alg.exe
19:00:51.0468 0x0f84  ALG - ok
19:00:51.0468 0x0f84  AliIde - ok
19:00:51.0468 0x0f84  amsint - ok
19:00:51.0468 0x0f84  AppMgmt - ok
19:00:51.0500 0x0f84  [ B5B8A80875C1DEDEDA8B02765642C32F, AD0C71D73B1B8225351FBF4FFB43001A32B4DAE69504C59970CD2428BB33D4EF ] Arp1394         C:\WINDOWS\system32\DRIVERS\arp1394.sys
19:00:51.0515 0x0f84  Arp1394 - ok
19:00:51.0515 0x0f84  asc - ok
19:00:51.0515 0x0f84  asc3350p - ok
19:00:51.0531 0x0f84  asc3550 - ok
19:00:51.0656 0x0f84  [ 0E5E4957549056E2BF2C49F4F6B601AD, F7F19FDC906B719A3516D30A9B4A2262C8CC5B36B94E3D4195C345EC4610FF2B ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
19:00:51.0671 0x0f84  aspnet_state - ok
19:00:51.0703 0x0f84  [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:00:51.0703 0x0f84  AsyncMac - ok
19:00:51.0734 0x0f84  [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
19:00:51.0734 0x0f84  atapi - ok
19:00:51.0734 0x0f84  Atdisk - ok
19:00:51.0765 0x0f84  [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:00:51.0765 0x0f84  Atmarpc - ok
19:00:51.0796 0x0f84  [ 773F6CC8BC64AA5C021D7AEEF77714D4, 52EA4C86FBCF81C82D9A970524F9742EDEC1FFE470718267D37487DBEAC51AB3 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
19:00:51.0796 0x0f84  AudioSrv - ok
19:00:51.0859 0x0f84  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
19:00:51.0875 0x0f84  audstub - ok
19:00:51.0906 0x0f84  [ 9C7C45DE9E167F6268D32D6D10133F7D, 58005B49AE6D5CABB3ECEFF0D800F53D6E81A67B5EFE25E9374EC061FEC5601F ] Avgdiskx        C:\WINDOWS\system32\DRIVERS\avgdiskx.sys
19:00:51.0921 0x0f84  Avgdiskx - ok
19:00:52.0218 0x0f84  [ F89B2DACE0FBE54CF65D12B7081C19C3, 64BBA5A29948ABFADB8865CE0D7D0259AB291B8DA04786AB351055D57B49D439 ] AVGIDSAgent     C:\Program Files\AVG\AVG2014\avgidsagent.exe
19:00:52.0421 0x0f84  AVGIDSAgent - ok
19:00:52.0468 0x0f84  [ C66B17D93F94622293608C2FB91C5806, 5BA6948A5328D73B1BAF6DACC7B2A842FD0072246DD416DE39F6993EAABC2997 ] AVGIDSDriver    C:\WINDOWS\system32\DRIVERS\avgidsdriverx.sys
19:00:52.0468 0x0f84  AVGIDSDriver - ok
19:00:52.0515 0x0f84  [ 0C70FAB4B08DC1FF6612AA3F352CFCA9, 6991B6A9E5063611C280968F758E6B0F431E19EB8539808531C6293A0F313C47 ] AVGIDSHX        C:\WINDOWS\system32\DRIVERS\avgidshx.sys
19:00:52.0515 0x0f84  AVGIDSHX - ok
19:00:52.0578 0x0f84  [ 4118A9D326A76D485713A36988102C3E, 10C494165258D091AB31533C37FA05C29013471D5B2D6BDA60F731715FA02248 ] AVGIDSShim      C:\WINDOWS\system32\DRIVERS\avgidsshimx.sys
19:00:52.0578 0x0f84  AVGIDSShim - ok
19:00:52.0609 0x0f84  [ 578ECC3D911897B2C5B760EDAF8ED6CA, 99CAACB349C8629D4BE6070BDBFB0BDB4A13ABFFF738F04D723D2AFE7EA58894 ] Avgldx86        C:\WINDOWS\system32\DRIVERS\avgldx86.sys
19:00:52.0609 0x0f84  Avgldx86 - ok
19:00:52.0671 0x0f84  [ BD1A440B9F126AFE52978A44952B0018, 83577249AACC3F0C655C27A471739113B2086BFC1FF15D0ED7E64B0215B739DB ] Avglogx         C:\WINDOWS\system32\DRIVERS\avglogx.sys
19:00:52.0671 0x0f84  Avglogx - ok
19:00:52.0703 0x0f84  [ 7DC192EC714342E7C020C7CF42E394D8, 09F4CFFD93067E62B09C550A7A0588E90CAD190E49E1B7082FC5A949AF389781 ] Avgmfx86        C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
19:00:52.0703 0x0f84  Avgmfx86 - ok
19:00:52.0718 0x0f84  [ E6322DF686CE1C59D7797FAEF0732454, 03534F19568B421F9BE9C99A7A5302D38FCABA26E95C49A492DA49E58A918B55 ] Avgrkx86        C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
19:00:52.0718 0x0f84  Avgrkx86 - ok
19:00:52.0765 0x0f84  [ E98603F9D1F412F38ADF2F76053F9E5A, 1CE4668E0202ADD8C4C3D7D883DC837F7888F5D6E3B6FEE8338E15A86FE6AC22 ] Avgtdix         C:\WINDOWS\system32\DRIVERS\avgtdix.sys
19:00:52.0781 0x0f84  Avgtdix - ok
19:00:52.0843 0x0f84  [ B747B6BB015E552F49C634BB19540F3D, 5000AD41BD101BC06D595484B6E58DEEBB962939ACF4B24DE515771D1C4AE3ED ] avgwd           C:\Program Files\AVG\AVG2014\avgwdsvc.exe
19:00:52.0859 0x0f84  avgwd - ok
19:00:52.0921 0x0f84  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
19:00:52.0937 0x0f84  Beep - ok
19:00:53.0015 0x0f84  [ 5A802B9737C80CC3A544EEED851969F4, 65C7DB900ACE1F7404A8BA76BCEB710A687C3F9AC99886BFF009720666A43BFA ] BITS            C:\WINDOWS\system32\qmgr.dll
19:00:53.0125 0x0f84  BITS - ok
19:00:53.0187 0x0f84  [ 6D18142D9A26AF958D1997C4F4845613, A15593FB9416579BE9A1B74791A36FE839790CEE1950581438B87E8E525E13A9 ] Browser         C:\WINDOWS\System32\browser.dll
19:00:53.0187 0x0f84  Browser - ok
19:00:53.0234 0x0f84  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
19:00:53.0250 0x0f84  cbidf2k - ok
19:00:53.0296 0x0f84  [ 0BE5AEF125BE881C4F854C554F2B025C, 1770DD70B3F115A0EF460907DEDC1E4B7241C08615A98F194D61A49C3E2BAA54 ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
19:00:53.0312 0x0f84  CCDECODE - ok
19:00:53.0312 0x0f84  cd20xrnt - ok
19:00:53.0328 0x0f84  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
19:00:53.0328 0x0f84  Cdaudio - ok
19:00:53.0375 0x0f84  [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
19:00:53.0375 0x0f84  Cdfs - ok
19:00:53.0390 0x0f84  [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:00:53.0406 0x0f84  Cdrom - ok
19:00:53.0406 0x0f84  Changer - ok
19:00:53.0453 0x0f84  [ 6B884A843A93B682791C8F6E4AF76DBB, FE3B861597C365D664E2FE39F997D4A43A2FD31C1F79D00C95625087D871DF5B ] CiSvc           C:\WINDOWS\system32\cisvc.exe
19:00:53.0453 0x0f84  CiSvc - ok
19:00:53.0468 0x0f84  [ 910B00ED18D03BB9A22EBCA0894F718F, EC60BD261977CB6A063546E9BA060090C2AC88FCA512C45F6BF0A384B3E55BC9 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
19:00:53.0468 0x0f84  ClipSrv - ok
19:00:53.0546 0x0f84  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:00:53.0640 0x0f84  clr_optimization_v2.0.50727_32 - ok
19:00:53.0671 0x0f84  [ 0F6C187D38D98F8DF904589A5F94D411, DB987093446216CEE913AC27503BF7E23E5A62DF169B355730285DAB64F6ED28 ] CmBatt          C:\WINDOWS\system32\DRIVERS\CmBatt.sys
19:00:53.0671 0x0f84  CmBatt - ok
19:00:53.0671 0x0f84  CmdIde - ok
19:00:53.0671 0x0f84  [ 6E4C9F21F0FAE8940661144F41B13203, 731202A0DD021FCF9287FEA631212603AAAC23F9E7F76B2882F913B18A971F1C ] Compbatt        C:\WINDOWS\system32\DRIVERS\compbatt.sys
19:00:53.0687 0x0f84  Compbatt - ok
19:00:53.0687 0x0f84  COMSysApp - ok
19:00:53.0687 0x0f84  Cpqarray - ok
19:00:53.0703 0x0f84  [ 02899AE0C5FE9D939DB291B671AF8C66, 55E0042CFE086BFF0B8E4407E1A3106893AC6148719C48AAE80629FDB895D988 ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
19:00:53.0718 0x0f84  CryptSvc - ok
19:00:53.0718 0x0f84  dac2w2k - ok
19:00:53.0718 0x0f84  dac960nt - ok
19:00:53.0796 0x0f84  [ 860042ED536D48F0640794B0EEF568D5, EE531C66FEB19A86F9314BB1D519F88B23BE73E2BDDD003A67589D2FFD85AD9D ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
19:00:53.0828 0x0f84  DcomLaunch - ok
19:00:53.0875 0x0f84  [ 59AB9871D2F6F67636E56FA0BC37FA4F, 4CFF4DD86701AF424EA061F821EDE6A72262BBBE37427C3E49AFD3BB7AB1D3E7 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
19:00:53.0890 0x0f84  Dhcp - ok
19:00:53.0890 0x0f84  [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
19:00:53.0906 0x0f84  Disk - ok
19:00:53.0906 0x0f84  dmadmin - ok
19:00:54.0015 0x0f84  [ A94BF38D74A8B8CDC4609C5B5546C9A1, B160429A079745179542A262BFC62B92958221992ED24D9C6EF67A5ABE6B680C ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
19:00:54.0046 0x0f84  dmboot - ok
19:00:54.0078 0x0f84  [ DC6E20600717B7BE7709F6BBEB5F1E35, 7DB1651664A70C5D87E8A0F30820082629AB891649E45FBA1EE1B418F1AAEDF0 ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
19:00:54.0109 0x0f84  dmio - ok
