Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Click get answers fast redirect virus


  • Please log in to reply
34 replies to this topic

#1 pandablue

pandablue

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:01:46 PM

Posted 09 August 2012 - 10:29 AM

So I was on firefox the other day and then all of a sudden it started redirecting me. I tried I.E and it did the same thing. So I used Malwaredbytes and it found some issues and I fixed the issue and my computer restarted to finish the clearing of the virus. I then did a test on i.e and firefox and no redirects. And then this morning I was on Facebook and all of a sudden it redirected again. I have tried AVG Anti Virus but it conflicts with Norton so I unistalled that. I am currently doing another scan on Malwarebytes. I also did a full scan with Norton 360 and all it found were tracking cookies. This is not the first time I have had a redirect virus but after a few days I am able to remove it with various combinations of programs and a couple months go by and its fine. I'm gonna also try SuperAntiSpyware free version. I am using Windows Vista Home Premium

Edited by hamluis, 09 August 2012 - 11:33 AM.
Moved from Vista to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:46 PM

Posted 09 August 2012 - 01:06 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 pandablue

pandablue
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:01:46 PM

Posted 09 August 2012 - 02:29 PM

TDSSKiller

14:30:45.0796 1728 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
14:30:46.0436 1728 ============================================================
14:30:46.0436 1728 Current date / time: 2012/08/09 14:30:46.0436
14:30:46.0436 1728 SystemInfo:
14:30:46.0436 1728
14:30:46.0436 1728 OS Version: 6.0.6002 ServicePack: 2.0
14:30:46.0436 1728 Product type: Workstation
14:30:46.0436 1728 ComputerName: IANOGELBY-PC
14:30:46.0436 1728 UserName: Ian Ogelby
14:30:46.0436 1728 Windows directory: C:\Windows
14:30:46.0436 1728 System windows directory: C:\Windows
14:30:46.0436 1728 Processor architecture: Intel x86
14:30:46.0436 1728 Number of processors: 2
14:30:46.0436 1728 Page size: 0x1000
14:30:46.0436 1728 Boot type: Normal boot
14:30:46.0436 1728 ============================================================
14:30:47.0091 1728 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
14:30:47.0091 1728 ============================================================
14:30:47.0091 1728 \Device\Harddisk0\DR0:
14:30:47.0091 1728 MBR partitions:
14:30:47.0091 1728 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x23F93800
14:30:47.0091 1728 ============================================================
14:30:47.0122 1728 C: <-> \Device\Harddisk0\DR0\Partition0
14:30:47.0122 1728 ============================================================
14:30:47.0122 1728 Initialize success
14:30:47.0122 1728 ============================================================
14:31:25.0483 3344 ============================================================
14:31:25.0483 3344 Scan started
14:31:25.0483 3344 Mode: Manual; TDLFS;
14:31:25.0483 3344 ============================================================
14:31:26.0996 3344 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
14:31:26.0996 3344 ACPI - ok
14:31:27.0136 3344 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
14:31:27.0136 3344 AdobeARMservice - ok
14:31:27.0277 3344 AdobeFlashPlayerUpdateSvc (f19c98ad81d2c0e1bbfd8153d2c80ee8) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
14:31:27.0277 3344 AdobeFlashPlayerUpdateSvc - ok
14:31:27.0370 3344 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
14:31:27.0370 3344 adp94xx - ok
14:31:27.0433 3344 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
14:31:27.0433 3344 adpahci - ok
14:31:27.0479 3344 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
14:31:27.0479 3344 adpu160m - ok
14:31:27.0542 3344 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
14:31:27.0542 3344 adpu320 - ok
14:31:27.0604 3344 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
14:31:27.0604 3344 AeLookupSvc - ok
14:31:27.0651 3344 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
