Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Browser Redirect and Pop-Up Ads


  • Please log in to reply
10 replies to this topic

#1 dvlucke

dvlucke

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:21 AM

Posted 30 May 2012 - 09:44 AM

I'm assuming I've got this Google Redirect Virus, or something similar. While browsing the web(Firefox 12.0), almost every page has an ad box in the bottom-right corner. Also, I am occasionally (several times per browser session) redirected to junk sites. It is not just Google search results that redirect, it is often while clicking on internal links of other websites.

I have run Windows Security Essentials, AVG, Malwarebytes, all without detection. Malwarebytes detected and removed many tracking cookies, but didn't solve the problem.

I am running 64-bit Windows 7.

What should I try next?

BC AdBot (Login to Remove)

 


#2 Jimbob85

Jimbob85

  • Members
  • 307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:VA, USA
  • Local time:10:21 AM

Posted 30 May 2012 - 10:16 AM

Try Rkill and then Tdsskiller without restarting between programs. It sound like you may have a rootkit. If you would post the logs we can take a look and see if that is what is going on.
Ghostbuster in training.

If I have not replied within 3 days please send me a PM. I won't reply on Sundays.

#3 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:21 AM

Posted 30 May 2012 - 10:19 AM

Please post the malwarebytes clean log


Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)



Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

Rogue killer

RIght click on it and run as administrator,click on HOSTS FIX option on right side

A log should get generated after the fix ,post the log here

Edited by narenxp, 30 May 2012 - 10:20 AM.


#4 dvlucke

dvlucke
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:21 AM

Posted 30 May 2012 - 10:38 AM

First, I think I misspoke in original post. It had to have been the Microsoft Security Essentials that caught the cookies, as the Malwarebytes log mentions nothing. I posted it below anyways, in case it's helpful. Couldn't find a log for MSE. I'm following the other steps now and will post when finished.


Malwarebytes Anti-Malware (Trial) 1.61.0.1400
www.malwarebytes.org

Database version: v2012.05.30.04

Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
david :: DAVID-PHENOM [administrator]

Protection: Enabled

5/30/2012 8:08:05 AM
mbam-log-2012-05-30 (08-08-05).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 460067
Time elapsed: 26 minute(s), 41 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:21 AM

Posted 30 May 2012 - 11:09 AM

:thumbup2:

#6 dvlucke

dvlucke
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:21 AM

Posted 30 May 2012 - 11:10 AM

Okay, here are the logs:

note: TDSKiller detected a threat, but as the default option was "skip", and your instructions didn't mention anything, I just hit continue. Please let me know if I need to go back and quarantine it.

TDSKILLER:

