Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

My search links are being redirected.


  • Please log in to reply
12 replies to this topic

#1 Revincent

Revincent

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:12:27 PM

Posted 25 June 2012 - 12:57 PM

Hello,


My computer has recently started to redirect my search links to various spam websites. I am running Windows 7 and the problem occurs in Firefox.

I have run a Malwarebytes scan and a SuperAntiSpyware scan; both found problems, but once the viruses/malware were removed, the redirect problem continued to happen. Any help with this issue would be greatly appreciated.



Additional Notes: I am not running Windows 7 SP1 because the installer always comes up with an error; I believe the problem is being caused because I dual-boot Fedora.

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,573 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:27 PM

Posted 25 June 2012 - 01:20 PM

Hello, let's run this next and see if it stops.

Please post the MBAM log. The log is automatically saved and can be viewed by clicking the Logs tab.
Copy and paste the contents of that report in your next reply.


Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.




Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click on Change Parameters
  • Put a check in the box of Detect TDLFS file system
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log have a name like: TDSSKiller.Version_Date_Time_log.txt.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Revincent

Revincent
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:12:27 PM

Posted 25 June 2012 - 01:30 PM

Hi boopme, thank you for the very fast reply. When I posted, I was on my lunch break from work; I will run the tools and post the logs that you have requested as soon as I get home.

#4 Revincent

Revincent
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:12:27 PM

Posted 25 June 2012 - 04:48 PM

Hi again boopme, Tdsskiller only found 1 potential threat, and the default action was skip; no restart was required.



Here are all three log files:




Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.06.25.06

Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
Ryan :: VINNY-LAPTOP [administrator]

6/25/2012 6:18:47 AM
mbam-log-2012-06-25 (06-18-47).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra |

Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 618885
Time elapsed: 2 hour(s), 54 minute(s), 57 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)


------------------------------------------------------------------------------------
===================================END MALWAREBYTES LOG=============================
------------------------------------------------------------------------------------

MiniToolBox by Farbar Version: 25-06-2012
Ran by Ryan (administrator) on 25-06-2012 at 16:43:24
Microsoft Windows 7 Home Premium (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================

Broadcom 802.11b/g WLAN = Wireless Network Connection (Connected)
Realtek PCIe FE Family Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="Wireless Network Connection" nexthop=192.168.2.1 publish=Yes
add address name="Wireless Network Connection" address=192.168.2.2


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Vinny-Laptop
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 00-21-00-FD-11-26
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom 802.11b/g WLAN
Physical Address. . . . . . . . . : 00-21-00-FD-11-26
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::2d2a:ca6:b4ae:126a%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.2.2(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.2.1
DHCPv6 IAID . . . . . . . . . . . : 234889472
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-11-E1-DE-0D-00-21-00-FD-11-26
DNS Servers . . . . . . . . . . . : 8.26.56.26
156.154.70.22
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
Physical Address. . . . . . . . . : 00-23-5A-AD-E0-25
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 13:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{0113BA4B-E001-46AB-A7B9-248EFB0E7CE4}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #9
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{E8BED585-C1A9-4E72-883F-46D9D4E5C7BD}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #10
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: ns1.recursive.dns.com
Address: 8.26.56.26

Name: google.com
Addresses: 2a00:1450:8005::65
173.194.69.113
173.194.69.139
173.194.69.102
173.194.69.138
173.194.69.100
173.194.69.101


Pinging google.com [173.194.69.102] with 32 bytes of data:
Reply from 173.194.69.102: bytes=32 time=133ms TTL=40
Reply from 173.194.69.102: bytes=32 time=137ms TTL=40

Ping statistics for 173.194.69.102:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 133ms, Maximum = 137ms, Average = 135ms
Server: ns1.recursive.dns.com
Address: 8.26.56.26

Name: yahoo.com
Addresses: 209.191.122.70
72.30.38.140
98.139.183.24


Pinging yahoo.com [209.191.122.70] with 32 bytes of data:
Reply from 209.191.122.70: bytes=32 time=34ms TTL=48
Reply from 209.191.122.70: bytes=32 time=33ms TTL=48

Ping statistics for 209.191.122.70:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 33ms, Maximum = 34ms, Average = 33ms
Server: ns1.recursive.dns.com
Address: 8.26.56.26

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
19...00 21 00 fd 11 26 ......Microsoft Virtual WiFi Miniport Adapter
11...00 21 00 fd 11 26 ......Broadcom 802.11b/g WLAN
2...00 23 5a ad e0 25 ......Realtek PCIe FE Family Controller
1...........................Software Loopback Interface 1
18...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
25...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #9
26...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #10
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.2 281
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.2.0 255.255.255.0 On-link 192.168.2.2 281
192.168.2.2 255.255.255.255 On-link 192.168.2.2 281
192.168.2.255 255.255.255.255 On-link 192.168.2.2 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.2.2 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.2.2 281
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
0.0.0.0 0.0.0.0 192.168.2.1 Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 281 fe80::/64 On-link
11 281 fe80::2d2a:ca6:b4ae:126a/128
On-link
1 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [51712] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [35840] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70144] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [46592] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/25/2012 04:28:41 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/25/2012 00:42:25 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/25/2012 06:03:03 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/25/2012 04:58:19 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (06/25/2012 04:58:18 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (06/25/2012 04:58:17 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (06/25/2012 04:58:16 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (06/25/2012 04:58:16 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (06/25/2012 04:58:15 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (06/25/2012 04:58:14 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.


System errors:
=============
Error: (06/25/2012 04:29:27 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143.

Error: (06/25/2012 04:28:10 PM) (Source: Service Control Manager) (User: )
Description: The Net.Tcp Listener Adapter service depends on the Net.Tcp Port Sharing Service service which failed to start because of the following error:
%%1053

Error: (06/25/2012 04:28:02 PM) (Source: Service Control Manager) (User: )
Description: The IPsec Policy Agent service depends the following service: BFE. This service might not be installed.

Error: (06/25/2012 04:28:00 PM) (Source: Service Control Manager) (User: )
Description: The Net.Tcp Port Sharing Service service failed to start due to the following error:
%%1053

Error: (06/25/2012 04:28:00 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Net.Tcp Port Sharing Service service to connect.

Error: (06/25/2012 04:27:25 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service terminated with the following error:
%%1060

Error: (06/25/2012 04:27:24 PM) (Source: Service Control Manager) (User: )
Description: The IKE and AuthIP IPsec Keying Modules service depends the following service: BFE. This service might not be installed.

Error: (06/25/2012 00:43:51 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143.

Error: (06/25/2012 00:41:56 PM) (Source: Service Control Manager) (User: )
Description: The Net.Tcp Listener Adapter service depends on the Net.Tcp Port Sharing Service service which failed to start because of the following error:
%%1053

Error: (06/25/2012 00:41:46 PM) (Source: Service Control Manager) (User: )
Description: The IPsec Policy Agent service depends the following service: BFE. This service might not be installed.


