Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google redirect Virus


  • Please log in to reply
13 replies to this topic

#1 BumpInTheRoad

BumpInTheRoad

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:45 AM

Posted 19 July 2012 - 10:27 AM

Hello,

About a week ago I noticed that my Google searches were redirected to some random websites (Firefox and IE). Shortly after that, I got infected another computer that I have in the same network. I have tried a lot of antivirus/anti-malware products and none of them solve the problem. I really would appreciate any help from the community.

Thanks in advance

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:45 AM

Posted 19 July 2012 - 01:24 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 BumpInTheRoad

BumpInTheRoad
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:45 AM

Posted 19 July 2012 - 09:21 PM

I ran the suggested tests in my two infected computers. After the tests, I still get redirects. Below are the logs:

Computer 1:


TDSSKILLER:

12:26:54.0801 7052 TDSS rootkit removing tool 2.7.46.0 Jul 16 2012 22:10:11
12:26:55.0441 7052 ============================================================
12:26:55.0441 7052 Current date / time: 2012/07/19 12:26:55.0441
12:26:55.0442 7052 SystemInfo:
12:26:55.0442 7052
12:26:55.0442 7052 OS Version: 6.0.6002 ServicePack: 2.0
12:26:55.0442 7052 Product type: Workstation
12:26:55.0442 7052 ComputerName: PG2
12:26:55.0443 7052 UserName: DanielPG
12:26:55.0443 7052 Windows directory: C:\Windows
12:26:55.0443 7052 System windows directory: C:\Windows
12:26:55.0443 7052 Processor architecture: Intel x86
12:26:55.0443 7052 Number of processors: 2
12:26:55.0443 7052 Page size: 0x1000
12:26:55.0443 7052 Boot type: Normal boot
12:26:55.0443 7052 ============================================================
12:26:58.0897 7052 Drive \Device\Harddisk0\DR0 - Size: 0x2E93E36000 (186.31 Gb), SectorSize: 0x200, Cylinders: 0x5F01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
12:26:58.0937 7052 Drive \Device\Harddisk2\DR2 - Size: 0x7A8E0000 (1.91 Gb), SectorSize: 0x200, Cylinders: 0x3E4, SectorsPerTrack: 0x3F, TracksPerCylinder: 0x40, Type 'W'
12:26:58.0939 7052 ============================================================
12:26:58.0939 7052 \Device\Harddisk0\DR0:
12:26:58.0939 7052 MBR partitions:
12:26:58.0939 7052 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0xEF7800, BlocksNum 0x165A79B0
12:26:58.0939 7052 \Device\Harddisk2\DR2:
12:26:58.0940 7052 MBR partitions:
12:26:58.0940 7052 \Device\Harddisk2\DR2\Partition0: MBR, Type 0x6, StartLBA 0xF3, BlocksNum 0x3D530D
12:26:58.0940 7052 ============================================================
12:26:58.0973 7052 C: <-> \Device\Harddisk0\DR0\Partition0
12:26:58.0974 7052 ============================================================
12:26:58.0974 7052 Initialize success
12:26:58.0974 7052 ============================================================
12:28:24.0390 7112 ============================================================
12:28:24.0391 7112 Scan started
12:28:24.0391 7112 Mode: Manual; TDLFS;
12:28:24.0391 7112 ============================================================
12:28:26.0023 7112 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
12:28:26.0028 7112 ACPI - ok
12:28:26.0282 7112 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
12:28:26.0288 7112 AdobeFlashPlayerUpdateSvc - ok
12:28:26.0603 7112 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
12:28:26.0611 7112 adp94xx - ok
12:28:26.0720 7112 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
12:28:26.0726 7112 adpahci - ok
12:28:26.0938 7112 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
12:28:26.0941 7112 adpu160m - ok
12:28:27.0162 7112 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
12:28:27.0166 7112 adpu320 - ok
12:28:27.0383 7112 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
12:28:27.0385 7112 AeLookupSvc - ok
12:28:27.0802 7112 AFD (a201207363aa900abf1a388468688570) C:\Windows\system32\drivers\afd.sys
12:28:27.0809 7112 AFD - ok
12:28:27.0898 7112 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
12:28:27.0900 7112 agp440 - ok
12:28:27.0960 7112 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
12:28:27.0963 7112 aic78xx - ok
12:28:28.0058 7112 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
12:28:28.0061 7112 ALG - ok
12:28:28.0088 7112 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
12:28:28.0090 7112 aliide - ok
12:28:28.0129 7112 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
12:28:28.0131 7112 amdagp - ok
12:28:28.0151 7112 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
12:28:28.0153 7112 amdide - ok
12:28:28.0206 7112 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
12:28:28.0209 7112 AmdK7 - ok
12:28:28.0238 7112 AmdK8 (0ca0071da4315b00fc1328ca86b425da) C:\Windows\system32\drivers\amdk8.sys
12:28:28.0241 7112 AmdK8 - ok
12:28:28.0322 7112 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
12:28:28.0325 7112 Appinfo - ok
12:28:28.0716 7112 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:28:28.0719 7112 Apple Mobile Device - ok
12:28:28.0845 7112 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
12:28:28.0848 7112 arc - ok
12:28:28.0913 7112 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
12:28:28.0915 7112 arcsas - ok
12:28:29.0093 7112 ASPI32 (b979979ab8027f7f53fb16ec4229b7db) C:\Windows\system32\drivers\ASPI32.sys
12:28:29.0095 7112 ASPI32 - ok
12:28:29.0379 7112 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
12:28:29.0381 7112 aspnet_state - ok
12:28:29.0491 7112 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
12:28:29.0493 7112 AsyncMac - ok
12:28:29.0625 7112 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
12:28:29.0627 7112 atapi - ok
12:28:30.0044 7112 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
12:28:30.0051 7112 AudioEndpointBuilder - ok
12:28:30.0064 7112 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
12:28:30.0071 7112 Audiosrv - ok
12:28:32.0553 7112 AVGIDSAgent (d67719bcfde5798f5c30d14efed3bcaf) C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
12:28:32.0630 7112 AVGIDSAgent - ok
12:28:33.0452 7112 AVGIDSDriver (1074f787080068c71303b61fae7e7ca4) C:\Windows\system32\DRIVERS\avgidsdriverx.sys
12:28:33.0456 7112 AVGIDSDriver - ok
12:28:33.0482 7112 AVGIDSFilter (61a7e0b02f82cff3db2445bbe50b3589) C:\Windows\system32\DRIVERS\avgidsfilterx.sys
12:28:33.0484 7112 AVGIDSFilter - ok
12:28:33.0513 7112 AVGIDSHX (d63d83659eedf60b3a3e620281a888e5) C:\Windows\system32\DRIVERS\avgidshx.sys
12:28:33.0515 7112 AVGIDSHX - ok
12:28:33.0611 7112 AVGIDSShim (baf975b72062f53d327788e99d64197e) C:\Windows\system32\DRIVERS\avgidsshimx.sys
12:28:33.0613 7112 AVGIDSShim - ok
12:28:33.0685 7112 Avgldx86 (dda6a2a18841e4c9172bb85958b8d948) C:\Windows\system32\DRIVERS\avgldx86.sys
12:28:33.0690 7112 Avgldx86 - ok
12:28:33.0743 7112 Avgmfx86 (ccdd61545aaea265977e4b1efdc74e8c) C:\Windows\system32\DRIVERS\avgmfx86.sys
12:28:33.0745 7112 Avgmfx86 - ok
12:28:33.0787 7112 Avgrkx86 (1fd90b28d2c3100bf4500199c8ad6358) C:\Windows\system32\DRIVERS\avgrkx86.sys
12:28:33.0789 7112 Avgrkx86 - ok
12:28:33.0877 7112 Avgtdix (1263f2554ace925c237a40b4c568d815) C:\Windows\system32\DRIVERS\avgtdix.sys
12:28:33.0884 7112 Avgtdix - ok
12:28:34.0097 7112 avgwd (ea1145debcd508fd25bd1e95c4346929) C:\Program Files\AVG\AVG2012\avgwdsvc.exe
12:28:34.0102 7112 avgwd - ok
12:28:34.0267 7112 BBSvc (2ed050291bc1d7f9e322e328db3aaecf) C:\Program Files\Microsoft\BingBar\BBSvc.EXE
12:28:34.0271 7112 BBSvc - ok
12:28:34.0359 7112 BBUpdate (785de7abda13309d6065305542829e76) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
12:28:34.0364 7112 BBUpdate - ok
12:28:34.0450 7112 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
12:28:34.0452 7112 Beep - ok
12:28:34.0735 7112 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
12:28:34.0742 7112 BFE - ok
12:28:35.0501 7112 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
12:28:35.0521 7112 BITS - ok
12:28:35.0530 7112 blbdrive - ok
12:28:35.0893 7112 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
12:28:35.0900 7112 Bonjour Service - ok
12:28:35.0978 7112 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
12:28:35.0980 7112 bowser - ok
12:28:36.0043 7112 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
12:28:36.0046 7112 BrFiltLo - ok
12:28:36.0092 7112 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
12:28:36.0094 7112 BrFiltUp - ok
12:28:36.0173 7112 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
12:28:36.0175 7112 Browser - ok
12:28:36.0259 7112 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
12:28:36.0262 7112 Brserid - ok
12:28:36.0320 7112 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
12:28:36.0322 7112 BrSerWdm - ok
12:28:36.0353 7112 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
12:28:36.0355 7112 BrUsbMdm - ok
12:28:36.0385 7112 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
12:28:36.0387 7112 BrUsbSer - ok
12:28:36.0454 7112 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
12:28:36.0456 7112 BTHMODEM - ok
12:28:37.0412 7112 CamDrL (0f5ca31bb3fdb5c1e63c170cfbecc93b) C:\Windows\system32\DRIVERS\Camdrl.sys
12:28:37.0430 7112 CamDrL - ok
12:28:37.0663 7112 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
12:28:37.0665 7112 cdfs - ok
12:28:37.0751 7112 Cdr4_xp (837eef65af62d4e8a37c41d3879f7274) C:\Windows\system32\drivers\Cdr4_xp.sys
12:28:37.0753 7112 Cdr4_xp - ok
12:28:37.0785 7112 Cdralw2k (579da2f9f5401f55dae2cf8779d61dfc) C:\Windows\system32\drivers\Cdralw2k.sys
12:28:37.0787 7112 Cdralw2k - ok
12:28:37.0875 7112 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
12:28:37.0878 7112 cdrom - ok
12:28:37.0998 7112 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
12:28:38.0001 7112 CertPropSvc - ok
12:28:38.0089 7112 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
12:28:38.0092 7112 circlass - ok
12:28:38.0196 7112 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
12:28:38.0202 7112 CLFS - ok
12:28:38.0376 7112 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:28:38.0379 7112 clr_optimization_v2.0.50727_32 - ok
12:28:38.0597 7112 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:28:38.0601 7112 clr_optimization_v4.0.30319_32 - ok
12:28:38.0743 7112 CLTNetCnService - ok
12:28:38.0827 7112 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
12:28:38.0829 7112 CmBatt - ok
12:28:38.0877 7112 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
12:28:38.0880 7112 cmdide - ok
12:28:39.0128 7112 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
12:28:39.0131 7112 Compbatt - ok
12:28:39.0141 7112 COMSysApp - ok
12:28:39.0176 7112 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
12:28:39.0179 7112 crcdisk - ok
12:28:39.0428 7112 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
12:28:39.0430 7112 Crusoe - ok
12:28:39.0759 7112 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
12:28:39.0764 7112 CryptSvc - ok
12:28:39.0941 7112 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
12:28:39.0958 7112 DcomLaunch - ok
12:28:40.0020 7112 DfsC (218d8ae46c88e82014f5d73d0236d9b2) C:\Windows\system32\Drivers\dfsc.sys
12:28:40.0022 7112 DfsC - ok
12:28:40.0575 7112 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
12:28:40.0608 7112 DFSR - ok
12:28:41.0161 7112 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
12:28:41.0166 7112 Dhcp - ok
12:28:41.0487 7112 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
12:28:41.0489 7112 disk - ok
12:28:41.0768 7112 DisplayLinkService (540091eb8287998236a802d1edc9b239) C:\Program Files\DisplayLink Core Software\DisplayLinkService.exe
12:28:41.0775 7112 DisplayLinkService - ok
12:28:41.0862 7112 dlkmd (a4949370238c55aef82317af36d8b939) C:\Windows\system32\drivers\dlkmd.sys
12:28:41.0868 7112 dlkmd - ok
12:28:41.0898 7112 dlkmdldr (c8e26d7e2b8e354982d5e37e2c05fdba) C:\Windows\system32\drivers\dlkmdldr.sys
12:28:41.0900 7112 dlkmdldr - ok
12:28:41.0953 7112 DMICall (f206e28ed74c491fd5d7c0a1119ce37f) C:\Windows\system32\DRIVERS\DMICall.sys
12:28:41.0955 7112 DMICall - ok
12:28:42.0104 7112 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
12:28:42.0108 7112 Dnscache - ok
12:28:42.0351 7112 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
12:28:42.0356 7112 dot3svc - ok
12:28:42.0446 7112 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
12:28:42.0450 7112 DPS - ok
12:28:42.0547 7112 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
12:28:42.0549 7112 drmkaud - ok
12:28:42.0595 7112 dsNcAdpt - ok
12:28:42.0831 7112 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
12:28:42.0842 7112 DXGKrnl - ok
12:28:42.0971 7112 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
12:28:42.0975 7112 E1G60 - ok
12:28:43.0156 7112 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
12:28:43.0160 7112 EapHost - ok
12:28:43.0459 7112 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
12:28:43.0462 7112 Ecache - ok
12:28:43.0633 7112 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
12:28:43.0638 7112 ehRecvr - ok
12:28:43.0906 7112 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
12:28:43.0909 7112 ehSched - ok
12:28:43.0935 7112 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
12:28:43.0936 7112 ehstart - ok
12:28:44.0234 7112 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
12:28:44.0241 7112 elxstor - ok
12:28:44.0655 7112 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
12:28:44.0666 7112 EMDMgmt - ok
12:28:44.0944 7112 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
12:28:44.0951 7112 EventSystem - ok
12:28:45.0049 7112 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
12:28:45.0053 7112 exfat - ok
12:28:45.0177 7112 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
12:28:45.0181 7112 fastfat - ok
12:28:45.0249 7112 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
12:28:45.0252 7112 fdc - ok
12:28:45.0323 7112 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
12:28:45.0326 7112 fdPHost - ok
12:28:45.0375 7112 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
12:28:45.0379 7112 FDResPub - ok
12:28:45.0488 7112 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
12:28:45.0491 7112 FileInfo - ok
12:28:45.0569 7112 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
12:28:45.0571 7112 Filetrace - ok
12:28:45.0606 7112 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
12:28:45.0608 7112 flpydisk - ok
12:28:45.0707 7112 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
12:28:45.0711 7112 FltMgr - ok
12:28:45.0964 7112 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
12:28:45.0979 7112 FontCache - ok
12:28:46.0416 7112 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
12:28:46.0418 7112 FontCache3.0.0.0 - ok
12:28:46.0560 7112 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
12:28:46.0562 7112 Fs_Rec - ok
12:28:46.0659 7112 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
12:28:46.0662 7112 gagp30kx - ok
12:28:46.0747 7112 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\Drivers\GEARAspiWDM.sys
12:28:46.0750 7112 GEARAspiWDM - ok
12:28:47.0299 7112 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
12:28:47.0311 7112 gpsvc - ok
12:28:47.0609 7112 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
12:28:47.0613 7112 gupdate - ok
12:28:47.0650 7112 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
12:28:47.0654 7112 gupdatem - ok
12:28:47.0749 7112 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
12:28:47.0757 7112 gusvc - ok
12:28:47.0857 7112 HdAudAddService (3f90e001369a07243763bd5a523d8722) C:\Windows\system32\drivers\HdAudio.sys
12:28:47.0893 7112 HdAudAddService - ok
12:28:48.0081 7112 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
12:28:48.0102 7112 HDAudBus - ok
12:28:48.0177 7112 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
12:28:48.0181 7112 HidBth - ok
12:28:48.0211 7112 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
12:28:48.0214 7112 HidIr - ok
12:28:48.0314 7112 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\System32\hidserv.dll
12:28:48.0318 7112 hidserv - ok
12:28:48.0363 7112 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
12:28:48.0366 7112 HidUsb - ok
12:28:48.0559 7112 HitmanProScheduler (da53819fbb21e6ff91d377283597a6c6) C:\Program Files\HitmanPro\hmpsched.exe
12:28:48.0564 7112 HitmanProScheduler - ok
12:28:48.0634 7112 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
12:28:48.0641 7112 hkmsvc - ok
12:28:48.0725 7112 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
12:28:48.0729 7112 HpCISSs - ok
12:28:48.0837 7112 HSFHWAZL (46d67209550973257601a533e2ac5785) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
12:28:48.0846 7112 HSFHWAZL - ok
12:28:49.0219 7112 HSF_DPV (7bc42c65b5c6281777c1a7605b253ba8) C:\Windows\system32\DRIVERS\HSX_DPV.sys
12:28:49.0283 7112 HSF_DPV - ok
12:28:49.0651 7112 HSXHWAZL (9ebf2d102ccbb6bcdfbf1b7922f8ba2e) C:\Windows\system32\DRIVERS\HSXHWAZL.sys
12:28:49.0660 7112 HSXHWAZL - ok
12:28:50.0078 7112 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
12:28:50.0124 7112 HTTP - ok
12:28:50.0399 7112 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
12:28:50.0429 7112 i2omp - ok
12:28:50.0641 7112 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
12:28:50.0645 7112 i8042prt - ok
12:28:50.0737 7112 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
12:28:50.0747 7112 iaStorV - ok
12:28:50.0871 7112 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
12:28:50.0877 7112 IDriverT - ok
12:28:51.0281 7112 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:28:51.0350 7112 idsvc - ok
12:28:52.0505 7112 igfx (62448322731ac1beda52e2b3327046ee) C:\Windows\system32\DRIVERS\igdkmd32.sys
12:28:52.0638 7112 igfx - ok