14:31:27.0651 3344 AFD - ok
14:31:27.0698 3344 AgereModemAudio (39e435c90c9c4f780fa0ed05ca3c3a1b) C:\Windows\system32\agrsmsvc.exe
14:31:27.0698 3344 AgereModemAudio - ok
14:31:27.0791 3344 AgereSoftModem (ce91b158fa490cf4c4d487a4130f4660) C:\Windows\system32\DRIVERS\AGRSM.sys
14:31:27.0791 3344 AgereSoftModem - ok
14:31:27.0838 3344 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
14:31:27.0838 3344 agp440 - ok
14:31:27.0901 3344 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
14:31:27.0901 3344 aic78xx - ok
14:31:27.0932 3344 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
14:31:27.0932 3344 ALG - ok
14:31:27.0947 3344 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
14:31:27.0947 3344 aliide - ok
14:31:27.0994 3344 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
14:31:27.0994 3344 amdagp - ok
14:31:28.0025 3344 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
14:31:28.0025 3344 amdide - ok
14:31:28.0041 3344 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
14:31:28.0041 3344 AmdK7 - ok
14:31:28.0088 3344 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
14:31:28.0103 3344 AmdK8 - ok
14:31:28.0150 3344 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
14:31:28.0150 3344 Appinfo - ok
14:31:28.0275 3344 Apple Mobile Device (3debbecf665dcdde3a95d9b902010817) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:31:28.0275 3344 Apple Mobile Device - ok
14:31:28.0337 3344 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
14:31:28.0337 3344 arc - ok
14:31:28.0384 3344 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
14:31:28.0400 3344 arcsas - ok
14:31:28.0447 3344 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
14:31:28.0447 3344 AsyncMac - ok
14:31:28.0493 3344 atapi (9c0e70031905adbf94edb9ea14af943b) C:\Windows\system32\drivers\atapi.sys
14:31:28.0493 3344 atapi - ok
14:31:28.0587 3344 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
14:31:28.0603 3344 AudioEndpointBuilder - ok
14:31:28.0603 3344 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
14:31:28.0603 3344 Audiosrv - ok
14:31:28.0649 3344 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
14:31:28.0649 3344 Beep - ok
14:31:28.0696 3344 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
14:31:28.0712 3344 BFE - ok
14:31:28.0961 3344 BHDrvx86 (a9e111a358ac5f7eba7ac61e43fc6725) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.2.1\Definitions\BASHDefs\20120804.001\BHDrvx86.sys
14:31:28.0961 3344 BHDrvx86 - ok
14:31:29.0039 3344 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
14:31:29.0055 3344 BITS - ok
14:31:29.0117 3344 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
14:31:29.0117 3344 blbdrive - ok
14:31:29.0242 3344 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
14:31:29.0242 3344 Bonjour Service - ok
14:31:29.0289 3344 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
14:31:29.0289 3344 bowser - ok
14:31:29.0351 3344 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
14:31:29.0351 3344 BrFiltLo - ok
14:31:29.0367 3344 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
14:31:29.0367 3344 BrFiltUp - ok
14:31:29.0398 3344 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
14:31:29.0414 3344 Browser - ok
14:31:29.0492 3344 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
14:31:29.0492 3344 Brserid - ok
14:31:29.0507 3344 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
14:31:29.0507 3344 BrSerWdm - ok
14:31:29.0523 3344 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
14:31:29.0523 3344 BrUsbMdm - ok
14:31:29.0539 3344 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
14:31:29.0539 3344 BrUsbSer - ok
14:31:29.0601 3344 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
14:31:29.0601 3344 BTHMODEM - ok
14:31:29.0695 3344 camsvc (f1140ed3a1e1d6824a63f27afd9eef32) C:\Program Files\TOSHIBA\TOSHIBA Web Camera Application\TWebCameraSrv.exe
14:31:29.0695 3344 camsvc - ok
14:31:29.0710 3344 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
14:31:29.0710 3344 cdfs - ok
14:31:29.0757 3344 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
14:31:29.0757 3344 cdrom - ok
14:31:29.0804 3344 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
