Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Pop-up at the bottom right of my browser


  • Please log in to reply
11 replies to this topic

#1 tsunamii

tsunamii

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:58 AM

Posted 07 August 2012 - 12:33 AM

I know this post has been posted a million times, but I can't fix it on my own seeing as its unique for each computer (Man this thing is annoying as hell!)


-It is sometimes shaped an an ipod or a square box, it appears with a link that re-directs to a site trying to sell you something related to whatever you were looking at.

-I am also experiencing re-directs occasionally when I click on a link or search something up.



This problem persists when using any browser I try (IE, opera, firefox, chrome) and even when I'm in a game launcher that has the website feeded into the launcher (I get a little box there).

I've trying Malwarebytes anti-malware, avast, kaspersky, ad-aware, and superantispyware and nothing can detect it.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:58 AM

Posted 07 August 2012 - 12:40 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 tsunamii

tsunamii
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:58 AM

Posted 07 August 2012 - 04:52 AM

TDSS

02:30:22.0391 2796 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
02:30:22.0792 2796 ============================================================
02:30:22.0792 2796 Current date / time: 2012/08/07 02:30:22.0792
02:30:22.0792 2796 SystemInfo:
02:30:22.0792 2796
02:30:22.0792 2796 OS Version: 6.1.7600 ServicePack: 0.0
02:30:22.0792 2796 Product type: Workstation
02:30:22.0792 2796 ComputerName: TIGER-ALIEN
02:30:22.0792 2796 UserName: bryon
02:30:22.0792 2796 Windows directory: C:\Windows
02:30:22.0792 2796 System windows directory: C:\Windows
02:30:22.0792 2796 Running under WOW64
02:30:22.0792 2796 Processor architecture: Intel x64
02:30:22.0792 2796 Number of processors: 3
02:30:22.0792 2796 Page size: 0x1000
02:30:22.0792 2796 Boot type: Normal boot
02:30:22.0792 2796 ============================================================
02:30:23.0828 2796 Drive \Device\Harddisk0\DR0 - Size: 0x15D50F66000 (1397.27 Gb), SectorSize: 0x200, Cylinders: 0x2F509, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
02:30:23.0848 2796 ============================================================
02:30:23.0848 2796 \Device\Harddisk0\DR0:
02:30:23.0848 2796 MBR partitions:
02:30:23.0848 2796 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
02:30:23.0848 2796 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x27A55000
02:30:23.0848 2796 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x27A87800, BlocksNum 0x7D000000
02:30:23.0848 2796 ============================================================
02:30:23.0881 2796 C: <-> \Device\Harddisk0\DR0\Partition1
02:30:23.0903 2796 D: <-> \Device\Harddisk0\DR0\Partition2
02:30:23.0903 2796 ============================================================
02:30:23.0903 2796 Initialize success
02:30:23.0903 2796 ============================================================
02:30:37.0786 4316 ============================================================
02:30:37.0786 4316 Scan started
02:30:37.0786 4316 Mode: Manual; TDLFS;
02:30:37.0786 4316 ============================================================
02:30:39.0747 4316 !SASCORE (7d9d615201a483d6fa99491c2e655a5a) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
02:30:40.0304 4316 !SASCORE - ok
02:30:40.0426 4316 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
02:30:40.0430 4316 1394ohci - ok
02:30:40.0452 4316 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
02:30:40.0458 4316 ACPI - ok
02:30:40.0473 4316 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
02:30:40.0475 4316 AcpiPmi - ok
02:30:40.0537 4316 Ad-Aware Service (af9658974154c3b6a333d86dc2e0aac8) C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe
02:30:40.0584 4316 Ad-Aware Service - ok
02:30:40.0835 4316 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
02:30:40.0838 4316 AdobeARMservice - ok
02:30:40.0986 4316 AdobeFlashPlayerUpdateSvc (f19c98ad81d2c0e1bbfd8153d2c80ee8) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
02:30:41.0000 4316 AdobeFlashPlayerUpdateSvc - ok
02:30:41.0061 4316 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
02:30:41.0069 4316 adp94xx - ok
02:30:41.0092 4316 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
02:30:41.0097 4316 adpahci - ok
02:30:41.0103 4316 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
02:30:41.0107 4316 adpu320 - ok
02:30:41.0126 4316 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
02:30:41.0127 4316 AeLookupSvc - ok
02:30:41.0167 4316 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
02:30:41.0170 4316 AFD - ok
02:30:41.0174 4316 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
02:30:41.0177 4316 agp440 - ok
02:30:41.0187 4316 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
02:30:41.0190 4316 ALG - ok
02:30:41.0192 4316 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
02:30:41.0194 4316 aliide - ok
02:30:41.0219 4316 AMD External Events Utility (5ec60409bd50953bd4f892b18840039e) C:\Windows\system32\atiesrxx.exe
02:30:41.0752 4316 AMD External Events Utility - ok
02:30:41.0833 4316 AMD FUEL Service - ok
02:30:41.0837 4316 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
02:30:41.0839 4316 amdide - ok
02:30:41.0858 4316 amdiox64 (6a2eeb0c4133b20773bb3dd0b7b377b4) C:\Windows\system32\DRIVERS\amdiox64.sys
02:30:41.0864 4316 amdiox64 - ok
02:30:41.0878 4316 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
02:30:41.0880 4316 AmdK8 - ok
02:30:42.0095 4316 amdkmdag (322e5c178990f116f00e3d923f4e6b1c) C:\Windows\system32\DRIVERS\atikmdag.sys
02:30:42.0634 4316 amdkmdag - ok
02:30:42.0895 4316 amdkmdap (961a81a84fdd700e361e8294528a37ba) C:\Windows\system32\DRIVERS\atikmpag.sys
02:30:43.0084 4316 amdkmdap - ok
02:30:43.0121 4316 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
02:30:43.0136 4316 AmdPPM - ok
02:30:43.0198 4316 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\DRIVERS\amdsata.sys
02:30:43.0201 4316 amdsata - ok
02:30:43.0211 4316 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
02:30:43.0215 4316 amdsbs - ok
02:30:43.0219 4316 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\DRIVERS\amdxata.sys
02:30:43.0221 4316 amdxata - ok
02:30:43.0239 4316 AODDriver4.01 (f312fad7dbd49ed21a194ac71b497832) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
02:30:43.0243 4316 AODDriver4.01 - ok
02:30:43.0269 4316 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
02:30:43.0272 4316 AppID - ok
02:30:43.0313 4316 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
02:30:43.0315 4316 AppIDSvc - ok
02:30:43.0330 4316 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
02:30:43.0331 4316 Appinfo - ok
02:30:43.0351 4316 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
02:30:43.0355 4316 AppMgmt - ok
02:30:43.0400 4316 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
02:30:43.0403 4316 arc - ok
02:30:43.0410 4316 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
02:30:43.0412 4316 arcsas - ok
02:30:43.0489 4316 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
02:30:43.0492 4316 aspnet_state - ok
02:30:43.0513 4316 aswKbd (316271cc32fdfffcdb30677684906d5e) C:\Windows\system32\drivers\aswKbd.sys
02:30:43.0520 4316 aswKbd - ok
02:30:43.0530 4316 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
02:30:43.0532 4316 AsyncMac - ok
02:30:43.0551 4316 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
02:30:43.0552 4316 atapi - ok
02:30:43.0599 4316 AtiHDAudioService (230cf51113cd4b830b3bfd09b0d4c066) C:\Windows\system32\drivers\AtihdW76.sys
02:30:43.0602 4316 AtiHDAudioService - ok
02:30:43.0625 4316 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
02:30:43.0629 4316 AudioEndpointBuilder - ok
02:30:43.0634 4316 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
02:30:43.0638 4316 AudioSrv - ok
02:30:43.0654 4316 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
02:30:43.0657 4316 AxInstSV - ok
02:30:43.0679 4316 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
02:30:43.0686 4316 b06bdrv - ok
02:30:43.0695 4316 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
02:30:43.0699 4316 b57nd60a - ok
02:30:43.0716 4316 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
02:30:43.0719 4316 BDESVC - ok
02:30:43.0732 4316 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
02:30:43.0733 4316 Beep - ok
02:30:43.0772 4316 BFE (4992c609a6315671463e30f6512bc022) C:\Windows\System32\bfe.dll
02:30:43.0776 4316 BFE - ok
02:30:43.0813 4316 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\System32\qmgr.dll
02:30:43.0825 4316 BITS - ok
02:30:43.0854 4316 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
02:30:43.0856 4316 blbdrive - ok
02:30:43.0883 4316 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
02:30:43.0886 4316 bowser - ok
02:30:43.0889 4316 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
02:30:43.0891 4316 BrFiltLo - ok
02:30:43.0900 4316 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
02:30:43.0902 4316 BrFiltUp - ok
02:30:43.0910 4316 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
02:30:43.0911 4316 Browser - ok
02:30:43.0924 4316 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
02:30:43.0929 4316 Brserid - ok
02:30:43.0933 4316 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
02:30:43.0936 4316 BrSerWdm - ok
02:30:43.0939 4316 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
02:30:43.0940 4316 BrUsbMdm - ok
02:30:43.0943 4316 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
02:30:43.0945 4316 BrUsbSer - ok
02:30:43.0950 4316 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
02:30:43.0952 4316 BTHMODEM - ok
02:30:43.0992 4316 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
02:30:43.0995 4316 bthserv - ok
02:30:44.0062 4316 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
02:30:44.0066 4316 cdfs - ok
02:30:44.0136 4316 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
02:30:44.0141 4316 cdrom - ok
02:30:44.0182 4316 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
02:30:44.0183 4316 CertPropSvc - ok
02:30:44.0205 4316 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
02:30:44.0208 4316 circlass - ok
02:30:44.0338 4316 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
02:30:44.0341 4316 CLFS - ok