12:28:53.0171 7112 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
12:28:53.0175 7112 iirsp - ok
12:28:53.0398 7112 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
12:28:53.0408 7112 IKEEXT - ok
12:28:53.0953 7112 IntcAzAudAddService (2bd6633db50a98534aa3262e0f9f5a14) C:\Windows\system32\drivers\RTKVHDA.sys
12:28:54.0056 7112 IntcAzAudAddService - ok
12:28:55.0831 7112 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
12:28:55.0836 7112 intelide - ok
12:28:55.0921 7112 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
12:28:55.0937 7112 intelppm - ok
12:28:56.0006 7112 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
12:28:56.0013 7112 IPBusEnum - ok
12:28:56.0129 7112 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:28:56.0135 7112 IpFilterDriver - ok
12:28:56.0229 7112 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
12:28:56.0239 7112 iphlpsvc - ok
12:28:56.0250 7112 IpInIp - ok
12:28:56.0302 7112 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
12:28:56.0311 7112 IPMIDRV - ok
12:28:56.0392 7112 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
12:28:56.0399 7112 IPNAT - ok
12:28:56.0682 7112 iPod Service (57edb35ea2feca88f8b17c0c095c9a56) C:\Program Files\iPod\bin\iPodService.exe
12:28:56.0730 7112 iPod Service - ok
12:28:56.0796 7112 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
12:28:56.0801 7112 IRENUM - ok
12:28:56.0871 7112 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
12:28:56.0875 7112 isapnp - ok
12:28:57.0161 7112 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
12:28:57.0186 7112 iScsiPrt - ok
12:28:57.0302 7112 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
12:28:57.0307 7112 iteatapi - ok
12:28:57.0414 7112 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
12:28:57.0428 7112 iteraid - ok
12:28:57.0687 7112 IviRegMgr (213822072085b5bbad9af30ab577d817) C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
12:28:57.0692 7112 IviRegMgr - ok
12:28:57.0736 7112 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
12:28:57.0741 7112 kbdclass - ok
12:28:57.0764 7112 kbdhid (d2600cb17b7408b4a83f231dc9a11ac3) C:\Windows\system32\drivers\kbdhid.sys
12:28:57.0768 7112 kbdhid - ok
12:28:57.0825 7112 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
12:28:57.0831 7112 KeyIso - ok
12:28:57.0942 7112 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
12:28:57.0982 7112 KSecDD - ok
12:28:58.0126 7112 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
12:28:58.0143 7112 KtmRm - ok
12:28:58.0264 7112 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\System32\srvsvc.dll
12:28:58.0275 7112 LanmanServer - ok
12:28:58.0381 7112 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
12:28:58.0394 7112 LanmanWorkstation - ok
12:28:58.0535 7112 LexBceS (095aafc4129ed6cc8ea6bb1bc712af72) C:\Windows\System32\LEXBCES.EXE
12:28:58.0549 7112 LexBceS - ok
12:28:59.0718 7112 LiveUpdate (a97eeb81f05bce3d7aa6c81f04ef39a4) C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
12:28:59.0882 7112 LiveUpdate - ok
12:29:00.0002 7112 LiveUpdate Notice Ex - ok
12:29:00.0126 7112 LiveUpdate Notice Service (2d1389e05a807d956829f44bd4b60389) C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
12:29:00.0145 7112 LiveUpdate Notice Service - ok
12:29:00.0347 7112 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
12:29:00.0352 7112 lltdio - ok
12:29:00.0435 7112 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
12:29:00.0446 7112 lltdsvc - ok
12:29:00.0512 7112 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
12:29:00.0518 7112 lmhosts - ok
12:29:00.0586 7112 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
12:29:00.0591 7112 LSI_FC - ok
12:29:00.0625 7112 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
12:29:00.0631 7112 LSI_SAS - ok
12:29:00.0671 7112 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
12:29:00.0677 7112 LSI_SCSI - ok
12:29:00.0895 7112 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
12:29:00.0900 7112 luafv - ok
12:29:00.0979 7112 LVUSBSta (64bc29c3a0388bfc580bb8b1346f7659) C:\Windows\system32\drivers\LVUSBSta.sys
12:29:00.0985 7112 LVUSBSta - ok
12:29:01.0049 7112 lxbc_device - ok
12:29:01.0414 7112 Macromedia Licensing Service (b8eac4507eb4655377b1e094fce7f12e) C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
12:29:01.0429 7112 Macromedia Licensing Service - ok
12:29:01.0543 7112 MBAMProtector (6dfe7f2e8e8a337263aa5c92a215f161) C:\Windows\system32\drivers\mbam.sys
12:29:01.0571 7112 MBAMProtector - ok
12:29:01.0716 7112 MBAMService (43683e970f008c93c9429ef428147a54) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
12:29:01.0737 7112 MBAMService - ok
12:29:01.0796 7112 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
12:29:01.0803 7112 Mcx2Svc - ok
12:29:01.0875 7112 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys
12:29:01.0879 7112 mdmxsdk - ok
12:29:01.0923 7112 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
12:29:01.0927 7112 megasas - ok
12:29:01.0956 7112 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
12:29:01.0963 7112 MMCSS - ok
12:29:02.0024 7112 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
12:29:02.0028 7112 Modem - ok
12:29:02.0085 7112 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
12:29:02.0087 7112 monitor - ok
12:29:02.0134 7112 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
12:29:02.0138 7112 mouclass - ok
12:29:02.0173 7112 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
12:29:02.0176 7112 mouhid - ok
12:29:02.0232 7112 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
12:29:02.0237 7112 MountMgr - ok
12:29:02.0369 7112 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
12:29:02.0374 7112 MozillaMaintenance - ok
12:29:02.0461 7112 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
12:29:02.0466 7112 mpio - ok
12:29:02.0561 7112 MPRIFL (a252adb815e5186382d79e19dd7a486b) C:\Windows\system32\DRIVERS\MPRIFL.SYS
12:29:02.0565 7112 MPRIFL - ok
12:29:02.0650 7112 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
12:29:02.0655 7112 mpsdrv - ok
12:29:02.0923 7112 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
12:29:03.0005 7112 MpsSvc - ok
12:29:03.0038 7112 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
12:29:03.0042 7112 Mraid35x - ok
12:29:03.0414 7112 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
12:29:03.0430 7112 MRxDAV - ok
12:29:03.0587 7112 mrxsmb (5fe5cf325f5b02ebc60832d3440cb414) C:\Windows\system32\DRIVERS\mrxsmb.sys
12:29:03.0593 7112 mrxsmb - ok
12:29:03.0636 7112 mrxsmb10 (30b9c769446af379a2afb72b0392604d) C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:29:03.0646 7112 mrxsmb10 - ok
12:29:03.0683 7112 mrxsmb20 (fea239b3ec4877e2b7e23204af589ddf) C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:29:03.0688 7112 mrxsmb20 - ok
12:29:03.0726 7112 msahci (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys
12:29:03.0730 7112 msahci - ok
12:29:03.0834 7112 MSCSPTISRV (8e46a7bac823dd82d4fb2a34c3df4c1d) C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
12:29:03.0837 7112 MSCSPTISRV - ok
12:29:03.0882 7112 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
12:29:03.0888 7112 msdsm - ok
12:29:03.0954 7112 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
12:29:03.0964 7112 MSDTC - ok
12:29:04.0034 7112 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
12:29:04.0038 7112 Msfs - ok
12:29:04.0127 7112 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
12:29:04.0131 7112 msisadrv - ok
12:29:04.0203 7112 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
12:29:04.0212 7112 MSiSCSI - ok
12:29:04.0225 7112 msiserver - ok
12:29:04.0290 7112 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
12:29:04.0294 7112 MSKSSRV - ok
12:29:04.0353 7112 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
12:29:04.0356 7112 MSPCLOCK - ok
12:29:04.0392 7112 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
12:29:04.0534 7112 MSPQM - ok
12:29:04.0711 7112 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
12:29:04.0719 7112 MsRPC - ok
12:29:04.0814 7112 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
12:29:04.0829 7112 mssmbios - ok
12:29:04.0881 7112 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
12:29:04.0935 7112 MSTEE - ok
12:29:05.0047 7112 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
12:29:05.0051 7112 Mup - ok
12:29:05.0218 7112 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
12:29:05.0242 7112 napagent - ok
12:29:05.0311 7112 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
12:29:05.0318 7112 NativeWifiP - ok
12:29:05.0481 7112 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
12:29:05.0499 7112 NDIS - ok
12:29:05.0564 7112 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
12:29:05.0569 7112 NdisTapi - ok
12:29:05.0636 7112 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
12:29:05.0640 7112 Ndisuio - ok
12:29:05.0719 7112 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
12:29:05.0725 7112 NdisWan - ok
12:29:05.0792 7112 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
12:29:05.0797 7112 NDProxy - ok
12:29:05.0822 7112 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
12:29:05.0826 7112 NetBIOS - ok
12:29:05.0914 7112 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
12:29:05.0922 7112 netbt - ok
12:29:05.0967 7112 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
12:29:05.0973 7112 Netlogon - ok
12:29:06.0065 7112 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
12:29:06.0075 7112 Netman - ok
12:29:06.0224 7112 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:29:06.0232 7112 NetMsmqActivator - ok
12:29:06.0267 7112 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:29:06.0272 7112 NetPipeActivator - ok
12:29:06.0555 7112 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
12:29:06.0568 7112 netprofm - ok
12:29:06.0779 7112 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:29:06.0789 7112 NetTcpActivator - ok
12:29:06.0810 7112 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:29:06.0816 7112 NetTcpPortSharing - ok
12:29:07.0400 7112 NETw4v32 (25acccfc33dd448b9d3037c5e439e830) C:\Windows\system32\DRIVERS\NETw4v32.sys
12:29:07.0434 7112 NETw4v32 - ok
12:29:07.0676 7112 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
12:29:07.0680 7112 nfrd960 - ok
12:29:07.0749 7112 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
12:29:07.0759 7112 NlaSvc - ok
12:29:07.0856 7112 NPF (6623e51595c0076755c29c00846c4eb2) C:\Windows\system32\drivers\npf.sys
12:29:07.0858 7112 NPF - ok
12:29:07.0936 7112 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
12:29:07.0940 7112 Npfs - ok
12:29:08.0001 7112 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
12:29:08.0008 7112 nsi - ok
12:29:08.0039 7112 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
12:29:08.0043 7112 nsiproxy - ok
12:29:08.0644 7112 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
12:29:08.0696 7112 Ntfs - ok
12:29:08.0741 7112 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
12:29:08.0745 7112 ntrigdigi - ok
12:29:08.0792 7112 NuidFltr (cf7e041663119e09d2e118521ada9300) C:\Windows\system32\DRIVERS\NuidFltr.sys
12:29:08.0797 7112 NuidFltr - ok
12:29:08.0860 7112 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
12:29:08.0863 7112 Null - ok
12:29:08.0906 7112 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
12:29:08.0914 7112 nvraid - ok
12:29:08.0938 7112 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
12:29:08.0943 7112 nvstor - ok
12:29:08.0981 7112 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
12:29:08.0987 7112 nv_agp - ok
12:29:08.0997 7112 NwlnkFlt - ok
12:29:09.0016 7112 NwlnkFwd - ok
12:29:09.0110 7112 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
12:29:09.0113 7112 ohci1394 - ok
12:29:09.0233 7112 ose (7a56cf3e3f12e8af599963b16f50fb6a) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:29:09.0238 7112 ose - ok
12:29:09.0398 7112 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
12:29:09.0449 7112 p2pimsvc - ok
12:29:09.0471 7112 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
12:29:09.0487 7112 p2psvc - ok
12:29:09.0547 7112 PACSPTISVR (753a8f339f231d2b857e2ccd51a6e6ca) C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
12:29:09.0551 7112 PACSPTISVR - ok
12:29:09.0608 7112 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
12:29:09.0614 7112 Parport - ok
12:29:09.0844 7112 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
12:29:09.0849 7112 partmgr - ok
12:29:09.0886 7112 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
12:29:09.0889 7112 Parvdm - ok
12:29:10.0101 7112 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
12:29:10.0108 7112 PcaSvc - ok
12:29:10.0348 7112 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
12:29:10.0356 7112 pci - ok
12:29:10.0395 7112 pciide (3b1901e401473e03eb8c874271e50c26) C:\Windows\system32\drivers\pciide.sys
12:29:10.0398 7112 pciide - ok
12:29:10.0489 7112 pcmcia (3bb2244f343b610c29c98035504c9b75) C:\Windows\system32\DRIVERS\pcmcia.sys
12:29:10.0498 7112 pcmcia - ok
12:29:10.0698 7112 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
12:29:10.0713 7112 PEAUTH - ok
12:29:10.0995 7112 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
12:29:11.0050 7112 pla - ok
12:29:11.0299 7112 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
12:29:11.0315 7112 PlugPlay - ok
12:29:11.0979 7112 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
12:29:11.0997 7112 PNRPAutoReg - ok
12:29:12.0017 7112 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
12:29:12.0035 7112 PNRPsvc - ok
12:29:12.0107 7112 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
12:29:12.0121 7112 PolicyAgent - ok
12:29:12.0213 7112 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
12:29:12.0218 7112 PptpMiniport - ok
12:29:12.0260 7112 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
12:29:12.0264 7112 Processor - ok
12:29:12.0333 7112 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
12:29:12.0341 7112 ProfSvc - ok
12:29:12.0396 7112 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
12:29:12.0402 7112 ProtectedStorage - ok
12:29:12.0460 7112 ProtexisLicensing (64e413ba0c529aa40c3924bbcc4153db) C:\Windows\system32\PSIService.exe
12:29:12.0472 7112 ProtexisLicensing - ok
12:29:12.0554 7112 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
12:29:12.0559 7112 PSched - ok
12:29:12.0644 7112 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\Windows\system32\Drivers\PxHelp20.sys
12:29:12.0649 7112 PxHelp20 - ok
12:29:12.0886 7112 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
12:29:12.0918 7112 ql2300 - ok
12:29:12.0979 7112 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
12:29:13.0001 7112 ql40xx - ok
12:29:13.0337 7112 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
12:29:13.0351 7112 QWAVE - ok
12:29:13.0515 7112 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
12:29:13.0518 7112 QWAVEdrv - ok
12:29:13.0558 7112 R5U870FLx86 (9c9d24115f13af3aea05e1343a032bb1) C:\Windows\system32\Drivers\R5U870FLx86.sys
12:29:13.0564 7112 R5U870FLx86 - ok
12:29:13.0593 7112 R5U870FUx86 (18b4c879647661de37b49c2e48d65820) C:\Windows\system32\Drivers\R5U870FUx86.sys
12:29:13.0597 7112 R5U870FUx86 - ok
12:29:13.0666 7112 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
12:29:13.0727 7112 RasAcd - ok
12:29:13.0913 7112 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
12:29:13.0974 7112 RasAuto - ok
12:29:14.0100 7112 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
12:29:14.0106 7112 Rasl2tp - ok
12:29:14.0194 7112 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
12:29:14.0208 7112 RasMan - ok
12:29:14.0280 7112 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
12:29:14.0285 7112 RasPppoe - ok
12:29:14.0364 7112 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
12:29:14.0369 7112 RasSstp - ok
12:29:14.0468 7112 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
12:29:14.0478 7112 rdbss - ok
12:29:14.0519 7112 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
12:29:14.0523 7112 RDPCDD - ok
12:29:14.0592 7112 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
12:29:14.0602 7112 rdpdr - ok
12:29:14.0624 7112 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
12:29:14.0627 7112 RDPENCDD - ok
12:29:14.0677 7112 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
12:29:14.0685 7112 RDPWD - ok
12:29:14.0738 7112 regi (001b4278407f4303efc902a2b16f2453) C:\Windows\system32\drivers\regi.sys
12:29:14.0741 7112 regi - ok
12:29:14.0822 7112 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
12:29:14.0831 7112 RemoteAccess - ok
12:29:14.0917 7112 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
12:29:14.0927 7112 RemoteRegistry - ok
12:29:15.0015 7112 rpcapd (e51a8d02b4bd33eba1f7a5b76c3766ed) C:\Program Files\WinPcap\rpcapd.exe
12:29:15.0020 7112 rpcapd - ok
12:29:15.0054 7112 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
12:29:15.0207 7112 RpcLocator - ok
12:29:15.0570 7112 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
12:29:15.0586 7112 RpcSs - ok
12:29:15.0864 7112 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
12:29:15.0885 7112 rspndr - ok
12:29:15.0940 7112 RTL8169 (b7e1c523e2f7787d700766fc78e01f77) C:\Windows\system32\DRIVERS\Rtlh86.sys
12:29:15.0946 7112 RTL8169 - ok
12:29:15.0996 7112 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
12:29:16.0002 7112 SamSs - ok
12:29:16.0041 7112 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
12:29:16.0051 7112 sbp2port - ok
12:29:16.0328 7112 SBSDWSCService (794d4b48dfb6e999537c7c3947863463) C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
12:29:16.0362 7112 SBSDWSCService - ok
12:29:16.0625 7112 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
12:29:16.0636 7112 SCardSvr - ok