14:31:29.0804 3344 CertPropSvc - ok
14:31:29.0835 3344 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
14:31:29.0835 3344 circlass - ok
14:31:29.0882 3344 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
14:31:29.0882 3344 CLFS - ok
14:31:29.0944 3344 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:31:29.0944 3344 clr_optimization_v2.0.50727_32 - ok
14:31:30.0038 3344 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:31:30.0038 3344 clr_optimization_v4.0.30319_32 - ok
14:31:30.0100 3344 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
14:31:30.0100 3344 CmBatt - ok
14:31:30.0131 3344 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
14:31:30.0131 3344 cmdide - ok
14:31:30.0147 3344 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
14:31:30.0147 3344 Compbatt - ok
14:31:30.0147 3344 COMSysApp - ok
14:31:30.0241 3344 ConfigFree Service (cab0eeaf5295fc96ddd3e19dce27e131) C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
14:31:30.0241 3344 ConfigFree Service - ok
14:31:30.0256 3344 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
14:31:30.0256 3344 crcdisk - ok
14:31:30.0303 3344 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
14:31:30.0303 3344 Crusoe - ok
14:31:30.0381 3344 CryptSvc (75c6a297e364014840b48eccd7525e30) C:\Windows\system32\cryptsvc.dll
14:31:30.0381 3344 CryptSvc - ok
14:31:30.0490 3344 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
14:31:30.0506 3344 DcomLaunch - ok
14:31:30.0537 3344 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
14:31:30.0537 3344 DfsC - ok
14:31:30.0662 3344 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
14:31:30.0677 3344 DFSR - ok
14:31:30.0802 3344 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
14:31:30.0802 3344 Dhcp - ok
14:31:30.0880 3344 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
14:31:30.0880 3344 disk - ok
14:31:30.0911 3344 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
14:31:30.0911 3344 Dnscache - ok
14:31:30.0958 3344 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
14:31:30.0958 3344 dot3svc - ok
14:31:30.0989 3344 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
14:31:30.0989 3344 DPS - ok
14:31:31.0036 3344 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
14:31:31.0036 3344 drmkaud - ok
14:31:31.0099 3344 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
14:31:31.0099 3344 DXGKrnl - ok
14:31:31.0161 3344 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
14:31:31.0161 3344 E1G60 - ok
14:31:31.0208 3344 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
14:31:31.0208 3344 EapHost - ok
14:31:31.0286 3344 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
14:31:31.0286 3344 Ecache - ok
14:31:31.0411 3344 eeCtrl (85b8b4032a895a746d46a288a9b30ded) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
14:31:31.0411 3344 eeCtrl - ok
14:31:31.0520 3344 ehRecvr (3a511ed3c9a9da2cd5a50ff46178063a) C:\Windows\ehome\ehRecvr.exe
14:31:31.0520 3344 ehRecvr - ok
14:31:31.0535 3344 ehSched (a3d94c93333619458af4bde7531234c5) C:\Windows\ehome\ehsched.exe
14:31:31.0535 3344 ehSched - ok
14:31:31.0551 3344 ehstart (487ba5c5bb442bd172f120dc197811c2) C:\Windows\ehome\ehstart.dll
14:31:31.0551 3344 ehstart - ok
14:31:31.0598 3344 ElRawDisk (b8eac99b14772bdc36ca963aed109fa2) C:\Windows\system32\drivers\rsdrv.sys
14:31:31.0598 3344 ElRawDisk - ok
14:31:31.0660 3344 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
14:31:31.0660 3344 elxstor - ok
14:31:31.0723 3344 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
14:31:31.0738 3344 EMDMgmt - ok
14:31:31.0847 3344 EraserUtilRebootDrv (b5a8a04a6e5b4e86b95b1553aa918f5f) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
14:31:31.0847 3344 EraserUtilRebootDrv - ok
14:31:31.0894 3344 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
14:31:31.0894 3344 ErrDev - ok
14:31:31.0941 3344 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
14:31:31.0941 3344 EventSystem - ok
14:31:32.0050 3344 EvtEng (54b6e150bff4a47eb0d204119d262e46) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
14:31:32.0050 3344 EvtEng - ok
14:31:32.0097 3344 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
14:31:32.0097 3344 exfat - ok