10:39:05.0147 6132 TDSS rootkit removing tool 2.7.36.0 May 21 2012 16:40:16
10:39:05.0527 6132 ============================================================
10:39:05.0527 6132 Current date / time: 2012/05/30 10:39:05.0527
10:39:05.0527 6132 SystemInfo:
10:39:05.0527 6132
10:39:05.0528 6132 OS Version: 6.1.7600 ServicePack: 0.0
10:39:05.0528 6132 Product type: Workstation
10:39:05.0528 6132 ComputerName: DAVID-PHENOM
10:39:05.0528 6132 UserName: david
10:39:05.0528 6132 Windows directory: C:\Windows
10:39:05.0528 6132 System windows directory: C:\Windows
10:39:05.0528 6132 Running under WOW64
10:39:05.0528 6132 Processor architecture: Intel x64
10:39:05.0528 6132 Number of processors: 4
10:39:05.0528 6132 Page size: 0x1000
10:39:05.0528 6132 Boot type: Normal boot
10:39:05.0528 6132 ============================================================
10:39:05.0972 6132 Drive \Device\Harddisk0\DR0 - Size: 0xDF99E6000 (55.90 Gb), SectorSize: 0x200, Cylinders: 0x1C81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:39:05.0973 6132 Drive \Device\Harddisk1\DR1 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:39:05.0973 6132 Drive \Device\Harddisk2\DR2 - Size: 0x15D50F66000 (1397.27 Gb), SectorSize: 0x200, Cylinders: 0x2C881, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:39:05.0982 6132 ============================================================
10:39:05.0982 6132 \Device\Harddisk0\DR0:
10:39:05.0982 6132 MBR partitions:
10:39:05.0982 6132 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x6FCB800
10:39:05.0982 6132 \Device\Harddisk1\DR1:
10:39:05.0982 6132 MBR partitions:
10:39:05.0982 6132 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x5754525C
10:39:05.0982 6132 \Device\Harddisk2\DR2:
10:39:05.0982 6132 MBR partitions:
10:39:05.0982 6132 \Device\Harddisk2\DR2\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xAEA87038
10:39:05.0983 6132 ============================================================
10:39:05.0984 6132 C: <-> \Device\Harddisk0\DR0\Partition0
10:39:06.0047 6132 E: <-> \Device\Harddisk1\DR1\Partition0
10:39:06.0066 6132 F: <-> \Device\Harddisk2\DR2\Partition0
10:39:06.0066 6132 ============================================================
10:39:06.0066 6132 Initialize success
10:39:06.0066 6132 ============================================================
10:39:25.0711 6032 ============================================================
10:39:25.0712 6032 Scan started
10:39:25.0712 6032 Mode: Manual; TDLFS;
10:39:25.0712 6032 ============================================================
10:39:26.0007 6032 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
10:39:26.0010 6032 1394ohci - ok
10:39:26.0024 6032 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
10:39:26.0028 6032 ACPI - ok
10:39:26.0032 6032 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
10:39:26.0033 6032 AcpiPmi - ok
10:39:26.0039 6032 adfs (2f0683fd2df1d92e891caca14b45a8c1) C:\Windows\system32\drivers\adfs.sys
10:39:26.0041 6032 adfs - ok
10:39:26.0048 6032 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:39:26.0049 6032 AdobeARMservice - ok
10:39:26.0082 6032 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
10:39:26.0084 6032 AdobeFlashPlayerUpdateSvc - ok
10:39:26.0104 6032 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
10:39:26.0112 6032 adp94xx - ok
10:39:26.0127 6032 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
10:39:26.0132 6032 adpahci - ok
10:39:26.0142 6032 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
10:39:26.0145 6032 adpu320 - ok
10:39:26.0152 6032 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
10:39:26.0153 6032 AeLookupSvc - ok
10:39:26.0177 6032 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
10:39:26.0183 6032 AFD - ok
10:39:26.0188 6032 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
10:39:26.0190 6032 agp440 - ok
10:39:26.0196 6032 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
10:39:26.0197 6032 ALG - ok
10:39:26.0201 6032 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
10:39:26.0202 6032 aliide - ok
10:39:26.0212 6032 AMD External Events Utility (20c8a3e435a47f0408a1ea674afa6194) C:\Windows\system32\atiesrxx.exe
10:39:26.0215 6032 AMD External Events Utility - ok
10:39:26.0219 6032 AMD FUEL Service - ok
10:39:26.0224 6032 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
10:39:26.0225 6032 amdide - ok
10:39:26.0229 6032 amdiox64 (6a2eeb0c4133b20773bb3dd0b7b377b4) C:\Windows\system32\DRIVERS\amdiox64.sys
10:39:26.0230 6032 amdiox64 - ok
10:39:26.0235 6032 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
10:39:26.0237 6032 AmdK8 - ok
10:39:26.0561 6032 amdkmdag (0b45c18b0f3ee996d25baa4e74884b83) C:\Windows\system32\DRIVERS\atikmdag.sys
10:39:26.0670 6032 amdkmdag - ok
10:39:26.0709 6032 amdkmdap (0e57258e5cc4cc7a9a9a877afdf0cec6) C:\Windows\system32\DRIVERS\atikmpag.sys
10:39:26.0713 6032 amdkmdap - ok
10:39:26.0718 6032 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
10:39:26.0718 6032 AmdPPM - ok
10:39:26.0723 6032 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
10:39:26.0725 6032 amdsata - ok
10:39:26.0733 6032 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
10:39:26.0736 6032 amdsbs - ok
10:39:26.0739 6032 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
10:39:26.0740 6032 amdxata - ok
10:39:26.0744 6032 AODDriver4.1 (5b25d1a753cc3a3edb909bb759ac1098) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
10:39:26.0746 6032 AODDriver4.1 - ok
10:39:26.0750 6032 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
10:39:26.0751 6032 AppID - ok
10:39:26.0754 6032 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
10:39:26.0755 6032 AppIDSvc - ok
10:39:26.0761 6032 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
10:39:26.0762 6032 Appinfo - ok
10:39:26.0769 6032 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:39:26.0770 6032 Apple Mobile Device - ok
10:39:26.0780 6032 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
10:39:26.0782 6032 AppMgmt - ok
10:39:26.0788 6032 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
10:39:26.0789 6032 arc - ok
10:39:26.0795 6032 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
10:39:26.0797 6032 arcsas - ok
10:39:26.0819 6032 AsIO (a82c01606dc27d05d9d3bfb6bb807e32) C:\Windows\syswow64\drivers\AsIO.sys
10:39:26.0820 6032 AsIO - ok
10:39:26.0825 6032 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
10:39:26.0826 6032 AsyncMac - ok
10:39:26.0829 6032 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
10:39:26.0830 6032 atapi - ok
10:39:26.0838 6032 AtiHDAudioService (24464b908e143d2561e9e452fee97309) C:\Windows\system32\drivers\AtihdW76.sys
10:39:26.0839 6032 AtiHDAudioService - ok
10:39:26.0843 6032 AtiPcie (c07a040d6b5a42dd41ee386cf90974c8) C:\Windows\system32\DRIVERS\AtiPcie.sys
10:39:26.0844 6032 AtiPcie - ok
10:39:26.0868 6032 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
10:39:26.0877 6032 AudioEndpointBuilder - ok
10:39:26.0881 6032 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
10:39:26.0884 6032 AudioSrv - ok
10:39:27.0024 6032 AVGIDSAgent (6d440ff3f44ca72edfd6176c6d6a89c0) C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe
10:39:27.0071 6032 AVGIDSAgent - ok
10:39:27.0102 6032 AVGIDSDriver (e29ea1a0ec7ab9fa2dc7e75a03f12a4f) C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys
10:39:27.0104 6032 AVGIDSDriver - ok
10:39:27.0108 6032 AVGIDSEH (f823d184b8e8ffb8da3ead45dbf5bd6a) C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
10:39:27.0109 6032 AVGIDSEH - ok
10:39:27.0112 6032 AVGIDSFilter (ed2b25bd7fe35d1944211968842d30da) C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys
10:39:27.0114 6032 AVGIDSFilter - ok
10:39:27.0125 6032 Avgldx64 (979cf8912449a10b987218bff80a1fa3) C:\Windows\system32\DRIVERS\avgldx64.sys
10:39:27.0129 6032 Avgldx64 - ok
10:39:27.0133 6032 Avgmfx64 (36b1a5843695766eac714daffc5b84d1) C:\Windows\system32\DRIVERS\avgmfx64.sys
10:39:27.0134 6032 Avgmfx64 - ok
10:39:27.0137 6032 Avgrkx64 (1102239fb724527f1febbbbccf6bf313) C:\Windows\system32\DRIVERS\avgrkx64.sys
10:39:27.0138 6032 Avgrkx64 - ok
10:39:27.0152 6032 Avgtdia (11f36d3ea82d9db9aa05a476a210551b) C:\Windows\system32\DRIVERS\avgtdia.sys
10:39:27.0157 6032 Avgtdia - ok
10:39:27.0173 6032 avgwd (6699ece24fe4b3f752a66c66a602ee86) C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
10:39:27.0175 6032 avgwd - ok
10:39:27.0182 6032 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
10:39:27.0183 6032 AxInstSV - ok
10:39:27.0200 6032 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
10:39:27.0206 6032 b06bdrv - ok
10:39:27.0217 6032 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
10:39:27.0221 6032 b57nd60a - ok
10:39:27.0233 6032 BCUService (328e794278cc30ca7c06e346a18b1abc) C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
10:39:27.0236 6032 BCUService - ok
10:39:27.0242 6032 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
10:39:27.0243 6032 BDESVC - ok
10:39:27.0246 6032 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
10:39:27.0247 6032 Beep - ok
10:39:27.0271 6032 BFE (4992c609a6315671463e30f6512bc022) C:\Windows\System32\bfe.dll
10:39:27.0279 6032 BFE - ok
10:39:27.0309 6032 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\System32\qmgr.dll
10:39:27.0321 6032 BITS - ok
10:39:27.0328 6032 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
10:39:27.0329 6032 blbdrive - ok
10:39:27.0346 6032 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
10:39:27.0351 6032 Bonjour Service - ok
10:39:27.0357 6032 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
10:39:27.0358 6032 bowser - ok
10:39:27.0361 6032 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
10:39:27.0362 6032 BrFiltLo - ok
10:39:27.0364 6032 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
10:39:27.0365 6032 BrFiltUp - ok
10:39:27.0372 6032 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
10:39:27.0375 6032 Browser - ok
10:39:27.0385 6032 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
10:39:27.0389 6032 Brserid - ok
10:39:27.0393 6032 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
10:39:27.0394 6032 BrSerWdm - ok
10:39:27.0396 6032 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
10:39:27.0397 6032 BrUsbMdm - ok
10:39:27.0400 6032 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
10:39:27.0401 6032 BrUsbSer - ok
10:39:27.0405 6032 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
10:39:27.0407 6032 BTHMODEM - ok
10:39:27.0414 6032 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
10:39:27.0415 6032 bthserv - ok
10:39:27.0421 6032 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
10:39:27.0422 6032 cdfs - ok
10:39:27.0430 6032 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
10:39:27.0432 6032 cdrom - ok
10:39:27.0438 6032 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
10:39:27.0440 6032 CertPropSvc - ok
10:39:27.0444 6032 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
10:39:27.0445 6032 circlass - ok
10:39:27.0459 6032 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
10:39:27.0463 6032 CLFS - ok
10:39:27.0470 6032 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:39:27.0472 6032 clr_optimization_v2.0.50727_32 - ok
10:39:27.0478 6032 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:39:27.0480 6032 clr_optimization_v2.0.50727_64 - ok
10:39:27.0488 6032 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:39:27.0491 6032 clr_optimization_v4.0.30319_32 - ok
10:39:27.0499 6032 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:39:27.0501 6032 clr_optimization_v4.0.30319_64 - ok
10:39:27.0504 6032 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
10:39:27.0505 6032 CmBatt - ok
10:39:27.0507 6032 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
10:39:27.0508 6032 cmdide - ok
10:39:27.0530 6032 CNG (937beb186a735aca91d717044a49d17e) C:\Windows\system32\Drivers\cng.sys
10:39:27.0536 6032 CNG - ok
10:39:27.0540 6032 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
10:39:27.0541 6032 Compbatt - ok
10:39:27.0545 6032 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
10:39:27.0546 6032 CompositeBus - ok
10:39:27.0548 6032 COMSysApp - ok
10:39:27.0551 6032 cpuz135 - ok
10:39:27.0555 6032 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
10:39:27.0557 6032 crcdisk - ok
10:39:27.0566 6032 CryptSvc (8c57411b66282c01533cb776f98ad384) C:\Windows\system32\cryptsvc.dll
10:39:27.0569 6032 CryptSvc - ok
10:39:27.0588 6032 CSC (4a6173c2279b498cd8f57cae504564cb) C:\Windows\system32\drivers\csc.sys
10:39:27.0594 6032 CSC - ok
10:39:27.0617 6032 CscService (873fbf927c06e5cee04dec617502f8fd) C:\Windows\System32\cscsvc.dll
10:39:27.0625 6032 CscService - ok
10:39:27.0646 6032 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
10:39:27.0653 6032 DcomLaunch - ok
10:39:27.0665 6032 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
10:39:27.0668 6032 defragsvc - ok
10:39:27.0677 6032 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
10:39:27.0679 6032 DfsC - ok
10:39:27.0691 6032 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
10:39:27.0695 6032 Dhcp - ok
10:39:27.0699 6032 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
