Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Problem with google search


  • Please log in to reply
9 replies to this topic

#1 Mr Darkwater

Mr Darkwater

  • Members
  • 70 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:04 PM

Posted 19 July 2012 - 09:55 AM

Hi all,

Happened a few days ago. Google search wasnt working at all. Internet working fine. Typed in yahoo.com and the search worked. Ran Malware and removed a few bugs but still having problems with google. Now able to do search with google but when clicking on a link. It goes dead.

Hope someone can help me with this. :(


Thank you in advance,



D

Edited by hamluis, 19 July 2012 - 11:33 AM.
Moved from XP to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 jhayz

jhayz

  • BC Advisor
  • 6,922 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:04 PM

Posted 19 July 2012 - 11:30 AM

Do you get redirected when you say clicking on a link goes dead? Sit tight as you will be guided by a malware expert.

Tekken
 


#3 Mr Darkwater

Mr Darkwater
  • Topic Starter

  • Members
  • 70 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:04 PM

Posted 19 July 2012 - 04:07 PM

No redirecting. I click and nothing happens. When I use yahoo search, it works.

Thanks Jhayz ^_^

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:04 AM

Posted 22 July 2012 - 10:09 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#5 Mr Darkwater

Mr Darkwater
  • Topic Starter

  • Members
  • 70 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:04 PM

Posted 23 July 2012 - 07:12 PM

TDS:

