Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I think I have a Google redirect virus...maybe something more?


  • Please log in to reply
9 replies to this topic

#1 EmGem91

EmGem91

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:07:53 AM

Posted 06 June 2012 - 12:59 PM

I recently had the Smart HDD virus on my computer and I followed an online video to remove it, and it seemed to be off of my computer after I did that. I either have remnants of the virus or another one (I really have no idea). Whenever I type something into my address bar search engine it takes me to Google, where I then click a link. The link shows the original website for a few seconds and then proceeds to redirect me to random websites (suggestdomain.com, etc). I also have the problem of my Skype program not working. I can type my username and password into the program then I get an error message--

Run-time error '5':
Invalid procedure call or argument

I'm unsure if this is related to the Google redirect virus or if it's separate. Skype worked perfectly well before. I looked on another post on bleepingcomputer.com about the Google redirect virus and read that a suggestion was to use TDSSkiller, but I am unable to run the program once it's downloaded, either as normal, or in safe mode or safe mode with networking. I have a Toshiba laptop with Windows Vista Home Premium, service pack 2.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:53 AM

Posted 06 June 2012 - 01:17 PM

Download

FIXTDSS

Launch it ,It may ask for restart,reboot the PC

On reboot Click on REPAIR


Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 EmGem91

EmGem91
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:07:53 AM

Posted 06 June 2012 - 05:05 PM

16:56:25.0650 4148 TDSS rootkit removing tool 2.7.36.0 May 21 2012 16:40:16
16:56:26.0189 4148 ============================================================
16:56:26.0189 4148 Current date / time: 2012/06/06 16:56:26.0189
16:56:26.0189 4148 SystemInfo:
16:56:26.0189 4148
16:56:26.0189 4148 OS Version: 6.0.6002 ServicePack: 2.0
16:56:26.0189 4148 Product type: Workstation
16:56:26.0190 4148 ComputerName: EMILY-PC
16:56:26.0190 4148 UserName: EmilyPawelski
16:56:26.0190 4148 Windows directory: C:\Windows
16:56:26.0190 4148 System windows directory: C:\Windows
16:56:26.0190 4148 Processor architecture: Intel x86
16:56:26.0190 4148 Number of processors: 2
16:56:26.0190 4148 Page size: 0x1000
16:56:26.0190 4148 Boot type: Normal boot
16:56:26.0190 4148 ============================================================
16:56:26.0621 4148 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
16:56:26.0623 4148 ============================================================
16:56:26.0623 4148 \Device\Harddisk0\DR0:
16:56:26.0623 4148 MBR partitions:
16:56:26.0623 4148 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x118AD800
16:56:26.0623 4148 ============================================================
16:56:26.0658 4148 C: <-> \Device\Harddisk0\DR0\Partition0
16:56:26.0658 4148 ============================================================
16:56:26.0658 4148 Initialize success
16:56:26.0658 4148 ============================================================
16:56:40.0856 4232 ============================================================
16:56:40.0856 4232 Scan started
16:56:40.0856 4232 Mode: Manual; TDLFS;
16:56:40.0856 4232 ============================================================
16:56:41.0162 4232 .avgtdix - ok
16:56:41.0354 4232 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
16:56:41.0357 4232 ACPI - ok
16:56:41.0515 4232 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
16:56:41.0516 4232 AdobeARMservice - ok
16:56:41.0616 4232 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
16:56:41.0620 4232 AdobeFlashPlayerUpdateSvc - ok
16:56:41.0707 4232 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
16:56:41.0733 4232 adp94xx - ok
16:56:41.0805 4232 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
16:56:41.0812 4232 adpahci - ok
16:56:41.0860 4232 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
16:56:41.0863 4232 adpu160m - ok
16:56:41.0910 4232 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
16:56:41.0914 4232 adpu320 - ok
16:56:41.0969 4232 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
16:56:41.0970 4232 AeLookupSvc - ok
16:56:42.0069 4232 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
16:56:42.0071 4232 AFD - ok
16:56:42.0134 4232 AgereModemAudio (39e435c90c9c4f780fa0ed05ca3c3a1b) C:\Windows\system32\agrsmsvc.exe
16:56:42.0134 4232 AgereModemAudio - ok
16:56:42.0264 4232 AgereSoftModem (ce91b158fa490cf4c4d487a4130f4660) C:\Windows\system32\DRIVERS\AGRSM.sys
16:56:42.0319 4232 AgereSoftModem - ok
16:56:42.0370 4232 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
16:56:42.0372 4232 agp440 - ok
16:56:42.0418 4232 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
16:56:42.0420 4232 aic78xx - ok
16:56:42.0451 4232 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
16:56:42.0452 4232 ALG - ok
16:56:42.0488 4232 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
16:56:42.0489 4232 aliide - ok
16:56:42.0511 4232 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
16:56:42.0514 4232 amdagp - ok
16:56:42.0519 4232 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
16:56:42.0521 4232 amdide - ok
16:56:42.0540 4232 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
16:56:42.0542 4232 AmdK7 - ok
16:56:42.0558 4232 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
16:56:42.0559 4232 AmdK8 - ok
16:56:42.0620 4232 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
16:56:42.0622 4232 Appinfo - ok
16:56:42.0819 4232 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:56:42.0820 4232 Apple Mobile Device - ok
16:56:42.0872 4232 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
16:56:42.0875 4232 arc - ok
16:56:42.0911 4232 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
16:56:42.0914 4232 arcsas - ok
16:56:42.0944 4232 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
16:56:42.0946 4232 AsyncMac - ok
16:56:42.0959 4232 atapi (0d83c87a801a3dfcd1bf73893fe7518c) C:\Windows\system32\drivers\atapi.sys
16:56:42.0960 4232 atapi - ok
16:56:43.0075 4232 athr (8be56f8300e1c37b578da23c71816b7a) C:\Windows\system32\DRIVERS\athr.sys
16:56:43.0095 4232 athr - ok
16:56:43.0185 4232 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
16:56:43.0194 4232 AudioEndpointBuilder - ok
16:56:43.0199 4232 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
16:56:43.0202 4232 Audiosrv - ok
16:56:43.0623 4232 AVGIDSAgent (6d440ff3f44ca72edfd6176c6d6a89c0) C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
16:56:43.0723 4232 AVGIDSAgent - ok
16:56:43.0908 4232 AVGIDSDriver (4cbb56fbc9c0cbc517e6e3a6889ebddc) C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys
16:56:43.0914 4232 AVGIDSDriver - ok
16:56:43.0938 4232 AVGIDSEH (459bce188232e2fe6152423efef65d76) C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
16:56:43.0939 4232 AVGIDSEH - ok
16:56:43.0969 4232 AVGIDSFilter (91d9abe7e88eac7c167cba4ed4d983bf) C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys
16:56:43.0971 4232 AVGIDSFilter - ok
16:56:44.0017 4232 AVGIDSShim (3fc2714e185c04308215d46730d41a94) C:\Windows\system32\DRIVERS\AVGIDSShim.Sys
16:56:44.0019 4232 AVGIDSShim - ok
16:56:44.0096 4232 Avgldx86 (bf8118cd5e2255387b715b534d64acd1) C:\Windows\system32\DRIVERS\avgldx86.sys
16:56:44.0098 4232 Avgldx86 - ok
16:56:44.0139 4232 Avgmfx86 (1c77ef67f196466adc9924cb288afe87) C:\Windows\system32\DRIVERS\avgmfx86.sys
16:56:44.0140 4232 Avgmfx86 - ok
16:56:44.0202 4232 Avgrkx86 (f2038ed7284b79dcef581468121192a9) C:\Windows\system32\DRIVERS\avgrkx86.sys
16:56:44.0203 4232 Avgrkx86 - ok
16:56:44.0208 4232 Avgtdix - ok