14:31:32.0159 3344 F-Secure BlackLight Sensor - ok
14:31:32.0206 3344 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
14:31:32.0206 3344 fastfat - ok
14:31:32.0269 3344 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
14:31:32.0269 3344 fdc - ok
14:31:32.0331 3344 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
14:31:32.0331 3344 fdPHost - ok
14:31:32.0347 3344 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
14:31:32.0347 3344 FDResPub - ok
14:31:32.0378 3344 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
14:31:32.0378 3344 FileInfo - ok
14:31:32.0409 3344 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
14:31:32.0409 3344 Filetrace - ok
14:31:32.0456 3344 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
14:31:32.0456 3344 flpydisk - ok
14:31:32.0487 3344 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
14:31:32.0503 3344 FltMgr - ok
14:31:32.0612 3344 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
14:31:32.0612 3344 FontCache - ok
14:31:32.0705 3344 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
14:31:32.0705 3344 FontCache3.0.0.0 - ok
14:31:32.0768 3344 fsbl-standalone - ok
14:31:32.0815 3344 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
14:31:32.0815 3344 Fs_Rec - ok
14:31:32.0861 3344 FwLnk (cbc22823628544735625b280665e434e) C:\Windows\system32\DRIVERS\FwLnk.sys
14:31:32.0861 3344 FwLnk - ok
14:31:32.0908 3344 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
14:31:32.0908 3344 gagp30kx - ok
14:31:33.0033 3344 GameConsoleService (37331304e89a773b1a86fe681fca150d) C:\Program Files\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
14:31:33.0033 3344 GameConsoleService - ok
14:31:33.0064 3344 GEARAspiWDM (5ae3a887ece5bbb72cfab273c2fd1cfa) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
14:31:33.0064 3344 GEARAspiWDM - ok
14:31:33.0111 3344 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
14:31:33.0127 3344 gpsvc - ok
14:31:33.0189 3344 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
14:31:33.0189 3344 gupdate - ok
14:31:33.0205 3344 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
14:31:33.0205 3344 gupdatem - ok
14:31:33.0251 3344 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
14:31:33.0251 3344 gusvc - ok
14:31:33.0314 3344 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
14:31:33.0314 3344 HdAudAddService - ok
14:31:33.0376 3344 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
14:31:33.0376 3344 HDAudBus - ok
14:31:33.0407 3344 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
14:31:33.0407 3344 HidBth - ok
14:31:33.0439 3344 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
14:31:33.0439 3344 HidIr - ok
14:31:33.0485 3344 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\System32\hidserv.dll
14:31:33.0485 3344 hidserv - ok
14:31:33.0517 3344 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
14:31:33.0517 3344 HidUsb - ok
14:31:33.0548 3344 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
14:31:33.0563 3344 hkmsvc - ok
14:31:33.0595 3344 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
14:31:33.0595 3344 HpCISSs - ok
14:31:33.0641 3344 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
14:31:33.0641 3344 HTTP - ok
14:31:33.0673 3344 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
14:31:33.0673 3344 i2omp - ok
14:31:33.0735 3344 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
14:31:33.0735 3344 i8042prt - ok
14:31:33.0782 3344 iaStor (71ecc07bc7c5e24c3dd01d8a29a24054) C:\Windows\system32\DRIVERS\iaStor.sys
14:31:33.0797 3344 iaStor - ok
14:31:33.0844 3344 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
14:31:33.0844 3344 iaStorV - ok
14:31:33.0969 3344 IDriverT (daf66902f08796f9c694901660e5a64a) C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
14:31:33.0969 3344 IDriverT - ok
14:31:34.0078 3344 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
14:31:34.0078 3344 idsvc - ok
14:31:34.0359 3344 IDSVix86 (6262c22a913bd255a0795d070b82aa47) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.2.1\Definitions\IPSDefs\20120808.001\IDSvix86.sys
14:31:34.0375 3344 IDSVix86 - ok
14:31:34.0562 3344 igfx (43daae0cfc92c86e43f63c2f491a870d) C:\Windows\system32\DRIVERS\igdkmd32.sys