Microsoft Office Sessions:
=========================
Error: (01/25/2011 04:39:02 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 6 seconds with 0 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
"Minimal SYStem 1.0.10" (Version: 1.0.10)
Acrobat.com (Version: 1.6.65)
Adobe AIR (Version: 2.7.1.19610)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.2.202.235)
Adobe Flash Player 11 Plugin (Version: 11.3.300.262)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Allway Sync version 12.1.1
Alps Touch Pad Driver
Apple Application Support (Version: 2.1.7)
Apple Software Update (Version: 2.1.3.127)
Audacity 1.3.14 (Unicode)
BitTorrent (Version: 7.0.0)
Broadcom 802.11 Wireless LAN Adapter (Version: 5.60.48.18)
ClustalW2 (Version: 2.1)
COMODO GeekBuddy (Version: 3.3.217083.59)
COMODO Internet Security (Version: 5.10.31649.2253)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Crystal Reports for Visual Studio (Version: 12.51.0.240)
D3DX10 (Version: 15.4.2368.0902)
Dotfuscator Software Services - Community Edition (Version: 5.0.2500.0)
ENE CIR Receiver Driver (Version: 2.7.3.519)
ESU for Microsoft Vista (Version: 1.0.0)
GlassFish Server Open Source Edition 3.0.1
GlassFish Server Open Source Edition 3.1.1
Google Update Helper (Version: 1.3.21.111)
Hewlett-Packard ACLM.NET v1.1.0.0 (Version: 1.00.0000)
HP Advisor (Version: 3.2.9652.3188)
HP Battery Check (Version: 4.0.17.0)
HP Common Access Service Library (Version: 2.0.6.1)
HP Customer Experience Enhancements (Version: 6.0.1.3)
HP Doc Viewer (Version: 1.01.0005)
HP MediaSmart DVD (Version: 2.2.2905)
HP MediaSmart Music/Photo/Video (Version: 2.2.2613)
HP MediaSmart SlingPlayer (Version: 2.1.1.48)
HP MediaSmart TV (Version: 2.2.1423)
HP MediaSmart Webcam (Version: 2.2.1417)
HP Product Detection (Version: 11.14.0001)
HP Quick Launch Buttons (Version: 6.50.12.1)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Total Care Setup (Version: 1.2.2854.2975)
HP Update (Version: 5.002.006.003)
HP User Guides 0125 (Version: 1.00.0000)
HP Wireless Assistant (Version: 3.50.3.1)
IDT Audio (Version: 1.0.6225.0)
ImgBurn (Version: 2.5.6.0)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.1883)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 29 (64-bit) (Version: 6.0.290)
Java™ 6 Update 29 (Version: 6.0.290)
Java™ SE Development Kit 6 Update 22 (64-bit) (Version: 1.6.0.220)
Java™ SE Development Kit 6 Update 26 (64-bit) (Version: 1.6.0.260)
Java™ SE Development Kit 6 Update 29 (64-bit) (Version: 1.6.0.290)
JMicron Flash Media Controller Driver (Version: 1.00.25.04)
LabelPrint (Version: 2.5.1413)
League of Legends (Version: 1.0020)
League of Legends (Version: 1.3)
LSI HDA Modem (Version: 2.2.97)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Multi-Targeting Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools (Version: 2.0.50217.0)
Microsoft ASP.NET MVC 2 (Version: 2.0.50217.0)
Microsoft Expression Blend 2 (Version: 2.0.1523.0)
Microsoft Expression Design 2 (Version: 5.0.1379.0)
Microsoft Expression Encoder 2 (Version: 2.0.1406.0)
Microsoft Expression Media 2 SP2 (Version: 2.0.2096.0)
Microsoft Expression Studio 2 (Version: 2.0.133.0)
Microsoft Expression Web 2 (Version: 12.0.4518.1084)
Microsoft Expression Web 2 MUI (English) (Version: 12.0.4518.1084)
Microsoft Help Viewer 1.1 (Version: 1.1.40219)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office FrontPage 2003 (Version: 11.0.8173.0)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher 2007 (Version: 12.0.6612.1000)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Visio 2007 Service Pack 3 (SP3)
Microsoft Office Visio MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Visio Professional 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft Silverlight 3 SDK (Version: 3.0.40818.0)
Microsoft Silverlight 4 SDK (Version: 4.0.50826.0)
Microsoft SQL Server 2008 Browser (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Common Files (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Database Engine Services (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Database Engine Shared (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Native Client (Version: 10.3.5500.0)
Microsoft SQL Server 2008 R2 Data-Tier Application Framework (Version: 10.50.1750.9)
Microsoft SQL Server 2008 R2 Data-Tier Application Project (Version: 10.50.1750.9)
Microsoft SQL Server 2008 R2 Management Objects (Version: 10.50.1750.9)
Microsoft SQL Server 2008 R2 Management Objects (x64) (Version: 10.50.1750.9)
Microsoft SQL Server 2008 R2 Transact-SQL Language Service (Version: 10.50.1750.9)
Microsoft SQL Server 2008 RsFx Driver (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Setup Support Files (Version: 10.3.5500.0)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version: 3.5.8080.0)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (Version: 3.5.8080.0)
Microsoft SQL Server Database Publishing Wizard 1.4 (Version: 10.1.2512.8)
Microsoft SQL Server System CLR Types (Version: 10.50.1750.9)
Microsoft SQL Server System CLR Types (x64) (Version: 10.50.1750.9)
Microsoft SQL Server VSS Writer (Version: 10.3.5500.0)
Microsoft Sync Framework Runtime v1.0 SP1 (x64) (Version: 1.0.3010.0)
Microsoft Sync Framework SDK v1.0 SP1 (Version: 1.0.3010.0)
Microsoft Sync Framework Services v1.0 SP1 (x64) (Version: 1.0.3010.0)
Microsoft Sync Services for ADO.NET v2.0 SP1 (x64) (Version: 2.0.3010.0)
Microsoft Team Foundation Server 2010 Object Model - ENU (Version: 10.0.40219)
Microsoft Visual C++ Compilers 2010 Standard - enu - x64 (Version: 10.0.40219)
Microsoft Visual C++ Compilers 2010 Standard - enu - x86 (Version: 10.0.40219)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Designtime - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x64 Runtime - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual F# 2.0 Runtime (Version: 10.0.40219)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (Version: 10.0.40219)
Microsoft Visual Studio 2010 IntelliTrace Collection (x64) (Version: 10.0.40219)
Microsoft Visual Studio 2010 Office Developer Tools (x64) (Version: 10.0.40219)
Microsoft Visual Studio 2010 Performance Collection Tools SP1 - ENU (Version: 10.0.40219)
Microsoft Visual Studio 2010 Premium - ENU (Version: 10.0.30319)
Microsoft Visual Studio 2010 Premium - ENU (Version: 10.0.40219)
Microsoft Visual Studio 2010 Service Pack 1 (Version: 10.0.40219)
Microsoft Visual Studio 2010 SharePoint Developer Tools (Version: 10.0.40219)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.31119)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.31124)
Microsoft Visual Studio Macro Tools (Version: 9.0.30729)
Microsoft Works (Version: 9.7.0621)
MinGW-Get version 0.4-alpha-1 (Version: 0.4-alpha-1)
Mozilla Firefox 13.0.1 (x86 en-US) (Version: 13.0.1)
Mozilla Maintenance Service (Version: 13.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
NetBeans IDE 7.0.1 (Version: 7.0.1)
Pando Media Booster (Version: 2.3.4.3)
Pantech PCSuite (Version: 1.0)
Password Store
PDFCreator (Version: 1.2.3)
Power2Go (Version: 6.0.2609)
PowerDirector (Version: 7.0.2609)
Progress Bar
ProtectSmart Hard Drive Protection (Version: 3.10.1.7)
QLBCASL (Version: 6.40.17.2)
QuickTime (Version: 7.72.80.56)
Realtek 8101E/8168/8169 PCI/PCIe Adapters (Version: 6.210.1003.2008)
ScrollDemo
ScrollDemo2
Service Pack 3 for SQL Server 2008 (KB2546951) (Version: 10.3.5500.0)
Skype™ 5.5 (Version: 5.5.124)
SmartWebPrinting (Version: 140.0.186.000)
Sql Server Customer Experience Improvement Program (Version: 10.3.5500.0)
SUPERAntiSpyware (Version: 5.1.1002)
Symantec Technical Support Web Controls (Version: 3.5.3)
TomTom HOME 2.7.3.1894 (Version: 2.7.3.1894)
TomTom HOME Visual Studio Merge Modules (Version: 1.0.2)
Update for 2007 Microsoft Office System (KB2284654)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Expression Web 2 (KB957827)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Visio 2007 Help (KB963666)
Update for Microsoft Office Word 2007 Help (KB963665)
VC Runtimes MSI (Version: 9.0.21022)
Visual Studio 2010 Prerequisites - English (Version: 10.0.40219)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (Version: 4.0.8080.0)
VLC media player 1.1.11 (Version: 1.1.11)
VNC Free Edition 4.1.3 (Version: 4.1.3)
WCF RIA Services V1.0 SP1 (Version: 4.1.60114.0)
Web Deployment Tool (Version: 1.1.0618)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinPcap 4.1.2 (Version: 4.1.0.2001)
WinRAR archiver
WinSCP 4.2.7 (Version: 4.2.7)

========================= Memory info: ===================================

Percentage of memory in use: 38%
Total physical RAM: 3998.96 MB
Available physical RAM: 2469.42 MB
Total Pagefile: 7996.07 MB
Available Pagefile: 6240.02 MB
Total Virtual: 4095.88 MB
Available Virtual: 3961.95 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:149.56 GB) (Free:47.34 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:11.68 GB) (Free:1.31 GB) NTFS

========================= Users: ========================================

User accounts for \\VINNY-LAPTOP

Administrator Guest Parent's Account
Ryan


**** End of log ****



--------------------------------------------------------------------------
==============================END MINITOOLBOX LOG=========================
--------------------------------------------------------------------------