16:56:44.0333 4232 avgwd (6699ece24fe4b3f752a66c66a602ee86) C:\Program Files\AVG\AVG2012\avgwdsvc.exe
16:56:44.0345 4232 avgwd - ok
16:56:44.0396 4232 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
16:56:44.0397 4232 Beep - ok
16:56:44.0490 4232 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
16:56:44.0519 4232 BFE - ok
16:56:44.0637 4232 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\system32\qmgr.dll
16:56:44.0663 4232 BITS - ok
16:56:44.0687 4232 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
16:56:44.0690 4232 blbdrive - ok
16:56:44.0815 4232 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
16:56:44.0831 4232 Bonjour Service - ok
16:56:44.0906 4232 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
16:56:44.0908 4232 bowser - ok
16:56:44.0939 4232 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
16:56:44.0941 4232 BrFiltLo - ok
16:56:44.0958 4232 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
16:56:44.0959 4232 BrFiltUp - ok
16:56:45.0006 4232 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
16:56:45.0008 4232 Browser - ok
16:56:45.0055 4232 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
16:56:45.0058 4232 Brserid - ok
16:56:45.0087 4232 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
16:56:45.0090 4232 BrSerWdm - ok
16:56:45.0112 4232 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
16:56:45.0114 4232 BrUsbMdm - ok
16:56:45.0128 4232 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
16:56:45.0130 4232 BrUsbSer - ok
16:56:45.0169 4232 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
16:56:45.0171 4232 BTHMODEM - ok
16:56:45.0313 4232 catchme - ok
16:56:45.0356 4232 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
16:56:45.0358 4232 cdfs - ok
16:56:45.0409 4232 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
16:56:45.0410 4232 cdrom - ok
16:56:45.0439 4232 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
16:56:45.0441 4232 CertPropSvc - ok
16:56:45.0472 4232 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
16:56:45.0473 4232 circlass - ok
16:56:45.0515 4232 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
16:56:45.0517 4232 CLFS - ok
16:56:45.0592 4232 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:56:45.0594 4232 clr_optimization_v2.0.50727_32 - ok
16:56:45.0690 4232 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:56:45.0692 4232 clr_optimization_v4.0.30319_32 - ok
16:56:45.0753 4232 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
16:56:45.0754 4232 CmBatt - ok
16:56:45.0838 4232 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
16:56:45.0839 4232 cmdide - ok
16:56:45.0862 4232 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
16:56:45.0863 4232 Compbatt - ok
16:56:45.0870 4232 COMSysApp - ok
16:56:45.0985 4232 ConfigFree Service (d10d01b2dfcd8d2f32a32ed29e8da1c2) C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
16:56:45.0987 4232 ConfigFree Service - ok
16:56:45.0995 4232 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
16:56:45.0996 4232 crcdisk - ok
16:56:46.0028 4232 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
16:56:46.0030 4232 Crusoe - ok
16:56:46.0072 4232 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
16:56:46.0087 4232 CryptSvc - ok
16:56:46.0147 4232 CrystalSysInfo - ok
16:56:46.0215 4232 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
16:56:46.0249 4232 DcomLaunch - ok
16:56:46.0297 4232 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
16:56:46.0298 4232 DfsC - ok
16:56:46.0489 4232 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
16:56:46.0582 4232 DFSR - ok
16:56:46.0753 4232 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
16:56:46.0767 4232 Dhcp - ok
16:56:46.0877 4232 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
16:56:46.0878 4232 disk - ok
16:56:46.0930 4232 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
16:56:46.0932 4232 Dnscache - ok
16:56:46.0969 4232 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
16:56:46.0984 4232 dot3svc - ok
16:56:47.0024 4232 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
16:56:47.0027 4232 DPS - ok
16:56:47.0071 4232 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
16:56:47.0072 4232 drmkaud - ok
16:56:47.0141 4232 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
16:56:47.0152 4232 DXGKrnl - ok
16:56:47.0185 4232 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
16:56:47.0188 4232 E1G60 - ok
16:56:47.0221 4232 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
16:56:47.0223 4232 EapHost - ok
16:56:47.0276 4232 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
16:56:47.0278 4232 Ecache - ok
16:56:47.0343 4232 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
16:56:47.0352 4232 ehRecvr - ok
16:56:47.0382 4232 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
16:56:47.0384 4232 ehSched - ok
16:56:47.0403 4232 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
16:56:47.0405 4232 ehstart - ok
16:56:47.0435 4232 ElRawDisk (b8eac99b14772bdc36ca963aed109fa2) C:\Windows\system32\drivers\rsdrv.sys
16:56:47.0436 4232 ElRawDisk - ok
16:56:47.0495 4232 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
16:56:47.0524 4232 elxstor - ok
16:56:47.0602 4232 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
16:56:47.0624 4232 EMDMgmt - ok
16:56:47.0667 4232 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
16:56:47.0668 4232 ErrDev - ok
16:56:47.0723 4232 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
16:56:47.0734 4232 EventSystem - ok
16:56:47.0785 4232 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
16:56:47.0789 4232 exfat - ok
16:56:47.0842 4232 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
16:56:47.0846 4232 fastfat - ok
16:56:47.0882 4232 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
16:56:47.0883 4232 fdc - ok
16:56:47.0907 4232 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
16:56:47.0909 4232 fdPHost - ok
16:56:47.0916 4232 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
16:56:47.0918 4232 FDResPub - ok
16:56:47.0942 4232 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
16:56:47.0943 4232 FileInfo - ok
16:56:47.0966 4232 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
16:56:47.0968 4232 Filetrace - ok
16:56:47.0985 4232 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
16:56:47.0986 4232 flpydisk - ok
16:56:48.0023 4232 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
16:56:48.0025 4232 FltMgr - ok
16:56:48.0147 4232 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
16:56:48.0171 4232 FontCache - ok
16:56:48.0279 4232 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
16:56:48.0281 4232 FontCache3.0.0.0 - ok
16:56:48.0306 4232 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
16:56:48.0308 4232 Fs_Rec - ok
16:56:48.0357 4232 FwLnk (cbc22823628544735625b280665e434e) C:\Windows\system32\DRIVERS\FwLnk.sys
16:56:48.0358 4232 FwLnk - ok
16:56:48.0387 4232 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
16:56:48.0389 4232 gagp30kx - ok
16:56:48.0461 4232 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:56:48.0464 4232 GEARAspiWDM - ok
16:56:48.0521 4232 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
16:56:48.0554 4232 gpsvc - ok
16:56:48.0618 4232 HdAudAddService (3f90e001369a07243763bd5a523d8722) C:\Windows\system32\drivers\HdAudio.sys
16:56:48.0653 4232 HdAudAddService - ok
16:56:48.0723 4232 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
16:56:48.0733 4232 HDAudBus - ok
16:56:48.0761 4232 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
16:56:48.0762 4232 HidBth - ok
16:56:48.0823 4232 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
16:56:48.0825 4232 HidIr - ok
16:56:48.0850 4232 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\System32\hidserv.dll
16:56:48.0852 4232 hidserv - ok