02:30:44.0513 4316 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
02:30:44.0517 4316 clr_optimization_v2.0.50727_32 - ok
02:30:44.0563 4316 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
02:30:44.0567 4316 clr_optimization_v2.0.50727_64 - ok
02:30:44.0735 4316 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
02:30:44.0740 4316 clr_optimization_v4.0.30319_32 - ok
02:30:44.0855 4316 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
02:30:44.0858 4316 clr_optimization_v4.0.30319_64 - ok
02:30:44.0862 4316 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
02:30:44.0863 4316 CmBatt - ok
02:30:44.0866 4316 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
02:30:44.0868 4316 cmdide - ok
02:30:44.0985 4316 CNG (937beb186a735aca91d717044a49d17e) C:\Windows\system32\Drivers\cng.sys
02:30:44.0994 4316 CNG - ok
02:30:44.0998 4316 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
02:30:45.0000 4316 Compbatt - ok
02:30:45.0042 4316 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
02:30:45.0044 4316 CompositeBus - ok
02:30:45.0046 4316 COMSysApp - ok
02:30:45.0051 4316 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
02:30:45.0052 4316 crcdisk - ok
02:30:45.0194 4316 Creative ALchemy AL6 Licensing Service (c8bd651e13895b93ed9ec5b4f1df42bc) C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
02:30:45.0472 4316 Creative ALchemy AL6 Licensing Service - ok
02:30:45.0500 4316 Creative Audio Engine Licensing Service (c0ead9f8ab83d41ff07303c75589c2b8) C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
02:30:45.0503 4316 Creative Audio Engine Licensing Service - ok
02:30:45.0529 4316 CryptSvc (8c57411b66282c01533cb776f98ad384) C:\Windows\system32\cryptsvc.dll
02:30:45.0530 4316 CryptSvc - ok
02:30:45.0560 4316 CSC (4a6173c2279b498cd8f57cae504564cb) C:\Windows\system32\drivers\csc.sys
02:30:45.0568 4316 CSC - ok
02:30:45.0584 4316 CscService (873fbf927c06e5cee04dec617502f8fd) C:\Windows\System32\cscsvc.dll
02:30:45.0588 4316 CscService - ok
02:30:45.0648 4316 CTAudSvcService (1b8194450eb013cb6e79ce5503d1b0b5) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
02:30:46.0009 4316 CTAudSvcService - ok
02:30:46.0043 4316 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
02:30:46.0047 4316 DcomLaunch - ok
02:30:46.0071 4316 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
02:30:46.0076 4316 defragsvc - ok
02:30:46.0112 4316 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
02:30:46.0115 4316 DfsC - ok
02:30:46.0142 4316 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
02:30:46.0144 4316 Dhcp - ok
02:30:46.0159 4316 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
02:30:46.0160 4316 discache - ok
02:30:46.0174 4316 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
02:30:46.0177 4316 Disk - ok
02:30:46.0279 4316 Diskeeper (65d923e7f2776c88da570381862489d8) C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
02:30:46.0331 4316 Diskeeper - ok
02:30:46.0394 4316 DKRtWrt (63a8f569d6f5eb06db135491972edb67) C:\Windows\system32\DRIVERS\DKRtWrt.sys
02:30:46.0400 4316 DKRtWrt - ok
02:30:46.0419 4316 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
02:30:46.0421 4316 Dnscache - ok
02:30:46.0446 4316 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
02:30:46.0451 4316 dot3svc - ok
02:30:46.0460 4316 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
02:30:46.0462 4316 DPS - ok
02:30:46.0488 4316 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
02:30:46.0490 4316 drmkaud - ok
02:30:46.0554 4316 dump_wmimmc - ok
02:30:46.0689 4316 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
02:30:46.0707 4316 DXGKrnl - ok
02:30:46.0710 4316 EagleX64 - ok
02:30:46.0775 4316 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
02:30:46.0777 4316 EapHost - ok
02:30:47.0553 4316 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
02:30:47.0648 4316 ebdrv - ok
02:30:47.0805 4316 EFS (156f6159457d0aa7e59b62681b56eb90) C:\Windows\System32\lsass.exe
02:30:47.0806 4316 EFS - ok
02:30:48.0083 4316 ehRecvr (47c071994c3f649f23d9cd075ac9304a) C:\Windows\ehome\ehRecvr.exe
02:30:48.0118 4316 ehRecvr - ok
02:30:48.0164 4316 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
02:30:48.0167 4316 ehSched - ok
02:30:48.0192 4316 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
02:30:48.0203 4316 elxstor - ok
02:30:48.0261 4316 EPSON_PM_RPCV4_01 (cdca791afa0483f44bba576dbfafd04d) C:\ProgramData\EPSON\EPW!3 SSRP\E_S30RP1.EXE
02:30:48.0264 4316 EPSON_PM_RPCV4_01 - ok
02:30:48.0296 4316 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
02:30:48.0298 4316 ErrDev - ok
02:30:48.0403 4316 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
02:30:48.0406 4316 EventSystem - ok
02:30:48.0466 4316 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
02:30:48.0529 4316 exfat - ok
02:30:48.0553 4316 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
02:30:48.0563 4316 fastfat - ok
02:30:48.0760 4316 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
02:30:48.0764 4316 Fax - ok
02:30:48.0807 4316 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
02:30:48.0809 4316 fdc - ok
02:30:48.0899 4316 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
02:30:48.0901 4316 fdPHost - ok
02:30:48.0948 4316 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
02:30:48.0950 4316 FDResPub - ok
02:30:48.0994 4316 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
02:30:48.0997 4316 FileInfo - ok
02:30:49.0001 4316 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
02:30:49.0003 4316 Filetrace - ok
02:30:49.0049 4316 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
02:30:49.0051 4316 flpydisk - ok
02:30:49.0313 4316 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
02:30:49.0358 4316 FltMgr - ok
02:30:49.0730 4316 FontCache (bc00505cfda789ed3be95d2ff38c4875) C:\Windows\system32\FntCache.dll
02:30:49.0779 4316 FontCache - ok
02:30:49.0904 4316 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
02:30:49.0906 4316 FontCache3.0.0.0 - ok
02:30:50.0001 4316 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
02:30:50.0003 4316 FsDepends - ok
02:30:50.0021 4316 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
02:30:50.0023 4316 Fs_Rec - ok
02:30:50.0160 4316 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
02:30:50.0161 4316 fvevol - ok
02:30:50.0179 4316 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
02:30:50.0181 4316 gagp30kx - ok
02:30:50.0313 4316 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
02:30:50.0318 4316 gpsvc - ok
02:30:50.0482 4316 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
02:30:50.0483 4316 gupdate - ok
02:30:50.0493 4316 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
02:30:50.0494 4316 gupdatem - ok
02:30:50.0498 4316 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
02:30:50.0500 4316 hcw85cir - ok
02:30:50.0571 4316 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
02:30:50.0578 4316 HdAudAddService - ok
02:30:50.0607 4316 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
02:30:50.0610 4316 HDAudBus - ok
02:30:50.0661 4316 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
02:30:50.0663 4316 HidBatt - ok
02:30:50.0671 4316 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
02:30:50.0674 4316 HidBth - ok
02:30:50.0678 4316 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
02:30:50.0680 4316 HidIr - ok
02:30:50.0739 4316 hidkmdf (3cc53bc405f609f61d4a879f3e7ebc4a) C:\Windows\system32\DRIVERS\hidkmdf.sys
02:30:50.0745 4316 hidkmdf - ok
02:30:50.0749 4316 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
02:30:50.0750 4316 hidserv - ok
02:30:50.0786 4316 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
02:30:50.0789 4316 HidUsb - ok
02:30:50.0850 4316 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
02:30:50.0851 4316 hkmsvc - ok
02:30:50.0941 4316 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
02:30:50.0970 4316 HomeGroupListener - ok
02:30:51.0078 4316 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
02:30:51.0080 4316 HomeGroupProvider - ok
02:30:51.0107 4316 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
02:30:51.0110 4316 HpSAMD - ok
02:30:51.0313 4316 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
02:30:51.0317 4316 HTTP - ok
02:30:51.0336 4316 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
02:30:51.0337 4316 hwpolicy - ok
02:30:51.0360 4316 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
02:30:51.0371 4316 i8042prt - ok
02:30:51.0424 4316 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\DRIVERS\iaStorV.sys
02:30:51.0439 4316 iaStorV - ok
02:30:51.0642 4316 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
02:30:51.0691 4316 idsvc - ok
02:30:51.0704 4316 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
02:30:51.0706 4316 iirsp - ok
02:30:51.0777 4316 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
02:30:51.0781 4316 IKEEXT - ok
02:30:51.0924 4316 IntcAzAudAddService (718a4008ee5da174400396b27509ef82) C:\Windows\system32\drivers\RTKVHD64.sys
02:30:51.0978 4316 IntcAzAudAddService - ok
02:30:52.0056 4316 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
02:30:52.0058 4316 intelide - ok
02:30:52.0079 4316 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
02:30:52.0081 4316 intelppm - ok
02:30:52.0101 4316 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
02:30:52.0104 4316 IPBusEnum - ok
02:30:52.0119 4316 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
02:30:52.0122 4316 IpFilterDriver - ok
02:30:52.0155 4316 iphlpsvc (f8e058d17363ec580e4b7232778b6cb5) C:\Windows\System32\iphlpsvc.dll
02:30:52.0159 4316 iphlpsvc - ok
02:30:52.0165 4316 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
02:30:52.0167 4316 IPMIDRV - ok
02:30:52.0179 4316 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
02:30:52.0182 4316 IPNAT - ok
02:30:52.0199 4316 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
02:30:52.0201 4316 IRENUM - ok
02:30:52.0204 4316 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
02:30:52.0206 4316 isapnp - ok
02:30:52.0221 4316 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
02:30:52.0225 4316 iScsiPrt - ok
02:30:52.0240 4316 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
02:30:52.0242 4316 kbdclass - ok
02:30:52.0253 4316 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
02:30:52.0255 4316 kbdhid - ok
02:30:52.0284 4316 KeyIso (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
02:30:52.0285 4316 KeyIso - ok