16:44:35.0646 2552 TDSS rootkit removing tool 2.7.41.0 Jun 20 2012 20:53:32
16:44:35.0989 2552 ============================================================
16:44:35.0989 2552 Current date / time: 2012/06/25 16:44:35.0989
16:44:35.0989 2552 SystemInfo:
16:44:35.0989 2552
16:44:35.0989 2552 OS Version: 6.1.7600 ServicePack: 0.0
16:44:35.0989 2552 Product type: Workstation
16:44:35.0989 2552 ComputerName: VINNY-LAPTOP
16:44:35.0989 2552 UserName: Ryan
16:44:35.0989 2552 Windows directory: C:\Windows
16:44:35.0989 2552 System windows directory: C:\Windows
16:44:35.0989 2552 Running under WOW64
16:44:35.0989 2552 Processor architecture: Intel x64
16:44:35.0989 2552 Number of processors: 2
16:44:35.0989 2552 Page size: 0x1000
16:44:35.0989 2552 Boot type: Normal boot
16:44:35.0989 2552 ============================================================
16:44:37.0253 2552 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:44:37.0268 2552 ============================================================
16:44:37.0268 2552 \Device\Harddisk0\DR0:
16:44:37.0268 2552 MBR partitions:
16:44:37.0268 2552 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1324B018
16:44:37.0268 2552 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x23CD0000, BlocksNum 0x175D000
16:44:37.0300 2552 ============================================================
16:44:37.0331 2552 C: <-> \Device\Harddisk0\DR0\Partition0
16:44:37.0378 2552 D: <-> \Device\Harddisk0\DR0\Partition1
16:44:37.0378 2552 ============================================================
16:44:37.0378 2552 Initialize success
16:44:37.0378 2552 ============================================================
16:44:42.0463 4116 ============================================================
16:44:42.0463 4116 Scan started
16:44:42.0463 4116 Mode: Manual; TDLFS;
16:44:42.0463 4116 ============================================================
16:44:43.0009 4116 !SASCORE (7d9d615201a483d6fa99491c2e655a5a) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
16:44:43.0009 4116 !SASCORE - ok
16:44:43.0212 4116 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
16:44:43.0212 4116 1394ohci - ok
16:44:43.0259 4116 Accelerometer (5c368f4b04ed2a923e6afca2d37baff5) C:\Windows\system32\DRIVERS\Accelerometer.sys
16:44:43.0259 4116 Accelerometer - ok
16:44:43.0306 4116 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
16:44:43.0306 4116 ACPI - ok
16:44:43.0352 4116 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
16:44:43.0352 4116 AcpiPmi - ok
16:44:43.0446 4116 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:44:43.0446 4116 AdobeARMservice - ok
16:44:43.0633 4116 AdobeFlashPlayerUpdateSvc (990dc6edc9f933194d7cd4e65146bc94) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:44:43.0633 4116 AdobeFlashPlayerUpdateSvc - ok
16:44:43.0696 4116 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
16:44:43.0696 4116 adp94xx - ok
16:44:43.0758 4116 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
16:44:43.0758 4116 adpahci - ok
16:44:43.0774 4116 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
16:44:43.0774 4116 adpu320 - ok
16:44:43.0805 4116 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
16:44:43.0820 4116 AeLookupSvc - ok
16:44:43.0930 4116 AESTFilters (a6fb9db8f1a86861d955fd6975977ae0) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\AESTSr64.exe
16:44:43.0930 4116 AESTFilters - ok
16:44:44.0008 4116 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
16:44:44.0023 4116 AFD - ok
16:44:44.0132 4116 AgereModemAudio (b65f8dba54f251906bbe8611b5a0e7ab) C:\Program Files\LSI SoftModem\agr64svc.exe
16:44:44.0132 4116 AgereModemAudio - ok
16:44:44.0195 4116 AgereSoftModem (c98356d813b581e9c425b42a5d146ce0) C:\Windows\system32\DRIVERS\agrsm64.sys
16:44:44.0195 4116 AgereSoftModem - ok
16:44:44.0257 4116 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
16:44:44.0257 4116 agp440 - ok
16:44:44.0304 4116 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
16:44:44.0320 4116 ALG - ok
16:44:44.0351 4116 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
16:44:44.0351 4116 aliide - ok
16:44:44.0366 4116 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
16:44:44.0366 4116 amdide - ok
16:44:44.0413 4116 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
16:44:44.0413 4116 AmdK8 - ok
16:44:44.0444 4116 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
16:44:44.0444 4116 AmdPPM - ok
16:44:44.0491 4116 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
16:44:44.0491 4116 amdsata - ok
16:44:44.0522 4116 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
16:44:44.0522 4116 amdsbs - ok
16:44:44.0569 4116 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
16:44:44.0569 4116 amdxata - ok
16:44:44.0616 4116 ApfiltrService (05f1a0a81a98cf27e3f028213fb6c36a) C:\Windows\system32\DRIVERS\Apfiltr.sys
16:44:44.0616 4116 ApfiltrService - ok
16:44:44.0725 4116 AppHostSvc (03fbb7c5ea4ef153f10282614b9771cb) C:\Windows\system32\inetsrv\apphostsvc.dll
16:44:44.0725 4116 AppHostSvc - ok
16:44:44.0788 4116 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
16:44:44.0788 4116 AppID - ok
16:44:44.0834 4116 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
16:44:44.0834 4116 AppIDSvc - ok
16:44:44.0850 4116 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
16:44:44.0850 4116 Appinfo - ok
16:44:44.0881 4116 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
16:44:44.0881 4116 arc - ok
16:44:44.0897 4116 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
16:44:44.0897 4116 arcsas - ok
16:44:45.0037 4116 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
16:44:45.0037 4116 aspnet_state - ok
16:44:45.0084 4116 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
16:44:45.0084 4116 AsyncMac - ok
16:44:45.0115 4116 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
16:44:45.0115 4116 atapi - ok
16:44:45.0209 4116 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
16:44:45.0224 4116 AudioEndpointBuilder - ok
16:44:45.0224 4116 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
16:44:45.0224 4116 AudioSrv - ok
16:44:45.0271 4116 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
16:44:45.0271 4116 AxInstSV - ok
16:44:45.0349 4116 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
16:44:45.0349 4116 b06bdrv - ok
16:44:45.0396 4116 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
16:44:45.0396 4116 b57nd60a - ok
16:44:45.0599 4116 BCM43XX (370504f7b1085dddab63581e0e19bb9e) C:\Windows\system32\DRIVERS\bcmwl664.sys
16:44:45.0614 4116 BCM43XX - ok
16:44:45.0786 4116 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
16:44:45.0786 4116 BDESVC - ok
16:44:45.0848 4116 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
16:44:45.0848 4116 Beep - ok
16:44:45.0926 4116 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\System32\qmgr.dll
16:44:45.0926 4116 BITS - ok
16:44:45.0989 4116 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
16:44:45.0989 4116 blbdrive - ok
16:44:46.0036 4116 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
16:44:46.0036 4116 bowser - ok
16:44:46.0082 4116 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:44:46.0082 4116 BrFiltLo - ok
16:44:46.0098 4116 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:44:46.0098 4116 BrFiltUp - ok
16:44:46.0160 4116 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
16:44:46.0160 4116 Browser - ok
16:44:46.0176 4116 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
16:44:46.0192 4116 Brserid - ok
16:44:46.0207 4116 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
16:44:46.0207 4116 BrSerWdm - ok
16:44:46.0223 4116 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
16:44:46.0223 4116 BrUsbMdm - ok
16:44:46.0254 4116 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
16:44:46.0254 4116 BrUsbSer - ok
16:44:46.0285 4116 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
16:44:46.0285 4116 BTHMODEM - ok
16:44:46.0301 4116 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
16:44:46.0301 4116 bthserv - ok
16:44:46.0316 4116 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
16:44:46.0316 4116 cdfs - ok
16:44:46.0363 4116 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
16:44:46.0363 4116 cdrom - ok
16:44:46.0426 4116 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
16:44:46.0426 4116 CertPropSvc - ok
16:44:46.0457 4116 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
16:44:46.0457 4116 circlass - ok
16:44:46.0504 4116 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
16:44:46.0504 4116 CLFS - ok
16:44:46.0784 4116 CLPSLS (882e3973505c441ce000133c821d0edd) C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLS.exe
16:44:46.0784 4116 CLPSLS - ok
16:44:46.0925 4116 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:44:46.0925 4116 clr_optimization_v2.0.50727_32 - ok
16:44:46.0987 4116 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:44:46.0987 4116 clr_optimization_v2.0.50727_64 - ok
16:44:47.0003 4116 clr_optimization_v4.0.20506_32 - ok
16:44:47.0003 4116 clr_optimization_v4.0.20506_64 - ok
16:44:47.0065 4116 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:44:47.0065 4116 clr_optimization_v4.0.30319_32 - ok
16:44:47.0128 4116 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:44:47.0128 4116 clr_optimization_v4.0.30319_64 - ok
16:44:47.0252 4116 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
16:44:47.0252 4116 CmBatt - ok
16:44:47.0845 4116 cmdAgent (cee48ccc4d561ddb19c72f9fb55d28d5) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
16:44:47.0861 4116 cmdAgent - ok
16:44:48.0110 4116 cmdGuard (0599d5a458d4e0e37ab84e9d1c5c73e5) C:\Windows\system32\DRIVERS\cmdguard.sys
16:44:48.0110 4116 cmdGuard - ok
16:44:48.0142 4116 cmdHlp (2d3e08c7106f748f9eff3dec14142d3e) C:\Windows\system32\DRIVERS\cmdhlp.sys
16:44:48.0142 4116 cmdHlp - ok
16:44:48.0188 4116 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
16:44:48.0188 4116 cmdide - ok
16:44:48.0251 4116 CNG (937beb186a735aca91d717044a49d17e) C:\Windows\system32\Drivers\cng.sys
16:44:48.0251 4116 CNG - ok
16:44:48.0391 4116 Com4QLBEx (f9a79c5b27037821112c50a9c8fb367a) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
16:44:48.0391 4116 Com4QLBEx - ok
16:44:48.0454 4116 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
16:44:48.0454 4116 Compbatt - ok