16:56:48.0881 4232 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
16:56:48.0883 4232 HidUsb - ok
16:56:48.0923 4232 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
16:56:48.0925 4232 hkmsvc - ok
16:56:48.0941 4232 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
16:56:48.0942 4232 HpCISSs - ok
16:56:49.0011 4232 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
16:56:49.0050 4232 HTTP - ok
16:56:49.0086 4232 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
16:56:49.0088 4232 i2omp - ok
16:56:49.0127 4232 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
16:56:49.0128 4232 i8042prt - ok
16:56:49.0284 4232 IAANTMON (cb686f44bf955ea02520710a56874fa4) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
16:56:49.0324 4232 IAANTMON - ok
16:56:49.0402 4232 iaStor (db0cc620b27a928d968c1a1e9cd9cb87) C:\Windows\system32\DRIVERS\iaStor.sys
16:56:49.0404 4232 iaStor - ok
16:56:49.0456 4232 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
16:56:49.0490 4232 iaStorV - ok
16:56:49.0584 4232 IDriverT (daf66902f08796f9c694901660e5a64a) C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
16:56:49.0588 4232 IDriverT - ok
16:56:49.0721 4232 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:56:49.0742 4232 idsvc - ok
16:56:49.0936 4232 igfx (6fb1858d1f0923d122b0331865695041) C:\Windows\system32\DRIVERS\igdkmd32.sys
16:56:50.0021 4232 igfx - ok
16:56:50.0192 4232 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
16:56:50.0194 4232 iirsp - ok
16:56:50.0265 4232 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
16:56:50.0325 4232 IKEEXT - ok
16:56:50.0332 4232 IntcAzAudAddService - ok
16:56:50.0400 4232 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
16:56:50.0401 4232 intelide - ok
16:56:50.0426 4232 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
16:56:50.0427 4232 intelppm - ok
16:56:50.0458 4232 IO_Memory - ok
16:56:50.0494 4232 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
16:56:50.0496 4232 IPBusEnum - ok
16:56:50.0512 4232 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:56:50.0514 4232 IpFilterDriver - ok
16:56:50.0553 4232 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
16:56:50.0600 4232 iphlpsvc - ok
16:56:50.0604 4232 IpInIp - ok
16:56:50.0639 4232 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
16:56:50.0641 4232 IPMIDRV - ok
16:56:50.0661 4232 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
16:56:50.0664 4232 IPNAT - ok
16:56:50.0800 4232 iPod Service (57edb35ea2feca88f8b17c0c095c9a56) C:\Program Files\iPod\bin\iPodService.exe
16:56:50.0814 4232 iPod Service - ok
16:56:50.0854 4232 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
16:56:50.0856 4232 IRENUM - ok
16:56:50.0884 4232 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
16:56:50.0886 4232 isapnp - ok
16:56:50.0949 4232 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
16:56:50.0952 4232 iScsiPrt - ok
16:56:50.0976 4232 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
16:56:50.0978 4232 iteatapi - ok
16:56:50.0990 4232 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
16:56:50.0992 4232 iteraid - ok
16:56:51.0119 4232 jswpsapi (957135960e7533ea5c7ea0bfb34f8efd) C:\Program Files\Jumpstart\jswpsapi.exe
16:56:51.0149 4232 jswpsapi - ok
16:56:51.0201 4232 jswpslwf (11ad410f41af42ba12e63187e3ec141a) C:\Windows\system32\DRIVERS\jswpslwf.sys
16:56:51.0202 4232 jswpslwf - ok
16:56:51.0215 4232 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
16:56:51.0216 4232 kbdclass - ok
16:56:51.0240 4232 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
16:56:51.0241 4232 kbdhid - ok
16:56:51.0264 4232 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
16:56:51.0266 4232 KeyIso - ok
16:56:51.0298 4232 KR10I (e8ca038f51f7761bd6e3a3b0b8014263) C:\Windows\system32\drivers\kr10i.sys
16:56:51.0310 4232 KR10I - ok
16:56:51.0340 4232 KR10N (6a4adb9186dd0e114e623daf57e42b31) C:\Windows\system32\drivers\kr10n.sys
16:56:51.0353 4232 KR10N - ok
16:56:51.0412 4232 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
16:56:51.0416 4232 KSecDD - ok
16:56:51.0484 4232 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
16:56:51.0503 4232 KtmRm - ok
16:56:51.0537 4232 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\System32\srvsvc.dll
16:56:51.0554 4232 LanmanServer - ok
16:56:51.0595 4232 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
16:56:51.0609 4232 LanmanWorkstation - ok
16:56:51.0635 4232 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
16:56:51.0636 4232 lltdio - ok
16:56:51.0672 4232 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
16:56:51.0685 4232 lltdsvc - ok
16:56:51.0699 4232 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
16:56:51.0701 4232 lmhosts - ok
16:56:51.0733 4232 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
16:56:51.0736 4232 LSI_FC - ok
16:56:51.0764 4232 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
16:56:51.0767 4232 LSI_SAS - ok
16:56:51.0844 4232 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
16:56:51.0847 4232 LSI_SCSI - ok
16:56:51.0870 4232 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
16:56:51.0873 4232 luafv - ok
16:56:51.0898 4232 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
16:56:51.0901 4232 Mcx2Svc - ok
16:56:51.0930 4232 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
16:56:51.0931 4232 megasas - ok
16:56:51.0979 4232 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
16:56:51.0997 4232 MegaSR - ok
16:56:52.0018 4232 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
16:56:52.0020 4232 MMCSS - ok
16:56:52.0027 4232 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
16:56:52.0028 4232 Modem - ok
16:56:52.0048 4232 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
16:56:52.0049 4232 monitor - ok
16:56:52.0060 4232 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
16:56:52.0062 4232 mouclass - ok
16:56:52.0085 4232 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
16:56:52.0087 4232 mouhid - ok
16:56:52.0094 4232 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
16:56:52.0095 4232 MountMgr - ok
16:56:52.0183 4232 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
16:56:52.0185 4232 MozillaMaintenance - ok
16:56:52.0230 4232 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
16:56:52.0233 4232 mpio - ok
16:56:52.0252 4232 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
16:56:52.0254 4232 mpsdrv - ok
16:56:52.0349 4232 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
16:56:52.0409 4232 MpsSvc - ok
16:56:52.0460 4232 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
16:56:52.0462 4232 Mraid35x - ok
16:56:52.0502 4232 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
16:56:52.0504 4232 MRxDAV - ok
16:56:52.0538 4232 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
16:56:52.0541 4232 mrxsmb - ok
16:56:52.0567 4232 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:56:52.0579 4232 mrxsmb10 - ok
16:56:52.0630 4232 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:56:52.0632 4232 mrxsmb20 - ok
16:56:52.0660 4232 msahci (f70590424eefbf5c27a40c67afdb8383) C:\Windows\system32\drivers\msahci.sys
16:56:52.0662 4232 msahci - ok
16:56:52.0691 4232 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
16:56:52.0694 4232 msdsm - ok
16:56:52.0725 4232 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
16:56:52.0731 4232 MSDTC - ok
16:56:52.0819 4232 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
16:56:52.0820 4232 Msfs - ok
16:56:52.0857 4232 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
16:56:52.0858 4232 msisadrv - ok
16:56:52.0893 4232 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
16:56:52.0896 4232 MSiSCSI - ok
16:56:52.0900 4232 msiserver - ok
16:56:52.0946 4232 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
16:56:52.0948 4232 MSKSSRV - ok