12:29:16.0950 7112 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
12:29:17.0043 7112 Schedule - ok
12:29:17.0260 7112 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
12:29:17.0263 7112 SCPolicySvc - ok
12:29:17.0400 7112 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
12:29:17.0410 7112 SDRSVC - ok
12:29:17.0465 7112 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
12:29:17.0469 7112 secdrv - ok
12:29:17.0538 7112 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
12:29:17.0546 7112 seclogon - ok
12:29:17.0581 7112 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
12:29:17.0589 7112 SENS - ok
12:29:17.0611 7112 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
12:29:17.0614 7112 Serenum - ok
12:29:17.0659 7112 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
12:29:17.0664 7112 Serial - ok
12:29:17.0702 7112 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
12:29:17.0708 7112 sermouse - ok
12:29:17.0794 7112 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
12:29:17.0803 7112 SessionEnv - ok
12:29:17.0833 7112 sffdisk (51cf56aa8bcc241f134b420b8f850406) C:\Windows\system32\drivers\sffdisk.sys
12:29:17.0837 7112 sffdisk - ok
12:29:17.0875 7112 sffp_mmc (96ded8b20c734ac41641ce275250e55d) C:\Windows\system32\drivers\sffp_mmc.sys
12:29:17.0879 7112 sffp_mmc - ok
12:29:17.0909 7112 sffp_sd (8b08cab1267b2c377883fc9e56981f90) C:\Windows\system32\drivers\sffp_sd.sys
12:29:17.0913 7112 sffp_sd - ok
12:29:17.0950 7112 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\DRIVERS\sfloppy.sys
12:29:17.0954 7112 sfloppy - ok
12:29:18.0025 7112 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
12:29:18.0037 7112 SharedAccess - ok
12:29:18.0118 7112 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
12:29:18.0133 7112 ShellHWDetection - ok
12:29:18.0170 7112 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
12:29:18.0179 7112 sisagp - ok
12:29:18.0207 7112 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
12:29:18.0212 7112 SiSRaid2 - ok
12:29:18.0253 7112 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
12:29:18.0259 7112 SiSRaid4 - ok
12:29:19.0348 7112 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
12:29:19.0498 7112 slsvc - ok
12:29:19.0771 7112 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
12:29:19.0782 7112 SLUINotify - ok
12:29:19.0872 7112 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
12:29:19.0877 7112 Smb - ok
12:29:19.0932 7112 SNC (db31d8989b3450569c29780e7fa98c48) C:\Windows\system32\Drivers\SonyNC.sys
12:29:19.0936 7112 SNC - ok
12:29:19.0977 7112 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
12:29:19.0985 7112 SNMPTRAP - ok
12:29:20.0193 7112 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
12:29:20.0197 7112 spldr - ok
12:29:20.0363 7112 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
12:29:20.0409 7112 Spooler - ok
12:29:20.0694 7112 SPTISRV (e3e6c96b0ef4492c3c8fd0deef4e35a1) C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
12:29:20.0699 7112 SPTISRV - ok
12:29:20.0813 7112 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
12:29:20.0840 7112 srv - ok
12:29:20.0908 7112 srv2 (a5940ca32ed206f90be9fabdf6e92de4) C:\Windows\system32\DRIVERS\srv2.sys
12:29:20.0916 7112 srv2 - ok
12:29:20.0981 7112 srvnet (37aa1d560d5fa486c4b11c2f276ada61) C:\Windows\system32\DRIVERS\srvnet.sys
12:29:20.0987 7112 srvnet - ok
12:29:21.0053 7112 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
12:29:21.0066 7112 SSDPSRV - ok
12:29:21.0159 7112 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
12:29:21.0170 7112 SstpSvc - ok
12:29:21.0252 7112 StillCam (ef70b3d22b4bffda6ea851ecb063efaa) C:\Windows\system32\DRIVERS\serscan.sys
12:29:21.0256 7112 StillCam - ok
12:29:21.0415 7112 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
12:29:21.0436 7112 stisvc - ok
12:29:21.0498 7112 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
12:29:21.0502 7112 swenum - ok
12:29:21.0610 7112 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
12:29:21.0626 7112 swprv - ok
12:29:21.0730 7112 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
12:29:21.0843 7112 Symc8xx - ok
12:29:21.0869 7112 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
12:29:21.0873 7112 Sym_hi - ok
12:29:21.0902 7112 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
12:29:21.0907 7112 Sym_u3 - ok
12:29:21.0999 7112 SynTP (99da94793332aadbb17bbb521ae56e21) C:\Windows\system32\DRIVERS\SynTP.sys
12:29:22.0008 7112 SynTP - ok
12:29:22.0548 7112 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
12:29:22.0571 7112 SysMain - ok
12:29:22.0618 7112 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
12:29:22.0627 7112 TabletInputService - ok
12:29:22.0725 7112 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
12:29:22.0739 7112 TapiSrv - ok
12:29:22.0797 7112 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
12:29:22.0805 7112 TBS - ok
12:29:23.0024 7112 Tcpip (6a10afce0b38371064be41c1fbfd3c6b) C:\Windows\system32\drivers\tcpip.sys
12:29:23.0055 7112 Tcpip - ok
12:29:23.0083 7112 Tcpip6 (6a10afce0b38371064be41c1fbfd3c6b) C:\Windows\system32\DRIVERS\tcpip.sys
12:29:23.0099 7112 Tcpip6 - ok
12:29:23.0133 7112 tcpipreg (9bf343f4c878d6ad6922b2c5a4fefe0d) C:\Windows\system32\drivers\tcpipreg.sys
12:29:23.0137 7112 tcpipreg - ok
12:29:23.0220 7112 TcUsb (5ca437a08509fb7ecf843480fc1232e2) C:\Windows\system32\Drivers\tcusb.sys
12:29:23.0224 7112 TcUsb - ok
12:29:23.0284 7112 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
12:29:23.0288 7112 TDPIPE - ok
12:29:23.0317 7112 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
12:29:23.0322 7112 TDTCP - ok
12:29:23.0436 7112 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
12:29:23.0441 7112 tdx - ok
12:29:23.0494 7112 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
12:29:23.0499 7112 TermDD - ok
12:29:23.0775 7112 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
12:29:23.0796 7112 TermService - ok
12:29:24.0020 7112 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
12:29:24.0030 7112 Themes - ok
12:29:24.0196 7112 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
12:29:24.0203 7112 THREADORDER - ok
12:29:24.0547 7112 ti21sony (909cd987b54a8179c9aee874d754721a) C:\Windows\system32\drivers\ti21sony.sys
12:29:24.0575 7112 ti21sony - ok
12:29:24.0903 7112 TivoBeacon2 (d4bb308e148bea35bdb861f2a8dec977) C:\Program Files\TiVo\Desktop\TiVoBeacon.exe
12:29:24.0962 7112 TivoBeacon2 - ok
12:29:25.0171 7112 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
12:29:25.0181 7112 TrkWks - ok
12:29:25.0266 7112 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
12:29:25.0268 7112 TrustedInstaller - ok
12:29:25.0338 7112 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
12:29:25.0343 7112 tssecsrv - ok
12:29:25.0408 7112 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
12:29:25.0412 7112 tunmp - ok
12:29:25.0635 7112 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
12:29:25.0640 7112 tunnel - ok
12:29:25.0689 7112 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
12:29:25.0694 7112 uagp35 - ok
12:29:25.0870 7112 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
12:29:25.0875 7112 udfs - ok
12:29:26.0084 7112 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
12:29:26.0113 7112 UI0Detect - ok
12:29:26.0149 7112 UIUSys - ok
12:29:26.0199 7112 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
12:29:26.0204 7112 uliagpkx - ok
12:29:26.0243 7112 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
12:29:26.0253 7112 uliahci - ok
12:29:26.0303 7112 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
12:29:26.0310 7112 UlSata - ok
12:29:26.0366 7112 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
12:29:26.0378 7112 ulsata2 - ok
12:29:26.0432 7112 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
12:29:26.0436 7112 umbus - ok
12:29:26.0540 7112 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
12:29:26.0556 7112 upnphost - ok
12:29:26.0643 7112 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\Windows\system32\Drivers\usbaapl.sys
12:29:26.0647 7112 USBAAPL - ok
12:29:26.0699 7112 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
12:29:26.0704 7112 usbaudio - ok
12:29:26.0754 7112 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
12:29:26.0760 7112 usbccgp - ok
12:29:26.0805 7112 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
12:29:26.0810 7112 usbcir - ok
12:29:26.0909 7112 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
12:29:26.0913 7112 usbehci - ok
12:29:26.0988 7112 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
12:29:26.0996 7112 usbhub - ok
12:29:27.0106 7112 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
12:29:27.0128 7112 usbohci - ok
12:29:27.0168 7112 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
12:29:27.0172 7112 usbprint - ok
12:29:27.0356 7112 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
12:29:27.0359 7112 usbscan - ok
12:29:27.0542 7112 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:29:27.0590 7112 USBSTOR - ok
12:29:27.0712 7112 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
12:29:27.0727 7112 usbuhci - ok
12:29:27.0764 7112 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
12:29:27.0772 7112 usbvideo - ok
12:29:27.0841 7112 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
12:29:27.0850 7112 UxSms - ok
12:29:28.0019 7112 VAIO Entertainment TV Device Arbitration Service (afbcd738df9de3b6d71afc704e7f27fb) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe
12:29:28.0024 7112 VAIO Entertainment TV Device Arbitration Service - ok
12:29:28.0136 7112 VAIO Event Service (8a9f18adad471402236ca931553bf79b) C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
12:29:28.0143 7112 VAIO Event Service - ok
12:29:28.0626 7112 VAIOMediaPlatform-IntegratedServer-AppServer (0a4cd617ed1f03c8b7310fc4871173a4) C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe
12:29:28.0711 7112 VAIOMediaPlatform-IntegratedServer-AppServer - ok
12:29:29.0472 7112 VAIOMediaPlatform-IntegratedServer-HTTP (56e33aaa46cba8431e72486196afb3a1) C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
12:29:29.0487 7112 VAIOMediaPlatform-IntegratedServer-HTTP - ok
12:29:30.0241 7112 VAIOMediaPlatform-IntegratedServer-UPnP (addf0e4e19bd2ff0a0b852d324fdc281) C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
12:29:30.0277 7112 VAIOMediaPlatform-IntegratedServer-UPnP - ok
12:29:30.0692 7112 VAIOMediaPlatform-UCLS-AppServer (52d4f568fe7d05ae5026b8717eeb59eb) C:\Program Files\Sony\VAIO Media Integrated Server\UCLS.exe
12:29:30.0719 7112 VAIOMediaPlatform-UCLS-AppServer - ok
12:29:30.0808 7112 VAIOMediaPlatform-UCLS-HTTP (56e33aaa46cba8431e72486196afb3a1) C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
12:29:30.0815 7112 VAIOMediaPlatform-UCLS-HTTP - ok
12:29:30.0990 7112 VAIOMediaPlatform-UCLS-UPnP (addf0e4e19bd2ff0a0b852d324fdc281) C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
12:29:31.0009 7112 VAIOMediaPlatform-UCLS-UPnP - ok
12:29:31.0219 7112 VcmIAlzMgr (7b0ee47104cf730abfb0344592de15f3) C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
12:29:31.0247 7112 VcmIAlzMgr - ok
12:29:31.0502 7112 VcmXmlIfHelper (8fd247d84d168097d7bc3e4f21f3414d) C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe
12:29:31.0510 7112 VcmXmlIfHelper - ok
12:29:31.0581 7112 Vcsw - ok
12:29:33.0074 7112 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
12:29:33.0095 7112 vds - ok
12:29:33.0216 7112 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
12:29:33.0221 7112 vga - ok
12:29:33.0279 7112 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
12:29:33.0285 7112 VgaSave - ok
12:29:33.0315 7112 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
12:29:33.0321 7112 viaagp - ok
12:29:33.0354 7112 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
12:29:33.0359 7112 ViaC7 - ok
12:29:33.0401 7112 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
12:29:33.0406 7112 viaide - ok
12:29:33.0463 7112 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
12:29:33.0468 7112 volmgr - ok
12:29:33.0946 7112 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
12:29:33.0970 7112 volmgrx - ok
12:29:34.0149 7112 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
12:29:34.0252 7112 volsnap - ok
12:29:34.0510 7112 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
12:29:34.0517 7112 vsmraid - ok
12:29:35.0148 7112 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
12:29:35.0200 7112 VSS - ok
12:29:35.0502 7112 VzCdbSvc (0b3244bab1fa37cf15fa7243504391a6) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
12:29:35.0509 7112 VzCdbSvc - ok
12:29:35.0546 7112 VzFw (938fbfa83148dadd7db0b1303dccfa00) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
12:29:35.0554 7112 VzFw - ok
12:29:36.0344 7112 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
12:29:36.0356 7112 W32Time - ok
12:29:36.0575 7112 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
12:29:36.0627 7112 WacomPen - ok
12:29:36.0673 7112 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
12:29:36.0715 7112 Wanarp - ok
12:29:36.0725 7112 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
12:29:36.0733 7112 Wanarpv6 - ok
12:29:36.0951 7112 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
12:29:37.0016 7112 wcncsvc - ok
12:29:37.0113 7112 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
12:29:37.0156 7112 WcsPlugInService - ok
12:29:37.0184 7112 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
12:29:37.0189 7112 Wd - ok
12:29:37.0479 7112 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
12:29:37.0498 7112 Wdf01000 - ok
12:29:37.0606 7112 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
12:29:37.0617 7112 WdiServiceHost - ok
12:29:37.0629 7112 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
12:29:37.0639 7112 WdiSystemHost - ok
12:29:37.0813 7112 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
12:29:37.0827 7112 WebClient - ok
12:29:38.0171 7112 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
12:29:38.0206 7112 Wecsvc - ok
12:29:38.0313 7112 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
12:29:38.0379 7112 wercplsupport - ok
12:29:38.0494 7112 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
12:29:38.0506 7112 WerSvc - ok
12:29:38.0609 7112 WimFltr (f9ad3a5e3fd7e0bdb18b8202b0fdd4e4) C:\Windows\system32\DRIVERS\wimfltr.sys
12:29:38.0644 7112 WimFltr - ok
12:29:39.0086 7112 winachsf (5a77ac34a0ffb70ce8b35b524fede9ba) C:\Windows\system32\DRIVERS\HSX_CNXT.sys
12:29:39.0129 7112 winachsf - ok
12:29:39.0373 7112 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
12:29:39.0425 7112 WinDefend - ok
12:29:39.0458 7112 WinHttpAutoProxySvc - ok
12:29:39.0737 7112 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
12:29:39.0744 7112 Winmgmt - ok
12:29:40.0324 7112 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
12:29:40.0438 7112 WinRM - ok
12:29:40.0828 7112 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
12:29:40.0853 7112 Wlansvc - ok
12:29:42.0008 7112 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:29:42.0062 7112 wlidsvc - ok
12:29:42.0861 7112 WmiAcpi (701a9f884a294327e9141d73746ee279) C:\Windows\system32\drivers\wmiacpi.sys
12:29:42.0865 7112 WmiAcpi - ok
12:29:43.0492 7112 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
12:29:43.0496 7112 wmiApSrv - ok
12:29:43.0908 7112 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
12:29:43.0925 7112 WMPNetworkSvc - ok
12:29:43.0972 7112 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
12:29:43.0983 7112 WPCSvc - ok
12:29:44.0057 7112 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
12:29:44.0067 7112 WPDBusEnum - ok
12:29:44.0187 7112 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
12:29:44.0190 7112 WpdUsb - ok
12:29:44.0480 7112 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
12:29:44.0495 7112 WPFFontCache_v0400 - ok
12:29:44.0561 7112 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
12:29:44.0563 7112 ws2ifsl - ok
12:29:44.0642 7112 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\system32\wscsvc.dll
12:29:44.0653 7112 wscsvc - ok
12:29:44.0667 7112 WSearch - ok
12:29:45.0025 7112 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
12:29:45.0063 7112 wuauserv - ok
12:29:45.0319 7112 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
12:29:45.0322 7112 WUDFRd - ok
12:29:45.0391 7112 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
12:29:45.0401 7112 wudfsvc - ok
12:29:45.0429 7112 XAudio (88af537264f2b818da15479ceeaf5d7c) C:\Windows\system32\DRIVERS\xaudio.sys
12:29:45.0432 7112 XAudio - ok
12:29:45.0536 7112 XAudioService (15a317674a08df26be65164d959e9203) C:\Windows\system32\DRIVERS\xaudio.exe
12:29:45.0544 7112 XAudioService - ok
12:29:45.0652 7112 yukonwlh (7d1f3b131d503ef43ee594b5a2b9b427) C:\Windows\system32\DRIVERS\yk60x86.sys
12:29:45.0657 7112 yukonwlh - ok
12:29:45.0763 7112 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
12:29:46.0258 7112 \Device\Harddisk0\DR0 - ok
12:29:46.0269 7112 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk2\DR2
12:29:46.0450 7112 \Device\Harddisk2\DR2 - ok
12:29:46.0458 7112 Boot (0x1200) (bea82b9b6b21eb48be6a714364559fb9) \Device\Harddisk0\DR0\Partition0
12:29:46.0461 7112 \Device\Harddisk0\DR0\Partition0 - ok
12:29:46.0475 7112 Boot (0x1200) (0cb9bed0efb767525703d844e975ca0e) \Device\Harddisk2\DR2\Partition0
12:29:46.0478 7112 \Device\Harddisk2\DR2\Partition0 - ok
12:29:46.0479 7112 ============================================================
12:29:46.0479 7112 Scan finished
12:29:46.0479 7112 ============================================================
12:29:46.0518 5064 Detected object count: 0
12:29:46.0519 5064 Actual detected object count: 0
12:32:46.0997 7292 Deinitialize success