14:31:34.0593 3344 igfx - ok
14:31:34.0702 3344 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
14:31:34.0702 3344 iirsp - ok
14:31:34.0765 3344 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
14:31:34.0765 3344 IKEEXT - ok
14:31:34.0905 3344 IntcAzAudAddService (3d40dd1831ed82a9ff660949506aad56) C:\Windows\system32\drivers\RTKVHDA.sys
14:31:34.0921 3344 IntcAzAudAddService - ok
14:31:35.0061 3344 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
14:31:35.0061 3344 intelide - ok
14:31:35.0108 3344 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
14:31:35.0108 3344 intelppm - ok
14:31:35.0123 3344 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
14:31:35.0139 3344 IPBusEnum - ok
14:31:35.0155 3344 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:31:35.0155 3344 IpFilterDriver - ok
14:31:35.0201 3344 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
14:31:35.0201 3344 iphlpsvc - ok
14:31:35.0217 3344 IpInIp - ok
14:31:35.0264 3344 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
14:31:35.0264 3344 IPMIDRV - ok
14:31:35.0295 3344 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
14:31:35.0295 3344 IPNAT - ok
14:31:35.0404 3344 iPod Service (178fe38b7740f598391eb2f51ae4ccac) C:\Program Files\iPod\bin\iPodService.exe
14:31:35.0420 3344 iPod Service - ok
14:31:35.0451 3344 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
14:31:35.0451 3344 IRENUM - ok
14:31:35.0482 3344 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
14:31:35.0482 3344 isapnp - ok
14:31:35.0545 3344 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
14:31:35.0545 3344 iScsiPrt - ok
14:31:35.0560 3344 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
14:31:35.0560 3344 iteatapi - ok
14:31:35.0576 3344 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
14:31:35.0591 3344 iteraid - ok
14:31:35.0623 3344 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
14:31:35.0623 3344 kbdclass - ok
14:31:35.0638 3344 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\drivers\kbdhid.sys
14:31:35.0638 3344 kbdhid - ok
14:31:35.0685 3344 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
14:31:35.0685 3344 KeyIso - ok
14:31:35.0747 3344 KSecDD (4a1445efa932a3baf5bdb02d7131ee20) C:\Windows\system32\Drivers\ksecdd.sys
14:31:35.0747 3344 KSecDD - ok
14:31:35.0825 3344 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
14:31:35.0825 3344 KtmRm - ok
14:31:35.0857 3344 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\System32\srvsvc.dll
14:31:35.0872 3344 LanmanServer - ok
14:31:35.0919 3344 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
14:31:35.0919 3344 LanmanWorkstation - ok
14:31:36.0013 3344 LightScribeService (6e5dac168d1ff9843e84a59d51d31107) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
14:31:36.0013 3344 LightScribeService - ok
14:31:36.0044 3344 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
14:31:36.0044 3344 lltdio - ok
14:31:36.0091 3344 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
14:31:36.0091 3344 lltdsvc - ok
14:31:36.0106 3344 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
14:31:36.0106 3344 lmhosts - ok
14:31:36.0137 3344 lsbppg - ok
14:31:36.0184 3344 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
14:31:36.0184 3344 LSI_FC - ok
14:31:36.0215 3344 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
14:31:36.0215 3344 LSI_SAS - ok
14:31:36.0231 3344 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
14:31:36.0231 3344 LSI_SCSI - ok
14:31:36.0262 3344 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
14:31:36.0262 3344 luafv - ok
14:31:36.0309 3344 MBAMSwissArmy (0db7527db188c7d967a37bb51bbf3963) C:\Windows\system32\drivers\mbamswissarmy.sys
14:31:36.0309 3344 MBAMSwissArmy - ok
14:31:36.0356 3344 Mcx2Svc (3bd2ad18179dead6652e87157fb98e4a) C:\Windows\system32\Mcx2Svc.dll
14:31:36.0356 3344 Mcx2Svc - ok
14:31:36.0387 3344 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
14:31:36.0387 3344 megasas - ok
14:31:36.0465 3344 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
14:31:36.0465 3344 MegaSR - ok
14:31:36.0512 3344 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