10:39:27.0699 6032 discache - ok
10:39:27.0705 6032 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
10:39:27.0706 6032 Disk - ok
10:39:27.0714 6032 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
10:39:27.0717 6032 Dnscache - ok
10:39:27.0728 6032 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
10:39:27.0731 6032 dot3svc - ok
10:39:27.0739 6032 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
10:39:27.0741 6032 DPS - ok
10:39:27.0744 6032 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
10:39:27.0745 6032 drmkaud - ok
10:39:27.0751 6032 DTSRVC (3430a3d6a97c0e827db0930fee017499) C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe
10:39:27.0752 6032 DTSRVC - ok
10:39:27.0783 6032 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
10:39:27.0792 6032 DXGKrnl - ok
10:39:27.0799 6032 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
10:39:27.0801 6032 EapHost - ok
10:39:27.0898 6032 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
10:39:27.0935 6032 ebdrv - ok
10:39:27.0960 6032 EFS (156f6159457d0aa7e59b62681b56eb90) C:\Windows\System32\lsass.exe
10:39:27.0962 6032 EFS - ok
10:39:27.0983 6032 ehRecvr (47c071994c3f649f23d9cd075ac9304a) C:\Windows\ehome\ehRecvr.exe
10:39:27.0990 6032 ehRecvr - ok
10:39:27.0997 6032 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
10:39:27.0999 6032 ehSched - ok
10:39:28.0022 6032 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
10:39:28.0029 6032 elxstor - ok
10:39:28.0032 6032 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
10:39:28.0033 6032 ErrDev - ok
10:39:28.0052 6032 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
10:39:28.0058 6032 EventSystem - ok
10:39:28.0067 6032 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
10:39:28.0070 6032 exfat - ok
10:39:28.0079 6032 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
10:39:28.0082 6032 fastfat - ok
10:39:28.0110 6032 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
10:39:28.0118 6032 Fax - ok
10:39:28.0122 6032 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
10:39:28.0123 6032 fdc - ok
10:39:28.0127 6032 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
10:39:28.0128 6032 fdPHost - ok
10:39:28.0131 6032 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
10:39:28.0133 6032 FDResPub - ok
10:39:28.0138 6032 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
10:39:28.0139 6032 FileInfo - ok
10:39:28.0143 6032 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
10:39:28.0145 6032 Filetrace - ok
10:39:28.0175 6032 FLEXnet Licensing Service (1f63900e2eb00101b9aca2b7a870704e) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
10:39:28.0181 6032 FLEXnet Licensing Service - ok
10:39:28.0218 6032 FLEXnet Licensing Service 64 (1c3fb052a0bb72edaed90785c34d6eed) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
10:39:28.0230 6032 FLEXnet Licensing Service 64 - ok
10:39:28.0257 6032 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
10:39:28.0258 6032 flpydisk - ok
10:39:28.0271 6032 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
10:39:28.0276 6032 FltMgr - ok
10:39:28.0310 6032 FontCache (cb5e4b9c319e3c6bb363eb7e58a4a051) C:\Windows\system32\FntCache.dll
10:39:28.0321 6032 FontCache - ok
10:39:28.0326 6032 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:39:28.0327 6032 FontCache3.0.0.0 - ok
10:39:28.0334 6032 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
10:39:28.0335 6032 FsDepends - ok
10:39:28.0338 6032 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
10:39:28.0339 6032 Fs_Rec - ok
10:39:28.0348 6032 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
10:39:28.0351 6032 fvevol - ok
10:39:28.0355 6032 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
10:39:28.0357 6032 gagp30kx - ok
10:39:28.0360 6032 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:39:28.0362 6032 GEARAspiWDM - ok
10:39:28.0391 6032 GFIBckHAtt (94fcce83cdee9c8149667110093e701e) C:\PROGRA~2\GFI\GFIBAC~1\GFIHInst.exe
10:39:28.0401 6032 GFIBckHAtt - ok
10:39:28.0474 6032 GFIBckHSched (e95911bd88ef967125724428772fddd8) C:\PROGRA~2\GFI\GFIBAC~1\GFIHSC~1.EXE
10:39:28.0498 6032 GFIBckHSched - ok
10:39:28.0546 6032 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
10:39:28.0555 6032 gpsvc - ok
10:39:28.0562 6032 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
10:39:28.0563 6032 hcw85cir - ok
10:39:28.0576 6032 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
10:39:28.0580 6032 HdAudAddService - ok
10:39:28.0586 6032 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
10:39:28.0587 6032 HDAudBus - ok
10:39:28.0590 6032 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
10:39:28.0592 6032 HidBatt - ok
10:39:28.0597 6032 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
10:39:28.0598 6032 HidBth - ok
10:39:28.0602 6032 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
10:39:28.0603 6032 HidIr - ok
10:39:28.0607 6032 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
10:39:28.0609 6032 hidserv - ok
10:39:28.0612 6032 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
10:39:28.0614 6032 HidUsb - ok
10:39:28.0619 6032 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
10:39:28.0621 6032 hkmsvc - ok
10:39:28.0631 6032 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
10:39:28.0634 6032 HomeGroupListener - ok
10:39:28.0643 6032 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
10:39:28.0647 6032 HomeGroupProvider - ok
10:39:28.0652 6032 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
10:39:28.0654 6032 HpSAMD - ok
10:39:28.0680 6032 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
10:39:28.0687 6032 HTTP - ok
10:39:28.0690 6032 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
10:39:28.0691 6032 hwpolicy - ok
10:39:28.0697 6032 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
10:39:28.0699 6032 i8042prt - ok
10:39:28.0714 6032 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
10:39:28.0719 6032 iaStorV - ok
10:39:28.0725 6032 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
10:39:28.0726 6032 IDriverT - ok
10:39:28.0755 6032 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:39:28.0765 6032 idsvc - ok
10:39:28.0790 6032 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
10:39:28.0792 6032 iirsp - ok
10:39:28.0822 6032 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
10:39:28.0833 6032 IKEEXT - ok
10:39:28.0918 6032 IntcAzAudAddService (f5872a11eb4f6db170d636cd4e53ca9f) C:\Windows\system32\drivers\RTKVHD64.sys
10:39:28.0948 6032 IntcAzAudAddService - ok
10:39:28.0975 6032 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
10:39:28.0977 6032 intelide - ok
10:39:28.0981 6032 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
10:39:28.0982 6032 intelppm - ok
10:39:28.0988 6032 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
10:39:28.0990 6032 IPBusEnum - ok
10:39:28.0995 6032 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:39:28.0996 6032 IpFilterDriver - ok
10:39:29.0025 6032 iphlpsvc (f8e058d17363ec580e4b7232778b6cb5) C:\Windows\System32\iphlpsvc.dll
10:39:29.0032 6032 iphlpsvc - ok
10:39:29.0037 6032 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
10:39:29.0039 6032 IPMIDRV - ok
10:39:29.0044 6032 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
10:39:29.0046 6032 IPNAT - ok
10:39:29.0075 6032 iPod Service (50d6ccc6ff5561f9f56946b3e6164fb8) C:\Program Files\iPod\bin\iPodService.exe
10:39:29.0084 6032 iPod Service - ok
10:39:29.0088 6032 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
10:39:29.0089 6032 IRENUM - ok
10:39:29.0092 6032 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
10:39:29.0093 6032 isapnp - ok
10:39:29.0102 6032 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
10:39:29.0106 6032 iScsiPrt - ok
10:39:29.0111 6032 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
10:39:29.0112 6032 kbdclass - ok
10:39:29.0115 6032 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
10:39:29.0117 6032 kbdhid - ok
10:39:29.0120 6032 KeyIso (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
10:39:29.0121 6032 KeyIso - ok
10:39:29.0126 6032 KSecDD (16c1b906fc5ead84769f90b736b6bf0e) C:\Windows\system32\Drivers\ksecdd.sys
10:39:29.0128 6032 KSecDD - ok
10:39:29.0135 6032 KSecPkg (0b711550c56444879d71c7daabda6c83) C:\Windows\system32\Drivers\ksecpkg.sys
10:39:29.0137 6032 KSecPkg - ok
10:39:29.0140 6032 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
10:39:29.0141 6032 ksthunk - ok
10:39:29.0155 6032 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
10:39:29.0162 6032 KtmRm - ok
10:39:29.0174 6032 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\system32\srvsvc.dll
10:39:29.0178 6032 LanmanServer - ok
10:39:29.0184 6032 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
10:39:29.0187 6032 LanmanWorkstation - ok
10:39:29.0193 6032 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
10:39:29.0195 6032 lltdio - ok
10:39:29.0207 6032 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
10:39:29.0211 6032 lltdsvc - ok
10:39:29.0216 6032 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
10:39:29.0218 6032 lmhosts - ok
10:39:29.0226 6032 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
10:39:29.0228 6032 LSI_FC - ok
10:39:29.0233 6032 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
10:39:29.0235 6032 LSI_SAS - ok
10:39:29.0240 6032 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
10:39:29.0241 6032 LSI_SAS2 - ok
10:39:29.0248 6032 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
10:39:29.0250 6032 LSI_SCSI - ok
10:39:29.0256 6032 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
10:39:29.0257 6032 luafv - ok
10:39:29.0395 6032 LVUVC64 (ff3a488924b0032b1a9ca6948c1fa9e8) C:\Windows\system32\DRIVERS\lvuvc64.sys
10:39:29.0442 6032 LVUVC64 - ok
10:39:29.0470 6032 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
10:39:29.0471 6032 MBAMProtector - ok
10:39:29.0492 6032 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
10:39:29.0498 6032 MBAMService - ok
10:39:29.0509 6032 mcdbus (79d51e7f5926e8ce1b3ebecebae28cff) C:\Windows\system32\DRIVERS\mcdbus.sys
10:39:29.0524 6032 mcdbus - ok
10:39:29.0530 6032 Mcx2Svc (f84c8f1000bc11e3b7b23cbd3baff111) C:\Windows\system32\Mcx2Svc.dll
10:39:29.0532 6032 Mcx2Svc - ok
10:39:29.0535 6032 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
10:39:29.0537 6032 megasas - ok
10:39:29.0547 6032 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
10:39:29.0551 6032 MegaSR - ok
10:39:29.0556 6032 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
10:39:29.0557 6032 MMCSS - ok
10:39:29.0561 6032 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
10:39:29.0562 6032 Modem - ok
10:39:29.0565 6032 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
10:39:29.0566 6032 monitor - ok
10:39:29.0570 6032 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
10:39:29.0572 6032 mouclass - ok
10:39:29.0575 6032 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
10:39:29.0577 6032 mouhid - ok
10:39:29.0582 6032 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
10:39:29.0584 6032 mountmgr - ok
10:39:29.0591 6032 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
10:39:29.0592 6032 MozillaMaintenance - ok
10:39:29.0601 6032 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
10:39:29.0603 6032 MpFilter - ok
10:39:29.0610 6032 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
10:39:29.0612 6032 mpio - ok
10:39:29.0617 6032 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
10:39:29.0619 6032 mpsdrv - ok
10:39:29.0648 6032 MpsSvc (aecab449567d1846dad63ece49e893e3) C:\Windows\system32\mpssvc.dll
10:39:29.0658 6032 MpsSvc - ok
10:39:29.0665 6032 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
10:39:29.0667 6032 MRxDAV - ok
10:39:29.0675 6032 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
10:39:29.0677 6032 mrxsmb - ok
10:39:29.0688 6032 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:39:29.0692 6032 mrxsmb10 - ok
10:39:29.0698 6032 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:39:29.0700 6032 mrxsmb20 - ok
10:39:29.0703 6032 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
10:39:29.0704 6032 msahci - ok
10:39:29.0712 6032 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
10:39:29.0715 6032 msdsm - ok
10:39:29.0722 6032 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
10:39:29.0724 6032 MSDTC - ok
10:39:29.0730 6032 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
10:39:29.0732 6032 Msfs - ok
10:39:29.0734 6032 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
10:39:29.0735 6032 mshidkmdf - ok
10:39:29.0738 6032 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
10:39:29.0739 6032 msisadrv - ok
10:39:29.0747 6032 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
10:39:29.0750 6032 MSiSCSI - ok
10:39:29.0752 6032 msiserver - ok
10:39:29.0757 6032 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
10:39:29.0758 6032 MSKSSRV - ok
10:39:29.0762 6032 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) C:\Program Files\Microsoft Security Client\MsMpEng.exe
10:39:29.0762 6032 MsMpSvc - ok
10:39:29.0766 6032 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
10:39:29.0767 6032 MSPCLOCK - ok