16:44:48.0485 4116 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
16:44:48.0485 4116 CompositeBus - ok
16:44:48.0500 4116 COMSysApp - ok
16:44:48.0516 4116 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
16:44:48.0516 4116 crcdisk - ok
16:44:48.0578 4116 CryptSvc (f02786b66375292e58c8777082d4396d) C:\Windows\system32\cryptsvc.dll
16:44:48.0578 4116 CryptSvc - ok
16:44:48.0641 4116 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
16:44:48.0656 4116 DcomLaunch - ok
16:44:48.0703 4116 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
16:44:48.0703 4116 defragsvc - ok
16:44:48.0766 4116 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
16:44:48.0766 4116 DfsC - ok
16:44:48.0812 4116 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
16:44:48.0828 4116 Dhcp - ok
16:44:48.0859 4116 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
16:44:48.0859 4116 discache - ok
16:44:48.0906 4116 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
16:44:48.0906 4116 Disk - ok
16:44:48.0953 4116 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
16:44:48.0953 4116 Dnscache - ok
16:44:49.0015 4116 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
16:44:49.0015 4116 dot3svc - ok
16:44:49.0031 4116 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
16:44:49.0031 4116 DPS - ok
16:44:49.0093 4116 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
16:44:49.0093 4116 drmkaud - ok
16:44:49.0171 4116 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
16:44:49.0187 4116 DXGKrnl - ok
16:44:49.0234 4116 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
16:44:49.0234 4116 EapHost - ok
16:44:49.0421 4116 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
16:44:49.0436 4116 ebdrv - ok
16:44:49.0608 4116 EFS (156f6159457d0aa7e59b62681b56eb90) C:\Windows\System32\lsass.exe
16:44:49.0608 4116 EFS - ok
16:44:49.0702 4116 ehRecvr (47c071994c3f649f23d9cd075ac9304a) C:\Windows\ehome\ehRecvr.exe
16:44:49.0702 4116 ehRecvr - ok
16:44:49.0748 4116 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
16:44:49.0764 4116 ehSched - ok
16:44:49.0858 4116 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
16:44:49.0858 4116 elxstor - ok
16:44:49.0889 4116 enecir (a9ec08727c64d985678f5b64c03823f0) C:\Windows\system32\DRIVERS\enecir.sys
16:44:49.0889 4116 enecir - ok
16:44:49.0904 4116 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
16:44:49.0904 4116 ErrDev - ok
16:44:49.0982 4116 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
16:44:49.0982 4116 EventSystem - ok
16:44:50.0014 4116 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
16:44:50.0014 4116 exfat - ok
16:44:50.0060 4116 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
16:44:50.0076 4116 fastfat - ok
16:44:50.0138 4116 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
16:44:50.0138 4116 Fax - ok
16:44:50.0154 4116 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
16:44:50.0154 4116 fdc - ok
16:44:50.0216 4116 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
16:44:50.0216 4116 fdPHost - ok
16:44:50.0232 4116 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
16:44:50.0232 4116 FDResPub - ok
16:44:50.0263 4116 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
16:44:50.0263 4116 FileInfo - ok
16:44:50.0279 4116 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
16:44:50.0279 4116 Filetrace - ok
16:44:50.0294 4116 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
16:44:50.0294 4116 flpydisk - ok
16:44:50.0326 4116 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
16:44:50.0341 4116 FltMgr - ok
16:44:50.0419 4116 FontCache (cb5e4b9c319e3c6bb363eb7e58a4a051) C:\Windows\system32\FntCache.dll
16:44:50.0419 4116 FontCache - ok
16:44:50.0544 4116 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:44:50.0544 4116 FontCache3.0.0.0 - ok
16:44:50.0591 4116 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
16:44:50.0591 4116 FsDepends - ok
16:44:50.0638 4116 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
16:44:50.0638 4116 Fs_Rec - ok
16:44:50.0684 4116 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
16:44:50.0684 4116 fvevol - ok
16:44:50.0716 4116 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
16:44:50.0716 4116 gagp30kx - ok
16:44:50.0762 4116 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:44:50.0762 4116 GEARAspiWDM - ok
16:44:50.0856 4116 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
16:44:50.0856 4116 gpsvc - ok
16:44:50.0950 4116 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:44:50.0950 4116 gupdate - ok
16:44:50.0981 4116 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:44:50.0996 4116 gupdatem - ok
16:44:51.0012 4116 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
16:44:51.0012 4116 hcw85cir - ok
16:44:51.0059 4116 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
16:44:51.0059 4116 HDAudBus - ok
16:44:51.0074 4116 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
16:44:51.0074 4116 HidBatt - ok
16:44:51.0106 4116 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
16:44:51.0106 4116 HidBth - ok
16:44:51.0152 4116 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
16:44:51.0152 4116 HidIr - ok
16:44:51.0184 4116 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
16:44:51.0184 4116 hidserv - ok
16:44:51.0230 4116 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
16:44:51.0230 4116 HidUsb - ok
16:44:51.0277 4116 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
16:44:51.0277 4116 hkmsvc - ok
16:44:51.0308 4116 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
16:44:51.0308 4116 HomeGroupListener - ok
16:44:51.0355 4116 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
16:44:51.0355 4116 HomeGroupProvider - ok
16:44:51.0496 4116 HPDrvMntSvc.exe (14e3c3e8434d7f92c0496a1af8503061) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
16:44:51.0496 4116 HPDrvMntSvc.exe - ok
16:44:51.0542 4116 hpdskflt (4e0bec0f78096ffd6d3314b497fc49d3) C:\Windows\system32\DRIVERS\hpdskflt.sys
16:44:51.0542 4116 hpdskflt - ok
16:44:51.0589 4116 HpqKbFiltr (9af482d058be59cc28bce52e7c4b747c) C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
16:44:51.0589 4116 HpqKbFiltr - ok
16:44:51.0667 4116 hpqwmiex (33c884a6bdd35f22e3c2bddc55bc13de) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
16:44:51.0667 4116 hpqwmiex - ok
16:44:51.0730 4116 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
16:44:51.0730 4116 HpSAMD - ok
16:44:51.0745 4116 hpsrv (fc7c13b5a9e9be23b7ae72bbc7fdb278) C:\Windows\system32\Hpservice.exe
16:44:51.0745 4116 hpsrv - ok
16:44:51.0808 4116 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
16:44:51.0823 4116 HTTP - ok
16:44:51.0854 4116 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
16:44:51.0854 4116 hwpolicy - ok
16:44:51.0901 4116 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
16:44:51.0901 4116 i8042prt - ok
16:44:51.0964 4116 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
16:44:51.0964 4116 iaStorV - ok
16:44:52.0088 4116 IDriverT (6f95324909b502e2651442c1548ab12f) C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
16:44:52.0088 4116 IDriverT - ok
16:44:52.0198 4116 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:44:52.0213 4116 idsvc - ok
16:44:52.0650 4116 igfx (3c3f27002abc69c5afe29cbe6cf7addf) C:\Windows\system32\DRIVERS\igdkmd64.sys
16:44:52.0697 4116 igfx - ok
16:44:52.0868 4116 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
16:44:52.0868 4116 iirsp - ok
16:44:52.0978 4116 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
16:44:52.0978 4116 IKEEXT - ok
16:44:53.0024 4116 inspect (efff0afd27cc97bf0e5e0bab78419de7) C:\Windows\system32\DRIVERS\inspect.sys
16:44:53.0024 4116 inspect - ok
16:44:53.0087 4116 IntcHdmiAddService (88a20fa54c73ded4e8dac764e9130ae9) C:\Windows\system32\drivers\IntcHdmi.sys
16:44:53.0087 4116 IntcHdmiAddService - ok
16:44:53.0118 4116 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
16:44:53.0118 4116 intelide - ok
16:44:53.0165 4116 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
16:44:53.0165 4116 intelppm - ok
16:44:53.0212 4116 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
16:44:53.0212 4116 IPBusEnum - ok
16:44:53.0243 4116 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:44:53.0243 4116 IpFilterDriver - ok
16:44:53.0290 4116 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
16:44:53.0290 4116 IPMIDRV - ok
16:44:53.0336 4116 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
16:44:53.0336 4116 IPNAT - ok
16:44:53.0368 4116 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
16:44:53.0368 4116 IRENUM - ok
16:44:53.0383 4116 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
16:44:53.0383 4116 isapnp - ok
16:44:53.0492 4116 iscFlash (8aafaab3e2a8d5354b4bb2980fbe58ba) C:\Program Files (x86)\SP45765\iscflashx64.sys
16:44:53.0508 4116 iscFlash - ok
16:44:53.0539 4116 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
16:44:53.0539 4116 iScsiPrt - ok
16:44:53.0602 4116 JMCR (b33736b29d70dbd275b099bcd4f5c1ba) C:\Windows\system32\DRIVERS\jmcr.sys
16:44:53.0602 4116 JMCR - ok
16:44:53.0633 4116 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
16:44:53.0633 4116 kbdclass - ok
16:44:53.0664 4116 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
16:44:53.0664 4116 kbdhid - ok
16:44:53.0711 4116 KeyIso (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
16:44:53.0711 4116 KeyIso - ok
16:44:53.0726 4116 KSecDD (16c1b906fc5ead84769f90b736b6bf0e) C:\Windows\system32\Drivers\ksecdd.sys
16:44:53.0742 4116 KSecDD - ok
16:44:53.0789 4116 KSecPkg (0b711550c56444879d71c7daabda6c83) C:\Windows\system32\Drivers\ksecpkg.sys
16:44:53.0789 4116 KSecPkg - ok
16:44:53.0836 4116 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
16:44:53.0836 4116 ksthunk - ok
16:44:53.0914 4116 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
16:44:53.0914 4116 KtmRm - ok
16:44:53.0976 4116 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\system32\srvsvc.dll
16:44:53.0976 4116 LanmanServer - ok
16:44:54.0023 4116 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
16:44:54.0023 4116 LanmanWorkstation - ok
16:44:54.0070 4116 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
16:44:54.0070 4116 lltdio - ok
16:44:54.0132 4116 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