03:02:56.0062 2316 TDSS rootkit removing tool 2.7.47.0 Jul 20 2012 20:36:30
03:02:56.0515 2316 ============================================================
03:02:56.0515 2316 Current date / time: 2012/07/23 03:02:56.0515
03:02:56.0515 2316 SystemInfo:
03:02:56.0515 2316
03:02:56.0515 2316 OS Version: 5.1.2600 ServicePack: 3.0
03:02:56.0515 2316 Product type: Workstation
03:02:56.0515 2316 ComputerName: PAST-594BFF0499
03:02:56.0515 2316 UserName: Administrator
03:02:56.0515 2316 Windows directory: C:\WINDOWS
03:02:56.0515 2316 System windows directory: C:\WINDOWS
03:02:56.0515 2316 Processor architecture: Intel x86
03:02:56.0515 2316 Number of processors: 2
03:02:56.0515 2316 Page size: 0x1000
03:02:56.0515 2316 Boot type: Normal boot
03:02:56.0515 2316 ============================================================
03:02:57.0140 2316 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
03:02:57.0140 2316 Drive \Device\Harddisk1\DR2 - Size: 0x1DEFFFE00 (7.48 Gb), SectorSize: 0x200, Cylinders: 0x3D1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
03:02:57.0140 2316 Drive \Device\Harddisk2\DR3 - Size: 0x1D1C1115E00 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
03:02:57.0171 2316 ============================================================
03:02:57.0171 2316 \Device\Harddisk0\DR0:
03:02:57.0171 2316 MBR partitions:
03:02:57.0171 2316 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x254297C1
03:02:57.0171 2316 \Device\Harddisk1\DR2:
03:02:57.0171 2316 MBR partitions:
03:02:57.0171 2316 \Device\Harddisk2\DR3:
03:02:57.0171 2316 MBR partitions:
03:02:57.0171 2316 \Device\Harddisk2\DR3\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xE8E074C1
03:02:57.0171 2316 ============================================================
03:02:57.0234 2316 C: <-> \Device\Harddisk0\DR0\Partition0
03:02:57.0250 2316 L: <-> \Device\Harddisk2\DR3\Partition0
03:02:57.0250 2316 ============================================================
03:02:57.0250 2316 Initialize success
03:02:57.0250 2316 ============================================================
03:03:04.0109 2532 ============================================================
03:03:04.0109 2532 Scan started
03:03:04.0109 2532 Mode: Manual; TDLFS;
03:03:04.0109 2532 ============================================================
03:03:04.0234 2532 .afd - ok
03:03:04.0234 2532 .cdrom - ok
03:03:04.0250 2532 .mrxsmb - ok
03:03:04.0250 2532 .netbt - ok
03:03:04.0250 2532 .serial - ok
03:03:04.0437 2532 0618813drv (cd40157a1a5cddc6ca219ab14a17692a) C:\WINDOWS\system32\DRIVERS\0618813drv.sys
03:03:04.0437 2532 0618813drv - ok
03:03:04.0437 2532 12208777 (186b54479d98e48aee0e9ada4b3c4d31) C:\WINDOWS\system32\DRIVERS\12208777.sys
03:03:04.0437 2532 12208777 - ok
03:03:04.0468 2532 15960376 (186b54479d98e48aee0e9ada4b3c4d31) C:\WINDOWS\system32\DRIVERS\15960376.sys
03:03:04.0468 2532 15960376 - ok
03:03:04.0500 2532 33112032 (186b54479d98e48aee0e9ada4b3c4d31) C:\WINDOWS\system32\DRIVERS\33112032.sys
03:03:04.0500 2532 33112032 - ok
03:03:04.0515 2532 56331161 (186b54479d98e48aee0e9ada4b3c4d31) C:\WINDOWS\system32\DRIVERS\56331161.sys
03:03:04.0515 2532 56331161 - ok
03:03:04.0562 2532 56823756 (186b54479d98e48aee0e9ada4b3c4d31) C:\WINDOWS\system32\DRIVERS\56823756.sys
03:03:04.0578 2532 56823756 - ok
03:03:04.0593 2532 63089885 (186b54479d98e48aee0e9ada4b3c4d31) C:\WINDOWS\system32\DRIVERS\63089885.sys
03:03:04.0593 2532 63089885 - ok
03:03:04.0640 2532 Aavmker4 (473f97edc5a5312f3665ab2921196c0c) C:\WINDOWS\system32\drivers\Aavmker4.sys
03:03:04.0640 2532 Aavmker4 - ok
03:03:04.0640 2532 Abiosdsk - ok
03:03:04.0656 2532 abp480n5 - ok
03:03:04.0703 2532 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
03:03:04.0703 2532 ACPI - ok
03:03:04.0750 2532 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
03:03:04.0750 2532 ACPIEC - ok
03:03:04.0750 2532 adfs - ok
03:03:04.0750 2532 adpu160m - ok
03:03:04.0781 2532 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
03:03:04.0796 2532 aec - ok
03:03:04.0859 2532 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
03:03:04.0859 2532 AFD - ok
03:03:04.0859 2532 Aha154x - ok
03:03:04.0859 2532 aic78u2 - ok
03:03:04.0859 2532 aic78xx - ok
03:03:04.0906 2532 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
03:03:04.0906 2532 Alerter - ok
03:03:04.0937 2532 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
03:03:04.0937 2532 ALG - ok
03:03:04.0937 2532 AliIde - ok
03:03:04.0937 2532 amsint - ok
03:03:04.0937 2532 appliandMP - ok
03:03:04.0968 2532 AppMgmt (d8849f77c0b66226335a59d26cb4edc6) C:\WINDOWS\System32\appmgmts.dll
03:03:04.0968 2532 AppMgmt - ok
03:03:04.0984 2532 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
03:03:04.0984 2532 Arp1394 - ok
03:03:04.0984 2532 asc - ok
03:03:04.0984 2532 asc3350p - ok
03:03:04.0984 2532 asc3550 - ok
03:03:05.0093 2532 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
03:03:05.0093 2532 aspnet_state - ok
03:03:05.0109 2532 aswFsBlk (0ae43c6c411254049279c2ee55630f95) C:\WINDOWS\system32\drivers\aswFsBlk.sys
03:03:05.0109 2532 aswFsBlk - ok
03:03:05.0109 2532 aswMon2 (8c30b7ddd2f1d8d138ebe40345af2b11) C:\WINDOWS\system32\drivers\aswMon2.sys
03:03:05.0109 2532 aswMon2 - ok
03:03:05.0109 2532 aswRdr (da12626fd9a67f4e917e2f2fbe1e1764) C:\WINDOWS\system32\drivers\aswRdr.sys
03:03:05.0109 2532 aswRdr - ok
03:03:05.0187 2532 aswSnx (dcb199b967375753b5019ec15f008f53) C:\WINDOWS\system32\drivers\aswSnx.sys
03:03:05.0187 2532 aswSnx - ok
03:03:05.0218 2532 aswSP (b32873e5a1443c0a1e322266e203bf10) C:\WINDOWS\system32\drivers\aswSP.sys
03:03:05.0218 2532 aswSP - ok
03:03:05.0234 2532 aswTdi (6ff544175a9180c5d88534d3d9c9a9f7) C:\WINDOWS\system32\drivers\aswTdi.sys
03:03:05.0234 2532 aswTdi - ok
03:03:05.0265 2532 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
03:03:05.0265 2532 AsyncMac - ok
03:03:05.0265 2532 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
03:03:05.0265 2532 atapi - ok
03:03:05.0265 2532 Atdisk - ok
03:03:05.0328 2532 Ati HotKey Poller (50f682357fb6ebb1502794d6de9ec6a5) C:\WINDOWS\system32\Ati2evxx.exe
03:03:05.0359 2532 Ati HotKey Poller - ok
03:03:05.0421 2532 ATI Smart (fdc4b0d5e8d477c75d962f395c3a25f0) C:\WINDOWS\system32\ati2sgag.exe
03:03:05.0437 2532 ATI Smart - ok
03:03:05.0640 2532 ati2mtag (342aa6d21b6206344183cea2626451f1) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
03:03:05.0687 2532 ati2mtag - ok
03:03:05.0859 2532 AtiHDAudioService (924971a182e07463765ef9fa8876f24f) C:\WINDOWS\system32\drivers\AtihdXP3.sys
03:03:05.0859 2532 AtiHDAudioService - ok
03:03:05.0890 2532 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
03:03:05.0890 2532 Atmarpc - ok
03:03:05.0921 2532 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
03:03:05.0921 2532 AudioSrv - ok
03:03:05.0968 2532 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
03:03:05.0968 2532 audstub - ok
03:03:06.0109 2532 avast! Antivirus (4041d31508a2a084dfb42c595854090f) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
03:03:06.0125 2532 avast! Antivirus - ok
03:03:06.0156 2532 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
03:03:06.0187 2532 BITS - ok
03:03:06.0250 2532 Bonjour Service (f832f1505ad8b83474bd9a5b1b985e01) C:\Program Files\Bonjour\mDNSResponder.exe
03:03:06.0250 2532 Bonjour Service - ok
03:03:06.0281 2532 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
03:03:06.0281 2532 Browser - ok
03:03:06.0296 2532 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
03:03:06.0312 2532 cbidf2k - ok
03:03:06.0312 2532 CCDECODE (fdc06e2ada8c468ebb161624e03976cf) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
03:03:06.0312 2532 CCDECODE - ok
03:03:06.0312 2532 cd20xrnt - ok
03:03:06.0343 2532 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
03:03:06.0343 2532 Cdaudio - ok
03:03:06.0390 2532 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
03:03:06.0406 2532 Cdfs - ok
03:03:06.0437 2532 cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
03:03:06.0453 2532 cdrom - ok
03:03:06.0453 2532 Changer - ok
03:03:06.0468 2532 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
03:03:06.0484 2532 CiSvc - ok
03:03:06.0484 2532 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
03:03:06.0484 2532 ClipSrv - ok
03:03:06.0578 2532 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
03:03:06.0609 2532 clr_optimization_v2.0.50727_32 - ok
03:03:06.0687 2532 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
03:03:06.0687 2532 clr_optimization_v4.0.30319_32 - ok
03:03:06.0687 2532 CmdIde - ok
03:03:06.0718 2532 COMMONFX.DLL (2978318127965cbb9f66d45428aa3ddf) C:\WINDOWS\system32\COMMONFX.DLL
03:03:06.0734 2532 COMMONFX.DLL - ok
03:03:06.0765 2532 CompFilter (216f2c5cd4b5858d9a80a09a5479562b) C:\WINDOWS\system32\DRIVERS\lvbusflt.sys
03:03:06.0765 2532 CompFilter - ok
03:03:06.0781 2532 COMSysApp - ok
03:03:06.0781 2532 Cpqarray - ok
03:03:06.0812 2532 Creative Service for CDROM Access (3c8b6609712f4ff78e521f6dcfc4032b) C:\WINDOWS\system32\CTsvcCDA.exe
03:03:06.0812 2532 Creative Service for CDROM Access - ok
03:03:06.0875 2532 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
03:03:06.0875 2532 CryptSvc - ok
03:03:06.0921 2532 CT20XUT (134cdd242af1ae9961f065fba3508a7b) C:\WINDOWS\system32\drivers\CT20XUT.SYS
03:03:06.0921 2532 CT20XUT - ok
03:03:06.0937 2532 CT20XUT.DLL (c338a508efb295478f1ab4fabacedc15) C:\WINDOWS\system32\CT20XUT.DLL
03:03:06.0937 2532 CT20XUT.DLL - ok
03:03:06.0984 2532 ctac32k (93439baf09ce3c6d4ce55da5b07d1b6a) C:\WINDOWS\system32\drivers\ctac32k.sys
03:03:07.0000 2532 ctac32k - ok
03:03:07.0031 2532 ctaud2k (6ab74512f09d673452d63ddec9014db5) C:\WINDOWS\system32\drivers\ctaud2k.sys
03:03:07.0046 2532 ctaud2k - ok
03:03:07.0109 2532 CTAUDFX.DLL (966b19e9f8136afbeec9a2f0cb1f2564) C:\WINDOWS\system32\CTAUDFX.DLL
03:03:07.0109 2532 CTAUDFX.DLL - ok
03:03:07.0156 2532 ctdvda2k (788db5d99b2ca44ff61d8ed7b3c67c2e) C:\WINDOWS\system32\drivers\ctdvda2k.sys
03:03:07.0156 2532 ctdvda2k - ok
03:03:07.0187 2532 CTEAPSFX.DLL (bd4bf4ba0791e9c8fb68b317443d2064) C:\WINDOWS\system32\CTEAPSFX.DLL
03:03:07.0187 2532 CTEAPSFX.DLL - ok
03:03:07.0203 2532 CTEDSPFX.DLL (fe0823d8280a51a5575ae2fd9a3732e2) C:\WINDOWS\system32\CTEDSPFX.DLL
03:03:07.0218 2532 CTEDSPFX.DLL - ok
03:03:07.0250 2532 CTEDSPIO.DLL (eaf112535481ab76a022a274f1a8f924) C:\WINDOWS\system32\CTEDSPIO.DLL
03:03:07.0250 2532 CTEDSPIO.DLL - ok
03:03:07.0265 2532 CTEDSPSY.DLL (db50923f48b8a8fd80329dae21ad316c) C:\WINDOWS\system32\CTEDSPSY.DLL
03:03:07.0265 2532 CTEDSPSY.DLL - ok
03:03:07.0312 2532 CTERFXFX.DLL (c7f3e238871c8a0473430f8f87921ec5) C:\WINDOWS\system32\CTERFXFX.DLL
03:03:07.0312 2532 CTERFXFX.DLL - ok
03:03:07.0375 2532 CTEXFIFX (3a9ad039d94be8d955ad0b2cb207378d) C:\WINDOWS\system32\drivers\CTEXFIFX.SYS
03:03:07.0390 2532 CTEXFIFX - ok
03:03:07.0421 2532 CTEXFIFX.DLL (06f1fa6bb9584e7042d622546ca15cf7) C:\WINDOWS\system32\CTEXFIFX.DLL
03:03:07.0437 2532 CTEXFIFX.DLL - ok
03:03:07.0468 2532 CTHWIUT (4602ad8c8e1b285e1a23a957f487da86) C:\WINDOWS\system32\drivers\CTHWIUT.SYS
03:03:07.0468 2532 CTHWIUT - ok
03:03:07.0484 2532 CTHWIUT.DLL (96ead0d0472c620a5bc94dde1a6e1b53) C:\WINDOWS\system32\CTHWIUT.DLL
03:03:07.0484 2532 CTHWIUT.DLL - ok
03:03:07.0531 2532 ctprxy2k (d42b84671f2193330215d3c375a2e948) C:\WINDOWS\system32\drivers\ctprxy2k.sys
03:03:07.0531 2532 ctprxy2k - ok
03:03:07.0546 2532 CTSBLFX.DLL (14cad906dbec361b572ab2eb1ccf390a) C:\WINDOWS\system32\CTSBLFX.DLL
03:03:07.0562 2532 CTSBLFX.DLL - ok
03:03:07.0593 2532 ctsfm2k (fcbb8ea6fe935d2c531d3a4dee9f985b) C:\WINDOWS\system32\drivers\ctsfm2k.sys
03:03:07.0593 2532 ctsfm2k - ok
03:03:07.0609 2532 CTUSFSYN (12a7b253f9128b3b68a9979827047b76) C:\WINDOWS\system32\drivers\ctusfsyn.sys
03:03:07.0609 2532 CTUSFSYN - ok
03:03:07.0625 2532 dac2w2k - ok
03:03:07.0625 2532 dac960nt - ok
03:03:07.0687 2532 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
03:03:07.0703 2532 DcomLaunch - ok
03:03:07.0750 2532 DFUBTUSB (31273c758c6df7fc27b00be78c7220e9) C:\WINDOWS\system32\Drivers\frmupgr.sys
03:03:07.0750 2532 DFUBTUSB - ok
03:03:07.0781 2532 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
03:03:07.0796 2532 Dhcp - ok
03:03:07.0843 2532 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
03:03:07.0843 2532 Disk - ok
03:03:07.0843 2532 dmadmin - ok
03:03:07.0890 2532 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
03:03:07.0906 2532 dmboot - ok
03:03:07.0937 2532 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\DRIVERS\dmio.sys
03:03:07.0937 2532 dmio - ok
03:03:07.0984 2532 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
03:03:07.0984 2532 dmload - ok
03:03:08.0000 2532 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
03:03:08.0015 2532 dmserver - ok
03:03:08.0062 2532 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
03:03:08.0062 2532 DMusic - ok
03:03:08.0156 2532 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
03:03:08.0171 2532 Dnscache - ok
03:03:08.0203 2532 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
03:03:08.0203 2532 Dot3svc - ok
03:03:08.0218 2532 dpti2o - ok
03:03:08.0281 2532 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
03:03:08.0281 2532 drmkaud - ok
03:03:08.0281 2532 dump_wmimmc - ok
03:03:08.0312 2532 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
03:03:08.0312 2532 EapHost - ok
03:03:08.0359 2532 emupia (04afe5c11777e33178ec11e1fac47b07) C:\WINDOWS\system32\drivers\emupia2k.sys
03:03:08.0359 2532 emupia - ok
03:03:08.0359 2532 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
03:03:08.0359 2532 ERSvc - ok
03:03:08.0406 2532 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
03:03:08.0421 2532 Eventlog - ok
03:03:08.0468 2532 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\system32\es.dll
03:03:08.0484 2532 EventSystem - ok
03:03:08.0515 2532 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
03:03:08.0515 2532 Fastfat - ok
03:03:08.0562 2532 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
03:03:08.0578 2532 FastUserSwitchingCompatibility - ok
03:03:08.0625 2532 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
03:03:08.0625 2532 Fdc - ok
03:03:08.0625 2532 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
03:03:08.0625 2532 Fips - ok