10:39:29.0769 6032 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
10:39:29.0770 6032 MSPQM - ok
10:39:29.0786 6032 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
10:39:29.0790 6032 MsRPC - ok
10:39:29.0795 6032 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
10:39:29.0796 6032 mssmbios - ok
10:39:29.0799 6032 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
10:39:29.0800 6032 MSTEE - ok
10:39:29.0802 6032 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
10:39:29.0803 6032 MTConfig - ok
10:39:29.0807 6032 MTsensor (19b006b181e3875fd254f7b67acf1e7c) C:\Windows\system32\DRIVERS\ASACPI.sys
10:39:29.0808 6032 MTsensor - ok
10:39:29.0813 6032 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
10:39:29.0814 6032 Mup - ok
10:39:29.0832 6032 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
10:39:29.0838 6032 napagent - ok
10:39:29.0852 6032 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
10:39:29.0856 6032 NativeWifiP - ok
10:39:29.0890 6032 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
10:39:29.0901 6032 NDIS - ok
10:39:29.0905 6032 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
10:39:29.0907 6032 NdisCap - ok
10:39:29.0910 6032 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
10:39:29.0911 6032 NdisTapi - ok
10:39:29.0915 6032 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
10:39:29.0916 6032 Ndisuio - ok
10:39:29.0924 6032 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
10:39:29.0927 6032 NdisWan - ok
10:39:29.0931 6032 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
10:39:29.0932 6032 NDProxy - ok
10:39:29.0943 6032 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
10:39:29.0944 6032 NetBIOS - ok
10:39:29.0955 6032 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
10:39:29.0958 6032 NetBT - ok
10:39:29.0961 6032 Netlogon (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
10:39:29.0962 6032 Netlogon - ok
10:39:29.0977 6032 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
10:39:29.0982 6032 Netman - ok
10:39:30.0001 6032 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
10:39:30.0008 6032 netprofm - ok
10:39:30.0014 6032 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
10:39:30.0016 6032 NetTcpPortSharing - ok
10:39:30.0022 6032 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
10:39:30.0023 6032 nfrd960 - ok
10:39:30.0030 6032 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
10:39:30.0031 6032 NisDrv - ok
10:39:30.0043 6032 NisSrv (10a43829a9e606af3eef25a1c1665923) C:\Program Files\Microsoft Security Client\NisSrv.exe
10:39:30.0046 6032 NisSrv - ok
10:39:30.0058 6032 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
10:39:30.0063 6032 NlaSvc - ok
10:39:30.0067 6032 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
10:39:30.0068 6032 Npfs - ok
10:39:30.0071 6032 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
10:39:30.0073 6032 nsi - ok
10:39:30.0076 6032 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
10:39:30.0076 6032 nsiproxy - ok
10:39:30.0129 6032 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
10:39:30.0146 6032 Ntfs - ok
10:39:30.0177 6032 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
10:39:30.0178 6032 Null - ok
10:39:30.0184 6032 nusb3hub (285acec1b13a15ba520aae06bacb9cff) C:\Windows\system32\DRIVERS\nusb3hub.sys
10:39:30.0186 6032 nusb3hub - ok
10:39:30.0194 6032 nusb3xhc (f6d625ff7b56bb6ea063f0d3a5bbc996) C:\Windows\system32\DRIVERS\nusb3xhc.sys
10:39:30.0197 6032 nusb3xhc - ok
10:39:30.0200 6032 nvlddmkm - ok
10:39:30.0208 6032 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
10:39:30.0210 6032 nvraid - ok
10:39:30.0219 6032 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
10:39:30.0221 6032 nvstor - ok
10:39:30.0228 6032 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
10:39:30.0230 6032 nv_agp - ok
10:39:30.0235 6032 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
10:39:30.0236 6032 ohci1394 - ok
10:39:30.0245 6032 ose64 (4965b005492cba7719e82b71e3245495) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:39:30.0247 6032 ose64 - ok
10:39:30.0400 6032 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
10:39:30.0450 6032 osppsvc - ok
10:39:30.0486 6032 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
10:39:30.0490 6032 p2pimsvc - ok
10:39:30.0507 6032 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
10:39:30.0513 6032 p2psvc - ok
10:39:30.0521 6032 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
10:39:30.0523 6032 Parport - ok
10:39:30.0528 6032 partmgr (90061b1acfe8ccaa5345750ffe08d8b8) C:\Windows\system32\drivers\partmgr.sys
10:39:30.0529 6032 partmgr - ok
10:39:30.0538 6032 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
10:39:30.0541 6032 PcaSvc - ok
10:39:30.0550 6032 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
10:39:30.0552 6032 pci - ok
10:39:30.0554 6032 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
10:39:30.0556 6032 pciide - ok
10:39:30.0565 6032 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
10:39:30.0568 6032 pcmcia - ok
10:39:30.0572 6032 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
10:39:30.0574 6032 pcw - ok
10:39:30.0577 6032 PdiPorts (fd1bb23371ee2e5e3076d7b0d8b33e91) C:\Windows\system32\DRIVERS\PdiPorts.sys
10:39:30.0585 6032 PdiPorts - ok
10:39:30.0592 6032 PdiService (a1f1260ad7aeaba9d53724e66aa274ba) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
10:39:30.0593 6032 PdiService - ok
10:39:30.0616 6032 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
10:39:30.0624 6032 PEAUTH - ok
10:39:30.0669 6032 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
10:39:30.0684 6032 PeerDistSvc - ok
10:39:30.0708 6032 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
10:39:30.0709 6032 PerfHost - ok
10:39:30.0778 6032 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
10:39:30.0794 6032 pla - ok
10:39:30.0811 6032 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
10:39:30.0816 6032 PlugPlay - ok
10:39:30.0820 6032 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
10:39:30.0822 6032 PNRPAutoReg - ok
10:39:30.0835 6032 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
10:39:30.0837 6032 PNRPsvc - ok
10:39:30.0856 6032 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
10:39:30.0862 6032 PolicyAgent - ok
10:39:30.0872 6032 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
10:39:30.0876 6032 Power - ok
10:39:30.0885 6032 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
10:39:30.0887 6032 PptpMiniport - ok
10:39:30.0892 6032 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
10:39:30.0893 6032 Processor - ok
10:39:30.0903 6032 ProfSvc (f381975e1f4346de875cb07339ce8d3a) C:\Windows\system32\profsvc.dll
10:39:30.0907 6032 ProfSvc - ok
10:39:30.0910 6032 ProtectedStorage (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
10:39:30.0911 6032 ProtectedStorage - ok
10:39:30.0918 6032 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
10:39:30.0920 6032 Psched - ok
10:39:30.0924 6032 PSI (fb46e9a827a8799ebd7bfa9128c91f37) C:\Windows\system32\DRIVERS\psi_mf.sys
10:39:30.0925 6032 PSI - ok
10:39:30.0979 6032 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
10:39:30.0998 6032 ql2300 - ok
10:39:31.0028 6032 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
10:39:31.0030 6032 ql40xx - ok
10:39:31.0041 6032 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
10:39:31.0045 6032 QWAVE - ok
10:39:31.0050 6032 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
10:39:31.0051 6032 QWAVEdrv - ok
10:39:31.0054 6032 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
10:39:31.0055 6032 RasAcd - ok
10:39:31.0060 6032 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
10:39:31.0061 6032 RasAgileVpn - ok
10:39:31.0067 6032 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
10:39:31.0069 6032 RasAuto - ok
10:39:31.0076 6032 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
10:39:31.0078 6032 Rasl2tp - ok
10:39:31.0092 6032 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
10:39:31.0096 6032 RasMan - ok
10:39:31.0102 6032 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
10:39:31.0104 6032 RasPppoe - ok
10:39:31.0110 6032 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
10:39:31.0111 6032 RasSstp - ok
10:39:31.0124 6032 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
10:39:31.0129 6032 rdbss - ok
10:39:31.0132 6032 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
10:39:31.0133 6032 rdpbus - ok
10:39:31.0136 6032 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
10:39:31.0136 6032 RDPCDD - ok
10:39:31.0146 6032 RDPDR (9706b84dbabfc4b4ca46c5a82b14dfa3) C:\Windows\system32\drivers\rdpdr.sys
10:39:31.0148 6032 RDPDR - ok
10:39:31.0151 6032 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
10:39:31.0152 6032 RDPENCDD - ok
10:39:31.0157 6032 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
10:39:31.0158 6032 RDPREFMP - ok
10:39:31.0171 6032 RDPWD (074ac702d8b8b660b0e1371555995386) C:\Windows\system32\drivers\RDPWD.sys
10:39:31.0173 6032 RDPWD - ok
10:39:31.0183 6032 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
10:39:31.0186 6032 rdyboost - ok
10:39:31.0193 6032 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
10:39:31.0195 6032 RemoteAccess - ok
10:39:31.0202 6032 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
10:39:31.0205 6032 RemoteRegistry - ok
10:39:31.0211 6032 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
10:39:31.0213 6032 RpcEptMapper - ok
10:39:31.0217 6032 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
10:39:31.0219 6032 RpcLocator - ok
10:39:31.0239 6032 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
10:39:31.0242 6032 RpcSs - ok
10:39:31.0247 6032 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
10:39:31.0249 6032 rspndr - ok
10:39:31.0262 6032 RTL8167 (4b42bc58294e83a6a92ec8b88c14c4a3) C:\Windows\system32\DRIVERS\Rt64win7.sys
10:39:31.0266 6032 RTL8167 - ok
10:39:31.0292 6032 RTL8192su (4ce333ac701c4bd2e3eff721c0db2526) C:\Windows\system32\DRIVERS\RTL8192su.sys
10:39:31.0300 6032 RTL8192su - ok
10:39:31.0304 6032 s3cap (88af6e02ab19df7fd07ecdf9c91e9af6) C:\Windows\system32\DRIVERS\vms3cap.sys
10:39:31.0305 6032 s3cap - ok
10:39:31.0308 6032 SamSs (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
10:39:31.0310 6032 SamSs - ok
10:39:31.0316 6032 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
10:39:31.0317 6032 sbp2port - ok
10:39:31.0327 6032 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
10:39:31.0331 6032 SCardSvr - ok
10:39:31.0335 6032 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
10:39:31.0336 6032 scfilter - ok
10:39:31.0371 6032 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
10:39:31.0382 6032 Schedule - ok
10:39:31.0388 6032 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
10:39:31.0389 6032 SCPolicySvc - ok
10:39:31.0397 6032 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
10:39:31.0400 6032 SDRSVC - ok
10:39:31.0406 6032 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
10:39:31.0408 6032 secdrv - ok
10:39:31.0411 6032 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
10:39:31.0413 6032 seclogon - ok
10:39:31.0448 6032 Secunia PSI Agent (5b66db4877bbac9f7493aa8d84421e49) C:\Program Files (x86)\Secunia\PSI\PSIA.exe
10:39:31.0459 6032 Secunia PSI Agent - ok
10:39:31.0464 6032 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
10:39:31.0466 6032 SENS - ok
10:39:31.0470 6032 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
10:39:31.0472 6032 SensrSvc - ok
10:39:31.0475 6032 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
10:39:31.0477 6032 Serenum - ok
10:39:31.0482 6032 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
10:39:31.0484 6032 Serial - ok
10:39:31.0487 6032 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
10:39:31.0488 6032 sermouse - ok
10:39:31.0499 6032 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
10:39:31.0501 6032 SessionEnv - ok
10:39:31.0504 6032 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
10:39:31.0506 6032 sffdisk - ok
10:39:31.0509 6032 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
10:39:31.0510 6032 sffp_mmc - ok
10:39:31.0512 6032 sffp_sd (5588b8c6193eb1522490c122eb94dffa) C:\Windows\system32\DRIVERS\sffp_sd.sys
10:39:31.0514 6032 sffp_sd - ok
10:39:31.0517 6032 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
10:39:31.0518 6032 sfloppy - ok
10:39:31.0532 6032 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
10:39:31.0537 6032 SharedAccess - ok
10:39:31.0550 6032 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
10:39:31.0555 6032 ShellHWDetection - ok
10:39:31.0560 6032 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
10:39:31.0561 6032 SiSRaid2 - ok
10:39:31.0566 6032 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
10:39:31.0568 6032 SiSRaid4 - ok
10:39:31.0574 6032 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
10:39:31.0575 6032 Smb - ok
10:39:31.0582 6032 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
10:39:31.0583 6032 SNMPTRAP - ok
10:39:31.0588 6032 Soluto (f9369327409492097b0bb7ce86bd29de) C:\Windows\system32\DRIVERS\Soluto.sys
10:39:31.0589 6032 Soluto - ok
