Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google redirects and TDSS rootkit not running


  • Please log in to reply
7 replies to this topic

#1 dynex

dynex

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:07:02 AM

Posted 20 July 2012 - 12:54 PM

Hello, I am having issues with the google redirects and I tried running the TDSS rootkit, however it is not working even after I changed the filename. I also had the file recovery problem beforehand but that was fixed through the self-help guide I followed on this website. Any help would be greatly appreciated. Thank you.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:02 AM

Posted 20 July 2012 - 01:02 PM

Download

FIXTDSS

Launch it ,It may ask for restart,reboot the PC

On reboot ,click on REPAIR

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 dynex

dynex
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:07:02 AM

Posted 20 July 2012 - 03:21 PM

Thanks for the quick response.

Here is my TDSS log

11:20:51.0198 5936 TDSS rootkit removing tool 2.7.46.0 Jul 16 2012 22:10:11
11:20:51.0572 5936 ============================================================
11:20:51.0572 5936 Current date / time: 2012/07/20 11:20:51.0572
11:20:51.0572 5936 SystemInfo:
11:20:51.0572 5936
11:20:51.0572 5936 OS Version: 6.1.7601 ServicePack: 1.0
11:20:51.0572 5936 Product type: Workstation
11:20:51.0572 5936 ComputerName: ANDREW-PC
11:20:51.0572 5936 UserName: Andrew
11:20:51.0572 5936 Windows directory: C:\Windows
11:20:51.0572 5936 System windows directory: C:\Windows
11:20:51.0572 5936 Running under WOW64
11:20:51.0572 5936 Processor architecture: Intel x64
11:20:51.0572 5936 Number of processors: 4
11:20:51.0572 5936 Page size: 0x1000
11:20:51.0572 5936 Boot type: Normal boot
11:20:51.0572 5936 ============================================================
11:20:53.0507 5936 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:20:53.0507 5936 ============================================================
11:20:53.0507 5936 \Device\Harddisk0\DR0:
11:20:53.0507 5936 MBR partitions:
11:20:53.0507 5936 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
11:20:53.0507 5936 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746CCDB0
11:20:53.0507 5936 ============================================================
11:20:53.0522 5936 C: <-> \Device\Harddisk0\DR0\Partition1
11:20:53.0522 5936 ============================================================
11:20:53.0522 5936 Initialize success
11:20:53.0522 5936 ============================================================
11:21:12.0476 6072 ============================================================
11:21:12.0476 6072 Scan started
11:21:12.0476 6072 Mode: Manual; TDLFS;
11:21:12.0476 6072 ============================================================
11:21:13.0163 6072 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
11:21:13.0163 6072 1394ohci - ok
11:21:13.0194 6072 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
11:21:13.0194 6072 ACPI - ok
11:21:13.0225 6072 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
11:21:13.0225 6072 AcpiPmi - ok
11:21:13.0303 6072 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:21:13.0303 6072 AdobeARMservice - ok
11:21:13.0350 6072 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
11:21:13.0365 6072 adp94xx - ok
11:21:13.0381 6072 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
11:21:13.0381 6072 adpahci - ok
11:21:13.0412 6072 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
11:21:13.0412 6072 adpu320 - ok
11:21:13.0428 6072 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
11:21:13.0428 6072 AeLookupSvc - ok
11:21:13.0459 6072 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
11:21:13.0475 6072 AFD - ok
11:21:13.0490 6072 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
11:21:13.0490 6072 agp440 - ok
11:21:13.0521 6072 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
11:21:13.0521 6072 ALG - ok
11:21:13.0537 6072 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
11:21:13.0537 6072 aliide - ok
11:21:13.0599 6072 ALSysIO - ok
11:21:13.0631 6072 AMD External Events Utility (9c616ba191b80f5cd1a1b9553e107100) C:\Windows\system32\atiesrxx.exe
11:21:13.0631 6072 AMD External Events Utility - ok
11:21:13.0662 6072 AMD FUEL Service - ok
11:21:13.0677 6072 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
11:21:13.0677 6072 amdide - ok
11:21:13.0677 6072 amdiox64 (6a2eeb0c4133b20773bb3dd0b7b377b4) C:\Windows\system32\DRIVERS\amdiox64.sys
11:21:13.0677 6072 amdiox64 - ok
11:21:13.0709 6072 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
11:21:13.0709 6072 AmdK8 - ok
11:21:13.0958 6072 amdkmdag (5165e83751b8ff40e5e4925996fcc506) C:\Windows\system32\DRIVERS\atikmdag.sys
11:21:14.0067 6072 amdkmdag - ok
11:21:14.0130 6072 amdkmdap (86ab3cf484260c4318f3a6e8b035f422) C:\Windows\system32\DRIVERS\atikmpag.sys
11:21:14.0130 6072 amdkmdap - ok
11:21:14.0145 6072 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
11:21:14.0145 6072 AmdPPM - ok
11:21:14.0177 6072 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
11:21:14.0177 6072 amdsata - ok
11:21:14.0192 6072 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
11:21:14.0192 6072 amdsbs - ok
11:21:14.0192 6072 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
11:21:14.0192 6072 amdxata - ok
11:21:14.0223 6072 androidusb (4de0d5d747a73797c95a97dcce5018b5) C:\Windows\system32\Drivers\ssadadb.sys
11:21:14.0223 6072 androidusb - ok
11:21:14.0255 6072 AODDriver4.01 (5b25d1a753cc3a3edb909bb759ac1098) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
11:21:14.0255 6072 AODDriver4.01 - ok
11:21:14.0255 6072 AODDriver4.1 (5b25d1a753cc3a3edb909bb759ac1098) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
11:21:14.0255 6072 AODDriver4.1 - ok
11:21:14.0301 6072 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
11:21:14.0301 6072 AppID - ok
11:21:14.0301 6072 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
11:21:14.0301 6072 AppIDSvc - ok
11:21:14.0348 6072 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
11:21:14.0348 6072 Appinfo - ok
11:21:14.0411 6072 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
11:21:14.0411 6072 Apple Mobile Device - ok
11:21:14.0426 6072 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
11:21:14.0426 6072 AppMgmt - ok
11:21:14.0442 6072 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
11:21:14.0442 6072 arc - ok
11:21:14.0457 6072 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
11:21:14.0457 6072 arcsas - ok
11:21:14.0551 6072 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
11:21:14.0582 6072 aspnet_state - ok
11:21:14.0613 6072 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
11:21:14.0613 6072 AsyncMac - ok
11:21:14.0613 6072 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
11:21:14.0629 6072 atapi - ok
11:21:14.0660 6072 AtiHDAudioService (24464b908e143d2561e9e452fee97309) C:\Windows\system32\drivers\AtihdW76.sys
11:21:14.0660 6072 AtiHDAudioService - ok
11:21:14.0691 6072 AtiPcie (e82e61f46d1336447f4deff8c074f13e) C:\Windows\system32\DRIVERS\AtiPcie64.sys
11:21:14.0691 6072 AtiPcie - ok
11:21:14.0738 6072 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
11:21:14.0754 6072 AudioEndpointBuilder - ok
11:21:14.0754 6072 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
11:21:14.0754 6072 AudioSrv - ok
11:21:14.0785 6072 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
11:21:14.0785 6072 AxInstSV - ok
11:21:14.0816 6072 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
11:21:14.0816 6072 b06bdrv - ok
11:21:14.0832 6072 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
11:21:14.0847 6072 b57nd60a - ok
11:21:14.0910 6072 BBSvc (a2494901e7226b356b8c1005c45f1c5f) C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.exe
11:21:14.0910 6072 BBSvc - ok
11:21:14.0925 6072 BBUpdate (63b1cbbae4790b5bac98f01bf9449722) C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe
11:21:14.0925 6072 BBUpdate - ok
11:21:14.0941 6072 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
11:21:14.0941 6072 BDESVC - ok
11:21:14.0957 6072 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
11:21:14.0957 6072 Beep - ok
11:21:15.0019 6072 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
11:21:15.0019 6072 BFE - ok
11:21:15.0066 6072 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
11:21:15.0081 6072 BITS - ok
11:21:15.0113 6072 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
11:21:15.0113 6072 blbdrive - ok
11:21:15.0159 6072 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
11:21:15.0159 6072 Bonjour Service - ok
11:21:15.0175 6072 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
11:21:15.0191 6072 bowser - ok
11:21:15.0191 6072 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
11:21:15.0191 6072 BrFiltLo - ok
11:21:15.0206 6072 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
11:21:15.0206 6072 BrFiltUp - ok
11:21:15.0222 6072 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
11:21:15.0222 6072 BridgeMP - ok
11:21:15.0253 6072 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
11:21:15.0253 6072 Browser - ok
11:21:15.0269 6072 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
11:21:15.0269 6072 Brserid - ok
11:21:15.0269 6072 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
11:21:15.0269 6072 BrSerWdm - ok
11:21:15.0284 6072 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
11:21:15.0284 6072 BrUsbMdm - ok
11:21:15.0284 6072 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
11:21:15.0284 6072 BrUsbSer - ok
11:21:15.0300 6072 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
11:21:15.0300 6072 BTHMODEM - ok
11:21:15.0315 6072 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
11:21:15.0315 6072 bthserv - ok
11:21:15.0331 6072 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
11:21:15.0331 6072 cdfs - ok
11:21:15.0362 6072 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
11:21:15.0362 6072 cdrom - ok
11:21:15.0393 6072 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
11:21:15.0393 6072 CertPropSvc - ok
11:21:15.0393 6072 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
11:21:15.0393 6072 circlass - ok
11:21:15.0425 6072 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
11:21:15.0425 6072 CLFS - ok
11:21:15.0456 6072 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:21:15.0456 6072 clr_optimization_v2.0.50727_32 - ok
11:21:15.0487 6072 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:21:15.0487 6072 clr_optimization_v2.0.50727_64 - ok
11:21:15.0549 6072 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:21:15.0627 6072 clr_optimization_v4.0.30319_32 - ok
11:21:15.0659 6072 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:21:15.0674 6072 clr_optimization_v4.0.30319_64 - ok
11:21:15.0674 6072 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
11:21:15.0674 6072 CmBatt - ok
11:21:15.0705 6072 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
11:21:15.0705 6072 cmdide - ok
11:21:15.0752 6072 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
11:21:15.0752 6072 CNG - ok
11:21:15.0752 6072 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
11:21:15.0752 6072 Compbatt - ok
11:21:15.0783 6072 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
11:21:15.0783 6072 CompositeBus - ok
11:21:15.0783 6072 COMSysApp - ok
11:21:15.0815 6072 cpuz135 (ccb09eb78e047c931708149992c2e435) C:\Windows\system32\drivers\cpuz135_x64.sys
11:21:15.0815 6072 cpuz135 - ok
11:21:15.0830 6072 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
11:21:15.0830 6072 crcdisk - ok
11:21:15.0861 6072 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
11:21:15.0861 6072 CryptSvc - ok
11:21:15.0893 6072 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
11:21:15.0908 6072 CSC - ok
11:21:15.0939 6072 CscService (3ab183ab4d2c79dcf459cd2c1266b043) C:\Windows\System32\cscsvc.dll
11:21:15.0955 6072 CscService - ok
11:21:15.0986 6072 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
11:21:15.0986 6072 DcomLaunch - ok
11:21:16.0017 6072 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
11:21:16.0017 6072 defragsvc - ok
11:21:16.0080 6072 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
11:21:16.0080 6072 DfsC - ok
11:21:16.0111 6072 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
11:21:16.0111 6072 Dhcp - ok
11:21:16.0127 6072 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
11:21:16.0127 6072 discache - ok
11:21:16.0142 6072 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
11:21:16.0142 6072 Disk - ok
11:21:16.0173 6072 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
11:21:16.0173 6072 Dnscache - ok
11:21:16.0205 6072 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
11:21:16.0205 6072 dot3svc - ok
11:21:16.0251 6072 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
11:21:16.0251 6072 Dot4 - ok
11:21:16.0283 6072 Dot4Print (e9f5969233c5d89f3c35e3a66a52a361) C:\Windows\system32\drivers\Dot4Prt.sys
11:21:16.0283 6072 Dot4Print - ok
11:21:16.0298 6072 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