16:56:52.0961 4232 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
16:56:52.0963 4232 MSPCLOCK - ok
16:56:52.0979 4232 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
16:56:52.0981 4232 MSPQM - ok
16:56:53.0021 4232 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
16:56:53.0036 4232 MsRPC - ok
16:56:53.0049 4232 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
16:56:53.0050 4232 mssmbios - ok
16:56:53.0085 4232 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
16:56:53.0086 4232 MSTEE - ok
16:56:53.0115 4232 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
16:56:53.0116 4232 Mup - ok
16:56:53.0164 4232 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
16:56:53.0196 4232 napagent - ok
16:56:53.0257 4232 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
16:56:53.0272 4232 NativeWifiP - ok
16:56:53.0340 4232 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
16:56:53.0344 4232 NDIS - ok
16:56:53.0362 4232 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
16:56:53.0363 4232 NdisTapi - ok
16:56:53.0377 4232 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
16:56:53.0378 4232 Ndisuio - ok
16:56:53.0414 4232 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
16:56:53.0416 4232 NdisWan - ok
16:56:53.0435 4232 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
16:56:53.0437 4232 NDProxy - ok
16:56:53.0500 4232 Net Driver HPZ12 (2969d26eee289be7422aa46fc55f4e38) C:\Windows\system32\HPZinw12.dll
16:56:53.0502 4232 Net Driver HPZ12 - ok
16:56:53.0546 4232 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
16:56:53.0547 4232 NetBIOS - ok
16:56:53.0585 4232 NetBT (7c5fee5b1c5728507cd96fb4a13e7a02) C:\Windows\system32\drivers\netbt.sys
16:56:53.0587 4232 NetBT - ok
16:56:53.0610 4232 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
16:56:53.0612 4232 Netlogon - ok
16:56:53.0656 4232 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
16:56:53.0666 4232 Netman - ok
16:56:53.0696 4232 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
16:56:53.0708 4232 netprofm - ok
16:56:53.0780 4232 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:56:53.0783 4232 NetTcpPortSharing - ok
16:56:53.0825 4232 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
16:56:53.0827 4232 nfrd960 - ok
16:56:53.0863 4232 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
16:56:53.0877 4232 NlaSvc - ok
16:56:53.0901 4232 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
16:56:53.0902 4232 Npfs - ok
16:56:53.0939 4232 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
16:56:53.0941 4232 nsi - ok
16:56:53.0953 4232 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
16:56:53.0955 4232 nsiproxy - ok
16:56:54.0061 4232 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
16:56:54.0086 4232 Ntfs - ok
16:56:54.0104 4232 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
16:56:54.0105 4232 ntrigdigi - ok
16:56:54.0123 4232 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
16:56:54.0124 4232 Null - ok
16:56:54.0146 4232 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
16:56:54.0149 4232 nvraid - ok
16:56:54.0170 4232 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
16:56:54.0172 4232 nvstor - ok
16:56:54.0200 4232 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
16:56:54.0203 4232 nv_agp - ok
16:56:54.0208 4232 NwlnkFlt - ok
16:56:54.0217 4232 NwlnkFwd - ok
16:56:54.0396 4232 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:56:54.0411 4232 odserv - ok
16:56:54.0432 4232 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
16:56:54.0434 4232 ohci1394 - ok
16:56:54.0483 4232 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:56:54.0499 4232 ose - ok
16:56:54.0585 4232 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
16:56:54.0604 4232 p2pimsvc - ok
16:56:54.0613 4232 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
16:56:54.0619 4232 p2psvc - ok
16:56:54.0639 4232 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
16:56:54.0641 4232 Parport - ok
16:56:54.0678 4232 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
16:56:54.0679 4232 partmgr - ok
16:56:54.0700 4232 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
16:56:54.0702 4232 Parvdm - ok
16:56:54.0743 4232 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
16:56:54.0746 4232 PcaSvc - ok
16:56:54.0805 4232 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
16:56:54.0809 4232 pci - ok
16:56:54.0839 4232 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\DRIVERS\pciide.sys
16:56:54.0840 4232 pciide - ok
16:56:54.0891 4232 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
16:56:54.0905 4232 pcmcia - ok
16:56:55.0002 4232 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
16:56:55.0024 4232 PEAUTH - ok
16:56:55.0170 4232 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
16:56:55.0231 4232 pla - ok
16:56:55.0344 4232 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
16:56:55.0356 4232 PlugPlay - ok
16:56:55.0387 4232 Pml Driver HPZ12 (bafc9706bdf425a02b66468ab2605c59) C:\Windows\system32\HPZipm12.dll
16:56:55.0389 4232 Pml Driver HPZ12 - ok
16:56:55.0452 4232 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
16:56:55.0471 4232 PNRPAutoReg - ok
16:56:55.0480 4232 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
16:56:55.0487 4232 PNRPsvc - ok
16:56:55.0543 4232 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
16:56:55.0561 4232 PolicyAgent - ok
16:56:55.0632 4232 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
16:56:55.0634 4232 PptpMiniport - ok
16:56:55.0669 4232 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
16:56:55.0672 4232 Processor - ok
16:56:55.0705 4232 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
16:56:55.0720 4232 ProfSvc - ok
16:56:55.0756 4232 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
16:56:55.0758 4232 ProtectedStorage - ok
16:56:55.0836 4232 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
16:56:55.0838 4232 PSched - ok
16:56:55.0957 4232 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
16:56:55.0991 4232 ql2300 - ok
16:56:56.0026 4232 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
16:56:56.0028 4232 ql40xx - ok
16:56:56.0076 4232 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
16:56:56.0088 4232 QWAVE - ok
16:56:56.0101 4232 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
16:56:56.0102 4232 QWAVEdrv - ok
16:56:56.0118 4232 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
16:56:56.0119 4232 RasAcd - ok
16:56:56.0151 4232 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
16:56:56.0155 4232 RasAuto - ok
16:56:56.0167 4232 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
16:56:56.0169 4232 Rasl2tp - ok
16:56:56.0216 4232 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
16:56:56.0249 4232 RasMan - ok
16:56:56.0285 4232 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
16:56:56.0287 4232 RasPppoe - ok
16:56:56.0317 4232 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
16:56:56.0319 4232 RasSstp - ok
16:56:56.0365 4232 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
16:56:56.0377 4232 rdbss - ok
16:56:56.0415 4232 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
16:56:56.0416 4232 RDPCDD - ok
16:56:56.0451 4232 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
16:56:56.0463 4232 rdpdr - ok
16:56:56.0468 4232 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
16:56:56.0469 4232 RDPENCDD - ok
16:56:56.0519 4232 RDPWD (79c6df8477250f5c54f7c5ae1d6b814e) C:\Windows\system32\drivers\RDPWD.sys
16:56:56.0533 4232 RDPWD - ok
16:56:56.0570 4232 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
16:56:56.0572 4232 RemoteAccess - ok
16:56:56.0596 4232 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
16:56:56.0599 4232 RemoteRegistry - ok
16:56:56.0625 4232 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
