Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google redirect virus


  • Please log in to reply
9 replies to this topic

#1 Jonnygr

Jonnygr

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:08:19 PM

Posted 28 February 2012 - 08:46 AM

My normal antivirus is AVG, which popped up with an error yesterday, after that I noticed that firefox redirected any of my google searches. I restored to a week previous and scanned with Malware bytes, AVG, spybotS&D and OTM moved some files. Im posting from a seperate laptop now as I disconnected the internet from the infected PC. What should I do next?

Thank you

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:19 PM

Posted 28 February 2012 - 08:51 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Please download GMER from here(doesnot work on 64 bit OS)

http://www2.gmer.net/download.php

Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.

GMER will open to the Rootkit/Malware tab and perform an automatic Full Scan when first run. (do not use the computer while the scan is in progress)

If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
Now click the Scan button. If you see a rootkit warning window, click OK.
When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
Click the Copy button and paste the results into your next reply.


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Edited by narenxp, 28 February 2012 - 08:51 AM.


#3 Jonnygr

Jonnygr
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:08:19 PM

Posted 28 February 2012 - 08:54 AM

TDSSkiller log:

13:32:19.0112 5076 TDSS rootkit removing tool 2.7.15.0 Feb 27 2012 12:59:02
13:32:19.0127 5076 ============================================================
13:32:19.0127 5076 Current date / time: 2012/02/28 13:32:19.0127
13:32:19.0127 5076 SystemInfo:
13:32:19.0127 5076
13:32:19.0127 5076 OS Version: 6.1.7601 ServicePack: 1.0
13:32:19.0127 5076 Product type: Workstation
13:32:19.0127 5076 ComputerName: JONNYPC
13:32:19.0127 5076 UserName: Administrator
13:32:19.0127 5076 Windows directory: C:\Windows
13:32:19.0127 5076 System windows directory: C:\Windows
13:32:19.0127 5076 Running under WOW64
13:32:19.0127 5076 Processor architecture: Intel x64
13:32:19.0127 5076 Number of processors: 2
13:32:19.0127 5076 Page size: 0x1000
13:32:19.0127 5076 Boot type: Normal boot
13:32:19.0127 5076 ============================================================
13:32:19.0362 5076 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:32:19.0377 5076 \Device\Harddisk0\DR0:
13:32:19.0377 5076 MBR used
13:32:19.0377 5076 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A385000
13:32:19.0393 5076 Initialize success
13:32:19.0393 5076 ============================================================
13:38:19.0221 4216 ============================================================
13:38:19.0221 4216 Scan started
13:38:19.0221 4216 Mode: Manual; TDLFS;
13:38:19.0221 4216 ============================================================
13:38:19.0862 4216 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
13:38:19.0893 4216 1394ohci - ok
13:38:19.0909 4216 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
13:38:19.0909 4216 ACPI - ok
13:38:19.0940 4216 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
13:38:19.0940 4216 AcpiPmi - ok
13:38:19.0987 4216 adfs (2f0683fd2df1d92e891caca14b45a8c1) C:\Windows\system32\drivers\adfs.sys
13:38:20.0002 4216 adfs - ok
13:38:20.0049 4216 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
13:38:20.0081 4216 adp94xx - ok
13:38:20.0112 4216 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
13:38:20.0127 4216 adpahci - ok
13:38:20.0159 4216 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
13:38:20.0159 4216 adpu320 - ok
13:38:20.0221 4216 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
13:38:20.0252 4216 AFD - ok
13:38:20.0268 4216 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
13:38:20.0284 4216 agp440 - ok
13:38:20.0299 4216 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
13:38:20.0315 4216 aliide - ok
13:38:20.0331 4216 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
13:38:20.0331 4216 amdide - ok
13:38:20.0346 4216 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
13:38:20.0346 4216 AmdK8 - ok
13:38:20.0377 4216 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
13:38:20.0377 4216 AmdPPM - ok
13:38:20.0409 4216 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
13:38:20.0440 4216 amdsata - ok
13:38:20.0456 4216 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
13:38:20.0471 4216 amdsbs - ok
13:38:20.0502 4216 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
13:38:20.0502 4216 amdxata - ok
13:38:20.0534 4216 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
13:38:20.0549 4216 AppID - ok
13:38:20.0612 4216 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
13:38:20.0643 4216 arc - ok
13:38:20.0659 4216 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
13:38:20.0674 4216 arcsas - ok
13:38:20.0721 4216 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
13:38:20.0721 4216 AsyncMac - ok
13:38:20.0752 4216 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
13:38:20.0752 4216 atapi - ok
13:38:20.0752 4216 athur - ok
13:38:20.0815 4216 AVGIDSDriver (e29ea1a0ec7ab9fa2dc7e75a03f12a4f) C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys
13:38:20.0831 4216 AVGIDSDriver - ok
13:38:20.0862 4216 AVGIDSEH (f823d184b8e8ffb8da3ead45dbf5bd6a) C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
13:38:20.0862 4216 AVGIDSEH - ok
13:38:20.0893 4216 AVGIDSFilter (ed2b25bd7fe35d1944211968842d30da) C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys
13:38:20.0909 4216 AVGIDSFilter - ok
13:38:20.0940 4216 Avgldx64 (979cf8912449a10b987218bff80a1fa3) C:\Windows\system32\DRIVERS\avgldx64.sys
13:38:20.0956 4216 Avgldx64 - ok
13:38:20.0971 4216 Avgmfx64 (36b1a5843695766eac714daffc5b84d1) C:\Windows\system32\DRIVERS\avgmfx64.sys
13:38:20.0971 4216 Avgmfx64 - ok
13:38:20.0987 4216 Avgrkx64 (1102239fb724527f1febbbbccf6bf313) C:\Windows\system32\DRIVERS\avgrkx64.sys
13:38:20.0987 4216 Avgrkx64 - ok
13:38:21.0002 4216 Avgtdia (11f36d3ea82d9db9aa05a476a210551b) C:\Windows\system32\DRIVERS\avgtdia.sys
13:38:21.0018 4216 Avgtdia - ok
13:38:21.0065 4216 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
13:38:21.0081 4216 b06bdrv - ok
13:38:21.0112 4216 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
13:38:21.0127 4216 b57nd60a - ok
13:38:21.0159 4216 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
13:38:21.0159 4216 Beep - ok
13:38:21.0206 4216 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
13:38:21.0206 4216 blbdrive - ok
13:38:21.0299 4216 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
13:38:21.0299 4216 bowser - ok
13:38:21.0331 4216 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
13:38:21.0346 4216 BrFiltLo - ok
13:38:21.0362 4216 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
13:38:21.0377 4216 BrFiltUp - ok
13:38:21.0409 4216 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
13:38:21.0424 4216 BridgeMP - ok
13:38:21.0456 4216 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
13:38:21.0471 4216 Brserid - ok
13:38:21.0487 4216 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
13:38:21.0502 4216 BrSerWdm - ok
13:38:21.0502 4216 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
13:38:21.0518 4216 BrUsbMdm - ok
13:38:21.0518 4216 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
13:38:21.0534 4216 BrUsbSer - ok
13:38:21.0549 4216 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
