Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google Redirect.


  • Please log in to reply
13 replies to this topic

#1 Daanmakus

Daanmakus

  • Members
  • 50 posts
  • OFFLINE
  •  
  • Local time:02:59 AM

Posted 20 June 2012 - 09:16 AM

Hi,

I am hoping someone can help me with my google redirect issue.

I have tried many different solutions posted online and none have seemed to do the trick.

I use google chrome as my default browser and whenever I try to look at the site of a game I play I get redirected to Partner19.mydomainadvisor.com.

I have scanned using numerous spyware programs, I have used combofix and Tdss killer with no luck.

Any help would be appreciated.

Thanks
Daan

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:59 AM

Posted 20 June 2012 - 10:35 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here


Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 Daanmakus

Daanmakus
  • Topic Starter

  • Members
  • 50 posts
  • OFFLINE
  •  
  • Local time:02:59 AM

Posted 20 June 2012 - 03:14 PM

Here is the TDSS log:

16:09:25.0711 5964 TDSS rootkit removing tool 2.7.40.0 Jun 15 2012 15:13:31
16:09:25.0959 5964 ============================================================
16:09:25.0960 5964 Current date / time: 2012/06/20 16:09:25.0959
16:09:25.0960 5964 SystemInfo:
16:09:25.0960 5964
16:09:25.0960 5964 OS Version: 6.1.7601 ServicePack: 1.0
16:09:25.0960 5964 Product type: Workstation
16:09:25.0960 5964 ComputerName: ANDREW-PC
16:09:25.0960 5964 UserName: Andrew
16:09:25.0960 5964 Windows directory: C:\Windows
16:09:25.0960 5964 System windows directory: C:\Windows
16:09:25.0960 5964 Running under WOW64
16:09:25.0960 5964 Processor architecture: Intel x64
16:09:25.0960 5964 Number of processors: 8
16:09:25.0960 5964 Page size: 0x1000
16:09:25.0960 5964 Boot type: Normal boot
16:09:25.0960 5964 ============================================================
16:09:26.0356 5964 Drive \Device\Harddisk0\DR0 - Size: 0x5D27216000 (372.61 Gb), SectorSize: 0x200, Cylinders: 0xBE01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:09:26.0374 5964 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:09:26.0382 5964 ============================================================
16:09:26.0382 5964 \Device\Harddisk0\DR0:
16:09:26.0383 5964 MBR partitions:
16:09:26.0383 5964 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
16:09:26.0383 5964 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x2E906000
16:09:26.0383 5964 \Device\Harddisk1\DR1:
16:09:26.0383 5964 MBR partitions:
16:09:26.0383 5964 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
16:09:26.0383 5964 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3800
16:09:26.0383 5964 ============================================================
16:09:26.0457 5964 C: <-> \Device\Harddisk0\DR0\Partition1
16:09:26.0461 5964 D: <-> \Device\Harddisk1\DR1\Partition0
16:09:26.0471 5964 E: <-> \Device\Harddisk1\DR1\Partition1
16:09:26.0472 5964 ============================================================
16:09:26.0472 5964 Initialize success
16:09:26.0472 5964 ============================================================
16:09:38.0922 6312 ============================================================
16:09:38.0922 6312 Scan started
16:09:38.0922 6312 Mode: Manual; SigCheck; TDLFS;
16:09:38.0922 6312 ============================================================
16:09:39.0530 6312 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
16:09:39.0577 6312 1394ohci - ok
16:09:39.0660 6312 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
16:09:39.0681 6312 ACPI - ok
16:09:39.0767 6312 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
16:09:39.0786 6312 AcpiPmi - ok
16:09:40.0054 6312 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:09:40.0067 6312 AdobeARMservice - ok
16:09:40.0122 6312 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
16:09:40.0141 6312 adp94xx - ok
16:09:40.0195 6312 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
16:09:40.0215 6312 adpahci - ok
16:09:40.0236 6312 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
16:09:40.0246 6312 adpu320 - ok
16:09:40.0283 6312 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
16:09:40.0321 6312 AeLookupSvc - ok
16:09:40.0383 6312 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
16:09:40.0405 6312 AFD - ok
16:09:40.0438 6312 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
16:09:40.0453 6312 agp440 - ok
16:09:40.0532 6312 AIDA64Driver - ok
16:09:40.0616 6312 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
16:09:40.0633 6312 ALG - ok
16:09:40.0712 6312 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
16:09:40.0726 6312 aliide - ok
16:09:40.0763 6312 ALSysIO - ok
16:09:40.0831 6312 AMD External Events Utility (dceee24e57e8176115207312f827c130) C:\Windows\system32\atiesrxx.exe
16:09:40.0852 6312 AMD External Events Utility - ok
16:09:40.0874 6312 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
16:09:40.0882 6312 amdide - ok
16:09:40.0994 6312 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
16:09:41.0009 6312 AmdK8 - ok
16:09:41.0011 6312 amdkmdag - ok
16:09:41.0053 6312 amdkmdap (20b63276a1920b41e1c56720b395049b) C:\Windows\system32\DRIVERS\atikmpag.sys
16:09:41.0067 6312 amdkmdap - ok
16:09:41.0080 6312 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
16:09:41.0091 6312 AmdPPM - ok
16:09:41.0137 6312 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
16:09:41.0152 6312 amdsata - ok
16:09:41.0199 6312 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
16:09:41.0216 6312 amdsbs - ok
16:09:41.0236 6312 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
16:09:41.0245 6312 amdxata - ok
16:09:41.0251 6312 anzsvmwy - ok
16:09:41.0297 6312 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
16:09:41.0331 6312 AppID - ok
16:09:41.0355 6312 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
16:09:41.0377 6312 AppIDSvc - ok
16:09:41.0412 6312 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
16:09:41.0433 6312 Appinfo - ok
16:09:41.0521 6312 Apple Mobile Device (3debbecf665dcdde3a95d9b902010817) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:09:41.0534 6312 Apple Mobile Device - ok
16:09:41.0584 6312 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
16:09:41.0599 6312 arc - ok
16:09:41.0621 6312 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
16:09:41.0635 6312 arcsas - ok
16:09:41.0653 6312 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
16:09:41.0694 6312 AsyncMac - ok
16:09:41.0729 6312 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
16:09:41.0742 6312 atapi - ok
16:09:41.0804 6312 AtiHDAudioService (4bf5bca6e2608cd8a00bc4a6673a9f47) C:\Windows\system32\drivers\AtihdW76.sys
16:09:41.0817 6312 AtiHDAudioService - ok
16:09:41.0884 6312 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
16:09:41.0921 6312 AudioEndpointBuilder - ok
16:09:41.0924 6312 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
16:09:41.0949 6312 AudioSrv - ok
16:09:41.0993 6312 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
16:09:42.0013 6312 AxInstSV - ok
16:09:42.0058 6312 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
16:09:42.0073 6312 b06bdrv - ok
16:09:42.0121 6312 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
16:09:42.0140 6312 b57nd60a - ok
16:09:42.0178 6312 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
16:09:42.0194 6312 BDESVC - ok
16:09:42.0224 6312 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
16:09:42.0265 6312 Beep - ok
16:09:42.0329 6312 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
16:09:42.0368 6312 BFE - ok
16:09:42.0428 6312 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
16:09:42.0467 6312 BITS - ok
16:09:42.0523 6312 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
16:09:42.0538 6312 blbdrive - ok
16:09:42.0631 6312 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
16:09:42.0650 6312 Bonjour Service - ok
16:09:42.0701 6312 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
16:09:42.0716 6312 bowser - ok
16:09:42.0750 6312 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:09:42.0769 6312 BrFiltLo - ok
16:09:42.0772 6312 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:09:42.0784 6312 BrFiltUp - ok
16:09:42.0803 6312 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
16:09:42.0836 6312 BridgeMP - ok
16:09:42.0874 6312 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
16:09:42.0908 6312 Browser - ok
16:09:43.0055 6312 Browser Defender Update Service (7229b58039d5a9338ad633e8ab60619c) C:\Program Files (x86)\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe
16:09:43.0076 6312 Browser Defender Update Service - ok
16:09:43.0103 6312 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
16:09:43.0114 6312 Brserid - ok
16:09:43.0143 6312 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
16:09:43.0153 6312 BrSerWdm - ok
16:09:43.0171 6312 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
16:09:43.0182 6312 BrUsbMdm - ok
16:09:43.0191 6312 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
16:09:43.0200 6312 BrUsbSer - ok
16:09:43.0211 6312 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
16:09:43.0222 6312 BTHMODEM - ok
16:09:43.0253 6312 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
16:09:43.0290 6312 bthserv - ok
16:09:43.0310 6312 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
16:09:43.0331 6312 cdfs - ok
16:09:43.0393 6312 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
16:09:43.0409 6312 cdrom - ok
16:09:43.0457 6312 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
16:09:43.0497 6312 CertPropSvc - ok
16:09:43.0523 6312 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
16:09:43.0540 6312 circlass - ok
16:09:43.0583 6312 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
16:09:43.0604 6312 CLFS - ok
16:09:43.0662 6312 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:09:43.0676 6312 clr_optimization_v2.0.50727_32 - ok
16:09:43.0725 6312 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:09:43.0738 6312 clr_optimization_v2.0.50727_64 - ok
16:09:43.0801 6312 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:09:43.0814 6312 clr_optimization_v4.0.30319_32 - ok
16:09:43.0844 6312 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:09:43.0857 6312 clr_optimization_v4.0.30319_64 - ok
16:09:43.0899 6312 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
16:09:43.0915 6312 CmBatt - ok