19:00:54.0156 0x0f84  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
19:00:54.0156 0x0f84  dmload - ok
19:00:54.0187 0x0f84  [ 2C468C0766D34355328D9FCB36DF68FA, DE89C027D50D768B0CE51E64A6FB2D9121D64409AB44C58626D44EE6B1CA0DC6 ] dmserver        C:\WINDOWS\System32\dmserver.dll
19:00:54.0203 0x0f84  dmserver - ok
19:00:54.0218 0x0f84  [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
19:00:54.0234 0x0f84  DMusic - ok
19:00:54.0281 0x0f84  [ 459AFF2265ED0ADB7E38E1EB1F77D2F3, 88C2E53405926674638CCDC5999A6BA369B590859F11948150A3C61F80349343 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
19:00:54.0281 0x0f84  Dnscache - ok
19:00:54.0343 0x0f84  [ B7180823B9B57DA7CCD10570057C9685, B74EAEED6A42BC9F59380406C5E7083E36C9468D83C6AFE810248D6244C0FF7E ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
19:00:54.0359 0x0f84  Dot3svc - ok
19:00:54.0359 0x0f84  dpti2o - ok
19:00:54.0390 0x0f84  [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
19:00:54.0390 0x0f84  drmkaud - ok
19:00:54.0421 0x0f84  [ 7C7A417D9F864AF961708FD9DA8445F7, CBAC80C77BDBF1429D56A90A2A88EDE368B42D73096CEF2C8FDA353D06A6D78B ] EapHost         C:\WINDOWS\System32\eapsvc.dll
19:00:54.0453 0x0f84  EapHost - ok
19:00:54.0484 0x0f84  [ 5DF0504405BA77D012DC5C2AB1878479, 01B47312BF3B89791504F63D73A0B4E9C283739FD15706EC552F1D8936A3A590 ] ERSvc           C:\WINDOWS\System32\ersvc.dll
19:00:54.0484 0x0f84  ERSvc - ok
19:00:54.0546 0x0f84  [ BE4CA1A36621248590E80713CFDF20D2, 1140DB6580FC06BC586AB96B108CF595CC16093871AB5D8E977BFCC036066446 ] Eventlog        C:\WINDOWS\system32\services.exe
19:00:54.0546 0x0f84  Eventlog - ok
19:00:54.0625 0x0f84  [ 635D2C98AAB9098C9D5C397ADA205F3A, 1C8A25B81454EA2671696ED3C6BEC13356A7A5213110A15FA07F94554E426726 ] EventSystem     C:\WINDOWS\system32\es.dll
19:00:54.0671 0x0f84  EventSystem - ok
19:00:54.0703 0x0f84  [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
19:00:54.0718 0x0f84  Fastfat - ok
19:00:54.0734 0x0f84  [ FD3F6BA52ECD1A7D80843480ED71E9DE, 67F958B1114FE7F1CE0903A5489099C64E1563821DA5E843606B31AB0AEE82B1 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
19:00:54.0750 0x0f84  FastUserSwitchingCompatibility - ok
19:00:54.0781 0x0f84  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys
19:00:54.0781 0x0f84  Fdc - ok
19:00:54.0843 0x0f84  [ FBAFBFBACC14405393EDBAA5AC3A41EB, 186D502892BEE7DDD1A0A606B23ED2651620FD118F8B0E7F6006DF9B16D3E120 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
19:00:54.0843 0x0f84  Fips - ok
19:00:54.0859 0x0f84  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
19:00:54.0875 0x0f84  Flpydisk - ok
19:00:54.0906 0x0f84  [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
19:00:54.0906 0x0f84  FltMgr - ok
19:00:54.0984 0x0f84  [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:00:55.0046 0x0f84  FontCache3.0.0.0 - ok
19:00:55.0093 0x0f84  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:00:55.0109 0x0f84  Fs_Rec - ok
19:00:55.0125 0x0f84  [ 30E0982506281508703C99115CEE520C, 3EC9D241E9CCB7DDC7D97D8042A69A0F679A04715246121AF7EE9EDECB43620C ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:00:55.0125 0x0f84  Ftdisk - ok
19:00:55.0156 0x0f84  [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:00:55.0156 0x0f84  Gpc - ok
19:00:55.0203 0x0f84  [ 2A013E7530BEAB6E569FAA83F517E836, 481390EE00AF49BB54B8C885801FCAC0F87F4EF3D935ABBBA42B7C063EFDDB8F ] HdAudAddService C:\WINDOWS\system32\drivers\HdAudio.sys
19:00:55.0265 0x0f84  HdAudAddService - ok
19:00:55.0312 0x0f84  [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
19:00:55.0343 0x0f84  HDAudBus - ok
19:00:55.0390 0x0f84  [ 7C0A3CB86419C28292B4B4933E4819D4, 56DA0946EF9047DB0A040A9649AA37BEDF175B11D3F431A5221E67519A7FE49E ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:00:55.0406 0x0f84  helpsvc - ok
19:00:55.0453 0x0f84  [ E9082B31074543E8909A92848FFBB7D4, 1AB459886551DA304E538E075C9EE33FDD6BAB19ED4FA330B8C4553F06B00F74 ] HidServ         C:\WINDOWS\System32\hidserv.dll
19:00:55.0468 0x0f84  HidServ - ok
19:00:55.0484 0x0f84  [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:00:55.0484 0x0f84  HidUsb - ok
19:00:55.0531 0x0f84  [ 0380917E42AA0811B134132F4791D6DE, DB4AEF52F9EA673609EBD1CDC2D63268220EEC378BA9B668D66EDD9392E592CC ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
19:00:55.0531 0x0f84  hkmsvc - ok
19:00:55.0531 0x0f84  hpn - ok
19:00:55.0593 0x0f84  [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
19:00:55.0593 0x0f84  HTTP - ok
19:00:55.0640 0x0f84  [ E44F329137CF7F4355851EE11045BB27, 1000035B4685BF0A4234D1818DCF664DE58D36F3331066D68507A23D663FA3AE ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
19:00:55.0640 0x0f84  HTTPFilter - ok
19:00:55.0656 0x0f84  i2omgmt - ok
19:00:55.0656 0x0f84  i2omp - ok
19:00:55.0687 0x0f84  [ 328779B03D621CD6D0C13A2DDE5477F5, 320FDBA47FAA88CEABB199176E586DECDD3B67A6D2FF82B56D6FD0E412DC9AA4 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:00:55.0687 0x0f84  i8042prt - ok
19:00:55.0781 0x0f84  [ 309C4D86D989FB1FCF64BD30DC81C51B, 90412120B005D5178E27EFD09D52005BE6CE1965E5CBB59612EAD02C5896A8A7 ] iaStor          C:\WINDOWS\system32\DRIVERS\iaStor.sys
19:00:55.0796 0x0f84  iaStor - ok
19:00:55.0906 0x0f84  [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc           c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:00:55.0953 0x0f84  idsvc - ok
19:00:56.0078 0x0f84  [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
19:00:56.0078 0x0f84  Imapi - ok
19:00:56.0125 0x0f84  [ 29B22797C568E739718CA8AC06B0B8FF, 0283C932971AFA87F8E82618B06621F102665D57CA23D6C354B9C824409D86E0 ] ImapiService    C:\WINDOWS\system32\imapi.exe
19:00:56.0140 0x0f84  ImapiService - ok
19:00:56.0140 0x0f84  ini910u - ok
19:00:56.0421 0x0f84  [ 19EEDB7E20D269D547CE74AF90FEAE2D, 25B1F50F95F332281A716C021C2EA61EFC0189957436155A81E4DE13DE1B52BB ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
19:00:56.0656 0x0f84  IntcAzAudAddService - ok
19:00:56.0671 0x0f84  IntelIde - ok
19:00:56.0718 0x0f84  [ 55196CDE4B80ED6132629AE90BE080B1, 8C39E910D3616E4CBF1A7683362A9E72AA3001ED6ED6996CF7C112E6B4B1F153 ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
19:00:56.0734 0x0f84  intelppm - ok
19:00:56.0750 0x0f84  [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
19:00:56.0765 0x0f84  Ip6Fw - ok
19:00:56.0796 0x0f84  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:00:56.0796 0x0f84  IpFilterDriver - ok
19:00:56.0812 0x0f84  [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:00:56.0812 0x0f84  IpInIp - ok
19:00:56.0859 0x0f84  [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:00:56.0875 0x0f84  IpNat - ok
19:00:56.0875 0x0f84  [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:00:56.0890 0x0f84  IPSec - ok
19:00:56.0906 0x0f84  [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
19:00:56.0921 0x0f84  IRENUM - ok
19:00:56.0937 0x0f84  [ 48C2901A6A32E30FADF1D883B2969CF1, 58993CFE11034F8C5ED539A59E98F312A6FA500EA7FC4B4F96B12ADE9AA35357 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:00:56.0953 0x0f84  isapnp - ok
19:00:57.0078 0x0f84  [ 80A79264302910C7C24BA7E44267EFEF, 6080C233478350C8E07515D20D2D60C3758C4A65432B04E8C8B816248621A3EF ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
19:00:57.0078 0x0f84  JavaQuickStarterService - ok
19:00:57.0093 0x0f84  [ 2AA4D6F99F0B25C0C25DEF5AE25B4D31, 3CA6083CD3594DFC9FA6C0A8EC7111C334C96DBF610B5A748EA6B01CF8E3675B ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:00:57.0093 0x0f84  Kbdclass - ok