13:38:21.0565 4216 BTHMODEM - ok
13:38:21.0581 4216 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
13:38:21.0581 4216 cdfs - ok
13:38:21.0612 4216 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
13:38:21.0627 4216 cdrom - ok
13:38:21.0659 4216 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
13:38:21.0659 4216 circlass - ok
13:38:21.0690 4216 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
13:38:21.0706 4216 CLFS - ok
13:38:21.0768 4216 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
13:38:21.0768 4216 CmBatt - ok
13:38:21.0799 4216 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
13:38:21.0815 4216 cmdide - ok
13:38:21.0909 4216 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
13:38:21.0924 4216 CNG - ok
13:38:21.0940 4216 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
13:38:21.0956 4216 Compbatt - ok
13:38:21.0987 4216 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
13:38:21.0987 4216 CompositeBus - ok
13:38:22.0018 4216 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
13:38:22.0018 4216 crcdisk - ok
13:38:22.0081 4216 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
13:38:22.0081 4216 DfsC - ok
13:38:22.0127 4216 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
13:38:22.0143 4216 discache - ok
13:38:22.0159 4216 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
13:38:22.0159 4216 Disk - ok
13:38:22.0190 4216 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
13:38:22.0190 4216 drmkaud - ok
13:38:22.0237 4216 dtsoftbus01 (fb9bef3401ee5ecc2603311b9c64f44a) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
13:38:22.0237 4216 dtsoftbus01 - ok
13:38:22.0299 4216 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
13:38:22.0331 4216 DXGKrnl - ok
13:38:22.0440 4216 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
13:38:22.0471 4216 ebdrv - ok
13:38:22.0502 4216 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
13:38:22.0518 4216 elxstor - ok
13:38:22.0549 4216 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
13:38:22.0565 4216 ErrDev - ok
13:38:22.0612 4216 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
13:38:22.0627 4216 exfat - ok
13:38:22.0659 4216 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
13:38:22.0659 4216 fastfat - ok
13:38:22.0690 4216 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
13:38:22.0706 4216 fdc - ok
13:38:22.0737 4216 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
13:38:22.0737 4216 FileInfo - ok
13:38:22.0752 4216 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
13:38:22.0752 4216 Filetrace - ok
13:38:22.0799 4216 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
13:38:22.0815 4216 flpydisk - ok
13:38:22.0893 4216 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
13:38:22.0893 4216 FltMgr - ok
13:38:22.0924 4216 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
13:38:22.0940 4216 FsDepends - ok
13:38:22.0956 4216 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
13:38:22.0956 4216 Fs_Rec - ok
13:38:23.0002 4216 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
13:38:23.0002 4216 fvevol - ok
13:38:23.0034 4216 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
13:38:23.0034 4216 gagp30kx - ok
13:38:23.0065 4216 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
13:38:23.0081 4216 GEARAspiWDM - ok
13:38:23.0127 4216 hamachi (1e6438d4ea6e1174a3b3b1edc4de660b) C:\Windows\system32\DRIVERS\hamachi.sys
13:38:23.0143 4216 hamachi - ok
13:38:23.0190 4216 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
13:38:23.0206 4216 hcw85cir - ok
13:38:23.0252 4216 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
13:38:23.0252 4216 HDAudBus - ok
13:38:23.0268 4216 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
13:38:23.0284 4216 HidBatt - ok
13:38:23.0315 4216 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
13:38:23.0315 4216 HidBth - ok
13:38:23.0331 4216 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
13:38:23.0346 4216 HidIr - ok
13:38:23.0377 4216 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
13:38:23.0393 4216 HidUsb - ok
13:38:23.0440 4216 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
13:38:23.0440 4216 HpSAMD - ok
13:38:23.0502 4216 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
13:38:23.0518 4216 HTTP - ok
13:38:23.0549 4216 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
13:38:23.0549 4216 hwpolicy - ok
13:38:23.0581 4216 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
13:38:23.0581 4216 i8042prt - ok
13:38:23.0612 4216 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
13:38:23.0627 4216 iaStorV - ok
13:38:23.0690 4216 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
13:38:23.0706 4216 iirsp - ok
13:38:23.0784 4216 IntcAzAudAddService (f2b52c7b1c8e6a4fc4c4564f4a421f23) C:\Windows\system32\drivers\RTKVHD64.sys
13:38:23.0815 4216 IntcAzAudAddService - ok
13:38:23.0831 4216 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
13:38:23.0846 4216 intelide - ok
13:38:23.0877 4216 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
13:38:23.0877 4216 intelppm - ok
13:38:23.0924 4216 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:38:23.0940 4216 IpFilterDriver - ok
13:38:23.0956 4216 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
13:38:23.0971 4216 IPMIDRV - ok
13:38:23.0987 4216 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
13:38:24.0002 4216 IPNAT - ok
13:38:24.0034 4216 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
13:38:24.0034 4216 IRENUM - ok
13:38:24.0049 4216 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
13:38:24.0065 4216 isapnp - ok
13:38:24.0081 4216 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
13:38:24.0096 4216 iScsiPrt - ok
13:38:24.0143 4216 JSWPSLWF (5be640e88814b77a9e84b4549b5dcc2c) C:\Windows\system32\DRIVERS\jswpslwfx.sys
13:38:24.0159 4216 JSWPSLWF - ok
13:38:24.0190 4216 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
13:38:24.0206 4216 kbdclass - ok
13:38:24.0206 4216 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
13:38:24.0221 4216 kbdhid - ok
13:38:24.0252 4216 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
13:38:24.0268 4216 KSecDD - ok
13:38:24.0284 4216 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
13:38:24.0284 4216 KSecPkg - ok
13:38:24.0299 4216 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
13:38:24.0315 4216 ksthunk - ok
13:38:24.0362 4216 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
13:38:24.0362 4216 lltdio - ok
13:38:24.0409 4216 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
13:38:24.0424 4216 LSI_FC - ok
13:38:24.0440 4216 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
13:38:24.0440 4216 LSI_SAS - ok
13:38:24.0471 4216 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
13:38:24.0471 4216 LSI_SAS2 - ok
13:38:24.0502 4216 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
13:38:24.0502 4216 LSI_SCSI - ok
13:38:24.0518 4216 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
13:38:24.0534 4216 luafv - ok
13:38:24.0549 4216 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
13:38:24.0549 4216 megasas - ok
13:38:24.0581 4216 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
13:38:24.0596 4216 MegaSR - ok
13:38:24.0612 4216 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
13:38:24.0612 4216 Modem - ok
13:38:24.0643 4216 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
13:38:24.0643 4216 monitor - ok
13:38:24.0674 4216 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
13:38:24.0674 4216 mouclass - ok
13:38:24.0690 4216 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