11:21:16.0298 6072 dot4usb - ok
11:21:16.0329 6072 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
11:21:16.0345 6072 DPS - ok
11:21:16.0361 6072 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
11:21:16.0361 6072 drmkaud - ok
11:21:16.0407 6072 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
11:21:16.0407 6072 DXGKrnl - ok
11:21:16.0454 6072 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
11:21:16.0454 6072 EapHost - ok
11:21:16.0548 6072 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
11:21:16.0595 6072 ebdrv - ok
11:21:16.0938 6072 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
11:21:16.0938 6072 EFS - ok
11:21:17.0000 6072 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
11:21:17.0000 6072 ehRecvr - ok
11:21:17.0031 6072 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
11:21:17.0031 6072 ehSched - ok
11:21:17.0063 6072 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
11:21:17.0063 6072 elxstor - ok
11:21:17.0078 6072 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
11:21:17.0078 6072 ErrDev - ok
11:21:17.0125 6072 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
11:21:17.0125 6072 EventSystem - ok
11:21:17.0141 6072 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
11:21:17.0141 6072 exfat - ok
11:21:17.0156 6072 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
11:21:17.0156 6072 fastfat - ok
11:21:17.0203 6072 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
11:21:17.0219 6072 Fax - ok
11:21:17.0234 6072 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
11:21:17.0234 6072 fdc - ok
11:21:17.0234 6072 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
11:21:17.0234 6072 fdPHost - ok
11:21:17.0250 6072 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
11:21:17.0250 6072 FDResPub - ok
11:21:17.0250 6072 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
11:21:17.0265 6072 FileInfo - ok
11:21:17.0265 6072 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
11:21:17.0265 6072 Filetrace - ok
11:21:17.0265 6072 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
11:21:17.0265 6072 flpydisk - ok
11:21:17.0297 6072 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
11:21:17.0297 6072 FltMgr - ok
11:21:17.0343 6072 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
11:21:17.0359 6072 FontCache - ok
11:21:17.0390 6072 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:21:17.0390 6072 FontCache3.0.0.0 - ok
11:21:17.0406 6072 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
11:21:17.0406 6072 FsDepends - ok
11:21:17.0437 6072 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
11:21:17.0437 6072 Fs_Rec - ok
11:21:17.0468 6072 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
11:21:17.0468 6072 fvevol - ok
11:21:17.0484 6072 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
11:21:17.0484 6072 gagp30kx - ok
11:21:17.0499 6072 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
11:21:17.0499 6072 GEARAspiWDM - ok
11:21:17.0546 6072 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
11:21:17.0546 6072 gpsvc - ok
11:21:17.0562 6072 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
11:21:17.0562 6072 hcw85cir - ok
11:21:17.0593 6072 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
11:21:17.0593 6072 HdAudAddService - ok
11:21:17.0609 6072 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
11:21:17.0609 6072 HDAudBus - ok
11:21:17.0609 6072 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
11:21:17.0609 6072 HidBatt - ok
11:21:17.0624 6072 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
11:21:17.0640 6072 HidBth - ok
11:21:17.0640 6072 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
11:21:17.0640 6072 HidIr - ok
11:21:17.0655 6072 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
11:21:17.0655 6072 hidserv - ok
11:21:17.0671 6072 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
11:21:17.0671 6072 HidUsb - ok
11:21:17.0687 6072 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
11:21:17.0687 6072 hkmsvc - ok
11:21:17.0718 6072 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
11:21:17.0718 6072 HomeGroupListener - ok
11:21:17.0733 6072 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
11:21:17.0733 6072 HomeGroupProvider - ok
11:21:17.0858 6072 hpqcxs08 (5da42d24712e00728cea2342a65009b2) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
11:21:17.0858 6072 hpqcxs08 - ok
11:21:17.0874 6072 hpqddsvc (d86a39bf100069444d026d22d9a6e555) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
11:21:17.0874 6072 hpqddsvc - ok
11:21:17.0889 6072 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
11:21:17.0889 6072 HpSAMD - ok
11:21:17.0967 6072 HPSLPSVC (f37882f128efacefe353e0bae2766909) C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
11:21:17.0983 6072 HPSLPSVC - ok
11:21:18.0014 6072 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
11:21:18.0030 6072 HTTP - ok
11:21:18.0061 6072 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
11:21:18.0061 6072 hwpolicy - ok
11:21:18.0092 6072 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
11:21:18.0092 6072 i8042prt - ok
11:21:18.0123 6072 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
11:21:18.0123 6072 iaStorV - ok
11:21:18.0186 6072 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:21:18.0201 6072 idsvc - ok
11:21:18.0217 6072 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
11:21:18.0217 6072 iirsp - ok
11:21:18.0248 6072 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
11:21:18.0264 6072 IKEEXT - ok
11:21:18.0279 6072 IntcAzAudAddService - ok
11:21:18.0279 6072 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
11:21:18.0279 6072 intelide - ok
11:21:18.0295 6072 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
11:21:18.0295 6072 intelppm - ok
11:21:18.0311 6072 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
11:21:18.0311 6072 IPBusEnum - ok
11:21:18.0342 6072 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:21:18.0342 6072 IpFilterDriver - ok
11:21:18.0373 6072 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
11:21:18.0389 6072 iphlpsvc - ok
11:21:18.0404 6072 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
11:21:18.0404 6072 IPMIDRV - ok
11:21:18.0420 6072 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
11:21:18.0420 6072 IPNAT - ok
11:21:18.0498 6072 iPod Service (a9ab99ee7d39725eafec82732d2b3271) C:\Program Files\iPod\bin\iPodService.exe
11:21:18.0498 6072 iPod Service - ok
11:21:18.0529 6072 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
11:21:18.0529 6072 IRENUM - ok
11:21:18.0545 6072 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
11:21:18.0545 6072 isapnp - ok
11:21:18.0560 6072 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
11:21:18.0560 6072 iScsiPrt - ok
11:21:18.0576 6072 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
11:21:18.0576 6072 kbdclass - ok
11:21:18.0591 6072 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
11:21:18.0591 6072 kbdhid - ok
11:21:18.0623 6072 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
11:21:18.0623 6072 KeyIso - ok
11:21:18.0638 6072 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
11:21:18.0638 6072 KSecDD - ok
11:21:18.0669 6072 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
11:21:18.0669 6072 KSecPkg - ok
11:21:18.0669 6072 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
11:21:18.0669 6072 ksthunk - ok
11:21:18.0701 6072 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
11:21:18.0701 6072 KtmRm - ok
11:21:18.0716 6072 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
11:21:18.0716 6072 LanmanServer - ok
11:21:18.0747 6072 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
11:21:18.0747 6072 LanmanWorkstation - ok
11:21:18.0810 6072 LBTServ (4adc135f525d38a498f83b089228cc2d) C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
11:21:18.0810 6072 LBTServ - ok
11:21:18.0825 6072 LHidFilt (24e09882ba51b9830ae029888a3aaf18) C:\Windows\system32\DRIVERS\LHidFilt.Sys
11:21:18.0825 6072 LHidFilt - ok
11:21:18.0841 6072 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
11:21:18.0841 6072 lltdio - ok
11:21:18.0872 6072 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
11:21:18.0872 6072 lltdsvc - ok
11:21:18.0872 6072 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
11:21:18.0872 6072 lmhosts - ok
11:21:18.0888 6072 LMouFilt (2f94325d8c10e2b715f3d753c2422aac) C:\Windows\system32\DRIVERS\LMouFilt.Sys
11:21:18.0888 6072 LMouFilt - ok
11:21:18.0903 6072 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
11:21:18.0903 6072 LSI_FC - ok
11:21:18.0903 6072 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
11:21:18.0903 6072 LSI_SAS - ok
11:21:18.0919 6072 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
11:21:18.0919 6072 LSI_SAS2 - ok
11:21:18.0935 6072 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
11:21:18.0935 6072 LSI_SCSI - ok
11:21:18.0950 6072 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
11:21:18.0950 6072 luafv - ok
11:21:18.0997 6072 LVRS64 (ef2be2f45d4f06410a3bd2a3467325b0) C:\Windows\system32\DRIVERS\lvrs64.sys
11:21:18.0997 6072 LVRS64 - ok
11:21:19.0137 6072 LVUVC64 (ac22f92c6078640fe8a70d662a2f3ad5) C:\Windows\system32\DRIVERS\lvuvc64.sys
11:21:19.0200 6072 LVUVC64 - ok
11:21:19.0262 6072 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
11:21:19.0262 6072 Mcx2Svc - ok
11:21:19.0278 6072 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
11:21:19.0278 6072 megasas - ok
11:21:19.0293 6072 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
11:21:19.0309 6072 MegaSR - ok
11:21:19.0340 6072 Microsoft SharePoint Workspace Audit Service - ok
11:21:19.0356 6072 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
11:21:19.0356 6072 MMCSS - ok
11:21:19.0356 6072 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
11:21:19.0356 6072 Modem - ok
11:21:19.0371 6072 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
11:21:19.0371 6072 monitor - ok
11:21:19.0403 6072 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
11:21:19.0403 6072 mouclass - ok
11:21:19.0403 6072 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
11:21:19.0418 6072 mouhid - ok
11:21:19.0434 6072 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
11:21:19.0434 6072 mountmgr - ok
11:21:19.0496 6072 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
11:21:19.0496 6072 MozillaMaintenance - ok
11:21:19.0527 6072 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
11:21:19.0543 6072 MpFilter - ok
11:21:19.0574 6072 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
11:21:19.0574 6072 mpio - ok
11:21:19.0574 6072 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
11:21:19.0574 6072 mpsdrv - ok
11:21:19.0637 6072 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
11:21:19.0652 6072 MpsSvc - ok
11:21:19.0683 6072 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
11:21:19.0683 6072 MRxDAV - ok
11:21:19.0730 6072 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
11:21:19.0730 6072 mrxsmb - ok
11:21:19.0746 6072 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:21:19.0746 6072 mrxsmb10 - ok
11:21:19.0761 6072 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:21:19.0761 6072 mrxsmb20 - ok
11:21:19.0761 6072 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
11:21:19.0761 6072 msahci - ok
11:21:19.0793 6072 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
11:21:19.0793 6072 msdsm - ok
11:21:19.0808 6072 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
11:21:19.0808 6072 MSDTC - ok
11:21:19.0808 6072 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
11:21:19.0808 6072 Msfs - ok
11:21:19.0824 6072 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
11:21:19.0824 6072 mshidkmdf - ok
11:21:19.0855 6072 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
11:21:19.0855 6072 msisadrv - ok
11:21:19.0871 6072 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
11:21:19.0871 6072 MSiSCSI - ok
11:21:19.0871 6072 msiserver - ok
11:21:19.0886 6072 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
11:21:19.0886 6072 MSKSSRV - ok
11:21:19.0933 6072 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) c:\Program Files\Microsoft Security Client\MsMpEng.exe
11:21:19.0933 6072 MsMpSvc - ok
11:21:19.0949 6072 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
11:21:19.0949 6072 MSPCLOCK - ok
11:21:19.0949 6072 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
11:21:19.0949 6072 MSPQM - ok
11:21:19.0964 6072 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
11:21:19.0980 6072 MsRPC - ok
11:21:19.0995 6072 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
11:21:19.0995 6072 mssmbios - ok
11:21:19.0995 6072 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
11:21:19.0995 6072 MSTEE - ok
11:21:20.0011 6072 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
11:21:20.0011 6072 MTConfig - ok
11:21:20.0027 6072 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
11:21:20.0027 6072 Mup - ok
11:21:20.0042 6072 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
11:21:20.0058 6072 napagent - ok