16:44:54.0148 4116 lltdsvc - ok
16:44:54.0163 4116 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
16:44:54.0163 4116 lmhosts - ok
16:44:54.0226 4116 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
16:44:54.0226 4116 LSI_FC - ok
16:44:54.0241 4116 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
16:44:54.0241 4116 LSI_SAS - ok
16:44:54.0257 4116 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:44:54.0257 4116 LSI_SAS2 - ok
16:44:54.0272 4116 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:44:54.0272 4116 LSI_SCSI - ok
16:44:54.0304 4116 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
16:44:54.0304 4116 luafv - ok
16:44:54.0335 4116 Mcx2Svc (f84c8f1000bc11e3b7b23cbd3baff111) C:\Windows\system32\Mcx2Svc.dll
16:44:54.0335 4116 Mcx2Svc - ok
16:44:54.0475 4116 MDM (11f714f85530a2bd134074dc30e99fca) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
16:44:54.0475 4116 MDM - ok
16:44:54.0506 4116 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
16:44:54.0506 4116 megasas - ok
16:44:54.0538 4116 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
16:44:54.0538 4116 MegaSR - ok
16:44:54.0584 4116 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
16:44:54.0584 4116 MMCSS - ok
16:44:54.0600 4116 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
16:44:54.0600 4116 Modem - ok
16:44:54.0616 4116 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
16:44:54.0616 4116 monitor - ok
16:44:54.0678 4116 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
16:44:54.0678 4116 mouclass - ok
16:44:54.0709 4116 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
16:44:54.0709 4116 mouhid - ok
16:44:54.0725 4116 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
16:44:54.0725 4116 mountmgr - ok
16:44:54.0818 4116 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:44:54.0818 4116 MozillaMaintenance - ok
16:44:54.0928 4116 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
16:44:54.0928 4116 MpFilter - ok
16:44:54.0959 4116 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
16:44:54.0959 4116 mpio - ok
16:44:55.0006 4116 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
16:44:55.0006 4116 mpsdrv - ok
16:44:55.0037 4116 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
16:44:55.0037 4116 MRxDAV - ok
16:44:55.0068 4116 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
16:44:55.0068 4116 mrxsmb - ok
16:44:55.0130 4116 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:44:55.0130 4116 mrxsmb10 - ok
16:44:55.0146 4116 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:44:55.0146 4116 mrxsmb20 - ok
16:44:55.0177 4116 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
16:44:55.0177 4116 msahci - ok
16:44:55.0224 4116 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
16:44:55.0224 4116 msdsm - ok
16:44:55.0255 4116 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
16:44:55.0255 4116 MSDTC - ok
16:44:55.0286 4116 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
16:44:55.0286 4116 Msfs - ok
16:44:55.0333 4116 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
16:44:55.0333 4116 mshidkmdf - ok
16:44:55.0349 4116 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
16:44:55.0349 4116 msisadrv - ok
16:44:55.0396 4116 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
16:44:55.0411 4116 MSiSCSI - ok
16:44:55.0411 4116 msiserver - ok
16:44:55.0458 4116 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
16:44:55.0458 4116 MSKSSRV - ok
16:44:55.0583 4116 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) c:\Program Files\Microsoft Security Client\MsMpEng.exe
16:44:55.0583 4116 MsMpSvc - ok
16:44:55.0630 4116 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
16:44:55.0630 4116 MSPCLOCK - ok
16:44:55.0645 4116 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
16:44:55.0645 4116 MSPQM - ok
16:44:55.0676 4116 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
16:44:55.0692 4116 MsRPC - ok
16:44:55.0692 4116 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
16:44:55.0692 4116 mssmbios - ok
16:44:55.0817 4116 MSSQL$SQLEXPRESS - ok
16:44:55.0879 4116 MSSQLServerADHelper100 (f1761c8fb2b25a32c6d63e36bb88c3ae) c:\Program Files (x86)\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
16:44:55.0879 4116 MSSQLServerADHelper100 - ok
16:44:55.0926 4116 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
16:44:55.0926 4116 MSTEE - ok
16:44:55.0942 4116 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
16:44:55.0942 4116 MTConfig - ok
16:44:55.0988 4116 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
16:44:55.0988 4116 Mup - ok
16:44:56.0051 4116 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
16:44:56.0051 4116 napagent - ok
16:44:56.0129 4116 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
16:44:56.0129 4116 NativeWifiP - ok
16:44:56.0207 4116 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
16:44:56.0207 4116 NDIS - ok
16:44:56.0254 4116 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
16:44:56.0254 4116 NdisCap - ok
16:44:56.0285 4116 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
16:44:56.0285 4116 NdisTapi - ok
16:44:56.0300 4116 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
16:44:56.0300 4116 Ndisuio - ok
16:44:56.0347 4116 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
16:44:56.0347 4116 NdisWan - ok
16:44:56.0363 4116 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
16:44:56.0363 4116 NDProxy - ok
16:44:56.0363 4116 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
16:44:56.0363 4116 NetBIOS - ok
16:44:56.0394 4116 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
16:44:56.0394 4116 NetBT - ok
16:44:56.0441 4116 Netlogon (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
16:44:56.0441 4116 Netlogon - ok
16:44:56.0503 4116 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
16:44:56.0503 4116 Netman - ok
16:44:56.0597 4116 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:44:56.0597 4116 NetMsmqActivator - ok
16:44:56.0597 4116 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:44:56.0597 4116 NetPipeActivator - ok
16:44:56.0690 4116 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
16:44:56.0690 4116 netprofm - ok
16:44:56.0690 4116 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:44:56.0690 4116 NetTcpActivator - ok
16:44:56.0706 4116 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:44:56.0706 4116 NetTcpPortSharing - ok
16:44:56.0815 4116 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
16:44:56.0815 4116 nfrd960 - ok
16:44:56.0893 4116 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
16:44:56.0893 4116 NisDrv - ok
16:44:56.0987 4116 NisSrv (10a43829a9e606af3eef25a1c1665923) c:\Program Files\Microsoft Security Client\NisSrv.exe
16:44:57.0002 4116 NisSrv - ok
16:44:57.0065 4116 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
16:44:57.0065 4116 NlaSvc - ok
16:44:57.0143 4116 NPF (351533acc2a069b94e80bbfc177e8fdf) C:\Windows\system32\drivers\npf.sys
16:44:57.0143 4116 NPF - ok
16:44:57.0190 4116 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
16:44:57.0190 4116 Npfs - ok
16:44:57.0221 4116 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
16:44:57.0221 4116 nsi - ok
16:44:57.0236 4116 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
16:44:57.0236 4116 nsiproxy - ok
16:44:57.0361 4116 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
16:44:57.0377 4116 Ntfs - ok
16:44:57.0517 4116 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
16:44:57.0517 4116 Null - ok
16:44:57.0580 4116 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
16:44:57.0580 4116 nvraid - ok
16:44:57.0626 4116 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
16:44:57.0626 4116 nvstor - ok
16:44:57.0642 4116 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
16:44:57.0642 4116 nv_agp - ok
16:44:57.0798 4116 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:44:57.0798 4116 odserv - ok
16:44:57.0829 4116 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
16:44:57.0829 4116 ohci1394 - ok
16:44:57.0860 4116 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:44:57.0860 4116 ose - ok
16:44:57.0923 4116 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
16:44:57.0923 4116 p2pimsvc - ok
16:44:57.0954 4116 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
16:44:57.0954 4116 p2psvc - ok
16:44:57.0985 4116 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
16:44:57.0985 4116 Parport - ok
16:44:58.0016 4116 partmgr (90061b1acfe8ccaa5345750ffe08d8b8) C:\Windows\system32\drivers\partmgr.sys
16:44:58.0016 4116 partmgr - ok
16:44:58.0048 4116 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
16:44:58.0048 4116 PcaSvc - ok
16:44:58.0110 4116 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
16:44:58.0110 4116 pci - ok
16:44:58.0126 4116 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
16:44:58.0126 4116 pciide - ok
16:44:58.0157 4116 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
16:44:58.0157 4116 pcmcia - ok
16:44:58.0172 4116 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
16:44:58.0172 4116 pcw - ok
16:44:58.0219 4116 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
16:44:58.0219 4116 PEAUTH - ok
16:44:58.0328 4116 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
16:44:58.0328 4116 PerfHost - ok
16:44:58.0500 4116 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
16:44:58.0516 4116 pla - ok
16:44:58.0594 4116 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
16:44:58.0594 4116 PlugPlay - ok
16:44:58.0609 4116 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
16:44:58.0609 4116 PNRPAutoReg - ok
16:44:58.0640 4116 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
16:44:58.0656 4116 PNRPsvc - ok
16:44:58.0718 4116 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
16:44:58.0718 4116 PolicyAgent - ok
16:44:58.0765 4116 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
16:44:58.0765 4116 Power - ok
16:44:58.0874 4116 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
16:44:58.0874 4116 PptpMiniport - ok
16:44:58.0890 4116 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
16:44:58.0890 4116 Processor - ok
16:44:58.0937 4116 ProfSvc (97293447431311c06703368ad0f6c4be) C:\Windows\system32\profsvc.dll
16:44:58.0937 4116 ProfSvc - ok