13:38:24.0706 4216 mouhid - ok
13:38:24.0737 4216 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
13:38:24.0752 4216 mountmgr - ok
13:38:24.0784 4216 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
13:38:24.0799 4216 mpio - ok
13:38:24.0815 4216 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
13:38:24.0831 4216 mpsdrv - ok
13:38:24.0862 4216 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
13:38:24.0877 4216 MRxDAV - ok
13:38:24.0924 4216 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
13:38:24.0924 4216 mrxsmb - ok
13:38:25.0002 4216 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:38:25.0002 4216 mrxsmb10 - ok
13:38:25.0034 4216 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:38:25.0034 4216 mrxsmb20 - ok
13:38:25.0065 4216 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
13:38:25.0065 4216 msahci - ok
13:38:25.0096 4216 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
13:38:25.0112 4216 msdsm - ok
13:38:25.0143 4216 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
13:38:25.0143 4216 Msfs - ok
13:38:25.0174 4216 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
13:38:25.0174 4216 mshidkmdf - ok
13:38:25.0190 4216 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
13:38:25.0190 4216 msisadrv - ok
13:38:25.0221 4216 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
13:38:25.0221 4216 MSKSSRV - ok
13:38:25.0237 4216 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
13:38:25.0252 4216 MSPCLOCK - ok
13:38:25.0268 4216 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
13:38:25.0268 4216 MSPQM - ok
13:38:25.0299 4216 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
13:38:25.0315 4216 MsRPC - ok
13:38:25.0331 4216 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
13:38:25.0331 4216 mssmbios - ok
13:38:25.0346 4216 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
13:38:25.0362 4216 MSTEE - ok
13:38:25.0377 4216 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
13:38:25.0393 4216 MTConfig - ok
13:38:25.0409 4216 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
13:38:25.0409 4216 Mup - ok
13:38:25.0471 4216 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
13:38:25.0487 4216 NativeWifiP - ok
13:38:25.0549 4216 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
13:38:25.0581 4216 NDIS - ok
13:38:25.0596 4216 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
13:38:25.0596 4216 NdisCap - ok
13:38:25.0612 4216 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
13:38:25.0627 4216 NdisTapi - ok
13:38:25.0659 4216 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
13:38:25.0674 4216 Ndisuio - ok
13:38:25.0706 4216 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
13:38:25.0721 4216 NdisWan - ok
13:38:25.0768 4216 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
13:38:25.0784 4216 NDProxy - ok
13:38:25.0815 4216 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
13:38:25.0815 4216 NetBIOS - ok
13:38:25.0831 4216 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
13:38:25.0846 4216 NetBT - ok
13:38:25.0893 4216 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
13:38:25.0893 4216 nfrd960 - ok
13:38:25.0909 4216 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
13:38:25.0909 4216 Npfs - ok
13:38:25.0940 4216 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
13:38:25.0940 4216 nsiproxy - ok
13:38:26.0018 4216 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
13:38:26.0034 4216 Ntfs - ok
13:38:26.0049 4216 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
13:38:26.0049 4216 Null - ok
13:38:26.0315 4216 nvlddmkm (88e141b9df63c41ea272b2f712d1a227) C:\Windows\system32\DRIVERS\nvlddmkm.sys
13:38:26.0565 4216 nvlddmkm - ok
13:38:26.0643 4216 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
13:38:26.0659 4216 nvraid - ok
13:38:26.0706 4216 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
13:38:26.0737 4216 nvstor - ok
13:38:26.0815 4216 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
13:38:26.0831 4216 nv_agp - ok
13:38:26.0862 4216 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
13:38:26.0877 4216 ohci1394 - ok
13:38:26.0924 4216 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
13:38:26.0924 4216 Parport - ok
13:38:26.0971 4216 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
13:38:26.0971 4216 partmgr - ok
13:38:27.0002 4216 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
13:38:27.0002 4216 pci - ok
13:38:27.0018 4216 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
13:38:27.0018 4216 pciide - ok
13:38:27.0049 4216 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
13:38:27.0065 4216 pcmcia - ok
13:38:27.0081 4216 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
13:38:27.0096 4216 pcw - ok
13:38:27.0127 4216 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
13:38:27.0143 4216 PEAUTH - ok
13:38:27.0221 4216 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
13:38:27.0237 4216 PptpMiniport - ok
13:38:27.0252 4216 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
13:38:27.0268 4216 Processor - ok
13:38:27.0315 4216 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
13:38:27.0331 4216 Psched - ok
13:38:27.0393 4216 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
13:38:27.0424 4216 ql2300 - ok
13:38:27.0456 4216 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
13:38:27.0456 4216 ql40xx - ok
13:38:27.0487 4216 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
13:38:27.0487 4216 QWAVEdrv - ok
13:38:27.0502 4216 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
13:38:27.0518 4216 RasAcd - ok
13:38:27.0549 4216 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
13:38:27.0549 4216 RasAgileVpn - ok
13:38:27.0581 4216 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
13:38:27.0596 4216 Rasl2tp - ok
13:38:27.0612 4216 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
13:38:27.0627 4216 RasPppoe - ok
13:38:27.0643 4216 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
13:38:27.0643 4216 RasSstp - ok
13:38:27.0690 4216 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
13:38:27.0706 4216 rdbss - ok
13:38:27.0721 4216 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
13:38:27.0737 4216 rdpbus - ok
13:38:27.0752 4216 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
13:38:27.0752 4216 RDPCDD - ok
13:38:27.0784 4216 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
13:38:27.0784 4216 RDPENCDD - ok
13:38:27.0815 4216 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
13:38:27.0815 4216 RDPREFMP - ok
13:38:27.0846 4216 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
13:38:27.0862 4216 RDPWD - ok
13:38:27.0893 4216 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
13:38:27.0909 4216 rdyboost - ok
13:38:27.0940 4216 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
13:38:27.0940 4216 rspndr - ok
13:38:27.0987 4216 RTL8167 (4b42bc58294e83a6a92ec8b88c14c4a3) C:\Windows\system32\DRIVERS\Rt64win7.sys
13:38:28.0018 4216 RTL8167 - ok
13:38:28.0065 4216 RTL8169 (82b66abf055611024e5dbb9fa556c11d) C:\Windows\system32\DRIVERS\Rtlh64.sys
13:38:28.0065 4216 RTL8169 - ok
13:38:28.0096 4216 s616bus (3b50c84f0a19944e9bcc48ef90e4c237) C:\Windows\system32\DRIVERS\s616bus.sys
13:38:28.0096 4216 s616bus - ok
13:38:28.0127 4216 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
13:38:28.0143 4216 sbp2port - ok
13:38:28.0174 4216 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
13:38:28.0174 4216 scfilter - ok
13:38:28.0190 4216 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
13:38:28.0190 4216 secdrv - ok