19:00:57.0109 0x0f84  [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
19:00:57.0125 0x0f84  kmixer - ok
19:00:57.0140 0x0f84  [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
19:00:57.0140 0x0f84  KSecDD - ok
19:00:57.0187 0x0f84  [ A1A4BD03865ED82E9036367E5A605334, C542956A410A597F47C1A2BCF0C37145C613EA64157FFA03EF6A54673D684C41 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
19:00:57.0187 0x0f84  lanmanserver - ok
19:00:57.0218 0x0f84  [ 0EA848865CCF1B00F220A3E305DE4DFB, 8F3813E33787C2481B613425EAC35F03B2A7C433A8C3DF018E5F444E557BF930 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
19:00:57.0265 0x0f84  lanmanworkstation - ok
19:00:57.0281 0x0f84  lbrtfdc - ok
19:00:57.0328 0x0f84  [ 30F8E9571C5602528716C141CDFDCE10, 83C042DDC1984DBAA76F9235FD77B687A2E752D7D5D0C0AFBFE3F3B0A0D99050 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
19:00:57.0328 0x0f84  LmHosts - ok
19:00:57.0390 0x0f84  [ B4B8B993A83084CE25DC776965903CE7, 42AB2F1A278FCE467C148450D66D98585A8B41A9760A39DD310D4DEFD6D02776 ] massfilter      C:\WINDOWS\system32\drivers\massfilter.sys
19:00:57.0453 0x0f84  massfilter - ok
19:00:57.0468 0x0f84  [ E6B9BE2694EE2FE774EA9D69DFFFEB87, DC6014F65765F7C476B42ACA8193A458F23467B622B25E48DC413F8857728A01 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
19:00:57.0484 0x0f84  Messenger - ok
19:00:57.0515 0x0f84  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
19:00:57.0531 0x0f84  mnmdd - ok
19:00:57.0562 0x0f84  [ 6D319EA748E13E11CC20CB7B88ADEFC0, 4AF0C52453E0DF8D0D65ACAB96CE6A2E802CE862BCF5CB3D2078EC203E55C8AA ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
19:00:57.0562 0x0f84  mnmsrvc - ok
19:00:57.0609 0x0f84  [ 35837340D4C14A27988195DD67398C85, 599DBBF055DD5806F1E8792CDCBE835754FE436D5CE8CA3708E6D57F2515637E ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
19:00:57.0609 0x0f84  Modem - ok
19:00:57.0625 0x0f84  [ E9FC0706D6973C9777BDEE2147EF87E8, 6702EC8F510E5E230BB45B9BB5E7EB5F35FF482FA91E582B74B319FAD40F9EC8 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:00:57.0625 0x0f84  Mouclass - ok
19:00:57.0671 0x0f84  [ CECBFA0343E2A9C7CFEF3B999E7BA52C, AEBD371ADBF397753D7A94FBCDA5FBBD9EAE06C9C02392DA37C1152FD6B35D48 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:00:57.0671 0x0f84  mouhid - ok
19:00:57.0703 0x0f84  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
19:00:57.0703 0x0f84  MountMgr - ok
19:00:57.0703 0x0f84  mraid35x - ok
19:00:57.0718 0x0f84  [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:00:57.0718 0x0f84  MRxDAV - ok
19:00:57.0812 0x0f84  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:00:57.0843 0x0f84  MRxSmb - ok
19:00:57.0843 0x0f84  [ 87FBA35709BF9C33B5AEB6224D67AD75, 85B13C65930F7539145DA18897D7858CA41FA360EE0E96811C85563B084B58E1 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
19:00:57.0843 0x0f84  MSDTC - ok
19:00:57.0843 0x0f84  [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
19:00:57.0859 0x0f84  Msfs - ok
19:00:57.0859 0x0f84  MSIServer - ok
19:00:57.0875 0x0f84  [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:00:57.0875 0x0f84  MSKSSRV - ok
19:00:57.0906 0x0f84  [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:00:57.0906 0x0f84  MSPCLOCK - ok
19:00:57.0906 0x0f84  [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
19:00:57.0921 0x0f84  MSPQM - ok
19:00:57.0937 0x0f84  [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:00:57.0953 0x0f84  mssmbios - ok
19:00:57.0984 0x0f84  [ E53736A9E30C45FA9E7B5EAC55056D1D, 38602F280BF69EBA3706AD175AFC1AEB561A8302B4B61E3FECB3C27D7A9BDB41 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
19:00:58.0031 0x0f84  MSTEE - ok
19:00:58.0078 0x0f84  [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
19:00:58.0078 0x0f84  Mup - ok
19:00:58.0109 0x0f84  [ 5B50F1B2A2ED47D560577B221DA734DB, C16A554B6E1A7F5F98C94DFA88163E0F7426506BF2F51FD351B1A05FC0DB3BC5 ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
19:00:58.0109 0x0f84  NABTSFEC - ok
19:00:58.0156 0x0f84  [ 340F6B532D3A568425B220EED7A7B2C2, 45391EEE9334D1D8AF8E81848A3F219EB10F8B36B3F0F321EF55A658CFA66750 ] napagent        C:\WINDOWS\System32\qagentrt.dll
19:00:58.0171 0x0f84  napagent - ok
19:00:58.0218 0x0f84  [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
19:00:58.0218 0x0f84  NDIS - ok
19:00:58.0265 0x0f84  [ 7FF1F1FD8609C149AA432F95A8163D97, 18CD1FF5AC1EF8A38D1EC53014F2BADD28D9CDF4ECE2EBC2313D08903776F323 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
19:00:58.0265 0x0f84  NdisIP - ok
19:00:58.0296 0x0f84  [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:00:58.0296 0x0f84  NdisTapi - ok
19:00:58.0312 0x0f84  [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:00:58.0312 0x0f84  Ndisuio - ok
19:00:58.0343 0x0f84  [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:00:58.0343 0x0f84  NdisWan - ok
19:00:58.0375 0x0f84  [ 9282BD12DFB069D3889EB3FCC1000A9B, 09A46F1712BD9165068D8E153585FE3E6E5CBF4F1DDEC142115555D3A91AEC09 ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
19:00:58.0375 0x0f84  NDProxy - ok
19:00:58.0390 0x0f84  [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
19:00:58.0406 0x0f84  NetBIOS - ok
19:00:58.0421 0x0f84  [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
19:00:58.0437 0x0f84  NetBT - ok
19:00:58.0484 0x0f84  [ 83B1952CFC6FF9E1DE240CEC98BDA202, FCFFBA788BC6BE025A75BDCA3316A00C8DCC700C2FB9899A20FB11403FC925ED ] NetDDE          C:\WINDOWS\system32\netdde.exe
19:00:58.0500 0x0f84  NetDDE - ok
19:00:58.0500 0x0f84  [ 83B1952CFC6FF9E1DE240CEC98BDA202, FCFFBA788BC6BE025A75BDCA3316A00C8DCC700C2FB9899A20FB11403FC925ED ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
19:00:58.0500 0x0f84  NetDDEdsdm - ok
19:00:58.0531 0x0f84  [ ABE0D5760DAFD55390057378CDA68BD8, 0ADF1D379195E776F6DF0E8CDB63C033B3D9D8CCA3EDBFF5E1CC19585ECE044B ] Netlogon        C:\WINDOWS\system32\lsass.exe
19:00:58.0531 0x0f84  Netlogon - ok
19:00:58.0562 0x0f84  [ CD568584301C26EEC77B53E470AAA31F, DC8A36FB4CDEC18D17B7159C83872363F93468EEB371DC2BF3D7AEC2910D3054 ] Netman          C:\WINDOWS\System32\netman.dll
19:00:58.0562 0x0f84  Netman - ok
19:00:58.0625 0x0f84  [ D34612C5D02D026535B3095D620626AE, 1BBCCCBF49EB8807240A77DCB43C25C21682073CC5356594E2C4F53EF36BF657 ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:00:58.0625 0x0f84  NetTcpPortSharing - ok
19:00:58.0765 0x0f84  [ E2F396F71A793A04839DBB6AF304A026, EF7203E0E48AE6FB3084BC8A4D8A452C8F4F76C34628DB7BD81E5A1AA62C8095 ] NETw3x32        C:\WINDOWS\system32\DRIVERS\NETw3x32.sys
19:00:58.0906 0x0f84  NETw3x32 - ok
19:00:58.0937 0x0f84  [ E9E47CFB2D461FA0FC75B7A74C6383EA, 544136F5BFD4DC23D45E90F12FA48B82FD9EAEA9EAF3E0F5F0BD27E23D672C3E ] NIC1394         C:\WINDOWS\system32\DRIVERS\nic1394.sys
19:00:58.0937 0x0f84  NIC1394 - ok
19:00:58.0968 0x0f84  [ FD2B109712BEC34E7563F76D089DC83E, 7C909BE43818742F85A6A1930CC50CF01CB74C849DABA67B56360D5ACA2ECE10 ] Nla             C:\WINDOWS\System32\mswsock.dll
19:00:58.0984 0x0f84  Nla - ok
19:00:59.0046 0x0f84  [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
19:00:59.0046 0x0f84  Npfs - ok
19:00:59.0125 0x0f84  [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
19:00:59.0171 0x0f84  Ntfs - ok
19:00:59.0218 0x0f84  [ ABE0D5760DAFD55390057378CDA68BD8, 0ADF1D379195E776F6DF0E8CDB63C033B3D9D8CCA3EDBFF5E1CC19585ECE044B ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