03:03:08.0718 2532 FLEXnet Licensing Service (227846995afeefa70d328bf5334a86a5) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
03:03:08.0734 2532 FLEXnet Licensing Service - ok
03:03:08.0765 2532 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
03:03:08.0765 2532 Flpydisk - ok
03:03:08.0796 2532 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
03:03:08.0796 2532 FltMgr - ok
03:03:08.0921 2532 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
03:03:08.0921 2532 FontCache3.0.0.0 - ok
03:03:08.0953 2532 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
03:03:08.0953 2532 Fs_Rec - ok
03:03:08.0953 2532 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
03:03:08.0953 2532 Ftdisk - ok
03:03:09.0000 2532 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
03:03:09.0000 2532 GEARAspiWDM - ok
03:03:09.0031 2532 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
03:03:09.0031 2532 Gpc - ok
03:03:09.0093 2532 ha20x2k (41fce1833d8f659acc56cb0ee43b2ced) C:\WINDOWS\system32\drivers\ha20x2k.sys
03:03:09.0109 2532 ha20x2k - ok
03:03:09.0171 2532 HdAudAddService (56bf27d7a539f9e6bbc1de201aba0edf) C:\WINDOWS\system32\drivers\AtiHdAud.sys
03:03:09.0171 2532 HdAudAddService - ok
03:03:09.0218 2532 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
03:03:09.0218 2532 HDAudBus - ok
03:03:09.0328 2532 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
03:03:09.0328 2532 helpsvc - ok
03:03:09.0343 2532 HidServ (deb04da35cc871b6d309b77e1443c796) C:\WINDOWS\System32\hidserv.dll
03:03:09.0359 2532 HidServ - ok
03:03:09.0390 2532 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
03:03:09.0390 2532 hidusb - ok
03:03:09.0421 2532 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
03:03:09.0421 2532 hkmsvc - ok
03:03:09.0421 2532 hpn - ok
03:03:09.0468 2532 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
03:03:09.0468 2532 HPZid412 - ok
03:03:09.0500 2532 HPZipr12 (0b4fda2657c3e0315eaa57f9c6d4fd1f) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
03:03:09.0500 2532 HPZipr12 - ok
03:03:09.0500 2532 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
03:03:09.0500 2532 HPZius12 - ok
03:03:09.0546 2532 HssDrv (cff11bd4af297a7bcf3eb41ee4ad6d14) C:\WINDOWS\system32\DRIVERS\HssDrv.sys
03:03:09.0546 2532 HssDrv - ok
03:03:09.0593 2532 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
03:03:09.0593 2532 HTTP - ok
03:03:09.0640 2532 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
03:03:09.0640 2532 HTTPFilter - ok
03:03:09.0640 2532 i2omgmt - ok
03:03:09.0640 2532 i2omp - ok
03:03:09.0687 2532 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
03:03:09.0687 2532 i8042prt - ok
03:03:09.0828 2532 IDriverT (6f95324909b502e2651442c1548ab12f) C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
03:03:09.0843 2532 IDriverT - ok
03:03:09.0953 2532 idsvc (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
03:03:09.0968 2532 idsvc - ok
03:03:10.0000 2532 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
03:03:10.0000 2532 Imapi - ok
03:03:10.0062 2532 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe
03:03:10.0062 2532 ImapiService - ok
03:03:10.0062 2532 ini910u - ok
03:03:10.0218 2532 IntcAzAudAddService (60d7460b07012d364ced11dd9fd83e1f) C:\WINDOWS\system32\drivers\RtkHDAud.sys
03:03:10.0265 2532 IntcAzAudAddService - ok
03:03:10.0390 2532 IntelIde - ok
03:03:10.0437 2532 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
03:03:10.0437 2532 intelppm - ok
03:03:10.0468 2532 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
03:03:10.0468 2532 Ip6Fw - ok
03:03:10.0484 2532 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
03:03:10.0484 2532 IpFilterDriver - ok
03:03:10.0500 2532 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
03:03:10.0500 2532 IpInIp - ok
03:03:10.0531 2532 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
03:03:10.0531 2532 IpNat - ok
03:03:10.0578 2532 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
03:03:10.0578 2532 IPSec - ok
03:03:10.0625 2532 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
03:03:10.0625 2532 IRENUM - ok
03:03:10.0656 2532 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
03:03:10.0656 2532 isapnp - ok
03:03:10.0843 2532 JavaQuickStarterService (0a5709543986843d37a92290b7838340) C:\Program Files\Java\jre6\bin\jqs.exe
03:03:10.0843 2532 JavaQuickStarterService - ok
03:03:10.0890 2532 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
03:03:10.0890 2532 Kbdclass - ok
03:03:10.0906 2532 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
03:03:10.0906 2532 kbdhid - ok
03:03:10.0953 2532 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
03:03:10.0953 2532 kmixer - ok
03:03:10.0984 2532 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
03:03:10.0984 2532 KSecDD - ok
03:03:11.0015 2532 L8042Kbd (d8d3f1c1e82117a3776a2d320a7b3694) C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys
03:03:11.0015 2532 L8042Kbd - ok
03:03:11.0031 2532 L8042mou (5262222fb4a7b57b48115016ccfd1f4c) C:\WINDOWS\system32\DRIVERS\L8042mou.Sys
03:03:11.0031 2532 L8042mou - ok
03:03:11.0078 2532 lanmanserver (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
03:03:11.0078 2532 lanmanserver - ok
03:03:11.0125 2532 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
03:03:11.0140 2532 lanmanworkstation - ok
03:03:11.0218 2532 LBeepKE (e254e5b2c5227ddbb47d045940a0a559) C:\WINDOWS\system32\Drivers\LBeepKE.sys
03:03:11.0218 2532 LBeepKE - ok
03:03:11.0218 2532 lbrtfdc - ok
03:03:11.0312 2532 LBTServ (47c12f1a54b5c1b51008d7629c1d4f7b) C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
03:03:11.0312 2532 LBTServ - ok
03:03:11.0359 2532 LHidFilt (8b30311241f97b35167afe68d79e8530) C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
03:03:11.0359 2532 LHidFilt - ok
03:03:11.0406 2532 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
03:03:11.0421 2532 LmHosts - ok
03:03:11.0453 2532 LMouFilt (48d7422a6c4eec886b56ac534cfa3acf) C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
03:03:11.0453 2532 LMouFilt - ok
03:03:11.0484 2532 LMouKE (96062ec1f26f08ebe056c026667744dd) C:\WINDOWS\system32\DRIVERS\LMouKE.Sys
03:03:11.0484 2532 LMouKE - ok
03:03:11.0531 2532 LVPr2Mon (8be71d7edb8c7494913722059f760dd0) C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys
03:03:11.0531 2532 LVPr2Mon - ok
03:03:11.0546 2532 LVPrcSrv (2333057542c91ae8228bdccc2e5f2632) C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe
03:03:11.0546 2532 LVPrcSrv - ok
03:03:11.0578 2532 LVRS (a1857fbb9b4930eeb2fd92386c45c529) C:\WINDOWS\system32\DRIVERS\lvrs.sys
03:03:11.0578 2532 LVRS - ok
03:03:11.0671 2532 LVUVC (3703406af0726badd24c5e552493e5b1) C:\WINDOWS\system32\DRIVERS\lvuvc.sys
03:03:11.0687 2532 LVUVC - ok
03:03:11.0843 2532 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
03:03:11.0859 2532 Messenger - ok
03:03:11.0937 2532 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
03:03:11.0937 2532 mnmdd - ok
03:03:11.0984 2532 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe
03:03:11.0984 2532 mnmsrvc - ok
03:03:12.0000 2532 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
03:03:12.0000 2532 Modem - ok
03:03:12.0046 2532 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
03:03:12.0046 2532 Mouclass - ok
03:03:12.0093 2532 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
03:03:12.0093 2532 mouhid - ok
03:03:12.0156 2532 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
03:03:12.0156 2532 MountMgr - ok
03:03:12.0265 2532 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
03:03:12.0265 2532 MozillaMaintenance - ok
03:03:12.0265 2532 mraid35x - ok
03:03:12.0281 2532 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
03:03:12.0281 2532 MRxDAV - ok
03:03:12.0312 2532 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe
03:03:12.0312 2532 MSDTC - ok
03:03:12.0359 2532 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
03:03:12.0359 2532 Msfs - ok
03:03:12.0359 2532 MSIServer - ok
03:03:12.0406 2532 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
03:03:12.0406 2532 MSKSSRV - ok
03:03:12.0421 2532 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
03:03:12.0421 2532 MSPCLOCK - ok
03:03:12.0437 2532 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
03:03:12.0437 2532 MSPQM - ok
03:03:12.0484 2532 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
03:03:12.0484 2532 mssmbios - ok
03:03:12.0625 2532 MSSQL$SONY_MEDIAMGR - ok
03:03:12.0703 2532 MSSQLServerADHelper (cb7524c21727404bd3140dca32deb7de) C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe
03:03:12.0703 2532 MSSQLServerADHelper - ok
03:03:12.0734 2532 MSTEE (d5059366b361f0e1124753447af08aa2) C:\WINDOWS\system32\drivers\MSTEE.sys
03:03:12.0734 2532 MSTEE - ok
03:03:12.0765 2532 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\WINDOWS\system32\DRIVERS\ASACPI.sys
03:03:12.0765 2532 MTsensor - ok
03:03:12.0781 2532 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
03:03:12.0781 2532 Mup - ok
03:03:12.0828 2532 NABTSFEC (ac31b352ce5e92704056d409834beb74) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
03:03:12.0828 2532 NABTSFEC - ok
03:03:12.0843 2532 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
03:03:12.0859 2532 napagent - ok
03:03:12.0906 2532 NBVol (0ae25530894a934c6ca600865c6e9d7c) C:\WINDOWS\system32\DRIVERS\NBVol.sys
03:03:12.0906 2532 NBVol - ok
03:03:12.0906 2532 NBVolUp (1ddcef3039c9d90af3529dee6699967d) C:\WINDOWS\system32\DRIVERS\NBVolUp.sys
03:03:12.0906 2532 NBVolUp - ok
03:03:12.0968 2532 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
03:03:12.0968 2532 NDIS - ok
03:03:13.0000 2532 NdisIP (abd7629cf2796250f315c1dd0b6cf7a0) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
03:03:13.0000 2532 NdisIP - ok
03:03:13.0046 2532 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
03:03:13.0046 2532 NdisTapi - ok
03:03:13.0093 2532 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
03:03:13.0109 2532 Ndisuio - ok
03:03:13.0125 2532 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
03:03:13.0125 2532 NdisWan - ok
03:03:13.0171 2532 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
03:03:13.0171 2532 NDProxy - ok
03:03:13.0187 2532 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
03:03:13.0187 2532 NetBIOS - ok
03:03:13.0218 2532 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
03:03:13.0218 2532 NetBT - ok
03:03:13.0265 2532 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
03:03:13.0281 2532 NetDDE - ok
03:03:13.0281 2532 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
03:03:13.0281 2532 NetDDEdsdm - ok
03:03:13.0328 2532 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
03:03:13.0328 2532 Netlogon - ok
03:03:13.0343 2532 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
03:03:13.0343 2532 Netman - ok
03:03:13.0484 2532 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
03:03:13.0484 2532 NetTcpPortSharing - ok
03:03:13.0500 2532 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
03:03:13.0500 2532 NIC1394 - ok
03:03:13.0546 2532 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
03:03:13.0546 2532 Nla - ok
03:03:13.0562 2532 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
03:03:13.0562 2532 Npfs - ok
03:03:13.0562 2532 npkcrypt - ok
03:03:13.0578 2532 npkcusb - ok
03:03:13.0609 2532 NPPTNT2 (9131fe60adfab595c8da53ad6a06aa31) C:\WINDOWS\system32\npptNT2.sys
03:03:13.0609 2532 NPPTNT2 - ok
03:03:13.0656 2532 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
03:03:13.0671 2532 Ntfs - ok
03:03:13.0671 2532 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
03:03:13.0671 2532 NtLmSsp - ok
03:03:13.0718 2532 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
03:03:13.0718 2532 NtmsSvc - ok
03:03:13.0750 2532 nvata (c03e15101f6d9e82cd9b0e7d715f5de3) C:\WINDOWS\system32\DRIVERS\nvata.sys
03:03:13.0750 2532 nvata - ok
03:03:13.0781 2532 NVENETFD (b9333604527e02cd2223f200c0bae7e0) C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
03:03:13.0781 2532 NVENETFD - ok
03:03:13.0796 2532 nvnetbus (5e9e55f7ee644c7c5fd78a206fbe37ab) C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
03:03:13.0796 2532 nvnetbus - ok
03:03:13.0828 2532 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
03:03:13.0828 2532 NwlnkFlt - ok
03:03:13.0828 2532 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
03:03:13.0828 2532 NwlnkFwd - ok
03:03:13.0843 2532 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
03:03:13.0843 2532 ohci1394 - ok
03:03:13.0906 2532 ose (7a56cf3e3f12e8af599963b16f50fb6a) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
03:03:13.0906 2532 ose - ok
03:03:13.0953 2532 ossrv (3649eefa90990249267dd6c7808cbc86) C:\WINDOWS\system32\drivers\ctoss2k.sys
03:03:13.0953 2532 ossrv - ok
03:03:14.0000 2532 P17 (df886ffed69aead0cf608b89b18c3f6f) C:\WINDOWS\system32\drivers\P17.sys
03:03:14.0015 2532 P17 - ok
03:03:14.0078 2532 P17xfi (06902b5f2a17dddf1282ff402b5bd51b) C:\WINDOWS\system32\drivers\P17xfi.sys
03:03:14.0078 2532 P17xfi - ok
03:03:14.0125 2532 p17xfilt (a782e03a3b54c13fa7c29d33e1c9a044) C:\WINDOWS\system32\drivers\p17xfilt.sys
03:03:14.0140 2532 p17xfilt - ok
03:03:14.0171 2532 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
03:03:14.0187 2532 Parport - ok
03:03:14.0187 2532 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
03:03:14.0187 2532 PartMgr - ok
03:03:14.0234 2532 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
03:03:14.0234 2532 ParVdm - ok
03:03:14.0281 2532 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
03:03:14.0281 2532 PCI - ok
03:03:14.0281 2532 PCIDump - ok
03:03:14.0343 2532 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
03:03:14.0343 2532 PCIIde - ok
03:03:14.0390 2532 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
03:03:14.0390 2532 Pcmcia - ok
03:03:14.0406 2532 pcouffin (5b6c11de7e839c05248ced8825470fef) C:\WINDOWS\system32\Drivers\pcouffin.sys
03:03:14.0406 2532 pcouffin - ok
03:03:14.0421 2532 PDCOMP - ok
03:03:14.0421 2532 PDFRAME - ok
03:03:14.0421 2532 PDRELI - ok
03:03:14.0421 2532 PDRFRAME - ok
03:03:14.0421 2532 perc2 - ok
03:03:14.0421 2532 perc2hib - ok
03:03:14.0484 2532 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
03:03:14.0484 2532 PlugPlay - ok
