Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google Redirect


  • Please log in to reply
5 replies to this topic

#1 diabean

diabean

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:57 AM

Posted 17 June 2012 - 12:38 AM

Google has been redirecting me to a lot of different websites. It started with re-directing me to happili.com but now it's gotten worse. Almost every time I go into Google, I'm getting redirected. I ran Malwarebytes Anti-Malware but it still seems to happen. I researched the issue and found many people giving many different solutions but I'm not sure which ones are the safest and the proper ones. So, I'm not sure what to do from here. I don't want to do stuff on my own so I'm looking for some expert advice so I don't ruin my computer. Thanks in advance.

Edited by hamluis, 17 June 2012 - 06:43 AM.
Moved from AV, Firewall, etc. to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:57 AM

Posted 17 June 2012 - 02:41 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Please download GMER from here(doesnot work on 64 bit OS)

http://www2.gmer.net/download.php

Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.

GMER will open to the Rootkit/Malware tab and perform an automatic Full Scan when first run. (do not use the computer while the scan is in progress)

If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
Now click the Scan button. If you see a rootkit warning window, click OK.
When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
Click the Copy button and paste the results into your next reply.


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

#3 diabean

diabean
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:57 AM

Posted 23 June 2012 - 09:57 PM

Hey. Thanks so much for responding. Sorry it took me so long to do this. I never got a notification that there was a response. Anyway, I'm completely clueless when it comes to this stuff so I hope I did it right and hope we can find the issue. It seems to be getting worse.