10:39:31.0610 6032 SolutoService (ed8397986be35c11bfb321636d6991ee) C:\Program Files\Soluto\SolutoService.exe
10:39:31.0613 6032 SolutoService - ok
10:39:31.0616 6032 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
10:39:31.0617 6032 spldr - ok
10:39:31.0636 6032 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
10:39:31.0642 6032 Spooler - ok
10:39:31.0770 6032 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
10:39:31.0814 6032 sppsvc - ok
10:39:31.0840 6032 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
10:39:31.0843 6032 sppuinotify - ok
10:39:31.0879 6032 sptd (602884696850c86434530790b110e8eb) C:\Windows\system32\Drivers\sptd.sys
10:39:31.0879 6032 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850c86434530790b110e8eb
10:39:31.0881 6032 sptd ( LockedFile.Multi.Generic ) - warning
10:39:31.0881 6032 sptd - detected LockedFile.Multi.Generic (1)
10:39:31.0897 6032 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
10:39:31.0902 6032 srv - ok
10:39:31.0916 6032 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
10:39:31.0921 6032 srv2 - ok
10:39:31.0929 6032 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
10:39:31.0931 6032 srvnet - ok
10:39:31.0941 6032 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
10:39:31.0944 6032 SSDPSRV - ok
10:39:31.0950 6032 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
10:39:31.0952 6032 SstpSvc - ok
10:39:31.0956 6032 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
10:39:31.0957 6032 stexstor - ok
10:39:31.0978 6032 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
10:39:31.0986 6032 stisvc - ok
10:39:31.0991 6032 storflt (ffd7a6f15b14234b5b0e5d49e7961895) C:\Windows\system32\DRIVERS\vmstorfl.sys
10:39:31.0992 6032 storflt - ok
10:39:31.0996 6032 storvsc (8fccbefc5c440b3c23454656e551b09a) C:\Windows\system32\DRIVERS\storvsc.sys
10:39:31.0997 6032 storvsc - ok
10:39:32.0000 6032 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
10:39:32.0001 6032 swenum - ok
10:39:32.0023 6032 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
10:39:32.0029 6032 SwitchBoard - ok
10:39:32.0048 6032 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
10:39:32.0055 6032 swprv - ok
10:39:32.0116 6032 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
10:39:32.0138 6032 SysMain - ok
10:39:32.0171 6032 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
10:39:32.0173 6032 TabletInputService - ok
10:39:32.0186 6032 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
10:39:32.0192 6032 TapiSrv - ok
10:39:32.0197 6032 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
10:39:32.0199 6032 TBS - ok
10:39:32.0260 6032 Tcpip (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\drivers\tcpip.sys
10:39:32.0279 6032 Tcpip - ok
10:39:32.0360 6032 TCPIP6 (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\DRIVERS\tcpip.sys
10:39:32.0368 6032 TCPIP6 - ok
10:39:32.0397 6032 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
10:39:32.0399 6032 tcpipreg - ok
10:39:32.0403 6032 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
10:39:32.0404 6032 TDPIPE - ok
10:39:32.0408 6032 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
10:39:32.0409 6032 TDTCP - ok
10:39:32.0415 6032 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
10:39:32.0417 6032 tdx - ok
10:39:32.0498 6032 TeamViewer7 (a4d2ce94b028ef1e437cf4ac3d8ff26c) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
10:39:32.0524 6032 TeamViewer7 - ok
10:39:32.0553 6032 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
10:39:32.0555 6032 TermDD - ok
10:39:32.0578 6032 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
10:39:32.0587 6032 TermService - ok
10:39:32.0592 6032 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
10:39:32.0595 6032 Themes - ok
10:39:32.0599 6032 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
10:39:32.0600 6032 THREADORDER - ok
10:39:32.0607 6032 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
10:39:32.0610 6032 TrkWks - ok
10:39:32.0618 6032 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
10:39:32.0620 6032 TrustedInstaller - ok
10:39:32.0626 6032 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
10:39:32.0627 6032 tssecsrv - ok
10:39:32.0634 6032 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
10:39:32.0636 6032 tunnel - ok
10:39:32.0641 6032 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
10:39:32.0643 6032 uagp35 - ok
10:39:32.0657 6032 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
10:39:32.0661 6032 udfs - ok
10:39:32.0668 6032 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
10:39:32.0670 6032 UI0Detect - ok
10:39:32.0675 6032 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
10:39:32.0677 6032 uliagpkx - ok
10:39:32.0681 6032 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
10:39:32.0682 6032 umbus - ok
10:39:32.0685 6032 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
10:39:32.0686 6032 UmPass - ok
10:39:32.0696 6032 UmRdpService (af0ac98ee5077eb844413eb54287fde3) C:\Windows\System32\umrdp.dll
10:39:32.0700 6032 UmRdpService - ok
10:39:32.0716 6032 UMVPFSrv (67a95b9d129ed5399e7965cd09cf30e7) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
10:39:32.0721 6032 UMVPFSrv - ok
10:39:32.0736 6032 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
10:39:32.0741 6032 upnphost - ok
10:39:32.0748 6032 usbaudio (77b01bc848298223a95d4ec23e1785a1) C:\Windows\system32\drivers\usbaudio.sys
10:39:32.0750 6032 usbaudio - ok
10:39:32.0756 6032 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
10:39:32.0757 6032 usbccgp - ok
10:39:32.0764 6032 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
10:39:32.0765 6032 usbcir - ok
10:39:32.0770 6032 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
10:39:32.0771 6032 usbehci - ok
10:39:32.0783 6032 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
10:39:32.0787 6032 usbhub - ok
10:39:32.0791 6032 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\DRIVERS\usbohci.sys
10:39:32.0792 6032 usbohci - ok
10:39:32.0796 6032 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
10:39:32.0797 6032 usbprint - ok
10:39:32.0802 6032 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\drivers\USBSTOR.SYS
10:39:32.0804 6032 USBSTOR - ok
10:39:32.0807 6032 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\drivers\usbuhci.sys
10:39:32.0809 6032 usbuhci - ok
10:39:32.0817 6032 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\System32\Drivers\usbvideo.sys
10:39:32.0819 6032 usbvideo - ok
10:39:32.0824 6032 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
10:39:32.0826 6032 UxSms - ok
10:39:32.0829 6032 VaultSvc (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
10:39:32.0830 6032 VaultSvc - ok
10:39:32.0834 6032 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
10:39:32.0835 6032 vdrvroot - ok
10:39:32.0854 6032 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
10:39:32.0861 6032 vds - ok
10:39:32.0865 6032 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
10:39:32.0866 6032 vga - ok
10:39:32.0870 6032 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
10:39:32.0871 6032 VgaSave - ok
10:39:32.0881 6032 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
10:39:32.0884 6032 vhdmp - ok
10:39:32.0887 6032 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
10:39:32.0888 6032 viaide - ok
10:39:32.0898 6032 vmbus (1501699d7eda984abc4155a7da5738d1) C:\Windows\system32\DRIVERS\vmbus.sys
10:39:32.0901 6032 vmbus - ok
10:39:32.0904 6032 VMBusHID (ae10c35761889e65a6f7176937c5592c) C:\Windows\system32\DRIVERS\VMBusHID.sys
10:39:32.0905 6032 VMBusHID - ok
10:39:32.0910 6032 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
10:39:32.0912 6032 volmgr - ok
10:39:32.0926 6032 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
10:39:32.0930 6032 volmgrx - ok
10:39:32.0943 6032 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
10:39:32.0947 6032 volsnap - ok
10:39:32.0956 6032 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
10:39:32.0959 6032 vsmraid - ok
10:39:33.0014 6032 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
10:39:33.0033 6032 VSS - ok
10:39:33.0060 6032 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
10:39:33.0062 6032 vwifibus - ok
10:39:33.0066 6032 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
10:39:33.0067 6032 vwififlt - ok
10:39:33.0082 6032 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
10:39:33.0087 6032 W32Time - ok
10:39:33.0093 6032 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
10:39:33.0094 6032 WacomPen - ok
10:39:33.0108 6032 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
10:39:33.0110 6032 WANARP - ok
10:39:33.0112 6032 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
10:39:33.0113 6032 Wanarpv6 - ok
10:39:33.0159 6032 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
10:39:33.0179 6032 WatAdminSvc - ok
10:39:33.0230 6032 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
10:39:33.0248 6032 wbengine - ok
10:39:33.0278 6032 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
10:39:33.0282 6032 WbioSrvc - ok
10:39:33.0295 6032 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
10:39:33.0300 6032 wcncsvc - ok
10:39:33.0305 6032 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
10:39:33.0307 6032 WcsPlugInService - ok
10:39:33.0313 6032 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
10:39:33.0314 6032 Wd - ok
10:39:33.0337 6032 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
10:39:33.0345 6032 Wdf01000 - ok
10:39:33.0352 6032 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
10:39:33.0354 6032 WdiServiceHost - ok
10:39:33.0356 6032 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
10:39:33.0358 6032 WdiSystemHost - ok
10:39:33.0368 6032 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
10:39:33.0372 6032 WebClient - ok
10:39:33.0382 6032 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
10:39:33.0386 6032 Wecsvc - ok
10:39:33.0391 6032 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
10:39:33.0393 6032 wercplsupport - ok
10:39:33.0399 6032 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
10:39:33.0401 6032 WerSvc - ok
10:39:33.0407 6032 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
10:39:33.0409 6032 WfpLwf - ok
10:39:33.0412 6032 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
10:39:33.0413 6032 WIMMount - ok
10:39:33.0416 6032 WinDefend - ok
10:39:33.0420 6032 WinHttpAutoProxySvc - ok
10:39:33.0435 6032 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
10:39:33.0437 6032 Winmgmt - ok
10:39:33.0505 6032 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
10:39:33.0529 6032 WinRM - ok
10:39:33.0585 6032 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
10:39:33.0596 6032 Wlansvc - ok
10:39:33.0603 6032 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
10:39:33.0604 6032 WmiAcpi - ok
10:39:33.0617 6032 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
10:39:33.0620 6032 wmiApSrv - ok
10:39:33.0623 6032 WMPNetworkSvc - ok
10:39:33.0628 6032 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
10:39:33.0630 6032 WPCSvc - ok
10:39:33.0636 6032 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
10:39:33.0639 6032 WPDBusEnum - ok
10:39:33.0643 6032 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
10:39:33.0644 6032 ws2ifsl - ok
10:39:33.0650 6032 wscsvc (8f9f3969933c02da96eb0f84576db43e) C:\Windows\System32\wscsvc.dll
10:39:33.0652 6032 wscsvc - ok
10:39:33.0654 6032 WSearch - ok
10:39:33.0742 6032 wuauserv (38340204a2d0228f1e87740fc5e554a7) C:\Windows\system32\wuaueng.dll
10:39:33.0771 6032 wuauserv - ok
10:39:33.0801 6032 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
10:39:33.0803 6032 WudfPf - ok
10:39:33.0812 6032 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
10:39:33.0815 6032 WUDFRd - ok
10:39:33.0820 6032 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
10:39:33.0823 6032 wudfsvc - ok
10:39:33.0833 6032 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
10:39:33.0837 6032 WwanSvc - ok
10:39:33.0845 6032 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
10:39:34.0032 6032 \Device\Harddisk0\DR0 - ok
10:39:34.0034 6032 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk1\DR1
10:39:34.0407 6032 \Device\Harddisk1\DR1 - ok
10:39:34.0427 6032 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk2\DR2
10:39:34.0602 6032 \Device\Harddisk2\DR2 - ok
10:39:34.0610 6032 Boot (0x1200) (530e552bf76df7a9cd39d61b3bde6881) \Device\Harddisk0\DR0\Partition0
10:39:34.0613 6032 \Device\Harddisk0\DR0\Partition0 - ok
10:39:34.0620 6032 Boot (0x1200) (8fbb558f15b3de2bd41b75bf265c89e6) \Device\Harddisk1\DR1\Partition0
10:39:34.0623 6032 \Device\Harddisk1\DR1\Partition0 - ok
10:39:34.0630 6032 Boot (0x1200) (f8e7ed53c89441bbc25819022ccb6757) \Device\Harddisk2\DR2\Partition0
10:39:34.0631 6032 \Device\Harddisk2\DR2\Partition0 - ok
10:39:34.0632 6032 ============================================================
10:39:34.0632 6032 Scan finished
10:39:34.0632 6032 ============================================================
10:39:34.0640 3488 Detected object count: 1
10:39:34.0640 3488 Actual detected object count: 1