02:30:52.0356 4316 KSecDD (16c1b906fc5ead84769f90b736b6bf0e) C:\Windows\system32\Drivers\ksecdd.sys
02:30:52.0359 4316 KSecDD - ok
02:30:52.0393 4316 KSecPkg (0b711550c56444879d71c7daabda6c83) C:\Windows\system32\Drivers\ksecpkg.sys
02:30:52.0397 4316 KSecPkg - ok
02:30:52.0467 4316 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
02:30:52.0470 4316 ksthunk - ok
02:30:52.0557 4316 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
02:30:52.0566 4316 KtmRm - ok
02:30:52.0676 4316 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\system32\srvsvc.dll
02:30:52.0679 4316 LanmanServer - ok
02:30:52.0736 4316 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
02:30:52.0739 4316 LanmanWorkstation - ok
02:30:52.0817 4316 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
02:30:52.0820 4316 lltdio - ok
02:30:52.0899 4316 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
02:30:52.0906 4316 lltdsvc - ok
02:30:52.0936 4316 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
02:30:52.0939 4316 lmhosts - ok
02:30:53.0007 4316 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
02:30:53.0011 4316 LSI_FC - ok
02:30:53.0047 4316 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
02:30:53.0051 4316 LSI_SAS - ok
02:30:53.0077 4316 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
02:30:53.0080 4316 LSI_SAS2 - ok
02:30:53.0089 4316 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
02:30:53.0093 4316 LSI_SCSI - ok
02:30:53.0113 4316 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
02:30:53.0118 4316 luafv - ok
02:30:53.0202 4316 MBAMProtector (dc8490812a3b72811ae534f423b4c206) C:\Windows\system32\drivers\mbam.sys
02:30:53.0612 4316 MBAMProtector - ok
02:30:53.0676 4316 MBAMService (43683e970f008c93c9429ef428147a54) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
02:30:53.0679 4316 MBAMService - ok
02:30:53.0706 4316 Mcx2Svc (f84c8f1000bc11e3b7b23cbd3baff111) C:\Windows\system32\Mcx2Svc.dll
02:30:53.0710 4316 Mcx2Svc - ok
02:30:53.0727 4316 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
02:30:53.0729 4316 megasas - ok
02:30:53.0743 4316 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
02:30:53.0748 4316 MegaSR - ok
02:30:53.0787 4316 Microsoft SharePoint Workspace Audit Service - ok
02:30:53.0830 4316 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
02:30:53.0832 4316 MMCSS - ok
02:30:53.0860 4316 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
02:30:53.0862 4316 Modem - ok
02:30:53.0910 4316 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
02:30:53.0939 4316 monitor - ok
02:30:54.0034 4316 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
02:30:54.0037 4316 mouclass - ok
02:30:54.0064 4316 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
02:30:54.0066 4316 mouhid - ok
02:30:54.0104 4316 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
02:30:54.0105 4316 mountmgr - ok
02:30:54.0260 4316 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
02:30:54.0263 4316 MozillaMaintenance - ok
02:30:54.0271 4316 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
02:30:54.0275 4316 mpio - ok
02:30:54.0301 4316 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
02:30:54.0304 4316 mpsdrv - ok
02:30:54.0324 4316 MpsSvc (aecab449567d1846dad63ece49e893e3) C:\Windows\system32\mpssvc.dll
02:30:54.0329 4316 MpsSvc - ok
02:30:54.0337 4316 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
02:30:54.0340 4316 MRxDAV - ok
02:30:54.0380 4316 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
02:30:54.0385 4316 mrxsmb - ok
02:30:54.0461 4316 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
02:30:54.0515 4316 mrxsmb10 - ok
02:30:54.0524 4316 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
02:30:54.0528 4316 mrxsmb20 - ok
02:30:54.0531 4316 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
02:30:54.0535 4316 msahci - ok
02:30:54.0581 4316 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
02:30:54.0584 4316 msdsm - ok
02:30:54.0675 4316 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
02:30:54.0680 4316 MSDTC - ok
02:30:54.0727 4316 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
02:30:54.0729 4316 Msfs - ok
02:30:54.0767 4316 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
02:30:54.0773 4316 mshidkmdf - ok
02:30:54.0776 4316 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
02:30:54.0778 4316 msisadrv - ok
02:30:54.0831 4316 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
02:30:54.0836 4316 MSiSCSI - ok
02:30:54.0838 4316 msiserver - ok
02:30:54.0843 4316 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
02:30:54.0845 4316 MSKSSRV - ok
02:30:54.0903 4316 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
02:30:54.0954 4316 MSPCLOCK - ok
02:30:54.0962 4316 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
02:30:54.0964 4316 MSPQM - ok
02:30:54.0998 4316 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
02:30:55.0003 4316 MsRPC - ok
02:30:55.0015 4316 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
02:30:55.0018 4316 mssmbios - ok
02:30:55.0021 4316 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
02:30:55.0023 4316 MSTEE - ok
02:30:55.0049 4316 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
02:30:55.0053 4316 MTConfig - ok
02:30:55.0072 4316 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
02:30:55.0074 4316 Mup - ok
02:30:55.0104 4316 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
02:30:55.0108 4316 napagent - ok
02:30:55.0138 4316 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
02:30:55.0144 4316 NativeWifiP - ok
02:30:55.0203 4316 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
02:30:55.0208 4316 NDIS - ok
02:30:55.0234 4316 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
02:30:55.0236 4316 NdisCap - ok
02:30:55.0270 4316 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
02:30:55.0272 4316 NdisTapi - ok
02:30:55.0313 4316 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
02:30:55.0316 4316 Ndisuio - ok
02:30:55.0366 4316 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
02:30:55.0371 4316 NdisWan - ok
02:30:55.0405 4316 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
02:30:55.0408 4316 NDProxy - ok
02:30:55.0443 4316 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
02:30:55.0445 4316 NetBIOS - ok
02:30:55.0463 4316 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
02:30:55.0464 4316 NetBT - ok
02:30:55.0486 4316 Netlogon (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
02:30:55.0487 4316 Netlogon - ok
02:30:55.0549 4316 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
02:30:55.0552 4316 Netman - ok
02:30:55.0689 4316 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
02:30:55.0694 4316 NetMsmqActivator - ok
02:30:55.0697 4316 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
02:30:55.0698 4316 NetPipeActivator - ok
02:30:55.0889 4316 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
02:30:55.0892 4316 netprofm - ok
02:30:55.0895 4316 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
02:30:55.0896 4316 NetTcpActivator - ok
02:30:55.0899 4316 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
02:30:55.0900 4316 NetTcpPortSharing - ok
02:30:55.0988 4316 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
02:30:55.0991 4316 nfrd960 - ok
02:30:56.0082 4316 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
02:30:56.0084 4316 NlaSvc - ok
02:30:56.0110 4316 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
02:30:56.0113 4316 Npfs - ok
02:30:56.0115 4316 npggsvc - ok
02:30:56.0118 4316 NPPTNT2 - ok
02:30:56.0180 4316 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
02:30:56.0182 4316 nsi - ok
02:30:56.0185 4316 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
02:30:56.0186 4316 nsiproxy - ok
02:30:56.0398 4316 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
02:30:56.0437 4316 Ntfs - ok
02:30:56.0543 4316 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
02:30:56.0547 4316 Null - ok
02:30:56.0616 4316 NVENETFD (a85b4f2ef3a7304a5399ef0526423040) C:\Windows\system32\DRIVERS\nvm62x64.sys
02:30:56.0622 4316 NVENETFD - ok
02:30:58.0579 4316 nvlddmkm (c47d6b7299ba80a210bcafa81ac978a1) C:\Windows\system32\DRIVERS\nvlddmkm.sys
02:30:58.0854 4316 nvlddmkm - ok
02:30:59.0021 4316 NVNET (bd25e03ead63ac3365f25175b4dbd56a) C:\Windows\system32\DRIVERS\nvmf6264.sys
02:30:59.0028 4316 NVNET - ok
02:30:59.0078 4316 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\DRIVERS\nvraid.sys
02:30:59.0082 4316 nvraid - ok
02:30:59.0310 4316 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\DRIVERS\nvstor.sys
02:30:59.0314 4316 nvstor - ok
02:30:59.0390 4316 nvstor64 (71b6ecd3c56fbf12fb1968da3953b703) C:\Windows\system32\DRIVERS\nvstor64.sys
02:30:59.0392 4316 nvstor64 - ok
02:30:59.0455 4316 nvsvc (522845124da947b2372c6f606cd105a8) C:\Windows\system32\nvvsvc.exe
02:30:59.0467 4316 nvsvc - ok
02:30:59.0517 4316 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
02:30:59.0521 4316 nv_agp - ok
02:30:59.0540 4316 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
02:30:59.0542 4316 ohci1394 - ok
02:30:59.0615 4316 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
02:30:59.0618 4316 ose - ok
02:30:59.0771 4316 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
02:30:59.0861 4316 osppsvc - ok
02:30:59.0929 4316 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
02:30:59.0935 4316 p2pimsvc - ok
02:30:59.0949 4316 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
02:30:59.0957 4316 p2psvc - ok
02:30:59.0991 4316 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
02:30:59.0994 4316 Parport - ok
02:31:00.0007 4316 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys
02:31:00.0010 4316 partmgr - ok
02:31:00.0020 4316 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
02:31:00.0022 4316 PcaSvc - ok
02:31:00.0031 4316 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
02:31:00.0033 4316 pci - ok
02:31:00.0047 4316 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
02:31:00.0049 4316 pciide - ok
02:31:00.0068 4316 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
02:31:00.0072 4316 pcmcia - ok
02:31:00.0090 4316 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
02:31:00.0093 4316 pcw - ok
02:31:00.0115 4316 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
02:31:00.0124 4316 PEAUTH - ok
02:31:01.0151 4316 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
02:31:01.0159 4316 PeerDistSvc - ok