03:03:14.0531 2532 Pml Driver HPZ12 (5c1cadd1cb67c0b9d8a84ec6e4d6b5cc) C:\WINDOWS\system32\HPZipm12.exe
03:03:14.0531 2532 Pml Driver HPZ12 - ok
03:03:14.0546 2532 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
03:03:14.0546 2532 PolicyAgent - ok
03:03:14.0593 2532 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
03:03:14.0593 2532 PptpMiniport - ok
03:03:14.0593 2532 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
03:03:14.0593 2532 ProtectedStorage - ok
03:03:14.0593 2532 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
03:03:14.0593 2532 PSched - ok
03:03:14.0609 2532 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
03:03:14.0609 2532 Ptilink - ok
03:03:14.0625 2532 PxHelp20 (153d02480a0a2f45785522e814c634b6) C:\WINDOWS\system32\Drivers\PxHelp20.sys
03:03:14.0625 2532 PxHelp20 - ok
03:03:14.0640 2532 ql1080 - ok
03:03:14.0640 2532 Ql10wnt - ok
03:03:14.0640 2532 ql12160 - ok
03:03:14.0640 2532 ql1240 - ok
03:03:14.0640 2532 ql1280 - ok
03:03:14.0703 2532 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
03:03:14.0703 2532 RasAcd - ok
03:03:14.0734 2532 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
03:03:14.0734 2532 RasAuto - ok
03:03:14.0781 2532 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
03:03:14.0781 2532 Rasl2tp - ok
03:03:14.0812 2532 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
03:03:14.0828 2532 RasMan - ok
03:03:14.0828 2532 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
03:03:14.0828 2532 RasPppoe - ok
03:03:14.0828 2532 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
03:03:14.0828 2532 Raspti - ok
03:03:14.0890 2532 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
03:03:14.0906 2532 Rdbss - ok
03:03:14.0906 2532 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
03:03:14.0906 2532 RDPCDD - ok
03:03:14.0968 2532 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
03:03:14.0968 2532 rdpdr - ok
03:03:15.0015 2532 RDPWD (6589db6e5969f8eee594cf71171c5028) C:\WINDOWS\system32\drivers\RDPWD.sys
03:03:15.0015 2532 RDPWD - ok
03:03:15.0046 2532 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
03:03:15.0046 2532 RDSessMgr - ok
03:03:15.0093 2532 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
03:03:15.0093 2532 redbook - ok
03:03:15.0140 2532 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
03:03:15.0140 2532 RemoteAccess - ok
03:03:15.0156 2532 RemoteRegistry (5b19b557b0c188210a56a6b699d90b8f) C:\WINDOWS\system32\regsvc.dll
03:03:15.0156 2532 RemoteRegistry - ok
03:03:15.0218 2532 Revoflt (8b5b8a11306190c6963d3473f052d3c8) C:\WINDOWS\system32\DRIVERS\revoflt.sys
03:03:15.0218 2532 Revoflt - ok
03:03:15.0250 2532 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe
03:03:15.0250 2532 RpcLocator - ok
03:03:15.0343 2532 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
03:03:15.0343 2532 RpcSs - ok
03:03:15.0390 2532 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
03:03:15.0390 2532 RSVP - ok
03:03:15.0437 2532 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
03:03:15.0437 2532 SamSs - ok
03:03:15.0515 2532 SASKUTIL - ok
03:03:15.0531 2532 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
03:03:15.0546 2532 SCardSvr - ok
03:03:15.0578 2532 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
03:03:15.0593 2532 Schedule - ok
03:03:15.0625 2532 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
03:03:15.0625 2532 Secdrv - ok
03:03:15.0640 2532 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
03:03:15.0656 2532 seclogon - ok
03:03:15.0687 2532 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
03:03:15.0687 2532 SENS - ok
03:03:15.0687 2532 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
03:03:15.0703 2532 serenum - ok
03:03:15.0734 2532 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
03:03:15.0734 2532 Sfloppy - ok
03:03:15.0765 2532 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
03:03:15.0781 2532 SharedAccess - ok
03:03:15.0828 2532 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
03:03:15.0843 2532 ShellHWDetection - ok
03:03:15.0843 2532 Simbad - ok
03:03:15.0906 2532 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files\Skype\Updater\Updater.exe
03:03:15.0906 2532 SkypeUpdate - ok
03:03:15.0953 2532 SLIP (1ffc44d6787ec1ea9a2b1440a90fa5c1) C:\WINDOWS\system32\DRIVERS\SLIP.sys
03:03:15.0953 2532 SLIP - ok
03:03:15.0953 2532 soqwx32 - ok
03:03:15.0953 2532 Sparrow - ok
03:03:15.0984 2532 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
03:03:15.0984 2532 splitter - ok
03:03:16.0031 2532 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
03:03:16.0031 2532 Spooler - ok
03:03:16.0093 2532 sptd (0022cfff1a41e5ce3a764050a7ddf22a) C:\WINDOWS\System32\Drivers\sptd.sys
03:03:16.0109 2532 sptd - ok
03:03:16.0234 2532 SQLAgent$SONY_MEDIAMGR - ok
03:03:16.0250 2532 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
03:03:16.0250 2532 sr - ok
03:03:16.0265 2532 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll
03:03:16.0281 2532 srservice - ok
03:03:16.0296 2532 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
03:03:16.0312 2532 Srv - ok
03:03:16.0343 2532 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
03:03:16.0343 2532 SSDPSRV - ok
03:03:16.0390 2532 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
03:03:16.0390 2532 stisvc - ok
03:03:16.0421 2532 streamip (a9f9fd0212e572b84edb9eb661f6bc04) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
03:03:16.0421 2532 streamip - ok
03:03:16.0453 2532 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
03:03:16.0453 2532 swenum - ok
03:03:16.0515 2532 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
03:03:16.0515 2532 swmidi - ok
03:03:16.0515 2532 SwPrv - ok
03:03:16.0515 2532 symc810 - ok
03:03:16.0515 2532 symc8xx - ok
03:03:16.0515 2532 sym_hi - ok
03:03:16.0531 2532 sym_u3 - ok
03:03:16.0578 2532 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
03:03:16.0578 2532 sysaudio - ok
03:03:16.0609 2532 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
03:03:16.0609 2532 SysmonLog - ok
03:03:16.0671 2532 tap0901 (11d34fc869f5bda29949fe3858380894) C:\WINDOWS\system32\DRIVERS\tap0901.sys
03:03:16.0671 2532 tap0901 - ok
03:03:16.0703 2532 taphss (fd90a16ceb10d4fdaa00aaf39b8ff58f) C:\WINDOWS\system32\DRIVERS\taphss.sys
03:03:16.0703 2532 taphss - ok
03:03:16.0718 2532 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
03:03:16.0734 2532 TapiSrv - ok
03:03:16.0796 2532 Tcpip (4afb3b0919649f95c1964aa1fad27d73) C:\WINDOWS\system32\DRIVERS\tcpip.sys
03:03:16.0796 2532 Tcpip - ok
03:03:16.0843 2532 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
03:03:16.0843 2532 TDPIPE - ok
03:03:16.0859 2532 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
03:03:16.0859 2532 TDTCP - ok
03:03:16.0890 2532 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
03:03:16.0890 2532 TermDD - ok
03:03:16.0921 2532 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
03:03:16.0937 2532 TermService - ok
03:03:16.0984 2532 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
03:03:16.0984 2532 Themes - ok
03:03:17.0031 2532 TlntSvr (db7205804759ff62c34e3efd8a4cc76a) C:\WINDOWS\system32\tlntsvr.exe
03:03:17.0031 2532 TlntSvr - ok
03:03:17.0031 2532 TosIde - ok
03:03:17.0078 2532 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
03:03:17.0078 2532 TrkWks - ok
03:03:17.0125 2532 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
03:03:17.0125 2532 Udfs - ok
03:03:17.0125 2532 ultra - ok
03:03:17.0171 2532 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
03:03:17.0171 2532 Update - ok
03:03:17.0218 2532 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
03:03:17.0234 2532 upnphost - ok
03:03:17.0250 2532 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
03:03:17.0250 2532 UPS - ok
03:03:17.0296 2532 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
03:03:17.0296 2532 usbaudio - ok
03:03:17.0296 2532 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
03:03:17.0312 2532 usbccgp - ok
03:03:17.0328 2532 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
03:03:17.0328 2532 usbehci - ok
03:03:17.0390 2532 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
03:03:17.0390 2532 usbhub - ok
03:03:17.0406 2532 usbohci (0daecce65366ea32b162f85f07c6753b) C:\WINDOWS\system32\DRIVERS\usbohci.sys
03:03:17.0406 2532 usbohci - ok
03:03:17.0437 2532 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
03:03:17.0437 2532 usbprint - ok
03:03:17.0484 2532 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
03:03:17.0484 2532 usbscan - ok
03:03:17.0500 2532 usbstor (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
03:03:17.0500 2532 usbstor - ok
03:03:17.0546 2532 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
03:03:17.0546 2532 usbvideo - ok
03:03:17.0578 2532 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
03:03:17.0578 2532 VgaSave - ok
03:03:17.0578 2532 ViaIde - ok
03:03:17.0640 2532 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
03:03:17.0640 2532 VolSnap - ok
03:03:17.0687 2532 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
03:03:17.0687 2532 VSS - ok
03:03:17.0734 2532 W32Time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll
03:03:17.0734 2532 W32Time - ok
03:03:17.0750 2532 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
03:03:17.0750 2532 Wanarp - ok
03:03:17.0796 2532 Wdf01000 (fd47474bd21794508af449d9d91af6e6) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
03:03:17.0796 2532 Wdf01000 - ok
03:03:17.0796 2532 WDICA - ok
03:03:17.0859 2532 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
03:03:17.0859 2532 wdmaud - ok
03:03:17.0875 2532 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
03:03:17.0875 2532 WebClient - ok
03:03:17.0937 2532 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
03:03:17.0937 2532 winmgmt - ok
03:03:17.0968 2532 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll
03:03:17.0968 2532 WmdmPmSN - ok
03:03:18.0015 2532 Wmi (e76f8807070ed04e7408a86d6d3a6137) C:\WINDOWS\System32\advapi32.dll
03:03:18.0031 2532 Wmi - ok
03:03:18.0062 2532 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe
03:03:18.0062 2532 WmiApSrv - ok
03:03:18.0078 2532 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\Drivers\wpdusb.sys
03:03:18.0078 2532 WpdUsb - ok
03:03:18.0250 2532 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
03:03:18.0265 2532 WPFFontCache_v0400 - ok
03:03:18.0312 2532 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
03:03:18.0312 2532 WS2IFSL - ok
03:03:18.0343 2532 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll
03:03:18.0359 2532 wscsvc - ok
03:03:18.0390 2532 WSTCODEC (233cdd1c06942115802eb7ce6669e099) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
03:03:18.0390 2532 WSTCODEC - ok
03:03:18.0406 2532 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll
03:03:18.0406 2532 wuauserv - ok
03:03:18.0421 2532 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
03:03:18.0437 2532 WudfPf - ok
03:03:18.0437 2532 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
03:03:18.0437 2532 WudfRd - ok
03:03:18.0453 2532 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
03:03:18.0453 2532 WudfSvc - ok
03:03:18.0500 2532 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
03:03:18.0515 2532 WZCSVC - ok
03:03:18.0546 2532 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
03:03:18.0562 2532 xmlprov - ok
03:03:18.0609 2532 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
03:03:18.0640 2532 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
03:03:18.0640 2532 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
03:03:18.0656 2532 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
03:03:18.0656 2532 \Device\Harddisk0\DR0 - detected TDSS File System (1)
03:03:18.0656 2532 MBR (0x1B8) (2739231f64f4679778263fda4d653b2a) \Device\Harddisk1\DR2
03:03:28.0765 2532 \Device\Harddisk1\DR2 - ok
03:03:28.0765 2532 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk2\DR3
03:03:28.0953 2532 \Device\Harddisk2\DR3 - ok
03:03:28.0953 2532 Boot (0x1200) (9444f64a1f639dfd6f0bf13101094021) \Device\Harddisk0\DR0\Partition0
03:03:28.0953 2532 \Device\Harddisk0\DR0\Partition0 - ok
03:03:28.0968 2532 Boot (0x1200) (61a809829567957e30f45bab9c39fd85) \Device\Harddisk2\DR3\Partition0
03:03:28.0968 2532 \Device\Harddisk2\DR3\Partition0 - ok
03:03:28.0968 2532 ============================================================
03:03:28.0968 2532 Scan finished
03:03:28.0968 2532 ============================================================
03:03:28.0968 2616 Detected object count: 2
03:03:28.0968 2616 Actual detected object count: 2
03:03:44.0718 2616 \Device\Harddisk0\DR0\# - copied to quarantine
03:03:44.0718 2616 \Device\Harddisk0\DR0 - copied to quarantine
03:03:44.0734 2616 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
03:03:44.0750 2616 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
03:03:44.0765 2616 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
03:03:44.0781 2616 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
03:03:51.0109 2616 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
03:03:51.0140 2616 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
03:03:51.0171 2616 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
03:03:51.0187 2616 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
03:03:51.0187 2616 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
03:03:51.0187 2616 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
03:03:51.0187 2616 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
03:03:51.0203 2616 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
03:03:51.0218 2616 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
03:03:51.0218 2616 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
03:03:51.0234 2616 \Device\Harddisk0\DR0\TDLFS\ph.dll - copied to quarantine
03:03:51.0296 2616 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - will be cured on reboot
03:03:51.0296 2616 \Device\Harddisk0\DR0 - ok
03:03:51.0312 2616 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Cure
03:03:51.0312 2616 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
03:03:51.0312 2616 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
03:05:03.0375 0508 Deinitialize success