16:44:58.0984 4116 ProtectedStorage (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
16:44:58.0984 4116 ProtectedStorage - ok
16:44:59.0030 4116 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
16:44:59.0030 4116 Psched - ok
16:44:59.0140 4116 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
16:44:59.0155 4116 ql2300 - ok
16:44:59.0280 4116 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
16:44:59.0280 4116 ql40xx - ok
16:44:59.0342 4116 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
16:44:59.0342 4116 QWAVE - ok
16:44:59.0389 4116 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
16:44:59.0389 4116 QWAVEdrv - ok
16:44:59.0405 4116 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
16:44:59.0405 4116 RasAcd - ok
16:44:59.0452 4116 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
16:44:59.0467 4116 RasAgileVpn - ok
16:44:59.0498 4116 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
16:44:59.0498 4116 RasAuto - ok
16:44:59.0530 4116 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
16:44:59.0530 4116 Rasl2tp - ok
16:44:59.0561 4116 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
16:44:59.0561 4116 RasMan - ok
16:44:59.0592 4116 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
16:44:59.0592 4116 RasPppoe - ok
16:44:59.0639 4116 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
16:44:59.0639 4116 RasSstp - ok
16:44:59.0654 4116 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
16:44:59.0654 4116 rdbss - ok
16:44:59.0670 4116 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
16:44:59.0670 4116 rdpbus - ok
16:44:59.0686 4116 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
16:44:59.0686 4116 RDPCDD - ok
16:44:59.0748 4116 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
16:44:59.0748 4116 RDPENCDD - ok
16:44:59.0748 4116 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
16:44:59.0748 4116 RDPREFMP - ok
16:44:59.0795 4116 RDPWD (447de7e3dea39d422c1504f245b668b1) C:\Windows\system32\drivers\RDPWD.sys
16:44:59.0795 4116 RDPWD - ok
16:44:59.0842 4116 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
16:44:59.0842 4116 rdyboost - ok
16:44:59.0951 4116 Recovery Service for Windows (6266d28705bc3f99e8bac1f864c14e91) C:\Program Files (x86)\SMINST\BLService.exe
16:44:59.0966 4116 Recovery Service for Windows - ok
16:45:00.0013 4116 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
16:45:00.0013 4116 RemoteAccess - ok
16:45:00.0091 4116 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
16:45:00.0091 4116 RemoteRegistry - ok
16:45:00.0200 4116 RichVideo (498eb62a160674e793fa40fd65390625) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
16:45:00.0200 4116 RichVideo - ok
16:45:00.0263 4116 rpcapd (b60f58f175de20a6739194e85b035178) C:\Program Files (x86)\WinPcap\rpcapd.exe
16:45:00.0263 4116 rpcapd - ok
16:45:00.0294 4116 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
16:45:00.0294 4116 RpcEptMapper - ok
16:45:00.0341 4116 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
16:45:00.0341 4116 RpcLocator - ok
16:45:00.0388 4116 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
16:45:00.0388 4116 RpcSs - ok
16:45:00.0481 4116 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
16:45:00.0481 4116 rspndr - ok
16:45:00.0528 4116 RTL8169 (170a66dfaaa22358e08d6f4b38c8f3df) C:\Windows\system32\DRIVERS\Rtlh64.sys
16:45:00.0528 4116 RTL8169 - ok
16:45:00.0575 4116 SamSs (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
16:45:00.0590 4116 SamSs - ok
16:45:00.0715 4116 SASDIFSV (3289766038db2cb14d07dc84392138d5) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
16:45:00.0715 4116 SASDIFSV - ok
16:45:00.0746 4116 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
16:45:00.0746 4116 SASKUTIL - ok
16:45:00.0762 4116 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
16:45:00.0762 4116 sbp2port - ok
16:45:00.0809 4116 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
16:45:00.0809 4116 SCardSvr - ok
16:45:00.0856 4116 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
16:45:00.0856 4116 scfilter - ok
16:45:00.0934 4116 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
16:45:00.0949 4116 Schedule - ok
16:45:00.0980 4116 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
16:45:00.0980 4116 SCPolicySvc - ok
16:45:01.0058 4116 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
16:45:01.0058 4116 SDRSVC - ok
16:45:01.0121 4116 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
16:45:01.0121 4116 secdrv - ok
16:45:01.0152 4116 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
16:45:01.0152 4116 seclogon - ok
16:45:01.0168 4116 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
16:45:01.0183 4116 SENS - ok
16:45:01.0199 4116 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
16:45:01.0199 4116 SensrSvc - ok
16:45:01.0214 4116 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
16:45:01.0230 4116 Serenum - ok
16:45:01.0246 4116 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
16:45:01.0246 4116 Serial - ok
16:45:01.0261 4116 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
16:45:01.0261 4116 sermouse - ok
16:45:01.0339 4116 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
16:45:01.0339 4116 SessionEnv - ok
16:45:01.0370 4116 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
16:45:01.0370 4116 sffdisk - ok
16:45:01.0386 4116 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
16:45:01.0386 4116 sffp_mmc - ok
16:45:01.0402 4116 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\DRIVERS\sffp_sd.sys
16:45:01.0402 4116 sffp_sd - ok
16:45:01.0448 4116 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
16:45:01.0448 4116 sfloppy - ok
16:45:01.0511 4116 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
16:45:01.0511 4116 SharedAccess - ok
16:45:01.0573 4116 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
16:45:01.0573 4116 ShellHWDetection - ok
16:45:01.0636 4116 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:45:01.0636 4116 SiSRaid2 - ok
16:45:01.0651 4116 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
16:45:01.0651 4116 SiSRaid4 - ok
16:45:01.0682 4116 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
16:45:01.0682 4116 Smb - ok
16:45:01.0745 4116 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
16:45:01.0745 4116 SNMPTRAP - ok
16:45:01.0760 4116 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
16:45:01.0760 4116 spldr - ok
16:45:01.0823 4116 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
16:45:01.0823 4116 Spooler - ok
16:45:02.0010 4116 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
16:45:02.0041 4116 sppsvc - ok
16:45:02.0182 4116 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
16:45:02.0182 4116 sppuinotify - ok
16:45:02.0275 4116 sptd (d519ad2de7968cd2b47fea807c5b29b2) C:\Windows\System32\Drivers\sptd.sys
16:45:02.0275 4116 Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: d519ad2de7968cd2b47fea807c5b29b2
16:45:02.0275 4116 sptd ( LockedFile.Multi.Generic ) - warning
16:45:02.0275 4116 sptd - detected LockedFile.Multi.Generic (1)
16:45:02.0431 4116 SQLAgent$SQLEXPRESS (a892134c28777978ecde8283dc57ac0f) c:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
16:45:02.0447 4116 SQLAgent$SQLEXPRESS - ok
16:45:02.0494 4116 SQLBrowser (10d936dced9eacd1a1b3fcdda6d7a4eb) c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
16:45:02.0494 4116 SQLBrowser - ok
16:45:02.0587 4116 SQLWriter (f92e5f93be572b512da3c016b675ede0) c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
16:45:02.0587 4116 SQLWriter - ok
16:45:02.0759 4116 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
16:45:02.0759 4116 srv - ok
16:45:02.0790 4116 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
16:45:02.0806 4116 srv2 - ok
16:45:02.0821 4116 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
16:45:02.0821 4116 srvnet - ok
16:45:02.0899 4116 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
16:45:02.0899 4116 SSDPSRV - ok
16:45:02.0915 4116 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
16:45:02.0915 4116 SstpSvc - ok
16:45:03.0024 4116 STacSV (7595d53ee8e8b0baa9a2ddde867ebb0c) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\STacSV64.exe
16:45:03.0024 4116 STacSV - ok
16:45:03.0055 4116 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
16:45:03.0055 4116 stexstor - ok
16:45:03.0118 4116 STHDA (dffbc024dfc7bb05b2129e05cbc7a201) C:\Windows\system32\DRIVERS\stwrt64.sys
16:45:03.0118 4116 STHDA - ok
16:45:03.0196 4116 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
16:45:03.0211 4116 stisvc - ok
16:45:03.0211 4116 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
16:45:03.0227 4116 swenum - ok
16:45:03.0274 4116 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
16:45:03.0289 4116 swprv - ok
16:45:03.0414 4116 Symantec RemoteAssist (267c914667c94e5f47d342311c1c577f) C:\Program Files (x86)\Common Files\Symantec Shared\Support Controls\ssrc.exe
16:45:03.0414 4116 Symantec RemoteAssist - ok
16:45:03.0539 4116 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
16:45:03.0554 4116 SysMain - ok
16:45:03.0664 4116 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
16:45:03.0679 4116 TabletInputService - ok
16:45:03.0695 4116 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
16:45:03.0710 4116 TapiSrv - ok
16:45:03.0773 4116 tapoas (927d0cdb3f96efc1e98fb1a2c9fb67ad) C:\Windows\system32\DRIVERS\tapoas.sys
16:45:03.0773 4116 tapoas - ok
16:45:03.0820 4116 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
16:45:03.0820 4116 TBS - ok
16:45:03.0960 4116 Tcpip (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\drivers\tcpip.sys
16:45:03.0960 4116 Tcpip - ok
16:45:04.0225 4116 TCPIP6 (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\DRIVERS\tcpip.sys
16:45:04.0241 4116 TCPIP6 - ok
16:45:04.0334 4116 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
16:45:04.0334 4116 tcpipreg - ok
16:45:04.0381 4116 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
16:45:04.0381 4116 TDPIPE - ok
16:45:04.0412 4116 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
16:45:04.0412 4116 TDTCP - ok
16:45:04.0444 4116 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
16:45:04.0444 4116 tdx - ok
16:45:04.0459 4116 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
16:45:04.0459 4116 TermDD - ok