21:34:47.0766 5868 TDSS rootkit removing tool 2.7.41.0 Jun 20 2012 20:53:32
21:34:48.0025 5868 ============================================================
21:34:48.0025 5868 Current date / time: 2012/06/23 21:34:48.0025
21:34:48.0025 5868 SystemInfo:
21:34:48.0025 5868
21:34:48.0025 5868 OS Version: 6.1.7601 ServicePack: 1.0
21:34:48.0025 5868 Product type: Workstation
21:34:48.0026 5868 ComputerName: CERBERUS
21:34:48.0026 5868 UserName: Maria
21:34:48.0026 5868 Windows directory: C:\Windows
21:34:48.0026 5868 System windows directory: C:\Windows
21:34:48.0026 5868 Running under WOW64
21:34:48.0026 5868 Processor architecture: Intel x64
21:34:48.0026 5868 Number of processors: 3
21:34:48.0026 5868 Page size: 0x1000
21:34:48.0026 5868 Boot type: Normal boot
21:34:48.0026 5868 ============================================================
21:34:48.0560 5868 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:34:48.0565 5868 ============================================================
21:34:48.0565 5868 \Device\Harddisk0\DR0:
21:34:48.0566 5868 MBR partitions:
21:34:48.0566 5868 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1964800, BlocksNum 0x32000
21:34:48.0566 5868 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1996800, BlocksNum 0x389EF030
21:34:48.0566 5868 ============================================================
21:34:48.0594 5868 C: <-> \Device\Harddisk0\DR0\Partition1
21:34:48.0594 5868 ============================================================
21:34:48.0594 5868 Initialize success
21:34:48.0594 5868 ============================================================
21:34:53.0009 9076 ============================================================
21:34:53.0009 9076 Scan started
21:34:53.0009 9076 Mode: Manual; TDLFS;
21:34:53.0009 9076 ============================================================
21:34:53.0718 9076 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
21:34:53.0722 9076 1394ohci - ok
21:34:53.0863 9076 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
21:34:53.0869 9076 ACPI - ok
21:34:53.0920 9076 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
21:34:53.0921 9076 AcpiPmi - ok
21:34:54.0075 9076 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
21:34:54.0083 9076 adp94xx - ok
21:34:54.0194 9076 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
21:34:54.0199 9076 adpahci - ok
21:34:54.0247 9076 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
21:34:54.0250 9076 adpu320 - ok
21:34:54.0292 9076 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
21:34:54.0294 9076 AeLookupSvc - ok
21:34:54.0471 9076 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
21:34:54.0479 9076 AFD - ok
21:34:54.0542 9076 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
21:34:54.0544 9076 agp440 - ok
21:34:54.0592 9076 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
21:34:54.0594 9076 ALG - ok
21:34:54.0637 9076 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
21:34:54.0638 9076 aliide - ok
21:34:54.0731 9076 AMD External Events Utility (b9c8770f3061582da3f9ab39071dee37) C:\Windows\system32\atiesrxx.exe
21:34:54.0735 9076 AMD External Events Utility - ok
21:34:54.0845 9076 AMD FUEL Service - ok
21:34:54.0915 9076 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
21:34:54.0916 9076 amdide - ok
21:34:54.0952 9076 amdiox64 (6a2eeb0c4133b20773bb3dd0b7b377b4) C:\Windows\system32\DRIVERS\amdiox64.sys
21:34:54.0954 9076 amdiox64 - ok
21:34:55.0013 9076 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
21:34:55.0015 9076 AmdK8 - ok
21:34:56.0987 9076 amdkmdag (31d7999c389c7f1effd4b861b64ecaa9) C:\Windows\system32\DRIVERS\atikmdag.sys
21:34:57.0046 9076 amdkmdag - ok
21:34:57.0372 9076 amdkmdap (48e49cb63cb14e1a6ee80a14381213b0) C:\Windows\system32\DRIVERS\atikmpag.sys
21:34:57.0374 9076 amdkmdap - ok
21:34:57.0449 9076 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
21:34:57.0451 9076 AmdPPM - ok
21:34:57.0524 9076 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
21:34:57.0526 9076 amdsata - ok
21:34:57.0592 9076 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
21:34:57.0593 9076 amdsbs - ok
21:34:57.0625 9076 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
21:34:57.0625 9076 amdxata - ok
21:34:57.0672 9076 amd_sata (b69ab579e950511d6d9bd09aaa350001) C:\Windows\system32\DRIVERS\amd_sata.sys
21:34:57.0673 9076 amd_sata - ok
21:34:57.0726 9076 amd_xata (683f545b70c80fa2c6349eb52958ef29) C:\Windows\system32\DRIVERS\amd_xata.sys
21:34:57.0727 9076 amd_xata - ok
21:34:57.0796 9076 AmUStor (391887990cdaa83de5c56c3fde966da1) C:\Windows\system32\drivers\AmUStor.SYS
21:34:57.0797 9076 AmUStor - ok
21:34:57.0894 9076 AODDriver4.01 (f312fad7dbd49ed21a194ac71b497832) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
21:34:57.0895 9076 AODDriver4.01 - ok
21:34:58.0020 9076 ApfiltrService (6f9ef180bb9cec92d3e8ec9163748de5) C:\Windows\system32\DRIVERS\Apfiltr.sys
21:34:58.0025 9076 ApfiltrService - ok
21:34:58.0087 9076 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
21:34:58.0088 9076 AppID - ok
21:34:58.0131 9076 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
21:34:58.0133 9076 AppIDSvc - ok
21:34:58.0177 9076 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
21:34:58.0179 9076 Appinfo - ok
21:34:58.0315 9076 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:34:58.0316 9076 Apple Mobile Device - ok
21:34:58.0385 9076 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
21:34:58.0386 9076 arc - ok
21:34:58.0410 9076 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
21:34:58.0411 9076 arcsas - ok
21:34:58.0564 9076 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:34:58.0565 9076 aspnet_state - ok
21:34:58.0604 9076 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
21:34:58.0605 9076 AsyncMac - ok
21:34:58.0649 9076 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
21:34:58.0650 9076 atapi - ok
21:34:59.0290 9076 athr (de9fb3dade8fd39ae2c587df22d36b8e) C:\Windows\system32\DRIVERS\athrx.sys
21:34:59.0307 9076 athr - ok
21:34:59.0614 9076 AtiHDAudioService (230cf51113cd4b830b3bfd09b0d4c066) C:\Windows\system32\drivers\AtihdW76.sys
21:34:59.0616 9076 AtiHDAudioService - ok
21:34:59.0674 9076 AtiHdmiService (7e2f5a758f63f80f8b03f889b4e6b19f) C:\Windows\system32\drivers\AtiHdmi.sys
21:34:59.0676 9076 AtiHdmiService - ok
21:34:59.0745 9076 AtiPcie (7c5d273e29dcc5505469b299c6f29163) C:\Windows\system32\DRIVERS\AtiPcie.sys
21:34:59.0746 9076 AtiPcie - ok
21:34:59.0957 9076 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:34:59.0969 9076 AudioEndpointBuilder - ok
21:34:59.0988 9076 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:35:00.0000 9076 AudioSrv - ok
21:35:00.0213 9076 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
21:35:00.0214 9076 AxInstSV - ok
21:35:00.0440 9076 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
21:35:00.0443 9076 b06bdrv - ok
21:35:00.0585 9076 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
21:35:00.0590 9076 b57nd60a - ok
21:35:01.0015 9076 BCM43XX (9e84a931dbee0292e38ed672f6293a99) C:\Windows\system32\DRIVERS\bcmwl664.sys
21:35:01.0036 9076 BCM43XX - ok
21:35:01.0266 9076 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
21:35:01.0268 9076 BDESVC - ok
21:35:01.0344 9076 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
21:35:01.0344 9076 Beep - ok
21:35:01.0553 9076 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
21:35:01.0564 9076 BFE - ok
21:35:01.0788 9076 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
21:35:01.0804 9076 BITS - ok
21:35:01.0912 9076 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
21:35:01.0913 9076 blbdrive - ok
21:35:02.0148 9076 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
21:35:02.0156 9076 Bonjour Service - ok
21:35:02.0218 9076 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
21:35:02.0220 9076 bowser - ok
21:35:02.0265 9076 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:35:02.0266 9076 BrFiltLo - ok
21:35:02.0276 9076 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:35:02.0277 9076 BrFiltUp - ok
21:35:02.0347 9076 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
21:35:02.0350 9076 Browser - ok
21:35:02.0429 9076 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
21:35:02.0434 9076 Brserid - ok
21:35:02.0456 9076 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
21:35:02.0457 9076 BrSerWdm - ok
21:35:02.0469 9076 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
21:35:02.0470 9076 BrUsbMdm - ok
21:35:02.0481 9076 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
21:35:02.0482 9076 BrUsbSer - ok
21:35:02.0520 9076 BTCFilterService (ff7c57973eead140062238c5a0b7d455) C:\Windows\system32\DRIVERS\motfilt.sys
21:35:02.0521 9076 BTCFilterService - ok
21:35:02.0557 9076 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
21:35:02.0558 9076 BTHMODEM - ok
21:35:02.0622 9076 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
21:35:02.0624 9076 bthserv - ok
21:35:02.0690 9076 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
21:35:02.0692 9076 cdfs - ok
21:35:02.0791 9076 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
21:35:02.0794 9076 cdrom - ok
21:35:02.0871 9076 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:35:02.0873 9076 CertPropSvc - ok
21:35:02.0937 9076 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
21:35:02.0938 9076 circlass - ok
21:35:03.0050 9076 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
21:35:03.0056 9076 CLFS - ok
21:35:03.0144 9076 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:35:03.0147 9076 clr_optimization_v2.0.50727_32 - ok
21:35:03.0224 9076 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:35:03.0227 9076 clr_optimization_v2.0.50727_64 - ok
21:35:03.0351 9076 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:35:03.0354 9076 clr_optimization_v4.0.30319_32 - ok
21:35:03.0427 9076 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:35:03.0430 9076 clr_optimization_v4.0.30319_64 - ok
21:35:03.0465 9076 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
21:35:03.0466 9076 CmBatt - ok
21:35:03.0509 9076 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
21:35:03.0510 9076 cmdide - ok
21:35:03.0642 9076 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
21:35:03.0649 9076 CNG - ok
21:35:03.0695 9076 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
21:35:03.0696 9076 Compbatt - ok
21:35:03.0757 9076 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
21:35:03.0758 9076 CompositeBus - ok
21:35:03.0770 9076 COMSysApp - ok
21:35:03.0792 9076 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
21:35:03.0793 9076 crcdisk - ok
21:35:03.0885 9076 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
21:35:03.0889 9076 CryptSvc - ok
21:35:04.0049 9076 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:35:04.0061 9076 DcomLaunch - ok
21:35:04.0154 9076 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
21:35:04.0159 9076 defragsvc - ok
21:35:04.0216 9076 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
21:35:04.0218 9076 DfsC - ok
21:35:04.0339 9076 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
21:35:04.0345 9076 Dhcp - ok
21:35:04.0380 9076 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
21:35:04.0381 9076 discache - ok
21:35:04.0421 9076 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
21:35:04.0422 9076 Disk - ok
21:35:04.0512 9076 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
21:35:04.0517 9076 Dnscache - ok
21:35:04.0609 9076 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
21:35:04.0611 9076 dot3svc - ok
21:35:04.0679 9076 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
21:35:04.0681 9076 DPS - ok
21:35:04.0741 9076 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
21:35:04.0742 9076 drmkaud - ok
21:35:04.0899 9076 DsiWMIService (61e894fe1e9cc720c909e6e343351794) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
21:35:04.0904 9076 DsiWMIService - ok
21:35:05.0010 9076 dtsoftbus01 (46571ed73ae84469dca53081d33cf3c8) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
21:35:05.0015 9076 dtsoftbus01 - ok
21:35:05.0246 9076 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
21:35:05.0255 9076 DXGKrnl - ok
21:35:05.0310 9076 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
21:35:05.0312 9076 EapHost - ok
21:35:06.0073 9076 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
21:35:06.0121 9076 ebdrv - ok
21:35:06.0349 9076 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
21:35:06.0352 9076 EFS - ok
21:35:06.0572 9076 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
21:35:06.0583 9076 ehRecvr - ok
21:35:06.0633 9076 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