ASW:



aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-23 03:10:38
-----------------------------
03:10:38.921 OS Version: Windows 5.1.2600 Service Pack 3
03:10:38.921 Number of processors: 2 586 0x1706
03:10:38.921 ComputerName: PAST-594BFF0499 UserName: Administrator
03:10:39.359 Initialize success
03:10:39.421 AVAST engine defs: 12072301
03:10:41.609 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000088
03:10:41.609 Disk 0 Vendor: Hitachi_HDP725032GLA360 GM3OA52A Size: 305245MB BusType: 3
03:10:41.609 Device \Driver\nvata -> MajorFunction 8cca91e8
03:10:41.640 Disk 0 MBR read successfully
03:10:41.640 Disk 0 MBR scan
03:10:41.640 Disk 0 Windows XP default MBR code
03:10:41.640 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 305234 MB offset 63
03:10:41.640 Disk 0 scanning sectors +625121280
03:10:41.703 Disk 0 scanning C:\WINDOWS\system32\drivers
03:10:50.593 Service scanning
03:10:50.906 Service .afd \? **LOCKED** 123
03:10:50.921 Service .cdrom \? **LOCKED** 123
03:10:50.921 Service .mrxsmb \* **LOCKED** 123
03:10:50.921 Service .netbt \? **LOCKED** 123
03:10:50.921 Service .serial \? **LOCKED** 123
03:11:07.046 Modules scanning
03:11:16.859 Disk 0 trace - called modules:
03:11:16.875 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll >>UNKNOWN [0x8cca91e8]<<
03:11:16.875 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8cbbdab8]
03:11:16.875 3 CLASSPNP.SYS[ba108fd7] -> nt!IofCallDriver -> \Device\00000089[0x8cc3e5e8]
03:11:16.875 5 ACPI.sys[b9e64620] -> nt!IofCallDriver -> \Device\00000088[0x8cbc0650]
03:11:16.875 \Driver\nvata[0x8cc4fa08] -> IRP_MJ_CREATE -> 0x8cca91e8
03:11:17.359 AVAST engine scan C:\WINDOWS
03:11:23.703 AVAST engine scan C:\WINDOWS\system32
03:13:51.406 AVAST engine scan C:\WINDOWS\system32\drivers
03:14:20.125 AVAST engine scan C:\Documents and Settings\Administrator
03:17:05.640 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Administrator\Desktop\MBR.dat"
03:17:05.640 The log file has been saved successfully to "C:\Documents and Settings\Administrator\Desktop\aswMBR.txt"
aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-23 11:59:24
-----------------------------
11:59:24.328 OS Version: Windows 5.1.2600 Service Pack 3
11:59:24.328 Number of processors: 2 586 0x1706
11:59:24.328 ComputerName: PAST-594BFF0499 UserName: Administrator
11:59:25.218 Initialize success
11:59:25.343 AVAST engine defs: 12072302
11:59:32.328 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000088
11:59:32.328 Disk 0 Vendor: Hitachi_HDP725032GLA360 GM3OA52A Size: 305245MB BusType: 3
11:59:32.328 Device \Driver\nvata -> MajorFunction 8cca91e8
11:59:32.359 Disk 0 MBR read successfully
11:59:32.359 Disk 0 MBR scan
11:59:32.359 Disk 0 Windows XP default MBR code
11:59:32.359 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 305234 MB offset 63
11:59:32.359 Disk 0 scanning sectors +625121280
11:59:32.406 Disk 0 scanning C:\WINDOWS\system32\drivers
11:59:41.156 Service scanning
11:59:41.468 Service .afd \? **LOCKED** 123
11:59:41.468 Service .cdrom \? **LOCKED** 123
11:59:41.484 Service .mrxsmb \* **LOCKED** 123
11:59:41.484 Service .netbt \? **LOCKED** 123
11:59:41.500 Service .serial \? **LOCKED** 123
11:59:57.625 Modules scanning
12:00:04.578 Disk 0 trace - called modules:
12:00:04.593 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll >>UNKNOWN [0x8cca91e8]<<
12:00:04.609 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8cbbdab8]
12:00:04.609 3 CLASSPNP.SYS[ba108fd7] -> nt!IofCallDriver -> \Device\00000089[0x8cc3e5e8]
12:00:04.609 5 ACPI.sys[b9e64620] -> nt!IofCallDriver -> \Device\00000088[0x8cbc0650]
12:00:04.609 \Driver\nvata[0x8cc4fa08] -> IRP_MJ_CREATE -> 0x8cca91e8
12:00:05.125 AVAST engine scan C:\WINDOWS
12:00:10.781 AVAST engine scan C:\WINDOWS\system32
12:02:19.765 AVAST engine scan C:\WINDOWS\system32\drivers
12:02:40.187 AVAST engine scan C:\Documents and Settings\Administrator
12:22:36.312 File: C:\Documents and Settings\Administrator\My Documents\Dropbox\Music\Music.exe **INFECTED** Win32:Brontok-CE [Wrm]
12:24:08.890 AVAST engine scan C:\Documents and Settings\All Users
12:28:49.343 Scan finished successfully
13:00:11.343 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Administrator\Desktop\MBR.dat"
13:00:11.343 The log file has been saved successfully to "C:\Documents and Settings\Administrator\Desktop\aswMBR.txt"