16:45:04.0522 4116 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
16:45:04.0537 4116 TermService - ok
16:45:04.0553 4116 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
16:45:04.0553 4116 Themes - ok
16:45:04.0600 4116 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
16:45:04.0600 4116 THREADORDER - ok
16:45:04.0662 4116 TlntSvr (519cb7d7f697f4ba47de05845c20f158) C:\Windows\System32\tlntsvr.exe
16:45:04.0678 4116 TlntSvr - ok
16:45:04.0756 4116 TomTomHOMEService (fbd16717fd68b206c4ce3bb3c9ee5cb3) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
16:45:04.0756 4116 TomTomHOMEService - ok
16:45:04.0802 4116 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
16:45:04.0802 4116 TrkWks - ok
16:45:04.0880 4116 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
16:45:04.0880 4116 TrustedInstaller - ok
16:45:04.0943 4116 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
16:45:04.0943 4116 tssecsrv - ok
16:45:04.0990 4116 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
16:45:04.0990 4116 tunnel - ok
16:45:05.0380 4116 TVCapSvc (4215ecfc15d265a8e6e1925084b80908) C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe
16:45:05.0380 4116 TVCapSvc - ok
16:45:05.0395 4116 TVSched (f386d56f1b6d70e0e4e70e494975d279) C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe
16:45:05.0395 4116 TVSched - ok
16:45:05.0442 4116 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
16:45:05.0442 4116 uagp35 - ok
16:45:05.0473 4116 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
16:45:05.0473 4116 udfs - ok
16:45:05.0536 4116 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
16:45:05.0536 4116 UI0Detect - ok
16:45:05.0551 4116 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
16:45:05.0551 4116 uliagpkx - ok
16:45:05.0598 4116 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
16:45:05.0598 4116 umbus - ok
16:45:05.0645 4116 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
16:45:05.0645 4116 UmPass - ok
16:45:05.0676 4116 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
16:45:05.0692 4116 upnphost - ok
16:45:05.0738 4116 USBAAPL64 (5cf1ead086176dd3348e920a40bed03d) C:\Windows\system32\Drivers\usbaapl64.sys
16:45:05.0738 4116 USBAAPL64 - ok
16:45:05.0785 4116 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
16:45:05.0785 4116 usbccgp - ok
16:45:05.0801 4116 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
16:45:05.0801 4116 usbcir - ok
16:45:05.0848 4116 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
16:45:05.0848 4116 usbehci - ok
16:45:05.0894 4116 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
16:45:05.0910 4116 usbhub - ok
16:45:05.0926 4116 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\drivers\usbohci.sys
16:45:05.0926 4116 usbohci - ok
16:45:05.0957 4116 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
16:45:05.0957 4116 usbprint - ok
16:45:06.0019 4116 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
16:45:06.0019 4116 usbscan - ok
16:45:06.0066 4116 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:45:06.0066 4116 USBSTOR - ok
16:45:06.0097 4116 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\DRIVERS\usbuhci.sys
16:45:06.0097 4116 usbuhci - ok
16:45:06.0160 4116 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\System32\Drivers\usbvideo.sys
16:45:06.0160 4116 usbvideo - ok
16:45:06.0191 4116 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
16:45:06.0206 4116 UxSms - ok
16:45:06.0238 4116 VaultSvc (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
16:45:06.0238 4116 VaultSvc - ok
16:45:06.0300 4116 VBoxNetAdp (d119c47f337b5b5a80e259563703a922) C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
16:45:06.0300 4116 VBoxNetAdp - ok
16:45:06.0300 4116 VBoxNetFlt - ok
16:45:06.0362 4116 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
16:45:06.0362 4116 vdrvroot - ok
16:45:06.0425 4116 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
16:45:06.0425 4116 vds - ok
16:45:06.0456 4116 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
16:45:06.0456 4116 vga - ok
16:45:06.0472 4116 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
16:45:06.0472 4116 VgaSave - ok
16:45:06.0503 4116 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
16:45:06.0503 4116 vhdmp - ok
16:45:06.0534 4116 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
16:45:06.0534 4116 viaide - ok
16:45:06.0565 4116 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
16:45:06.0565 4116 volmgr - ok
16:45:06.0596 4116 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
16:45:06.0596 4116 volmgrx - ok
16:45:06.0628 4116 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
16:45:06.0628 4116 volsnap - ok
16:45:06.0659 4116 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
16:45:06.0659 4116 vsmraid - ok
16:45:06.0830 4116 VSPerfDrv100 (ca64a8838b4674d14bdf88aba2f253ea) C:\Program Files (x86)\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\x64\VSPerfDrv100.sys
16:45:06.0830 4116 VSPerfDrv100 - ok
16:45:06.0955 4116 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
16:45:06.0955 4116 VSS - ok
16:45:07.0111 4116 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
16:45:07.0111 4116 vwifibus - ok
16:45:07.0158 4116 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
16:45:07.0158 4116 vwififlt - ok
16:45:07.0189 4116 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
16:45:07.0189 4116 vwifimp - ok
16:45:07.0252 4116 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
16:45:07.0252 4116 W32Time - ok
16:45:07.0361 4116 W3SVC (06d2b9bc146bb0f45f45ff7a296d50c4) C:\Windows\system32\inetsrv\iisw3adm.dll
16:45:07.0361 4116 W3SVC - ok
16:45:07.0392 4116 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
16:45:07.0392 4116 WacomPen - ok
16:45:07.0439 4116 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
16:45:07.0439 4116 WANARP - ok
16:45:07.0439 4116 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
16:45:07.0439 4116 Wanarpv6 - ok
16:45:07.0454 4116 WAS (06d2b9bc146bb0f45f45ff7a296d50c4) C:\Windows\system32\inetsrv\iisw3adm.dll
16:45:07.0454 4116 WAS - ok
16:45:07.0595 4116 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
16:45:07.0610 4116 WatAdminSvc - ok
16:45:07.0704 4116 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
16:45:07.0720 4116 wbengine - ok
16:45:07.0829 4116 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
16:45:07.0829 4116 WbioSrvc - ok
16:45:07.0891 4116 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
16:45:07.0891 4116 wcncsvc - ok
16:45:07.0922 4116 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
16:45:07.0938 4116 WcsPlugInService - ok
16:45:07.0985 4116 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
16:45:07.0985 4116 Wd - ok
16:45:08.0032 4116 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
16:45:08.0032 4116 Wdf01000 - ok
16:45:08.0047 4116 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
16:45:08.0063 4116 WdiServiceHost - ok
16:45:08.0063 4116 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
16:45:08.0063 4116 WdiSystemHost - ok
16:45:08.0110 4116 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
16:45:08.0110 4116 WebClient - ok
16:45:08.0156 4116 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
16:45:08.0156 4116 Wecsvc - ok
16:45:08.0188 4116 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
16:45:08.0188 4116 wercplsupport - ok
16:45:08.0234 4116 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
16:45:08.0234 4116 WerSvc - ok
16:45:08.0312 4116 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
16:45:08.0312 4116 WfpLwf - ok
16:45:08.0328 4116 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
16:45:08.0344 4116 WIMMount - ok
16:45:08.0344 4116 WinHttpAutoProxySvc - ok
16:45:08.0422 4116 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
16:45:08.0422 4116 Winmgmt - ok
16:45:08.0562 4116 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
16:45:08.0578 4116 WinRM - ok
16:45:08.0765 4116 WinUsb (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUsb.sys
16:45:08.0765 4116 WinUsb - ok
16:45:08.0858 4116 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
16:45:08.0858 4116 Wlansvc - ok
16:45:09.0061 4116 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:45:09.0077 4116 wlidsvc - ok
16:45:09.0233 4116 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
16:45:09.0233 4116 WmiAcpi - ok
16:45:09.0326 4116 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
16:45:09.0326 4116 wmiApSrv - ok
16:45:09.0373 4116 WMPNetworkSvc - ok
16:45:09.0420 4116 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
16:45:09.0420 4116 WPCSvc - ok
16:45:09.0436 4116 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
16:45:09.0436 4116 WPDBusEnum - ok
16:45:09.0482 4116 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
16:45:09.0482 4116 ws2ifsl - ok
16:45:09.0482 4116 WSearch - ok
16:45:09.0654 4116 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
16:45:09.0670 4116 wuauserv - ok
16:45:09.0810 4116 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
16:45:09.0810 4116 WudfPf - ok
16:45:09.0841 4116 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
16:45:09.0841 4116 WUDFRd - ok
16:45:09.0904 4116 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
16:45:09.0904 4116 wudfsvc - ok
16:45:09.0919 4116 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
16:45:09.0919 4116 WwanSvc - ok
16:45:09.0982 4116 MBR (0x1B8) (70e67f55605bd7e072ec7dcd539a320c) \Device\Harddisk0\DR0
16:45:10.0122 4116 \Device\Harddisk0\DR0 - ok
16:45:10.0138 4116 Boot (0x1200) (1312bb8bb9f6c6a752f968cce7fcbc16) \Device\Harddisk0\DR0\Partition0
16:45:10.0138 4116 \Device\Harddisk0\DR0\Partition0 - ok
16:45:10.0169 4116 Boot (0x1200) (7d1d6435fb2522222e9cd174b5ab5917) \Device\Harddisk0\DR0\Partition1
16:45:10.0169 4116 \Device\Harddisk0\DR0\Partition1 - ok
16:45:10.0169 4116 ============================================================
16:45:10.0169 4116 Scan finished
16:45:10.0169 4116 ============================================================
16:45:10.0184 1064 Detected object count: 1
16:45:10.0184 1064 Actual detected object count: 1
16:45:39.0684 1064 sptd ( LockedFile.Multi.Generic ) - skipped by user
16:45:39.0684 1064 sptd ( LockedFile.Multi.Generic ) - User select action: Skip