aswMBR:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-19 15:44:06
-----------------------------
15:44:06.627 OS Version: Windows 6.0.6002 Service Pack 2
15:44:06.628 Number of processors: 2 586 0xF0D
15:44:06.633 ComputerName: PG2 UserName:
15:45:32.402 Initialize success
15:45:56.399 AVAST engine defs: 12071901
15:54:03.960 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-1
15:54:03.968 Disk 0 Vendor: TOSHIBA_MK2035GSS DK022A Size: 190782MB BusType: 3
15:54:03.977 Disk 1 \Device\Harddisk1\DR1 -> \Device\00000066
15:54:03.985 Disk 1 Vendor: ( Size: 190782MB BusType: 0
15:54:03.995 Disk 2 \Device\Harddisk2\DR2 -> \Device\00000067
15:54:04.004 Disk 2 Vendor: ( Size: 1960MB BusType: 0
15:54:04.045 Disk 0 MBR read successfully
15:54:04.055 Disk 0 MBR scan
15:54:04.072 Disk 0 Windows VISTA default MBR code
15:54:04.097 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 7661 MB offset 2048
15:54:04.130 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 183119 MB offset 15693824
15:54:04.184 Disk 0 scanning sectors +390721968
15:54:04.279 Disk 0 scanning C:\Windows\system32\drivers
15:54:27.413 Service scanning
15:55:21.795 Modules scanning
15:55:36.004 Disk 0 trace - called modules:
15:55:36.040 ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll ataport.SYS intelide.sys
15:55:36.056 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85b17620]
15:55:36.072 3 CLASSPNP.SYS[883a88b3] -> nt!IofCallDriver -> [0x851e5558]
15:55:36.089 5 acpi.sys[82c9b6bc] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-1[0x85204660]
15:55:37.750 AVAST engine scan C:\Windows
15:55:44.978 AVAST engine scan C:\Windows\system32
16:02:45.691 AVAST engine scan C:\Windows\system32\drivers
16:03:12.061 AVAST engine scan C:\Users\DanielPG
16:58:43.710 AVAST engine scan C:\ProgramData
17:11:54.841 Scan finished successfully
17:20:43.248 Disk 0 MBR has been saved successfully to "C:\Users\DanielPG\Desktop\Google Redirect Fix\MBR.dat"
17:20:43.263 The log file has been saved successfully to "C:\Users\DanielPG\Desktop\Google Redirect Fix\aswMBR.txt"