And Now ESET:


C:\Documents and Settings\Administrator\My Documents\Dropbox\Music\Music.exe Win32/Brontok.CS worm
C:\TDSSKiller_Quarantine\12.02.2012_11.15.41\mbr0000\tdlfs0000\tsk0004.dta probably a variant of Win32/TrojanDownloader.Agent.LVENLZT trojan
C:\TDSSKiller_Quarantine\12.02.2012_11.15.41\tdlfs0000\tsk0004.dta probably a variant of Win32/TrojanDownloader.Agent.LVENLZT trojan
C:\TDSSKiller_Quarantine\23.07.2012_03.02.56\mbr0000\tdlfs0000\tsk0001.dta Win32/Olmarik.AYI trojan
C:\TDSSKiller_Quarantine\23.07.2012_03.02.56\mbr0000\tdlfs0000\tsk0002.dta Win64/Olmarik.AK trojan
C:\TDSSKiller_Quarantine\23.07.2012_03.02.56\mbr0000\tdlfs0000\tsk0003.dta a variant of Win32/Rootkit.Kryptik.NH trojan
C:\TDSSKiller_Quarantine\23.07.2012_03.02.56\mbr0000\tdlfs0000\tsk0009.dta Win32/Olmarik.AYI trojan





NareXP....We need to stop meeting like this. =P If you're ever in Maui...I'll buy ya a beer.





D

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:04 AM

Posted 23 July 2012 - 08:43 PM

NareXP....We need to stop meeting like this. =P If you're ever in Maui...I'll buy ya a beer.

Lol :hysterical:

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

Edited by narenxp, 23 July 2012 - 08:43 PM.


#7 Mr Darkwater

Mr Darkwater
  • Topic Starter

  • Members
  • 70 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:04 PM

Posted 24 July 2012 - 06:35 PM

MiniToolBox by Farbar Version: 23-07-2012
Ran by Administrator (administrator) on 24-07-2012 at 13:23:39
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================
Windows IP Configuration Successfully flushed the DNS Resolver Cache.
========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


127.0.0.1 activate.adobe.com
127.0.0.1 activate.adobe.com

========================= IP Configuration: ================================

TAP-Win32 Adapter V9 = Local Area Connection 4 (Disconnected)
1394 Net Adapter = 1394 Connection (Connected)
NVIDIA nForce Networking Controller = Local Area Connection (Connected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp


popd
# End of interface IP configuration


Windows IP Configuration Host Name . . . . . . . . . . . . : past-594bff0499 Primary Dns Suffix . . . . . . . : Node Type . . . . . . . . . . . . : Unknown IP Routing Enabled. . . . . . . . : No WINS Proxy Enabled. . . . . . . . : No Ethernet adapter Local Area Connection: Connection-specific DNS Suffix . : Description . . . . . . . . . . . : NVIDIA nForce Networking Controller Physical Address. . . . . . . . . : 00-1D-60-1B-B6-5C Dhcp Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes IP Address. . . . . . . . . . . . : 192.168.1.8 Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : 192.168.1.1 DHCP Server . . . . . . . . . . . : 192.168.1.1 DNS Servers . . . . . . . . . . . : 192.168.1.1 Lease Obtained. . . . . . . . . . : Tuesday, July 24, 2012 11:44:17 AM Lease Expires . . . . . . . . . . : Wednesday, July 25, 2012 11:44:17 AM Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 74.125.224.232, 74.125.224.233, 74.125.224.238, 74.125.224.224
74.125.224.225, 74.125.224.226, 74.125.224.227, 74.125.224.228, 74.125.224.229
74.125.224.230, 74.125.224.231

Pinging google.com [74.125.224.231] with 32 bytes of data: Reply from 74.125.224.231: bytes=32 time=67ms TTL=52 Reply from 74.125.224.231: bytes=32 time=67ms TTL=52 Ping statistics for 74.125.224.231: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 67ms, Maximum = 67ms, Average = 67ms Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 72.30.38.140, 98.139.183.24, 209.191.122.70

Pinging yahoo.com [209.191.122.70] with 32 bytes of data: Reply from 209.191.122.70: bytes=32 time=111ms TTL=48 Reply from 209.191.122.70: bytes=32 time=110ms TTL=49 Ping statistics for 209.191.122.70: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 110ms, Maximum = 111ms, Average = 110ms Server: UnKnown
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2

Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data: Reply from 208.43.87.2: Destination host unreachable. Reply from 208.43.87.2: Destination host unreachable. Ping statistics for 208.43.87.2: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 0ms, Maximum = 0ms, Average = 0ms Pinging 127.0.0.1 with 32 bytes of data: Reply from 127.0.0.1: bytes=32 time<1ms TTL=128 Reply from 127.0.0.1: bytes=32 time<1ms TTL=128 Ping statistics for 127.0.0.1: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 0ms, Maximum = 0ms, Average = 0ms ===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 1d 60 1b b6 5c ...... NVIDIA nForce Networking Controller - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.8 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
169.254.0.0 255.255.0.0 192.168.1.8 192.168.1.8 20
192.168.1.0 255.255.255.0 192.168.1.8 192.168.1.8 20
192.168.1.8 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.1.255 255.255.255.255 192.168.1.8 192.168.1.8 20
224.0.0.0 240.0.0.0 192.168.1.8 192.168.1.8 20
255.255.255.255 255.255.255.255 192.168.1.8 192.168.1.8 1
Default Gateway: 192.168.1.1
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/18/2012 08:03:27 PM) (Source: crypt32) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (07/18/2012 08:03:27 PM) (Source: crypt32) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (07/18/2012 08:03:27 PM) (Source: crypt32) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (07/18/2012 07:40:10 PM) (Source: Application Error) (User: )
Description: Faulting application winamp.exe, version 5.5.6.2512, faulting module in_cdda.dll, version 0.0.0.0, fault address 0x0000cb66.
Processing media-specific event for [winamp.exe!ws!]

Error: (07/08/2012 04:10:09 AM) (Source: WinMgmt) (User: )
Description: WinMgmt could not initialize the core parts. This could be due to a badly installed version of WinMgmt, WinMgmt repository upgrade failure, insufficient disk space or insufficient memory.

Error: (07/08/2012 04:04:46 AM) (Source: WinMgmt) (User: )
Description: WinMgmt could not initialize the core parts. This could be due to a badly installed version of WinMgmt, WinMgmt repository upgrade failure, insufficient disk space or insufficient memory.

Error: (07/01/2012 04:15:59 PM) (Source: MsiInstaller) (User: PAST-594BFF0499)PAST-594BFF0499
Description: Product: Catalyst Control Center -- Internal Error 2753. installShell.exe

Error: (06/13/2012 09:53:31 AM) (Source: .NET Runtime Optimization Service) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown

Error: (06/08/2012 11:30:43 PM) (Source: .NET Runtime) (User: )
Description: Application: BurningStudioCompact.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.AccessViolationException
Stack:
at BurningStudioSmart.BurningStudioSmart.bssmart_Work(IntPtr)
at BurningStudioCompact.MainWindow.UpdatePage()
at BurningStudioCompact.MainWindow.dispatcherTimer_Tick(System.Object, System.EventArgs)
at System.Windows.Threading.DispatcherTimer.FireTick(System.Object)
at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
at MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
at System.Windows.Threading.DispatcherOperation.InvokeImpl()
at System.Windows.Threading.DispatcherOperation.InvokeInSecurityContext(System.Object)
at System.Threading.ExecutionContext.runTryCode(System.Object)
at System.Runtime.CompilerServices.RuntimeHelpers.ExecuteCodeWithGuaranteedCleanup(TryCode, CleanupCode, System.Object)
at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Windows.Threading.DispatcherOperation.Invoke()
at System.Windows.Threading.Dispatcher.ProcessQueue()
at System.Windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
at MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
at MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
at MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
at System.Windows.Threading.Dispatcher.InvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
at MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
at Ash_Inet.Ash_Inet2.ainet_StartAllChecks(IntPtr)
at BurningStudioCompact.MainWindow.Window_Activated(System.Object, System.EventArgs)
at System.Windows.Window.OnActivated(System.EventArgs)
at System.Windows.Window.HandleActivate(Boolean)
at System.Windows.Window.WmActivate(IntPtr)
at System.Windows.Window.WindowFilterMessage(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
at System.Windows.Interop.HwndSource.PublicHooksFilterMessage(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
at MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
at MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
at MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
at System.Windows.Threading.Dispatcher.InvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
at MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
at MS.Win32.UnsafeNativeMethods.ShowWindow(System.Runtime.InteropServices.HandleRef, Int32)
at System.Windows.Window.ShowHelper(System.Object)
at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
at MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
at System.Windows.Threading.DispatcherOperation.InvokeImpl()
at System.Windows.Threading.DispatcherOperation.InvokeInSecurityContext(System.Object)
at System.Threading.ExecutionContext.runTryCode(System.Object)
at System.Runtime.CompilerServices.RuntimeHelpers.ExecuteCodeWithGuaranteedCleanup(TryCode, CleanupCode, System.Object)
at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Windows.Threading.DispatcherOperation.Invoke()
at System.Windows.Threading.Dispatcher.ProcessQueue()
at System.Windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
at MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
at MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
at MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
at System.Windows.Threading.Dispatcher.InvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
at MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
at MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
at System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
at System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
at System.Windows.Application.RunDispatcher(System.Object)
at System.Windows.Application.RunInternal(System.Windows.Window)
at System.Windows.Application.Run(System.Windows.Window)
at BurningStudioCompact.App.Main(System.String[])

Error: (06/07/2012 07:43:13 PM) (Source: MsiInstaller) (User: NT AUTHORITY)NT AUTHORITY
Description: Failed to end a Windows Installer transaction . Error 5 occurred while ending the transaction.