16:09:43.0952 6312 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
16:09:43.0966 6312 cmdide - ok
16:09:44.0037 6312 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
16:09:44.0067 6312 CNG - ok
16:09:44.0084 6312 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
16:09:44.0091 6312 Compbatt - ok
16:09:44.0116 6312 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
16:09:44.0129 6312 CompositeBus - ok
16:09:44.0139 6312 COMSysApp - ok
16:09:44.0206 6312 cpuz130 - ok
16:09:44.0234 6312 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
16:09:44.0248 6312 crcdisk - ok
16:09:44.0287 6312 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
16:09:44.0305 6312 CryptSvc - ok
16:09:44.0358 6312 dc3d (76e02db615a03801d698199a2bc4a06a) C:\Windows\system32\DRIVERS\dc3d.sys
16:09:44.0369 6312 dc3d - ok
16:09:44.0451 6312 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
16:09:44.0492 6312 DcomLaunch - ok
16:09:44.0526 6312 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
16:09:44.0549 6312 defragsvc - ok
16:09:44.0597 6312 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
16:09:44.0639 6312 DfsC - ok
16:09:44.0684 6312 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
16:09:44.0722 6312 Dhcp - ok
16:09:44.0752 6312 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
16:09:44.0809 6312 discache - ok
16:09:44.0834 6312 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
16:09:44.0841 6312 Disk - ok
16:09:44.0888 6312 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
16:09:44.0905 6312 Dnscache - ok
16:09:44.0940 6312 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
16:09:44.0975 6312 dot3svc - ok
16:09:45.0010 6312 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
16:09:45.0031 6312 DPS - ok
16:09:45.0060 6312 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
16:09:45.0070 6312 drmkaud - ok
16:09:45.0188 6312 dump_wmimmc - ok
16:09:45.0259 6312 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
16:09:45.0292 6312 DXGKrnl - ok
16:09:45.0332 6312 e1cexpress (60633132a929c09fe78fab16541f9e71) C:\Windows\system32\DRIVERS\e1c62x64.sys
16:09:45.0350 6312 e1cexpress - ok
16:09:45.0377 6312 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
16:09:45.0404 6312 EapHost - ok
16:09:45.0550 6312 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
16:09:45.0587 6312 ebdrv - ok
16:09:45.0668 6312 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
16:09:45.0684 6312 EFS - ok
16:09:45.0764 6312 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
16:09:45.0790 6312 ehRecvr - ok
16:09:45.0818 6312 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
16:09:45.0835 6312 ehSched - ok
16:09:46.0081 6312 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
16:09:46.0104 6312 elxstor - ok
16:09:46.0138 6312 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
16:09:46.0153 6312 ErrDev - ok
16:09:46.0188 6312 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
16:09:46.0227 6312 EventSystem - ok
16:09:46.0252 6312 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
16:09:46.0276 6312 exfat - ok
16:09:46.0291 6312 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
16:09:46.0313 6312 fastfat - ok
16:09:46.0377 6312 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
16:09:46.0403 6312 Fax - ok
16:09:46.0432 6312 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
16:09:46.0444 6312 fdc - ok
16:09:46.0476 6312 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
16:09:46.0511 6312 fdPHost - ok
16:09:46.0519 6312 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
16:09:46.0541 6312 FDResPub - ok
16:09:46.0552 6312 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
16:09:46.0559 6312 FileInfo - ok
16:09:46.0565 6312 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
16:09:46.0586 6312 Filetrace - ok
16:09:46.0614 6312 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
16:09:46.0628 6312 flpydisk - ok
16:09:46.0679 6312 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
16:09:46.0697 6312 FltMgr - ok
16:09:46.0773 6312 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
16:09:46.0800 6312 FontCache - ok
16:09:46.0868 6312 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:09:46.0879 6312 FontCache3.0.0.0 - ok
16:09:46.0916 6312 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
16:09:46.0930 6312 FsDepends - ok
16:09:46.0969 6312 fssfltr (6c06701bf1db05405804d7eb610991ce) C:\Windows\system32\DRIVERS\fssfltr.sys
16:09:46.0981 6312 fssfltr - ok
16:09:47.0119 6312 fsssvc (4ce9dac1518ff7e77bd213e6394b9d77) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
16:09:47.0146 6312 fsssvc - ok
16:09:47.0257 6312 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
16:09:47.0270 6312 Fs_Rec - ok
16:09:47.0332 6312 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
16:09:47.0354 6312 fvevol - ok
16:09:47.0375 6312 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
16:09:47.0384 6312 gagp30kx - ok
16:09:47.0419 6312 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:09:47.0426 6312 GEARAspiWDM - ok
16:09:47.0487 6312 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
16:09:47.0522 6312 gpsvc - ok
16:09:47.0537 6312 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
16:09:47.0545 6312 hcw85cir - ok
16:09:47.0606 6312 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
16:09:47.0630 6312 HdAudAddService - ok
16:09:47.0661 6312 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
16:09:47.0673 6312 HDAudBus - ok
16:09:47.0693 6312 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
16:09:47.0702 6312 HidBatt - ok
16:09:47.0718 6312 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
16:09:47.0729 6312 HidBth - ok
16:09:47.0745 6312 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
16:09:47.0756 6312 HidIr - ok
16:09:47.0775 6312 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
16:09:47.0802 6312 hidserv - ok
16:09:47.0847 6312 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
16:09:47.0862 6312 HidUsb - ok
16:09:47.0889 6312 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
16:09:47.0934 6312 hkmsvc - ok
16:09:47.0979 6312 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
16:09:47.0997 6312 HomeGroupListener - ok
16:09:48.0033 6312 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
16:09:48.0051 6312 HomeGroupProvider - ok
16:09:48.0077 6312 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
16:09:48.0085 6312 HpSAMD - ok
16:09:48.0151 6312 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
16:09:48.0190 6312 HTTP - ok
16:09:48.0202 6312 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
16:09:48.0209 6312 hwpolicy - ok
16:09:48.0258 6312 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
16:09:48.0272 6312 i8042prt - ok
16:09:48.0323 6312 iaStor (d7921d5a870b11cc1adab198a519d50a) C:\Windows\system32\DRIVERS\iaStor.sys
16:09:48.0339 6312 iaStor - ok
16:09:48.0396 6312 IAStorDataMgrSvc (8fff9083252c16fe3960173722605e9e) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
16:09:48.0408 6312 IAStorDataMgrSvc - ok
16:09:48.0468 6312 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
16:09:48.0488 6312 iaStorV - ok
16:09:48.0594 6312 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:09:48.0619 6312 idsvc - ok
16:09:48.0711 6312 IduService (1166c49d951fbca8a8856f4177465bc7) C:\Program Files (x86)\Intel\Intel Desktop Utilities\iduServ.exe
16:09:48.0724 6312 IduService - ok
16:09:48.0809 6312 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
16:09:48.0823 6312 iirsp - ok
16:09:48.0883 6312 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
16:09:48.0922 6312 IKEEXT - ok
16:09:49.0110 6312 IntcAzAudAddService (5f6a3ea5bd7ca861863a3a06cecc115c) C:\Windows\system32\drivers\RTKVHD64.sys
16:09:49.0157 6312 IntcAzAudAddService - ok
16:09:49.0209 6312 Intel® Desktop Boards FSC Application Service (e819a56a50b454a422a870a769dcee81) C:\Program Files (x86)\Intel\FSC\FSCAppServ.exe
16:09:49.0214 6312 Intel® Desktop Boards FSC Application Service ( UnsignedFile.Multi.Generic ) - warning
16:09:49.0214 6312 Intel® Desktop Boards FSC Application Service - detected UnsignedFile.Multi.Generic (1)
16:09:49.0310 6312 Intel® PROSet Monitoring Service (28d387eefad7cc3a0beb9c3262e83add) C:\Windows\system32\IProsetMonitor.exe
16:09:49.0325 6312 Intel® PROSet Monitoring Service - ok
16:09:49.0360 6312 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
16:09:49.0374 6312 intelide - ok
16:09:49.0404 6312 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
16:09:49.0420 6312 intelppm - ok
16:09:49.0454 6312 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
16:09:49.0499 6312 IPBusEnum - ok
16:09:49.0528 6312 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:09:49.0564 6312 IpFilterDriver - ok
16:09:49.0613 6312 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
16:09:49.0639 6312 iphlpsvc - ok
16:09:49.0669 6312 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
16:09:49.0677 6312 IPMIDRV - ok
16:09:49.0696 6312 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
16:09:49.0718 6312 IPNAT - ok
16:09:49.0838 6312 iPod Service (ee4c2a137c7088911a8919effc9812e7) C:\Program Files\iPod\bin\iPodService.exe
16:09:49.0862 6312 iPod Service - ok
16:09:49.0886 6312 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
16:09:49.0897 6312 IRENUM - ok
16:09:49.0922 6312 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
16:09:49.0929 6312 isapnp - ok
16:09:49.0971 6312 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
16:09:49.0981 6312 iScsiPrt - ok
16:09:50.0015 6312 JmtFltr (112809ce3919156c484c5bbe61eeee25) C:\Windows\system32\drivers\JmtFltr.sys
16:09:50.0029 6312 JmtFltr - ok
16:09:50.0052 6312 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
16:09:50.0066 6312 kbdclass - ok
16:09:50.0080 6312 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
16:09:50.0094 6312 kbdhid - ok
16:09:50.0126 6312 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:09:50.0142 6312 KeyIso - ok
16:09:50.0158 6312 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
16:09:50.0173 6312 KSecDD - ok
16:09:50.0188 6312 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
16:09:50.0204 6312 KSecPkg - ok
16:09:50.0226 6312 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
16:09:50.0253 6312 ksthunk - ok
16:09:50.0309 6312 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
16:09:50.0348 6312 KtmRm - ok
16:09:50.0483 6312 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