19:00:59.0218 0x0f84  NtLmSsp - ok
19:00:59.0281 0x0f84  [ 819C0AFADB72ED9E1FAA5F2CB51587C8, 4B051F11B57AB9B06EBCE7D3993E6A0AA988F785B5BEE4EEFE6D7F4EF46EA346 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
19:00:59.0328 0x0f84  NtmsSvc - ok
19:00:59.0390 0x0f84  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys
19:00:59.0406 0x0f84  Null - ok
19:00:59.0656 0x0f84  [ 0BBD8AD87DDFF5E374CA61B611072879, D6CC7826EAAAAA3EBD38A73288BA879EC2FBF063D32FD5E18A9192677EF39654 ] nv              C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
19:00:59.0921 0x0f84  nv - ok
19:00:59.0984 0x0f84  [ 7E59A21501366DF3E3677233219E712E, B5394B4888C00F928BD4E903197D7DFA3251080869C5C17DC627B09681D51044 ] NVSvc           C:\WINDOWS\system32\nvsvc32.exe
19:00:59.0984 0x0f84  NVSvc - ok
19:01:00.0031 0x0f84  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:01:00.0031 0x0f84  NwlnkFlt - ok
19:01:00.0031 0x0f84  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:01:00.0031 0x0f84  NwlnkFwd - ok
19:01:00.0421 0x0f84  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:01:00.0484 0x0f84  odserv - ok
19:01:00.0531 0x0f84  [ CA33832DF41AFB202EE7AEB05145922F, 9DD0089C2E13C7F81214C3B5A4A61276292052F9BBFEA7FCD0F6AA27815D5F95 ] ohci1394        C:\WINDOWS\system32\DRIVERS\ohci1394.sys
19:01:00.0531 0x0f84  ohci1394 - ok
19:01:00.0593 0x0f84  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:01:00.0609 0x0f84  ose - ok
19:01:00.0625 0x0f84  [ A28A0C29A02A5FA2F75FA229E70E64B7, 6AC036076E1EA83CA8ADD89155B6CB48BE86BC896A78C6D317719AD93DA77F8C ] Parport         C:\WINDOWS\system32\drivers\Parport.sys
19:01:00.0640 0x0f84  Parport - ok
19:01:00.0640 0x0f84  [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
19:01:00.0640 0x0f84  PartMgr - ok
19:01:00.0687 0x0f84  [ 4EADD72430FFFE9046353E9B5C733871, C86FF4263486131DFC8DE2F45C29CAAAA2E446D29F6FA589D71E7376AE74A975 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
19:01:00.0687 0x0f84  ParVdm - ok
19:01:00.0703 0x0f84  [ FEB531DC1D3C5D1FE9CA7D144FC8CC22, 4349F02CBE82367C0AC8A0F5F9C1E7004398BEE15466903AEA459C3285636A2F ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
19:01:00.0703 0x0f84  PCI - ok
19:01:00.0703 0x0f84  PCIDump - ok
19:01:00.0718 0x0f84  [ 468ECF7914201569C34D64BD54BF3EB1, 36016921AED228A24BA351EA5647D400A70E75EB41FF313BAD72BEE25CF55769 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
19:01:00.0718 0x0f84  PCIIde - ok
19:01:00.0750 0x0f84  [ 6C0558AE897715DD67A2CBCA290306C3, 2D8077CFAFCB42A6A03DD6284644D048CB4520F9BDE8ABBD5D50223EB0D92931 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
19:01:00.0750 0x0f84  Pcmcia - ok
19:01:00.0750 0x0f84  PDCOMP - ok
19:01:00.0765 0x0f84  PDFRAME - ok
19:01:00.0765 0x0f84  PDRELI - ok
19:01:00.0765 0x0f84  PDRFRAME - ok
19:01:00.0765 0x0f84  perc2 - ok
19:01:00.0765 0x0f84  perc2hib - ok
19:01:00.0812 0x0f84  [ BE4CA1A36621248590E80713CFDF20D2, 1140DB6580FC06BC586AB96B108CF595CC16093871AB5D8E977BFCC036066446 ] PlugPlay        C:\WINDOWS\system32\services.exe
19:01:00.0812 0x0f84  PlugPlay - ok
19:01:00.0828 0x0f84  [ ABE0D5760DAFD55390057378CDA68BD8, 0ADF1D379195E776F6DF0E8CDB63C033B3D9D8CCA3EDBFF5E1CC19585ECE044B ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
19:01:00.0828 0x0f84  PolicyAgent - ok
19:01:00.0843 0x0f84  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:01:00.0859 0x0f84  PptpMiniport - ok
19:01:00.0859 0x0f84  [ ABE0D5760DAFD55390057378CDA68BD8, 0ADF1D379195E776F6DF0E8CDB63C033B3D9D8CCA3EDBFF5E1CC19585ECE044B ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
19:01:00.0859 0x0f84  ProtectedStorage - ok
19:01:00.0859 0x0f84  [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
19:01:00.0859 0x0f84  PSched - ok
19:01:00.0875 0x0f84  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:01:00.0875 0x0f84  Ptilink - ok
19:01:00.0875 0x0f84  ql1080 - ok
19:01:00.0875 0x0f84  Ql10wnt - ok
19:01:00.0875 0x0f84  ql12160 - ok
19:01:00.0890 0x0f84  ql1240 - ok
19:01:00.0890 0x0f84  ql1280 - ok
19:01:00.0937 0x0f84  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:01:00.0937 0x0f84  RasAcd - ok
19:01:00.0953 0x0f84  [ 9EB4B456C1EDF0B1EA84998999CECDE6, E3CAF132C5AB434778345CC16BBFB3E5283C5AAD9222EACFCD44FA2D53AB500F ] RasAuto         C:\WINDOWS\System32\rasauto.dll
19:01:00.0968 0x0f84  RasAuto - ok
19:01:01.0000 0x0f84  [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:01:01.0000 0x0f84  Rasl2tp - ok
19:01:01.0062 0x0f84  [ 50655E109A8AE4BAC8AEBB0E4C9CA66F, 88392D11ACDF7F226C110F99E4C3957A8C28F20BBBF4B4B499235621A139AC1B ] RasMan          C:\WINDOWS\System32\rasmans.dll
19:01:01.0062 0x0f84  RasMan - ok
19:01:01.0062 0x0f84  [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:01:01.0078 0x0f84  RasPppoe - ok
19:01:01.0078 0x0f84  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
19:01:01.0078 0x0f84  Raspti - ok
19:01:01.0093 0x0f84  [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:01:01.0109 0x0f84  Rdbss - ok
19:01:01.0125 0x0f84  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:01:01.0156 0x0f84  RDPCDD - ok
19:01:01.0171 0x0f84  [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
19:01:01.0203 0x0f84  RDPWD - ok
19:01:01.0250 0x0f84  [ 37E0EF5C71628F1464F18E37860CE50B, C18B6606E37FCB1BE3265D922D1E48AF5B01EA116FD3CB877F02DD7865C0E6FE ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
19:01:01.0250 0x0f84  RDSessMgr - ok
19:01:01.0265 0x0f84  [ 91B5EC87D728940FF72FCD21E582CEE9, F675514F8211012484E26E1FE972CFC0337FE3CCB80CB8CA9F4B0466A28EE5D8 ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
19:01:01.0265 0x0f84  redbook - ok
19:01:01.0281 0x0f84  [ A9B762D59EA292A2F253C00703071D2C, FC13BB82AFE3EC5227F283D651C298D75E8A3224E96CE0371FAF5E7D5D90DE82 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
19:01:01.0281 0x0f84  RemoteAccess - ok
19:01:01.0312 0x0f84  [ 8388D1EB0FAE7117496C5FFA4B02EAA0, A5F23A8172272B0892B6B458F2C5150CC0B95F11C9576096263BFE16254E2215 ] RpcLocator      C:\WINDOWS\system32\locator.exe
19:01:01.0312 0x0f84  RpcLocator - ok
19:01:01.0359 0x0f84  [ 860042ED536D48F0640794B0EEF568D5, EE531C66FEB19A86F9314BB1D519F88B23BE73E2BDDD003A67589D2FFD85AD9D ] RpcSs           C:\WINDOWS\system32\rpcss.dll
19:01:01.0375 0x0f84  RpcSs - ok
19:01:01.0437 0x0f84  [ DC3C8532614B66CDA851C70A6AF49A5D, D58431CC1BF4E6E4985A5D0596DCB31DD4FC47FE1C872E2CD6984037C394BC7B ] RSVP            C:\WINDOWS\system32\rsvp.exe
19:01:01.0453 0x0f84  RSVP - ok
19:01:01.0500 0x0f84  [ 7889E3981E0A5D347E037ABD467D53A5, 480F582A33CEAD2CFF4ADC6F9EA122C44D47499A4A352EF5B8461B9973E13966 ] RTL8023xp       C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys
19:01:01.0578 0x0f84  RTL8023xp - ok
19:01:01.0656 0x0f84  [ B29EEB1EA7971BD83069EB2E2258D224, A3DF2E4BA03BAB85EE7CBD6C3224999167DC8618328443855A4C280FBB889E1A ] RTL8192su       C:\WINDOWS\system32\DRIVERS\RTL8192su.sys
19:01:01.0734 0x0f84  RTL8192su - ok
19:01:01.0750 0x0f84  [ ABE0D5760DAFD55390057378CDA68BD8, 0ADF1D379195E776F6DF0E8CDB63C033B3D9D8CCA3EDBFF5E1CC19585ECE044B ] SamSs           C:\WINDOWS\system32\lsass.exe
19:01:01.0750 0x0f84  SamSs - ok
19:01:01.0812 0x0f84  [ 1267FEB62402DC6FA632F8A763577231, 0C1963B6CC5AFC0C43F75B4F3A80546763AAB9E8B2EBFE8A2D374B03B729C1DF ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
19:01:01.0812 0x0f84  SCardSvr - ok
19:01:01.0875 0x0f84  [ BEC4F0AFAE2DC730A546D80F99C10A1E, E8339B46B56FC65C9E6ABDE02FB9DBC6D80FCB74D838494D80CBDB9D2F5A48D0 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