aswMBR:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-05-30 10:43:11
-----------------------------
10:43:11.060 OS Version: Windows x64 6.1.7600
10:43:11.060 Number of processors: 4 586 0x403
10:43:11.061 ComputerName: DAVID-PHENOM UserName: david
10:43:11.232 Initialize success
10:44:20.953 AVAST engine defs: 12053000
10:44:29.967 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
10:44:29.972 Disk 0 Vendor: OCZ-AGILITY2 1.11 Size: 57241MB BusType: 3
10:44:29.980 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP1T0L0-1
10:44:29.986 Disk 1 Vendor: WDC_WD7500AAKS-00RBA0 30.04G30 Size: 715404MB BusType: 3
10:44:29.995 Disk 2 \Device\Harddisk2\DR2 -> \Device\Ide\IdeDeviceP2T1L0-7
10:44:30.003 Disk 2 Vendor: ST31500341AS CC1H Size: 1430799MB BusType: 3
10:44:30.010 Disk 0 MBR read successfully
10:44:30.014 Disk 0 MBR scan
10:44:30.076 Disk 0 Windows 7 default MBR code
10:44:30.079 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 57239 MB offset 2048
10:44:30.119 Disk 0 scanning C:\Windows\system32\drivers
10:44:35.308 Service scanning
10:44:48.858 Modules scanning
10:44:48.880 Disk 0 trace - called modules:
10:44:48.887 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys >>UNKNOWN [0xfffffa8003f042c0]<<spjz.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
10:44:48.892 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800426d060]
10:44:48.898 3 CLASSPNP.SYS[fffff880013ae43f] -> nt!IofCallDriver -> [0xfffffa80041639b0]
10:44:48.903 5 ACPI.sys[fffff88000f05781] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa800426e060]
10:44:48.909 \Driver\atapi[0xfffffa8003facaf0] -> IRP_MJ_CREATE -> 0xfffffa8003f042c0
10:44:49.042 AVAST engine scan C:\Windows
10:44:50.894 AVAST engine scan C:\Windows\system32
10:47:17.819 AVAST engine scan C:\Windows\system32\drivers
10:47:25.974 AVAST engine scan C:\Users\david
10:48:41.253 AVAST engine scan C:\ProgramData
10:49:32.510 Scan finished successfully
10:49:51.671 Disk 0 MBR has been saved successfully to "F:\Users\david\Desktop\MBR.dat"
10:49:51.675 The log file has been saved successfully to "F:\Users\david\Desktop\aswMBR.txt"