16:09:50.0523 6312 LanmanServer - ok
16:09:50.0564 6312 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
16:09:50.0586 6312 LanmanWorkstation - ok
16:09:50.0626 6312 libusb0 (acec35f181075b20a5ef4a71958b13df) C:\Windows\system32\drivers\libusb0.sys
16:09:50.0634 6312 libusb0 - ok
16:09:50.0672 6312 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
16:09:50.0706 6312 lltdio - ok
16:09:50.0736 6312 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
16:09:50.0759 6312 lltdsvc - ok
16:09:50.0776 6312 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
16:09:50.0797 6312 lmhosts - ok
16:09:50.0872 6312 LMS (926eba26a8b49d1597751ced06b50862) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
16:09:50.0888 6312 LMS - ok
16:09:50.0922 6312 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
16:09:50.0936 6312 LSI_FC - ok
16:09:50.0958 6312 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
16:09:50.0971 6312 LSI_SAS - ok
16:09:51.0043 6312 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:09:51.0057 6312 LSI_SAS2 - ok
16:09:51.0170 6312 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:09:51.0185 6312 LSI_SCSI - ok
16:09:51.0201 6312 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
16:09:51.0239 6312 luafv - ok
16:09:51.0267 6312 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
16:09:51.0284 6312 Mcx2Svc - ok
16:09:51.0300 6312 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
16:09:51.0313 6312 megasas - ok
16:09:51.0337 6312 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
16:09:51.0356 6312 MegaSR - ok
16:09:51.0391 6312 MEIx64 (1c6e73fc46b509eff9d0086aa37132df) C:\Windows\system32\DRIVERS\HECIx64.sys
16:09:51.0403 6312 MEIx64 - ok
16:09:51.0498 6312 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
16:09:51.0510 6312 Microsoft Office Groove Audit Service - ok
16:09:51.0546 6312 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
16:09:51.0581 6312 MMCSS - ok
16:09:51.0602 6312 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
16:09:51.0628 6312 Modem - ok
16:09:51.0645 6312 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
16:09:51.0654 6312 monitor - ok
16:09:51.0685 6312 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
16:09:51.0696 6312 mouclass - ok
16:09:51.0708 6312 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
16:09:51.0720 6312 mouhid - ok
16:09:51.0760 6312 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
16:09:51.0775 6312 mountmgr - ok
16:09:51.0818 6312 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
16:09:51.0836 6312 MpFilter - ok
16:09:51.0871 6312 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
16:09:51.0887 6312 mpio - ok
16:09:51.0916 6312 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
16:09:51.0943 6312 mpsdrv - ok
16:09:52.0000 6312 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
16:09:52.0035 6312 MpsSvc - ok
16:09:52.0071 6312 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
16:09:52.0082 6312 MRxDAV - ok
16:09:52.0117 6312 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
16:09:52.0126 6312 mrxsmb - ok
16:09:52.0168 6312 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:09:52.0186 6312 mrxsmb10 - ok
16:09:52.0206 6312 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:09:52.0215 6312 mrxsmb20 - ok
16:09:52.0242 6312 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
16:09:52.0250 6312 msahci - ok
16:09:52.0281 6312 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
16:09:52.0290 6312 msdsm - ok
16:09:52.0314 6312 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
16:09:52.0325 6312 MSDTC - ok
16:09:52.0350 6312 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
16:09:52.0376 6312 Msfs - ok
16:09:52.0394 6312 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
16:09:52.0415 6312 mshidkmdf - ok
16:09:52.0442 6312 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
16:09:52.0449 6312 msisadrv - ok
16:09:52.0481 6312 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
16:09:52.0503 6312 MSiSCSI - ok
16:09:52.0505 6312 msiserver - ok
16:09:52.0521 6312 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
16:09:52.0543 6312 MSKSSRV - ok
16:09:52.0611 6312 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) C:\Program Files\Microsoft Security Client\MsMpEng.exe
16:09:52.0623 6312 MsMpSvc - ok
16:09:52.0638 6312 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
16:09:52.0674 6312 MSPCLOCK - ok
16:09:52.0691 6312 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
16:09:52.0712 6312 MSPQM - ok
16:09:52.0760 6312 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
16:09:52.0770 6312 MsRPC - ok
16:09:52.0792 6312 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
16:09:52.0799 6312 mssmbios - ok
16:09:52.0813 6312 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
16:09:52.0835 6312 MSTEE - ok
16:09:52.0844 6312 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
16:09:52.0851 6312 MTConfig - ok
16:09:52.0864 6312 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
16:09:52.0871 6312 Mup - ok
16:09:52.0907 6312 NAL (e4d623555c20fab03fc952b23811d0d8) C:\Windows\system32\Drivers\iqvw64e.sys
16:09:52.0913 6312 NAL - ok
16:09:52.0955 6312 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
16:09:52.0990 6312 napagent - ok
16:09:53.0032 6312 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
16:09:53.0045 6312 NativeWifiP - ok
16:09:53.0116 6312 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
16:09:53.0140 6312 NDIS - ok
16:09:53.0153 6312 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
16:09:53.0182 6312 NdisCap - ok
16:09:53.0208 6312 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
16:09:53.0232 6312 NdisTapi - ok
16:09:53.0252 6312 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
16:09:53.0276 6312 Ndisuio - ok
16:09:53.0304 6312 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
16:09:53.0342 6312 NdisWan - ok
16:09:53.0373 6312 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
16:09:53.0394 6312 NDProxy - ok
16:09:53.0429 6312 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
16:09:53.0464 6312 NetBIOS - ok
16:09:53.0500 6312 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
16:09:53.0522 6312 NetBT - ok
16:09:53.0559 6312 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:09:53.0567 6312 Netlogon - ok
16:09:53.0611 6312 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
16:09:53.0648 6312 Netman - ok
16:09:53.0673 6312 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
16:09:53.0697 6312 netprofm - ok
16:09:53.0770 6312 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:09:53.0782 6312 NetTcpPortSharing - ok
16:09:53.0813 6312 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
16:09:53.0826 6312 nfrd960 - ok
16:09:53.0879 6312 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
16:09:53.0892 6312 NisDrv - ok
16:09:53.0967 6312 NisSrv (10a43829a9e606af3eef25a1c1665923) C:\Program Files\Microsoft Security Client\NisSrv.exe
16:09:53.0987 6312 NisSrv - ok
16:09:54.0043 6312 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
16:09:54.0087 6312 NlaSvc - ok
16:09:54.0101 6312 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
16:09:54.0122 6312 Npfs - ok
16:09:54.0138 6312 npggsvc - ok
16:09:54.0140 6312 NPPTNT2 - ok
16:09:54.0156 6312 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
16:09:54.0179 6312 nsi - ok
16:09:54.0202 6312 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
16:09:54.0224 6312 nsiproxy - ok
16:09:54.0327 6312 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
16:09:54.0362 6312 Ntfs - ok
16:09:54.0488 6312 NuidFltr (4c08a14d04e62963e96e0bb57bbc953b) C:\Windows\system32\DRIVERS\NuidFltr.sys
16:09:54.0499 6312 NuidFltr - ok
16:09:54.0515 6312 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
16:09:54.0555 6312 Null - ok
16:09:54.0592 6312 nusb3hub (786db821bfd57c0551dbbe4f75384a7d) C:\Windows\system32\DRIVERS\nusb3hub.sys
16:09:54.0604 6312 nusb3hub - ok
16:09:54.0625 6312 nusb3xhc (daa8005caf745042bb427a1ed7433354) C:\Windows\system32\DRIVERS\nusb3xhc.sys
16:09:54.0640 6312 nusb3xhc - ok
16:09:54.0679 6312 NVHDA (102806b360d0e6bc6e55bf47ef655d43) C:\Windows\system32\drivers\nvhda64v.sys
16:09:54.0696 6312 NVHDA - ok
16:09:55.0266 6312 nvlddmkm (ba0b4889c40380a01ecdf84c227a89c9) C:\Windows\system32\DRIVERS\nvlddmkm.sys
16:09:55.0399 6312 nvlddmkm - ok
16:09:55.0526 6312 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
16:09:55.0542 6312 nvraid - ok
16:09:55.0577 6312 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
16:09:55.0588 6312 nvstor - ok
16:09:55.0661 6312 NVSvc (06633cf95bea62164c3bfca24bce6b11) C:\Windows\system32\nvvsvc.exe
16:09:55.0685 6312 NVSvc - ok
16:09:55.0707 6312 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
16:09:55.0716 6312 nv_agp - ok
16:09:55.0803 6312 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:09:55.0822 6312 odserv - ok
16:09:55.0852 6312 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
16:09:55.0865 6312 ohci1394 - ok
16:09:55.0902 6312 osaio (5cbce1c10d7830946599011296689f6f) C:\Windows\system32\drivers\osaio.sys
16:09:55.0915 6312 osaio - ok
16:09:55.0964 6312 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:09:55.0978 6312 ose - ok
16:09:56.0021 6312 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
16:09:56.0042 6312 p2pimsvc - ok
16:09:56.0070 6312 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
16:09:56.0092 6312 p2psvc - ok
16:09:56.0124 6312 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
16:09:56.0139 6312 Parport - ok
16:09:56.0167 6312 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
16:09:56.0182 6312 partmgr - ok
16:09:56.0205 6312 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
16:09:56.0229 6312 PcaSvc - ok
16:09:56.0301 6312 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
16:09:56.0317 6312 pci - ok
16:09:56.0368 6312 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
16:09:56.0382 6312 pciide - ok
16:09:56.0425 6312 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
16:09:56.0443 6312 pcmcia - ok
16:09:56.0503 6312 PCPitstop Scheduling (4afdda6adeb0df8a1aa0268ffb838649) C:\Program Files (x86)\CA\PCPitstopScheduleService.exe
16:09:56.0514 6312 PCPitstop Scheduling - ok
16:09:56.0565 6312 PCTBD (8fe3547a6a4669817bd01abd46f0cee5) C:\Windows\system32\Drivers\PCTBD64.sys
16:09:56.0578 6312 PCTBD - ok
16:09:56.0629 6312 PCTCore (876fd95b7a3b7fe6179fbd16e7a6486c) C:\Windows\system32\drivers\PCTCore64.sys