19:01:01.0875 0x0f84  Schedule - ok
19:01:01.0921 0x0f84  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:01:01.0953 0x0f84  Secdrv - ok
19:01:01.0984 0x0f84  [ BCAE3F72DFC15FDCF3CDCEB4F086BCBE, 7A905D13769DFE099F811C188CFC48A68BFE402602CB16F0B112A724D18E0399 ] seclogon        C:\WINDOWS\System32\seclogon.dll
19:01:01.0984 0x0f84  seclogon - ok
19:01:02.0000 0x0f84  [ A08A405C848CF50E55FF81207D490FE1, 0A30385B312E6F8B4E3CACD91E03CD1D5716D1B1E94CFD0BDB3A3D0AEC67A44C ] SENS            C:\WINDOWS\system32\sens.dll
19:01:02.0000 0x0f84  SENS - ok
19:01:02.0015 0x0f84  [ E6C01D131904FE42580C4F9D19C7D292, 06966F2E38CF8016E0D99BBFAE36C2020C689500812AACD03536747710F9A117 ] Serial          C:\WINDOWS\system32\drivers\Serial.sys
19:01:02.0015 0x0f84  Serial - ok
19:01:02.0031 0x0f84  [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
19:01:02.0031 0x0f84  Sfloppy - ok
19:01:02.0109 0x0f84  [ 226F14B9F0D18169CAE21625CB327DCF, 676DB893F7FDF3D05585DE4405A51D307FDE247FEE1695B92E118BFFDC9A1B09 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
19:01:02.0125 0x0f84  SharedAccess - ok
19:01:02.0156 0x0f84  [ FD3F6BA52ECD1A7D80843480ED71E9DE, 67F958B1114FE7F1CE0903A5489099C64E1563821DA5E843606B31AB0AEE82B1 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
19:01:02.0156 0x0f84  ShellHWDetection - ok
19:01:02.0156 0x0f84  Simbad - ok
19:01:02.0453 0x0f84  [ 388AE59FE75F1B959DFA0900923C61BB, 0D47F8B4B4FBE5BF041DBE75B0A14D905E9310FFA6F0160746455B38A349EA54 ] Skype C2C Service C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe
19:01:02.0671 0x0f84  Skype C2C Service - ok
19:01:02.0750 0x0f84  [ F5BBEDF602C310B00036EB2DBF4348A5, AC2712E639F0C54BCF00EB4E90E805335871EA27AE8A45DFC53EDF28822318C4 ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
19:01:02.0750 0x0f84  SkypeUpdate - ok
19:01:02.0796 0x0f84  [ 866D538EBE33709A5C9F5C62B73B7D14, BC94BEB7C17B4FCAC8B5D0D5006A203BC209E0504EECE149651D8691935696CD ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
19:01:02.0796 0x0f84  SLIP - ok
19:01:02.0937 0x0f84  [ 6D841806E2A4FEFF0E0F65989025B964, ED9880FA1C8B248A5CE24482A46B97C13EBF9C21CD1BA02C19EDB9718F944460 ] smserial        C:\WINDOWS\system32\DRIVERS\smserial.sys
19:01:03.0109 0x0f84  smserial - ok
19:01:03.0109 0x0f84  Sparrow - ok
19:01:03.0171 0x0f84  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
19:01:03.0171 0x0f84  splitter - ok
19:01:03.0234 0x0f84  [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
19:01:03.0250 0x0f84  Spooler - ok
19:01:03.0281 0x0f84  [ FED2CBA52DEA63891C1E22EC3C72ED47, 9522CF7D4FADBE1FF76CBEA29D534F4360D20AE19233A512485B19735A2361A0 ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
19:01:03.0296 0x0f84  sr - ok
19:01:03.0406 0x0f84  [ E2D71738C3606DA3261E5B84B1F9DB5B, 086DBAE73EFBD8CA0974A348D1857E8026A4E80E8EB4A67B6F31715470BCD0E4 ] srservice       C:\WINDOWS\system32\srsvc.dll
19:01:03.0437 0x0f84  srservice - ok
19:01:03.0500 0x0f84  [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
19:01:03.0578 0x0f84  Srv - ok
19:01:03.0609 0x0f84  [ 88A28145007E2F9B1007E6B53BD96257, 2822DC796D11EE6AE9DD0E8C7CAC2C546F2FD9D53B0C7FF40A54E58817AB880D ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
19:01:03.0640 0x0f84  SSDPSRV - ok
19:01:03.0656 0x0f84  [ 306521935042FC0A6988D528643619B3, 6FCC06EA71F5C83A8C3A8B7152E9FF48BCFBD35ED8C134A0879735F9135BB20C ] StarOpen        C:\WINDOWS\system32\drivers\StarOpen.sys
19:01:03.0687 0x0f84  StarOpen - ok
19:01:03.0718 0x0f84  Steam Client Service - ok
19:01:03.0796 0x0f84  [ 5690A37E8F56DE9CF37D05DC8B198E94, 907FB44D555D8480FD978C07364D4005939C8653723CDA4A104156A9954E7B66 ] StillCam        C:\WINDOWS\system32\DRIVERS\serscan.sys
19:01:03.0812 0x0f84  StillCam - ok
19:01:03.0906 0x0f84  [ CC40321DA6C58C0B6F954E18667898C4, 7DA7C0E116832B9C1A40EB7A253C96F8103CB4DAB862A6D3F076296ABEDF7889 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
19:01:03.0937 0x0f84  stisvc - ok
19:01:04.0062 0x0f84  [ 77813007BA6265C4B6098187E6ED79D2, 93939120E803C46FBFD577C8FC2E6C7E71C0460E01D25CB29579490640AB50C7 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
19:01:04.0093 0x0f84  streamip - ok
19:01:04.0140 0x0f84  [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
19:01:04.0156 0x0f84  swenum - ok
19:01:04.0187 0x0f84  [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
19:01:04.0218 0x0f84  swmidi - ok
19:01:04.0218 0x0f84  SwPrv - ok
19:01:04.0218 0x0f84  symc810 - ok
19:01:04.0218 0x0f84  symc8xx - ok
19:01:04.0234 0x0f84  sym_hi - ok
19:01:04.0234 0x0f84  sym_u3 - ok
19:01:04.0328 0x0f84  [ 9D7385AD343EEED23A61D4AC5AE44601, 43C6732E17145F9B5BB2DCBB22E782C13429CB6AC3DB0DC98DBD2E89B2287F41 ] SynTP           C:\WINDOWS\system32\DRIVERS\SynTP.sys
19:01:04.0453 0x0f84  SynTP - ok
19:01:04.0468 0x0f84  [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
19:01:04.0484 0x0f84  sysaudio - ok
19:01:04.0546 0x0f84  [ 81E05F101E639B7B7772B054E8D5246C, 535866813435BB1892E1DBBF044BB1F3BA9E6B6AE4E6BF6F552527B722705DB3 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
19:01:04.0562 0x0f84  SysmonLog - ok
19:01:04.0640 0x0f84  [ F057021B63B285A4F355F7AB7CF3B320, D3BF478E97B8FABCD88B833B66F7E834A05F86E27507A3490FFA2291CE18FBE3 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
19:01:04.0671 0x0f84  TapiSrv - ok
19:01:04.0750 0x0f84  [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:01:04.0796 0x0f84  Tcpip - ok
19:01:04.0828 0x0f84  [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
19:01:04.0859 0x0f84  TDPIPE - ok
19:01:04.0875 0x0f84  [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
19:01:04.0890 0x0f84  TDTCP - ok
19:01:04.0921 0x0f84  [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
19:01:04.0937 0x0f84  TermDD - ok
19:01:05.0078 0x0f84  [ D51D0F4E08F5ADB6FAD186DF01508787, C7E6F7874109FBD2B0D7FF4AD2940CE4824BC0E695F12D82CD53A9E9DBC996A8 ] TermService     C:\WINDOWS\System32\termsrv.dll
19:01:05.0125 0x0f84  TermService - ok
19:01:05.0156 0x0f84  [ FD3F6BA52ECD1A7D80843480ED71E9DE, 67F958B1114FE7F1CE0903A5489099C64E1563821DA5E843606B31AB0AEE82B1 ] Themes          C:\WINDOWS\System32\shsvcs.dll
19:01:05.0171 0x0f84  Themes - ok
19:01:05.0171 0x0f84  TosIde - ok
19:01:05.0234 0x0f84  [ FCF15897DD9F34E96587FA7EDFB73C21, 545CE81A98C0D98510771557E58E8933A609AF4F08C739CD2A480A27F4901B7F ] TrkWks          C:\WINDOWS\system32\trkwks.dll
19:01:05.0250 0x0f84  TrkWks - ok
19:01:05.0281 0x0f84  [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
19:01:05.0296 0x0f84  Udfs - ok
19:01:05.0296 0x0f84  ultra - ok
19:01:05.0359 0x0f84  [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
19:01:05.0390 0x0f84  Update - ok
19:01:05.0437 0x0f84  [ 5762364D2EB3AF51127F8D5D45A531BA, 0230E38F82F9CB91EB57F1740FBB2A55F32C24513025AF1157838AA77D688F82 ] upnphost        C:\WINDOWS\System32\upnphost.dll
19:01:05.0437 0x0f84  upnphost - ok
19:01:05.0468 0x0f84  [ B207D7EA32DF646566D7A1B31C1F9A2E, ABE89D34E24EB374477C9C6BA3C870BFEA9B315A7FAA5D0B28DFB5F05614761D ] UPS             C:\WINDOWS\System32\ups.exe
19:01:05.0468 0x0f84  UPS - ok
19:01:05.0500 0x0f84  [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:01:05.0531 0x0f84  usbccgp - ok
19:01:05.0546 0x0f84  [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:01:05.0562 0x0f84  usbehci - ok
19:01:05.0843 0x0f84  [ 077EB598570BCB72ED28A5D30D50785F, 71195AF641A3BD7967B70EF2A4EE477DE0D4B01DCE86AB9E4999967AEF784191 ] USBET           C:\WINDOWS\system32\DRIVERS\ETdrv.sys