ESET:

C:\ProgramData\Tarma Installer\{C049526F-B3EB-4151-9B11-B11F00F53A96}\_Setupx.dll a variant of Win32/Adware.Yontoo.B application cleaned by deleting - quarantined


Computer 2:

TDSSKiller:

14:24:48.0750 5488 TDSS rootkit removing tool 2.7.46.0 Jul 16 2012 22:10:11
14:24:49.0265 5488 ============================================================
14:24:49.0265 5488 Current date / time: 2012/07/19 14:24:49.0265
14:24:49.0265 5488 SystemInfo:
14:24:49.0265 5488
14:24:49.0265 5488 OS Version: 5.1.2600 ServicePack: 3.0
14:24:49.0265 5488 Product type: Workstation
14:24:49.0265 5488 ComputerName: ACERNETBOOK
14:24:49.0265 5488 UserName: Daniel
14:24:49.0265 5488 Windows directory: C:\WINDOWS
14:24:49.0265 5488 System windows directory: C:\WINDOWS
14:24:49.0265 5488 Processor architecture: Intel x86
14:24:49.0265 5488 Number of processors: 2
14:24:49.0265 5488 Page size: 0x1000
14:24:49.0265 5488 Boot type: Normal boot
14:24:49.0265 5488 ============================================================
14:24:51.0609 5488 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
14:24:51.0609 5488 Drive \Device\Harddisk1\DR5 - Size: 0x3E900000 (0.98 Gb), SectorSize: 0x200, Cylinders: 0x7F, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
14:24:51.0625 5488 ============================================================
14:24:51.0625 5488 \Device\Harddisk0\DR0:
14:24:51.0625 5488 MBR partitions:
14:24:51.0625 5488 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1402800, BlocksNum 0x11616800
14:24:51.0625 5488 \Device\Harddisk1\DR5:
14:24:51.0625 5488 MBR partitions:
14:24:51.0625 5488 \Device\Harddisk1\DR5\Partition0: MBR, Type 0x6, StartLBA 0x20, BlocksNum 0x1F47E0
14:24:51.0625 5488 ============================================================
14:24:51.0718 5488 C: <-> \Device\Harddisk0\DR0\Partition0
14:24:51.0718 5488 ============================================================
14:24:51.0718 5488 Initialize success
14:24:51.0718 5488 ============================================================
14:25:01.0203 2208 ============================================================
14:25:01.0203 2208 Scan started
14:25:01.0203 2208 Mode: Manual; TDLFS;
14:25:01.0203 2208 ============================================================
14:25:01.0593 2208 Abiosdsk - ok
14:25:01.0656 2208 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
14:25:01.0703 2208 abp480n5 - ok
14:25:01.0781 2208 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
14:25:01.0828 2208 ACPI - ok
14:25:01.0843 2208 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
14:25:01.0843 2208 ACPIEC - ok
14:25:01.0875 2208 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
14:25:01.0921 2208 adpu160m - ok
14:25:01.0968 2208 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
14:25:01.0968 2208 aec - ok
14:25:02.0046 2208 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
14:25:02.0718 2208 AFD - ok
14:25:02.0781 2208 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
14:25:02.0828 2208 agp440 - ok
14:25:02.0859 2208 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
14:25:02.0875 2208 agpCPQ - ok
14:25:02.0906 2208 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
14:25:02.0921 2208 Aha154x - ok
14:25:02.0968 2208 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
14:25:02.0984 2208 aic78u2 - ok
14:25:03.0015 2208 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
14:25:03.0031 2208 aic78xx - ok
14:25:03.0078 2208 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
14:25:03.0109 2208 Alerter - ok
14:25:03.0156 2208 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
14:25:03.0156 2208 ALG - ok
14:25:03.0187 2208 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
14:25:03.0203 2208 AliIde - ok
14:25:03.0234 2208 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
14:25:03.0234 2208 alim1541 - ok
14:25:03.0484 2208 Ambfilt (f6af59d6eee5e1c304f7f73706ad11d8) C:\WINDOWS\system32\drivers\Ambfilt.sys
14:25:03.0609 2208 Ambfilt - ok
14:25:03.0781 2208 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
14:25:03.0828 2208 amdagp - ok
14:25:03.0875 2208 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
14:25:03.0921 2208 amsint - ok
14:25:04.0015 2208 Apple Mobile Device (018857ead9a077a56aedfc0e5ef7a24a) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:25:04.0015 2208 Apple Mobile Device - ok
14:25:04.0046 2208 AppMgmt - ok
14:25:04.0281 2208 AR5416 (41074707ba49d02e240c7b960217aabe) C:\WINDOWS\system32\DRIVERS\athw.sys
14:25:04.0343 2208 AR5416 - ok
14:25:04.0484 2208 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
14:25:04.0515 2208 asc - ok
14:25:04.0562 2208 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
14:25:04.0593 2208 asc3350p - ok
14:25:04.0625 2208 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
14:25:04.0640 2208 asc3550 - ok
14:25:04.0750 2208 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
14:25:04.0781 2208 aspnet_state - ok
14:25:04.0812 2208 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
14:25:04.0843 2208 AsyncMac - ok
14:25:04.0890 2208 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
14:25:04.0906 2208 atapi - ok
14:25:04.0906 2208 Atdisk - ok
14:25:04.0937 2208 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
14:25:04.0968 2208 Atmarpc - ok
14:25:05.0000 2208 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
14:25:05.0000 2208 AudioSrv - ok
14:25:05.0031 2208 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
14:25:05.0078 2208 audstub - ok
14:25:05.0750 2208 AVGIDSAgent (d67719bcfde5798f5c30d14efed3bcaf) C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
14:25:05.0968 2208 AVGIDSAgent - ok
14:25:06.0234 2208 AVGIDSDriver (1074f787080068c71303b61fae7e7ca4) C:\WINDOWS\system32\DRIVERS\avgidsdriverx.sys
14:25:06.0281 2208 AVGIDSDriver - ok
14:25:06.0312 2208 AVGIDSFilter (61a7e0b02f82cff3db2445bbe50b3589) C:\WINDOWS\system32\DRIVERS\avgidsfilterx.sys
14:25:06.0328 2208 AVGIDSFilter - ok
14:25:06.0359 2208 AVGIDSHX (d63d83659eedf60b3a3e620281a888e5) C:\WINDOWS\system32\DRIVERS\avgidshx.sys
14:25:06.0390 2208 AVGIDSHX - ok
14:25:06.0437 2208 AVGIDSShim (baf975b72062f53d327788e99d64197e) C:\WINDOWS\system32\DRIVERS\avgidsshimx.sys
14:25:06.0437 2208 AVGIDSShim - ok
14:25:06.0515 2208 Avgldx86 (dda6a2a18841e4c9172bb85958b8d948) C:\WINDOWS\system32\DRIVERS\avgldx86.sys
14:25:06.0546 2208 Avgldx86 - ok
14:25:06.0578 2208 Avgmfx86 (ccdd61545aaea265977e4b1efdc74e8c) C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
14:25:06.0578 2208 Avgmfx86 - ok
14:25:06.0609 2208 Avgrkx86 (1fd90b28d2c3100bf4500199c8ad6358) C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
14:25:06.0625 2208 Avgrkx86 - ok
14:25:06.0703 2208 Avgtdix (1263f2554ace925c237a40b4c568d815) C:\WINDOWS\system32\DRIVERS\avgtdix.sys
14:25:07.0218 2208 Avgtdix - ok
14:25:07.0359 2208 avgwd (ea1145debcd508fd25bd1e95c4346929) C:\Program Files\AVG\AVG2012\avgwdsvc.exe
14:25:07.0375 2208 avgwd - ok
14:25:07.0421 2208 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
14:25:07.0453 2208 Beep - ok
14:25:07.0531 2208 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
14:25:07.0546 2208 BITS - ok
14:25:07.0625 2208 Bonjour Service (f832f1505ad8b83474bd9a5b1b985e01) C:\Program Files\Bonjour\mDNSResponder.exe
14:25:07.0656 2208 Bonjour Service - ok
14:25:07.0703 2208 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
14:25:07.0718 2208 Browser - ok
14:25:07.0750 2208 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
14:25:07.0765 2208 cbidf - ok
14:25:07.0781 2208 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
14:25:07.0781 2208 cbidf2k - ok
14:25:07.0812 2208 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
14:25:07.0859 2208 CCDECODE - ok
14:25:07.0875 2208 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
14:25:07.0890 2208 cd20xrnt - ok
14:25:07.0921 2208 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
14:25:07.0937 2208 Cdaudio - ok
14:25:07.0984 2208 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
14:25:07.0984 2208 Cdfs - ok
14:25:08.0031 2208 Cdrom (4b0a100eaf5c49ef3cca8c641431eacc) C:\WINDOWS\system32\DRIVERS\cdrom.sys
14:25:08.0062 2208 Cdrom - ok
14:25:08.0078 2208 Changer - ok
14:25:08.0109 2208 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
14:25:08.0156 2208 CiSvc - ok
14:25:08.0171 2208 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
14:25:08.0187 2208 ClipSrv - ok
14:25:08.0265 2208 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:25:08.0281 2208 clr_optimization_v2.0.50727_32 - ok
14:25:08.0328 2208 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
14:25:08.0359 2208 CmBatt - ok
14:25:08.0390 2208 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys
14:25:08.0406 2208 CmdIde - ok
14:25:08.0453 2208 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
14:25:08.0468 2208 Compbatt - ok
14:25:08.0484 2208 COMSysApp - ok
14:25:08.0515 2208 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
14:25:08.0546 2208 Cpqarray - ok
14:25:08.0593 2208 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
14:25:08.0593 2208 CryptSvc - ok
14:25:08.0656 2208 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
14:25:08.0687 2208 dac2w2k - ok
14:25:08.0718 2208 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
14:25:08.0718 2208 dac960nt - ok
14:25:08.0812 2208 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
14:25:08.0843 2208 DcomLaunch - ok
14:25:08.0890 2208 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
14:25:08.0937 2208 Dhcp - ok
14:25:08.0984 2208 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
14:25:08.0984 2208 Disk - ok
14:25:09.0031 2208 DKbFltr (66c8d2405d9acc629125782de9538f6e) C:\WINDOWS\system32\DRIVERS\DKbFltr.sys
14:25:09.0062 2208 DKbFltr - ok
14:25:09.0078 2208 dmadmin - ok
14:25:09.0218 2208 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
14:25:09.0281 2208 dmboot - ok
14:25:09.0312 2208 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
14:25:09.0312 2208 dmio - ok
14:25:09.0343 2208 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
14:25:09.0343 2208 dmload - ok
14:25:09.0375 2208 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
14:25:09.0390 2208 dmserver - ok
14:25:09.0421 2208 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
14:25:09.0421 2208 DMusic - ok
14:25:09.0484 2208 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
14:25:09.0484 2208 Dnscache - ok
14:25:09.0515 2208 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
14:25:09.0531 2208 Dot3svc - ok
14:25:09.0562 2208 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
14:25:09.0593 2208 dpti2o - ok
14:25:09.0671 2208 DritekPortIO - ok
14:25:09.0687 2208 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
14:25:09.0687 2208 drmkaud - ok
14:25:09.0734 2208 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
14:25:09.0734 2208 EapHost - ok
14:25:09.0765 2208 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
14:25:09.0765 2208 ERSvc - ok
14:25:09.0828 2208 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
14:25:09.0843 2208 Eventlog - ok
14:25:09.0906 2208 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\system32\es.dll
14:25:09.0921 2208 EventSystem - ok
14:25:09.0953 2208 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
14:25:09.0968 2208 Fastfat - ok
14:25:10.0031 2208 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
14:25:10.0046 2208 FastUserSwitchingCompatibility - ok
14:25:10.0093 2208 Fax (e97d6a8684466df94ff3bc24fb787a07) C:\WINDOWS\system32\fxssvc.exe
14:25:10.0125 2208 Fax - ok
14:25:10.0171 2208 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
14:25:10.0203 2208 Fdc - ok
14:25:10.0250 2208 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
14:25:10.0250 2208 Fips - ok
14:25:10.0265 2208 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
14:25:10.0265 2208 Flpydisk - ok
14:25:10.0296 2208 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
14:25:10.0312 2208 FltMgr - ok
14:25:10.0437 2208 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
14:25:10.0453 2208 FontCache3.0.0.0 - ok
14:25:10.0468 2208 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
14:25:10.0500 2208 Fs_Rec - ok
14:25:10.0531 2208 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
14:25:10.0562 2208 Ftdisk - ok
14:25:10.0718 2208 GameConsoleService (c44d560e441f091ea3b72f778ec60de2) C:\Program Files\Acer Games\Acer Game Console\GameConsoleService.exe
14:25:10.0781 2208 GameConsoleService - ok
14:25:10.0828 2208 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
14:25:10.0859 2208 GEARAspiWDM - ok
14:25:10.0906 2208 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
14:25:10.0921 2208 Gpc - ok
14:25:11.0015 2208 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
14:25:11.0046 2208 gupdate - ok
14:25:11.0062 2208 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
14:25:11.0078 2208 gupdatem - ok
14:25:11.0125 2208 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
14:25:11.0140 2208 HDAudBus - ok
14:25:11.0218 2208 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
14:25:11.0234 2208 helpsvc - ok
14:25:11.0234 2208 HidServ - ok
14:25:11.0296 2208 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
14:25:11.0312 2208 HidUsb - ok
14:25:11.0359 2208 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
14:25:11.0406 2208 hkmsvc - ok
14:25:11.0437 2208 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
14:25:11.0437 2208 hpn - ok
14:25:11.0515 2208 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
14:25:11.0531 2208 HTTP - ok
14:25:11.0562 2208 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
14:25:11.0593 2208 HTTPFilter - ok
14:25:11.0625 2208 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
14:25:11.0640 2208 i2omgmt - ok
14:25:11.0671 2208 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
14:25:11.0703 2208 i2omp - ok
14:25:11.0750 2208 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
14:25:11.0765 2208 i8042prt - ok
14:25:11.0890 2208 IAANTMON (3ad7614c487c948add435662265750fb) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
14:25:11.0906 2208 IAANTMON - ok
14:25:12.0625 2208 ialm (48846b31be5a4fa662ccfde7a1ba86b9) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
14:25:12.0859 2208 ialm - ok
14:25:13.0078 2208 iaStor (db0cc620b27a928d968c1a1e9cd9cb87) C:\WINDOWS\system32\drivers\iaStor.sys
14:25:13.0093 2208 iaStor - ok
14:25:13.0312 2208 idsvc (c01ac32dc5c03076cfb852cb5da5229c) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
14:25:13.0343 2208 idsvc - ok
14:25:13.0375 2208 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
14:25:13.0406 2208 Imapi - ok
14:25:13.0468 2208 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe
14:25:13.0515 2208 ImapiService - ok
14:25:13.0578 2208 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
14:25:13.0578 2208 ini910u - ok
14:25:14.0312 2208 IntcAzAudAddService (3fa02c6e3e9ebe8523a2d4e51d0ece1f) C:\WINDOWS\system32\drivers\RtkHDAud.sys
14:25:14.0578 2208 IntcAzAudAddService - ok
14:25:14.0765 2208 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\system32\DRIVERS\intelide.sys
14:25:14.0796 2208 IntelIde - ok
14:25:14.0843 2208 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
14:25:14.0843 2208 intelppm - ok
14:25:14.0875 2208 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
14:25:14.0875 2208 Ip6Fw - ok
14:25:14.0906 2208 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
14:25:14.0921 2208 IpFilterDriver - ok
14:25:14.0968 2208 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
14:25:14.0968 2208 IpInIp - ok
14:25:15.0046 2208 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
14:25:15.0062 2208 IpNat - ok
14:25:15.0234 2208 iPod Service (6e27978a4755f4789f912f5f49392f7c) C:\Program Files\iPod\bin\iPodService.exe
14:25:15.0281 2208 iPod Service - ok
14:25:15.0312 2208 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
14:25:15.0343 2208 IPSec - ok
14:25:15.0359 2208 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
14:25:15.0406 2208 IRENUM - ok
14:25:15.0437 2208 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
14:25:15.0484 2208 isapnp - ok
14:25:15.0593 2208 JavaQuickStarterService (d9b1e929f2464d4c23fa9cb47df4a1d4) C:\Program Files\Java\jre7\bin\jqs.exe
14:25:15.0609 2208 JavaQuickStarterService - ok
14:25:15.0671 2208 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
14:25:15.0703 2208 Kbdclass - ok
14:25:15.0750 2208 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
14:25:15.0765 2208 kmixer - ok
14:25:15.0796 2208 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
14:25:15.0859 2208 KSecDD - ok
14:25:15.0890 2208 L1c (6c8658587e91ea25b0fd2e71781ad228) C:\WINDOWS\system32\DRIVERS\l1c51x86.sys
14:25:15.0906 2208 L1c - ok
14:25:15.0968 2208 LanmanServer (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
14:25:16.0031 2208 LanmanServer - ok
14:25:16.0093 2208 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
14:25:16.0125 2208 lanmanworkstation - ok
14:25:16.0140 2208 lbrtfdc - ok
14:25:16.0218 2208 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
14:25:16.0218 2208 LmHosts - ok
14:25:16.0281 2208 M3000Srv (73fd60fda3ff60f0666e4614e93f0aaa) C:\WINDOWS\system32\Drivers\M3000KNT.sys
14:25:16.0359 2208 M3000Srv - ok
14:25:16.0484 2208 McComponentHostService (22a7776c5d8eb5930edf9c8dd0884259) C:\Program Files\McAfee Security Scan\3.0.207\McCHSvc.exe
14:25:16.0515 2208 McComponentHostService - ok
14:25:16.0593 2208 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
14:25:16.0609 2208 Messenger - ok
14:25:16.0625 2208 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
14:25:16.0671 2208 mnmdd - ok
14:25:16.0718 2208 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe
14:25:16.0718 2208 mnmsrvc - ok
14:25:16.0765 2208 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
14:25:16.0781 2208 Modem - ok
14:25:17.0031 2208 Monfilt (9fa7207d1b1adead88ae8eed9cdbbaa5) C:\WINDOWS\system32\drivers\Monfilt.sys
14:25:17.0109 2208 Monfilt - ok
14:25:17.0281 2208 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
14:25:17.0281 2208 Mouclass - ok
14:25:17.0328 2208 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
14:25:17.0359 2208 mouhid - ok
14:25:17.0406 2208 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
14:25:17.0421 2208 MountMgr - ok
14:25:17.0515 2208 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
14:25:17.0531 2208 MozillaMaintenance - ok
14:25:17.0562 2208 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
14:25:17.0578 2208 mraid35x - ok
14:25:17.0593 2208 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
14:25:17.0609 2208 MRxDAV - ok
14:25:17.0687 2208 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
14:25:17.0734 2208 MRxSmb - ok
14:25:17.0781 2208 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe
14:25:17.0781 2208 MSDTC - ok
14:25:17.0796 2208 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
14:25:17.0812 2208 Msfs - ok
14:25:17.0812 2208 MSIServer - ok
14:25:17.0859 2208 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
14:25:17.0859 2208 MSKSSRV - ok
14:25:17.0890 2208 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
14:25:17.0921 2208 MSPCLOCK - ok
14:25:17.0937 2208 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
14:25:17.0953 2208 MSPQM - ok
14:25:17.0968 2208 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
14:25:17.0968 2208 mssmbios - ok
14:25:18.0000 2208 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
14:25:18.0000 2208 MSTEE - ok
14:25:18.0062 2208 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
14:25:18.0437 2208 Mup - ok
14:25:18.0468 2208 mwlPSDFilter (a4a79414483ecf56eb1664a709b4d9a5) C:\WINDOWS\system32\DRIVERS\mwlPSDFilter.sys
14:25:18.0750 2208 mwlPSDFilter - ok
14:25:18.0796 2208 mwlPSDNServ (2b535201b7ebf06653099c318066e036) C:\WINDOWS\system32\DRIVERS\mwlPSDNServ.sys
14:25:19.0171 2208 mwlPSDNServ - ok
14:25:19.0234 2208 mwlPSDVDisk (8edba480be33b8b3f6bbb7a4ecb21454) C:\WINDOWS\system32\DRIVERS\mwlPSDVDisk.sys
14:25:19.0625 2208 mwlPSDVDisk - ok
14:25:19.0734 2208 MWLService (2f139207f618ec2933830227eeffddb4) C:\Program Files\EgisTec\MyWinLocker 3\x86\\MWLService.exe
14:25:19.0765 2208 MWLService - ok
14:25:19.0796 2208 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
14:25:19.0812 2208 NABTSFEC - ok
14:25:19.0875 2208 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
14:25:19.0937 2208 napagent - ok
14:25:20.0015 2208 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
14:25:20.0078 2208 NDIS - ok
14:25:20.0109 2208 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
14:25:20.0109 2208 NdisIP - ok
14:25:20.0140 2208 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
14:25:20.0156 2208 NdisTapi - ok
14:25:20.0187 2208 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
14:25:20.0203 2208 Ndisuio - ok
14:25:20.0218 2208 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
14:25:20.0234 2208 NdisWan - ok
14:25:20.0281 2208 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
14:25:20.0312 2208 NDProxy - ok
14:25:20.0343 2208 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
14:25:20.0343 2208 NetBIOS - ok
14:25:20.0375 2208 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
14:25:20.0437 2208 NetBT - ok
14:25:20.0484 2208 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
14:25:20.0500 2208 NetDDE - ok
14:25:20.0500 2208 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
14:25:20.0515 2208 NetDDEdsdm - ok
14:25:20.0562 2208 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
14:25:20.0562 2208 Netlogon - ok
14:25:20.0593 2208 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
14:25:20.0609 2208 Netman - ok
14:25:20.0734 2208 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:25:20.0765 2208 NetTcpPortSharing - ok
14:25:20.0828 2208 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
14:25:20.0843 2208 Nla - ok
14:25:20.0890 2208 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
14:25:20.0937 2208 Npfs - ok
14:25:21.0015 2208 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
14:25:21.0093 2208 Ntfs - ok
14:25:21.0109 2208 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
14:25:21.0109 2208 NtLmSsp - ok
14:25:21.0187 2208 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
14:25:21.0218 2208 NtmsSvc - ok
14:25:21.0234 2208 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
14:25:21.0234 2208 Null - ok
14:25:21.0265 2208 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
14:25:21.0265 2208 NwlnkFlt - ok
14:25:21.0281 2208 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
14:25:21.0281 2208 NwlnkFwd - ok
14:25:21.0421 2208 odserv (1f0e05dff4f5a833168e49be1256f002) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
14:25:21.0453 2208 odserv - ok
14:25:21.0500 2208 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:25:21.0515 2208 ose - ok
14:25:21.0562 2208 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys
14:25:21.0562 2208 Parport - ok
14:25:21.0578 2208 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
14:25:21.0609 2208 PartMgr - ok
14:25:21.0640 2208 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
14:25:21.0640 2208 ParVdm - ok
14:25:21.0656 2208 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
14:25:21.0656 2208 PCI - ok
14:25:21.0671 2208 PCIDump - ok
14:25:21.0687 2208 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
14:25:21.0703 2208 PCIIde - ok
14:25:21.0734 2208 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
14:25:21.0765 2208 Pcmcia - ok
14:25:21.0781 2208 PDCOMP - ok
14:25:21.0781 2208 PDFRAME - ok
14:25:21.0796 2208 PDRELI - ok
14:25:21.0812 2208 PDRFRAME - ok
14:25:21.0843 2208 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
14:25:21.0843 2208 perc2 - ok
14:25:21.0859 2208 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
14:25:21.0875 2208 perc2hib - ok
14:25:21.0968 2208 PhilCam8116 (a3a4d50051ddbcf390e5918c43c167ef) C:\WINDOWS\system32\DRIVERS\CamDrL21.sys
14:25:22.0328 2208 PhilCam8116 - ok
14:25:22.0390 2208 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
14:25:22.0390 2208 PlugPlay - ok
14:25:22.0453 2208 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
14:25:22.0453 2208 PolicyAgent - ok
14:25:22.0484 2208 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
14:25:22.0484 2208 PptpMiniport - ok
14:25:22.0484 2208 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
14:25:22.0500 2208 ProtectedStorage - ok
14:25:22.0515 2208 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
14:25:22.0515 2208 PSched - ok
14:25:22.0515 2208 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
14:25:22.0562 2208 Ptilink - ok
14:25:22.0593 2208 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
14:25:22.0593 2208 ql1080 - ok
14:25:22.0609 2208 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
14:25:22.0609 2208 Ql10wnt - ok
14:25:22.0625 2208 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
14:25:22.0640 2208 ql12160 - ok
14:25:22.0656 2208 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
14:25:22.0671 2208 ql1240 - ok
14:25:22.0687 2208 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
14:25:22.0687 2208 ql1280 - ok
14:25:22.0718 2208 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
14:25:22.0718 2208 RasAcd - ok
14:25:22.0781 2208 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
14:25:22.0796 2208 RasAuto - ok
14:25:22.0828 2208 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
14:25:22.0828 2208 Rasl2tp - ok
14:25:22.0875 2208 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
14:25:22.0890 2208 RasMan - ok
14:25:22.0906 2208 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
14:25:22.0937 2208 RasPppoe - ok
14:25:22.0968 2208 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
14:25:22.0968 2208 Raspti - ok
14:25:23.0000 2208 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
14:25:23.0062 2208 Rdbss - ok
14:25:23.0093 2208 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
14:25:23.0093 2208 RDPCDD - ok
14:25:23.0140 2208 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
14:25:23.0171 2208 rdpdr - ok
14:25:23.0218 2208 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
14:25:23.0234 2208 RDPWD - ok
14:25:23.0281 2208 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
14:25:23.0296 2208 RDSessMgr - ok
14:25:23.0343 2208 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
14:25:23.0390 2208 redbook - ok
14:25:23.0421 2208 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
14:25:23.0421 2208 RemoteAccess - ok
14:25:23.0453 2208 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe
14:25:23.0453 2208 RpcLocator - ok
14:25:23.0531 2208 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
14:25:23.0546 2208 RpcSs - ok
14:25:23.0593 2208 RSUSBSTOR (7ffa9821b1c5e0e0667e0a2685cfb89f) C:\WINDOWS\system32\Drivers\RtsUStor.sys
14:25:23.0656 2208 RSUSBSTOR - ok
14:25:23.0703 2208 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
14:25:23.0703 2208 RSVP - ok
14:25:23.0718 2208 Rts516xIR - ok
14:25:23.0750 2208 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
14:25:23.0750 2208 SamSs - ok
14:25:23.0765 2208 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
14:25:23.0781 2208 SCardSvr - ok
14:25:23.0812 2208 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
14:25:23.0828 2208 Schedule - ok
14:25:23.0875 2208 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
14:25:23.0890 2208 Secdrv - ok
14:25:23.0906 2208 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
14:25:23.0921 2208 seclogon - ok
14:25:23.0921 2208 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
14:25:23.0937 2208 SENS - ok
14:25:23.0968 2208 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\drivers\Serial.sys
14:25:23.0968 2208 Serial - ok
14:25:24.0015 2208 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
14:25:24.0046 2208 Sfloppy - ok
14:25:24.0125 2208 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
14:25:24.0140 2208 SharedAccess - ok
14:25:24.0203 2208 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
14:25:24.0203 2208 ShellHWDetection - ok
14:25:24.0218 2208 Simbad - ok
14:25:24.0265 2208 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
14:25:24.0281 2208 sisagp - ok
14:25:24.0296 2208 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
14:25:24.0296 2208 SLIP - ok
14:25:24.0328 2208 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
14:25:24.0390 2208 Sparrow - ok
14:25:24.0406 2208 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
14:25:24.0406 2208 splitter - ok
14:25:24.0468 2208 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
14:25:24.0468 2208 Spooler - ok
14:25:24.0500 2208 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
14:25:24.0500 2208 sr - ok
14:25:24.0562 2208 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll
14:25:24.0578 2208 srservice - ok
14:25:24.0640 2208 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
14:25:24.0640 2208 Srv - ok
14:25:24.0671 2208 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
14:25:24.0687 2208 SSDPSRV - ok
14:25:24.0734 2208 StillCam (a9573045baa16eab9b1085205b82f1ed) C:\WINDOWS\system32\DRIVERS\serscan.sys
14:25:24.0734 2208 StillCam - ok
14:25:24.0812 2208 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
14:25:24.0828 2208 stisvc - ok
14:25:24.0843 2208 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
14:25:24.0859 2208 streamip - ok
14:25:24.0859 2208 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
14:25:24.0906 2208 swenum - ok
14:25:24.0937 2208 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
14:25:24.0937 2208 swmidi - ok
14:25:24.0953 2208 SwPrv - ok
14:25:24.0984 2208 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
14:25:24.0984 2208 symc810 - ok
14:25:25.0015 2208 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
14:25:25.0015 2208 symc8xx - ok
14:25:25.0046 2208 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
14:25:25.0062 2208 sym_hi - ok
14:25:25.0093 2208 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
14:25:25.0093 2208 sym_u3 - ok
14:25:25.0156 2208 SynTP (5c3e900f41426a372de60675afc8aa07) C:\WINDOWS\system32\DRIVERS\SynTP.sys
14:25:25.0203 2208 SynTP - ok
14:25:25.0234 2208 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
14:25:25.0234 2208 sysaudio - ok
14:25:25.0296 2208 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
14:25:25.0312 2208 SysmonLog - ok
14:25:25.0359 2208 tap0901 (1e89de7a4fb7a854ebb241d0aa8996dd) C:\WINDOWS\system32\DRIVERS\tap0901.sys
14:25:25.0812 2208 tap0901 - ok
14:25:25.0859 2208 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
14:25:25.0875 2208 TapiSrv - ok
14:25:25.0968 2208 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
14:25:26.0000 2208 Tcpip - ok
14:25:26.0031 2208 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
14:25:26.0062 2208 TDPIPE - ok
14:25:26.0078 2208 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
14:25:26.0093 2208 TDTCP - ok
14:25:26.0125 2208 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
14:25:26.0125 2208 TermDD - ok
14:25:26.0187 2208 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
14:25:26.0218 2208 TermService - ok
14:25:26.0296 2208 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
14:25:26.0296 2208 Themes - ok
14:25:26.0328 2208 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys
14:25:26.0343 2208 TosIde - ok
14:25:26.0359 2208 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
14:25:26.0359 2208 TrkWks - ok
14:25:26.0406 2208 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
14:25:26.0421 2208 Udfs - ok
14:25:26.0437 2208 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
14:25:26.0453 2208 ultra - ok
14:25:26.0468 2208 UMWdf (c81b8635dee0d3ef5f64b3dd643023a5) C:\WINDOWS\system32\wdfmgr.exe
14:25:26.0484 2208 UMWdf - ok
14:25:26.0515 2208 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
14:25:26.0546 2208 Update - ok
14:25:26.0656 2208 Updater Service (70dde3a86dbeb1d6c3c30ad687b1877a) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
14:25:26.0671 2208 Updater Service - ok
14:25:26.0718 2208 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
14:25:26.0750 2208 upnphost - ok
14:25:26.0781 2208 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
14:25:26.0796 2208 UPS - ok
14:25:26.0859 2208 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
14:25:26.0859 2208 usbaudio - ok
14:25:26.0890 2208 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
14:25:26.0906 2208 usbccgp - ok
14:25:26.0906 2208 USBCCID - ok
14:25:26.0968 2208 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
14:25:27.0000 2208 usbehci - ok
14:25:27.0015 2208 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
14:25:27.0015 2208 usbhub - ok
14:25:27.0062 2208 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
14:25:27.0062 2208 usbprint - ok
14:25:27.0078 2208 usbstor (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
14:25:27.0093 2208 usbstor - ok
14:25:27.0109 2208 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
14:25:27.0125 2208 usbuhci - ok
14:25:27.0171 2208 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
14:25:27.0187 2208 usbvideo - ok
14:25:27.0218 2208 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
14:25:27.0218 2208 VgaSave - ok
14:25:27.0250 2208 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
14:25:27.0296 2208 viaagp - ok
14:25:27.0312 2208 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
14:25:27.0312 2208 ViaIde - ok
14:25:27.0343 2208 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
14:25:27.0359 2208 VolSnap - ok
14:25:27.0421 2208 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
14:25:27.0453 2208 VSS - ok
14:25:27.0500 2208 W32Time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll
14:25:27.0515 2208 W32Time - ok
14:25:27.0546 2208 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
14:25:27.0578 2208 Wanarp - ok
14:25:27.0671 2208 Wdf01000 (bbcfeab7e871cddac2d397ee7fa91fdc) C:\WINDOWS\system32\Drivers\wdf01000.sys
14:25:27.0703 2208 Wdf01000 - ok
14:25:27.0718 2208 WDICA - ok
14:25:27.0750 2208 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
14:25:27.0750 2208 wdmaud - ok
14:25:27.0781 2208 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
14:25:27.0796 2208 WebClient - ok
14:25:27.0875 2208 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
14:25:27.0890 2208 winmgmt - ok
14:25:27.0937 2208 WmdmPmSN (a477391b7a8b0a0daabadb17cf533a4b) C:\WINDOWS\system32\MsPMSNSv.dll
14:25:27.0984 2208 WmdmPmSN - ok
14:25:28.0015 2208 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
14:25:28.0031 2208 WmiAcpi - ok
14:25:28.0078 2208 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe
14:25:28.0109 2208 WmiApSrv - ok
14:25:28.0187 2208 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll
14:25:28.0203 2208 wscsvc - ok
14:25:28.0250 2208 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
14:25:28.0250 2208 WSTCODEC - ok
14:25:28.0343 2208 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
14:25:28.0359 2208 WZCSVC - ok
14:25:28.0406 2208 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
14:25:28.0406 2208 xmlprov - ok
14:25:28.0453 2208 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
14:25:29.0531 2208 \Device\Harddisk0\DR0 - ok
14:25:29.0546 2208 MBR (0x1B8) (e5fa06aca0d60ba9c870d0ef3d9898c9) \Device\Harddisk1\DR5
14:25:40.0125 2208 \Device\Harddisk1\DR5 - ok
14:25:40.0140 2208 Boot (0x1200) (44e57b1eb709d016ee6942af9ae49733) \Device\Harddisk0\DR0\Partition0
14:25:40.0156 2208 \Device\Harddisk0\DR0\Partition0 - ok
14:25:40.0156 2208 Boot (0x1200) (27ae4faca1fd4eb68910f450c1174c5e) \Device\Harddisk1\DR5\Partition0
14:25:40.0171 2208 \Device\Harddisk1\DR5\Partition0 - ok
14:25:40.0171 2208 ============================================================
14:25:40.0171 2208 Scan finished
14:25:40.0171 2208 ============================================================
14:25:40.0203 4480 Detected object count: 0
14:25:40.0203 4480 Actual detected object count: 0
14:25:48.0687 4544 Deinitialize success