16:09:56.0649 6312 PCTCore - ok
16:09:56.0692 6312 pctDS (ba1f42a42f405f62ceff6b69a2797f7c) C:\Windows\system32\drivers\pctDS64.sys
16:09:56.0713 6312 pctDS - ok
16:09:56.0769 6312 pctEFA (146cc91c93ced13e7fe40e8d8615be39) C:\Windows\system32\drivers\pctEFA64.sys
16:09:56.0796 6312 pctEFA - ok
16:09:56.0850 6312 pctgntdi (814acba180fb7ad3856d5ccaa857c97d) C:\Windows\System32\drivers\pctgntdi64.sys
16:09:56.0869 6312 pctgntdi - ok
16:09:56.0899 6312 pctplsg (abc87b90c4d20b0f76da00ff24b8826a) C:\Windows\System32\drivers\pctplsg64.sys
16:09:56.0907 6312 pctplsg - ok
16:09:56.0958 6312 PCTSD (577f20ebf1e42bebb238e2412b99c7ee) C:\Windows\system32\Drivers\PCTSD64.sys
16:09:56.0973 6312 PCTSD - ok
16:09:57.0002 6312 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
16:09:57.0014 6312 pcw - ok
16:09:57.0053 6312 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
16:09:57.0092 6312 PEAUTH - ok
16:09:57.0170 6312 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
16:09:57.0188 6312 PerfHost - ok
16:09:57.0326 6312 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
16:09:57.0371 6312 pla - ok
16:09:57.0422 6312 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
16:09:57.0443 6312 PlugPlay - ok
16:09:57.0474 6312 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
16:09:57.0490 6312 PNRPAutoReg - ok
16:09:57.0521 6312 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
16:09:57.0542 6312 PNRPsvc - ok
16:09:57.0608 6312 Point64 (b8d8ec78b0f9ed8e220506181274f3d3) C:\Windows\system32\DRIVERS\point64.sys
16:09:57.0619 6312 Point64 - ok
16:09:57.0669 6312 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
16:09:57.0707 6312 PolicyAgent - ok
16:09:57.0736 6312 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
16:09:57.0758 6312 Power - ok
16:09:57.0815 6312 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
16:09:57.0850 6312 PptpMiniport - ok
16:09:57.0871 6312 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
16:09:57.0881 6312 Processor - ok
16:09:57.0916 6312 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
16:09:57.0928 6312 ProfSvc - ok
16:09:57.0958 6312 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:09:57.0974 6312 ProtectedStorage - ok
16:09:58.0007 6312 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
16:09:58.0048 6312 Psched - ok
16:09:58.0125 6312 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
16:09:58.0152 6312 ql2300 - ok
16:09:58.0244 6312 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
16:09:58.0260 6312 ql40xx - ok
16:09:58.0294 6312 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
16:09:58.0318 6312 QWAVE - ok
16:09:58.0332 6312 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
16:09:58.0343 6312 QWAVEdrv - ok
16:09:58.0357 6312 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
16:09:58.0381 6312 RasAcd - ok
16:09:58.0403 6312 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
16:09:58.0430 6312 RasAgileVpn - ok
16:09:58.0443 6312 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
16:09:58.0464 6312 RasAuto - ok
16:09:58.0507 6312 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
16:09:58.0542 6312 Rasl2tp - ok
16:09:58.0574 6312 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
16:09:58.0597 6312 RasMan - ok
16:09:58.0623 6312 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
16:09:58.0645 6312 RasPppoe - ok
16:09:58.0665 6312 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
16:09:58.0687 6312 RasSstp - ok
16:09:58.0728 6312 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
16:09:58.0754 6312 rdbss - ok
16:09:58.0767 6312 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
16:09:58.0776 6312 rdpbus - ok
16:09:58.0789 6312 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
16:09:58.0809 6312 RDPCDD - ok
16:09:58.0838 6312 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
16:09:58.0859 6312 RDPENCDD - ok
16:09:58.0863 6312 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
16:09:58.0884 6312 RDPREFMP - ok
16:09:58.0919 6312 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
16:09:58.0937 6312 RDPWD - ok
16:09:58.0985 6312 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
16:09:59.0002 6312 rdyboost - ok
16:09:59.0024 6312 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
16:09:59.0050 6312 RemoteAccess - ok
16:09:59.0077 6312 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
16:09:59.0103 6312 RemoteRegistry - ok
16:09:59.0114 6312 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
16:09:59.0136 6312 RpcEptMapper - ok
16:09:59.0145 6312 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
16:09:59.0153 6312 RpcLocator - ok
16:09:59.0217 6312 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
16:09:59.0259 6312 RpcSs - ok
16:09:59.0298 6312 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
16:09:59.0324 6312 rspndr - ok
16:09:59.0350 6312 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:09:59.0357 6312 SamSs - ok
16:09:59.0384 6312 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
16:09:59.0391 6312 sbp2port - ok
16:09:59.0416 6312 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
16:09:59.0439 6312 SCardSvr - ok
16:09:59.0468 6312 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
16:09:59.0490 6312 scfilter - ok
16:09:59.0572 6312 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
16:09:59.0613 6312 Schedule - ok
16:09:59.0645 6312 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
16:09:59.0666 6312 SCPolicySvc - ok
16:09:59.0771 6312 sdAuxService (17d6a03103586d7954ba74c2219ce1bb) C:\Program Files (x86)\PC Tools\PC Tools Security\pctsAuxs.exe
16:09:59.0791 6312 sdAuxService - ok
16:09:59.0855 6312 sdCoreService (44323c0bcbffa66a7a90e93f5d027999) C:\Program Files (x86)\PC Tools\PC Tools Security\pctsSvc.exe
16:09:59.0881 6312 sdCoreService - ok
16:09:59.0983 6312 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
16:10:00.0000 6312 SDRSVC - ok
16:10:00.0033 6312 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
16:10:00.0063 6312 secdrv - ok
16:10:00.0092 6312 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
16:10:00.0113 6312 seclogon - ok
16:10:00.0138 6312 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
16:10:00.0161 6312 SENS - ok
16:10:00.0173 6312 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
16:10:00.0182 6312 SensrSvc - ok
16:10:00.0200 6312 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
16:10:00.0208 6312 Serenum - ok
16:10:00.0228 6312 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
16:10:00.0237 6312 Serial - ok
16:10:00.0332 6312 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
16:10:00.0348 6312 sermouse - ok
16:10:00.0398 6312 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
16:10:00.0441 6312 SessionEnv - ok
16:10:00.0476 6312 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
16:10:00.0491 6312 sffdisk - ok
16:10:00.0504 6312 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
16:10:00.0516 6312 sffp_mmc - ok
16:10:00.0521 6312 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
16:10:00.0536 6312 sffp_sd - ok
16:10:00.0561 6312 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
16:10:00.0572 6312 sfloppy - ok
16:10:00.0617 6312 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
16:10:00.0661 6312 SharedAccess - ok
16:10:00.0701 6312 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
16:10:00.0724 6312 ShellHWDetection - ok
16:10:00.0728 6312 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:10:00.0734 6312 SiSRaid2 - ok
16:10:00.0754 6312 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
16:10:00.0761 6312 SiSRaid4 - ok
16:10:00.0786 6312 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
16:10:00.0807 6312 Smb - ok
16:10:00.0825 6312 smbusp (3da591bbab178a3152b8685dc43b20cd) C:\Windows\system32\DRIVERS\intelsmb.sys
16:10:00.0832 6312 smbusp - ok
16:10:00.0863 6312 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
16:10:00.0878 6312 SNMPTRAP - ok
16:10:00.0898 6312 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
16:10:00.0911 6312 spldr - ok
16:10:00.0975 6312 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
16:10:01.0021 6312 Spooler - ok
16:10:01.0188 6312 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
16:10:01.0235 6312 sppsvc - ok
16:10:01.0311 6312 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
16:10:01.0351 6312 sppuinotify - ok
16:10:01.0395 6312 SQTECH905C (ec8f6e941a8689d3472130a95a512bdf) C:\Windows\system32\Drivers\Capt905c.sys
16:10:01.0402 6312 SQTECH905C - ok
16:10:01.0452 6312 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
16:10:01.0471 6312 srv - ok
16:10:01.0537 6312 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
16:10:01.0556 6312 srv2 - ok
16:10:01.0671 6312 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
16:10:01.0685 6312 srvnet - ok
16:10:01.0720 6312 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
16:10:01.0759 6312 SSDPSRV - ok
16:10:01.0772 6312 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
16:10:01.0794 6312 SstpSvc - ok
16:10:01.0821 6312 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
16:10:01.0827 6312 stexstor - ok
16:10:01.0894 6312 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
16:10:01.0909 6312 stisvc - ok
16:10:01.0931 6312 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
16:10:01.0937 6312 swenum - ok
16:10:01.0974 6312 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
16:10:01.0999 6312 swprv - ok
16:10:02.0084 6312 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
16:10:02.0107 6312 SysMain - ok
16:10:02.0190 6312 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
16:10:02.0201 6312 TabletInputService - ok
16:10:02.0224 6312 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
16:10:02.0247 6312 TapiSrv - ok
16:10:02.0270 6312 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
16:10:02.0291 6312 TBS - ok
16:10:02.0389 6312 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
16:10:02.0413 6312 Tcpip - ok
16:10:02.0572 6312 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
16:10:02.0595 6312 TCPIP6 - ok
16:10:02.0689 6312 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
16:10:02.0710 6312 tcpipreg - ok
16:10:02.0731 6312 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
16:10:02.0739 6312 TDPIPE - ok
16:10:02.0766 6312 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
16:10:02.0773 6312 TDTCP - ok