11:21:20.0073 6072 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
11:21:20.0073 6072 NativeWifiP - ok
11:21:20.0136 6072 NAUpdate (934bb0d23a25c8c136570800a5a149b6) C:\Program Files (x86)\Nero\Update\NASvc.exe
11:21:20.0167 6072 NAUpdate - ok
11:21:20.0229 6072 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
11:21:20.0229 6072 NDIS - ok
11:21:20.0245 6072 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
11:21:20.0245 6072 NdisCap - ok
11:21:20.0245 6072 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
11:21:20.0245 6072 NdisTapi - ok
11:21:20.0276 6072 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
11:21:20.0276 6072 Ndisuio - ok
11:21:20.0307 6072 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
11:21:20.0307 6072 NdisWan - ok
11:21:20.0323 6072 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
11:21:20.0339 6072 NDProxy - ok
11:21:20.0385 6072 Net Driver HPZ12 (2334dc48997ba203b794df3ee70521db) C:\Windows\system32\HPZinw12.dll
11:21:20.0385 6072 Net Driver HPZ12 - ok
11:21:20.0385 6072 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
11:21:20.0385 6072 NetBIOS - ok
11:21:20.0417 6072 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
11:21:20.0417 6072 NetBT - ok
11:21:20.0448 6072 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
11:21:20.0448 6072 Netlogon - ok
11:21:20.0463 6072 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
11:21:20.0479 6072 Netman - ok
11:21:20.0541 6072 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:21:20.0557 6072 NetMsmqActivator - ok
11:21:20.0573 6072 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:21:20.0573 6072 NetPipeActivator - ok
11:21:20.0604 6072 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
11:21:20.0604 6072 netprofm - ok
11:21:20.0604 6072 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:21:20.0619 6072 NetTcpActivator - ok
11:21:20.0619 6072 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:21:20.0619 6072 NetTcpPortSharing - ok
11:21:20.0635 6072 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
11:21:20.0635 6072 nfrd960 - ok
11:21:20.0666 6072 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
11:21:20.0666 6072 NisDrv - ok
11:21:20.0697 6072 NisSrv (10a43829a9e606af3eef25a1c1665923) c:\Program Files\Microsoft Security Client\NisSrv.exe
11:21:20.0713 6072 NisSrv - ok
11:21:20.0791 6072 NitroReaderDriverReadSpool2 (720d689ad05c6da167ae959569c59bdc) C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe
11:21:20.0791 6072 NitroReaderDriverReadSpool2 - ok
11:21:20.0807 6072 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
11:21:20.0807 6072 NlaSvc - ok
11:21:20.0807 6072 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
11:21:20.0822 6072 Npfs - ok
11:21:20.0822 6072 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
11:21:20.0822 6072 nsi - ok
11:21:20.0838 6072 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
11:21:20.0838 6072 nsiproxy - ok
11:21:20.0900 6072 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
11:21:20.0931 6072 Ntfs - ok
11:21:20.0978 6072 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
11:21:20.0978 6072 Null - ok
11:21:20.0994 6072 nusb3hub (0ebc9d13cd96c15b1b18d8678a609e4b) C:\Windows\system32\DRIVERS\nusb3hub.sys
11:21:21.0009 6072 nusb3hub - ok
11:21:21.0025 6072 nusb3xhc (7bdec000d56d485021d9c1e63c2f81ca) C:\Windows\system32\DRIVERS\nusb3xhc.sys
11:21:21.0041 6072 nusb3xhc - ok
11:21:21.0056 6072 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
11:21:21.0056 6072 nvraid - ok
11:21:21.0072 6072 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
11:21:21.0072 6072 nvstor - ok
11:21:21.0072 6072 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
11:21:21.0087 6072 nv_agp - ok
11:21:21.0103 6072 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
11:21:21.0103 6072 ohci1394 - ok
11:21:21.0134 6072 ose64 (4965b005492cba7719e82b71e3245495) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:21:21.0134 6072 ose64 - ok
11:21:21.0337 6072 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
11:21:21.0415 6072 osppsvc - ok
11:21:21.0477 6072 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
11:21:21.0477 6072 p2pimsvc - ok
11:21:21.0493 6072 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
11:21:21.0493 6072 p2psvc - ok
11:21:21.0509 6072 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
11:21:21.0509 6072 Parport - ok
11:21:21.0540 6072 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
11:21:21.0540 6072 partmgr - ok
11:21:21.0555 6072 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
11:21:21.0555 6072 PcaSvc - ok
11:21:21.0571 6072 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
11:21:21.0571 6072 pci - ok
11:21:21.0587 6072 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
11:21:21.0587 6072 pciide - ok
11:21:21.0602 6072 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
11:21:21.0618 6072 pcmcia - ok
11:21:21.0618 6072 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
11:21:21.0618 6072 pcw - ok
11:21:21.0649 6072 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
11:21:21.0665 6072 PEAUTH - ok
11:21:21.0727 6072 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
11:21:21.0743 6072 PeerDistSvc - ok
11:21:21.0805 6072 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
11:21:21.0805 6072 PerfHost - ok
11:21:21.0883 6072 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
11:21:21.0899 6072 pla - ok
11:21:21.0930 6072 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
11:21:21.0930 6072 PlugPlay - ok
11:21:21.0977 6072 Pml Driver HPZ12 (ac78df349f0e4cfb8b667c0cfff83cce) C:\Windows\system32\HPZipm12.dll
11:21:21.0977 6072 Pml Driver HPZ12 - ok
11:21:21.0992 6072 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
11:21:21.0992 6072 PNRPAutoReg - ok
11:21:22.0008 6072 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
11:21:22.0008 6072 PNRPsvc - ok
11:21:22.0055 6072 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
11:21:22.0055 6072 PolicyAgent - ok
11:21:22.0070 6072 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
11:21:22.0070 6072 Power - ok
11:21:22.0101 6072 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
11:21:22.0101 6072 PptpMiniport - ok
11:21:22.0117 6072 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
11:21:22.0117 6072 Processor - ok
11:21:22.0148 6072 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
11:21:22.0148 6072 ProfSvc - ok
11:21:22.0179 6072 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
11:21:22.0179 6072 ProtectedStorage - ok
11:21:22.0211 6072 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
11:21:22.0211 6072 Psched - ok
11:21:22.0242 6072 PSI (fb46e9a827a8799ebd7bfa9128c91f37) C:\Windows\system32\DRIVERS\psi_mf.sys
11:21:22.0242 6072 PSI - ok
11:21:22.0304 6072 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
11:21:22.0320 6072 ql2300 - ok
11:21:22.0351 6072 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
11:21:22.0351 6072 ql40xx - ok
11:21:22.0367 6072 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
11:21:22.0367 6072 QWAVE - ok
11:21:22.0382 6072 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
11:21:22.0382 6072 QWAVEdrv - ok
11:21:22.0398 6072 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
11:21:22.0398 6072 RasAcd - ok
11:21:22.0413 6072 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
11:21:22.0413 6072 RasAgileVpn - ok
11:21:22.0429 6072 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
11:21:22.0429 6072 RasAuto - ok
11:21:22.0460 6072 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
11:21:22.0460 6072 Rasl2tp - ok
11:21:22.0491 6072 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
11:21:22.0491 6072 RasMan - ok
11:21:22.0523 6072 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
11:21:22.0523 6072 RasPppoe - ok
11:21:22.0523 6072 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
11:21:22.0523 6072 RasSstp - ok
11:21:22.0554 6072 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
11:21:22.0554 6072 rdbss - ok
11:21:22.0569 6072 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
11:21:22.0569 6072 rdpbus - ok
11:21:22.0569 6072 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
11:21:22.0569 6072 RDPCDD - ok
11:21:22.0601 6072 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
11:21:22.0601 6072 RDPDR - ok
11:21:22.0616 6072 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
11:21:22.0616 6072 RDPENCDD - ok
11:21:22.0632 6072 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
11:21:22.0632 6072 RDPREFMP - ok
11:21:22.0679 6072 RdpVideoMiniport (70cba1a0c98600a2aa1863479b35cb90) C:\Windows\system32\drivers\rdpvideominiport.sys
11:21:22.0679 6072 RdpVideoMiniport - ok
11:21:22.0710 6072 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
11:21:22.0710 6072 RDPWD - ok
11:21:22.0725 6072 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
11:21:22.0725 6072 rdyboost - ok
11:21:22.0757 6072 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
11:21:22.0757 6072 RemoteAccess - ok
11:21:22.0772 6072 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
11:21:22.0772 6072 RemoteRegistry - ok
11:21:22.0803 6072 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
11:21:22.0803 6072 RpcEptMapper - ok
11:21:22.0819 6072 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
11:21:22.0819 6072 RpcLocator - ok
11:21:22.0866 6072 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
11:21:22.0866 6072 RpcSs - ok
11:21:22.0881 6072 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
11:21:22.0881 6072 rspndr - ok
11:21:22.0928 6072 RTL8167 (4fe1cef69d36e913738234303986fbb3) C:\Windows\system32\DRIVERS\Rt64win7.sys
11:21:22.0928 6072 RTL8167 - ok
11:21:22.0959 6072 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys
11:21:22.0959 6072 s3cap - ok
11:21:22.0959 6072 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
11:21:22.0959 6072 SamSs - ok
11:21:22.0991 6072 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
11:21:22.0991 6072 sbp2port - ok
11:21:23.0006 6072 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
11:21:23.0006 6072 SCardSvr - ok
11:21:23.0022 6072 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
11:21:23.0022 6072 scfilter - ok
11:21:23.0084 6072 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
11:21:23.0100 6072 Schedule - ok
11:21:23.0131 6072 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
11:21:23.0131 6072 SCPolicySvc - ok
11:21:23.0193 6072 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
11:21:23.0193 6072 SDRSVC - ok
11:21:23.0225 6072 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
11:21:23.0225 6072 secdrv - ok
11:21:23.0240 6072 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
11:21:23.0256 6072 seclogon - ok
11:21:23.0412 6072 Secunia PSI Agent (f70a51eb03ee7046784ef62efce9528e) C:\Program Files (x86)\Secunia\PSI\PSIA.exe
11:21:23.0427 6072 Secunia PSI Agent - ok
11:21:23.0521 6072 Secunia Update Agent (ad56ceb08eeb517332355fde9e5939c8) C:\Program Files (x86)\Secunia\PSI\sua.exe
11:21:23.0537 6072 Secunia Update Agent - ok
11:21:23.0599 6072 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
11:21:23.0599 6072 SENS - ok
11:21:23.0615 6072 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
11:21:23.0615 6072 SensrSvc - ok
11:21:23.0630 6072 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
11:21:23.0630 6072 Serenum - ok
11:21:23.0646 6072 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
11:21:23.0646 6072 Serial - ok
11:21:23.0677 6072 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
11:21:23.0677 6072 sermouse - ok
11:21:23.0693 6072 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
11:21:23.0708 6072 SessionEnv - ok
11:21:23.0724 6072 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
11:21:23.0724 6072 sffdisk - ok
11:21:23.0739 6072 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
11:21:23.0739 6072 sffp_mmc - ok
11:21:23.0739 6072 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
11:21:23.0739 6072 sffp_sd - ok
11:21:23.0755 6072 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
11:21:23.0755 6072 sfloppy - ok
11:21:23.0802 6072 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
11:21:23.0802 6072 SharedAccess - ok
11:21:23.0833 6072 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
11:21:23.0833 6072 ShellHWDetection - ok
11:21:23.0849 6072 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
11:21:23.0849 6072 SiSRaid2 - ok
11:21:23.0864 6072 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
11:21:23.0864 6072 SiSRaid4 - ok
11:21:23.0880 6072 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
11:21:23.0880 6072 Smb - ok
11:21:23.0911 6072 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
11:21:23.0911 6072 SNMPTRAP - ok
11:21:23.0911 6072 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
11:21:23.0911 6072 spldr - ok
11:21:23.0958 6072 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
11:21:23.0958 6072 Spooler - ok
11:21:24.0083 6072 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