19:01:06.0187 0x0f84  USBET - ok
19:01:06.0250 0x0f84  [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:01:06.0250 0x0f84  usbhub - ok
19:01:06.0296 0x0f84  [ F8EDE2B6928970DCE3D5614C27D9E7F6, 6E5EBBC8B70C1D593634DAF0C190DEADFDA18C3CBC8F552A76F156F3869EF05B ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
19:01:06.0296 0x0f84  usbscan - ok
19:01:06.0343 0x0f84  [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:01:06.0359 0x0f84  USBSTOR - ok
19:01:06.0390 0x0f84  [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:01:06.0390 0x0f84  usbuhci - ok
19:01:06.0453 0x0f84  [ 813236B1183CFCF289E367BD5DE6E29E, 167FE18A96F330AEEC1A4C419770C15EFEB536D43838285E51E7A62E95DF4674 ] usbvideo        C:\WINDOWS\system32\Drivers\usbvideo.sys
19:01:06.0453 0x0f84  usbvideo - ok
19:01:06.0453 0x0f84  [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
19:01:06.0453 0x0f84  VgaSave - ok
19:01:06.0453 0x0f84  ViaIde - ok
19:01:06.0484 0x0f84  [ AE449A0F2FDE17A61390049D30849C8D, 92851BCE3BD74AC7A99525B2A2A283E14066ACBCF95186809C96F6B61EEB4540 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
19:01:06.0484 0x0f84  VolSnap - ok
19:01:06.0546 0x0f84  [ 1508CAD64908B592BF7C9D3D1979ADA6, 8655E061909D795283D28D04E52D48E43CC701785E3B6D3CA62B363C67D88350 ] VSS             C:\WINDOWS\System32\vssvc.exe
19:01:06.0578 0x0f84  VSS - ok
19:01:06.0609 0x0f84  [ 2326B61BB05E774E47F1B519F424B36E, FB18FB7485932F0C1A38484AA24B184D1AE68623CB0701346356295413856389 ] W32Time         C:\WINDOWS\system32\w32time.dll
19:01:06.0609 0x0f84  W32Time - ok
19:01:06.0625 0x0f84  [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:01:06.0625 0x0f84  Wanarp - ok
19:01:06.0640 0x0f84  WDICA - ok
19:01:06.0656 0x0f84  [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
19:01:06.0656 0x0f84  wdmaud - ok
19:01:06.0687 0x0f84  [ D654AD0F4E7C35AA765C7E833FE30425, FB95FE8648C64479888D8834295B346AB45E7E59865D5387CF872702425B4194 ] WebClient       C:\WINDOWS\System32\webclnt.dll
19:01:06.0687 0x0f84  WebClient - ok
19:01:06.0796 0x0f84  [ EF1345485991293BAF7E3901386C1BA0, 9AB78886878BFE7806A4F7D833F616F62EC2D373A674F75DA195288575B00CD1 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
19:01:06.0796 0x0f84  winmgmt - ok
19:01:06.0843 0x0f84  [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
19:01:06.0843 0x0f84  WmdmPmSN - ok
19:01:06.0890 0x0f84  [ C42584FD66CE9E17403AEBCA199F7BDB, E3F2E1066F36AE5D33D4482239B2E556BE0C137923C9A120DFB36EC82F2E77B0 ] WmiAcpi         C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
19:01:06.0890 0x0f84  WmiAcpi - ok
19:01:06.0906 0x0f84  [ EC4DF0E3B3FC1BAAE6712B9616B8C54E, 76B173A48B81992A2EAE1AE3D9B229A3C674B668D18E54B42850DE9308A10E90 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
19:01:06.0921 0x0f84  WmiApSrv - ok
19:01:07.0046 0x0f84  [ C28A558E417279AC6323D1E4FE47D3CC, DB864534DBE90B4643E5AF77492A15D0584B74205548DB574DA447C80AE7EC4D ] WMPNetworkSvc   C:\Program Files\Windows Media Player\WMPNetwk.exe
19:01:07.0156 0x0f84  WMPNetworkSvc - ok
19:01:07.0203 0x0f84  [ 3EE94D0EBC2F3B32938D9FB9EEA93C5F, D48679C75E8831785F331489BC523C62501980848FC34AE0F5CA8B7DD6628788 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
19:01:07.0203 0x0f84  wscsvc - ok
19:01:07.0250 0x0f84  [ C98B39829C2BBD34E454150633C62C78, 71B60EA3AD0E2637917D528C6A9E7ECF2949E3E5E91036AA5BBADA95BD725511 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
19:01:07.0250 0x0f84  WSTCODEC - ok
19:01:07.0265 0x0f84  [ 7D0C11FA486B5646AD0EEBFD61D03FE0, 39A8EB36A273D6E57817F4C083AC7957A83AE7AC705A3EB7EF463F05E37B3D7A ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
19:01:07.0312 0x0f84  wuauserv - ok
19:01:07.0343 0x0f84  [ F15FEAFFFBB3644CCC80C5DA584E6311, 79B3E9AF35976CE49921E9BEA3BA3B4A8AF762FD3F284B62954038B5FFB32471 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:01:07.0343 0x0f84  WudfPf - ok
19:01:07.0359 0x0f84  [ 28B524262BCE6DE1F7EF9F510BA3985B, AEFF02B899801A63CBB262757C3D4369E38BFF0690BD085DE60E873DFBE3C3F4 ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:01:07.0375 0x0f84  WudfRd - ok
19:01:07.0421 0x0f84  [ 05231C04253C5BC30B26CBAAE680ED89, 5C03C2D7E0B573646D32F4093E2FF2C3BA391C39F5BA37D67F69D38E357FCC3D ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
19:01:07.0421 0x0f84  WudfSvc - ok
19:01:07.0515 0x0f84  [ 4EBD8D6395B4A7345930DB6A3918409C, F07C2A4E3B8ADB7D2694090AA9A99AC51D9798BF0EF00C514673A43A168B40B0 ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
19:01:07.0546 0x0f84  WZCSVC - ok
19:01:07.0562 0x0f84  [ E89A0310E8BE2578EEE1AE63A6307FFB, 1CE67A4BD5F2E88EB55480FA7F35784B32BFE0659ECDE683C0C398B57C6B43EA ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
19:01:07.0593 0x0f84  xmlprov - ok
19:01:07.0671 0x0f84  [ AF57ABA41F62784622DD5C5B8748F137, 2F1C5A4B6165565BB5D58888ADD090AEE65ED0148EF10D6A810738A4F1F3C12A ] ZTEusbnet       C:\WINDOWS\system32\DRIVERS\ZTEusbnet.sys
19:01:07.0734 0x0f84  ZTEusbnet - ok
19:01:07.0765 0x0f84  [ 9BDD8C51C56BE88B081E885085BD7286, 86E8E04A52089E3F79015D986C3C388C6E8D4E3A3D7BB9769C004D4F1455424E ] ZTEusbnmea      C:\WINDOWS\system32\DRIVERS\ZTEusbnmea.sys
19:01:07.0812 0x0f84  ZTEusbnmea - ok
19:01:07.0828 0x0f84  [ 9BDD8C51C56BE88B081E885085BD7286, 86E8E04A52089E3F79015D986C3C388C6E8D4E3A3D7BB9769C004D4F1455424E ] ZTEusbser6k     C:\WINDOWS\system32\DRIVERS\ZTEusbser6k.sys
19:01:07.0875 0x0f84  ZTEusbser6k - ok
19:01:07.0875 0x0f84  ================ Scan global ===============================
19:01:07.0937 0x0f84  [ 3BD3EBCD81AFF78B597609E1AB3C5FC0, 9F95338FFB74C78EED49B2D0F6F9F663E1950E38F6F5443C30C25FFC60CB146D ] C:\WINDOWS\system32\basesrv.dll
19:01:07.0984 0x0f84  [ 524F0186555E49CEE6B4B1D082B1DBC6, 30F29D8694FFDD510A6E9E481CB1D5E4CFFAB52A283D198657ACCFFE407BC959 ] C:\WINDOWS\system32\winsrv.dll
19:01:08.0015 0x0f84  [ 524F0186555E49CEE6B4B1D082B1DBC6, 30F29D8694FFDD510A6E9E481CB1D5E4CFFAB52A283D198657ACCFFE407BC959 ] C:\WINDOWS\system32\winsrv.dll
19:01:08.0046 0x0f84  [ BE4CA1A36621248590E80713CFDF20D2, 1140DB6580FC06BC586AB96B108CF595CC16093871AB5D8E977BFCC036066446 ] C:\WINDOWS\system32\services.exe
19:01:08.0062 0x0f84  [ Global ] - ok
19:01:08.0062 0x0f84  ================ Scan MBR ==================================
19:01:08.0093 0x0f84  [ 6573D157A3DFFD65292C07911AC353A2 ] \Device\Harddisk0\DR0
19:01:08.0328 0x0f84  \Device\Harddisk0\DR0 - ok
19:01:08.0328 0x0f84  ================ Scan VBR ==================================
19:01:08.0328 0x0f84  [ BAC15685F6263C7B6E583F4CE55C2A2A ] \Device\Harddisk0\DR0\Partition1
19:01:08.0328 0x0f84  \Device\Harddisk0\DR0\Partition1 - ok
19:01:08.0328 0x0f84  Waiting for KSN requests completion. In queue: 157
19:01:09.0328 0x0f84  Waiting for KSN requests completion. In queue: 157
19:01:10.0328 0x0f84  Waiting for KSN requests completion. In queue: 157
19:01:11.0484 0x0f84  AV detected via SS1: AVG AntiVirus Free Edition 2014, 2014.0, enabled, updated
19:01:11.0484 0x0f84  FW detected via SS1: AVG Internet Security 2012, 2012.0, enabled
19:01:14.0015 0x0f84  ============================================================
19:01:14.0015 0x0f84  Scan finished
19:01:14.0015 0x0f84  ============================================================
19:01:14.0015 0x02dc  Detected object count: 0
19:01:14.0015 0x02dc  Actual detected object count: 0
19:01:57.0609 0x05d4  Deinitialize success
 