aswMBR:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-19 14:38:39
-----------------------------
14:38:39.125 OS Version: Windows 5.1.2600 Service Pack 3
14:38:39.125 Number of processors: 2 586 0x1C02
14:38:39.125 ComputerName: ACERNETBOOK UserName: Daniel
14:38:40.218 Initialize success
14:43:29.062 AVAST engine defs: 12071901
14:44:09.890 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
14:44:09.906 Disk 0 Vendor: WDC_WD16 11.0 Size: 152627MB BusType: 3
14:44:09.984 Disk 0 MBR read successfully
14:44:09.984 Disk 0 MBR scan
14:44:10.156 Disk 0 Windows 7 default MBR code
14:44:10.234 Disk 0 Partition 1 00 12 Compaq diag NTFS 10244 MB offset 63
14:44:10.281 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 142381 MB offset 20981760
14:44:10.390 Disk 0 scanning sectors +312578048
14:44:10.750 Disk 0 scanning C:\WINDOWS\system32\drivers
14:44:56.156 Service scanning
14:46:36.171 Modules scanning
14:46:53.000 Disk 0 trace - called modules:
14:46:53.062 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll iaStor.sys
14:46:53.078 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8637d9c0]
14:46:53.093 3 CLASSPNP.SYS[f767dfd7] -> nt!IofCallDriver -> \Device\0000006a[0x863742c8]
14:46:53.125 5 ACPI.sys[f75f4620] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0x86373030]
14:46:54.062 AVAST engine scan C:\WINDOWS
14:47:04.390 AVAST engine scan C:\WINDOWS\system32
14:51:21.656 AVAST engine scan C:\WINDOWS\system32\drivers
14:51:43.625 AVAST engine scan C:\Documents and Settings\Daniel
14:54:38.640 File: C:\Documents and Settings\Daniel\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\24\1f473d8-78c3844a **INFECTED** Win32:MalOb-IS [Cryp]
14:54:39.937 File: C:\Documents and Settings\Daniel\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\36\4c1b1d24-532dae5c **INFECTED** Win32:Sirefef-EA [Trj]
14:54:43.031 File: C:\Documents and Settings\Daniel\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\51\66fed433-6c23cda1 **INFECTED** Win32:MalOb-GR [Cryp]
14:55:11.687 AVAST engine scan C:\Documents and Settings\All Users
14:59:51.843 Scan finished successfully
15:24:59.875 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Daniel\Desktop\MBR.dat"
15:24:59.890 The log file has been saved successfully to "C:\Documents and Settings\Daniel\Desktop\aswMBR.txt"

I cleared the three infected threats.

ESET came clear.

I still get redirects in both computers.

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:45 AM

Posted 19 July 2012 - 09:26 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Create a restore point before trying this

Download

adware cleaner

Launch it click on Delete

post the generated log

#5 BumpInTheRoad

BumpInTheRoad
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:45 AM

Posted 21 July 2012 - 07:06 AM

Computer I:

MiniToolBox by Farbar Version: 15-07-2012
Ran by DanielPG (administrator) on 20-07-2012 at 18:51:28
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================

Intel® Wireless WiFi Link 4965AGN = Wireless Network Connection (Connected)
Realtek RTL8101E Family PCI-E Fast Ethernet NIC (NDIS 6.0) = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : PG2
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : gateway.2wire.net

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : gateway.2wire.net
Description . . . . . . . . . . . : Intel® Wireless WiFi Link 4965AGN
Physical Address. . . . . . . . . : 00-13-E8-F9-AD-A5
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::3cb3:9637:c4f1:8e03%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.70(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Friday, July 20, 2012 6:21:39 PM
Lease Expires . . . . . . . . . . : Saturday, July 21, 2012 6:21:44 PM
Default Gateway . . . . . . . . . : 192.168.1.254
DHCP Server . . . . . . . . . . . : 192.168.1.254
DHCPv6 IAID . . . . . . . . . . . : 234886120
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-0F-2F-DC-03-00-1A-80-40-14-D0
DNS Servers . . . . . . . . . . . : 192.168.1.254
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : gateway.2wire.net
Description . . . . . . . . . . . : Realtek RTL8101E Family PCI-E Fast Ethernet NIC (NDIS 6.0)
Physical Address. . . . . . . . . : 00-1A-80-40-14-D0
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 6:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:1420:205b:b335:2e08(Preferred)
Link-local IPv6 Address . . . . . : fe80::1420:205b:b335:2e08%8(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 7:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : gateway.2wire.net
Description . . . . . . . . . . . : isatap.gateway.2wire.net
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 13:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 6TO4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: home
Address: 192.168.1.254

Name: google.com
Addresses: 2607:f8b0:4009:800::1000
74.125.225.73
74.125.225.78
74.125.225.64
74.125.225.65
74.125.225.66
74.125.225.67
74.125.225.68
74.125.225.69
74.125.225.70
74.125.225.71
74.125.225.72



Pinging google.com [74.125.225.136] with 32 bytes of data:

Reply from 74.125.225.136: bytes=32 time=30ms TTL=51

Reply from 74.125.225.136: bytes=32 time=26ms TTL=51



Ping statistics for 74.125.225.136:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 26ms, Maximum = 30ms, Average = 28ms

Server: home
Address: 192.168.1.254

Name: yahoo.com
Addresses: 209.191.122.70
72.30.38.140
98.139.183.24



Pinging yahoo.com [209.191.122.70] with 32 bytes of data:

Reply from 209.191.122.70: bytes=32 time=47ms TTL=50

Reply from 209.191.122.70: bytes=32 time=46ms TTL=50



Ping statistics for 209.191.122.70:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 46ms, Maximum = 47ms, Average = 46ms

Server: home
Address: 192.168.1.254

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time=14ms TTL=128

Reply from 127.0.0.1: bytes=32 time=3ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 3ms, Maximum = 14ms, Average = 8ms