21:35:06.0636 9076 ehSched - ok
21:35:06.0826 9076 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
21:35:06.0830 9076 elxstor - ok
21:35:07.0106 9076 ePowerSvc (49eef52bfb986a2b5d70f4ec12637d7b) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
21:35:07.0119 9076 ePowerSvc - ok
21:35:07.0227 9076 EPSON_EB_RPCV4_04 (7db097f4f6786307168c0dddec43a565) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
21:35:07.0230 9076 EPSON_EB_RPCV4_04 - ok
21:35:07.0287 9076 EPSON_PM_RPCV4_04 (258aa65a0862e19b7de6981fda3758ad) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
21:35:07.0289 9076 EPSON_PM_RPCV4_04 - ok
21:35:07.0581 9076 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
21:35:07.0582 9076 ErrDev - ok
21:35:07.0731 9076 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
21:35:07.0739 9076 EventSystem - ok
21:35:07.0808 9076 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
21:35:07.0811 9076 exfat - ok
21:35:07.0880 9076 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
21:35:07.0884 9076 fastfat - ok
21:35:08.0071 9076 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
21:35:08.0087 9076 Fax - ok
21:35:08.0123 9076 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
21:35:08.0125 9076 fdc - ok
21:35:08.0155 9076 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
21:35:08.0158 9076 fdPHost - ok
21:35:08.0179 9076 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
21:35:08.0181 9076 FDResPub - ok
21:35:08.0219 9076 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
21:35:08.0222 9076 FileInfo - ok
21:35:08.0256 9076 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
21:35:08.0258 9076 Filetrace - ok
21:35:08.0291 9076 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
21:35:08.0293 9076 flpydisk - ok
21:35:08.0391 9076 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
21:35:08.0396 9076 FltMgr - ok
21:35:08.0697 9076 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
21:35:08.0713 9076 FontCache - ok
21:35:08.0801 9076 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:35:08.0802 9076 FontCache3.0.0.0 - ok
21:35:08.0872 9076 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
21:35:08.0875 9076 FsDepends - ok
21:35:08.0920 9076 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
21:35:08.0923 9076 Fs_Rec - ok
21:35:09.0033 9076 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
21:35:09.0046 9076 fvevol - ok
21:35:09.0098 9076 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
21:35:09.0101 9076 gagp30kx - ok
21:35:09.0243 9076 GameConsoleService (1fda0df739234c4023851a282dd28704) C:\Program Files (x86)\Acer Games\Acer Game Console\GameConsoleService.exe
21:35:09.0247 9076 GameConsoleService - ok
21:35:09.0313 9076 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:35:09.0316 9076 GEARAspiWDM - ok
21:35:09.0530 9076 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
21:35:09.0547 9076 gpsvc - ok
21:35:09.0642 9076 GREGService (0191dee9b9eb7902af2cf4f67301095d) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
21:35:09.0644 9076 GREGService - ok
21:35:09.0671 9076 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
21:35:09.0674 9076 hcw85cir - ok
21:35:09.0801 9076 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
21:35:09.0810 9076 HdAudAddService - ok
21:35:09.0876 9076 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
21:35:09.0881 9076 HDAudBus - ok
21:35:09.0915 9076 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
21:35:09.0918 9076 HidBatt - ok
21:35:09.0947 9076 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
21:35:09.0951 9076 HidBth - ok
21:35:09.0974 9076 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
21:35:09.0977 9076 HidIr - ok
21:35:10.0007 9076 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
21:35:10.0012 9076 hidserv - ok
21:35:10.0070 9076 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
21:35:10.0073 9076 HidUsb - ok
21:35:10.0143 9076 hitmanpro35 (44f92c1f913e582bef9cac66443c6230) C:\Windows\system32\drivers\hitmanpro36.sys
21:35:10.0146 9076 hitmanpro35 - ok
21:35:10.0207 9076 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
21:35:10.0212 9076 hkmsvc - ok
21:35:10.0306 9076 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
21:35:10.0314 9076 HomeGroupListener - ok
21:35:10.0379 9076 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
21:35:10.0384 9076 HomeGroupProvider - ok
21:35:10.0614 9076 hpqcxs08 (0a3c6aa4a9fc38c20ba4eac2c3351c05) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
21:35:10.0618 9076 hpqcxs08 - ok
21:35:10.0673 9076 hpqddsvc (f3f72a2a86c22610bca5439fa789dd52) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
21:35:10.0677 9076 hpqddsvc - ok
21:35:10.0743 9076 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
21:35:10.0747 9076 HpSAMD - ok
21:35:11.0031 9076 HPSLPSVC (f37882f128efacefe353e0bae2766909) C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
21:35:11.0048 9076 HPSLPSVC - ok
21:35:11.0253 9076 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
21:35:11.0262 9076 HTTP - ok
21:35:11.0299 9076 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
21:35:11.0302 9076 hwpolicy - ok
21:35:11.0373 9076 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
21:35:11.0377 9076 i8042prt - ok
21:35:11.0508 9076 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
21:35:11.0517 9076 iaStorV - ok
21:35:11.0790 9076 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:35:11.0808 9076 idsvc - ok
21:35:13.0413 9076 igfx (a87261ef1546325b559374f5689cf5bc) C:\Windows\system32\DRIVERS\igdkmd64.sys
21:35:13.0552 9076 igfx - ok
21:35:13.0802 9076 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
21:35:13.0805 9076 iirsp - ok
21:35:14.0033 9076 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
21:35:14.0052 9076 IKEEXT - ok
21:35:14.0802 9076 IntcAzAudAddService (245f0288792486cc37924908af19a553) C:\Windows\system32\drivers\RTKVHD64.sys
21:35:14.0851 9076 IntcAzAudAddService - ok
21:35:15.0081 9076 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
21:35:15.0083 9076 intelide - ok
21:35:15.0139 9076 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
21:35:15.0142 9076 intelppm - ok
21:35:15.0188 9076 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
21:35:15.0191 9076 IPBusEnum - ok
21:35:15.0241 9076 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:35:15.0244 9076 IpFilterDriver - ok
21:35:15.0409 9076 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
21:35:15.0422 9076 iphlpsvc - ok
21:35:15.0470 9076 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
21:35:15.0474 9076 IPMIDRV - ok
21:35:15.0525 9076 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
21:35:15.0529 9076 IPNAT - ok
21:35:15.0848 9076 iPod Service (50d6ccc6ff5561f9f56946b3e6164fb8) C:\Program Files\iPod\bin\iPodService.exe
21:35:15.0860 9076 iPod Service - ok
21:35:15.0885 9076 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
21:35:15.0887 9076 IRENUM - ok
21:35:15.0924 9076 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
21:35:15.0926 9076 isapnp - ok
21:35:16.0003 9076 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
21:35:16.0006 9076 iScsiPrt - ok
21:35:16.0136 9076 k57nd60a (455b75c19bf3f1f2ee3ac10e1169826c) C:\Windows\system32\DRIVERS\k57nd60a.sys
21:35:16.0141 9076 k57nd60a - ok
21:35:16.0175 9076 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
21:35:16.0177 9076 kbdclass - ok
21:35:16.0231 9076 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
21:35:16.0234 9076 kbdhid - ok
21:35:16.0283 9076 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:35:16.0286 9076 KeyIso - ok
21:35:16.0321 9076 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
21:35:16.0325 9076 KSecDD - ok
21:35:16.0370 9076 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
21:35:16.0375 9076 KSecPkg - ok
21:35:16.0407 9076 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
21:35:16.0410 9076 ksthunk - ok
21:35:16.0540 9076 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
21:35:16.0551 9076 KtmRm - ok
21:35:16.0629 9076 L1E (2ac603c3188c704cfce353659aa7ad71) C:\Windows\system32\DRIVERS\L1E62x64.sys
21:35:16.0632 9076 L1E - ok
21:35:16.0725 9076 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
21:35:16.0735 9076 LanmanServer - ok
21:35:16.0798 9076 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
21:35:16.0805 9076 LanmanWorkstation - ok
21:35:16.0867 9076 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
21:35:16.0871 9076 lltdio - ok
21:35:16.0959 9076 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
21:35:16.0968 9076 lltdsvc - ok
21:35:16.0990 9076 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
21:35:16.0994 9076 lmhosts - ok
21:35:17.0067 9076 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
21:35:17.0071 9076 LSI_FC - ok
21:35:17.0102 9076 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
21:35:17.0104 9076 LSI_SAS - ok
21:35:17.0123 9076 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:35:17.0126 9076 LSI_SAS2 - ok
21:35:17.0154 9076 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:35:17.0157 9076 LSI_SCSI - ok
21:35:17.0192 9076 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
21:35:17.0195 9076 luafv - ok
21:35:17.0358 9076 McComponentHostService (fd3ad5e1ecdaa94a89d6697f5c5465d6) C:\Program Files (x86)\McAfee Security Scan\2.1.121\McCHSvc.exe
21:35:17.0364 9076 McComponentHostService - ok
21:35:17.0419 9076 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
21:35:17.0425 9076 Mcx2Svc - ok
21:35:17.0461 9076 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
21:35:17.0464 9076 megasas - ok
21:35:17.0534 9076 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
21:35:17.0542 9076 MegaSR - ok
21:35:17.0606 9076 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:35:17.0610 9076 MMCSS - ok
21:35:17.0654 9076 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
21:35:17.0657 9076 Modem - ok
21:35:17.0691 9076 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
21:35:17.0693 9076 monitor - ok
21:35:17.0760 9076 motccgp (93f5adcad940111f6d4d71ae1d9ec7f6) C:\Windows\system32\DRIVERS\motccgp.sys
21:35:17.0761 9076 motccgp - ok
21:35:17.0776 9076 motccgpfl (d51e009baeda07ebc107d49d224c2414) C:\Windows\system32\DRIVERS\motccgpfl.sys
21:35:17.0778 9076 motccgpfl - ok
21:35:17.0818 9076 motmodem (db83dc223b9133da3e41afcbdecc46b5) C:\Windows\system32\DRIVERS\motmodem.sys
21:35:17.0820 9076 motmodem - ok
21:35:17.0924 9076 MotoConnect Service (9b2923c59d49672d1205c391a1296525) C:\Program Files (x86)\Motorola\MotoConnectService\MotoConnectService.exe
21:35:17.0927 9076 MotoConnect Service - ok
21:35:17.0986 9076 MotoSwitchService (ebd05f60cafc5bba2602b8d7101082d3) C:\Windows\system32\DRIVERS\motswch.sys
21:35:17.0988 9076 MotoSwitchService - ok
21:35:18.0032 9076 Motousbnet (87701078c3f720ac7a028e937994cc49) C:\Windows\system32\DRIVERS\Motousbnet.sys
21:35:18.0035 9076 Motousbnet - ok
21:35:18.0098 9076 motusbdevice (307727f9829fb46ff4be0e4d1dac5002) C:\Windows\system32\DRIVERS\motusbdevice.sys
21:35:18.0100 9076 motusbdevice - ok
21:35:18.0157 9076 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
21:35:18.0160 9076 mouclass - ok
21:35:18.0205 9076 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
21:35:18.0208 9076 mouhid - ok
21:35:18.0263 9076 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
21:35:18.0267 9076 mountmgr - ok
21:35:18.0356 9076 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:35:18.0360 9076 MozillaMaintenance - ok
21:35:18.0434 9076 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
21:35:18.0439 9076 mpio - ok
21:35:18.0499 9076 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
21:35:18.0502 9076 mpsdrv - ok
21:35:18.0730 9076 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
21:35:18.0749 9076 MpsSvc - ok
21:35:18.0814 9076 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
21:35:18.0817 9076 MRxDAV - ok
21:35:18.0877 9076 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:35:18.0882 9076 mrxsmb - ok
21:35:18.0974 9076 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:35:18.0981 9076 mrxsmb10 - ok
21:35:19.0026 9076 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:35:19.0030 9076 mrxsmb20 - ok
21:35:19.0079 9076 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
21:35:19.0082 9076 msahci - ok
21:35:19.0157 9076 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
21:35:19.0160 9076 msdsm - ok
21:35:19.0220 9076 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
21:35:19.0227 9076 MSDTC - ok
21:35:19.0285 9076 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
21:35:19.0288 9076 Msfs - ok
21:35:19.0304 9076 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