13:38:28.0221 4216 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
13:38:28.0237 4216 Serenum - ok
13:38:28.0252 4216 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
13:38:28.0268 4216 Serial - ok
13:38:28.0284 4216 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
13:38:28.0299 4216 sermouse - ok
13:38:28.0315 4216 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
13:38:28.0331 4216 sffdisk - ok
13:38:28.0346 4216 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
13:38:28.0346 4216 sffp_mmc - ok
13:38:28.0346 4216 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
13:38:28.0362 4216 sffp_sd - ok
13:38:28.0377 4216 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
13:38:28.0377 4216 sfloppy - ok
13:38:28.0409 4216 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
13:38:28.0424 4216 SiSRaid2 - ok
13:38:28.0440 4216 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
13:38:28.0440 4216 SiSRaid4 - ok
13:38:28.0487 4216 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
13:38:28.0502 4216 Smb - ok
13:38:28.0534 4216 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
13:38:28.0534 4216 spldr - ok
13:38:28.0596 4216 sptd (34f974f8b3c86de03a30dcbe79091c97) C:\Windows\system32\Drivers\sptd.sys
13:38:28.0627 4216 sptd - ok
13:38:28.0674 4216 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
13:38:28.0674 4216 srv - ok
13:38:28.0706 4216 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
13:38:28.0706 4216 srv2 - ok
13:38:28.0737 4216 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
13:38:28.0737 4216 srvnet - ok
13:38:28.0893 4216 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
13:38:28.0909 4216 stexstor - ok
13:38:28.0971 4216 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
13:38:29.0002 4216 swenum - ok
13:38:29.0096 4216 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
13:38:29.0127 4216 Tcpip - ok
13:38:29.0174 4216 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
13:38:29.0190 4216 TCPIP6 - ok
13:38:29.0206 4216 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
13:38:29.0221 4216 tcpipreg - ok
13:38:29.0237 4216 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
13:38:29.0252 4216 TDPIPE - ok
13:38:29.0268 4216 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
13:38:29.0268 4216 TDTCP - ok
13:38:29.0315 4216 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
13:38:29.0315 4216 tdx - ok
13:38:29.0331 4216 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
13:38:29.0346 4216 TermDD - ok
13:38:29.0377 4216 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
13:38:29.0409 4216 tssecsrv - ok
13:38:29.0440 4216 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
13:38:29.0456 4216 TsUsbFlt - ok
13:38:29.0518 4216 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
13:38:29.0534 4216 tunnel - ok
13:38:29.0565 4216 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
13:38:29.0565 4216 uagp35 - ok
13:38:29.0612 4216 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
13:38:29.0643 4216 udfs - ok
13:38:29.0674 4216 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
13:38:29.0674 4216 uliagpkx - ok
13:38:29.0706 4216 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
13:38:29.0721 4216 umbus - ok
13:38:29.0737 4216 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
13:38:29.0737 4216 UmPass - ok
13:38:29.0799 4216 USBAAPL64 (f724b03c3dfaacf08d17d38bf3333583) C:\Windows\system32\Drivers\usbaapl64.sys
13:38:29.0799 4216 USBAAPL64 - ok
13:38:29.0831 4216 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
13:38:29.0831 4216 usbccgp - ok
13:38:29.0846 4216 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
13:38:29.0862 4216 usbcir - ok
13:38:29.0877 4216 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
13:38:29.0877 4216 usbehci - ok
13:38:29.0909 4216 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
13:38:29.0909 4216 usbhub - ok
13:38:29.0924 4216 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
13:38:29.0924 4216 usbohci - ok
13:38:29.0956 4216 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
13:38:29.0956 4216 usbprint - ok
13:38:29.0987 4216 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:38:29.0987 4216 USBSTOR - ok
13:38:30.0002 4216 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
13:38:30.0002 4216 usbuhci - ok
13:38:30.0065 4216 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
13:38:30.0081 4216 usbvideo - ok
13:38:30.0127 4216 usb_rndisx (70d05ee263568a742d14e1876df80532) C:\Windows\system32\DRIVERS\usb8023x.sys
13:38:30.0143 4216 usb_rndisx - ok
13:38:30.0174 4216 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
13:38:30.0174 4216 vdrvroot - ok
13:38:30.0206 4216 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
13:38:30.0221 4216 vga - ok
13:38:30.0237 4216 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
13:38:30.0252 4216 VgaSave - ok
13:38:30.0284 4216 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
13:38:30.0299 4216 vhdmp - ok
13:38:30.0315 4216 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
13:38:30.0331 4216 viaide - ok
13:38:30.0346 4216 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
13:38:30.0346 4216 volmgr - ok
13:38:30.0377 4216 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
13:38:30.0393 4216 volmgrx - ok
13:38:30.0409 4216 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
13:38:30.0409 4216 volsnap - ok
13:38:30.0424 4216 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
13:38:30.0440 4216 vsmraid - ok
13:38:30.0456 4216 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
13:38:30.0471 4216 vwifibus - ok
13:38:30.0471 4216 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
13:38:30.0487 4216 vwififlt - ok
13:38:30.0518 4216 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
13:38:30.0534 4216 WacomPen - ok
13:38:30.0565 4216 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
13:38:30.0565 4216 WANARP - ok
13:38:30.0565 4216 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
13:38:30.0565 4216 Wanarpv6 - ok
13:38:30.0627 4216 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
13:38:30.0627 4216 Wd - ok
13:38:30.0659 4216 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
13:38:30.0659 4216 Wdf01000 - ok
13:38:30.0690 4216 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
13:38:30.0706 4216 WfpLwf - ok
13:38:30.0721 4216 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
13:38:30.0721 4216 WIMMount - ok
13:38:30.0831 4216 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
13:38:30.0846 4216 WinUsb - ok
13:38:30.0877 4216 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
13:38:30.0877 4216 WmiAcpi - ok
13:38:30.0924 4216 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
13:38:30.0924 4216 ws2ifsl - ok
13:38:30.0971 4216 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
13:38:31.0002 4216 WudfPf - ok
13:38:31.0049 4216 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
13:38:31.0049 4216 WUDFRd - ok
13:38:31.0096 4216 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
13:38:31.0221 4216 \Device\Harddisk0\DR0 - ok
13:38:31.0221 4216 Boot (0x1200) (edbc3bc12130a2356d1251f1d9ae9b95) \Device\Harddisk0\DR0\Partition0
13:38:31.0221 4216 \Device\Harddisk0\DR0\Partition0 - ok
13:38:31.0237 4216 ============================================================
13:38:31.0237 4216 Scan finished
13:38:31.0237 4216 ============================================================
13:38:31.0252 4144 Detected object count: 0
13:38:31.0252 4144 Actual detected object count: 0
13:43:25.0902 5072 Deinitialize success