11:21:24.0145 6072 sppsvc - ok
11:21:24.0176 6072 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
11:21:24.0176 6072 sppuinotify - ok
11:21:24.0223 6072 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
11:21:24.0223 6072 srv - ok
11:21:24.0254 6072 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
11:21:24.0254 6072 srv2 - ok
11:21:24.0270 6072 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
11:21:24.0270 6072 srvnet - ok
11:21:24.0285 6072 ssadbus (8f8324ed1de63ffc7b1a02cd2d963c72) C:\Windows\system32\DRIVERS\ssadbus.sys
11:21:24.0285 6072 ssadbus - ok
11:21:24.0301 6072 ssadmdfl (58221efcb74167b73667f0024c661ce0) C:\Windows\system32\DRIVERS\ssadmdfl.sys
11:21:24.0301 6072 ssadmdfl - ok
11:21:24.0317 6072 ssadmdm (4da7c71bfac5ad71255b7e4cab980163) C:\Windows\system32\DRIVERS\ssadmdm.sys
11:21:24.0317 6072 ssadmdm - ok
11:21:24.0332 6072 sscdbus (f4f1e1ff6986fe8914525af751ea3eac) C:\Windows\system32\DRIVERS\sscdbus.sys
11:21:24.0348 6072 sscdbus - ok
11:21:24.0348 6072 sscdmdfl (5447690d2cfe1bde1be3a5a5a3e2f796) C:\Windows\system32\DRIVERS\sscdmdfl.sys
11:21:24.0348 6072 sscdmdfl - ok
11:21:24.0379 6072 sscdmdm (bfda292053aeb76a0c1d63b2279d5138) C:\Windows\system32\DRIVERS\sscdmdm.sys
11:21:24.0379 6072 sscdmdm - ok
11:21:24.0410 6072 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
11:21:24.0410 6072 SSDPSRV - ok
11:21:24.0426 6072 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
11:21:24.0426 6072 SstpSvc - ok
11:21:24.0441 6072 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
11:21:24.0441 6072 stexstor - ok
11:21:24.0457 6072 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
11:21:24.0473 6072 StillCam - ok
11:21:24.0519 6072 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
11:21:24.0535 6072 stisvc - ok
11:21:24.0566 6072 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys
11:21:24.0566 6072 storflt - ok
11:21:24.0582 6072 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys
11:21:24.0582 6072 storvsc - ok
11:21:24.0597 6072 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
11:21:24.0597 6072 swenum - ok
11:21:24.0707 6072 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
11:21:24.0707 6072 SwitchBoard - ok
11:21:24.0738 6072 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
11:21:24.0753 6072 swprv - ok
11:21:24.0753 6072 Synth3dVsc - ok
11:21:24.0831 6072 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
11:21:24.0863 6072 SysMain - ok
11:21:24.0925 6072 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
11:21:24.0925 6072 TabletInputService - ok
11:21:24.0972 6072 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
11:21:24.0972 6072 TapiSrv - ok
11:21:24.0972 6072 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
11:21:24.0972 6072 TBS - ok
11:21:25.0050 6072 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
11:21:25.0081 6072 Tcpip - ok
11:21:25.0175 6072 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
11:21:25.0190 6072 TCPIP6 - ok
11:21:25.0237 6072 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
11:21:25.0237 6072 tcpipreg - ok
11:21:25.0237 6072 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
11:21:25.0237 6072 TDPIPE - ok
11:21:25.0268 6072 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
11:21:25.0268 6072 TDTCP - ok
11:21:25.0284 6072 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
11:21:25.0284 6072 tdx - ok
11:21:25.0299 6072 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
11:21:25.0299 6072 TermDD - ok
11:21:25.0346 6072 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
11:21:25.0362 6072 TermService - ok
11:21:25.0377 6072 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
11:21:25.0377 6072 Themes - ok
11:21:25.0393 6072 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
11:21:25.0393 6072 THREADORDER - ok
11:21:25.0409 6072 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
11:21:25.0409 6072 TrkWks - ok
11:21:25.0440 6072 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
11:21:25.0455 6072 TrustedInstaller - ok
11:21:25.0471 6072 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
11:21:25.0471 6072 tssecsrv - ok
11:21:25.0487 6072 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
11:21:25.0487 6072 TsUsbFlt - ok
11:21:25.0487 6072 tsusbhub - ok
11:21:25.0533 6072 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
11:21:25.0533 6072 tunnel - ok
11:21:25.0533 6072 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
11:21:25.0533 6072 uagp35 - ok
11:21:25.0565 6072 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
11:21:25.0580 6072 udfs - ok
11:21:25.0580 6072 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
11:21:25.0580 6072 UI0Detect - ok
11:21:25.0596 6072 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
11:21:25.0596 6072 uliagpkx - ok
11:21:25.0643 6072 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
11:21:25.0643 6072 umbus - ok
11:21:25.0658 6072 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
11:21:25.0658 6072 UmPass - ok
11:21:25.0674 6072 UmRdpService (a293dcd756d04d8492a750d03b9a297c) C:\Windows\System32\umrdp.dll
11:21:25.0674 6072 UmRdpService - ok
11:21:25.0767 6072 UMVPFSrv (927754abf077aeb5504be4e0f2c60c1b) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
11:21:25.0767 6072 UMVPFSrv - ok
11:21:25.0783 6072 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
11:21:25.0799 6072 upnphost - ok
11:21:25.0830 6072 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
11:21:25.0830 6072 USBAAPL64 - ok
11:21:25.0877 6072 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
11:21:25.0877 6072 usbaudio - ok
11:21:25.0908 6072 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
11:21:25.0908 6072 usbccgp - ok
11:21:25.0939 6072 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
11:21:25.0939 6072 usbcir - ok
11:21:25.0970 6072 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
11:21:25.0970 6072 usbehci - ok
11:21:25.0986 6072 usbfilter (76e2ffad301490ba27b947c6507752fb) C:\Windows\system32\DRIVERS\usbfilter.sys
11:21:26.0001 6072 usbfilter - ok
11:21:26.0033 6072 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
11:21:26.0033 6072 usbhub - ok
11:21:26.0048 6072 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
11:21:26.0048 6072 usbohci - ok
11:21:26.0064 6072 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
11:21:26.0064 6072 usbprint - ok
11:21:26.0095 6072 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
11:21:26.0095 6072 usbscan - ok
11:21:26.0095 6072 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:21:26.0095 6072 USBSTOR - ok
11:21:26.0111 6072 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\DRIVERS\usbuhci.sys
11:21:26.0111 6072 usbuhci - ok
11:21:26.0126 6072 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
11:21:26.0126 6072 UxSms - ok
11:21:26.0157 6072 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
11:21:26.0157 6072 VaultSvc - ok
11:21:26.0157 6072 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
11:21:26.0157 6072 vdrvroot - ok
11:21:26.0220 6072 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
11:21:26.0220 6072 vds - ok
11:21:26.0235 6072 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
11:21:26.0235 6072 vga - ok
11:21:26.0251 6072 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
11:21:26.0251 6072 VgaSave - ok
11:21:26.0251 6072 VGPU - ok
11:21:26.0282 6072 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
11:21:26.0282 6072 vhdmp - ok
11:21:26.0298 6072 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
11:21:26.0298 6072 viaide - ok
11:21:26.0313 6072 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys
11:21:26.0313 6072 vmbus - ok
11:21:26.0313 6072 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys
11:21:26.0313 6072 VMBusHID - ok
11:21:26.0345 6072 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
11:21:26.0345 6072 volmgr - ok
11:21:26.0376 6072 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
11:21:26.0376 6072 volmgrx - ok
11:21:26.0391 6072 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
11:21:26.0391 6072 volsnap - ok
11:21:26.0423 6072 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
11:21:26.0423 6072 vsmraid - ok
11:21:26.0501 6072 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
11:21:26.0532 6072 VSS - ok
11:21:26.0610 6072 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
11:21:26.0610 6072 vwifibus - ok
11:21:26.0625 6072 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
11:21:26.0625 6072 W32Time - ok
11:21:26.0641 6072 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
11:21:26.0641 6072 WacomPen - ok
11:21:26.0657 6072 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
11:21:26.0657 6072 WANARP - ok
11:21:26.0672 6072 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
11:21:26.0672 6072 Wanarpv6 - ok
11:21:26.0735 6072 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
11:21:26.0766 6072 WatAdminSvc - ok
11:21:26.0828 6072 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
11:21:26.0844 6072 wbengine - ok
11:21:26.0891 6072 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
11:21:26.0891 6072 WbioSrvc - ok
11:21:26.0922 6072 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
11:21:26.0937 6072 wcncsvc - ok
11:21:26.0953 6072 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
11:21:26.0953 6072 WcsPlugInService - ok
11:21:26.0953 6072 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
11:21:26.0953 6072 Wd - ok
11:21:26.0984 6072 WDC_SAM (a3d04ebf5227886029b4532f20d026f7) C:\Windows\system32\DRIVERS\wdcsam64.sys
11:21:26.0984 6072 WDC_SAM - ok
11:21:27.0015 6072 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
11:21:27.0031 6072 Wdf01000 - ok
11:21:27.0031 6072 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
11:21:27.0031 6072 WdiServiceHost - ok
11:21:27.0031 6072 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
11:21:27.0047 6072 WdiSystemHost - ok
11:21:27.0078 6072 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
11:21:27.0078 6072 WebClient - ok
11:21:27.0093 6072 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
11:21:27.0109 6072 Wecsvc - ok
11:21:27.0125 6072 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
11:21:27.0125 6072 wercplsupport - ok
11:21:27.0140 6072 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
11:21:27.0140 6072 WerSvc - ok
11:21:27.0140 6072 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
11:21:27.0140 6072 WfpLwf - ok
11:21:27.0156 6072 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
11:21:27.0156 6072 WIMMount - ok
11:21:27.0171 6072 WinDefend - ok
11:21:27.0171 6072 WinHttpAutoProxySvc - ok
11:21:27.0234 6072 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
11:21:27.0234 6072 Winmgmt - ok
11:21:27.0312 6072 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
11:21:27.0327 6072 WinRM - ok
11:21:27.0390 6072 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
11:21:27.0390 6072 Wlansvc - ok
11:21:27.0515 6072 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:21:27.0546 6072 wlidsvc - ok
11:21:27.0593 6072 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
11:21:27.0593 6072 WmiAcpi - ok
11:21:27.0624 6072 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
11:21:27.0624 6072 wmiApSrv - ok
11:21:27.0639 6072 WMPNetworkSvc - ok
11:21:27.0639 6072 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
11:21:27.0639 6072 WPCSvc - ok
11:21:27.0655 6072 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
11:21:27.0655 6072 WPDBusEnum - ok
11:21:27.0671 6072 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
11:21:27.0671 6072 ws2ifsl - ok
11:21:27.0686 6072 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
11:21:27.0686 6072 wscsvc - ok
11:21:27.0686 6072 WSearch - ok
11:21:27.0795 6072 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
11:21:27.0827 6072 wuauserv - ok
11:21:27.0873 6072 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
11:21:27.0873 6072 WudfPf - ok
11:21:27.0889 6072 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
11:21:27.0889 6072 WUDFRd - ok
11:21:27.0920 6072 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
11:21:27.0920 6072 wudfsvc - ok
11:21:27.0936 6072 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
11:21:27.0936 6072 WwanSvc - ok
11:21:27.0951 6072 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
11:21:28.0248 6072 \Device\Harddisk0\DR0 - ok
11:21:28.0248 6072 Boot (0x1200) (b4b7503f0a35324164da16b09e4edc2a) \Device\Harddisk0\DR0\Partition0
11:21:28.0248 6072 \Device\Harddisk0\DR0\Partition0 - ok
11:21:28.0279 6072 Boot (0x1200) (b60a987461161ab4ac7023c28f181167) \Device\Harddisk0\DR0\Partition1
11:21:28.0279 6072 \Device\Harddisk0\DR0\Partition1 - ok
11:21:28.0279 6072 ============================================================
11:21:28.0279 6072 Scan finished
11:21:28.0279 6072 ============================================================
11:21:28.0279 6064 Detected object count: 0
11:21:28.0279 6064 Actual detected object count: 0
11:22:15.0625 5932 Deinitialize success