21:35:19.0307 9076 mshidkmdf - ok
21:35:19.0349 9076 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
21:35:19.0351 9076 msisadrv - ok
21:35:19.0421 9076 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
21:35:19.0427 9076 MSiSCSI - ok
21:35:19.0432 9076 msiserver - ok
21:35:19.0483 9076 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
21:35:19.0484 9076 MSKSSRV - ok
21:35:19.0490 9076 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
21:35:19.0492 9076 MSPCLOCK - ok
21:35:19.0511 9076 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
21:35:19.0513 9076 MSPQM - ok
21:35:19.0633 9076 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
21:35:19.0641 9076 MsRPC - ok
21:35:19.0693 9076 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
21:35:19.0696 9076 mssmbios - ok
21:35:19.0725 9076 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
21:35:19.0728 9076 MSTEE - ok
21:35:19.0738 9076 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
21:35:19.0741 9076 MTConfig - ok
21:35:19.0788 9076 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
21:35:19.0790 9076 Mup - ok
21:35:19.0928 9076 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
21:35:19.0942 9076 napagent - ok
21:35:20.0052 9076 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
21:35:20.0060 9076 NativeWifiP - ok
21:35:20.0284 9076 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
21:35:20.0301 9076 NDIS - ok
21:35:20.0322 9076 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
21:35:20.0324 9076 NdisCap - ok
21:35:20.0347 9076 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
21:35:20.0349 9076 NdisTapi - ok
21:35:20.0398 9076 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
21:35:20.0400 9076 Ndisuio - ok
21:35:20.0469 9076 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
21:35:20.0473 9076 NdisWan - ok
21:35:20.0535 9076 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
21:35:20.0538 9076 NDProxy - ok
21:35:20.0704 9076 Net Driver HPZ12 (2334dc48997ba203b794df3ee70521db) C:\Windows\system32\HPZinw12.dll
21:35:20.0709 9076 Net Driver HPZ12 - ok
21:35:20.0780 9076 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
21:35:20.0783 9076 NetBIOS - ok
21:35:20.0928 9076 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
21:35:20.0932 9076 NetBT - ok
21:35:21.0014 9076 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:35:21.0017 9076 Netlogon - ok
21:35:21.0270 9076 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
21:35:21.0284 9076 Netman - ok
21:35:21.0863 9076 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:35:21.0868 9076 NetMsmqActivator - ok
21:35:21.0885 9076 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:35:21.0888 9076 NetPipeActivator - ok
21:35:22.0007 9076 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
21:35:22.0016 9076 netprofm - ok
21:35:22.0021 9076 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:35:22.0023 9076 NetTcpActivator - ok
21:35:22.0029 9076 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:35:22.0030 9076 NetTcpPortSharing - ok
21:35:22.0117 9076 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
21:35:22.0120 9076 nfrd960 - ok
21:35:22.0234 9076 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
21:35:22.0243 9076 NlaSvc - ok
21:35:22.0290 9076 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
21:35:22.0293 9076 Npfs - ok
21:35:22.0327 9076 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
21:35:22.0332 9076 nsi - ok
21:35:22.0349 9076 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
21:35:22.0354 9076 nsiproxy - ok
21:35:22.0827 9076 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
21:35:22.0853 9076 Ntfs - ok
21:35:22.0983 9076 NTI IScheduleSvc (5b3ce960c62dbe864be9a0bd043a3e30) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
21:35:22.0986 9076 NTI IScheduleSvc - ok
21:35:23.0061 9076 NTIBackupSvc (15221dd637d9d0ffc60848ebbf1df538) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
21:35:23.0064 9076 NTIBackupSvc - ok
21:35:23.0312 9076 NTIDrvr (64ddd0dee976302f4bd93e5efcc2f013) C:\Windows\system32\drivers\NTIDrvr.sys
21:35:23.0315 9076 NTIDrvr - ok
21:35:23.0389 9076 NTISchedulerSvc (b5071e15d4c3f5ef5018aff7e85a85e5) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
21:35:23.0394 9076 NTISchedulerSvc - ok
21:35:23.0421 9076 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
21:35:23.0423 9076 Null - ok
21:35:23.0504 9076 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
21:35:23.0510 9076 nvraid - ok
21:35:23.0580 9076 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
21:35:23.0583 9076 nvstor - ok
21:35:23.0636 9076 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
21:35:23.0639 9076 nv_agp - ok
21:35:23.0832 9076 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:35:23.0839 9076 odserv - ok
21:35:23.0893 9076 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
21:35:23.0895 9076 ohci1394 - ok
21:35:23.0966 9076 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:35:23.0969 9076 ose - ok
21:35:24.0110 9076 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:35:24.0118 9076 p2pimsvc - ok
21:35:24.0242 9076 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
21:35:24.0252 9076 p2psvc - ok
21:35:24.0298 9076 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
21:35:24.0301 9076 Parport - ok
21:35:24.0358 9076 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
21:35:24.0360 9076 partmgr - ok
21:35:24.0423 9076 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
21:35:24.0429 9076 PcaSvc - ok
21:35:24.0576 9076 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
21:35:24.0579 9076 pci - ok
21:35:24.0629 9076 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
21:35:24.0631 9076 pciide - ok
21:35:24.0727 9076 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
21:35:24.0732 9076 pcmcia - ok
21:35:24.0794 9076 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
21:35:24.0795 9076 pcw - ok
21:35:24.0994 9076 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
21:35:25.0000 9076 PEAUTH - ok
21:35:25.0226 9076 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
21:35:25.0229 9076 PerfHost - ok
21:35:25.0744 9076 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
21:35:25.0768 9076 pla - ok
21:35:25.0945 9076 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
21:35:25.0955 9076 PlugPlay - ok
21:35:26.0077 9076 Pml Driver HPZ12 (ac78df349f0e4cfb8b667c0cfff83cce) C:\Windows\system32\HPZipm12.dll
21:35:26.0081 9076 Pml Driver HPZ12 - ok
21:35:26.0130 9076 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
21:35:26.0134 9076 PNRPAutoReg - ok
21:35:26.0241 9076 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:35:26.0250 9076 PNRPsvc - ok
21:35:26.0395 9076 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
21:35:26.0405 9076 PolicyAgent - ok
21:35:26.0508 9076 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
21:35:26.0514 9076 Power - ok
21:35:26.0628 9076 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
21:35:26.0631 9076 PptpMiniport - ok
21:35:26.0674 9076 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
21:35:26.0676 9076 Processor - ok
21:35:26.0777 9076 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
21:35:26.0784 9076 ProfSvc - ok
21:35:26.0837 9076 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:35:26.0840 9076 ProtectedStorage - ok
21:35:26.0928 9076 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
21:35:26.0931 9076 Psched - ok
21:35:27.0307 9076 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
21:35:27.0331 9076 ql2300 - ok
21:35:27.0569 9076 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
21:35:27.0570 9076 ql40xx - ok
21:35:27.0638 9076 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
21:35:27.0641 9076 QWAVE - ok
21:35:27.0658 9076 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
21:35:27.0659 9076 QWAVEdrv - ok
21:35:27.0667 9076 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
21:35:27.0667 9076 RasAcd - ok
21:35:27.0716 9076 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
21:35:27.0717 9076 RasAgileVpn - ok
21:35:27.0766 9076 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
21:35:27.0768 9076 RasAuto - ok
21:35:27.0820 9076 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:35:27.0821 9076 Rasl2tp - ok
21:35:27.0924 9076 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
21:35:27.0928 9076 RasMan - ok
21:35:27.0974 9076 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
21:35:27.0975 9076 RasPppoe - ok
21:35:27.0999 9076 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
21:35:28.0000 9076 RasSstp - ok
21:35:28.0090 9076 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
21:35:28.0092 9076 rdbss - ok
21:35:28.0122 9076 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
21:35:28.0123 9076 rdpbus - ok
21:35:28.0152 9076 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:35:28.0152 9076 RDPCDD - ok
21:35:28.0173 9076 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
21:35:28.0174 9076 RDPENCDD - ok
21:35:28.0193 9076 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
21:35:28.0194 9076 RDPREFMP - ok
21:35:28.0267 9076 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
21:35:28.0269 9076 RDPWD - ok
21:35:28.0369 9076 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
21:35:28.0371 9076 rdyboost - ok
21:35:28.0412 9076 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
21:35:28.0414 9076 RemoteAccess - ok
21:35:28.0516 9076 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
21:35:28.0519 9076 RemoteRegistry - ok
21:35:28.0565 9076 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
21:35:28.0567 9076 RpcEptMapper - ok
21:35:28.0595 9076 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
21:35:28.0597 9076 RpcLocator - ok
21:35:28.0734 9076 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:35:28.0739 9076 RpcSs - ok
21:35:28.0802 9076 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
21:35:28.0803 9076 rspndr - ok
21:35:28.0848 9076 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:35:28.0849 9076 SamSs - ok
21:35:28.0908 9076 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
21:35:28.0909 9076 sbp2port - ok
21:35:28.0980 9076 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
21:35:28.0983 9076 SCardSvr - ok
21:35:29.0020 9076 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
21:35:29.0021 9076 scfilter - ok
21:35:29.0286 9076 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
21:35:29.0303 9076 Schedule - ok
21:35:29.0357 9076 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:35:29.0358 9076 SCPolicySvc - ok
21:35:29.0438 9076 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
21:35:29.0444 9076 SDRSVC - ok
21:35:29.0533 9076 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
21:35:29.0534 9076 secdrv - ok
21:35:29.0578 9076 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
21:35:29.0581 9076 seclogon - ok
21:35:29.0614 9076 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
21:35:29.0616 9076 SENS - ok
21:35:29.0651 9076 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
21:35:29.0653 9076 SensrSvc - ok
21:35:29.0697 9076 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
21:35:29.0698 9076 Serenum - ok
21:35:29.0731 9076 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
21:35:29.0733 9076 Serial - ok
21:35:29.0772 9076 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
21:35:29.0774 9076 sermouse - ok
21:35:29.0855 9076 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
21:35:29.0858 9076 SessionEnv - ok
21:35:29.0899 9076 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
21:35:29.0900 9076 sffdisk - ok
21:35:29.0919 9076 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
21:35:29.0921 9076 sffp_mmc - ok
21:35:29.0936 9076 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
21:35:29.0937 9076 sffp_sd - ok
21:35:29.0967 9076 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
21:35:29.0968 9076 sfloppy - ok
21:35:30.0057 9076 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
21:35:30.0060 9076 SharedAccess - ok
21:35:30.0174 9076 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
21:35:30.0184 9076 ShellHWDetection - ok
21:35:30.0200 9076 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:35:30.0202 9076 SiSRaid2 - ok
21:35:30.0227 9076 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
21:35:30.0229 9076 SiSRaid4 - ok
21:35:30.0273 9076 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
21:35:30.0275 9076 Smb - ok
21:35:30.0332 9076 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
21:35:30.0337 9076 SNMPTRAP - ok