02:31:01.0707 4316 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
02:31:01.0710 4316 PerfHost - ok
02:31:01.0829 4316 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
02:31:01.0861 4316 pla - ok
02:31:01.0913 4316 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
02:31:01.0917 4316 PlugPlay - ok
02:31:01.0962 4316 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
02:31:01.0965 4316 PNRPAutoReg - ok
02:31:01.0982 4316 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
02:31:01.0985 4316 PNRPsvc - ok
02:31:02.0039 4316 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
02:31:02.0047 4316 PolicyAgent - ok
02:31:02.0065 4316 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
02:31:02.0067 4316 Power - ok
02:31:02.0082 4316 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
02:31:02.0085 4316 PptpMiniport - ok
02:31:02.0157 4316 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
02:31:02.0160 4316 Processor - ok
02:31:02.0205 4316 ProfSvc (f381975e1f4346de875cb07339ce8d3a) C:\Windows\system32\profsvc.dll
02:31:02.0207 4316 ProfSvc - ok
02:31:02.0233 4316 ProtectedStorage (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
02:31:02.0234 4316 ProtectedStorage - ok
02:31:02.0303 4316 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
02:31:02.0304 4316 Psched - ok
02:31:02.0393 4316 PxHlpa64 (4712cc14e720ecccc0aa16949d18aaf1) C:\Windows\system32\Drivers\PxHlpa64.sys
02:31:02.0423 4316 PxHlpa64 - ok
02:31:02.0709 4316 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
02:31:02.0763 4316 ql2300 - ok
02:31:02.0913 4316 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
02:31:02.0930 4316 ql40xx - ok
02:31:02.0972 4316 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
02:31:02.0982 4316 QWAVE - ok
02:31:02.0996 4316 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
02:31:02.0999 4316 QWAVEdrv - ok
02:31:03.0001 4316 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
02:31:03.0003 4316 RasAcd - ok
02:31:03.0026 4316 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
02:31:03.0028 4316 RasAgileVpn - ok
02:31:03.0060 4316 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
02:31:03.0064 4316 RasAuto - ok
02:31:03.0092 4316 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
02:31:03.0096 4316 Rasl2tp - ok
02:31:03.0430 4316 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
02:31:03.0579 4316 RasMan - ok
02:31:03.0587 4316 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
02:31:03.0590 4316 RasPppoe - ok
02:31:03.0595 4316 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
02:31:03.0598 4316 RasSstp - ok
02:31:03.0674 4316 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
02:31:03.0679 4316 rdbss - ok
02:31:03.0719 4316 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
02:31:03.0721 4316 rdpbus - ok
02:31:03.0731 4316 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
02:31:03.0732 4316 RDPCDD - ok
02:31:03.0845 4316 RDPDR (9706b84dbabfc4b4ca46c5a82b14dfa3) C:\Windows\system32\drivers\rdpdr.sys
02:31:03.0850 4316 RDPDR - ok
02:31:03.0885 4316 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
02:31:03.0886 4316 RDPENCDD - ok
02:31:03.0898 4316 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
02:31:03.0899 4316 RDPREFMP - ok
02:31:03.0949 4316 RDPWD (074ac702d8b8b660b0e1371555995386) C:\Windows\system32\drivers\RDPWD.sys
02:31:03.0953 4316 RDPWD - ok
02:31:04.0129 4316 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
02:31:04.0134 4316 rdyboost - ok
02:31:04.0190 4316 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
02:31:04.0194 4316 RemoteAccess - ok
02:31:04.0233 4316 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
02:31:04.0239 4316 RemoteRegistry - ok
02:31:04.0343 4316 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
02:31:04.0345 4316 RpcEptMapper - ok
02:31:04.0381 4316 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
02:31:04.0383 4316 RpcLocator - ok
02:31:04.0470 4316 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
02:31:04.0473 4316 RpcSs - ok
02:31:04.0583 4316 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
02:31:04.0592 4316 rspndr - ok
02:31:04.0634 4316 s3cap (88af6e02ab19df7fd07ecdf9c91e9af6) C:\Windows\system32\DRIVERS\vms3cap.sys
02:31:04.0636 4316 s3cap - ok
02:31:04.0688 4316 SamSs (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
02:31:04.0689 4316 SamSs - ok
02:31:04.0882 4316 SASDIFSV (3289766038db2cb14d07dc84392138d5) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
02:31:04.0886 4316 SASDIFSV - ok
02:31:04.0908 4316 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
02:31:04.0912 4316 SASKUTIL - ok
02:31:05.0657 4316 SBAMSvc (bce943896289a91ad75cc5652620b1c6) C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe
02:31:05.0723 4316 SBAMSvc - ok
02:31:05.0922 4316 sbapifs (6e342316e72f4b6fa39c99e06373a1a3) C:\Windows\system32\DRIVERS\sbapifs.sys
02:31:05.0924 4316 sbapifs - ok
02:31:05.0972 4316 sbhips (b671eef468d13016b9286f5835a06ae1) C:\Windows\system32\drivers\sbhips.sys
02:31:05.0975 4316 sbhips - ok
02:31:06.0006 4316 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
02:31:06.0010 4316 sbp2port - ok
02:31:06.0066 4316 SBRE (9aceb2a2362fc87a3825963e61ba9076) C:\Windows\system32\drivers\SBREdrv.sys
02:31:06.0069 4316 SBRE - ok
02:31:06.0166 4316 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
02:31:06.0180 4316 SCardSvr - ok
02:31:06.0211 4316 SCDEmu (6ce6f98ea3d07a9c2ce3cd0a5a86352d) C:\Windows\system32\drivers\SCDEmu.sys
02:31:06.0664 4316 SCDEmu - ok
02:31:06.0677 4316 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
02:31:06.0679 4316 scfilter - ok
02:31:06.0763 4316 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
02:31:06.0790 4316 Schedule - ok
02:31:06.0814 4316 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
02:31:06.0815 4316 SCPolicySvc - ok
02:31:06.0825 4316 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
02:31:06.0829 4316 SDRSVC - ok
02:31:06.0872 4316 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
02:31:06.0874 4316 secdrv - ok
02:31:06.0880 4316 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
02:31:06.0882 4316 seclogon - ok
02:31:06.0894 4316 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
02:31:06.0896 4316 SENS - ok
02:31:06.0906 4316 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
02:31:06.0910 4316 SensrSvc - ok
02:31:06.0936 4316 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
02:31:06.0938 4316 Serenum - ok
02:31:06.0951 4316 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
02:31:06.0954 4316 Serial - ok
02:31:06.0971 4316 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
02:31:06.0973 4316 sermouse - ok
02:31:06.0989 4316 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
02:31:06.0991 4316 SessionEnv - ok
02:31:07.0001 4316 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
02:31:07.0003 4316 sffdisk - ok
02:31:07.0007 4316 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
02:31:07.0009 4316 sffp_mmc - ok
02:31:07.0012 4316 sffp_sd (5588b8c6193eb1522490c122eb94dffa) C:\Windows\system32\DRIVERS\sffp_sd.sys
02:31:07.0014 4316 sffp_sd - ok
02:31:07.0017 4316 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
02:31:07.0019 4316 sfloppy - ok
02:31:07.0042 4316 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
02:31:07.0048 4316 SharedAccess - ok
02:31:07.0070 4316 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
02:31:07.0073 4316 ShellHWDetection - ok
02:31:07.0078 4316 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
02:31:07.0080 4316 SiSRaid2 - ok
02:31:07.0092 4316 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
02:31:07.0095 4316 SiSRaid4 - ok
02:31:07.0155 4316 SkypeUpdate (ddaa5f4a6b958fc313ebd02dd925752f) C:\Program Files (x86)\Skype\Updater\Updater.exe
02:31:07.0158 4316 SkypeUpdate - ok
02:31:07.0177 4316 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
02:31:07.0180 4316 Smb - ok
02:31:07.0192 4316 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
02:31:07.0195 4316 SNMPTRAP - ok
02:31:07.0208 4316 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
02:31:07.0210 4316 spldr - ok
02:31:07.0240 4316 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
02:31:07.0244 4316 Spooler - ok
02:31:07.0752 4316 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
02:31:07.0883 4316 sppsvc - ok
02:31:08.0128 4316 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
02:31:08.0132 4316 sppuinotify - ok
02:31:08.0305 4316 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
02:31:08.0314 4316 srv - ok
02:31:08.0436 4316 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
02:31:08.0444 4316 srv2 - ok
02:31:08.0486 4316 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
02:31:08.0489 4316 srvnet - ok
02:31:08.0504 4316 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
02:31:08.0509 4316 SSDPSRV - ok
02:31:08.0519 4316 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
02:31:08.0522 4316 SstpSvc - ok
02:31:08.0575 4316 Steam Client Service - ok
02:31:08.0597 4316 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
02:31:08.0599 4316 stexstor - ok
02:31:08.0665 4316 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
02:31:08.0674 4316 stisvc - ok
02:31:08.0706 4316 storflt (ffd7a6f15b14234b5b0e5d49e7961895) C:\Windows\system32\DRIVERS\vmstorfl.sys
02:31:08.0709 4316 storflt - ok
02:31:08.0738 4316 storvsc (8fccbefc5c440b3c23454656e551b09a) C:\Windows\system32\DRIVERS\storvsc.sys
02:31:08.0741 4316 storvsc - ok
02:31:08.0770 4316 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
02:31:08.0772 4316 swenum - ok
02:31:08.0916 4316 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
02:31:08.0942 4316 SwitchBoard - ok
02:31:08.0966 4316 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
02:31:08.0975 4316 swprv - ok
02:31:09.0269 4316 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
02:31:09.0279 4316 SysMain - ok
02:31:09.0494 4316 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
02:31:09.0498 4316 TabletInputService - ok
02:31:10.0653 4316 TabletServiceWacom (17a341d41f30fea2eff7223148899fec) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
02:31:10.0950 4316 TabletServiceWacom - ok
02:31:11.0013 4316 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
02:31:11.0019 4316 TapiSrv - ok
02:31:11.0031 4316 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
02:31:11.0035 4316 TBS - ok