Here is my aswmbr log.

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-20 11:22:40
-----------------------------
11:22:40.082 OS Version: Windows x64 6.1.7601 Service Pack 1
11:22:40.082 Number of processors: 4 586 0x403
11:22:40.082 ComputerName: ANDREW-PC UserName: Andrew
11:22:41.128 Initialize success
11:25:55.964 AVAST engine defs: 12072000
11:26:11.610 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
11:26:11.610 Disk 0 Vendor: WDC_WD1002FAEX-00Z3A0 05.01D05 Size: 953869MB BusType: 3
11:26:11.626 Disk 0 MBR read successfully
11:26:11.626 Disk 0 MBR scan
11:26:11.626 Disk 0 Windows 7 default MBR code
11:26:11.626 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
11:26:11.642 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 953753 MB offset 206848
11:26:11.688 Disk 0 scanning C:\Windows\system32\drivers
11:26:20.799 Service scanning
11:26:43.590 Modules scanning
11:26:43.590 Disk 0 trace - called modules:
11:26:43.606 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
11:26:43.622 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80049a8060]
11:26:43.622 3 CLASSPNP.SYS[fffff8800160143f] -> nt!IofCallDriver -> [0xfffffa80048fa9b0]
11:26:43.622 5 ACPI.sys[fffff88000ec57a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8004999060]
11:26:44.870 AVAST engine scan C:\Windows
11:26:48.083 AVAST engine scan C:\Windows\system32
11:29:43.615 AVAST engine scan C:\Windows\system32\drivers
11:29:53.817 AVAST engine scan C:\Users\Andrew
11:34:57.331 Disk 0 MBR has been saved successfully to "C:\Users\Andrew\Documents\MBR.dat"
11:34:57.331 The log file has been saved successfully to "C:\Users\Andrew\Documents\aswMBR.txt"