and asw log:

aswMBR version 0.9.9.1649 Copyright© 2011 AVAST Software
Run date: 2012-02-28 13:50:10
-----------------------------
13:50:10.498 OS Version: Windows x64 6.1.7601 Service Pack 1
13:50:10.498 Number of processors: 2 586 0x402
13:50:10.498 ComputerName: JONNYPC UserName:
13:50:11.404 Initialize success
13:50:23.756 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
13:50:23.756 Disk 0 Vendor: SAMSUNG_HD502HI 1AG01118 Size: 476940MB BusType: 3
13:50:23.772 Disk 0 MBR read successfully
13:50:23.772 Disk 0 MBR scan
13:50:23.788 Disk 0 Windows 7 default MBR code
13:50:23.788 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 476938 MB offset 2048
13:50:23.803 Disk 0 scanning C:\Windows\system32\drivers
13:50:30.194 Service scanning
13:50:42.678 Modules scanning
13:50:42.678 Disk 0 trace - called modules:
13:50:42.709 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
13:50:42.709 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800490f060]
13:50:42.725 3 CLASSPNP.SYS[fffff88001b8f43f] -> nt!IofCallDriver -> [0xfffffa8003aac520]
13:50:42.725 5 ACPI.sys[fffff880010c17a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8003ab7060]
13:50:42.741 Scan finished successfully
13:51:17.506 Disk 0 MBR has been saved successfully to "C:\Users\Administrator\Desktop\MBR.dat"
13:51:17.522 The log file has been saved successfully to "C:\Users\Administrator\Desktop\aswMBR.txt"