02:31:11.0110 4316 Tcpip (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\drivers\tcpip.sys
02:31:11.0144 4316 Tcpip - ok
02:31:11.0222 4316 TCPIP6 (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\DRIVERS\tcpip.sys
02:31:11.0232 4316 TCPIP6 - ok
02:31:11.0283 4316 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
02:31:11.0286 4316 tcpipreg - ok
02:31:11.0303 4316 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
02:31:11.0305 4316 TDPIPE - ok
02:31:11.0327 4316 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
02:31:11.0329 4316 TDTCP - ok
02:31:11.0347 4316 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
02:31:11.0350 4316 tdx - ok
02:31:11.0357 4316 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
02:31:11.0359 4316 TermDD - ok
02:31:11.0441 4316 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
02:31:11.0446 4316 TermService - ok
02:31:11.0458 4316 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
02:31:11.0460 4316 Themes - ok
02:31:11.0496 4316 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
02:31:11.0497 4316 THREADORDER - ok
02:31:11.0648 4316 TouchServiceWacom (a15a789141c74aad7971fbcb4847a593) C:\Program Files\Tablet\Wacom\Wacom_TouchService.exe
02:31:11.0673 4316 TouchServiceWacom - ok
02:31:11.0719 4316 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
02:31:11.0721 4316 TrkWks - ok
02:31:11.0752 4316 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
02:31:11.0754 4316 TrustedInstaller - ok
02:31:11.0772 4316 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
02:31:11.0775 4316 tssecsrv - ok
02:31:11.0816 4316 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
02:31:11.0821 4316 tunnel - ok
02:31:11.0841 4316 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
02:31:11.0844 4316 uagp35 - ok
02:31:11.0960 4316 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
02:31:11.0988 4316 udfs - ok
02:31:11.0995 4316 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
02:31:11.0999 4316 UI0Detect - ok
02:31:12.0035 4316 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
02:31:12.0037 4316 uliagpkx - ok
02:31:12.0057 4316 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
02:31:12.0060 4316 umbus - ok
02:31:12.0074 4316 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
02:31:12.0077 4316 UmPass - ok
02:31:12.0108 4316 UmRdpService (af0ac98ee5077eb844413eb54287fde3) C:\Windows\System32\umrdp.dll
02:31:12.0111 4316 UmRdpService - ok
02:31:12.0168 4316 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
02:31:12.0176 4316 upnphost - ok
02:31:12.0254 4316 usbaudio (77b01bc848298223a95d4ec23e1785a1) C:\Windows\system32\drivers\usbaudio.sys
02:31:12.0258 4316 usbaudio - ok
02:31:12.0281 4316 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
02:31:12.0286 4316 usbccgp - ok
02:31:12.0319 4316 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
02:31:12.0324 4316 usbcir - ok
02:31:12.0389 4316 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
02:31:12.0393 4316 usbehci - ok
02:31:12.0470 4316 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
02:31:12.0480 4316 usbhub - ok
02:31:12.0500 4316 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\DRIVERS\usbohci.sys
02:31:12.0502 4316 usbohci - ok
02:31:12.0523 4316 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
02:31:12.0525 4316 usbprint - ok
02:31:12.0620 4316 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
02:31:12.0634 4316 usbscan - ok
02:31:12.0658 4316 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
02:31:12.0661 4316 USBSTOR - ok
02:31:12.0681 4316 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\DRIVERS\usbuhci.sys
02:31:12.0683 4316 usbuhci - ok
02:31:12.0752 4316 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
02:31:12.0754 4316 UxSms - ok
02:31:12.0791 4316 VaultSvc (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
02:31:12.0792 4316 VaultSvc - ok
02:31:12.0808 4316 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
02:31:12.0811 4316 vdrvroot - ok
02:31:12.0981 4316 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
02:31:13.0010 4316 vds - ok
02:31:13.0053 4316 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
02:31:13.0055 4316 vga - ok
02:31:13.0070 4316 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
02:31:13.0072 4316 VgaSave - ok
02:31:13.0095 4316 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
02:31:13.0099 4316 vhdmp - ok
02:31:13.0133 4316 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
02:31:13.0135 4316 viaide - ok
02:31:13.0222 4316 vmbus (1501699d7eda984abc4155a7da5738d1) C:\Windows\system32\DRIVERS\vmbus.sys
02:31:13.0228 4316 vmbus - ok
02:31:13.0295 4316 VMBusHID (ae10c35761889e65a6f7176937c5592c) C:\Windows\system32\DRIVERS\VMBusHID.sys
02:31:13.0298 4316 VMBusHID - ok
02:31:13.0321 4316 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
02:31:13.0324 4316 volmgr - ok
02:31:13.0432 4316 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
02:31:13.0434 4316 volmgrx - ok
02:31:13.0479 4316 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
02:31:13.0496 4316 volsnap - ok
02:31:13.0530 4316 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
02:31:13.0533 4316 vsmraid - ok
02:31:13.0576 4316 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
02:31:13.0609 4316 VSS - ok
02:31:13.0694 4316 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
02:31:13.0696 4316 vwifibus - ok
02:31:13.0741 4316 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
02:31:13.0744 4316 W32Time - ok
02:31:13.0781 4316 WacHidRouter (7cb1898a29188fb8db102406ef0d8d9e) C:\Windows\system32\DRIVERS\wachidrouter.sys
02:31:13.0788 4316 WacHidRouter - ok
02:31:13.0791 4316 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
02:31:13.0794 4316 WacomPen - ok
02:31:13.0850 4316 wacomrouterfilter (b59ec4dd1026f059cd95c1627562f3f3) C:\Windows\system32\DRIVERS\wacomrouterfilter.sys
02:31:13.0876 4316 wacomrouterfilter - ok
02:31:13.0976 4316 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
02:31:13.0979 4316 WANARP - ok
02:31:13.0995 4316 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
02:31:13.0996 4316 Wanarpv6 - ok
02:31:14.0054 4316 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
02:31:14.0088 4316 wbengine - ok
02:31:14.0253 4316 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
02:31:14.0260 4316 WbioSrvc - ok
02:31:14.0345 4316 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
02:31:14.0395 4316 wcncsvc - ok
02:31:14.0423 4316 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
02:31:14.0427 4316 WcsPlugInService - ok
02:31:14.0433 4316 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
02:31:14.0435 4316 Wd - ok
02:31:14.0456 4316 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
02:31:14.0465 4316 Wdf01000 - ok
02:31:14.0477 4316 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
02:31:14.0479 4316 WdiServiceHost - ok
02:31:14.0481 4316 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
02:31:14.0483 4316 WdiSystemHost - ok
02:31:14.0559 4316 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
02:31:14.0567 4316 WebClient - ok
02:31:14.0689 4316 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
02:31:14.0699 4316 Wecsvc - ok
02:31:14.0715 4316 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
02:31:14.0717 4316 wercplsupport - ok
02:31:14.0738 4316 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
02:31:14.0740 4316 WerSvc - ok
02:31:14.0748 4316 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
02:31:14.0750 4316 WfpLwf - ok
02:31:14.0798 4316 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
02:31:14.0800 4316 WIMMount - ok
02:31:14.0827 4316 WinDefend - ok
02:31:14.0834 4316 WinHttpAutoProxySvc - ok
02:31:15.0078 4316 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
02:31:15.0080 4316 Winmgmt - ok
02:31:15.0693 4316 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
02:31:15.0705 4316 WinRM - ok
02:31:15.0947 4316 WinUsb (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUsb.sys
02:31:15.0950 4316 WinUsb - ok
02:31:16.0197 4316 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
02:31:16.0234 4316 Wlansvc - ok
02:31:16.0238 4316 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
02:31:16.0240 4316 WmiAcpi - ok
02:31:16.0313 4316 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
02:31:16.0315 4316 wmiApSrv - ok
02:31:16.0362 4316 WMPNetworkSvc - ok
02:31:16.0418 4316 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
02:31:16.0421 4316 WPCSvc - ok
02:31:16.0506 4316 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
02:31:16.0508 4316 WPDBusEnum - ok
02:31:16.0535 4316 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
02:31:16.0538 4316 ws2ifsl - ok
02:31:16.0598 4316 wscsvc (8f9f3969933c02da96eb0f84576db43e) C:\Windows\System32\wscsvc.dll
02:31:16.0600 4316 wscsvc - ok
02:31:16.0603 4316 WSearch - ok
02:31:17.0216 4316 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
02:31:17.0230 4316 wuauserv - ok
02:31:17.0422 4316 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
02:31:17.0426 4316 WudfPf - ok
02:31:17.0499 4316 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
02:31:17.0504 4316 WUDFRd - ok
02:31:17.0573 4316 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
02:31:17.0594 4316 wudfsvc - ok
02:31:17.0646 4316 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
02:31:17.0651 4316 WwanSvc - ok
02:31:17.0690 4316 XENfiltv (754c8bf43f0dd4b54865f174a62761e9) C:\Windows\system32\drivers\XENfiltv.sys
02:31:17.0692 4316 XENfiltv - ok
02:31:17.0711 4316 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
02:31:18.0130 4316 \Device\Harddisk0\DR0 - ok
02:31:18.0132 4316 Boot (0x1200) (d185f4284306bd7f29bca50108f7e2d8) \Device\Harddisk0\DR0\Partition0
02:31:18.0133 4316 \Device\Harddisk0\DR0\Partition0 - ok
02:31:18.0165 4316 Boot (0x1200) (616e7dd4118d65a4ac53cdcdb999ec39) \Device\Harddisk0\DR0\Partition1
02:31:18.0167 4316 \Device\Harddisk0\DR0\Partition1 - ok
02:31:18.0179 4316 Boot (0x1200) (aeb5196db80b0ca742e726a1da903fb6) \Device\Harddisk0\DR0\Partition2
02:31:18.0180 4316 \Device\Harddisk0\DR0\Partition2 - ok
02:31:18.0181 4316 ============================================================
02:31:18.0181 4316 Scan finished
02:31:18.0181 4316 ============================================================
02:31:18.0189 4056 Detected object count: 0
02:31:18.0189 4056 Actual detected object count: 0
02:33:06.0023 3588 Deinitialize success