System errors:
=============
Error: (07/24/2012 11:45:10 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Workstation service which failed to start because of the following error:
%%1066

Error: (07/24/2012 11:45:10 AM) (Source: Service Control Manager) (User: )
Description: The Workstation service terminated with service-specific error 2250 (0x8CA).

Error: (07/24/2012 11:45:10 AM) (Source: Service Control Manager) (User: )
Description: The Workstation service terminated with service-specific error 2250 (0x8CA).

Error: (07/24/2012 11:45:10 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Workstation service which failed to start because of the following error:
%%1066

Error: (07/24/2012 11:45:10 AM) (Source: Workstation) (User: )
Description: Could not load RDR device driver.

Error: (07/24/2012 11:45:10 AM) (Source: Workstation) (User: )
Description: Could not load RDR device driver.

Error: (07/24/2012 11:45:04 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SASKUTIL

Error: (07/24/2012 11:45:03 AM) (Source: Service Control Manager) (User: )
Description: The npkcrypt service failed to start due to the following error:
%%3

Error: (07/24/2012 11:45:03 AM) (Source: Service Control Manager) (User: )
Description: The LBeepKE service failed to start due to the following error:
%%31

Error: (07/24/2012 11:45:03 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Workstation service which failed to start because of the following error:
%%1066


Microsoft Office Sessions:
=========================
Error: (07/18/2012 08:03:27 PM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (07/18/2012 08:03:27 PM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (07/18/2012 08:03:27 PM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (07/18/2012 07:40:10 PM) (Source: Application Error)(User: )
Description: winamp.exe5.5.6.2512in_cdda.dll0.0.0.00000cb66

Error: (07/08/2012 04:10:09 AM) (Source: WinMgmt)(User: )
Description:

Error: (07/08/2012 04:04:46 AM) (Source: WinMgmt)(User: )
Description:

Error: (07/01/2012 04:15:59 PM) (Source: MsiInstaller)(User: PAST-594BFF0499)PAST-594BFF0499
Description: Product: Catalyst Control Center -- Internal Error 2753. installShell.exe(NULL)(NULL)(NULL)(NULL)

Error: (06/13/2012 09:53:31 AM) (Source: .NET Runtime Optimization Service)(User: )
Description: .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown

Error: (06/08/2012 11:30:43 PM) (Source: .NET Runtime)(User: )
Description: Application: BurningStudioCompact.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.AccessViolationException
Stack:
at BurningStudioSmart.BurningStudioSmart.bssmart_Work(IntPtr)
at BurningStudioCompact.MainWindow.UpdatePage()
at BurningStudioCompact.MainWindow.dispatcherTimer_Tick(System.Object, System.EventArgs)
at System.Windows.Threading.DispatcherTimer.FireTick(System.Object)
at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
at MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
at System.Windows.Threading.DispatcherOperation.InvokeImpl()
at System.Windows.Threading.DispatcherOperation.InvokeInSecurityContext(System.Object)
at System.Threading.ExecutionContext.runTryCode(System.Object)
at System.Runtime.CompilerServices.RuntimeHelpers.ExecuteCodeWithGuaranteedCleanup(TryCode, CleanupCode, System.Object)
at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Windows.Threading.DispatcherOperation.Invoke()
at System.Windows.Threading.Dispatcher.ProcessQueue()
at System.Windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
at MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
at MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
at MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
at System.Windows.Threading.Dispatcher.InvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
at MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
at Ash_Inet.Ash_Inet2.ainet_StartAllChecks(IntPtr)
at BurningStudioCompact.MainWindow.Window_Activated(System.Object, System.EventArgs)
at System.Windows.Window.OnActivated(System.EventArgs)
at System.Windows.Window.HandleActivate(Boolean)
at System.Windows.Window.WmActivate(IntPtr)
at System.Windows.Window.WindowFilterMessage(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
at System.Windows.Interop.HwndSource.PublicHooksFilterMessage(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
at MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
at MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
at MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
at System.Windows.Threading.Dispatcher.InvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
at MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
at MS.Win32.UnsafeNativeMethods.ShowWindow(System.Runtime.InteropServices.HandleRef, Int32)
at System.Windows.Window.ShowHelper(System.Object)
at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
at MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
at System.Windows.Threading.DispatcherOperation.InvokeImpl()
at System.Windows.Threading.DispatcherOperation.InvokeInSecurityContext(System.Object)
at System.Threading.ExecutionContext.runTryCode(System.Object)
at System.Runtime.CompilerServices.RuntimeHelpers.ExecuteCodeWithGuaranteedCleanup(TryCode, CleanupCode, System.Object)
at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Windows.Threading.DispatcherOperation.Invoke()
at System.Windows.Threading.Dispatcher.ProcessQueue()
at System.Windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
at MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
at MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
at MS.Internal.Threading.ExceptionFilterHelper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
at System.Windows.Threading.Dispatcher.InvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
at MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
at MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
at System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
at System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
at System.Windows.Application.RunDispatcher(System.Object)
at System.Windows.Application.RunInternal(System.Windows.Window)
at System.Windows.Application.Run(System.Windows.Window)
at BurningStudioCompact.App.Main(System.String[])

Error: (06/07/2012 07:43:13 PM) (Source: MsiInstaller)(User: NT AUTHORITY)NT AUTHORITY
Description: 5(NULL)(NULL)(NULL)