------------------------------------------------------------------------------------
============================END TDSSKILLER LOG======================================
------------------------------------------------------------------------------------

#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,573 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:27 PM

Posted 25 June 2012 - 07:19 PM

Ok, those logs are OK.
Are you on a router? Are other machines on it,if so are they redirecting?

In FireFox it may be the Add ons/Plugins. try disabling them one at a time and see which one was at fault.

How to disable extensions and plugins

Keeping your third-party plugins up to date
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 Revincent

Revincent
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:12:27 PM

Posted 25 June 2012 - 08:25 PM

It may have been other programs/computers on my wireless network. I checked the DHCP and there were 3 machines listed (2 other than my laptop), but I live alone in an apartment and do not have a smart phone or anything else that would access my wireless router. However, I do have fairly robust security on my router (SSID does not broadcast, WPA2, MAC Address filtering, I haven't given out my password, etc.). I reset the router and it appears that I am once again the only one connected. I will continue to monitor my wireless network more closely.


As far as the Firefox plugins, I am no longer having the problem which would make it difficult to figure out if one of them is causing the problem.

#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,573 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:27 PM

Posted 25 June 2012 - 08:29 PM

OK, we'll keep this open should it come back.

this is a quick check of the Master Boot record
Please download mbr.exe and save it to the root directory, usually C:\ <- (Important!).
  • Go to Start > Run and type: cmd.exe
  • press Ok.
  • At the command prompt type: c:\mbr.exe >>"C:\mbr.log"
  • press Enter.
  • The process is automatic...a black DOS window will open and quickly disappear. This is normal.
  • A log file named mbr.log will be created and saved to the root of the system drive (usually C:\).
  • Copy and paste the results of the mbr.log in your next reply.
If you have a problem using the command prompt, you can just double-click on mbr.exe to run the tool.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 Revincent

Revincent
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:12:27 PM

Posted 25 June 2012 - 08:37 PM

Here is the mbr.log file:


Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 6.1.7600

device: opened successfully
user: error reading MBR
error: Read The handle is invalid.
kernel: error reading MBR

#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,573 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:27 PM

Posted 25 June 2012 - 08:43 PM

Uggh ,,, probably the 64 bit...use this
Please download aswMBR ( 511KB ) to your desktop.
  • Double click the aswMBR.exe icon to run it
  • Click the Scan button to start the scan
  • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 Revincent

Revincent
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:12:27 PM

Posted 25 June 2012 - 09:29 PM

Darn those 32 extra bits :P ....nevertheless, here is the log:


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-25 20:44:46
-----------------------------
20:44:46.375 OS Version: Windows x64 6.1.7600
20:44:46.375 Number of processors: 2 586 0x170A
20:44:46.376 ComputerName: VINNY-LAPTOP UserName: Ryan
20:44:47.243 Initialize success
20:44:55.411 AVAST engine defs: 12062401
20:45:01.802 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
20:45:01.804 Disk 0 Vendor: FUJITSU_MJA2320BH_G2 8919 Size: 305245MB BusType: 11
20:45:01.814 Disk 0 MBR read successfully
20:45:01.816 Disk 0 MBR scan
20:45:01.821 Disk 0 unknown MBR code
20:45:01.825 Disk 0 Partition 1 00 07 HPFS/NTFS NTFS 156822 MB offset 2048
20:45:01.877 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 11962 MB offset 600637440
20:45:01.915 Disk 0 Partition 3 80 (A) 83 Linux 500 MB offset 321175552
20:45:01.923 Disk 0 Partition - 00 05 Extended 135956 MB offset 322199552
20:45:01.939 Disk 0 Partition 4 00 8E Linux LVM 135955 MB offset 322201600
20:45:01.998 Disk 0 scanning C:\Windows\system32\drivers
20:45:19.604 Service scanning
20:46:19.076 Modules scanning
20:46:19.076 Disk 0 trace - called modules:
20:46:19.091 ntoskrnl.exe CLASSPNP.SYS disk.sys hpdskflt.sys ACPI.sys >>UNKNOWN [0xfffffa8003ca22c0]<<sptd.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
20:46:19.091 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004c7d790]
20:46:19.091 3 CLASSPNP.SYS[fffff880013cc43f] -> nt!IofCallDriver -> [0xfffffa8004c7d040]
20:46:19.091 5 hpdskflt.sys[fffff880017f1189] -> nt!IofCallDriver -> [0xfffffa80047221e0]
20:46:19.091 7 ACPI.sys[fffff880011af781] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa800473c060]
20:46:19.091 \Driver\atapi[0xfffffa80046f14f0] -> IRP_MJ_CREATE -> 0xfffffa8003ca22c0
20:46:20.230 AVAST engine scan C:\Windows
20:46:23.872 AVAST engine scan C:\Windows\system32
20:54:26.782 AVAST engine scan C:\Windows\system32\drivers
20:54:53.306 AVAST engine scan C:\Users\Ryan
21:21:47.834 AVAST engine scan C:\ProgramData
21:25:28.578 Scan finished successfully
21:26:07.630 Disk 0 MBR has been saved successfully to "C:\Users\Ryan\Desktop\MBR.dat"
21:26:07.650 The log file has been saved successfully to "C:\Users\Ryan\Desktop\aswMBR.txt"


And just a note, the line that reads

20:46:19.091 \Driver\atapi[0xfffffa80046f14f0] -> IRP_MJ_CREATE -> 0xfffffa8003ca22c0

is highlighted in red text on the scanner.

#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,573 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:27 PM

Posted 25 June 2012 - 10:02 PM

I don't see infection there. That files OK.
I guess we wait and see.. Clean your temp files..

Run TFC by OT (Temp File Cleaner)
Please download TFC by Old Timer and save it to your desktop.
alternate download link

Save any unsaved work. TFC will close ALL open programs including your browser!
Double-click on TFC.exe to run it. If you are using Vista, right-click on the file and choose Run As Administrator.
Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway to ensure a complete clean.

Edited by boopme, 25 June 2012 - 10:02 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 Revincent

Revincent
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:12:27 PM

Posted 25 June 2012 - 10:22 PM

I ran the cleaner and it removed temporary data from all accounts successfully.


I greatly appreciate your time, effort, and expertise helping me with this issue!



If the same problems happens again, should I post in this thread, or start a new one?

#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,573 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:27 PM

Posted 25 June 2012 - 10:37 PM

You're welcome! Post here,I;ll keep it open.. Bookmark it in case its a few days or so.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users