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-20 11:22:40
-----------------------------
11:22:40.082 OS Version: Windows x64 6.1.7601 Service Pack 1
11:22:40.082 Number of processors: 4 586 0x403
11:22:40.082 ComputerName: ANDREW-PC UserName: Andrew
11:22:41.128 Initialize success
11:25:55.964 AVAST engine defs: 12072000
11:26:11.610 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
11:26:11.610 Disk 0 Vendor: WDC_WD1002FAEX-00Z3A0 05.01D05 Size: 953869MB BusType: 3
11:26:11.626 Disk 0 MBR read successfully
11:26:11.626 Disk 0 MBR scan
11:26:11.626 Disk 0 Windows 7 default MBR code
11:26:11.626 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
11:26:11.642 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 953753 MB offset 206848
11:26:11.688 Disk 0 scanning C:\Windows\system32\drivers
11:26:20.799 Service scanning
11:26:43.590 Modules scanning
11:26:43.590 Disk 0 trace - called modules:
11:26:43.606 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
11:26:43.622 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80049a8060]
11:26:43.622 3 CLASSPNP.SYS[fffff8800160143f] -> nt!IofCallDriver -> [0xfffffa80048fa9b0]
11:26:43.622 5 ACPI.sys[fffff88000ec57a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8004999060]
11:26:44.870 AVAST engine scan C:\Windows
11:26:48.083 AVAST engine scan C:\Windows\system32
11:29:43.615 AVAST engine scan C:\Windows\system32\drivers
11:29:53.817 AVAST engine scan C:\Users\Andrew
11:34:57.331 Disk 0 MBR has been saved successfully to "C:\Users\Andrew\Documents\MBR.dat"
11:34:57.331 The log file has been saved successfully to "C:\Users\Andrew\Documents\aswMBR.txt"
11:43:20.574 AVAST engine scan C:\ProgramData
11:48:00.657 Scan finished successfully
11:48:29.439 Disk 0 MBR has been saved successfully to "C:\Users\Andrew\Documents\MBR.dat"
11:48:29.579 The log file has been saved successfully to "C:\Users\Andrew\Documents\aswMBR.txt"


My first ESET scan was interrupted as my computer crashed before the scan finished.
On the second scan there was no threats found but I was able to find what was quarantined from the first scan.

cnet2_winmd5sum-install_exe.exe
av-test.txt

and from what I remember it saying before it crashed:

installcore.d
eicar test file

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:02 AM

Posted 20 July 2012 - 03:23 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Create a restore point before trying this

Download

adware cleaner

Launch it click on Delete

post the generated log

#5 dynex

dynex
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:07:02 AM

Posted 20 July 2012 - 04:26 PM

Here are my minitoolbox results:

MiniToolBox by Farbar Version: 15-07-2012
Ran by Andrew (administrator) on 20-07-2012 at 14:18:47
Microsoft Windows 7 Ultimate Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.autoconfig_url", "http://proxy.ucla.edu/cgi/proxy"
"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================





========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Andrew-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 6C-62-6D-57-85-88
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::20bf:cb25:27fe:241%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.7(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Friday, July 20, 2012 2:12:52 PM
Lease Expires . . . . . . . . . . : Saturday, July 21, 2012 2:11:39 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 241984109
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-F5-04-34-6C-62-6D-57-85-88
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{BF265176-212F-4E1A-8FD5-1B9C07FD7143}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:c79:26e9:9331:1960(Preferred)
Link-local IPv6 Address . . . . . : fe80::c79:26e9:9331:1960%12(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 2607:f8b0:4000:800::1003
74.125.227.134
74.125.227.135
74.125.227.136
74.125.227.137
74.125.227.142
74.125.227.128
74.125.227.129
74.125.227.130
74.125.227.131
74.125.227.132
74.125.227.133


Pinging google.com [74.125.227.136] with 32 bytes of data:
Reply from 74.125.227.136: bytes=32 time=46ms TTL=50
Reply from 74.125.227.136: bytes=32 time=46ms TTL=51

Ping statistics for 74.125.227.136:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 46ms, Maximum = 46ms, Average = 46ms
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 209.191.122.70
72.30.38.140
98.139.183.24


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=107ms TTL=41
Reply from 98.139.183.24: bytes=32 time=205ms TTL=43