Rogue Killer

RogueKiller V7.5.1 [05/28/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/
Blog: http://tigzyrk.blogspot.com

Operating System: Windows 7 (6.1.7600 ) 64 bits version
Started in : Normal mode
User: david [Admin rights]
Mode: HOSTSFix -- Date: 05/30/2012 10:50:51

¤¤¤ Bad processes: 0 ¤¤¤

¤¤¤ Driver: [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
127.0.0.1 localhost
::1 localhost
216.240.133.193 www.google-analytics.com.
216.240.133.193 ad-emea.doubleclick.net.
216.240.133.193 www.statcounter.com.
69.72.252.254 www.google-analytics.com.
69.72.252.254 ad-emea.doubleclick.net.
69.72.252.254 www.statcounter.com.


¤¤¤ Resetted HOSTS: ¤¤¤
127.0.0.1 localhost

Finished : << RKreport[1].txt >>
RKreport[1].txt

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:21 AM

Posted 30 May 2012 - 11:30 AM

Sptd.sys is safe.You can ignore it

You should be free from pop up ads by now :thumbsup:

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply


Download

MiniToolBox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#8 dvlucke

dvlucke
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:21 AM

Posted 30 May 2012 - 12:43 PM

As you noted, I am free of pop-up ads!

ESET didn't find anything, so there was no list to post.

Here is the MiniToolBox log:




MiniToolBox by Farbar Version: 14-01-2012
Ran by david (administrator) on 30-05-2012 at 12:36:13
Microsoft Windows 7 Ultimate (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost
127.0.0.1 localhost

========================= IP Configuration: ================================

Belkin USB Wireless Adaptor = Wireless Network Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : david-phenom
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Belkin USB Wireless Adaptor
Physical Address. . . . . . . . . : 94-44-52-5C-BB-6D
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::4556:91cb:527f:8fe7%13(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.101(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Wednesday, May 30, 2012 8:06:42 AM
Lease Expires . . . . . . . . . . : Wednesday, June 06, 2012 8:06:41 AM
Default Gateway . . . . . . . . . : fe80::86c9:b2ff:fe4f:b5f9%13
192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DNS Servers . . . . . . . . . . . : 192.168.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 20-CF-30-F0-D6-CD
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{7F5EA96C-F957-44E6-A4D3-B58E5E55D490}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:387c:1989:b53d:a830(Preferred)
Link-local IPv6 Address . . . . . : fe80::387c:1989:b53d:a830%12(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: UnKnown
Address: 192.168.0.1

Name: google.com
Addresses: 74.125.227.136
74.125.227.137
74.125.227.142
74.125.227.128
74.125.227.129
74.125.227.130
74.125.227.131
74.125.227.132
74.125.227.133
74.125.227.134
74.125.227.135


Pinging google.com [74.125.227.135] with 32 bytes of data:
Reply from 74.125.227.135: bytes=32 time=48ms TTL=49
Reply from 74.125.227.135: bytes=32 time=48ms TTL=49

Ping statistics for 74.125.227.135:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 48ms, Maximum = 48ms, Average = 48ms
Server: UnKnown
Address: 192.168.0.1

Name: yahoo.com
Addresses: 72.30.38.140
98.139.183.24
209.191.122.70


Pinging yahoo.com [209.191.122.70] with 32 bytes of data:
Reply from 209.191.122.70: bytes=32 time=43ms TTL=48
Reply from 209.191.122.70: bytes=32 time=47ms TTL=48

Ping statistics for 209.191.122.70:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 43ms, Maximum = 47ms, Average = 45ms
Server: UnKnown
Address: 192.168.0.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=4ms TTL=128
Reply from 127.0.0.1: bytes=32 time=3ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 3ms, Maximum = 4ms, Average = 3ms
===========================================================================
Interface List
13...94 44 52 5c bb 6d ......Belkin USB Wireless Adaptor
11...20 cf 30 f0 d6 cd ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.101 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.101 281
192.168.0.101 255.255.255.255 On-link 192.168.0.101 281
192.168.0.255 255.255.255.255 On-link 192.168.0.101 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.101 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.101 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
13 281 ::/0 fe80::86c9:b2ff:fe4f:b5f9
12 58 ::/0 On-link
1 306 ::1/128 On-link
12 58 2001::/32 On-link
12 306 2001:0:4137:9e76:387c:1989:b53d:a830/128
On-link
13 281 fe80::/64 On-link
12 306 fe80::/64 On-link
12 306 fe80::387c:1989:b53d:a830/128
On-link
13 281 fe80::4556:91cb:527f:8fe7/128
On-link
1 306 ff00::/8 On-link
12 306 ff00::/8 On-link
13 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [51712] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70144] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (05/30/2012 00:35:06 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (05/30/2012 00:03:27 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (05/30/2012 00:03:19 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (05/30/2012 00:03:12 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (05/30/2012 10:50:26 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (05/30/2012 10:38:56 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (05/30/2012 09:37:50 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (05/30/2012 08:06:48 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (05/30/2012 08:05:44 AM) (Source: Application Error) (User: )
Description: Faulting application name: Fuel.Service.exe, version: 1.0.0.0, time stamp: 0x4f7e4d8c
Faulting module name: Device.dll, version: 4.1.0.0, time stamp: 0x4f55e10b
Exception code: 0xc0000005
Fault offset: 0x00000000000033c1
Faulting process id: 0x7c0
Faulting application start time: 0xFuel.Service.exe0
Faulting application path: Fuel.Service.exe1
Faulting module path: Fuel.Service.exe2
Report Id: Fuel.Service.exe3

Error: (05/30/2012 08:05:12 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.


System errors:
=============
Error: (05/30/2012 11:47:05 AM) (Source: atapi) (User: )
Description: The driver detected a controller error on \Device\Ide\IdePort1.

Error: (05/30/2012 11:02:07 AM) (Source: volsnap) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

Error: (05/30/2012 08:05:44 AM) (Source: Service Control Manager) (User: )
Description: The AMD FUEL Service service terminated unexpectedly. It has done this 1 time(s).

Error: (05/30/2012 00:51:54 AM) (Source: Service Control Manager) (User: )
Description: The AMD FUEL Service service terminated unexpectedly. It has done this 1 time(s).

Error: (05/29/2012 07:20:06 PM) (Source: volsnap) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

Error: (05/29/2012 00:56:26 AM) (Source: Service Control Manager) (User: )
Description: The AMD FUEL Service service terminated unexpectedly. It has done this 1 time(s).

Error: (05/28/2012 06:07:45 PM) (Source: volsnap) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

Error: (05/28/2012 00:23:50 AM) (Source: Service Control Manager) (User: )
Description: The AMD FUEL Service service terminated unexpectedly. It has done this 1 time(s).

Error: (05/27/2012 08:59:09 PM) (Source: volsnap) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

Error: (05/27/2012 00:29:56 PM) (Source: Service Control Manager) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Search service, but this action failed with the following error:
%%1056


Microsoft Office Sessions:
=========================
Error: (05/30/2012 00:35:06 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (05/30/2012 00:03:27 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestF:\Downloads\esetsmartinstaller_enu.exe

Error: (05/30/2012 00:03:19 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestF:\Downloads\esetsmartinstaller_enu.exe

Error: (05/30/2012 00:03:12 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (05/30/2012 10:50:26 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (05/30/2012 10:38:56 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (05/30/2012 09:37:50 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (05/30/2012 08:06:48 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (05/30/2012 08:05:44 AM) (Source: Application Error)(User: )
Description: Fuel.Service.exe1.0.0.04f7e4d8cDevice.dll4.1.0.04f55e10bc000000500000000000033c17c001cd3e6077b3b2b7C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll2a007f30-aa58-11e1-a42d-20cf30f0d6cd

Error: (05/30/2012 08:05:12 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.