ADWCleaner

 

 

# AdwCleaner v3.015 - Report created 13/12/2013 at 19:27:56
# Updated 10/12/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Omistaja - FLATTY
# Running from : C:\Documents and Settings\Omistaja\Työpöytä\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\All Users\Application Data\Ask
Folder Deleted : C:\Program Files\GreenTree Applications
Folder Deleted : C:\Documents and Settings\Omistaja\Application Data\OpenCandy
[!] Folder Deleted : C:\Documents and Settings\Omistaja\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pnbbffeddnekkhjmokkhdebbfbibbflc

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\hbcennhacfaagdopikcegfcobcadeocj
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\pfndaklgolladniicklehhancnlgocpp
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\5a55dcdfe769ea48
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B9C767DD-F66A-40B4-8F12-4199A9A4393C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B9C767DD-F66A-40B4-8F12-4199A9A4393C}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKLM\SOFTWARE\Policies\Google\Chrome\ExtensionInstallForcelist [1]
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\BI
Key Deleted : HKCU\Software\lyricspal
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKCU\Software\AppDataLow\Software\lyricspal
Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings
Key Deleted : HKLM\Software\AVG Nation toolbar
Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\Software\PIP
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\464AA55239C100F32AF2D438EDDC0F47
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5652BA3D5FB98AE31B337BF0AF939856
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EB95E1AFCBABE3DB9ECCC669B99494
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702

-\\ Google Chrome v

[ File : C:\Documents and Settings\Omistaja\Local Settings\Application Data\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [6142 octets] - [13/12/2013 19:04:03]
AdwCleaner[S0].txt - [6181 octets] - [13/12/2013 19:27:56]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [6241 octets] ##########

 

 

 

Junkware REmoval Tool

 

 

 

 

~~~ Registry Values

 

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-299502267-790525478-725345543-1003\Software\sweetim

 

~~~ Files

 

~~~ Folders

Successfully deleted: [Folder] "C:\Documents and Settings\All Users\application data\ytd video downloader"

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on pe 13.12.2013 at 19:43:31,07
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Microsoft Windows XP x86
Ran by Omistaja on pe 13.12.2013 at 19:39:51,51
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

~~~ Services 

 

 

ESET

 

C:\AdwCleaner\Quarantine\C\Documents and Settings\Omistaja\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pnbbffeddnekkhjmokkhdebbfbibbflc\1.128\cs.js.vir Win32/Adware.AddLyrics.L application cleaned by deleting - quarantined
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\USTechSupportMyCleanPC.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\Documents and Settings\Omistaja\Työpöytä\7ZipSetup.exe Win32/Somoto.A application cleaned by deleting - quarantined
C:\WINDOWS\system32\Extensions\128\chrome\content\main.js Win32/Adware.AddLyrics.L application cleaned by deleting - quarantined
 

 

 


Edited by Redheadscorpio, 14 December 2013 - 07:14 AM.


#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:48 AM

Posted 14 December 2013 - 08:59 PM

I have seen enough logs that I basically know what they are in any language as the format of the logs are the same.

I am surprised that USTechSupportMyCleanPC put a Bagle Trojan on your machine. USTechSupportMyCleanPC.zip Win32/Bagle.
 
This may deliver rootkit infections so run one more tool.
 