===========================================================================
Interface List
10 ...00 13 e8 f9 ad a5 ...... Intel® Wireless WiFi Link 4965AGN
9 ...00 1a 80 40 14 d0 ...... Realtek RTL8101E Family PCI-E Fast Ethernet NIC (NDIS 6.0)
1 ........................... Software Loopback Interface 1
8 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
14 ...00 00 00 00 00 00 00 e0 isatap.gateway.2wire.net
13 ...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
15 ...00 00 00 00 00 00 00 e0 6TO4 Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.70 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.70 281
192.168.1.70 255.255.255.255 On-link 192.168.1.70 281
192.168.1.255 255.255.255.255 On-link 192.168.1.70 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.70 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.70 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
8 18 ::/0 On-link
1 306 ::1/128 On-link
8 18 2001::/32 On-link
8 266 2001:0:4137:9e76:1420:205b:b335:2e08/128
On-link
10 281 fe80::/64 On-link
8 266 fe80::/64 On-link
8 266 fe80::1420:205b:b335:2e08/128
On-link
10 281 fe80::3cb3:9637:c4f1:8e03/128
On-link
1 306 ff00::/8 On-link
8 266 ff00::/8 On-link
10 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/20/2012 06:21:19 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (07/20/2012 06:21:19 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (07/20/2012 06:21:19 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (07/20/2012 06:21:19 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (07/20/2012 06:21:19 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (07/20/2012 06:21:19 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (07/20/2012 06:21:19 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (07/20/2012 06:17:27 PM) (Source: VzCdbSvc) (User: )
Description: Failed to load the plug-in module. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5})(Error code = 0x80042019)

Error: (07/20/2012 05:12:53 PM) (Source: VzCdbSvc) (User: )
Description: Failed to load the plug-in module. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5})(Error code = 0x80042019)

Error: (07/20/2012 10:52:43 AM) (Source: VzCdbSvc) (User: )
Description: Failed to load the plug-in module. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5})(Error code = 0x80042019)


System errors:
=============
Error: (07/20/2012 06:17:26 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (07/20/2012 06:15:22 PM) (Source: DCOM) (User: )
Description: {C2BFE331-6739-4270-86C9-493D9A04CD38}

Error: (07/20/2012 06:15:15 PM) (Source: DCOM) (User: )
Description: {10C73283-9138-4209-BABC-0E58B14E587D}

Error: (07/20/2012 05:12:52 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (07/20/2012 05:09:59 PM) (Source: DCOM) (User: )
Description: {C2BFE331-6739-4270-86C9-493D9A04CD38}

Error: (07/20/2012 10:52:41 AM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (07/20/2012 10:48:15 AM) (Source: DCOM) (User: )
Description: {10C73283-9138-4209-BABC-0E58B14E587D}

Error: (07/20/2012 10:48:03 AM) (Source: DCOM) (User: )
Description: {C2BFE331-6739-4270-86C9-493D9A04CD38}

Error: (07/19/2012 03:39:06 PM) (Source: Service Control Manager) (User: )
Description: Windows Media Player Network Sharing Service%%1053

Error: (07/19/2012 03:38:55 PM) (Source: Service Control Manager) (User: )
Description: 30000Windows Media Player Network Sharing Service


Microsoft Office Sessions:
=========================
Error: (07/20/2012 06:21:19 PM) (Source: SideBySide)(User: )
Description: msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"C:\Windows\Installer\{67E03279-F703-408F-B4BF-46B5FC8D70CD}\WksWP.exe

Error: (07/20/2012 06:21:19 PM) (Source: SideBySide)(User: )
Description: msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"C:\Windows\Installer\{67E03279-F703-408F-B4BF-46B5FC8D70CD}\WksWP.exe

Error: (07/20/2012 06:21:19 PM) (Source: SideBySide)(User: )
Description: msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"C:\Windows\Installer\{67E03279-F703-408F-B4BF-46B5FC8D70CD}\wksss.exe

Error: (07/20/2012 06:21:19 PM) (Source: SideBySide)(User: )
Description: msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"C:\Windows\Installer\{67E03279-F703-408F-B4BF-46B5FC8D70CD}\wksss.exe

Error: (07/20/2012 06:21:19 PM) (Source: SideBySide)(User: )
Description: msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"C:\Windows\Installer\{67E03279-F703-408F-B4BF-46B5FC8D70CD}\wksdb.exe

Error: (07/20/2012 06:21:19 PM) (Source: SideBySide)(User: )
Description: msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"C:\Windows\Installer\{67E03279-F703-408F-B4BF-46B5FC8D70CD}\wksdb.exe

Error: (07/20/2012 06:21:19 PM) (Source: SideBySide)(User: )
Description: msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"C:\Windows\Installer\{67E03279-F703-408F-B4BF-46B5FC8D70CD}\WksCal.exe

Error: (07/20/2012 06:17:27 PM) (Source: VzCdbSvc)(User: )
Description: {56F9312C-C989-4E04-8C23-299DEE3A36F5}0x80042019

Error: (07/20/2012 05:12:53 PM) (Source: VzCdbSvc)(User: )
Description: {56F9312C-C989-4E04-8C23-299DEE3A36F5}0x80042019

Error: (07/20/2012 10:52:43 AM) (Source: VzCdbSvc)(User: )
Description: {56F9312C-C989-4E04-8C23-299DEE3A36F5}0x80042019


=========================== Installed Programs ============================

Activation Assistant for the 2007 Microsoft Office suites
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0)
Ad-aware 6 Personal (Version: 6.0)
Adobe AIR (Version: 3.3.0.3650)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.265)
Adobe Flash Player 11 Plugin (Version: 11.3.300.265)
Adobe Photoshop 6.0 (Version: 6.0)
Adobe Reader 8.3.1 (Version: 8.3.1)
Adobe Shockwave Player 11.6 (Version: 11.6.1.629)
Adobe SVG Viewer 3.0 (Version: 3.0)
Amazon MP3 Uploader (Version: 1.0.8)
Android SDK Tools (Version: 0.6)
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
ArcSoft Magic-i Visual Effects Installer
Ashampoo Burning Studio 6 FREE (Version: 6.7.5)
Aura Software Manager 1.0.3
Aura Video Converter 1.3.8
AVG 2012 (Version: 12.0.2197)
AVG 2012 (Version: 12.0.2437)
AVG 2012 (Version: 2012.0.2197)
AVG PC Tuneup 2011 (Version: 10.0.0.22)
AVS Update Manager 1.0
AVS Video Editor 4 4.2.1.166
AVS Video Recorder 2.4 (Service Version)
AVS YouTube Uploader version 2.1
AVS4YOU Software Navigator 1.3
Bing Bar (Version: 7.0.822.0)
Bonjour (Version: 3.0.0.10)
CamStudio OSS Desktop Recorder (Version: 2.6 Beta r294)
Card Player Poker
CCleaner (Version: 3.20)
Click to DVD 2.0.05 Menu Data (Version: 2.0.05)
Click to DVD 2.6.00 (Version: 2.6.00)
Compatibility Pack for the 2007 Office system (Version: 12.0.6425.1000)
ConvertHelper 2.2
Corel Paint Shop Pro Photo XI (Version: 11.10.0000)
Corel Paint Shop Pro X (Version: 10.10)
Corel Snapfire (Version: 1.10.0000)
D3DX10 (Version: 15.4.2368.0902)
DIRECTV2PC Playback Advisor (Version: 1.0)
DisplayLink Core Software (Version: 4.5.13507.0)
DVD Decrypter (Remove Only)
DVD Shrink 3.2
EPSON TWAIN 5 (Version: 5.71.0000)
Eraser 5.3 (Version: 5.3)
ESET Online Scanner v3
FlashGet(JetCar)
FLV Player 2.0 (build 25) (Version: 2.0 (build 25))
Free 3GP Video Converter version 3.1
Free DVD Decrypter version 1.4
Free DVD Video Converter version 1.1
Free Studio version 4.2
Free Video Dub version 1.5
Free Video to Mp3 Converter version 3.1
Full Tilt Poker (Version: 4.16.0.WIN.FullTilt.Real)
GearDrvs (Version: 1)
Google Earth (Version: 6.1.0.5001)
Google SketchUp 8 (Version: 3.0.4811)
Google Talk Plugin (Version: 3.1.4.8140)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.3.2710.138)
Google Update Helper (Version: 1.3.21.115)
HDAUDIO SoftV92 Data Fax Modem with SmartCP
HitmanPro 3.6 (Version: 3.6.0.160)
HP Photo Creations (Version: 1.0.0.3341)
HP Photosmart Plus B210 series Basic Device Software (Version: 22.0.334.0)
HP Photosmart Plus B210 series Help (Version: 140.0.54.54)
HP Photosmart Plus B210 series Product Improvement Study (Version: 22.0.334.0)
HP Update (Version: 5.002.005.003)
Instant Mode (Version: 1.0.2)
Intel® Graphics Media Accelerator Driver
iPhone Configuration Utility (Version: 2.1.0.163)
iPod for Windows 2006-03-23 (Version: 4.7.0)
iTunes (Version: 10.6.1.7)
Java Auto Updater (Version: 2.0.7.1)
Java DB 10.5.3.0 (Version: 10.5.3.0)
Java™ 6 Update 3 (Version: 1.6.0.30)
Java™ 6 Update 31 (Version: 6.0.310)
Java™ 6 Update 5 (Version: 1.6.0.50)
Java™ 6 Update 7 (Version: 1.6.0.70)
Java™ SE Development Kit 6 Update 21 (Version: 1.6.0.210)
Java™ SE Runtime Environment 6 (Version: 1.6.0.0)
Lexmark 4200 Series
Lexmark 510 Series
Lexmark Z500-Z600 Series
LiveUpdate 3.2 (Symantec Corporation) (Version: 3.2.0.68)
LiveUpdate Notice (Symantec Corporation) (Version: 1.4.5)
LocationFree Player (Version: 3.02.0000)
Macromedia Dreamweaver MX 2004 (Version: 7.0)
Macromedia Extension Manager (Version: 1.5)
Magellan POI File Editor
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2416447)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Works (Version: 9.7.0621)
Move Networks Media Player for Internet Explorer
Mozilla Firefox 14.0.1 (x86 en-US) (Version: 14.0.1)
Mozilla Maintenance Service (Version: 14.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB941833) (Version: 4.20.9849.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
My Lockbox 1.2 for Windows 2000/XP (Version: 1.2)
Netflix Movie Viewer (Version: 1.2.211)
Norton 360 (Version: 1.2.0.10)
Notepad++ (Version: 5.6.4)
Octoshape add-in for Adobe Flash Player
OpenMG Limited Patch 4.7-07-15-19-01
OpenMG Secure Module 4.7.00 (Version: 4.7.00.12140)
Phone F USB Driver (Version: 1.1.7)
PitchPerfect Uninstall
Poker Tracker Version 2.17.02
PokerAce Hud (remove only)
PokerStars
PPLive 1.9 (Version: 1.9.23)
Quick Zip 4.60.018
QuickBooks Product Listing Service (Version: 2.0.148)
QuickTime (Version: 7.72.80.56)
Realtek 8169 PCI, 8168 and 8101E PCIe Ethernet Network Card Driver for Windows Vista (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.5391)
Roadsend PHP 2.9.0 beta
Roxio Easy Media Creator Home (Version: 9.0.178)
Segoe UI (Version: 15.4.2271.0615)
Setting Utility Series (Version: 3.0.00.07240)
Skype Click to Call (Version: 5.6.8442)
Skype™ 5.5 (Version: 5.5.124)
Smart Buddy (Version: 1.0.68)
SonicStage Mastering Studio (Version: 2.3.01)
SonicStage Mastering Studio Audio Filter (Version: 2.3.01)
SonicStage Mastering Studio Plugins (Version: 2.4)
SONY VGP-UPR1 (Display Adapter) (Version: 4.5.13507.0)
SONY VGP-UPR1 (Display Adapter) Utility (Version: 1.01.0001)
Sony Video Shared Library (Version: 3.2.00)
SopCast 3.2.9 (Version: 3.2.9)
Spybot - Search & Destroy (Version: 1.6.2)
SupportSoft Assisted Service (Version: 15)
swMSM (Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 9.1.13.0)
The Big Picture V2.0 Build 9 (Version: 2.0.0.9)
The Weather Channel App
The Weather Channel Desktop 6
TiVo Desktop 2.8 (Version: 2.8.358.513)
UltimateBet
Uninstall 1.0.0.1
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
VAIO Azure Float Wallpaper (Version: 1.0.00.10100)
VAIO Camera Capture Utility (Version: 2.7.00.07050)
VAIO Center Access Bar (Version: 1.00.0622)
VAIO Content Folder Setting (Version: 1.0.00.07170)
VAIO Content Importer VAIO Content Exporter (Version: 1.2.00.06270)
VAIO Content Importer / VAIO Content Exporter (Version: 1.2.00.06270)
VAIO Content Metadata Intelligent Analyzing Manager (Version: 2.0.02.07130)
VAIO Content Metadata Manager Setting (Version: 2.0.01.07041)
VAIO Content Metadata XML Interface Library (Version: 2.0.01.07050)
VAIO Control Center (Version: 2.1.00.07110)
VAIO Entertainment Center (Version: 2.00.0711)
VAIO Entertainment Platform (Version: 3.0.00.06280)
VAIO Event Service (Version: 3.2.00.07240)
VAIO Floral Dusk Wallpaper (Version: 1.0.00.10100)
VAIO Help And Support (Version: 3.10.0814.CRVP)
VAIO Launcher (Version: 1.0.00.07090)
VAIO Media (Version: 6.0.10)
VAIO Media 6.0 (Version: 6.0.10)
VAIO Media AC3 Decoder 1.0
VAIO Media Content Collection 6.0
VAIO Media Integrated Server 6.1
VAIO Media Redistribution 6.0 (Version: 6.0.10)
VAIO Media Registration Tool (Version: 6.0.10)
VAIO Media Registration Tool 6.0 (Version: 6.0.10)
VAIO Movie Story (Version: 1.0.00.18280)
VAIO Movie Story Template Data (Version: 1.0.00.18280)
VAIO MusicBox (Version: 1.0.00.07090)
VAIO MusicBox Sample Music (Version: 1.0.00.07030)
VAIO OOBE (Version: 3.00.0730)
VAIO Original Function Setting (Version: 1.1.00.07130)
VAIO PC Wireless LAN Wizard (Version: 1.00.0716)
VAIO Power Management (Version: 2.2.00.06130)
VAIO Productivity Center (Version: 2.00.0702)
VAIO Security Center (Version: 5.00.0716)
VAIO Service Utility (Version: 1.1.1.3)
VAIO Survey (Version: 5.00.7207)
VAIO Teal Whisper Wallpaper (Version: 1.0.00.10100)
VAIO Update 3 (Version: 3.0.02.05090)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinDVD for VAIO (Version: 8.0-B8.384)
WinRAR archiver
Wireless Switch Setting Utility (Version: 3.6.00.18210)
Yahoo! Messenger

========================= Memory info: ===================================

Percentage of memory in use: 70%
Total physical RAM: 2037.69 MB
Available physical RAM: 609.87 MB
Total Pagefile: 4316.64 MB
Available Pagefile: 2534.42 MB
Total Virtual: 2047.88 MB
Available Virtual: 1946.04 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:178.83 GB) (Free:26.57 GB) NTFS
3 Drive e: () (Removable) (Total:1.92 GB) (Free:1.88 GB) FAT
5 Drive g: () (Removable) (Total:0.98 GB) (Free:0.97 GB) FAT

========================= Users: ========================================

User accounts for \\PG2

Administrator ASPNET DanielPG
Guest


**** End of log ****

Farbar Service Scanner Version: 19-07-2012
Ran by DanielPG (administrator) on 20-07-2012 at 18:55:48
Running from "C:\Users\DanielPG\Desktop\Google Redirect Fix"
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Other Services:
==============

sharedaccess Service is not running. Checking service configuration:
The start type of sharedaccess service is set to Disabled
The ImagePath of sharedaccess service is OK.
The ServiceDll of sharedaccess service is OK.