16:56:56.0627 4232 RpcLocator - ok
16:56:56.0689 4232 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
16:56:56.0695 4232 RpcSs - ok
16:56:56.0711 4232 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
16:56:56.0713 4232 rspndr - ok
16:56:56.0760 4232 RTL8169 (2d19a7469ea19993d0c12e627f4530bc) C:\Windows\system32\DRIVERS\Rtlh86.sys
16:56:56.0798 4232 RTL8169 - ok
16:56:56.0839 4232 RTSTOR (9ff7d9cf3a5f296613588b0e8db83afe) C:\Windows\system32\drivers\RTSTOR.SYS
16:56:56.0841 4232 RTSTOR - ok
16:56:56.0868 4232 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
16:56:56.0869 4232 SamSs - ok
16:56:56.0908 4232 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
16:56:56.0911 4232 sbp2port - ok
16:56:56.0952 4232 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
16:56:56.0955 4232 SCardSvr - ok
16:56:57.0017 4232 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
16:56:57.0036 4232 Schedule - ok
16:56:57.0063 4232 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
16:56:57.0064 4232 SCPolicySvc - ok
16:56:57.0112 4232 SCT_SKMScan (59996f2abeb502da20f2b5e8caebc697) C:\Windows\system32\DRIVERS\sct_skmscan.sys
16:56:57.0114 4232 SCT_SKMScan - ok
16:56:57.0153 4232 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
16:56:57.0156 4232 SDRSVC - ok
16:56:57.0194 4232 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
16:56:57.0195 4232 secdrv - ok
16:56:57.0204 4232 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
16:56:57.0207 4232 seclogon - ok
16:56:57.0225 4232 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\system32\sens.dll
16:56:57.0228 4232 SENS - ok
16:56:57.0257 4232 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
16:56:57.0258 4232 Serenum - ok
16:56:57.0286 4232 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
16:56:57.0288 4232 Serial - ok
16:56:57.0306 4232 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
16:56:57.0308 4232 sermouse - ok
16:56:57.0348 4232 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
16:56:57.0351 4232 SessionEnv - ok
16:56:57.0381 4232 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
16:56:57.0383 4232 sffdisk - ok
16:56:57.0399 4232 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
16:56:57.0401 4232 sffp_mmc - ok
16:56:57.0411 4232 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
16:56:57.0413 4232 sffp_sd - ok
16:56:57.0435 4232 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
16:56:57.0436 4232 sfloppy - ok
16:56:57.0498 4232 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
16:56:57.0508 4232 SharedAccess - ok
16:56:57.0544 4232 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
16:56:57.0554 4232 ShellHWDetection - ok
16:56:57.0577 4232 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
16:56:57.0579 4232 sisagp - ok
16:56:57.0605 4232 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
16:56:57.0607 4232 SiSRaid2 - ok
16:56:57.0637 4232 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
16:56:57.0640 4232 SiSRaid4 - ok
16:56:57.0753 4232 SkypeUpdate (579ba0a911ff5ea70cb604cd3b744b0a) C:\Program Files\Skype\Updater\Updater.exe
16:56:57.0768 4232 SkypeUpdate - ok
16:56:58.0028 4232 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
16:56:58.0101 4232 slsvc - ok
16:56:58.0230 4232 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
16:56:58.0233 4232 SLUINotify - ok
16:56:58.0313 4232 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
16:56:58.0315 4232 Smb - ok
16:56:58.0359 4232 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
16:56:58.0362 4232 SNMPTRAP - ok
16:56:58.0417 4232 SophosVirusRemovalTool - ok
16:56:58.0449 4232 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
16:56:58.0450 4232 spldr - ok
16:56:58.0483 4232 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
16:56:58.0499 4232 Spooler - ok
16:56:58.0558 4232 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
16:56:58.0568 4232 srv - ok
16:56:58.0609 4232 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
16:56:58.0624 4232 srv2 - ok
16:56:58.0651 4232 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
16:56:58.0654 4232 srvnet - ok
16:56:58.0674 4232 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
16:56:58.0678 4232 SSDPSRV - ok
16:56:58.0726 4232 ssrangdr (f87737d83b965efa765117051e3b9d0c) C:\Windows\system32\DRIVERS\ssrangdr.sys
16:56:58.0727 4232 ssrangdr - ok
16:56:58.0772 4232 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
16:56:58.0789 4232 SstpSvc - ok
16:56:58.0835 4232 StillCam (ef70b3d22b4bffda6ea851ecb063efaa) C:\Windows\system32\DRIVERS\serscan.sys
16:56:58.0837 4232 StillCam - ok
16:56:58.0911 4232 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
16:56:58.0925 4232 stisvc - ok
16:56:58.0974 4232 SVRPEDRV (3e4239b92139f7174a0da7d53fe5e1ab) C:\Windows\System32\sysprep\PEDrv.sys
16:56:58.0975 4232 SVRPEDRV - ok
16:56:59.0002 4232 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
16:56:59.0003 4232 swenum - ok
16:56:59.0045 4232 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
16:56:59.0054 4232 swprv - ok
16:56:59.0084 4232 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
16:56:59.0086 4232 Symc8xx - ok
16:56:59.0110 4232 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
16:56:59.0112 4232 Sym_hi - ok
16:56:59.0131 4232 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
16:56:59.0133 4232 Sym_u3 - ok
16:56:59.0184 4232 SynTP (70534d1e4f9ac990536d5fb5b550b3de) C:\Windows\system32\DRIVERS\SynTP.sys
16:56:59.0197 4232 SynTP - ok
16:56:59.0283 4232 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
16:56:59.0304 4232 SysMain - ok
16:56:59.0329 4232 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
16:56:59.0332 4232 TabletInputService - ok
16:56:59.0372 4232 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
16:56:59.0384 4232 TapiSrv - ok
16:56:59.0407 4232 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
16:56:59.0411 4232 TBS - ok
16:56:59.0497 4232 Tcpip (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\drivers\tcpip.sys
16:56:59.0516 4232 Tcpip - ok
16:56:59.0529 4232 Tcpip6 (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\DRIVERS\tcpip.sys
16:56:59.0535 4232 Tcpip6 - ok
16:56:59.0553 4232 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
16:56:59.0555 4232 tcpipreg - ok
16:56:59.0614 4232 tdcmdpst (6fdfba25002ce4bac463ac866ae71405) C:\Windows\system32\DRIVERS\tdcmdpst.sys
16:56:59.0615 4232 tdcmdpst - ok
16:56:59.0661 4232 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
16:56:59.0662 4232 TDPIPE - ok
16:56:59.0683 4232 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
16:56:59.0685 4232 TDTCP - ok
16:56:59.0729 4232 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
16:56:59.0731 4232 tdx - ok
16:56:59.0756 4232 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
16:56:59.0758 4232 TermDD - ok
16:56:59.0854 4232 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
16:56:59.0879 4232 TermService - ok
16:56:59.0934 4232 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
16:56:59.0937 4232 Themes - ok
16:56:59.0967 4232 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
16:56:59.0970 4232 THREADORDER - ok
16:57:00.0023 4232 TODDSrv (c5ac715b65b01788abc22d10749dddd8) C:\Windows\system32\TODDSrv.exe
16:57:00.0039 4232 TODDSrv - ok
16:57:00.0158 4232 TosCoSrv (44dbac611b11646683b5b066a049b8e4) C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
16:57:00.0166 4232 TosCoSrv - ok
16:57:00.0194 4232 TOSHIBA SMART Log Service (22690dffc7f2a18279a7a0489aa02bac) C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
16:57:00.0197 4232 TOSHIBA SMART Log Service - ok
16:57:00.0268 4232 tos_sps32 (4399a9bf7d8f49991a07fd86590a1619) C:\Windows\system32\DRIVERS\tos_sps32.sys
16:57:00.0278 4232 tos_sps32 - ok
16:57:00.0313 4232 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