=========================== Installed Programs ============================

µTorrent (Version: 3.1.3)
7-Zip 4.57
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
Acer eDisplay Management (Version: 1.20.011)
Adobe AIR (Version: 1.5.3.9120)
Adobe Anchor Service CS4 (Version: 2.0)
Adobe Anchor Service x64 CS4 (Version: 2.0)
Adobe Bridge CS4 (Version: 3)
Adobe CMaps CS4 (Version: 2.0)
Adobe CMaps x64 CS4 (Version: 2.0)
Adobe Color - Photoshop Specific CS4 (Version: 2.0)
Adobe Color EU Extra Settings CS4 (Version: 2.0)
Adobe Color JA Extra Settings CS4 (Version: 2.0)
Adobe Color NA Recommended Settings CS4 (Version: 2.0)
Adobe Community Help (Version: 3.0.0)
Adobe Community Help (Version: 3.0.0.400)
Adobe CSI CS4 (Version: 1)
Adobe CSI CS4 x64 (Version: 1)
Adobe Default Language CS4 (Version: 2.0)
Adobe Device Central CS4 (Version: 2)
Adobe Drive CS4 (Version: 1)
Adobe Drive CS4 x64 (Version: 1)
Adobe ExtendScript Toolkit CS4 (Version: 3.0.0)
Adobe Extension Manager CS4 (Version: 2.0)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.2.202.235)
Adobe Flash Player 11 Plugin 64-bit (Version: 11.2.202.235)
Adobe Fonts All (Version: 2.0)
Adobe Fonts All x64 (Version: 2.0)
Adobe Linguistics CS4 (Version: 4.0.0)
Adobe Linguistics CS4 x64 (Version: 4.0.0)
Adobe Media Player (Version: 1.8)
Adobe Output Module (Version: 2.0)
Adobe PDF Library Files CS4 (Version: 9.0)
Adobe PDF Library Files x64 CS4 (Version: 9.0)
Adobe Photoshop CS4 (64 Bit) (Version: 11.0)
Adobe Photoshop CS4 (Version: 11.0)
Adobe Photoshop CS4 Support (Version: 11.0)
Adobe Photoshop CS5 (Version: 12.0)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Adobe Search for Help (Version: 1.0)
Adobe Service Manager Extension (Version: 1.0)
Adobe Setup (Version: 2.0)
Adobe Type Support CS4 (Version: 9.0)
Adobe Type Support x64 CS4 (Version: 9.0)
Adobe Update Manager CS4 (Version: 6.0.0)
Adobe WinSoft Linguistics Plugin (Version: 1.1)
Adobe WinSoft Linguistics Plugin x64 (Version: 1.1)
Adobe XMP Panels CS4 (Version: 2.0)
AdobeColorCommonSetCMYK (Version: 2.0)
AMD Accelerated Video Transcoding (Version: 2.00.0002)
AMD APP SDK Runtime (Version: 10.0.923.1)
AMD Catalyst Install Manager (Version: 8.0.873.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Fuel (Version: 2012.0405.2205.37728)
AMD Media Foundation Decoders (Version: 1.0.70405.2224)
AMD VISION Engine Control Center (Version: 2012.0405.2205.37728)
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
ATI Catalyst Registration (Version: 3.00.0000)
AVG 2012 (Version: 12.0.1901)
AVG 2012 (Version: 12.0.1913)
AVG 2012 (Version: 12.0.2425)
AVG 2012 (Version: 2012.0.1913)
Belkin USB Wireless Adaptor (Version: 1.0.0.10)
Bonjour (Version: 3.0.0.10)
Browser Configuration Utility (Version: 1.0.12.1)
calibre (Version: 0.8.41)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2012.0405.2205.37728)
Catalyst Control Center InstallProxy (Version: 2012.0405.2205.37728)
Catalyst Control Center Localization All (Version: 2012.0405.2205.37728)
ccc-utility64 (Version: 2012.0405.2205.37728)
CCC Help Chinese Standard (Version: 2012.0405.2204.37728)
CCC Help Chinese Traditional (Version: 2012.0405.2204.37728)
CCC Help Czech (Version: 2012.0405.2204.37728)
CCC Help Danish (Version: 2012.0405.2204.37728)
CCC Help Dutch (Version: 2012.0405.2204.37728)
CCC Help English (Version: 2012.0405.2204.37728)
CCC Help Finnish (Version: 2012.0405.2204.37728)
CCC Help French (Version: 2012.0405.2204.37728)
CCC Help German (Version: 2012.0405.2204.37728)
CCC Help Greek (Version: 2012.0405.2204.37728)
CCC Help Hungarian (Version: 2012.0405.2204.37728)
CCC Help Italian (Version: 2012.0405.2204.37728)
CCC Help Japanese (Version: 2012.0405.2204.37728)
CCC Help Korean (Version: 2012.0405.2204.37728)
CCC Help Norwegian (Version: 2012.0405.2204.37728)
CCC Help Polish (Version: 2012.0405.2204.37728)
CCC Help Portuguese (Version: 2012.0405.2204.37728)
CCC Help Russian (Version: 2012.0405.2204.37728)
CCC Help Spanish (Version: 2012.0405.2204.37728)
CCC Help Swedish (Version: 2012.0405.2204.37728)
CCC Help Thai (Version: 2012.0405.2204.37728)
CCC Help Turkish (Version: 2012.0405.2204.37728)
CCleaner (Version: 3.19)
Connect (Version: 1.0.0.1)
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition
Disk Space Fan 4 (4.1.2.102)
Dropbox (Version: 1.2.52)
ESET Online Scanner v3
Foxit Reader (Version: 4.3.1.118)
GFI Backup 2009 - Home Edition (Version: 3.0)
Google Chrome (Version: 19.0.1084.52)
Google SketchUp 8 (Version: 3.0.11752)
GPU Boost Driver (Version: 1.01.15)
ImgBurn (Version: 2.5.4.0)
Instant Wireless USB Adapter
iTunes (Version: 10.6.1.7)
Java Auto Updater (Version: 2.0.2.4)
Java™ 6 Update 23 (Version: 6.0.230)
Java™ 6 Update 31 (64-bit) (Version: 6.0.310)
kuler (Version: 2.0)
Linksys Wireless-G PCI Adapter
MagicDisc 2.7.106
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Home and Student 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 32-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Minecraft Launcher (Version: 1.0.0.17)
Mozilla Firefox 12.0 (x86 en-US) (Version: 12.0)
Mozilla Maintenance Service (Version: 12.0)
Nexus Mod Manager (Version: 0.17.1)
NVIDIA Install Application (Version: 2.0.14.0)
NVIDIA PhysX (Version: 9.10.0514)
NVIDIA PhysX System Software 9.10.0514 (Version: 9.10.0514)
PDF Settings CS4 (Version: 9.0)
PDF Settings CS5 (Version: 10.0)
Peggle Deluxe
Photoshop Camera Raw (Version: 5.0)
Photoshop Camera Raw_x64 (Version: 5.0)
Pivot Software (Version: 8.21.013)
QuickTime (Version: 7.72.80.56)
Realtek Ethernet Controller Driver For Windows 7 (Version: 7.23.623.2010)
Realtek High Definition Audio Driver (Version: 6.0.1.6151)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.0.4.0)
Revo Uninstaller 1.94 (Version: 1.94)
SDK (Version: 2.05.004)
SeaTools for Windows (Version: 1.2.0.4)
Secunia PSI (2.0.0.4003) (Version: 2.0.0.4003)
Skype™ 5.0 (Version: 5.0.156)
Soluto (Version: 1.3.729.0)
Suite Shared Configuration CS4 (Version: 1.0)
TeamViewer 7 (Version: 7.0.12979)
The Lord of the Rings FREE Trial (Version: 1.00.0000)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 64-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 64-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 64-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 64-Bit Edition
Update for Microsoft Office 2010 (KB2553385) 64-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2597091) 64-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 64-Bit Edition
Update for Microsoft OneNote 2010 (KB2589345) 64-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 64-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 64-Bit Edition
Ventrilo Client for Windows x64 (Version: 3.0.8.0)
ViewSonic Monitor Drivers x64
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
VLC media player 2.0.1 (Version: 2.0.1)

========================= Memory info: ===================================

Percentage of memory in use: 70%
Total physical RAM: 4095.18 MB
Available physical RAM: 1201.32 MB
Total Pagefile: 8188.49 MB
Available Pagefile: 4851.09 MB
Total Virtual: 4095.88 MB
Available Virtual: 3966.31 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:55.9 GB) (Free:8.32 GB) NTFS
3 Drive f: (New Volume) (Fixed) (Total:1397.26 GB) (Free:1086.14 GB) NTFS

========================= Users: ========================================

User accounts for \\DAVID-PHENOM

Administrator ASPNET david
Guest


**** End of log ****

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:21 AM

Posted 30 May 2012 - 03:19 PM

That looks good

Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp



Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#10 dvlucke

dvlucke
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:21 AM

Posted 30 May 2012 - 04:12 PM

Thanks so much for your help. I can finally browse in peace.

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:21 AM

Posted 30 May 2012 - 04:26 PM

You're most welcome ,stay safe :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users