21:35:30.0371 9076 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
21:35:30.0372 9076 spldr - ok
21:35:30.0530 9076 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
21:35:30.0542 9076 Spooler - ok
21:35:31.0346 9076 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
21:35:31.0373 9076 sppsvc - ok
21:35:31.0601 9076 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
21:35:31.0607 9076 sppuinotify - ok
21:35:31.0776 9076 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
21:35:31.0783 9076 srv - ok
21:35:31.0883 9076 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
21:35:31.0887 9076 srv2 - ok
21:35:31.0933 9076 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
21:35:31.0935 9076 srvnet - ok
21:35:32.0014 9076 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
21:35:32.0017 9076 SSDPSRV - ok
21:35:32.0041 9076 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
21:35:32.0044 9076 SstpSvc - ok
21:35:32.0074 9076 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
21:35:32.0075 9076 stexstor - ok
21:35:32.0119 9076 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
21:35:32.0120 9076 StillCam - ok
21:35:32.0275 9076 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
21:35:32.0280 9076 stisvc - ok
21:35:32.0309 9076 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
21:35:32.0310 9076 swenum - ok
21:35:32.0449 9076 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
21:35:32.0454 9076 swprv - ok
21:35:32.0851 9076 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
21:35:32.0868 9076 SysMain - ok
21:35:33.0093 9076 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
21:35:33.0099 9076 TabletInputService - ok
21:35:33.0212 9076 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
21:35:33.0221 9076 TapiSrv - ok
21:35:33.0265 9076 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
21:35:33.0270 9076 TBS - ok
21:35:33.0776 9076 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
21:35:33.0801 9076 Tcpip - ok
21:35:34.0559 9076 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
21:35:34.0582 9076 TCPIP6 - ok
21:35:34.0818 9076 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
21:35:34.0819 9076 tcpipreg - ok
21:35:34.0856 9076 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
21:35:34.0857 9076 TDPIPE - ok
21:35:34.0891 9076 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
21:35:34.0892 9076 TDTCP - ok
21:35:34.0958 9076 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
21:35:34.0959 9076 tdx - ok
21:35:34.0999 9076 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
21:35:35.0000 9076 TermDD - ok
21:35:35.0183 9076 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
21:35:35.0198 9076 TermService - ok
21:35:35.0236 9076 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
21:35:35.0241 9076 Themes - ok
21:35:35.0295 9076 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:35:35.0299 9076 THREADORDER - ok
21:35:35.0347 9076 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
21:35:35.0353 9076 TrkWks - ok
21:35:35.0462 9076 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
21:35:35.0466 9076 TrustedInstaller - ok
21:35:35.0525 9076 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:35:35.0526 9076 tssecsrv - ok
21:35:35.0611 9076 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
21:35:35.0613 9076 TsUsbFlt - ok
21:35:35.0712 9076 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
21:35:35.0715 9076 tunnel - ok
21:35:35.0766 9076 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
21:35:35.0768 9076 uagp35 - ok
21:35:35.0822 9076 UBHelper (2e22c1fd397a5a9ffef55e9d1fc96c00) C:\Windows\system32\drivers\UBHelper.sys
21:35:35.0824 9076 UBHelper - ok
21:35:35.0922 9076 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
21:35:35.0924 9076 udfs - ok
21:35:35.0965 9076 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
21:35:35.0967 9076 UI0Detect - ok
21:35:36.0015 9076 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
21:35:36.0016 9076 uliagpkx - ok
21:35:36.0072 9076 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
21:35:36.0074 9076 umbus - ok
21:35:36.0120 9076 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
21:35:36.0121 9076 UmPass - ok
21:35:36.0254 9076 Updater Service (f9ec9acd504d823d9b9ca98a4f8d3ca2) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
21:35:36.0258 9076 Updater Service - ok
21:35:36.0363 9076 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
21:35:36.0372 9076 upnphost - ok
21:35:36.0439 9076 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
21:35:36.0441 9076 USBAAPL64 - ok
21:35:36.0497 9076 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
21:35:36.0499 9076 usbccgp - ok
21:35:36.0561 9076 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
21:35:36.0563 9076 usbcir - ok
21:35:36.0593 9076 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
21:35:36.0595 9076 usbehci - ok
21:35:36.0677 9076 usbfilter (76e2ffad301490ba27b947c6507752fb) C:\Windows\system32\DRIVERS\usbfilter.sys
21:35:36.0679 9076 usbfilter - ok
21:35:36.0811 9076 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
21:35:36.0817 9076 usbhub - ok
21:35:36.0874 9076 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
21:35:36.0875 9076 usbohci - ok
21:35:36.0909 9076 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
21:35:36.0910 9076 usbprint - ok
21:35:36.0961 9076 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
21:35:36.0963 9076 usbscan - ok
21:35:37.0024 9076 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:35:37.0026 9076 USBSTOR - ok
21:35:37.0072 9076 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
21:35:37.0073 9076 usbuhci - ok
21:35:37.0163 9076 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
21:35:37.0167 9076 usbvideo - ok
21:35:37.0219 9076 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
21:35:37.0224 9076 UxSms - ok
21:35:37.0304 9076 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:35:37.0307 9076 VaultSvc - ok
21:35:37.0360 9076 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
21:35:37.0361 9076 vdrvroot - ok
21:35:37.0526 9076 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
21:35:37.0538 9076 vds - ok
21:35:37.0580 9076 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
21:35:37.0581 9076 vga - ok
21:35:37.0611 9076 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
21:35:37.0612 9076 VgaSave - ok
21:35:37.0706 9076 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
21:35:37.0710 9076 vhdmp - ok
21:35:37.0739 9076 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
21:35:37.0740 9076 viaide - ok
21:35:37.0774 9076 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
21:35:37.0776 9076 volmgr - ok
21:35:37.0892 9076 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
21:35:37.0898 9076 volmgrx - ok
21:35:37.0977 9076 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
21:35:37.0980 9076 volsnap - ok
21:35:38.0033 9076 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
21:35:38.0035 9076 vsmraid - ok
21:35:38.0421 9076 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
21:35:38.0449 9076 VSS - ok
21:35:38.0718 9076 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
21:35:38.0720 9076 vwifibus - ok
21:35:38.0746 9076 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
21:35:38.0748 9076 vwififlt - ok
21:35:38.0792 9076 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
21:35:38.0793 9076 vwifimp - ok
21:35:38.0905 9076 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
21:35:38.0915 9076 W32Time - ok
21:35:38.0955 9076 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
21:35:38.0957 9076 WacomPen - ok
21:35:39.0027 9076 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:35:39.0029 9076 WANARP - ok
21:35:39.0037 9076 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:35:39.0039 9076 Wanarpv6 - ok
21:35:39.0384 9076 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
21:35:39.0404 9076 WatAdminSvc - ok
21:35:39.0821 9076 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
21:35:39.0848 9076 wbengine - ok
21:35:40.0113 9076 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
21:35:40.0120 9076 WbioSrvc - ok
21:35:40.0228 9076 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
21:35:40.0233 9076 wcncsvc - ok
21:35:40.0263 9076 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
21:35:40.0266 9076 WcsPlugInService - ok
21:35:40.0323 9076 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
21:35:40.0324 9076 Wd - ok
21:35:40.0471 9076 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
21:35:40.0475 9076 Wdf01000 - ok
21:35:40.0519 9076 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:35:40.0524 9076 WdiServiceHost - ok
21:35:40.0532 9076 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:35:40.0538 9076 WdiSystemHost - ok
21:35:40.0621 9076 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
21:35:40.0625 9076 WebClient - ok
21:35:40.0697 9076 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
21:35:40.0700 9076 Wecsvc - ok
21:35:40.0735 9076 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
21:35:40.0738 9076 wercplsupport - ok
21:35:40.0779 9076 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
21:35:40.0782 9076 WerSvc - ok
21:35:40.0851 9076 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
21:35:40.0853 9076 WfpLwf - ok
21:35:40.0878 9076 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
21:35:40.0879 9076 WIMMount - ok
21:35:40.0912 9076 WinDefend - ok
21:35:40.0933 9076 WinHttpAutoProxySvc - ok
21:35:41.0052 9076 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
21:35:41.0056 9076 Winmgmt - ok
21:35:41.0547 9076 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
21:35:41.0582 9076 WinRM - ok
21:35:41.0868 9076 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
21:35:41.0870 9076 WinUsb - ok
21:35:42.0100 9076 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
21:35:42.0113 9076 Wlansvc - ok
21:35:42.0762 9076 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:35:42.0798 9076 wlidsvc - ok
21:35:43.0047 9076 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
21:35:43.0048 9076 WmiAcpi - ok
21:35:43.0149 9076 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
21:35:43.0152 9076 wmiApSrv - ok
21:35:43.0233 9076 WMPNetworkSvc - ok
21:35:43.0414 9076 WMZuneComm (83b6ca03c846fcd47f9883d77d1eb27b) C:\Program Files\Zune\WMZuneComm.exe
21:35:43.0420 9076 WMZuneComm - ok
21:35:43.0457 9076 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
21:35:43.0459 9076 WPCSvc - ok
21:35:43.0521 9076 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
21:35:43.0528 9076 WPDBusEnum - ok
21:35:43.0562 9076 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
21:35:43.0563 9076 ws2ifsl - ok
21:35:43.0603 9076 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
21:35:43.0606 9076 wscsvc - ok
21:35:43.0654 9076 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\Windows\system32\DRIVERS\WSDPrint.sys
21:35:43.0654 9076 WSDPrintDevice - ok
21:35:43.0676 9076 WSDScan (4a2a5c50dd1a63577d3aca94269fbc7f) C:\Windows\system32\DRIVERS\WSDScan.sys
21:35:43.0676 9076 WSDScan - ok
21:35:43.0680 9076 WSearch - ok
21:35:44.0310 9076 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
21:35:44.0351 9076 wuauserv - ok
21:35:44.0674 9076 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
21:35:44.0676 9076 WudfPf - ok
21:35:44.0754 9076 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:35:44.0757 9076 WUDFRd - ok
21:35:44.0817 9076 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
21:35:44.0823 9076 wudfsvc - ok
21:35:44.0901 9076 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
21:35:44.0909 9076 WwanSvc - ok
21:35:46.0807 9076 ZuneNetworkSvc (67b787c34fb2888d01b130ae007042d8) C:\Program Files\Zune\ZuneNss.exe
21:35:46.0893 9076 ZuneNetworkSvc - ok
21:35:47.0102 9076 ZuneWlanCfgSvc (4d89fc1c20cf655739efac5da81a67bc) C:\Program Files\Zune\ZuneWlanCfgSvc.exe
21:35:47.0110 9076 ZuneWlanCfgSvc - ok
21:35:47.0169 9076 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
21:35:48.0172 9076 \Device\Harddisk0\DR0 - ok
21:35:48.0180 9076 Boot (0x1200) (2f712538c8415a69e70bc0a1f034b533) \Device\Harddisk0\DR0\Partition0
21:35:48.0185 9076 \Device\Harddisk0\DR0\Partition0 - ok
21:35:48.0216 9076 Boot (0x1200) (8224cf1406b79a9716fe008951eeb735) \Device\Harddisk0\DR0\Partition1
21:35:48.0220 9076 \Device\Harddisk0\DR0\Partition1 - ok
21:35:48.0220 9076 ============================================================
21:35:48.0221 9076 Scan finished
21:35:48.0221 9076 ============================================================
21:35:48.0235 6940 Detected object count: 0
21:35:48.0235 6940 Actual detected object count: 0



GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-06-23 22:20:23
Windows 6.1.7601 Service Pack 1
Running: xh4veqqh.exe


---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager@PendingFileRenameOperations ????ag??? ??????|???\?l??????H?????????????????????????????? ??????? ??????? ???16??v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\programdata\battle.net\agent\agent.998\agent.exe|Name=Battle.net Update Agent|Desc=Battle.net Update Agent|Edge=TRUE|Defer=App|??>?????0????`???4?D?????? ?????????????????? ???????????????????49953.sys????????????????e????????????????????????????????????????????????????6???????????5?????????????????????3????????????U???????;??????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????? ??????????????????????????????????????????????????t???X?h??????D???????????????????????????????????? ?????????34??{00000000-0000-0000-FFFF-FFFFFFFFFFFF}??????????1????i?????????????EMo??Microsoft 1.1 UAA Function Driver for High Definition Audio?3D??????????v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Domain|RA4=LocalSubnet|RA6=LocalSubne

---- EOF - GMER 1.0.15 ----


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-23 22:33:27
-----------------------------
22:33:27.204 OS Version: Windows x64 6.1.7601 Service Pack 1
22:33:27.205 Number of processors: 3 586 0x503
22:33:27.205 ComputerName: CERBERUS UserName: Maria
22:33:30.418 Initialize success
22:33:38.382 AVAST engine defs: 12062301
22:33:43.196 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000061
22:33:43.198 Disk 0 Vendor: WDC_WD50 01.0 Size: 476940MB BusType: 11
22:33:43.224 Disk 0 MBR read successfully
22:33:43.227 Disk 0 MBR scan
22:33:43.231 Disk 0 Windows VISTA default MBR code
22:33:43.235 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 13000 MB offset 2048
22:33:43.256 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 26626048
22:33:43.271 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 463838 MB offset 26830848
22:33:43.308 Disk 0 scanning C:\Windows\system32\drivers
22:34:01.582 Service scanning
22:34:40.411 Modules scanning
22:34:40.427 Disk 0 trace - called modules:
22:34:40.499 ntoskrnl.exe CLASSPNP.SYS disk.sys amd_xata.sys storport.sys hal.dll amd_sata.sys
22:34:40.840 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004c1e060]
22:34:40.849 3 CLASSPNP.SYS[fffff8800198743f] -> nt!IofCallDriver -> [0xfffffa8003cf8ac0]
22:34:40.859 5 amd_xata.sys[fffff8800108db98] -> nt!IofCallDriver -> \Device\00000061[0xfffffa8004b95060]
22:34:44.266 AVAST engine scan C:\Windows
22:35:07.834 AVAST engine scan C:\Windows\system32
22:40:23.017 AVAST engine scan C:\Windows\system32\drivers
22:40:45.471 AVAST engine scan C:\Users\Maria
22:54:07.125 AVAST engine scan C:\ProgramData
22:56:28.419 Scan finished successfully
22:56:53.349 Disk 0 MBR has been saved successfully to "C:\Users\Maria\Desktop\MBR.dat"
22:56:53.355 The log file has been saved successfully to "C:\Users\Maria\Desktop\aswMBR.txt"

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:57 AM

Posted 23 June 2012 - 09:59 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log


Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply


Download

MiniToolBox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.


On which browser do you face redirects?

#5 diabean

diabean
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:57 AM

Posted 24 June 2012 - 01:01 PM

The browser that it always happens on is Firefox. I don't usually use others though, so I'm not sure if it's having the same issue. Firefox it my main one. Here are the logs from the most recent scans.