16:57:00.0317 4232 TrkWks - ok
16:57:00.0361 4232 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
16:57:00.0363 4232 TrustedInstaller - ok
16:57:00.0401 4232 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
16:57:00.0403 4232 tssecsrv - ok
16:57:00.0455 4232 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
16:57:00.0457 4232 tunmp - ok
16:57:00.0484 4232 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
16:57:00.0486 4232 tunnel - ok
16:57:00.0519 4232 TVALZ (792a8b80f8188aba4b2be271583f3e46) C:\Windows\system32\DRIVERS\TVALZ_O.SYS
16:57:00.0521 4232 TVALZ - ok
16:57:00.0550 4232 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
16:57:00.0552 4232 uagp35 - ok
16:57:00.0609 4232 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
16:57:00.0622 4232 udfs - ok
16:57:00.0680 4232 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
16:57:00.0682 4232 UI0Detect - ok
16:57:00.0709 4232 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
16:57:00.0711 4232 uliagpkx - ok
16:57:00.0741 4232 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
16:57:00.0801 4232 uliahci - ok
16:57:00.0824 4232 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
16:57:00.0827 4232 UlSata - ok
16:57:00.0857 4232 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
16:57:00.0860 4232 ulsata2 - ok
16:57:00.0888 4232 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
16:57:00.0890 4232 umbus - ok
16:57:00.0916 4232 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
16:57:00.0928 4232 upnphost - ok
16:57:00.0961 4232 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\Windows\system32\Drivers\usbaapl.sys
16:57:00.0963 4232 USBAAPL - ok
16:57:01.0018 4232 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
16:57:01.0021 4232 usbaudio - ok
16:57:01.0040 4232 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
16:57:01.0042 4232 usbccgp - ok
16:57:01.0063 4232 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
16:57:01.0066 4232 usbcir - ok
16:57:01.0116 4232 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
16:57:01.0118 4232 usbehci - ok
16:57:01.0169 4232 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
16:57:01.0182 4232 usbhub - ok
16:57:01.0217 4232 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
16:57:01.0219 4232 usbohci - ok
16:57:01.0254 4232 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
16:57:01.0256 4232 usbprint - ok
16:57:01.0291 4232 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:57:01.0294 4232 USBSTOR - ok
16:57:01.0311 4232 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
16:57:01.0313 4232 usbuhci - ok
16:57:01.0362 4232 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
16:57:01.0378 4232 usbvideo - ok
16:57:01.0397 4232 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
16:57:01.0400 4232 UxSms - ok
16:57:01.0455 4232 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
16:57:01.0473 4232 vds - ok
16:57:01.0491 4232 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
16:57:01.0493 4232 vga - ok
16:57:01.0518 4232 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
16:57:01.0520 4232 VgaSave - ok
16:57:01.0545 4232 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
16:57:01.0547 4232 viaagp - ok
16:57:01.0558 4232 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
16:57:01.0560 4232 ViaC7 - ok
16:57:01.0584 4232 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
16:57:01.0586 4232 viaide - ok
16:57:01.0621 4232 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
16:57:01.0623 4232 volmgr - ok
16:57:01.0657 4232 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
16:57:01.0662 4232 volmgrx - ok
16:57:01.0706 4232 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
16:57:01.0718 4232 volsnap - ok
16:57:01.0755 4232 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
16:57:01.0794 4232 vsmraid - ok
16:57:01.0898 4232 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
16:57:01.0923 4232 VSS - ok
16:57:01.0968 4232 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
16:57:01.0979 4232 W32Time - ok
16:57:02.0034 4232 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
16:57:02.0036 4232 WacomPen - ok
16:57:02.0058 4232 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
16:57:02.0060 4232 Wanarp - ok
16:57:02.0064 4232 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
16:57:02.0066 4232 Wanarpv6 - ok
16:57:02.0116 4232 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
16:57:02.0132 4232 wcncsvc - ok
16:57:02.0153 4232 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
16:57:02.0156 4232 WcsPlugInService - ok
16:57:02.0181 4232 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
16:57:02.0183 4232 Wd - ok
16:57:02.0227 4232 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
16:57:02.0263 4232 Wdf01000 - ok
16:57:02.0279 4232 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
16:57:02.0283 4232 WdiServiceHost - ok
16:57:02.0287 4232 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
16:57:02.0290 4232 WdiSystemHost - ok
16:57:02.0338 4232 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
16:57:02.0351 4232 WebClient - ok
16:57:02.0377 4232 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
16:57:02.0393 4232 Wecsvc - ok
16:57:02.0412 4232 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
16:57:02.0415 4232 wercplsupport - ok
16:57:02.0455 4232 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
16:57:02.0471 4232 WerSvc - ok
16:57:02.0563 4232 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
16:57:02.0574 4232 WinDefend - ok
16:57:02.0580 4232 WinHttpAutoProxySvc - ok
16:57:02.0651 4232 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
16:57:02.0666 4232 Winmgmt - ok
16:57:02.0805 4232 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
16:57:02.0849 4232 WinRM - ok
16:57:02.0917 4232 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
16:57:02.0940 4232 Wlansvc - ok
16:57:03.0001 4232 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
16:57:03.0002 4232 WmiAcpi - ok
16:57:03.0048 4232 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
16:57:03.0051 4232 wmiApSrv - ok
16:57:03.0203 4232 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
16:57:03.0224 4232 WMPNetworkSvc - ok
16:57:03.0253 4232 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
16:57:03.0268 4232 WPCSvc - ok
16:57:03.0326 4232 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
16:57:03.0330 4232 WPDBusEnum - ok
16:57:03.0401 4232 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
16:57:03.0403 4232 WpdUsb - ok
16:57:03.0582 4232 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
16:57:03.0599 4232 WPFFontCache_v0400 - ok
16:57:03.0637 4232 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
16:57:03.0638 4232 ws2ifsl - ok
16:57:03.0692 4232 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\system32\wscsvc.dll
16:57:03.0695 4232 wscsvc - ok
16:57:03.0702 4232 WSearch - ok
16:57:03.0891 4232 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
16:57:03.0937 4232 wuauserv - ok
16:57:04.0081 4232 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
16:57:04.0084 4232 WUDFRd - ok
16:57:04.0118 4232 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
16:57:04.0122 4232 wudfsvc - ok
16:57:04.0177 4232 MBR (0x1B8) (5b5e648d12fcadc244c1ec30318e1eb9) \Device\Harddisk0\DR0
16:57:04.0575 4232 \Device\Harddisk0\DR0 - ok
16:57:04.0579 4232 Boot (0x1200) (800c4021f7551235ec82575df1d44481) \Device\Harddisk0\DR0\Partition0
16:57:04.0580 4232 \Device\Harddisk0\DR0\Partition0 - ok
16:57:04.0581 4232 ============================================================
16:57:04.0581 4232 Scan finished
16:57:04.0581 4232 ============================================================
16:57:04.0594 4224 Detected object count: 0
16:57:04.0594 4224 Actual detected object count: 0