Im running 64 bit windows 7 so should I skip that GMER program? Thanks!

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:19 PM

Posted 28 February 2012 - 08:56 AM

IGNORE GMER

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log


Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply


Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#5 Jonnygr

Jonnygr
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:08:19 PM

Posted 28 February 2012 - 09:34 AM

Annoyingly my wireless dongle for my PC internet refuses to sync to our hub, I have manually copied across the latest definitions/database to malwarebytes and it is currently scanning though. Is it possible to do a similar thing with the ESET scanner?

Edit: I'll run a cable up from the hub, scan results coming shortly.

Edited by Jonnygr, 28 February 2012 - 09:39 AM.


#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:19 PM

Posted 28 February 2012 - 09:40 AM

:thumbup2:

Edited by narenxp, 28 February 2012 - 09:40 AM.


#7 Jonnygr

Jonnygr
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:08:19 PM

Posted 28 February 2012 - 08:04 PM

Both the latest version of malwarebytes and ESET took around 4 hours to scan and returned 0 results. I dont know if there are any logs for them that I can post here?

the mini toolbox analysis;

MiniToolBox by Farbar Version: 18-01-2012
Ran by Administrator (administrator) on 29-02-2012 at 00:59:09
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
ProxyServer: http=127.0.0.1:6092

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 4

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection (Connected)
Hamachi Network Interface = Hamachi (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global
add route prefix=0.0.0.0/0 interface="Hamachi" nexthop=5.0.0.1 publish=Yes
set interface interface="ethernet_7" forwarding=disabled advertise=disabled metric=9000 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=-1404109143 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled
set interface interface="Hamachi" forwarding=disabled advertise=disabled metric=9000 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : JonnyPC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 00-24-21-A7-4C-2C
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::55f7:8300:7815:dec0%9(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.18(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : 28 February 2012 20:49:21
Lease Expires . . . . . . . . . . : 29 February 2012 01:49:29
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 167781409
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-29-4A-AE-00-24-21-A7-4C-2C
DNS Servers . . . . . . . . . . . : 194.168.4.100
194.168.8.100
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Hamachi:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Hamachi Network Interface
Physical Address. . . . . . . . . : 7A-79-05-8D-CA-84
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2620:9b::58d:ca84(Preferred)
Link-local IPv6 Address . . . . . : fe80::e481:a1fd:a712:61f3%12(Preferred)
IPv4 Address. . . . . . . . . . . : 5.141.202.132(Preferred)
Subnet Mask . . . . . . . . . . . : 255.0.0.0
Lease Obtained. . . . . . . . . . : 28 February 2012 20:39:13
Lease Expires . . . . . . . . . . : 27 February 2013 20:41:20
Default Gateway . . . . . . . . . : 5.0.0.1
DHCP Server . . . . . . . . . . . : 5.0.0.1
DHCPv6 IAID . . . . . . . . . . . : 393902348
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-29-4A-AE-00-24-21-A7-4C-2C
DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
fec0:0:0:ffff::2%1
fec0:0:0:ffff::3%1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{C7F98852-A571-4326-BBA8-0755C14A0C17}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 8:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fb:3059:2ca7:adf0:ba9b(Preferred)
Link-local IPv6 Address . . . . . : fe80::3059:2ca7:adf0:ba9b%20(Preferred)
Default Gateway . . . . . . . . . :
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{0B681AF9-2144-4D5A-A2C4-27B526651DEB}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: cache1.service.virginmedia.net
Address: 194.168.4.100

Name: google.com
Addresses: 173.194.34.97
173.194.34.110
173.194.34.102
173.194.34.99
173.194.34.98
173.194.34.105
173.194.34.103
173.194.34.101
173.194.34.100
173.194.34.104
173.194.34.96


Pinging google.com [173.194.34.110] with 32 bytes of data:
Reply from 173.194.34.110: bytes=32 time=33ms TTL=55
Reply from 173.194.34.110: bytes=32 time=34ms TTL=55

Ping statistics for 173.194.34.110:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 33ms, Maximum = 34ms, Average = 33ms
Server: cache1.service.virginmedia.net
Address: 194.168.4.100

Name: yahoo.com
Addresses: 209.191.122.70
98.139.127.62
98.139.183.24


Pinging yahoo.com [98.139.127.62] with 32 bytes of data:
Reply from 98.139.127.62: bytes=32 time=202ms TTL=47
Reply from 98.139.127.62: bytes=32 time=220ms TTL=47

Ping statistics for 98.139.127.62:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 202ms, Maximum = 220ms, Average = 211ms
Server: cache1.service.virginmedia.net
Address: 194.168.4.100

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
9...00 24 21 a7 4c 2c ......Realtek PCIe GBE Family Controller
12...7a 79 05 8d ca 84 ......Hamachi Network Interface
1...........................Software Loopback Interface 1
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
20...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 5.0.0.1 5.141.202.132 9256
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.18 20
5.0.0.0 255.0.0.0 On-link 5.141.202.132 9256
5.141.202.132 255.255.255.255 On-link 5.141.202.132 9256
5.255.255.255 255.255.255.255 On-link 5.141.202.132 9256
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.18 276
192.168.0.18 255.255.255.255 On-link 192.168.0.18 276
192.168.0.255 255.255.255.255 On-link 192.168.0.18 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.18 276
224.0.0.0 240.0.0.0 On-link 5.141.202.132 9256
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.18 276
255.255.255.255 255.255.255.255 On-link 5.141.202.132 9256
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
0.0.0.0 0.0.0.0 5.0.0.1 Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
20 58 2001::/32 On-link
20 306 2001:0:5ef5:79fb:3059:2ca7:adf0:ba9b/128
On-link
12 276 2620:9b::/96 On-link
12 276 2620:9b::58d:ca84/128 On-link
9 276 fe80::/64 On-link
12 276 fe80::/64 On-link
20 306 fe80::/64 On-link
20 306 fe80::3059:2ca7:adf0:ba9b/128
On-link
9 276 fe80::55f7:8300:7815:dec0/128
On-link
12 276 fe80::e481:a1fd:a712:61f3/128
On-link
1 306 ff00::/8 On-link
20 306 ff00::/8 On-link
9 276 ff00::/8 On-link
12 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
If Metric Network Destination Gateway
0 4294967295 2620:9b::/96 On-link
===========================================================================
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 09 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [193824] (Apple Inc.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 09 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (02/29/2012 00:57:40 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/28/2012 08:49:41 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/28/2012 08:40:49 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/28/2012 02:01:44 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/28/2012 02:01:36 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/28/2012 01:14:20 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

Error: (02/28/2012 01:11:49 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

Error: (02/28/2012 00:54:09 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/28/2012 00:59:57 AM) (Source: Windows Search Service) (User: )
Description: Windows Search Service failed to process the list of included and excluded locations with the error <30, 0x80040d07, "iehistory://{S-1-5-21-2036552012-2067793784-1478315145-500}/">.