C:\Users\Maria\AppData\Local\{0B016E43-7939-11E1-826D-B8AC6F996F26}\chrome\content\browser.xul JS/Redirector.NIQ trojan cleaned by deleting - quarantined


MiniToolBox by Farbar Version: 09-06-2012
Ran by Maria (administrator) on 24-06-2012 at 13:46:23
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Atheros AR5B93 Wireless Network Adapter = Wireless Network Connection (Connected)
Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Cerberus
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : Belkin

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2
Physical Address. . . . . . . . . : 1A-E4-00-18-BC-24
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : Atheros AR5B93 Wireless Network Adapter
Physical Address. . . . . . . . . : 78-E4-00-18-BC-24
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::345b:dfa0:954e:5662%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.2.2(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Sunday, June 24, 2012 11:58:52 AM
Lease Expires . . . . . . . . . . : Monday, June 25, 2012 11:59:05 AM
Default Gateway . . . . . . . . . : 192.168.2.1
DHCP Server . . . . . . . . . . . : 192.168.2.1
DHCPv6 IAID . . . . . . . . . . . : 427353088
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-6A-C7-AD-00-26-2D-A2-00-D2
DNS Servers . . . . . . . . . . . : 192.168.2.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet
Physical Address. . . . . . . . . : 00-26-2D-A2-00-D2
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{1DA2438F-568C-4AB8-B0DE-42380D431CFA}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.Belkin:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{F959C488-5452-44EF-8C61-092340C109B9}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:144d:2100:b383:d2f9(Preferred)
Link-local IPv6 Address . . . . . : fe80::144d:2100:b383:d2f9%13(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: UnKnown
Address: 192.168.2.1

Name: google.com
Addresses: 2607:f8b0:4006:803::100e
74.125.226.206
74.125.226.198
74.125.226.196
74.125.226.195
74.125.226.192
74.125.226.194
74.125.226.200
74.125.226.193
74.125.226.199
74.125.226.197
74.125.226.201


Pinging google.com [74.125.228.2] with 32 bytes of data:
Reply from 74.125.228.2: bytes=32 time=16ms TTL=55
Reply from 74.125.228.2: bytes=32 time=18ms TTL=55

Ping statistics for 74.125.228.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 16ms, Maximum = 18ms, Average = 17ms
Server: UnKnown
Address: 192.168.2.1

DNS request timed out.
timeout was 2 seconds.
Name: yahoo.com
Addresses: 72.30.38.140
98.139.183.24
209.191.122.70


Pinging yahoo.com [209.191.122.70] with 32 bytes of data:
Reply from 209.191.122.70: bytes=32 time=52ms TTL=50
Reply from 209.191.122.70: bytes=32 time=50ms TTL=50

Ping statistics for 209.191.122.70:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 50ms, Maximum = 52ms, Average = 51ms
Server: UnKnown
Address: 192.168.2.1

DNS request timed out.
timeout was 2 seconds.
Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
21...1a e4 00 18 bc 24 ......Microsoft Virtual WiFi Miniport Adapter #2
12...78 e4 00 18 bc 24 ......Atheros AR5B93 Wireless Network Adapter
11...00 26 2d a2 00 d2 ......Broadcom NetLink ™ Gigabit Ethernet
1...........................Software Loopback Interface 1
16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
10...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.2 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.2.0 255.255.255.0 On-link 192.168.2.2 281
192.168.2.2 255.255.255.255 On-link 192.168.2.2 281
192.168.2.255 255.255.255.255 On-link 192.168.2.2 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.2.2 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.2.2 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
13 58 ::/0 On-link
1 306 ::1/128 On-link
13 58 2001::/32 On-link
13 306 2001:0:4137:9e76:144d:2100:b383:d2f9/128
On-link
12 281 fe80::/64 On-link
13 306 fe80::/64 On-link
13 306 fe80::144d:2100:b383:d2f9/128
On-link
12 281 fe80::345b:dfa0:954e:5662/128
On-link
1 306 ff00::/8 On-link
13 306 ff00::/8 On-link
12 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/24/2012 00:10:47 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/24/2012 00:10:42 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/24/2012 00:10:42 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/24/2012 00:10:39 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/17/2012 01:52:42 AM) (Source: Application Error) (User: )
Description: Faulting application name: firefox.exe, version: 12.0.0.4493, time stamp: 0x4f9207d9
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x2faffc00
Faulting process id: 0x864
Faulting application start time: 0xfirefox.exe0
Faulting application path: firefox.exe1
Faulting module path: firefox.exe2
Report Id: firefox.exe3

Error: (06/16/2012 11:55:45 PM) (Source: Application Hang) (User: )
Description: The program firefox.exe version 12.0.0.4493 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 11d4

Start Time: 01cd4c3cd4848cba

Termination Time: 32

Application Path: C:\Program Files (x86)\Mozilla Firefox\firefox.exe

Report Id: 4382c14e-b830-11e1-9c14-00262da200d2

Error: (06/15/2012 10:39:23 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (06/15/2012 10:39:23 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (06/15/2012 10:39:23 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (06/15/2012 10:39:23 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.


System errors:
=============
Error: (06/16/2012 11:52:51 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: SYSTEM)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\Windows\system32\athExt.dll
Error Code: 126

Error: (06/16/2012 11:52:48 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 1:41:13 AM on ?6/?16/?2012 was unexpected.

Error: (06/16/2012 01:37:45 AM) (Source: BROWSER) (User: )
Description: The browser service has failed to retrieve the backup list too many times on transport \Device\NetBT_Tcpip_{FE0F909A-188A-452C-885F-F9471BCD9CAA}.
The backup browser is stopping.

Error: (06/16/2012 00:10:54 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: SYSTEM)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\Windows\system32\athExt.dll
Error Code: 126

Error: (06/15/2012 10:16:40 PM) (Source: NetBT) (User: )
Description: The name "WORKGROUP :1d" could not be registered on the interface with IP address 192.168.201.221.
The computer with the IP address 192.168.201.130 did not allow the name to be claimed by
this computer.

Error: (06/15/2012 10:16:03 PM) (Source: NetBT) (User: )
Description: The name "WORKGROUP :1d" could not be registered on the interface with IP address 192.168.201.221.
The computer with the IP address 192.168.201.130 did not allow the name to be claimed by
this computer.

Error: (06/13/2012 10:52:43 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer KITO-HP
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{FE0F909A-188A-452C-885F-F9471BCD9CAA}.
The master browser is stopping or an election is being forced.

Error: (06/13/2012 08:59:25 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80004004-1

Error: (06/12/2012 09:41:30 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: SYSTEM)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\Windows\system32\athExt.dll
Error Code: 126

Error: (06/12/2012 09:41:25 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 9:39:40 PM on ?6/?12/?2012 was unexpected.