16:10:02.0808 6312 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
16:10:02.0830 6312 tdx - ok
16:10:02.0856 6312 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
16:10:02.0863 6312 TermDD - ok
16:10:02.0899 6312 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
16:10:02.0925 6312 TermService - ok
16:10:02.0963 6312 TfFsMon (9cd5c339754e2310790ca27dbbd31f88) C:\Windows\system32\drivers\TfFsMon.sys
16:10:02.0970 6312 TfFsMon - ok
16:10:03.0020 6312 TFSysMon (3593a7b1264fba24fe9e097a99b3e848) C:\Windows\system32\drivers\TfSysMon.sys
16:10:03.0034 6312 TFSysMon - ok
16:10:03.0054 6312 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
16:10:03.0066 6312 Themes - ok
16:10:03.0095 6312 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
16:10:03.0118 6312 THREADORDER - ok
16:10:03.0203 6312 ThreatFire - ok
16:10:03.0226 6312 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
16:10:03.0266 6312 TrkWks - ok
16:10:03.0321 6312 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
16:10:03.0362 6312 TrustedInstaller - ok
16:10:03.0404 6312 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
16:10:03.0441 6312 tssecsrv - ok
16:10:03.0476 6312 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
16:10:03.0491 6312 TsUsbFlt - ok
16:10:03.0536 6312 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
16:10:03.0573 6312 tunnel - ok
16:10:03.0594 6312 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
16:10:03.0600 6312 uagp35 - ok
16:10:03.0673 6312 uagqecsvc (c49adf4fdcc2c1493197b2df528c9485) C:\Users\Andrew\Forefront UAG Remote Access Agent\wwwmyhdsbca\uag1\uagqecsvc.exe
16:10:03.0686 6312 uagqecsvc - ok
16:10:03.0724 6312 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
16:10:03.0759 6312 udfs - ok
16:10:03.0793 6312 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
16:10:03.0803 6312 UI0Detect - ok
16:10:03.0833 6312 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
16:10:03.0845 6312 uliagpkx - ok
16:10:03.0873 6312 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
16:10:03.0889 6312 umbus - ok
16:10:03.0918 6312 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
16:10:03.0934 6312 UmPass - ok
16:10:04.0112 6312 UNS (fdf92ec84fecee834fb10a2a0a19bcda) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
16:10:04.0154 6312 UNS - ok
16:10:04.0254 6312 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
16:10:04.0294 6312 upnphost - ok
16:10:04.0340 6312 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
16:10:04.0350 6312 USBAAPL64 - ok
16:10:04.0379 6312 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
16:10:04.0394 6312 usbccgp - ok
16:10:04.0425 6312 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
16:10:04.0445 6312 usbcir - ok
16:10:04.0474 6312 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
16:10:04.0489 6312 usbehci - ok
16:10:04.0525 6312 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
16:10:04.0545 6312 usbhub - ok
16:10:04.0564 6312 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
16:10:04.0573 6312 usbohci - ok
16:10:04.0605 6312 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
16:10:04.0617 6312 usbprint - ok
16:10:04.0649 6312 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
16:10:04.0668 6312 usbscan - ok
16:10:04.0686 6312 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:10:04.0694 6312 USBSTOR - ok
16:10:04.0705 6312 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
16:10:04.0713 6312 usbuhci - ok
16:10:04.0736 6312 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
16:10:04.0762 6312 UxSms - ok
16:10:04.0800 6312 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
16:10:04.0816 6312 VaultSvc - ok
16:10:04.0856 6312 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
16:10:04.0870 6312 vdrvroot - ok
16:10:04.0927 6312 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
16:10:04.0964 6312 vds - ok
16:10:04.0991 6312 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
16:10:05.0000 6312 vga - ok
16:10:05.0012 6312 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
16:10:05.0033 6312 VgaSave - ok
16:10:05.0061 6312 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
16:10:05.0072 6312 vhdmp - ok
16:10:05.0126 6312 vhidmini (52290e2e0bfae61d622aa8b9b3a4cb4e) C:\Windows\system32\DRIVERS\vhidmini.sys
16:10:05.0138 6312 vhidmini - ok
16:10:05.0169 6312 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
16:10:05.0183 6312 viaide - ok
16:10:05.0222 6312 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
16:10:05.0237 6312 volmgr - ok
16:10:05.0285 6312 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
16:10:05.0305 6312 volmgrx - ok
16:10:05.0327 6312 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
16:10:05.0336 6312 volsnap - ok
16:10:05.0366 6312 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
16:10:05.0381 6312 vsmraid - ok
16:10:05.0466 6312 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
16:10:05.0508 6312 VSS - ok
16:10:05.0599 6312 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
16:10:05.0618 6312 vwifibus - ok
16:10:05.0654 6312 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
16:10:05.0701 6312 W32Time - ok
16:10:05.0714 6312 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
16:10:05.0722 6312 WacomPen - ok
16:10:05.0763 6312 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
16:10:05.0797 6312 WANARP - ok
16:10:05.0804 6312 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
16:10:05.0825 6312 Wanarpv6 - ok
16:10:05.0907 6312 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
16:10:05.0941 6312 WatAdminSvc - ok
16:10:06.0034 6312 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
16:10:06.0064 6312 wbengine - ok
16:10:06.0143 6312 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
16:10:06.0168 6312 WbioSrvc - ok
16:10:06.0220 6312 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
16:10:06.0244 6312 wcncsvc - ok
16:10:06.0255 6312 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
16:10:06.0265 6312 WcsPlugInService - ok
16:10:06.0294 6312 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
16:10:06.0305 6312 Wd - ok
16:10:06.0345 6312 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
16:10:06.0371 6312 Wdf01000 - ok
16:10:06.0383 6312 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
16:10:06.0398 6312 WdiServiceHost - ok
16:10:06.0401 6312 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
16:10:06.0414 6312 WdiSystemHost - ok
16:10:06.0451 6312 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
16:10:06.0477 6312 WebClient - ok
16:10:06.0509 6312 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
16:10:06.0643 6312 Wecsvc - ok
16:10:06.0675 6312 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
16:10:06.0718 6312 wercplsupport - ok
16:10:06.0768 6312 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
16:10:06.0811 6312 WerSvc - ok
16:10:06.0867 6312 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
16:10:06.0904 6312 WfpLwf - ok
16:10:06.0914 6312 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
16:10:06.0921 6312 WIMMount - ok
16:10:06.0949 6312 WinDefend - ok
16:10:06.0952 6312 WinHttpAutoProxySvc - ok
16:10:06.0988 6312 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
16:10:07.0026 6312 Winmgmt - ok
16:10:07.0130 6312 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
16:10:07.0174 6312 WinRM - ok
16:10:07.0297 6312 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
16:10:07.0316 6312 WinUsb - ok
16:10:07.0376 6312 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
16:10:07.0407 6312 Wlansvc - ok
16:10:07.0474 6312 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
16:10:07.0485 6312 wlcrasvc - ok
16:10:07.0596 6312 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:10:07.0632 6312 wlidsvc - ok
16:10:07.0729 6312 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
16:10:07.0745 6312 WmiAcpi - ok
16:10:07.0788 6312 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
16:10:07.0808 6312 wmiApSrv - ok
16:10:07.0859 6312 WMPNetworkSvc - ok
16:10:07.0875 6312 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
16:10:07.0891 6312 WPCSvc - ok
16:10:07.0922 6312 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
16:10:07.0941 6312 WPDBusEnum - ok
16:10:07.0959 6312 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
16:10:07.0984 6312 ws2ifsl - ok
16:10:08.0001 6312 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
16:10:08.0015 6312 wscsvc - ok
16:10:08.0016 6312 WSearch - ok
16:10:08.0150 6312 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
16:10:08.0195 6312 wuauserv - ok
16:10:08.0296 6312 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
16:10:08.0339 6312 WudfPf - ok
16:10:08.0379 6312 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
16:10:08.0419 6312 WUDFRd - ok
16:10:08.0451 6312 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
16:10:08.0473 6312 wudfsvc - ok
16:10:08.0519 6312 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
16:10:08.0544 6312 WwanSvc - ok
16:10:08.0561 6312 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
16:10:08.0778 6312 \Device\Harddisk0\DR0 - ok
16:10:08.0781 6312 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk1\DR1
16:10:08.0942 6312 \Device\Harddisk1\DR1 - ok
16:10:08.0944 6312 Boot (0x1200) (9e9ad722c2a4b4326825cb64827c2e60) \Device\Harddisk0\DR0\Partition0
16:10:08.0946 6312 \Device\Harddisk0\DR0\Partition0 - ok
16:10:08.0969 6312 Boot (0x1200) (812ca80af59abdf43b36a4871bca3372) \Device\Harddisk0\DR0\Partition1
16:10:08.0970 6312 \Device\Harddisk0\DR0\Partition1 - ok
16:10:08.0973 6312 Boot (0x1200) (e10ac444b375c92b9d67946bb71b073a) \Device\Harddisk1\DR1\Partition0
16:10:08.0975 6312 \Device\Harddisk1\DR1\Partition0 - ok
16:10:08.0977 6312 Boot (0x1200) (3d6cdb40dec2de526b497afc4f59ef65) \Device\Harddisk1\DR1\Partition1
16:10:08.0978 6312 \Device\Harddisk1\DR1\Partition1 - ok
16:10:08.0979 6312 ============================================================
16:10:08.0979 6312 Scan finished
16:10:08.0979 6312 ============================================================
16:10:08.0989 3384 Detected object count: 1
16:10:08.0989 3384 Actual detected object count: 1
16:10:29.0526 3384 Intel® Desktop Boards FSC Application Service ( UnsignedFile.Multi.Generic ) - skipped by user
16:10:29.0526 3384 Intel® Desktop Boards FSC Application Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:12:13.0146 7140 Deinitialize success