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 107ms, Maximum = 205ms, Average = 156ms
Server: UnKnown
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Request timed out.
Request timed out.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
10...6c 62 6d 57 85 88 ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
11...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.7 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.7 276
192.168.1.7 255.255.255.255 On-link 192.168.1.7 276
192.168.1.255 255.255.255.255 On-link 192.168.1.7 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.7 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.7 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
12 58 ::/0 On-link
1 306 ::1/128 On-link
12 58 2001::/32 On-link
12 306 2001:0:4137:9e76:c79:26e9:9331:1960/128
On-link
10 276 fe80::/64 On-link
12 306 fe80::/64 On-link
12 306 fe80::c79:26e9:9331:1960/128
On-link
10 276 fe80::20bf:cb25:27fe:241/128
On-link
1 306 ff00::/8 On-link
12 306 ff00::/8 On-link
10 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/20/2012 00:29:37 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/20/2012 00:29:34 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/20/2012 00:29:34 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/20/2012 00:29:27 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/20/2012 11:49:41 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/20/2012 11:49:39 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/20/2012 11:49:39 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/20/2012 11:46:00 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/20/2012 11:17:48 AM) (Source: Application Error) (User: )
Description: Faulting application name: Fuel.Service.exe, version: 1.0.0.0, time stamp: 0x4fd626ed
Faulting module name: Device.dll, version: 4.1.0.0, time stamp: 0x4f55e10b
Exception code: 0xc0000005
Fault offset: 0x00000000000033c1
Faulting process id: 0x730
Faulting application start time: 0xFuel.Service.exe0
Faulting application path: Fuel.Service.exe1
Faulting module path: Fuel.Service.exe2
Report Id: Fuel.Service.exe3

Error: (07/19/2012 11:35:08 PM) (Source: Application Error) (User: )
Description: Faulting application name: Fuel.Service.exe, version: 1.0.0.0, time stamp: 0x4fd626ed
Faulting module name: Device.dll, version: 4.1.0.0, time stamp: 0x4f55e10b
Exception code: 0xc0000005
Fault offset: 0x00000000000033c1
Faulting process id: 0x640
Faulting application start time: 0xFuel.Service.exe0
Faulting application path: Fuel.Service.exe1
Faulting module path: Fuel.Service.exe2
Report Id: Fuel.Service.exe3


System errors:
=============
Error: (07/20/2012 02:12:52 PM) (Source: Service Control Manager) (User: )
Description: The AODDriver4.1 service failed to start due to the following error:
%%2

Error: (07/20/2012 02:12:46 PM) (Source: Microsoft-Windows-Eventlog) (User: NT AUTHORITY)
Description: The event logging service encountered an error while initializing publishing resources for channel DebugChannel. If channel type is Analytic or Debug, then this could mean there was an error initializing logging resources as well.

Error: (07/20/2012 00:27:21 PM) (Source: Service Control Manager) (User: )
Description: The AODDriver4.1 service failed to start due to the following error:
%%2

Error: (07/20/2012 00:27:18 PM) (Source: Service Control Manager) (User: )
Description: The AODDriver4.1 service failed to start due to the following error:
%%2

Error: (07/20/2012 00:27:10 PM) (Source: Microsoft-Windows-Eventlog) (User: NT AUTHORITY)
Description: The event logging service encountered an error while initializing publishing resources for channel DebugChannel. If channel type is Analytic or Debug, then this could mean there was an error initializing logging resources as well.

Error: (07/20/2012 00:27:10 PM) (Source: BugCheck) (User: )
Description: 0x00000109 (0xa3a039d89f8b3ab8, 0xb3b7465ef20973d6, 0xfffff80000b9c5cc, 0x0000000000000001)C:\Windows\MEMORY.DMP072012-19063-01

Error: (07/20/2012 00:27:01 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 12:25:21 PM on ?7/?20/?2012 was unexpected.

Error: (07/20/2012 11:18:34 AM) (Source: Service Control Manager) (User: )
Description: The AODDriver4.1 service failed to start due to the following error:
%%2

Error: (07/20/2012 11:18:28 AM) (Source: Microsoft-Windows-Eventlog) (User: NT AUTHORITY)
Description: The event logging service encountered an error while initializing publishing resources for channel DebugChannel. If channel type is Analytic or Debug, then this could mean there was an error initializing logging resources as well.

Error: (07/20/2012 11:17:49 AM) (Source: Service Control Manager) (User: )
Description: The AMD FUEL Service service terminated unexpectedly. It has done this 1 time(s).


Microsoft Office Sessions:
=========================
Error: (07/20/2012 00:29:37 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Andrew\Downloads\esetsmartinstaller_enu.exe

Error: (07/20/2012 00:29:34 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Andrew\Downloads\esetsmartinstaller_enu.exe

Error: (07/20/2012 00:29:34 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Andrew\Downloads\esetsmartinstaller_enu.exe

Error: (07/20/2012 00:29:27 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Andrew\Downloads\esetsmartinstaller_enu.exe

Error: (07/20/2012 11:49:41 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Andrew\Downloads\esetsmartinstaller_enu.exe

Error: (07/20/2012 11:49:39 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Andrew\Downloads\esetsmartinstaller_enu.exe

Error: (07/20/2012 11:49:39 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Andrew\Downloads\esetsmartinstaller_enu.exe

Error: (07/20/2012 11:46:00 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Andrew\Downloads\esetsmartinstaller_enu.exe

Error: (07/20/2012 11:17:48 AM) (Source: Application Error)(User: )
Description: Fuel.Service.exe1.0.0.04fd626edDevice.dll4.1.0.04f55e10bc000000500000000000033c173001cd66a389aa847bC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll3557d927-d297-11e1-9843-6c626d578588

Error: (07/19/2012 11:35:08 PM) (Source: Application Error)(User: )
Description: Fuel.Service.exe1.0.0.04fd626edDevice.dll4.1.0.04f55e10bc000000500000000000033c164001cd66320db0cb98C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll0bf833ec-d235-11e1-8f36-6c626d578588