Error: (02/28/2012 00:42:24 AM) (Source: Application Hang) (User: )
Description: The program NOTEPAD.EXE version 6.1.7600.16385 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 4a8

Start Time: 01ccf5b1c7a244fe

Termination Time: 0

Application Path: C:\Windows\system32\NOTEPAD.EXE

Report Id: 12c65935-61a5-11e1-9c37-002421a74c2c


System errors:
=============
Error: (02/28/2012 08:39:29 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
sptd

Error: (02/28/2012 08:38:49 PM) (Source: sptd) (User: )
Description: Driver detected an internal error in its data structures for .

Error: (02/28/2012 00:52:48 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
sptd

Error: (02/28/2012 00:52:09 PM) (Source: sptd) (User: )
Description: Driver detected an internal error in its data structures for .

Error: (02/28/2012 00:33:55 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
sptd

Error: (02/28/2012 00:33:18 AM) (Source: sptd) (User: )
Description: Driver detected an internal error in its data structures for .

Error: (02/28/2012 00:22:55 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
sptd

Error: (02/28/2012 00:22:09 AM) (Source: sptd) (User: )
Description: Driver detected an internal error in its data structures for .

Error: (02/28/2012 00:20:22 AM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Stereoscopic 3D Driver Service service terminated unexpectedly. It has done this 1 time(s).

Error: (02/28/2012 00:12:37 AM) (Source: Service Control Manager) (User: )
Description: The Windows Update service hung on starting.