#4 Daanmakus

Daanmakus
  • Topic Starter

  • Members
  • 50 posts
  • OFFLINE
  •  
  • Local time:02:59 AM

Posted 20 June 2012 - 03:29 PM

aswMBR log


ListParts by Farbar Version: 11-06-2012
Ran by Andrew (administrator) on 17-06-2012 at 15:09:54
Windows 7 (X64)
Running From: C:\Users\Andrew\Downloads
Language: 0409
************************************************************

========================= Memory info ======================

Percentage of memory in use: 26%
Total physical RAM: 8171.95 MB
Available physical RAM: 5979.98 MB
Total Pagefile: 16342.08 MB
Available Pagefile: 14146.52 MB
Total Virtual: 4095.88 MB
Available Virtual: 3982.14 MB

======================= Partitions =========================

1 Drive c: () (Fixed) (Total:372.51 GB) (Free:255.66 GB) NTFS
2 Drive d: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System with boot components (obtained from reading drive)]
3 Drive e: () (Fixed) (Total:931.41 GB) (Free:437.88 GB) NTFS
4 Drive f: (CHARLIE_AND_CHOCOLATE_FACTORY) (CDROM) (Total:7.69 GB) (Free:0 GB) UDF

Disk ### Status Size Free Dyn Gpt
-------- ------------- ------- ------- --- ---
Disk 0 Online 372 GB 0 B
Disk 1 Online 931 GB 0 B

Partitions of Disk 0:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Primary 100 MB 1024 KB
Partition 2 Primary 372 GB 101 MB

======================================================================================================

Disk: 0
Partition 1
Type : 07
Hidden: No
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 1 System Rese NTFS Partition 100 MB Healthy System (partition with boot components)

======================================================================================================

Disk: 0
Partition 2
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 C NTFS Partition 372 GB Healthy Boot

======================================================================================================

Partitions of Disk 1:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Primary 100 MB 1024 KB
Partition 2 Primary 931 GB 101 MB

======================================================================================================

Disk: 1
Partition 1
Type : 07
Hidden: No
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 3 D System Rese NTFS Partition 100 MB Healthy

======================================================================================================

Disk: 1
Partition 2
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 4 E NTFS Partition 931 GB Healthy

======================================================================================================

****** End Of Log ****** aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-20 16:16:03
-----------------------------
16:16:03.787 OS Version: Windows x64 6.1.7601 Service Pack 1
16:16:03.787 Number of processors: 8 586 0x2A07
16:16:03.787 ComputerName: ANDREW-PC UserName: Andrew
16:16:04.785 Initialize success
16:17:30.656 AVAST engine defs: 12062001
16:18:16.782 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
16:18:16.782 Disk 0 Vendor: Hitachi_ V5CO Size: 381554MB BusType: 3
16:18:16.797 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IAAStorageDevice-2
16:18:16.797 Disk 1 Vendor: WDC_WD10 01.0 Size: 953869MB BusType: 3
16:18:16.797 Disk 0 MBR read successfully
16:18:16.813 Disk 0 MBR scan
16:18:16.813 Disk 0 Windows 7 default MBR code
16:18:16.828 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
16:18:16.860 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 381452 MB offset 206848
16:18:16.906 Disk 0 scanning C:\Windows\system32\drivers
16:18:30.104 Service scanning
16:19:09.104 Modules scanning
16:19:09.104 Disk 0 trace - called modules:
16:19:09.120 ntoskrnl.exe CLASSPNP.SYS disk.sys PCTCore64.sys iaStor.sys hal.dll
16:19:09.135 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8008ec0790]
16:19:09.135 3 CLASSPNP.SYS[fffff88001f9043f] -> nt!IofCallDriver -> [0xfffffa8008dc3940]
16:19:09.135 5 PCTCore64.sys[fffff8800121b720] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80073ab050]
16:19:10.118 AVAST engine scan C:\Windows
16:19:14.299 AVAST engine scan C:\Windows\system32
16:22:49.439 AVAST engine scan C:\Windows\system32\drivers
16:23:03.245 AVAST engine scan C:\Users\Andrew
16:26:06.077 AVAST engine scan C:\ProgramData
16:26:53.735 Scan finished successfully
16:27:52.001 Disk 0 MBR has been saved successfully to "C:\Users\Andrew\Downloads\MBR.dat"
16:27:52.064 The log file has been saved successfully to "C:\Users\Andrew\Downloads\Result.txt"

#5 Daanmakus

Daanmakus
  • Topic Starter

  • Members
  • 50 posts
  • OFFLINE
  •  
  • Local time:02:59 AM

Posted 20 June 2012 - 04:32 PM

ESET Log.