#4 EmGem91

EmGem91
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:07:53 AM

Posted 06 June 2012 - 05:30 PM

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-06 17:06:22
-----------------------------
17:06:22.258 OS Version: Windows 6.0.6002 Service Pack 2
17:06:22.258 Number of processors: 2 586 0xF0D
17:06:22.259 ComputerName: EMILY-PC UserName:
17:06:24.402 Initialize success
17:08:32.028 AVAST engine defs: 12060602
17:12:38.276 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
17:12:38.279 Disk 0 Vendor: WDC_WD16 11.0 Size: 152627MB BusType: 3
17:12:38.302 Disk 0 MBR read successfully
17:12:38.304 Disk 0 MBR scan
17:12:38.309 Disk 0 Windows VISTA default MBR code
17:12:38.338 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
17:12:38.352 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 143707 MB offset 3074048
17:12:38.387 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS NTFS 7419 MB offset 297385984
17:12:38.394 Disk 0 scanning sectors +312581792
17:12:38.788 Disk 0 scanning C:\Windows\system32\drivers
17:12:49.189 Service scanning
17:12:49.602 Service .avgtdix \* **LOCKED** 123
17:13:11.568 Modules scanning
17:13:26.601 Disk 0 trace - called modules:
17:13:26.641 ntkrnlpa.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
17:13:26.647 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x858398b0]
17:13:26.653 3 CLASSPNP.SYS[879138b3] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0x84d7a028]
17:13:29.658 AVAST engine scan C:\Windows
17:13:42.355 AVAST engine scan C:\Windows\system32
17:17:13.005 AVAST engine scan C:\Windows\system32\drivers
17:17:28.659 AVAST engine scan C:\Users\EmilyPawelski
17:18:33.008 Disk 0 MBR has been saved successfully to "C:\Users\EmilyPawelski\Desktop\MBR.dat"
17:18:33.022 The log file has been saved successfully to "C:\Users\EmilyPawelski\Desktop\aswMBR.txt"

#5 EmGem91

EmGem91
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:07:53 AM

Posted 06 June 2012 - 11:31 PM

ESET online

C:\Documents and Settings\EmilyPawelski\Downloads\registrybooster.exe Win32/RegistryBooster application deleted - quarantined

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:53 AM

Posted 07 June 2012 - 12:39 AM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log


Download

MiniToolBox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Edited by narenxp, 07 June 2012 - 12:40 AM.


#7 EmGem91

EmGem91
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:07:53 AM

Posted 07 June 2012 - 10:01 AM

MiniToolBox by Farbar Version: 04-06-2012
Ran by EmilyPawelski (administrator) on 07-06-2012 at 09:56:23
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

Atheros AR5007EG Wireless Network Adapter = Wireless Network Connection (Connected)
Realtek PCIe FE Family Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global taskoffload=disabled
set interface interface="Wireless Network Connection" forwarding=disabled advertise=disabled mtu=1144 metric=0 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Emily-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : wi.rr.com

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : wi.rr.com
Description . . . . . . . . . . . : Atheros AR5007EG Wireless Network Adapter
Physical Address. . . . . . . . . : 00-24-D2-4E-46-64
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::d02c:79e1:b4bd:663d%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.108(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, June 07, 2012 8:51:33 AM
Lease Expires . . . . . . . . . . : Friday, June 08, 2012 8:51:32 AM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 301998435
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-11-01-DF-C2-00-1E-33-96-35-6B
DNS Servers . . . . . . . . . . . : 209.18.47.61
209.18.47.62
NetBIOS over Tcpip. . . . . . . . : Disabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
Physical Address. . . . . . . . . : 00-1E-33-AE-D6-0B
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:3452:1d6:3f57:fe93(Preferred)
Link-local IPv6 Address . . . . . : fe80::3452:1d6:3f57:fe93%14(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 12:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 14:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{0A2E6BA9-3B42-4B4C-BBFB-E7D86FD7E9DB}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 15:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : wi.rr.com
Description . . . . . . . . . . . : isatap.wi.rr.com
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: dns-cac-lb-01.rr.com
Address: 209.18.47.61

Name: google.com
Addresses: 2001:4860:400a:800::1008
74.125.225.40
74.125.225.41
74.125.225.46
74.125.225.32
74.125.225.33
74.125.225.34
74.125.225.35
74.125.225.36
74.125.225.37
74.125.225.38
74.125.225.39



Pinging google.com [74.125.225.129] with 32 bytes of data:

Reply from 74.125.225.129: bytes=32 time=10ms TTL=51

Reply from 74.125.225.129: bytes=32 time=16ms TTL=51



Ping statistics for 74.125.225.129:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 10ms, Maximum = 16ms, Average = 13ms

Server: dns-cac-lb-01.rr.com
Address: 209.18.47.61

Name: yahoo.com
Addresses: 72.30.38.140
98.139.183.24
209.191.122.70



Pinging yahoo.com [98.139.183.24] with 32 bytes of data:

Reply from 98.139.183.24: bytes=32 time=114ms TTL=44

Reply from 98.139.183.24: bytes=32 time=87ms TTL=44



Ping statistics for 98.139.183.24:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 87ms, Maximum = 114ms, Average = 100ms

Server: dns-cac-lb-01.rr.com
Address: 209.18.47.61

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
11 ...00 24 d2 4e 46 64 ...... Atheros AR5007EG Wireless Network Adapter
10 ...00 1e 33 ae d6 0b ...... Realtek PCIe FE Family Controller
1 ........................... Software Loopback Interface 1
14 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
15 ...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #2
17 ...00 00 00 00 00 00 00 e0 isatap.{0A2E6BA9-3B42-4B4C-BBFB-E7D86FD7E9DB}
16 ...00 00 00 00 00 00 00 e0 isatap.wi.rr.com
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.108 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.108 281
192.168.1.108 255.255.255.255 On-link 192.168.1.108 281
192.168.1.255 255.255.255.255 On-link 192.168.1.108 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.108 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.108 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
14 18 ::/0 On-link
1 306 ::1/128 On-link
14 18 2001::/32 On-link
14 266 2001:0:4137:9e76:3452:1d6:3f57:fe93/128
On-link
11 281 fe80::/64 On-link
14 266 fe80::/64 On-link
14 266 fe80::3452:1d6:3f57:fe93/128
On-link
11 281 fe80::d02c:79e1:b4bd:663d/128
On-link
1 306 ff00::/8 On-link
14 266 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
ATTENTION: The LibraryPath should be %SystemRoot%\system32\NLAapi.dll

Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/07/2012 08:51:59 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/07/2012 07:51:39 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 23324349

Error: (06/07/2012 07:51:39 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 23324349

Error: (06/07/2012 07:51:39 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/06/2012 11:29:43 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8605031

Error: (06/06/2012 11:29:43 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8605031

Error: (06/06/2012 11:29:43 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/06/2012 11:29:42 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8604017

Error: (06/06/2012 11:29:42 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8604017

Error: (06/06/2012 11:29:42 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


System errors:
=============
Error: (06/07/2012 08:51:59 AM) (Source: Service Control Manager) (User: )
Description: Avgtdix

Error: (06/06/2012 05:13:00 PM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume .

Error: (06/06/2012 04:52:35 PM) (Source: Service Control Manager) (User: )
Description: Avgtdix

Error: (06/06/2012 04:52:04 PM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume .

Error: (06/06/2012 04:52:00 PM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume .

Error: (06/06/2012 04:49:50 PM) (Source: DCOM) (User: )
Description: {6295DF2D-35EE-11D1-8707-00C04FD93327}

Error: (06/06/2012 03:37:27 PM) (Source: Service Control Manager) (User: )
Description: 30000WSearch

Error: (06/06/2012 00:59:08 PM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume .

Error: (06/06/2012 00:38:44 PM) (Source: Service Control Manager) (User: )
Description: Avgtdix

Error: (06/06/2012 00:38:12 PM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume .


Microsoft Office Sessions:
=========================
Error: (07/17/2011 04:41:03 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 1131 seconds with 420 seconds of active time. This session ended with a crash.

Error: (06/25/2011 09:53:53 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 42 seconds with 0 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
32 Bit HP CIO Components Installer (Version: 2.1.5)
Adobe AIR (Version: 3.1.0.4880)
Adobe Flash Player 11 ActiveX (Version: 11.2.202.235)
Adobe Flash Player 11 Plugin (Version: 11.2.202.235)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Adobe Shockwave Player 11.6 (Version: 11.6.3.633)
Amazon Kindle
Amazon MP3 Downloader 1.0.15 (Version: 1.0.15)
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
Atheros Driver Installation Program (Version: 5.2)
Atheros Wi-Fi Protected Setup Library
Auslogics Registry Cleaner (Version: version 2.0)
AVG 2012 (Version: 12.0.1913)
AVG 2012 (Version: 12.0.2425)
AVG 2012 (Version: 2012.0.1913)
AVG PC Tuneup (Version: 10.0.0.27)
Bonjour (Version: 3.0.0.10)
Brother Software Suite (Version: 1.0.3.0)
CD/DVD Drive Acoustic Silencer (Version: 2.02.03)
Cisco EAP-FAST Module (Version: 2.1.6)
Cisco LEAP Module (Version: 1.0.12)
Cisco PEAP Module (Version: 1.0.13)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Coupon Printer for Windows (Version: 5.0.0.1)
DivX Plus Web Player (Version: 2.0.0)
DocProc (Version: 10.0.0.0)
DocProcQFolder (Version: 1.00.0000)
ESET Online Scanner v3
Finale NotePad 2007 (Version: 12.0.13)
Google Talk Plugin (Version: 2.9.10.7526)
Hallmark Card Studio 2012 Deluxe (Version: 13.0.3.1)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Update (Version: 5.002.005.003)
HP_Network_UserGuide (Version: 1.00.0000)
HPPhotoSmartDiscLabel_PrintOnDisc (Version: 2.02.0000)
iCloud (Version: 1.1.0.40)
Intel® Graphics Media Accelerator Driver
Intel® Matrix Storage Manager
IrfanView (remove only)
iTunes (Version: 10.6.1.7)
Java Auto Updater (Version: 2.0.2.4)
Java™ 6 Update 21 (Version: 6.0.210)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Standard 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version: 3.5.8080.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 9.7.0621)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Microsoft XML Parser (Version: 8.20.8730.4)
Mozilla Firefox 12.0 (x86 en-US) (Version: 12.0)
Mozilla Maintenance Service (Version: 12.0)
MSXML 4.0 SP2 (KB941833) (Version: 4.20.9849.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 and SOAP Toolkit 3.0 (Version: 1.0.0.0)
Musicnotes Software Suite 1.0 (Version: 1.0)
NAC Posture Agent
Netflix Movie Viewer (Version: 1.2.211)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
PaperPort Image Printer (Version: 1.00.0000)
PLATO Web Learning Network Clients
Realtek 8169 8168 8101E 8102E Ethernet Driver (Version: 1.00.0000)
Realtek USB 2.0 Card Reader (Version: )
ScanSoft PaperPort 11 (Version: 11.2.0000)
Skype™ 5.9 (Version: 5.9.115)
Spelling Dictionaries Support For Adobe Reader 8 (Version: 8.0.0)
Spybot - Search & Destroy (Version: 1.6.2)
swMSM (Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 11.2.4.0)
TOSHIBA Assist (Version: 2.01.08)
TOSHIBA ConfigFree (Version: 7.2.20)
TOSHIBA Desktop Links (Version: 1.7)
TOSHIBA Hardware Setup (Version: 2.00.08)
TOSHIBA Recovery Disc Creator (Version: 2.0.0.2)
TOSHIBA Software Modem (Version: 2.1.77 (SM2177ALD04))
TOSHIBA Speech System Applications
TOSHIBA Speech System SR Engine(U.S.) Version1.0
TOSHIBA Speech System TTS Engine(U.S.) Version1.0
TOSHIBA Supervisor Password (Version: 2.00.04)
TOSHIBA Value Added Package (Version: 1.1.24)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2598290) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0)
Windows 7 Upgrade Advisor (Version: 2.0.5000.0)

========================= Memory info: ===================================

Percentage of memory in use: 62%
Total physical RAM: 1915.25 MB
Available physical RAM: 718.7 MB
Total Pagefile: 4077.8 MB
Available Pagefile: 2573.36 MB
Total Virtual: 2047.88 MB
Available Virtual: 1946.19 MB

========================= Partitions: =====================================

1 Drive c: (SQ004816V03) (Fixed) (Total:140.34 GB) (Free:27.57 GB) NTFS

========================= Users: ========================================

User accounts for \\EMILY-PC

Administrator EmilyPawelski Guest


**** End of log ****

I noticed it had a list of installed programs. Some of the programs that are installed on the computer, I'm not sure what their purpose is. Are there any unnecessary programs that could be deleted?

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:53 AM

Posted 07 June 2012 - 02:54 PM

I dont find unwanted programs in the list

Can you post the malwarebytes log?

#9 EmGem91

EmGem91
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:07:53 AM

Posted 07 June 2012 - 08:31 PM

This was before the reboot

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.06.07.02

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
EmilyPawelski :: EMILY-PC [administrator]

6/7/2012 1:02:45 AM
mbam-log-2012-06-07 (01-02-45).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 348754
Time elapsed: 59 minute(s), 37 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)






And this was after the reboot. There were no malicious files detected on either log.

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.06.07.02

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
EmilyPawelski :: EMILY-PC [administrator]

6/7/2012 8:53:30 AM
mbam-log-2012-06-07 (08-53-30).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 348400
Time elapsed: 1 hour(s), 40 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:53 AM

Posted 07 June 2012 - 08:45 PM

That looks good

Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-us/windows-vista/Turn-System-Restore-on-or-off

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users