Download Malwarebytes Anti-Rootkit from HERE to your Desktop.
  • Unzip downloaded file.
  • Open the folder where the contents were unzipped and run mbar.exe
  • Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
  • DO NOT click on the Cleanup button. Simply exit the program.
  • When done, please post the two logs produced they will be in the MBAR folder..... mbar-log-xxxxx.txt and system-log.txt

Edited by boopme, 14 December 2013 - 09:00 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 Redheadscorpio

Redheadscorpio
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:09:48 AM

Posted 15 December 2013 - 01:06 PM

mbar-log

 

Malwarebytes Anti-Rootkit BETA 1.07.0.1008
www.malwarebytes.org

Database version: v2013.12.15.04

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Omistaja :: FLATTY [administrator]

15.12.2013 19:03:11
mbar-log-2013-12-15 (19-03-11).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 200211
Time elapsed: 25 minute(s), 10 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)

 

 

 system-log.txt

 

 

Malwarebytes Anti-Rootkit BETA 1.07.0.1008

© Malwarebytes Corporation 2011-2012

OS version: 5.1.2600 Windows XP Service Pack 3 x86

Account is Administrative

Internet Explorer version: 8.0.6001.18702

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED
CPU speed: 1.994000 GHz
Memory total: 1071755264, free: 323006464

Downloaded database version: v2013.12.15.04
Downloaded database version: v2013.10.11.02
Initializing...
======================
------------ Kernel report ------------
     12/15/2013 19:03:01
------------ Loaded modules -----------
\WINDOWS\system32\ntkrnlpa.exe
\WINDOWS\system32\hal.dll
\WINDOWS\system32\KDCOM.DLL
\WINDOWS\system32\BOOTVID.dll
ACPI.sys
\WINDOWS\system32\DRIVERS\WMILIB.SYS
pci.sys
isapnp.sys
ohci1394.sys
\WINDOWS\system32\DRIVERS\1394BUS.SYS
compbatt.sys
\WINDOWS\system32\DRIVERS\BATTC.SYS
pciide.sys
\WINDOWS\system32\DRIVERS\PCIIDEX.SYS
MountMgr.sys
ftdisk.sys
PartMgr.sys
ACPIEC.sys
\WINDOWS\system32\DRIVERS\OPRGHDLR.SYS
VolSnap.sys
atapi.sys
iaStor.sys
disk.sys
\WINDOWS\system32\DRIVERS\CLASSPNP.SYS
fltmgr.sys
sr.sys
KSecDD.sys
Ntfs.sys
NDIS.sys
Mup.sys
avgrkx86.sys
avglogx.sys
avgmfx86.sys
avgidshx.sys
\SystemRoot\system32\DRIVERS\nic1394.sys
\SystemRoot\system32\DRIVERS\intelppm.sys
\SystemRoot\system32\DRIVERS\CmBatt.sys
\SystemRoot\system32\DRIVERS\nv4_mini.sys
\SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
\SystemRoot\system32\DRIVERS\wmiacpi.sys
\SystemRoot\system32\DRIVERS\HDAudBus.sys
\SystemRoot\system32\DRIVERS\NETw3x32.sys
\SystemRoot\system32\DRIVERS\usbuhci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\DRIVERS\Rtnicxp.sys
\SystemRoot\system32\DRIVERS\i8042prt.sys
\SystemRoot\system32\DRIVERS\kbdclass.sys
\SystemRoot\system32\DRIVERS\SynTP.sys
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\system32\DRIVERS\mouclass.sys
\SystemRoot\system32\DRIVERS\imapi.sys
\SystemRoot\system32\DRIVERS\cdrom.sys
\SystemRoot\system32\DRIVERS\redbook.sys
\SystemRoot\system32\DRIVERS\ks.sys
\SystemRoot\system32\DRIVERS\audstub.sys
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\system32\DRIVERS\psched.sys
\SystemRoot\system32\DRIVERS\msgpc.sys
\SystemRoot\system32\DRIVERS\ptilink.sys
\SystemRoot\system32\DRIVERS\raspti.sys
\SystemRoot\system32\DRIVERS\termdd.sys
\SystemRoot\system32\DRIVERS\swenum.sys
\SystemRoot\system32\DRIVERS\update.sys
\SystemRoot\system32\DRIVERS\mssmbios.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\DRIVERS\smserial.sys
\SystemRoot\System32\Drivers\Modem.SYS
\SystemRoot\system32\drivers\RtkHDAud.sys
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\System32\Drivers\Fs_Rec.SYS
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\Drivers\mnmdd.SYS
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\rasacd.sys
\SystemRoot\system32\DRIVERS\ipsec.sys
\SystemRoot\system32\DRIVERS\tcpip.sys
\SystemRoot\system32\DRIVERS\ipnat.sys
\SystemRoot\system32\DRIVERS\avgtdix.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\system32\DRIVERS\netbt.sys
\SystemRoot\System32\drivers\afd.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\System32\Drivers\StarOpen.SYS
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\System32\Drivers\Fips.SYS
\SystemRoot\system32\DRIVERS\arp1394.sys
\SystemRoot\system32\DRIVERS\avgldx86.sys
\SystemRoot\system32\DRIVERS\usbccgp.sys
\SystemRoot\system32\DRIVERS\hidusb.sys
\SystemRoot\system32\DRIVERS\HIDCLASS.SYS
\SystemRoot\system32\DRIVERS\HIDPARSE.SYS
\SystemRoot\system32\DRIVERS\mouhid.sys
\SystemRoot\system32\DRIVERS\ZTEusbser6k.sys
\SystemRoot\system32\DRIVERS\ZTEusbnmea.sys
\SystemRoot\system32\DRIVERS\ZTEusbnet.sys
\SystemRoot\system32\DRIVERS\USBSTOR.SYS
\SystemRoot\system32\DRIVERS\avgidsshimx.sys
\SystemRoot\system32\DRIVERS\avgidsdriverx.sys
\SystemRoot\system32\DRIVERS\avgdiskx.sys
\SystemRoot\System32\Drivers\Udfs.SYS
\SystemRoot\System32\Drivers\Cdfs.SYS
\SystemRoot\System32\Drivers\dump_iaStor.sys
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\System32\watchdog.sys
\SystemRoot\System32\drivers\dxg.sys
\SystemRoot\System32\drivers\dxgthk.sys
\SystemRoot\System32\nv4_disp.dll
\SystemRoot\System32\ATMFD.DLL
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\system32\DRIVERS\mrxdav.sys
\SystemRoot\system32\drivers\wdmaud.sys
\SystemRoot\system32\drivers\sysaudio.sys
\SystemRoot\system32\DRIVERS\srv.sys
\SystemRoot\System32\Drivers\HTTP.sys
\??\C:\WINDOWS\system32\drivers\mbamchameleon.sys
\??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
\WINDOWS\system32\ntdll.dll
----------- End -----------
Done!
<<<1>>>
Upper Device Name: \Device\Harddisk1\DR2
Upper Device Object: 0xffffffff85b8a4b0
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\0000008a\
Lower Device Object: 0xffffffff85b91a78
Lower Device Driver Name: \Driver\USBSTOR\
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xffffffff86758030
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\Ide\IAAStorageDevice-0\
Lower Device Object: 0xffffffff8672d030
Lower Device Driver Name: \Driver\iaStor\
<<<2>>>
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xffffffff86758030, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xffffffff86781a60, DeviceName: Unknown, DriverName: \Driver\PartMgr\
DevicePointer: 0xffffffff86758030, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
DevicePointer: 0xffffffff86730a18, DeviceName: \Device\00000068\, DriverName: \Driver\ACPI\
DevicePointer: 0xffffffff8672d030, DeviceName: \Device\Ide\IAAStorageDevice-0\, DriverName: \Driver\iaStor\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Done!
Drive 0
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: DD62EFE8

Partition information:

    Partition 0 type is Primary (0x7)
    Partition is ACTIVE.
    Partition starts at LBA: 63  Numsec = 234436482
    Partition file system is NTFS
    Partition is bootable

    Partition 1 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

    Partition 2 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

    Partition 3 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

Disk Size: 120034123776 bytes
Sector size: 512 bytes

Scanning physical sectors of unpartitioned space on drive 0 (1-62-234421648-234441648)...
Done!
Physical Sector Size: 0
Drive: 1, DevicePointer: 0xffffffff85b8a4b0, DeviceName: \Device\Harddisk1\DR2\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xffffffff8670ac28, DeviceName: Unknown, DriverName: \Driver\PartMgr\
DevicePointer: 0xffffffff85b8a4b0, DeviceName: \Device\Harddisk1\DR2\, DriverName: \Driver\Disk\
DevicePointer: 0xffffffff85b91a78, DeviceName: \Device\0000008a\, DriverName: \Driver\USBSTOR\
------------ End ----------
Read File:  File "c:\documents and settings\all users\application data\avg2014\chjw\be1c271b1c26ce69.dat:4d596a16-3c9c-405a-86be-9065cccfdc76" is sparse (flags = 32768)
Scan finished
=======================================

Removal queue found; removal started
Removing C:\Documents and Settings\All Users\Application Data\Malwarebytes' Anti-Malware (portable)\MBR_0_i.mbam...
Removing C:\Documents and Settings\All Users\Application Data\Malwarebytes' Anti-Malware (portable)\Bootstrap_0_0_63_i.mbam...
Removing C:\Documents and Settings\All Users\Application Data\Malwarebytes' Anti-Malware (portable)\MBR_0_r.mbam...
Removal finished



#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:48 AM

Posted 15 December 2013 - 06:24 PM

Looks good now, any more activity?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users