C:\Program Files (x86)\Windows iLivid Toolbar\Datamngr\BrowserConnection.dll Win32/Toolbar.SearchSuite application cleaned by deleting - quarantined
C:\Program Files (x86)\Windows iLivid Toolbar\Datamngr\datamngr.dll a variant of Win32/Toolbar.SearchSuite application cleaned by deleting - quarantined
C:\Program Files (x86)\Windows iLivid Toolbar\Datamngr\datamngrUI.exe a variant of Win32/Toolbar.SearchSuite application cleaned by deleting - quarantined
C:\Program Files (x86)\Windows iLivid Toolbar\Datamngr\DnsBHO.dll probably a variant of Win32/Toolbar.SearchSuite application cleaned by deleting - quarantined
C:\Program Files (x86)\Windows iLivid Toolbar\Datamngr\IEBHO.dll probably a variant of Win32/Toolbar.SearchSuite application cleaned by deleting - quarantined
C:\Program Files (x86)\Windows iLivid Toolbar\Datamngr\x64\BrowserConnection.dll Win64/Toolbar.SearchSuite application cleaned by deleting - quarantined
C:\Program Files (x86)\Windows iLivid Toolbar\Datamngr\x64\datamngr.dll Win64/Toolbar.SearchSuite application cleaned by deleting - quarantined
C:\Program Files (x86)\Windows iLivid Toolbar\Datamngr\x64\datamngrUI.exe Win64/Toolbar.SearchSuite application cleaned by deleting - quarantined
C:\Program Files (x86)\Windows iLivid Toolbar\Datamngr\x64\DnsBHO.dll Win64/Toolbar.SearchSuite application cleaned by deleting - quarantined
C:\Program Files (x86)\Windows iLivid Toolbar\Datamngr\x64\IEBHO.dll Win64/Toolbar.SearchSuite application cleaned by deleting - quarantined
C:\Users\Andrew\Downloads\FinalTorrent2011Setup.exe a variant of Win32/InstallIQ application cleaned by deleting - quarantined
C:\Users\Andrew\Downloads\SoftonicDownloader_for_mp3-rocket.exe a variant of Win32/SoftonicDownloader.A application cleaned by deleting - quarantined

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:59 AM

Posted 20 June 2012 - 05:18 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

I want you reinstall chrome and let me know if you still have redirects

#7 Daanmakus

Daanmakus
  • Topic Starter

  • Members
  • 50 posts
  • OFFLINE
  •  
  • Local time:02:59 AM

Posted 20 June 2012 - 09:09 PM

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.06.20.07

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Andrew :: ANDREW-PC [administrator]

20/06/2012 7:25:59 PM
mbam-log-2012-06-20 (19-25-59).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 418970
Time elapsed: 39 minute(s), 27 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#8 Daanmakus

Daanmakus
  • Topic Starter

  • Members
  • 50 posts
  • OFFLINE
  •  
  • Local time:02:59 AM

Posted 20 June 2012 - 09:11 PM

MiniToolBox by Farbar Version: 09-06-2012
Ran by Andrew (administrator) on 20-06-2012 at 22:10:50
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================

Intel® 82579V Gigabit Network Connection = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global defaultcurhoplimit=128 icmpredirects=enabled taskoffload=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Andrew-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Mixed
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : cgocable.net
System Quarantine State . . . . . : Not Restricted


Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : cgocable.net
Description . . . . . . . . . . . : Intel® 82579V Gigabit Network Connection
Physical Address. . . . . . . . . : 70-71-BC-DC-D8-85
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::1d95:c6a0:806:144b%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.2.85(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : June-20-12 5:34:10 PM
Lease Expires . . . . . . . . . . : July-04-12 5:34:10 PM
Default Gateway . . . . . . . . . : 192.168.2.1
DHCP Server . . . . . . . . . . . : 192.168.2.1
DHCPv6 IAID . . . . . . . . . . . : 242250172
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-C2-6F-1C-70-71-BC-DC-D8-85
DNS Servers . . . . . . . . . . . : 192.168.2.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.cgocable.net:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : cgocable.net
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fd:ee:32b9:3f57:fdaa(Preferred)
Link-local IPv6 Address . . . . . : fe80::ee:32b9:3f57:fdaa%11(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: UnKnown
Address: 192.168.2.1

Name: google.com
Addresses: 2607:f8b0:400b:801::1002
74.125.226.36
74.125.226.37
74.125.226.40
74.125.226.33
74.125.226.38
74.125.226.39
74.125.226.46
74.125.226.41
74.125.226.32
74.125.226.35
74.125.226.34


Pinging google.com [74.125.226.33] with 32 bytes of data:
Reply from 74.125.226.33: bytes=32 time=13ms TTL=57
Reply from 74.125.226.33: bytes=32 time=11ms TTL=57

Ping statistics for 74.125.226.33:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 11ms, Maximum = 13ms, Average = 12ms
Server: UnKnown
Address: 192.168.2.1

Name: yahoo.com
Addresses: 98.139.183.24
209.191.122.70
72.30.38.140


Pinging yahoo.com [209.191.122.70] with 32 bytes of data:
Reply from 209.191.122.70: bytes=32 time=62ms TTL=49
Reply from 209.191.122.70: bytes=32 time=85ms TTL=49

Ping statistics for 209.191.122.70:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 62ms, Maximum = 85ms, Average = 73ms
Server: UnKnown
Address: 192.168.2.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
10...70 71 bc dc d8 85 ......Intel® 82579V Gigabit Network Connection
1...........................Software Loopback Interface 1
15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
11...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.85 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.2.0 255.255.255.0 On-link 192.168.2.85 276
192.168.2.85 255.255.255.255 On-link 192.168.2.85 276
192.168.2.255 255.255.255.255 On-link 192.168.2.85 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.2.85 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.2.85 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
11 58 ::/0 On-link
1 306 ::1/128 On-link
11 58 2001::/32 On-link
11 306 2001:0:5ef5:79fd:ee:32b9:3f57:fdaa/128
On-link
10 276 fe80::/64 On-link
11 306 fe80::/64 On-link
11 306 fe80::ee:32b9:3f57:fdaa/128
On-link
10 276 fe80::1d95:c6a0:806:144b/128
On-link
1 306 ff00::/8 On-link
11 306 ff00::/8 On-link
10 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/20/2012 07:51:11 PM) (Source: Application Error) (User: )
Description: Faulting application name: iptray.exe, version: 3.1.2.22, time stamp: 0x2a425e19
Faulting module name: ntdll.dll, version: 6.1.7601.17725, time stamp: 0x4ec49b8f
Exception code: 0xc0000028
Fault offset: 0x0009087d
Faulting process id: 0x95c
Faulting application start time: 0xiptray.exe0
Faulting application path: iptray.exe1
Faulting module path: iptray.exe2
Report Id: iptray.exe3

Error: (06/20/2012 05:34:16 PM) (Source: Bonjour Service) (User: )
Description: Local Hostname Andrew-PC.local already in use; will try Andrew-PC-2.local instead

Error: (06/20/2012 05:34:16 PM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 4 Andrew-PC.local. Addr 192.168.2.85

Error: (06/20/2012 05:34:16 PM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.2.149:5353 4 Andrew-PC.local. Addr 192.168.2.149

Error: (06/20/2012 05:31:31 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/20/2012 04:34:04 PM) (Source: Bonjour Service) (User: )
Description: Local Hostname Andrew-PC.local already in use; will try Andrew-PC-2.local instead

Error: (06/20/2012 04:34:04 PM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 16 Andrew-PC.local. AAAA FE80:0000:0000:0000:1D95:C6A0:0806:144B

Error: (06/20/2012 04:34:04 PM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.2.149:5353 16 Andrew-PC.local. AAAA FE80:0000:0000:0000:F045:2C4F:9C5A:6726

Error: (06/20/2012 04:34:04 PM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: Ignoring response received before we even began probing: 4 Andrew-PC.local. Addr 192.168.2.85

Error: (06/20/2012 04:34:03 PM) (Source: Bonjour Service) (User: )
Description: ResolveSimultaneousProbe: 0000000001928CA0 Our Record 3 won: 836934D6 16 Andrew-PC.local. AAAA FE80:0000:0000:0000:1D95:C6A0:0806:144B


System errors:
=============
Error: (06/19/2012 08:28:43 PM) (Source: Service Control Manager) (User: )
Description: The Apple Mobile Device service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (06/19/2012 06:54:43 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for Start with the following error:
%%5

Error: (06/19/2012 06:54:43 PM) (Source: Service Control Manager) (User: )
Description: The TfNetMon service failed to start due to the following error:
%%1450

Error: (06/19/2012 06:35:03 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for Start with the following error:
%%5

Error: (06/19/2012 06:35:03 PM) (Source: Service Control Manager) (User: )
Description: The TfNetMon service failed to start due to the following error:
%%1450

Error: (06/19/2012 06:32:36 PM) (Source: Service Control Manager) (User: )
Description: The UPnP Device Host service failed to start due to the following error:
%%1069

Error: (06/19/2012 06:32:36 PM) (Source: Service Control Manager) (User: )
Description: The upnphost service was unable to log on as NT AUTHORITY\LocalService with the currently configured password due to the following error:
%%1352

To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).