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys
[2010-08-12 13:15] - [2010-06-16 11:39] - 0912776 ____A (Microsoft Corporation) 6A10AFCE0B38371064BE41C1FBFD3C6B

C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll
[2008-06-22 18:26] - [2008-01-19 02:34] - 0288256 ____A (Microsoft Corporation) E1499BD0FF76B1B2FBBF1AF339D91165

C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****

# AdwCleaner v1.703 - Logfile created 07/20/2012 at 19:36:11
# Updated 20/07/2012 by Xplode
# Operating system : Windows Vista ™ Home Premium Service Pack 2 (32 bits)
# User : DanielPG - PG2
# Running from : C:\Users\DanielPG\Desktop\Google Redirect Fix\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****


***** [Registre - GUID] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Mozilla Firefox v14.0.1 (en-US)

Profile name : default
File : C:\Users\DanielPG\AppData\Roaming\Mozilla\Firefox\Profiles\zi3a2g0u.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v [Unable to get version]

File : C:\Users\DanielPG\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [1720 octets] - [20/07/2012 17:08:37]
AdwCleaner[S2].txt - [956 octets] - [20/07/2012 19:36:11]

########## EOF - C:\AdwCleaner[S2].txt - [1083 octets] ##########

Computer II:

MiniToolBox by Farbar Version: 15-07-2012
Ran by Daniel (administrator) on 20-07-2012 at 12:02:42
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


127.0.0.1 localhost

========================= IP Configuration: ================================

Atheros AR5B93 Wireless Network Adapter = Wireless Network Connection (Connected)
Atheros AR8132 PCI-E Fast Ethernet Controller = Local Area Connection 2 (Media disconnected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection 2"

set address name="Local Area Connection 2" source=dhcp
set dns name="Local Area Connection 2" source=dhcp register=PRIMARY
set wins name="Local Area Connection 2" source=dhcp

# Interface IP Configuration for "Wireless Network Connection"

set address name="Wireless Network Connection" source=dhcp
set dns name="Wireless Network Connection" source=dhcp register=PRIMARY
set wins name="Wireless Network Connection" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : ACERNETBOOK

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Broadcast

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No

DNS Suffix Search List. . . . . . : gateway.2wire.net



Ethernet adapter Local Area Connection 2:



Media State . . . . . . . . . . . : Media disconnected

Description . . . . . . . . . . . : Atheros AR8132 PCI-E Fast Ethernet Controller

Physical Address. . . . . . . . . : 70-5A-B6-0E-7C-E2



Ethernet adapter Wireless Network Connection:



Connection-specific DNS Suffix . : gateway.2wire.net

Description . . . . . . . . . . . : Atheros AR5B93 Wireless Network Adapter

Physical Address. . . . . . . . . : C4-17-FE-2A-4C-A5

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 192.168.1.75

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.1.254

DHCP Server . . . . . . . . . . . : 192.168.1.254

DNS Servers . . . . . . . . . . . : 192.168.1.254

Lease Obtained. . . . . . . . . . : Friday, July 20, 2012 10:49:24 AM

Lease Expires . . . . . . . . . . : Saturday, July 21, 2012 10:49:24 AM

Server: home
Address: 192.168.1.254

Name: google.com
Addresses: 74.125.225.78, 74.125.225.64, 74.125.225.65, 74.125.225.66
74.125.225.67, 74.125.225.68, 74.125.225.69, 74.125.225.70, 74.125.225.71
74.125.225.72, 74.125.225.73



Pinging google.com [74.125.225.37] with 32 bytes of data:



Reply from 74.125.225.37: bytes=32 time=27ms TTL=51

Reply from 74.125.225.37: bytes=32 time=25ms TTL=51



Ping statistics for 74.125.225.37:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 25ms, Maximum = 27ms, Average = 26ms

Server: home
Address: 192.168.1.254

Name: yahoo.com
Addresses: 72.30.38.140, 98.139.183.24, 209.191.122.70



Pinging yahoo.com [72.30.38.140] with 32 bytes of data:



Reply from 72.30.38.140: bytes=32 time=79ms TTL=48

Reply from 72.30.38.140: bytes=32 time=78ms TTL=48



Ping statistics for 72.30.38.140:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 78ms, Maximum = 79ms, Average = 78ms

Server: home
Address: 192.168.1.254

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:



Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...70 5a b6 0e 7c e2 ...... Atheros AR8132 PCI-E Fast Ethernet Controller - Packet Scheduler Miniport
0x3 ...c4 17 fe 2a 4c a5 ...... Atheros AR5B93 Wireless Network Adapter - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.75 25
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
169.254.0.0 255.255.0.0 192.168.1.75 192.168.1.75 20
192.168.1.0 255.255.255.0 192.168.1.75 192.168.1.75 25
192.168.1.75 255.255.255.255 127.0.0.1 127.0.0.1 25
192.168.1.255 255.255.255.255 192.168.1.75 192.168.1.75 25
224.0.0.0 240.0.0.0 192.168.1.75 192.168.1.75 25
255.255.255.255 255.255.255.255 192.168.1.75 2 1
255.255.255.255 255.255.255.255 192.168.1.75 192.168.1.75 1
Default Gateway: 192.168.1.254
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/18/2012 09:56:31 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2234

Error: (07/18/2012 09:56:31 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2234

Error: (07/18/2012 09:56:31 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (07/18/2012 09:38:01 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 19543782

Error: (07/18/2012 09:38:01 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 19543782

Error: (07/18/2012 09:38:01 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (07/18/2012 04:12:33 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15657

Error: (07/18/2012 04:12:33 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15657

Error: (07/18/2012 04:12:33 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (07/16/2012 04:34:44 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15562


System errors:
=============
Error: (07/20/2012 10:49:22 AM) (Source: Service Control Manager) (User: )
Description: The Google Update Service (gupdate) service failed to start due to the following error:
%%1053

Error: (07/20/2012 10:49:22 AM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for the Google Update Service (gupdate) service to connect.

Error: (07/20/2012 10:49:17 AM) (Source: 0) (User: )
Description: 0xC0000001HarddiskVolume2

Error: (07/20/2012 07:16:01 AM) (Source: BROWSER) (User: )
Description: The browser service has failed to retrieve the backup list too many times on transport \Device\NetBT_Tcpip_{EE68725F-6CB2-4C27-A590-2AB6FACB6C5D}.
The backup browser is stopping.

Error: (07/19/2012 07:38:27 PM) (Source: BROWSER) (User: )
Description: The browser service has failed to retrieve the backup list too many times on transport \Device\NetBT_Tcpip_{EE68725F-6CB2-4C27-A590-2AB6FACB6C5D}.
The backup browser is stopping.

Error: (07/19/2012 02:24:08 PM) (Source: BROWSER) (User: )
Description: The browser service has failed to retrieve the backup list too many times on transport \Device\NetBT_Tcpip_{EE68725F-6CB2-4C27-A590-2AB6FACB6C5D}.
The backup browser is stopping.

Error: (07/18/2012 09:42:31 PM) (Source: BROWSER) (User: )
Description: The browser service has failed to retrieve the backup list too many times on transport \Device\NetBT_Tcpip_{EE68725F-6CB2-4C27-A590-2AB6FACB6C5D}.
The backup browser is stopping.

Error: (07/18/2012 10:26:39 AM) (Source: Service Control Manager) (User: )
Description: The Application Management service terminated with the following error:
%%126

Error: (07/18/2012 10:26:39 AM) (Source: Service Control Manager) (User: )
Description: The Application Management service terminated with the following error:
%%126

Error: (07/18/2012 10:26:39 AM) (Source: Service Control Manager) (User: )
Description: The Application Management service terminated with the following error:
%%126


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

2007 Microsoft Office Suite Service Pack 2 (SP2)
Acer Crystal Eye webcam Ver:1.1.81.402 (Version: 1.1.81.402)
Acer eRecovery Management (Version: 4.05.3005)
Acer Games (Version: 1.0.0.71)
Acer ScreenSaver (Version: 1.0.3.0303)
Acer Updater (Version: 1.01.3017)
Acrobat.com (Version: 1.6.65)
Adobe AIR (Version: 1.5.0.7220)
Adobe Flash Player 11 ActiveX (Version: 11.0.1.152)
Adobe Flash Player 11 Plugin (Version: 11.3.300.265)
Adobe Reader 9.5.1 MUI (Version: 9.5.1)
Android SDK Tools (Version: 1.14)
Apple Application Support (Version: 1.4.1)
Apple Mobile Device Support (Version: 3.3.0.69)
Apple Software Update (Version: 2.1.2.120)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (Version: 1.0.0.16)
AVG 2012 (Version: 12.0.2197)
AVG 2012 (Version: 12.0.2437)
AVG 2012 (Version: 2012.0.2197)
Bonjour (Version: 2.0.4.0)
Card Player Poker
CCleaner (Version: 3.20)
Compatibility Pack for the 2007 Office system (Version: 12.0.6425.1000)
Dropbox (Version: 1.4.7)
ESET Online Scanner v3
Google Chrome (Version: 20.0.1132.47)
Google SketchUp 8 (Version: 3.0.11752)
Google Update Helper (Version: 1.3.21.111)
HP Photosmart Plus B210 series Basic Device Software (Version: 22.0.334.0)
HP Photosmart Plus B210 series Help (Version: 140.0.54.54)
Identity Card (Version: 1.00.3003)
Intel® Graphics Media Accelerator Driver
Intel® Matrix Storage Manager
iTunes (Version: 10.1.1.4)
Java Auto Updater (Version: 2.1.6.0)
Java™ 7 Update 3 (Version: 7.0.30)
Java™ SE Development Kit 7 Update 3 (Version: 1.7.0.30)
JavaFX 2.0.3 (Version: 2.0.3)
JavaFX 2.0.3 SDK (Version: 2.0.3)
Junk Mail filter update (Version: 14.0.8117.416)
Launch Manager (Version: 3.0.03)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
McAfee Security Scan Plus (Version: 3.0.207.4)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2572067)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Home and Student 2007 (Version: 12.0.6425.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6425.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Suite Activation Assistant (Version: 2.9)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Silverlight (Version: 4.0.60831.0)
Microsoft Software Update for Web Folders (English) 12 (Version: 12.0.6425.1000)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 9.7.0621)
Mozilla Firefox 14.0.1 (x86 en-US) (Version: 14.0.1)
Mozilla Maintenance Service (Version: 14.0.1)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MyWinLocker (Version: 3.1.76.0)
Norton Online Backup (Version: 1.2.0.36)
PhotoScape
QuickTime (Version: 7.69.80.9)
Realtek High Definition Audio Driver (Version: 5.10.0.5928)
Segoe UI (Version: 14.0.4327.805)
Skype™ 5.3 (Version: 5.3.111)
SopCast 3.3.2 (Version: 3.3.2)
Synaptics Pointing Device Driver (Version: 12.2.2.0)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft Office 2007 suites (KB2596651) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596789) 32-Bit Edition
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office Excel 2007 (KB2596596) 32-Bit Edition
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Windows Internet Explorer 8 (KB976662) (Version: 1)
Update for Windows XP (KB2141007) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2607712) (Version: 1)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB898461) (Version: 1)
Update for Windows XP (KB951072-v2) (Version: 2)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB955839) (Version: 1)
Update for Windows XP (KB961503) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
USB2.0 Card Reader Software (Version: 6.0.6000.81)
Webcam (Version: 1.00.000)
WebFldrs XP (Version: 9.50.7523)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Live Call (Version: 14.0.8117.0416)
Windows Live Communications Platform (Version: 14.0.8117.416)
Windows Live Essentials (Version: 14.0.8117.0416)
Windows Live Essentials (Version: 14.0.8117.416)
Windows Live Mail (Version: 14.0.8117.0416)
Windows Live Messenger (Version: 14.0.8117.0416)
Windows Live Photo Gallery (Version: 14.0.8117.416)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8117.0416)
Windows Media Format Runtime
Windows Media Player 10
Yahoo! Messenger

========================= Memory info: ===================================

Percentage of memory in use: 53%
Total physical RAM: 1013.87 MB
Available physical RAM: 475.55 MB
Total Pagefile: 2441.75 MB
Available Pagefile: 1913.52 MB
Total Virtual: 2047.88 MB
Available Virtual: 1973.5 MB

========================= Partitions: =====================================

1 Drive c: (ACER) (Fixed) (Total:139.04 GB) (Free:116 GB) NTFS

========================= Users: ========================================

User accounts for \\ACERNETBOOK

Administrator ASPNET Daniel
Guest HelpAssistant SUPPORT_388945a0


**** End of log ****


Farbar Service Scanner Version: 19-07-2012
Ran by Daniel (administrator) on 20-07-2012 at 12:05:24
Running from "C:\Documents and Settings\Daniel\Desktop"
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============
wuauserv Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.


Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
Avgtdix(9) Gpc(6) IPSec(4) NetBT(5) PSched(7) Tcpip(3)
0x09000000040000000100000002000000030000000800000009000000050000000600000007000000
IpSec Tag value is correct.

**** End of log ****

# AdwCleaner v1.703 - Logfile created 07/20/2012 at 12:16:38
# Updated 20/07/2012 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Daniel - ACERNETBOOK
# Running from : C:\Documents and Settings\Daniel\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****


***** [Registre - GUID] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A3F2A195-0D11-463b-96BB-D2FF1B7490A1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ECD0ECC6-DCA4-4013-A915-12355AB70999}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry is clean.

-\\ Mozilla Firefox v14.0.1 (en-US)

Profile name : default
File : C:\Documents and Settings\Daniel\Application Data\Mozilla\Firefox\Profiles\1nzfc62d.default\prefs.js

C:\Documents and Settings\Daniel\Application Data\Mozilla\Firefox\Profiles\1nzfc62d.default\user.js ... Deleted !

[OK] File is clean.

-\\ Google Chrome v20.0.1132.47

File : C:\Documents and Settings\Daniel\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [1647 octets] - [20/07/2012 12:16:38]

########## EOF - C:\AdwCleaner[S1].txt - [1775 octets] ##########





After that I checked and I still have redirects in both computers

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:45 AM

Posted 21 July 2012 - 07:16 AM

Malwarebytes log?

Which browser gets redirected?

#7 BumpInTheRoad

BumpInTheRoad
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:45 AM

Posted 21 July 2012 - 08:47 AM

Sorry, below are the logs for Malwarebytes, and it seems that IE does not redirect now but Firefox still does.

Computer 1:

Malwarebytes Anti-Malware (Trial) 1.62.0.1300
www.malwarebytes.org

Database version: v2012.07.20.04

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
DanielPG :: PG2 [administrator]

Protection: Enabled

7/20/2012 6:46:12 AM
mbam-log-2012-07-20 (06-46-12).txt

Scan type: Full scan (C:\|E:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 471750
Time elapsed: 3 hour(s), 59 minute(s), 53 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)


Computer 2:

Malwarebytes Anti-Malware (Trial) 1.62.0.1300
www.malwarebytes.org

Database version: v2012.07.20.06

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Daniel :: ACERNETBOOK [administrator]

Protection: Enabled

7/20/2012 10:53:54 AM
mbam-log-2012-07-20 (10-53-54).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 215328
Time elapsed: 15 minute(s), 17 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:45 AM

Posted 21 July 2012 - 09:05 AM

Uninstall Firefox

Makesure to checkmark Remove my personal data option

Reinstall firefox,let me know if you still have redirects

#9 BumpInTheRoad

BumpInTheRoad
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:45 AM

Posted 21 July 2012 - 03:41 PM

I tried both computers and I don't get any more redirects.

THANK YOU VERY MUCH!!!!

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:45 AM

Posted 21 July 2012 - 04:10 PM

Grt :thumbup2:


Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://support.microsoft.com/kb/310405

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#11 BumpInTheRoad

BumpInTheRoad
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:45 AM

Posted 21 July 2012 - 05:34 PM

One last thing, my computer crash every time I run the TFC, is there any other tool that I can use?

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:45 AM

Posted 21 July 2012 - 06:31 PM

You can run it in safemode :thumbup2:

#13 BumpInTheRoad

BumpInTheRoad
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:09:45 AM

Posted 22 July 2012 - 07:33 AM

That worked!
Thanks again!!
:thumbsup:

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:45 AM

Posted 22 July 2012 - 07:36 AM

You're welcome :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users