=========================== Installed Programs ============================

64 Bit HP CIO Components Installer (Version: 7.2.8)
AC3Filter (remove only)
Adobe AIR (Version: 3.3.0.3650)
Adobe Download Assistant (Version: 1.2)
Adobe Flash Player 10 ActiveX (Version: 10.3.183.16)
Adobe Flash Player 11 Plugin (Version: 11.3.300.265)
Adobe Photoshop CS6 (Version: 13.0)
Adobe Reader X (10.1.3) (Version: 10.1.3)
AIM 7
Amazon MP3 Downloader 1.0.15 (Version: 1.0.15)
AMD Accelerated Video Transcoding (Version: 2.00.0002)
AMD APP SDK Runtime (Version: 10.0.938.1)
AMD Catalyst Install Manager (Version: 8.0.881.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Fuel (Version: 2012.0611.1251.21046)
AMD Media Foundation Decoders (Version: 1.0.70611.1329)
AMD Steady Video Plug-In (Version: 2.04.0000)
AMD VISION Engine Control Center (Version: 2012.0611.1251.21046)
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
ATI Catalyst Registration (Version: 3.00.0000)
Audacity 1.3.13 (Unicode)
Auslogics Disk Defrag (Version: version 3.3)
Bing Bar (Version: 7.1.361.0)
Bonjour (Version: 3.0.0.10)
BufferChm (Version: 140.0.212.000)
C310 (Version: 140.0.304.000)
CameraHelperMsi (Version: 13.30.1395.0)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2012.0611.1251.21046)
Catalyst Control Center InstallProxy (Version: 2012.0611.1251.21046)
Catalyst Control Center Localization All (Version: 2012.0611.1251.21046)
ccc-utility64 (Version: 2012.0611.1251.21046)
CCC Help Chinese Standard (Version: 2012.0611.1250.21046)
CCC Help Chinese Traditional (Version: 2012.0611.1250.21046)
CCC Help Czech (Version: 2012.0611.1250.21046)
CCC Help Danish (Version: 2012.0611.1250.21046)
CCC Help Dutch (Version: 2012.0611.1250.21046)
CCC Help English (Version: 2012.0611.1250.21046)
CCC Help Finnish (Version: 2012.0611.1250.21046)
CCC Help French (Version: 2012.0611.1250.21046)
CCC Help German (Version: 2012.0611.1250.21046)
CCC Help Greek (Version: 2012.0611.1250.21046)
CCC Help Hungarian (Version: 2012.0611.1250.21046)
CCC Help Italian (Version: 2012.0611.1250.21046)
CCC Help Japanese (Version: 2012.0611.1250.21046)
CCC Help Korean (Version: 2012.0611.1250.21046)
CCC Help Norwegian (Version: 2012.0611.1250.21046)
CCC Help Polish (Version: 2012.0611.1250.21046)
CCC Help Portuguese (Version: 2012.0611.1250.21046)
CCC Help Russian (Version: 2012.0611.1250.21046)
CCC Help Spanish (Version: 2012.0611.1250.21046)
CCC Help Swedish (Version: 2012.0611.1250.21046)
CCC Help Thai (Version: 2012.0611.1250.21046)
CCC Help Turkish (Version: 2012.0611.1250.21046)
CCleaner (Version: 3.18)
Core Temp version 0.99.8 (Version: 0.99.8)
CPUID CPU-Z 1.57
CutePDF Writer 2.8
D3DX10 (Version: 15.4.2368.0902)
Data Lifeguard Diagnostic for Windows 1.22
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition
Destinations (Version: 140.0.77.000)
DeviceDiscovery (Version: 140.0.212.000)
Diablo III (Version: 1.0.3.10485)
DivX Setup (Version: 2.6.1.9)
Download Updater (AOL LLC)
Driver Sweeper version 3.1.0 (Version: 3.1.0)
Dropbox (Version: 1.4.7)
E-Hammer (Version: 1.0.0)
erLT (Version: 1.20.138.34)
ESET Online Scanner v3
Foxit Reader (Version: 5.3.1.606)
Google Chrome (Version: 20.0.1132.57)
Google Talk Plugin (Version: 3.2.4.8431)
GPBaseService2 (Version: 140.0.211.000)
Heroes of Newerth (Version: 2.3.0)
Hewlett-Packard ACLM.NET v1.1.0.0 (Version: 1.00.0000)
HP Customer Participation Program 14.0 (Version: 14.0)
HP Imaging Device Functions 14.0 (Version: 14.0)
HP Photo Creations (Version: 1.0.0.2024)
HP Photosmart Prem C310 All-In-One Driver Software 14.0 Rel. 7 (Version: 14.0)
HP Product Detection (Version: 11.14.0001)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Solution Center 14.0 (Version: 14.0)
HP Update (Version: 5.003.001.001)
HPAppStudio (Version: 140.0.95.000)
HPDiagnosticAlert (Version: 1.00.0000)
HPPhotoGadget (Version: 140.0.524.000)
HPProductAssistant (Version: 140.0.212.000)
HPSSupply (Version: 140.0.211.000)
iTunes (Version: 10.6.3.25)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 33 (Version: 6.0.330)
JDownloader
LAME v3.98.3 for Audacity
Logitech SetPoint 6.20 (Version: 6.20.64)
Logitech Vid HD (Version: 7.2 (7248))
Logitech Webcam Software (Version: 2.0)
LWS Facebook (Version: 13.30.1346.0)
LWS Gallery (Version: 13.30.1379.0)
LWS Help_main (Version: 13.30.1396.0)
LWS Launcher (Version: 13.30.1379.0)
LWS Motion Detection (Version: 13.20.1176.0)
LWS Pictures And Video (Version: 13.30.1395.0)
LWS Twitter (Version: 13.30.1346.0)
LWS Video Mask Maker (Version: 13.30.1379.0)
LWS VideoEffects (Version: 13.30.1379.0)
LWS Webcam Software (Version: 13.30.1379.0)
LWS WLM Plugin (Version: 1.30.1201.0)
LWS YouTube Plugin (Version: 13.30.1346.0)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
MarketResearch (Version: 140.0.212.000)
MediaMonkey 3.2 (Version: 3.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 32-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Mozilla Firefox 14.0.1 (x86 en-US) (Version: 14.0.1)
Mozilla Maintenance Service (Version: 14.0.1)
Mp3tag v2.49b (Version: v2.49b)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MusicBrainz Picard (Version: 0.16)
Nero 10 Movie ThemePack Basic (Version: 10.0.10600.6.0)
Nero BurnRights 10 (Version: 4.0.11300.14.100)
Nero BurnRights 10 Help (CHM) (Version: 1.0.10900)
Nero Control Center 10 (Version: 10.0.12900.2.6)
Nero ControlCenter 10 Help (CHM) (Version: 1.0.10900)
Nero Core Components 10 (Version: 2.0.16800.7.15)
Nero CoverDesigner 10 (Version: 5.0.11200.16.100)
Nero CoverDesigner 10 Help (CHM) (Version: 1.0.10900)
Nero DiscSpeed 10 (Version: 6.0.11400.18.100)
Nero DiscSpeed 10 Help (CHM) (Version: 1.0.10900)
Nero Express 10 (Version: 10.0.12300.23.100)
Nero Express 10 Help (CHM) (Version: 1.0.10900)
Nero InfoTool 10 (Version: 7.0.11400.15.100)
Nero InfoTool 10 Help (CHM) (Version: 1.0.10900)
Nero MediaHub 10 (Version: 1.0.14800.28.100)
Nero MediaHub 10 Help (CHM) (Version: 1.0.10900)
Nero Multimedia Suite 10 Essentials (Version: 10.0.10300)
Nero StartSmart 10 (Version: 10.0.12600.30.100)
Nero StartSmart 10 Help (CHM) (Version: 1.0.10900)
Nero Update (Version: 11.0.11500.28.0)
Network64 (Version: 140.0.215.000)
Network64 (Version: 140.0.221.000)
Nitro Reader 2 (Version: 2.3.1.2)
PDF Settings CS6 (Version: 11.0)
PDFZilla V1.2.9
PS_AIO_07_C310_SW_Min (Version: 140.0.304.000)
QuickTime (Version: 7.72.80.56)
QuickTransfer (Version: 140.0.98.000)
Realtek Ethernet Controller Driver For Windows 7 (Version: 7.18.322.2010)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.0.34.0)
SAMSUNG USB Driver for Mobile Phones (Version: 1.3.450.0)
Scan (Version: 140.0.80.000)
Secunia PSI (3.0.0.2004) (Version: 3.0.0.2004)
Shop for HP Supplies (Version: 14.0)
Skype™ 5.5 (Version: 5.5.113)
SmartWebPrinting (Version: 140.0.186.000)
SolutionCenter (Version: 140.0.214.000)
Spotify (Version: 0.8.4.93.gd9f49c35)
StarCraft II (Version: 1.4.4.22418)
Status (Version: 140.0.256.000)
The Lord of the Rings FREE Trial (Version: 1.00.0000)
Toolbox (Version: 140.0.428.000)
TrayApp (Version: 140.0.212.000)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 64-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 64-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 64-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 64-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2597091) 64-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 64-Bit Edition
Update for Microsoft OneNote 2010 (KB2589345) 64-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 64-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 64-Bit Edition
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
Ventrilo Client for Windows x64 (Version: 3.0.8.0)
Virtual Account Numbers (Version: 1.0.1.0)
Virtual Account Numbers (Version: 3.7.11.0)
VLC media player 2.0.2 (Version: 2.0.2)
WBFS Manager 3.0 (Version: 3.0)
WebReg (Version: 140.0.212.017)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3538.0513)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3538.0513)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
WinRAR archiver

========================= Memory info: ===================================

Percentage of memory in use: 39%
Total physical RAM: 4095.18 MB
Available physical RAM: 2472.16 MB
Total Pagefile: 8188.55 MB
Available Pagefile: 6386.73 MB
Total Virtual: 4095.88 MB
Available Virtual: 3961.79 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:931.4 GB) (Free:676.87 GB) NTFS

========================= Users: ========================================

User accounts for \\ANDREW-PC

Administrator Andrew Guest


**** End of log ****


Here is my FSS log:

Farbar Service Scanner Version: 19-07-2012
Ran by Andrew (administrator) on 20-07-2012 at 14:20:40
Running from "C:\Users\Andrew\Downloads"
Microsoft Windows 7 Ultimate Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============

sharedaccess Service is not running. Checking service configuration:
The start type of sharedaccess service is set to Disabled
The ImagePath of sharedaccess service is OK.
The ServiceDll of sharedaccess service is OK.


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****


And here is my adware cleaner log:

# AdwCleaner v1.703 - Logfile created 07/20/2012 at 14:21:24
# Updated 20/07/2012 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (64 bits)
# User : Andrew - ANDREW-PC
# Running from : C:\Users\Andrew\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Program Files (x86)\Common Files\Software Update Utility
File Deleted : C:\Program Files (x86)\Mozilla Firefox\plugins\npdnu.dll
File Deleted : C:\Program Files (x86)\Mozilla Firefox\plugins\npdnu.xpt
File Deleted : C:\Program Files (x86)\Mozilla Firefox\plugins\npdnupdater2.dll
File Deleted : C:\Program Files (x86)\Mozilla Firefox\plugins\npdnupdater2.xpt

***** [Registry] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\dnu.EXE
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdate
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser.1
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdUtility

***** [Registre - GUID] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E15A9BFD-D16D-496D-8222-44CADF316E70}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{92380354-381A-471F-BE2E-DD9ACD9777EA}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
[x64] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
[x64] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
[x64] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Mozilla Firefox v14.0.1 (en-US)

Profile name : default
File : C:\Users\Andrew\AppData\Roaming\Mozilla\Firefox\Profiles\3i9go8zk.default\prefs.js

C:\Users\Andrew\AppData\Roaming\Mozilla\Firefox\Profiles\3i9go8zk.default\user.js ... Deleted !

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [2553 octets] - [20/07/2012 14:21:24]

########## EOF - C:\AdwCleaner[S1].txt - [2681 octets] ##########

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:02 AM

Posted 20 July 2012 - 04:29 PM

That looks good

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#7 dynex

dynex
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:07:02 AM

Posted 20 July 2012 - 04:52 PM

Thank you so much for the help!!

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:02 AM

Posted 20 July 2012 - 04:59 PM

You're welcome :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users