Error: (06/19/2012 06:32:36 PM) (Source: DCOM) (User: )
Description: 1069upnphost{204810B9-73B2-11D4-BF42-00B0D0118B56}

Error: (06/18/2012 08:58:02 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for Start with the following error:
%%5

Error: (06/18/2012 08:58:02 PM) (Source: Service Control Manager) (User: )
Description: The TfNetMon service failed to start due to the following error:
%%1450


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
Adobe AIR (Version: 3.1.0.4880)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.1.102.55)
Adobe Flash Player 11 Plugin 64-bit (Version: 11.1.102.62)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Adobe Shockwave Player 11.6 (Version: 11.6.1.629)
Aion
Apple Application Support (Version: 2.1.6)
Apple Mobile Device Support (Version: 4.0.0.97)
Apple Software Update (Version: 2.1.3.127)
Ask Toolbar (Version: 1.9.1.0)
Bonjour (Version: 3.0.0.10)
Browser Guard 4.0 (Version: 4.0.0.1550)
CA PC Tune-Up 3.0.0.2 (Version: 3.0.0.2)
D3DX10 (Version: 15.4.2368.0902)
Dropbox (Version: 1.4.7)
ESET Online Scanner v3
File Type Assistant
FinalTorrent 2011
FirstClass® Client (Version: 10.0 (build 10.009))
Futuremark SystemInfo (Version: 3.21.2.1)
Google Chrome (Version: 19.0.1084.56)
HP Deskjet 2050 J510 series Basic Device Software (Version: 22.50.231.0)
HP Deskjet 2050 J510 series Help (Version: 140.0.61.61)
HP LaserJet P1000 series
Intel® Desktop Utilities (Version: 3.1.2)
Intel® Management Engine Components (Version: 7.0.0.1118)
Intel® Network Connections 15.7.176.0 (Version: 15.7.176.0)
Intel® Rapid Storage Technology (Version: 10.1.0.1008)
Intel® SMBus
iTunes (Version: 10.5.3.3)
Java Auto Updater (Version: 2.1.6.0)
Java™ 6 Update 10 (Version: 6.0.100)
Java™ 6 Update 23 (64-bit) (Version: 6.0.230)
Java™ 6 Update 29 (Version: 6.0.290)
Java™ 7 Update 4 (64-bit) (Version: 7.0.40)
Java™ 7 Update 4 (Version: 7.0.40)
JavaFX 2.1.0 (Version: 2.1.0)
Junk Mail filter update (Version: 15.4.3502.0922)
Kobo (Version: 2.1.7)
Learning Lodge Navigator
Lineage II
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft IntelliPoint 8.0 (Version: 8.0.225.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook Connector (Version: 14.0.5118.5000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Ultimate 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
MobileMe Control Panel (Version: 3.1.6.0)
MP3 Rocket
MP3Rocket FileBulldog Toolbar
MrvlUsgTracking (Version: 1.0.7)
MrvlUsgTracking64 (Version: 1.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MUSHclient (remove only)
MyDSC2 (Version: 1.0)
n52te Editor (Version: 5.01)
NCsoft Launcher (Version: 1.5.19002)
NVIDIA Control Panel 301.42 (Version: 301.42)
NVIDIA Graphics Driver 266.58 (Version: 266.58)
NVIDIA HD Audio Driver 1.1.13.1 (Version: 1.1.13.1)
NVIDIA Install Application (Version: 2.1002.75.420)
NVIDIA PhysX (Version: 9.10.0514)
NVIDIA PhysX System Software 9.10.0514 (Version: 9.10.0514)
Pando Media Booster (Version: 2.6.0.7)
PC Tools Spyware Doctor with AntiVirus (Version: 9.0)
Picaboo X (Version: 10.154)
Picaboo X (Version: 10.154P)
QuickTime (Version: 7.69.80.9)
Realtek High Definition Audio Driver (Version: 6.0.1.6602)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.0.26.0)
Safari (Version: 5.33.21.1)
Search-Results Toolbar (Version: 1.0.0.13)
SpeedyPC Pro (Version: 3.1.3.0)
swMSM (Version: 12.0.0.1)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687267) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Ventrilo Client (Version: 3.0.7)
VTech Download Agent Library (Version: 1.00.0000)
Windows Driver Package - NVIDIA (nvlddmkm) Display (05/15/2012 8.17.13.0142) (Version: 05/15/2012 8.17.13.0142)
Windows Driver Package - NVIDIA Corporation (NVHDA) MEDIA (04/18/2012 1.3.16.0) (Version: 04/18/2012 1.3.16.0)
Windows Driver Package - NVIDIA Corporation (NVHDA) MEDIA (07/07/2011 1.2.24.0) (Version: 07/07/2011 1.2.24.0)
Windows Driver Package - Realtek Semiconductor Corp. HD Audio Driver (01/25/2011 6.0.1.6299) (Version: 01/25/2011 6.0.1.6299)
Windows Driver Package - Realtek Semiconductor Corp. HD Audio Driver (03/27/2012 6.0.1.6602) (Version: 03/27/2012 6.0.1.6602)
Windows Driver Package - Realtek Semiconductor Corp. HD Audio Driver (08/30/2011 6.0.1.6449) (Version: 08/30/2011 6.0.1.6449)
Windows Driver Package - Realtek Semiconductor Corp. HD Audio Driver (10/18/2011 6.0.1.6482) (Version: 10/18/2011 6.0.1.6482)
Windows Driver Package - Realtek Semiconductor Corp. HD Audio Driver (12/13/2011 6.0.1.6526) (Version: 12/13/2011 6.0.1.6526)
Windows iLivid Toolbar (Version: 3.0.0.112200)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live Family Safety (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)

========================= Memory info: ===================================

Percentage of memory in use: 38%
Total physical RAM: 8171.95 MB
Available physical RAM: 5045.83 MB
Total Pagefile: 16342.08 MB
Available Pagefile: 13243.34 MB
Total Virtual: 4095.88 MB
Available Virtual: 3959.1 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:372.51 GB) (Free:255.52 GB) NTFS
2 Drive d: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
3 Drive e: () (Fixed) (Total:931.41 GB) (Free:435.57 GB) NTFS
4 Drive f: (CHARLIE_AND_CHOCOLATE_FACTORY) (CDROM) (Total:7.69 GB) (Free:0 GB) UDF

========================= Users: ========================================

User accounts for \\ANDREW-PC

Administrator Andrew Guest


**** End of log ****

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:59 AM

Posted 20 June 2012 - 09:13 PM

I want you reinstall chrome and let me know if you still have redirects


?

#10 Daanmakus

Daanmakus
  • Topic Starter

  • Members
  • 50 posts
  • OFFLINE
  •  
  • Local time:02:59 AM

Posted 20 June 2012 - 09:20 PM

Hey,

I just re-installed google Chrome and in google searched Aion (a game I play) and got this

http://partner19.mydomainadvisor.com/search.php?pr=vmn&id=facesmooch&v=1_1&ent=antiphishing_dn&type=dns&q=www.aiononline.com

??

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:59 AM

Posted 20 June 2012 - 09:33 PM

Press Windows+R key and type

inetcpl.cpl and click ok

Click the "Connections" tab, then click the "LAN Settings" button.

Uncheck the box labeled "Use a proxy server for your LAN" click ok

Try to browse now

Edited by narenxp, 20 June 2012 - 09:34 PM.


#12 Daanmakus

Daanmakus
  • Topic Starter

  • Members
  • 50 posts
  • OFFLINE
  •  
  • Local time:02:59 AM

Posted 20 June 2012 - 10:38 PM

lan settings box wasn't checked.

#13 Daanmakus

Daanmakus
  • Topic Starter

  • Members
  • 50 posts
  • OFFLINE
  •  
  • Local time:02:59 AM

Posted 20 June 2012 - 10:41 PM

I tried browsing and I did get to the website but then the first link on the site I tried took me back to Partner19 link I posted before.

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:59 AM

Posted 20 June 2012 - 10:44 PM

Read the guide here on preparing logs

http://www.bleepingcomputer.com/forums/topic34773.html

and create a topic here

http://www.bleepingcomputer.com/forums/forum22.html

Good luck




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users