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
µTorrent (Version: 3.1.3)
4500_G510nz_Help (Version: 000.0.439.000)
4500G510nz (Version: 000.0.439.000)
4500G510nz_Software_Min (Version: 000.0.423.000)
64 Bit HP CIO Components Installer (Version: 7.2.8)
AC3Filter 1.63b (Version: 1.63b)
Acer Backup Manager (Version: 2.0.0.60)
Acer Crystal Eye Webcam (Version: 5.2.11.2)
Acer ePower Management (Version: 5.00.3002)
Acer eRecovery Management (Version: 4.05.3007)
Acer Game Console
Acer Games (Version: 1.0.0.80)
Acer Registration (Version: 1.03.3002)
Acer ScreenSaver (Version: 1.1.0122.2010)
Acer Updater (Version: 1.02.3001)
Acrobat.com (Version: 1.6.65)
Adobe AIR (Version: 1.5.0.7220)
Adobe Flash Player 10 ActiveX (Version: 10.0.45.2)
Adobe Flash Player 11 Plugin (Version: 11.3.300.262)
Adobe Reader 9.5.0 MUI (Version: 9.5.0)
Adobe Shockwave Player 11.6 (Version: 11.6.0.626)
Alcor Micro USB Card Reader (Version: 1.5.17.05094)
ALPS Touch Pad Driver (Version: 7.105.2015.1111)
AMD APP SDK Runtime (Version: 10.0.831.4)
AMD Catalyst Install Manager (Version: 3.0.855.0)
AMD Fuel (Version: 2011.1109.2212.39826)
AMD VISION Engine Control Center (Version: 2011.1109.2212.39826)
AOL Instant Messenger
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
Atheros Driver Installation Program (Version: 9.0)
Backup Manager Basic (Version: 2.0.0.60)
Bejeweled 2 Deluxe (Version: 2.2.0.82)
Blackhawk Striker 2 (Version: 2.2.0.82)
Bob the Builder Can-Do-Zoo (Version: 2.2.0.82)
Bonjour (Version: 3.0.0.10)
Broadcom NetLink Controller (Version: 14.8.4.1)
BufferChm (Version: 130.0.331.000)
Build-a-lot 2 (Version: 2.2.0.82)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center InstallProxy (Version: 2010.0329.836.13543)
Catalyst Control Center InstallProxy (Version: 2011.1109.2212.39826)
Catalyst Control Center Localization All (Version: 2011.1109.2212.39826)
ccc-utility64 (Version: 2011.1109.2212.39826)
CCC Help Chinese Standard (Version: 2011.1109.2211.39826)
CCC Help Chinese Traditional (Version: 2011.1109.2211.39826)
CCC Help Czech (Version: 2011.1109.2211.39826)
CCC Help Danish (Version: 2011.1109.2211.39826)
CCC Help Dutch (Version: 2011.1109.2211.39826)
CCC Help English (Version: 2011.1109.2211.39826)
CCC Help Finnish (Version: 2011.1109.2211.39826)
CCC Help French (Version: 2011.1109.2211.39826)
CCC Help German (Version: 2011.1109.2211.39826)
CCC Help Greek (Version: 2011.1109.2211.39826)
CCC Help Hungarian (Version: 2011.1109.2211.39826)
CCC Help Italian (Version: 2011.1109.2211.39826)
CCC Help Japanese (Version: 2011.1109.2211.39826)
CCC Help Korean (Version: 2011.1109.2211.39826)
CCC Help Norwegian (Version: 2011.1109.2211.39826)
CCC Help Polish (Version: 2011.1109.2211.39826)
CCC Help Portuguese (Version: 2011.1109.2211.39826)
CCC Help Russian (Version: 2011.1109.2211.39826)
CCC Help Spanish (Version: 2011.1109.2211.39826)
CCC Help Swedish (Version: 2011.1109.2211.39826)
CCC Help Thai (Version: 2011.1109.2211.39826)
CCC Help Turkish (Version: 2011.1109.2211.39826)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Convert AVI to MP4
CyberLink PowerDVD 9 (Version: 9.0.2719.50)
D3DX10 (Version: 15.4.2368.0902)
DAEMON Tools Lite (Version: 4.45.4.0315)
Destinations (Version: 130.0.0.0)
DeviceDiscovery (Version: 130.0.372.000)
Diablo III (Version: 1.0.3.10057)
DivX Setup (Version: 2.6.1.8)
DocMgr (Version: 130.0.000.000)
DocProc (Version: 13.0.0.0)
EPSON Artisan 710 Series Printer Uninstall
Epson Event Manager (Version: 2.40.0001)
EPSON NX125 NX127 Series Printer Uninstall
Epson Print CD (Version: 2.00.00)
EPSON Scan
EpsonNet Setup (Version: 3.1b)
Escape Rosecliff Island (Version: 2.2.0.82)
ESET Online Scanner v3
Facebook Video Calling 1.2.0.159 (Version: 1.2.159)
Faerie Solitaire (Version: 2.2.0.82)
FATE - The Traitor Soul (Version: 2.2.0.82)
Fax (Version: 130.0.418.000)
Google Chrome (Version: 19.0.1084.56)
GPBaseService2 (Version: 130.0.371.000)
HP Customer Participation Program 13.0 (Version: 13.0)
HP Document Manager 2.0 (Version: 2.0)
HP Imaging Device Functions 13.0 (Version: 13.0)
HP Officejet 4500 G510n-z (Version: 13.0)
HP Smart Web Printing 4.5 (Version: 4.5)
HP Solution Center 13.0 (Version: 13.0)
HP Update (Version: 5.003.001.001)
HPDiagnosticAlert (Version: 1.00.0000)
HPProductAssistant (Version: 130.0.371.000)
HPSSupply (Version: 130.0.371.000)
iCloud (Version: 1.0.2.17)
Identity Card (Version: 1.00.3003)
iTunes (Version: 10.6.1.7)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 32 (Version: 6.0.320)
Jewel Quest Solitaire 3 (Version: 2.2.0.82)
Junk Mail filter update (Version: 15.4.3502.0922)
Launch Manager (Version: 4.0.7)
League of Legends (Version: 1.0020)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
MarketResearch (Version: 130.0.374.000)
McAfee Security Scan Plus (Version: 2.1.121.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Suite Activation Assistant (Version: 2.9)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.10516.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Works (Version: 9.7.0621)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
MobileMe Control Panel (Version: 3.1.8.0)
Monopoly (Version: 2.2.0.82)
MotoConnect 1.1.31 (Version: 1.1.31)
Motorola Mobile Drivers Installation 4.7.1 (Version: 4.7.1)
Move Media Player
Mozilla Firefox 13.0.1 (x86 en-US) (Version: 13.0.1)
Mozilla Maintenance Service (Version: 13.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Music Manager
Mystery P.I. - Lost in Los Angeles (Version: 2.2.0.82)
Network64 (Version: 130.0.374.000)
Network64 (Version: 140.0.221.000)
Norton Security Scan (Version: 3.6.0.31)
NTI Backup Now 5 (Version: 5.1.2.628)
NTI Backup Now Standard (Version: 5.1.2.628)
NTI Media Maker 8 (Version: 8.0.12.6630)
OCR Software by I.R.I.S. 13.0 (Version: 13.0)
Origin (Version: 8.3.7.3619)
Pando Media Booster (Version: 2.3.4.1)
Penguins! (Version: 2.2.0.82)
Plants vs. Zombies (Version: 2.2.0.82)
Polar Bowler (Version: 2.2.0.82)
Polar Golfer (Version: 2.2.0.82)
QuickTime (Version: 7.69.80.9)
Realtek High Definition Audio Driver (Version: 6.0.1.6487)
Scan (Version: 13.0.0.0)
Scrabble Plus (Version: 2.2.0.82)
Shop for HP Supplies (Version: 13.0)
SlimDrivers (Version: 2.2.20441)
SmartWebPrinting (Version: 130.0.373.000)
SolutionCenter (Version: 130.0.373.000)
Status (Version: 130.0.373.000)
The Price is Right (Version: 2.2.0.82)
The Sims™ 3 (Version: 1.34.27)
The Sims™ 3 Ambitions (Version: 4.0.87)
The Sims™ 3 Generations (Version: 8.0.152)
The Sims™ 3 Late Night (Version: 6.5.1)
The Sims™ 3 Pets (Version: 10.0.96)
The Sims™ 3 Pets Create A Pet Demo (Version: 1.0.24)
The Sims™ 3 World Adventures (Version: 2.0.86)
Toolbox (Version: 130.0.648.000)
TrayApp (Version: 130.0.376.000)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
Viewpoint Media Player
Virtual Families (Version: 2.2.0.82)
Virtual Villagers - A New Home (Version: 2.2.0.82)
WebReg (Version: 130.0.132.017)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
Windows Mobile Device Updater Component (Version: 04.08.2345.00)
WMV9/VC-1 Video Playback (Version: 1.00.0000)
World of Warcraft (Version: 4.3.4.15595)
Yahtzee (Version: 2.2.0.82)
Zuma Deluxe (Version: 2.2.0.82)
Zune (Version: 04.08.2345.00)
Zune Language Pack (CHS) (Version: 04.08.2345.00)
Zune Language Pack (CHT) (Version: 04.08.2345.00)
Zune Language Pack (CSY) (Version: 04.08.2345.00)
Zune Language Pack (DAN) (Version: 04.08.2345.00)
Zune Language Pack (DEU) (Version: 04.08.2345.00)
Zune Language Pack (ELL) (Version: 04.08.2345.00)
Zune Language Pack (ESP) (Version: 04.08.2345.00)
Zune Language Pack (FIN) (Version: 04.08.2345.00)
Zune Language Pack (FRA) (Version: 04.08.2345.00)
Zune Language Pack (HUN) (Version: 04.08.2345.00)
Zune Language Pack (IND) (Version: 04.08.2345.00)
Zune Language Pack (ITA) (Version: 04.08.2345.00)
Zune Language Pack (JPN) (Version: 04.08.2345.00)
Zune Language Pack (KOR) (Version: 04.08.2345.00)
Zune Language Pack (MSL) (Version: 04.08.2345.00)
Zune Language Pack (NLD) (Version: 04.08.2345.00)
Zune Language Pack (NOR) (Version: 04.08.2345.00)
Zune Language Pack (PLK) (Version: 04.08.2345.00)
Zune Language Pack (PTB) (Version: 04.08.2345.00)
Zune Language Pack (PTG) (Version: 04.08.2345.00)
Zune Language Pack (RUS) (Version: 04.08.2345.00)
Zune Language Pack (SVE) (Version: 04.08.2345.00)

========================= Memory info: ===================================

Percentage of memory in use: 60%
Total physical RAM: 4094.17 MB
Available physical RAM: 1615.26 MB
Total Pagefile: 8186.54 MB
Available Pagefile: 5447.56 MB
Total Virtual: 4095.88 MB
Available Virtual: 3982.77 MB

========================= Partitions: =====================================

1 Drive c: (ACER) (Fixed) (Total:452.97 GB) (Free:43.8 GB) NTFS
2 Drive d: (Sims3EP05) (CDROM) (Total:5.3 GB) (Free:0 GB) UDF

========================= Users: ========================================

User accounts for \\CERBERUS

Administrator Guest Maria
Mcx1-CERBERUS


**** End of log ****

Edited by diabean, 24 June 2012 - 01:02 PM.


#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:57 AM

Posted 24 June 2012 - 01:34 PM

Uninstall firefox

checkmark remove my personal data option while uninstalling it

Install firefox and let me know if you still have redirects




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users