I uninstalled Avast! So the scanner didn't work. (Using Ad-Aware MBAM, and Superantispyware)

ESET had no threats detected.

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:58 AM

Posted 07 August 2012 - 05:41 AM

I uninstalled Avast! So the scanner didn't work. (Using Ad-Aware MBAM, and Superantispyware)


ASWMBR is different from Avast antivirus.Try to run it in safemode with networking and post the logs

#5 tsunamii

tsunamii
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:58 AM

Posted 07 August 2012 - 10:46 PM

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-07 04:48:38
-----------------------------
04:48:38.656 OS Version: Windows x64 6.1.7600
04:48:38.656 Number of processors: 3 586 0x402
04:48:38.657 ComputerName: TIGER-ALIEN UserName: bryon
04:48:40.089 Initialize success
04:49:38.103 AVAST engine defs: 12080700
16:33:11.118 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000005f
16:33:11.120 Disk 0 Vendor: ST315005 CC34 Size: 1430799MB BusType: 3
16:33:11.129 Disk 0 MBR read successfully
16:33:11.131 Disk 0 MBR scan
16:33:11.134 Disk 0 Windows 7 default MBR code
16:33:11.137 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
16:33:11.147 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 324778 MB offset 206848
16:33:11.160 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 1024000 MB offset 665352192
16:33:11.192 Disk 0 scanning C:\Windows\system32\drivers
16:33:21.346 Service scanning
16:33:38.387 Modules scanning
16:33:38.392 Disk 0 trace - called modules:
16:33:38.401 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys storport.sys hal.dll nvstor64.sys
16:33:38.404 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80079a26b0]
16:33:38.410 3 CLASSPNP.SYS[fffff8800140143f] -> nt!IofCallDriver -> [0xfffffa80069d0e40]
16:33:38.413 5 ACPI.sys[fffff88000f11781] -> nt!IofCallDriver -> \Device\0000005f[0xfffffa800764f9c0]
16:33:39.211 AVAST engine scan C:\Windows
16:33:41.570 AVAST engine scan C:\Windows\system32
16:38:02.620 AVAST engine scan C:\Windows\system32\drivers
16:38:14.570 AVAST engine scan C:\Users\bryon
16:44:52.577 AVAST engine scan C:\ProgramData
16:46:06.880 Scan finished successfully
20:45:26.769 Disk 0 MBR has been saved successfully to "C:\MBR.dat"
20:45:26.773 The log file has been saved successfully to "C:\aswMBR.txt"

#6 tsunamii

tsunamii
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:58 AM

Posted 07 August 2012 - 10:52 PM

There was an MBR.dat file too i don't know if you need it

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:58 AM

Posted 08 August 2012 - 05:52 AM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

Rogue killer

right click on it and select run as administrator

Now,click on HOSTS FIX option on right side

A log should get generated after the fix ,post the log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#8 tsunamii

tsunamii
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:58 AM

Posted 08 August 2012 - 08:12 PM

RogueKiller V7.6.5 [08/03/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/
Blog: http://tigzyrk.blogspot.com

Operating System: Windows 7 (6.1.7600 ) 64 bits version
Started in : Normal mode
User: bryon [Admin rights]
Mode: HOSTSFix -- Date: 08/08/2012 18:00:45

¤¤¤ Bad processes: 0 ¤¤¤

¤¤¤ Driver: [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
127.0.0.1 localhost
::1 localhost
217.23.4.166 www.google-analytics.com.
217.23.4.166 ad-emea.doubleclick.net.
217.23.4.166 www.statcounter.com.
178.250.45.15 www.google-analytics.com.
178.250.45.15 ad-emea.doubleclick.net.
178.250.45.15 www.statcounter.com.