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
2007 Microsoft Office Suite Service Pack 2 (SP2)
Adobe AIR (Version: 1.1.0.5790)
Adobe Anchor Service CS4 (Version: 2.0)
Adobe Anchor Service x64 CS4 (Version: 2.0)
Adobe Bridge CS4 (Version: 3)
Adobe CMaps CS4 (Version: 2.0)
Adobe CMaps x64 CS4 (Version: 2.0)
Adobe Color - Photoshop Specific CS4 (Version: 2.0)
Adobe Color EU Extra Settings CS4 (Version: 2.0)
Adobe Color JA Extra Settings CS4 (Version: 2.0)
Adobe Color NA Recommended Settings CS4 (Version: 2.0)
Adobe Color Video Profiles CS CS4 (Version: 2.0)
Adobe CSI CS4 (Version: 1)
Adobe CSI CS4 x64 (Version: 1)
Adobe Default Language CS4 (Version: 2.0)
Adobe Device Central CS4 (Version: 2)
Adobe Drive CS4 (Version: 1)
Adobe Drive CS4 x64 (Version: 1)
Adobe ExtendScript Toolkit CS4 (Version: 3.0.0)
Adobe Extension Manager CS4 (Version: 2.0)
Adobe Flash Player 10 ActiveX (Version: 10.0.42.34)
Adobe Flash Player 10 Plugin (Version: 10.3.181.34)
Adobe Fonts All (Version: 2.0)
Adobe Fonts All x64 (Version: 2.0)
Adobe Linguistics CS4 (Version: 4.0.0)
Adobe Linguistics CS4 x64 (Version: 4.0.0)
Adobe Media Player (Version: 0.0.0)
Adobe Media Player (Version: 1.1)
Adobe Output Module (Version: 2.0)
Adobe PDF Library Files CS4 (Version: 9.0)
Adobe PDF Library Files x64 CS4 (Version: 9.0)
Adobe Photoshop CS4 (64 Bit) (Version: 11.0)
Adobe Photoshop CS4 (Version: 11.0)
Adobe Photoshop CS4 Support (Version: 11.0)
Adobe Reader 9.3 (Version: 9.3.0)
Adobe Search for Help (Version: 1.0)
Adobe Service Manager Extension (Version: 1.0)
Adobe Setup (Version: 2.0)
Adobe Shockwave Player 11.5 (Version: 11.5.1.601)
Adobe Type Support CS4 (Version: 9.0)
Adobe Type Support x64 CS4 (Version: 9.0)
Adobe Update Manager CS4 (Version: 6.0.0)
Adobe WinSoft Linguistics Plugin (Version: 1.1)
Adobe WinSoft Linguistics Plugin x64 (Version: 1.1)
Adobe XMP Panels CS4 (Version: 2.0)
AdobeColorCommonSetCMYK (Version: 2.0)
AdobeColorCommonSetRGB (Version: 2.0)
Advertising Center (Version: 0.0.0.2)
Age of Empires III (Version: 1.00.0000)
Apple Application Support (Version: 1.4.1)
Apple Mobile Device Support (Version: 3.3.0.69)
Apple Software Update (Version: 2.1.2.120)
Aquaria
AVG 2012 (Version: 12.0.1913)
AVG 2012 (Version: 12.0.2114)
AVG 2012 (Version: 2012.0.1913)
BIT.TRIP RUNNER
Bonjour (Version: 2.0.3.0)
Braid
BT Voyager 1055 (Version: 1.01.010)
Call of Duty: Black Ops
Call of Duty: Black Ops - Multiplayer
CCleaner (remove only)
Company of Heroes - FAKEMSI (Version: 2.0.0.0)
Company of Heroes (Version: 2.602.0)
Company of Heroes: Tales of Valor
Connect (Version: 1.0.0.1)
ContrastMaster 1.04 Demo 64-bit
D3DX10 (Version: 15.4.2368.0902)
Darwinia
Defraggler (Version: 2.05)
Deus Ex
Deus Ex - Human Revolution version 1.0 (Version: 1.0)
Diablo II
DivX Setup (Version: 2.6.1.3)
DolbyFiles (Version: 2.0)
Empire Earth Gold Edition
ESET Online Scanner v3
Facebook Plug-In
Fallout New Vegas
GameRanger
Garry's Mod
Google Chrome (Version: 17.0.963.56)
HiJackThis (Version: 1.0.0)
ImagXpress (Version: 7.0.74.0)
Impulse (Version: 1.0)
ISO Recorder (Version: 3.1.0)
iTunes (Version: 10.1.1.4)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 29 (64-bit) (Version: 6.0.290)
Java™ 6 Update 29 (Version: 6.0.290)
kuler (Version: 2.0)
Left 4 Dead 2
LogMeIn Hamachi (Version: 2.1.0.159)
Lugaru HD
Magicka
Malwarebytes Anti-Malware version 1.60.1.1000 (Version: 1.60.1.1000)
Menu Templates - Starter Kit (Version: 9.4.6.0)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.88.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6425.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Professional Plus 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Silverlight (Version: 4.1.10111.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (Version: 9.0.30411)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft XNA Framework Redistributable 3.1 (Version: 3.1.10527.0)
Microsoft XNA Framework Redistributable 4.0 (Version: 4.0.20823.0)
Mirror's Edge™ (Version: 1.0.0.0)
Mozilla Firefox 10.0.2 (x86 en-GB) (Version: 10.0.2)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML4 Parser (Version: 1.0.0)
Natural Selection 2
Need for Speed™ The Run (Version: 1.0.0.0)
Nero 9 Trial
Nero BurnRights (Version: 3.4.13.100)
Nero ControlCenter (Version: 9.0.0.1)
Nero Disc Copy Gadget (Version: 2.4.34.0)
Nero DiscSpeed (Version: 5.4.13.100)
Nero DriveSpeed (Version: 4.4.12.100)
Nero InfoTool (Version: 6.4.12.100)
Nero Installer (Version: 4.4.9.0)
Nero Rescue Agent (Version: 2.4.14.100)
NeroBurningROM (Version: 9.4.26.100)
NeroExpress (Version: 9.4.26.100)
NETGEAR WNDA3200 wireless adapter Setup (Version: 1.0.0.11)
NightSky
Nimbus
Nitronic Rush (2011-11-11) version 20111111.0 (Version: 20111111.0)
NVIDIA 3D Vision Controller Driver 290.25 (Version: 290.25)
NVIDIA 3D Vision Driver 290.36 (Version: 290.36)
NVIDIA Control Panel 290.36 (Version: 290.36)
NVIDIA Graphics Driver 290.36 (Version: 290.36)
NVIDIA Install Application (Version: 2.1002.59.281)
NVIDIA PhysX (Version: 9.11.1107)
NVIDIA PhysX System Software 9.11.1107 (Version: 9.11.1107)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.9036)
NVIDIA Update 1.6.24 (Version: 1.6.24)
NVIDIA Update Components (Version: 1.6.24)
OF Dragon Rising Demo (Version: 1.00.0000)
OpenAL
PDF Settings CS4 (Version: 9.0)
PeerBlock 1.1 (r518) (Version: 1.1.0.518)
PeerGuardian 2.0 (Version: 2.0.6.4)
Peggle Nights Deluxe 1.0 (Version: 1.0)
Photoshop Camera Raw (Version: 5.0)
Photoshop Camera Raw_x64 (Version: 5.0)
Plants Vs Zombies
Poladroid (Version: 0.9.6.0)
PopCap Browser Plugin
Portal 2
PVSonyDll (Version: 1.00.0001)
QuickTime (Version: 7.69.80.9)
Realtek 8169 8168 8101E 8102E Ethernet Driver (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.5864)
Rise of Nations (Version: 1.0)
Rockstar Games Social Club (Version: 1.00.0000)
Saints Row The Third
Skype™ 5.5 (Version: 5.5.124)
Sony Ericsson Themes Creator 4.08 (Version: 4.08)
Spybot - Search & Destroy (Version: 1.6.2)
StarCraft II (Version: 1.0.2.16223)
Steam (Version: 1.0.0.0)
Suite Shared Configuration CS4 (Version: 1.0)
Super Meat Boy
Team Fortress 2
Terraria
The Elder Scrolls V: Skyrim
Titan Quest
Titan Quest: Immortal Throne
Torchlight (Version: 0.0.66.192)
Trine 1.09
Unity Web Player (Version: )
Update for 2007 Microsoft Office System (KB2284654)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596651) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596789) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2597998) 32-Bit Edition
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 (KB2596596) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office Outlook 2007 (KB2583910)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Uplink
USB PC Camera (Version: 1.10.5)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
Visual C++ 8.0 Runtime Setup Package (x64) (Version: 9.0.0.623)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
VLC media player 1.1.11 (Version: 1.1.11)
Vuze
Vuze Toolbar (Version: 4.1.0.5)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinRAR archiver
World of Goo
Xfire (remove only)

========================= Memory info: ===================================

Percentage of memory in use: 46%
Total physical RAM: 4095.18 MB
Available physical RAM: 2175.27 MB
Total Pagefile: 8188.55 MB
Available Pagefile: 6493.39 MB
Total Virtual: 4095.88 MB
Available Virtual: 3958.57 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:465.76 GB) (Free:178.05 GB) NTFS

========================= Users: ========================================

User accounts for \\JONNYPC

Administrator Jonny Guest
UpdatusUser


**** End of log ****


Thanks!

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:19 PM

Posted 29 February 2012 - 03:06 AM

that looks clean.

Do you still face redirects?

which site are you being redirected to?

#9 Jonnygr

Jonnygr
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:08:19 PM

Posted 29 February 2012 - 10:46 AM

No longer being redirected, It was redirecting to various "creditcheck" websites and AVG was warning of trojans before I could navigate away. I realise you can't do much more to help since it appears to be gone in all of these logs. Based on other peoples redirect virus's what would you recommend I do next?

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:19 PM

Posted 29 February 2012 - 11:17 AM

Very good

Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp


Update your antivirus frequently,do not click on suspicious links

Safe surfing :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users