=========================== Installed Programs ============================

µTorrent (Version: 3.2.0)
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.1.377)
Adobe AIR (Version: 1.1.0.5790)
Adobe Anchor Service CS3 (Version: 1.0)
Adobe Asset Services CS3 (Version: 3)
Adobe Bridge CS3 (Version: 2)
Adobe Bridge Start Meeting (Version: 1.0)
Adobe Camera Raw 4.0 (Version: 4.0)
Adobe CMaps (Version: 1.0)
Adobe Color - Photoshop Specific (Version: 1.0)
Adobe Color Common Settings (Version: 1.0.1)
Adobe Color EU Extra Settings (Version: 1.0)
Adobe Color JA Extra Settings (Version: 1.0)
Adobe Color NA Recommended Settings (Version: 1.0)
Adobe Default Language CS3 (Version: 1.0)
Adobe Device Central CS3 (Version: 1.0)
Adobe ExtendScript Toolkit 2 (Version: 2.0.2)
Adobe Flash Player 10 Plugin (Version: 10.3.181.34)
Adobe Flash Player 11 ActiveX (Version: 11.0.1.152)
Adobe Fonts All (Version: 1.0)
Adobe Help Viewer CS3 (Version: 1)
Adobe Linguistics CS3 (Version: 3.0.0)
Adobe Media Player (Version: 0.0.0)
Adobe Media Player (Version: 1.1)
Adobe PDF Library Files (Version: 8.0)
Adobe Photoshop CS3 (Version: 10)
Adobe Photoshop CS3 (Version: 10.0)
Adobe Reader 9 (Version: 9.0.0)
Adobe Setup (Version: 1.0)
Adobe Stock Photos CS3 (Version: 1.5)
Adobe Type Support (Version: 1.0)
Adobe Update Manager CS3 (Version: 5.1.0)
Adobe Version Cue CS3 Client (Version: 3)
Adobe WinSoft Linguistics Plugin (Version: 1.0)
Adobe XMP Panels CS3 (Version: 1.0)
Advanced Audio FX Engine
Advanced Video FX Engine
AMD Catalyst Install Manager (Version: 8.0.881.0)
Apple Application Support (Version: 2.0.1)
Apple Software Update (Version: 2.1.3.127)
Ashampoo Burning Studio 11 v.11.0.3 (Version: 11.0.3)
ATI AVIVO Codecs (Version: 9.15.0.20713)
ATI Catalyst Control Center (Version: 2.008.0225.2152)
ATI HYDRAVISION (Version: 3.25.0006)
ATI Parental Control & Encoder (Version: 3.0)
ATI Problem Report Wizard (Version: 8.10)
Auslogics Disk Defrag (Version: version 3.1)
avast! Free Antivirus (Version: 7.0.1426.0)
CameraHelperMsi (Version: 13.10.1217.0)
Captcha Brotherhood (Version: 1.1.7)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2008.0225.2153.39091)
Catalyst Control Center Graphics Full Existing (Version: 2008.0225.2153.39091)
Catalyst Control Center Graphics Full New (Version: 2008.0225.2153.39091)
Catalyst Control Center Graphics Light (Version: 2008.0225.2153.39091)
Catalyst Control Center Graphics Previews Common (Version: 2008.0225.2153.39091)
Catalyst Control Center Graphics Previews Common (Version: 2012.0524.1601.26859)
Catalyst Control Center Localization All (Version: 2012.0524.1601.26859)
Catalyst Control Center Localization Chinese Standard (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Chinese Traditional (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Czech (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Danish (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Dutch (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Finnish (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization French (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization German (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Greek (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Hungarian (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Italian (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Japanese (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Korean (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Norwegian (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Polish (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Portuguese (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Russian (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Spanish (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Swedish (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Thai (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Turkish (Version: 2008.0225.2153.39091)
ccc-core-preinstall (Version: 2008.0225.2153.39091)
ccc-core-static (Version: 2008.0225.2153.39091)
ccc-utility (Version: 2008.0225.2153.39091)
ccc-utility (Version: 2012.0524.1601.26859)
CCC Help Chinese Standard (Version: 2008.0225.2152.39091)
CCC Help Chinese Standard (Version: 2012.0524.1600.26859)
CCC Help Chinese Traditional (Version: 2008.0225.2152.39091)
CCC Help Chinese Traditional (Version: 2012.0524.1600.26859)
CCC Help Czech (Version: 2008.0225.2152.39091)
CCC Help Czech (Version: 2012.0524.1600.26859)
CCC Help Danish (Version: 2008.0225.2152.39091)
CCC Help Danish (Version: 2012.0524.1600.26859)
CCC Help Dutch (Version: 2008.0225.2152.39091)
CCC Help Dutch (Version: 2012.0524.1600.26859)
CCC Help English (Version: 2008.0225.2152.39091)
CCC Help English (Version: 2012.0524.1600.26859)
CCC Help Finnish (Version: 2008.0225.2152.39091)
CCC Help Finnish (Version: 2012.0524.1600.26859)
CCC Help French (Version: 2008.0225.2152.39091)
CCC Help French (Version: 2012.0524.1600.26859)
CCC Help German (Version: 2008.0225.2152.39091)
CCC Help German (Version: 2012.0524.1600.26859)
CCC Help Greek (Version: 2008.0225.2152.39091)
CCC Help Greek (Version: 2012.0524.1600.26859)
CCC Help Hungarian (Version: 2008.0225.2152.39091)
CCC Help Hungarian (Version: 2012.0524.1600.26859)
CCC Help Italian (Version: 2008.0225.2152.39091)
CCC Help Italian (Version: 2012.0524.1600.26859)
CCC Help Japanese (Version: 2008.0225.2152.39091)
CCC Help Japanese (Version: 2012.0524.1600.26859)
CCC Help Korean (Version: 2008.0225.2152.39091)
CCC Help Korean (Version: 2012.0524.1600.26859)
CCC Help Norwegian (Version: 2008.0225.2152.39091)
CCC Help Norwegian (Version: 2012.0524.1600.26859)
CCC Help Polish (Version: 2008.0225.2152.39091)
CCC Help Polish (Version: 2012.0524.1600.26859)
CCC Help Portuguese (Version: 2008.0225.2152.39091)
CCC Help Portuguese (Version: 2012.0524.1600.26859)
CCC Help Russian (Version: 2008.0225.2152.39091)
CCC Help Russian (Version: 2012.0524.1600.26859)
CCC Help Spanish (Version: 2008.0225.2152.39091)
CCC Help Spanish (Version: 2012.0524.1600.26859)
CCC Help Swedish (Version: 2008.0225.2152.39091)
CCC Help Swedish (Version: 2012.0524.1600.26859)
CCC Help Thai (Version: 2008.0225.2152.39091)
CCC Help Thai (Version: 2012.0524.1600.26859)
CCC Help Turkish (Version: 2008.0225.2152.39091)
CCC Help Turkish (Version: 2012.0524.1600.26859)
CCleaner (Version: 3.18)
CDDRV_Installer (Version: 4.60)
Company of Heroes - FAKEMSI (Version: 2.0.0.0)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Creative Audio Console
Creative MediaSource 5 (Version: 5.26)
Creative Software AutoUpdate
Creative System Information
Creative WaveStudio 7 (Version: 7.12)
DigitImg (Version: 2.00.0000)
Dropbox (Version: 1.4.7)
DropBox (Version: 6.5.0.0)
dupeGuru Music Edition (Version: 5.10.2)
Easy CD-DA Extractor 2011 (Version: 2011)
erLT (Version: 1.20.138.34)
ESET Online Scanner v3
GEAR 32bit Driver Installer (Version: 2.005.1)
HP Deskjet 3000 J310 series Basic Device Software (Version: 22.50.231.0)
HP Deskjet 3000 J310 series Help (Version: 140.0.66.66)
HP Software Update (Version: 2.0.37.20031205)
ImagXpress (Version: 7.0.74.0)
IsoBuster 2.7 (Version: 2.7)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 31 (Version: 6.0.310)
Java™ 6 Update 6 (Version: 1.6.0.60)
Java™ 6 Update 7 (Version: 1.6.0.70)
Junk Mail filter update (Version: 14.0.8089.726)
KhalInstallWrapper (Version: 4.72.40)
Logitech SetPoint (Version: 4.72)
Logitech Webcam Software (Version: 2.0)
LWS Facebook (Version: 13.10.1216.0)
LWS Gallery (Version: 13.10.1216.0)
LWS Help_main (Version: 13.10.1224.0)
LWS Launcher (Version: 13.10.1224.0)
LWS Motion Detection (Version: 13.10.1218.0)
LWS Pictures And Video (Version: 13.10.1218.0)
LWS Twitter (Version: 13.00.1216.0)
LWS Video Mask Maker (Version: 13.10.1216.0)
LWS VideoEffects (Version: 13.00.1774.0)
LWS Webcam Software (Version: 13.00.1774.0)
LWS WLM Plugin (Version: 1.10.1222.0)
LWS YouTube Plugin (Version: 13.10.1216.0)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Games for Windows - LIVE (Version: 2.0.687.0)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.0.19.0)
Microsoft Office Word Viewer 2003 (Version: 11.0.8173.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server Desktop Engine (SONY_MEDIAMGR) (Version: 8.00.761)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft XML Parser (Version: 8.70.1104.04)
MiPony 1.6.4 (Version: 1.6.4)
MixMeister Fusion 7.3.5
Mozilla Firefox 14.0.1 (x86 en-US) (Version: 14.0.1)
Mozilla Maintenance Service (Version: 14.0.1)
MPEG2 Codec(libmpeg2/mad)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 6 Service Pack 2 (KB954459) (Version: 6.20.1099.0)
neroxml (Version: 1.0.0)
NVIDIA Drivers
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
overland (Version: 2.1.5)
PDF Settings (Version: 1.0)
Platinum Notes 3.0 (Version: 3.0)
PS7900 (Version: 1.01.0000)
PSShortcuts (Version: 1.01.0000)
PSUsage (Version: 1.30.0000)
QFolder (Version: 1.00.0000)
QuickTime (Version: 7.70.80.34)
Realtek High Definition Audio Driver
Revo Uninstaller Pro 2.5.8 (Version: 2.5.8)
Segoe UI (Version: 14.0.4327.805)
Skins (Version: 2008.0225.2153.39091)
Skype™ 5.8 (Version: 5.8.158)
Sony Media Manager 2.0 (Version: 2.0.40)
SoulSeek 157 NS 13e
Sound Blaster X-Fi Xtreme Audio (Version: 1.0)
Sound Forge Pro 10.0 (Version: 10.0.368)
Star Trek Online
Steam (Version: 1.0.0.0)
SureThing CD Labeler Deluxe 4
Ubisoft Game Launcher (Version: 1.0.0.0)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Windows Internet Explorer 8 (KB971180) (Version: 1)
Update for Windows Internet Explorer 8 (KB976662) (Version: 1)
Update for Windows Internet Explorer 8 (KB976749) (Version: 1)
Update for Windows Internet Explorer 8 (KB980182) (Version: 1)
VCRedistSetup (Version: 1.0.0)
VLC media player 2.0.2 (Version: 2.0.2)
Voxware Audio decoder 1.6 (Version: 1.6.0)
Vyzex MPD26 (Version: Vyzex MPD26 v1.00)
Warhammer 40,000: Dawn of War - Soulstorm (Version: 1.0)
Warhammer 40,000: Dawn of War II
WebFldrs XP (Version: 9.50.7523)
Winamp (Version: 5.56 )
Windows Genuine Advantage Notifications (KB905474) (Version: 1.9.0040.0)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Live Call (Version: 14.0.8064.0206)
Windows Live Communications Platform (Version: 14.0.8064.206)
Windows Live Essentials (Version: 14.0.8089.0726)
Windows Live Essentials (Version: 14.0.8089.726)
Windows Live Mail (Version: 14.0.8089.0726)
Windows Live Messenger (Version: 14.0.8089.0726)
Windows Live Photo Gallery (Version: 14.0.8081.709)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Media Format 11 runtime
Windows Presentation Foundation (Version: 3.0.6920.0)
WinRAR archiver
XML Paper Specification Shared Components Pack 1.0
Zip Motion Block Video codec (Remove Only)

========================= Memory info: ===================================

Percentage of memory in use: 23%
Total physical RAM: 3582.48 MB
Available physical RAM: 2730.69 MB
Total Pagefile: 5433.41 MB
Available Pagefile: 4896.34 MB
Total Virtual: 2047.88 MB
Available Virtual: 1969.64 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:298.08 GB) (Free:95.54 GB) NTFS
9 Drive l: (POWER 2) (Fixed) (Total:1863.01 GB) (Free:1523.1 GB) NTFS
10 Drive n: (MECCA) (Removable) (Total:7.47 GB) (Free:3.52 GB) FAT32

========================= Users: ========================================

**** End of log ****







# AdwCleaner v1.703 - Logfile created 07/24/2012 at 13:27:33
# Updated 20/07/2012 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Administrator - PAST-594BFF0499
# Running from : C:\Documents and Settings\Administrator\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Documents and Settings\Administrator\Local Settings\Application Data\Conduit
Folder Deleted : C:\Documents and Settings\Administrator\Application Data\Media Finder
Folder Deleted : C:\Documents and Settings\Administrator\Application Data\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\gencrawler@some.com
Folder Deleted : C:\Documents and Settings\Administrator\Application Data\PriceGong
Folder Deleted : C:\Program Files\Conduit
File Deleted : C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\wcu9duep.default\searchplugins\Askcom.xml
File Deleted : C:\Program Files\Mozilla FireFox\Components\AskSearch.js

***** [Registry] *****

[*] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2475029
Key Deleted : HKCU\Software\AppDataLow\AskSA
Key Deleted : HKCU\Software\Ask.com
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Download with &Media Finder
Key Deleted : HKCU\Software\PriceGong
Key Deleted : HKCU\Software\Zugo
Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Deleted : HKLM\SOFTWARE\Classes\gencrawler_gc.GenCrawler
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\Freeze.com
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dednnpigldgdbpgcdpfppmlcnnbjciel
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\lpmkgpnbiojfaoklbkpfneikocaobfai
Key Deleted : HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\0563B8630D62D75ABBC8AB1E4BDFB5A899B24D43
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF

***** [Registre - GUID] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A3F2A195-0D11-463b-96BB-D2FF1B7490A1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ECD0ECC6-DCA4-4013-A915-12355AB70999}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2D5E2D34-BED5-4B9F-9793-A31E26E6806E}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{201F27D4-3704-41D6-89C1-AA35E39143ED}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C94E154B-1459-4A47-966B-4B843BEFC7DB}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry is clean.

-\\ Mozilla Firefox v14.0.1 (en-US)

Profile name : default
File : C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\wcu9duep.default\prefs.js

C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\wcu9duep.default\user.js ... Deleted !

Deleted : user_pref("browser.search.defaultengine", "Ask.com");
Deleted : user_pref("browser.search.order.1", "Ask.com");
Deleted : user_pref("extensions.snipit.chromeURL", "hxxp://toolbar.ask.com/toolbarv/askRedirect?o=13761&gct=&g[...]

*************************

AdwCleaner[S2].txt - [3972 octets] - [24/07/2012 13:27:33]

########## EOF - C:\AdwCleaner[S2].txt - [4100 octets] ##########

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:04 AM

Posted 24 July 2012 - 08:36 PM

Do you still problems with the search?

Uninstall firefox

Makesure to checkmark Remove my personal data option

Reinstall it

Let me know how it goes

#9 Mr Darkwater

Mr Darkwater
  • Topic Starter

  • Members
  • 70 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:04 PM

Posted 25 July 2012 - 04:39 PM

Narenxp...

You have done it again. Thank you. :)



SERIOUSLY...If youre ever in Maui.....






D

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:04 AM

Posted 25 July 2012 - 05:14 PM

:thumbsup:

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://support.microsoft.com/kb/310405

update your flash player

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users