¤¤¤ Resetted HOSTS: ¤¤¤
127.0.0.1 localhost

Finished : << RKreport[1].txt >>
RKreport[1].txt






MiniToolBox by Farbar Version: 23-07-2012
Ran by bryon (administrator) on 08-08-2012 at 18:08:21
Microsoft Windows 7 Ultimate (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost
127.0.0.1 localhost

========================= IP Configuration: ================================

NVIDIA nForce 10/100/1000 Mbps Ethernet = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : tiger-alien
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : NVIDIA nForce 10/100/1000 Mbps Ethernet
Physical Address. . . . . . . . . : 50-E5-49-67-35-9F
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv4 Address. . . . . . . . . . . : 192.168.177.171(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Tuesday, August 07, 2012 9:18:53 PM
Lease Expires . . . . . . . . . . : Wednesday, August 08, 2012 6:49:38 PM
Default Gateway . . . . . . . . . : 192.168.177.1
DHCP Server . . . . . . . . . . . : 192.168.177.1
DNS Servers . . . . . . . . . . . : 8.8.8.8
8.8.4.4
NetBIOS over Tcpip. . . . . . . . : Enabled
Server: google-public-dns-a.google.com
Address: 8.8.8.8

Name: google.com
Addresses: 2607:f8b0:400a:800::1003
173.194.33.1
173.194.33.7
173.194.33.3
173.194.33.2
173.194.33.14
173.194.33.6
173.194.33.0
173.194.33.9
173.194.33.4
173.194.33.5
173.194.33.8


Pinging google.com [173.194.33.1] with 32 bytes of data:
Reply from 173.194.33.1: bytes=32 time=10ms TTL=55
Reply from 173.194.33.1: bytes=32 time=11ms TTL=55

Ping statistics for 173.194.33.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 10ms, Maximum = 11ms, Average = 10ms
Server: google-public-dns-a.google.com
Address: 8.8.8.8

Name: yahoo.com
Addresses: 72.30.38.140
209.191.122.70
98.139.183.24


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=80ms TTL=52
Reply from 72.30.38.140: bytes=32 time=51ms TTL=52

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 51ms, Maximum = 80ms, Average = 65ms
Server: google-public-dns-a.google.com
Address: 8.8.8.8

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
11...50 e5 49 67 35 9f ......NVIDIA nForce 10/100/1000 Mbps Ethernet
1...........................Software Loopback Interface 1
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.177.1 192.168.177.171 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.177.0 255.255.255.0 On-link 192.168.177.171 276
192.168.177.171 255.255.255.255 On-link 192.168.177.171 276
192.168.177.255 255.255.255.255 On-link 192.168.177.171 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.177.171 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.177.171 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
1 306 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 03 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 02 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

x64-Catalog5 03 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/08/2012 06:00:16 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (08/07/2012 03:00:47 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (08/07/2012 02:35:57 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (08/06/2012 00:33:51 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (08/05/2012 09:36:28 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine OpenSCManager(NULL,NULL,SC_MANAGER_CONNECT). hr = 0x8007045b, A system shutdown is in progress.
.

Error: (08/05/2012 09:27:49 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (08/05/2012 09:09:26 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (07/22/2012 03:20:46 PM) (Source: Application Error) (User: )
Description: Faulting application name: FlashPlayerPlugin_11_3_300_265.exe, version: 11.3.300.265, time stamp: 0x4febd5ac
Faulting module name: NPSWF32_11_3_300_265.dll, version: 11.3.300.265, time stamp: 0x4febd798
Exception code: 0xc0000005
Fault offset: 0x004923d1
Faulting process id: 0x1ed8
Faulting application start time: 0xFlashPlayerPlugin_11_3_300_265.exe0
Faulting application path: FlashPlayerPlugin_11_3_300_265.exe1
Faulting module path: FlashPlayerPlugin_11_3_300_265.exe2
Report Id: FlashPlayerPlugin_11_3_300_265.exe3

Error: (07/20/2012 08:05:27 PM) (Source: Application Hang) (User: )
Description: The program firefox.exe version 14.0.1.4577 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: b00

Start Time: 01cd662e9299ef58

Termination Time: 35

Application Path: C:\Program Files (x86)\Mozilla Firefox\firefox.exe

Report Id: eac07df5-d2e0-11e1-bb1a-50e54967359f

Error: (07/18/2012 01:13:49 PM) (Source: Application Hang) (User: )
Description: The program firefox.exe version 13.0.1.4548 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: b78

Start Time: 01cd6473a5963e20

Termination Time: 33

Application Path: C:\Program Files (x86)\Mozilla Firefox\firefox.exe

Report Id: 14b29f85-d115-11e1-bb1a-50e54967359f


System errors:
=============
Error: (08/08/2012 03:50:42 AM) (Source: Service Control Manager) (User: )
Description: The atillk64 service failed to start due to the following error:
%%2

Error: (08/08/2012 03:50:42 AM) (Source: Service Control Manager) (User: )
Description: The atillk64 service failed to start due to the following error:
%%2

Error: (08/08/2012 03:50:42 AM) (Source: Service Control Manager) (User: )
Description: The atidgllk service failed to start due to the following error:
%%2

Error: (08/08/2012 03:50:41 AM) (Source: Service Control Manager) (User: )
Description: The atidgllk service failed to start due to the following error:
%%2

Error: (08/07/2012 09:21:23 PM) (Source: Service Control Manager) (User: )
Description: The atillk64 service failed to start due to the following error:
%%2

Error: (08/07/2012 09:21:23 PM) (Source: Service Control Manager) (User: )
Description: The atillk64 service failed to start due to the following error:
%%2

Error: (08/07/2012 09:21:23 PM) (Source: Service Control Manager) (User: )
Description: The atidgllk service failed to start due to the following error:
%%2

Error: (08/07/2012 09:21:22 PM) (Source: Service Control Manager) (User: )
Description: The atidgllk service failed to start due to the following error:
%%2

Error: (08/07/2012 09:20:19 PM) (Source: Service Control Manager) (User: )
Description: The AODDriver4.1 service failed to start due to the following error:
%%2

Error: (08/07/2012 09:20:18 PM) (Source: Service Control Manager) (User: )
Description: The AMD FUEL Service service hung on starting.


Microsoft Office Sessions:
=========================
Error: (08/08/2012 06:00:16 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Users\bryon\Downloads\esetsmartinstaller_enu.exe

Error: (08/07/2012 03:00:47 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Users\bryon\Downloads\esetsmartinstaller_enu.exe

Error: (08/07/2012 02:35:57 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Users\bryon\Downloads\esetsmartinstaller_enu.exe

Error: (08/06/2012 00:33:51 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestc:\Users\bryon\downloads\esetsmartinstaller_enu.exe

Error: (08/05/2012 09:36:28 PM) (Source: VSS)(User: )
Description: OpenSCManager(NULL,NULL,SC_MANAGER_CONNECT)0x8007045b, A system shutdown is in progress.

Error: (08/05/2012 09:27:49 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Users\bryon\Downloads\esetsmartinstaller_enu.exe

Error: (08/05/2012 09:09:26 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Users\bryon\Downloads\esetsmartinstaller_enu.exe

Error: (07/22/2012 03:20:46 PM) (Source: Application Error)(User: )
Description: FlashPlayerPlugin_11_3_300_265.exe11.3.300.2654febd5acNPSWF32_11_3_300_265.dll11.3.300.2654febd798c0000005004923d11ed801cd66edb2ffa4a8C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_265.exeC:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_265.dll7b2e4090-d44b-11e1-bb1a-50e54967359f

Error: (07/20/2012 08:05:27 PM) (Source: Application Hang)(User: )
Description: firefox.exe14.0.1.4577b0001cd662e9299ef5835C:\Program Files (x86)\Mozilla Firefox\firefox.exeeac07df5-d2e0-11e1-bb1a-50e54967359f

Error: (07/18/2012 01:13:49 PM) (Source: Application Hang)(User: )
Description: firefox.exe13.0.1.4548b7801cd6473a5963e2033C:\Program Files (x86)\Mozilla Firefox\firefox.exe14b29f85-d115-11e1-bb1a-50e54967359f


=========================== Installed Programs ============================

Ad-Aware Antivirus (Version: 10.2.21.3698)
Ad-Aware Browsing Protection (Version: 1.0.0.5)
Adobe Community Help (Version: 3.0.0)
Adobe Community Help (Version: 3.0.0.400)
Adobe Creative Suite 5 Master Collection (Version: 5.0)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.2.202.228)
Adobe Flash Player 11 Plugin (Version: 11.3.300.270)
Adobe Media Player (Version: 1.8)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Adobe Shockwave Player 11.6 (Version: 11.6.4.634)
AMD Accelerated Video Transcoding (Version: 2.00.0002)
AMD APP SDK Runtime (Version: 10.0.938.1)
AMD Catalyst Install Manager (Version: 8.0.881.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Fuel (Version: 2012.0611.1251.21046)
AMD GPU Clock Tool (Version: 0.9.26.0)
AMD Media Foundation Decoders (Version: 1.0.70611.1329)
AMD OverDrive (Version: 4.2.1.0604)
AMD VISION Engine Control Center (Version: 2011.1012.1625.27603)
AMD VISION Engine Control Center (Version: 2012.0611.1251.21046)
ASIO4ALL (Version: 2.10)
Bandisoft MPEG-1 Decoder
Battlefield 3™ (Version: 1.0.0.0)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2012.0611.1251.21046)
Catalyst Control Center InstallProxy (Version: 2012.0611.1251.21046)
Catalyst Control Center Localization All (Version: 2012.0611.1251.21046)
ccc-utility64 (Version: 2012.0611.1251.21046)
CCC Help Chinese Standard (Version: 2012.0611.1250.21046)
CCC Help Chinese Traditional (Version: 2012.0611.1250.21046)
CCC Help Czech (Version: 2012.0611.1250.21046)
CCC Help Danish (Version: 2012.0611.1250.21046)
CCC Help Dutch (Version: 2012.0611.1250.21046)
CCC Help English (Version: 2012.0611.1250.21046)
CCC Help Finnish (Version: 2012.0611.1250.21046)
CCC Help French (Version: 2012.0611.1250.21046)
CCC Help German (Version: 2012.0611.1250.21046)
CCC Help Greek (Version: 2012.0611.1250.21046)
CCC Help Hungarian (Version: 2012.0611.1250.21046)
CCC Help Italian (Version: 2012.0611.1250.21046)
CCC Help Japanese (Version: 2012.0611.1250.21046)
CCC Help Korean (Version: 2012.0611.1250.21046)
CCC Help Norwegian (Version: 2012.0611.1250.21046)
CCC Help Polish (Version: 2012.0611.1250.21046)
CCC Help Portuguese (Version: 2012.0611.1250.21046)
CCC Help Russian (Version: 2012.0611.1250.21046)
CCC Help Spanish (Version: 2012.0611.1250.21046)
CCC Help Swedish (Version: 2012.0611.1250.21046)
CCC Help Thai (Version: 2012.0611.1250.21046)
CCC Help Turkish (Version: 2012.0611.1250.21046)
CCleaner (Version: 3.19)
Counter-Strike: Source
Counter-Strike: Source Beta
Creative System Information (Version: 1.10)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Diskeeper 2010 (Version: 14.0.900.64)
Epson Print CD (Version: 2.00.00)
EPSON Printer Software
EPSON Scan
FL Studio 10
Flyff (Version: Flyff)
Futuremark SystemInfo (Version: 4.9.0)
Garry's Mod
Google Chrome (Version: 21.0.1180.75)
Google Update Helper (Version: 1.3.21.115)
IL Download Manager
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 31 (Version: 6.0.310)
Java™ 7 Update 2 (64-bit) (Version: 7.0.20)
Java™ SE Development Kit 7 Update 2 (64-bit) (Version: 1.7.0.20)
JavaFX 2.0.2 (64-bit) (Version: 2.0.2)
JavaFX 2.0.2 SDK (64-bit) (Version: 2.0.2)
K-Lite Mega Codec Pack 7.1.9 (Version: 7.1.9)
LOLReplay (Version: 0.7.9.34)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.4734.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
mIRC (Version: 7.25)
Mozilla Firefox 14.0.1 (x86 en-US) (Version: 14.0.1)
Mozilla Maintenance Service (Version: 14.0.1)
MSI Afterburner 2.2.3 (Version: 2.2.3)
NDSROM Player
Nexon Game Manager
NVIDIA Display Control Panel (Version: 6.14.11.9713)
NVIDIA Drivers (Version: 1.10.57.35)
PDF Settings CS5 (Version: 10.0)
PowerISO (Version: 4.7)
PxMergeModule (Version: 1.00.0000)
Real Alternative 2.0.2 (Version: 2.0.2)
Realtek High Definition Audio Driver (Version: 6.0.1.6392)
RIFT (Version: 1.0.0)
Skype™ 5.10 (Version: 5.10.115)
Sound Blaster Tactic(3D) Alpha (Version: 1.0)
Star Wars: The Old Republic (Version: 1.00)
Starcraft
StarCraft II (Version: 1.0.1.16195)
Steam (Version: 1.0.0.0)
SUPERAntiSpyware (Version: 5.0.1150)
swMSM (Version: 12.0.0.1)
Team Fortress 2
TeamSpeak 3 Client (Version: 3.0.7)
TeamSpeak 3 Client (Version: 3.0.8)
TechPowerUp GPU-Z
Unity Web Player (Version: )
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft Office 2010 (KB2553092)
Ventrilo Client for Windows x64 (Version: 3.0.8.0)
Vuze (Version: 4.7)
Wacom Tablet (Version: 6.3.1w3)
WebTablet FB Plugin (Version: 2.0.0.6)
WebTablet IE Plugin (Version: 1.1.0.12)
WebTablet Netscape Plugin (Version: 1.1.0.10)
WinRAR archiver
WinSCP 4.3.7 (Version: 4.3.7)
Xvid Video Codec (Version: 1.3.2)

========================= Memory info: ===================================

Percentage of memory in use: 26%
Total physical RAM: 8190.46 MB
Available physical RAM: 6041.28 MB
Total Pagefile: 16379.07 MB
Available Pagefile: 14739.52 MB
Total Virtual: 4095.88 MB
Available Virtual: 3953.16 MB

========================= Partitions: =====================================

1 Drive c: (Local Disk) (Fixed) (Total:317.17 GB) (Free:77.24 GB) NTFS
2 Drive d: (TIGER-PAW) (Fixed) (Total:1000 GB) (Free:147.4 GB) NTFS
3 Drive e: (SC2-L100-D1) (CDROM) (Total:6.99 GB) (Free:0 GB) UDF
4 Drive f: (STARCRAFT) (CDROM) (Total:0.62 GB) (Free:0 GB) CDFS

========================= Users: ========================================

User accounts for \\TIGER-ALIEN

Administrator bryon Guest


**** End of log ****






Farbar Service Scanner Version: 06-08-2012
Ran by bryon (administrator) on 08-08-2012 at 18:09:14
Running from "C:\Users\bryon\Downloads"
Microsoft Windows 7 Ultimate (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys
[2012-04-08 14:37] - [2011-12-27 20:59] - 0499200 ____A (Microsoft Corporation) DB9D6C6B2CD95A9CA414D045B627422E

C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll
[2009-07-13 17:09] - [2009-07-13 18:41] - 0824832 ____A (Microsoft Corporation) AECAB449567D1846DAD63ECE49E893E3

C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll
[2009-07-13 16:36] - [2009-07-13 18:41] - 0170496 ____A (Microsoft Corporation) 765A27C3279CE11D14CB9E4F5869FCA5

C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****




# AdwCleaner v1.800 - Logfile created 08/08/2012 at 18:06:45
# Updated 01/08/2012 by Xplode
# Operating system : Windows 7 Ultimate (64 bits)
# User : bryon - TIGER-ALIEN
# Running from : C:\Users\bryon\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\ProgramData\boost_interprocess

***** [Registry] *****


***** [Registre - GUID] *****

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.7600.16385

[OK] Registry is clean.

-\\ Mozilla Firefox v14.0.1 (en-US)

Profile name : default
File : C:\Users\bryon\AppData\Roaming\Mozilla\Firefox\Profiles\j6853u5i.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v21.0.1180.75

File : C:\Users\bryon\AppData\Local\Google\Chrome\User Data\Default\Preferences

Deleted : "path": "C:\\Users\\bryon\\AppData\\LocalLow\\Unity\\WebPlayer\\loader\\npUnity3D32.dll",

*************************

AdwCleaner[S1].txt - [1062 octets] - [08/08/2012 18:06:45]

########## EOF - C:\AdwCleaner[S1].txt - [1190 octets] ##########

#9 tsunamii

tsunamii
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:58 AM

Posted 08 August 2012 - 09:28 PM

The boxes are gone so far, :o (Did it fix or are they hiding? :S)

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:58 AM

Posted 09 August 2012 - 12:29 AM

We fixed it :)

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your flash player

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#11 tsunamii

tsunamii
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:58 AM

Posted 09 August 2012 - 01:06 AM

Thanks so much!

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:58 AM

Posted 09 August 2012 - 01:07 AM

You're welcome :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users