14:31:36.0512 3344 MMCSS - ok
14:31:36.0527 3344 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
14:31:36.0527 3344 Modem - ok
14:31:36.0574 3344 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
14:31:36.0574 3344 monitor - ok
14:31:36.0605 3344 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
14:31:36.0605 3344 mouclass - ok
14:31:36.0652 3344 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
14:31:36.0652 3344 mouhid - ok
14:31:36.0668 3344 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
14:31:36.0668 3344 MountMgr - ok
14:31:36.0746 3344 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
14:31:36.0746 3344 MozillaMaintenance - ok
14:31:36.0824 3344 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
14:31:36.0824 3344 mpio - ok
14:31:36.0855 3344 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
14:31:36.0855 3344 mpsdrv - ok
14:31:36.0902 3344 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
14:31:36.0917 3344 MpsSvc - ok
14:31:36.0964 3344 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
14:31:36.0964 3344 Mraid35x - ok
14:31:36.0980 3344 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
14:31:36.0995 3344 MRxDAV - ok
14:31:37.0027 3344 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
14:31:37.0027 3344 mrxsmb - ok
14:31:37.0058 3344 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:31:37.0058 3344 mrxsmb10 - ok
14:31:37.0073 3344 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:31:37.0073 3344 mrxsmb20 - ok
14:31:37.0120 3344 msahci (aa305cff241da187bd5077de4a2a043d) C:\Windows\system32\drivers\msahci.sys
14:31:37.0120 3344 msahci - ok
14:31:37.0151 3344 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
14:31:37.0151 3344 msdsm - ok
14:31:37.0183 3344 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
14:31:37.0183 3344 MSDTC - ok
14:31:37.0214 3344 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
14:31:37.0214 3344 Msfs - ok
14:31:37.0261 3344 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
14:31:37.0261 3344 msisadrv - ok
14:31:37.0307 3344 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
14:31:37.0307 3344 MSiSCSI - ok
14:31:37.0307 3344 msiserver - ok
14:31:37.0354 3344 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
14:31:37.0354 3344 MSKSSRV - ok
14:31:37.0401 3344 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
14:31:37.0401 3344 MSPCLOCK - ok
14:31:37.0448 3344 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
14:31:37.0448 3344 MSPQM - ok
14:31:37.0479 3344 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
14:31:37.0495 3344 MsRPC - ok
14:31:37.0526 3344 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
14:31:37.0526 3344 mssmbios - ok
14:31:37.0573 3344 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
14:31:37.0573 3344 MSTEE - ok
14:31:37.0604 3344 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
14:31:37.0604 3344 Mup - ok
14:31:37.0729 3344 N360 (e78a365cc3e0fbfc018a33dce01909f8) C:\Program Files\Norton 360\Engine\5.2.2.3\ccSvcHst.exe
14:31:37.0729 3344 N360 - ok
14:31:37.0791 3344 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
14:31:37.0791 3344 napagent - ok
14:31:37.0838 3344 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
14:31:37.0838 3344 NativeWifiP - ok
14:31:38.0009 3344 NAVENG (f11033730b38260b6892e837c457fb4b) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.2.1\Definitions\VirusDefs\20120808.034\NAVENG.SYS
14:31:38.0009 3344 NAVENG - ok
14:31:38.0103 3344 NAVEX15 (4e4e7c0259d3bb97de24a636c0e06aba) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.2.1\Definitions\VirusDefs\20120808.034\NAVEX15.SYS
14:31:38.0119 3344 NAVEX15 - ok
14:31:38.0275 3344 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
14:31:38.0275 3344 NDIS - ok
14:31:38.0321 3344 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
14:31:38.0321 3344 NdisTapi - ok
14:31:38.0337 3344 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
14:31:38.0337 3344 Ndisuio - ok
14:31:38.0399 3344 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
14:31:38.0399 3344 NdisWan - ok
14:31:38.0431 3344 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
14:31:38.0431 3344 NDProxy - ok
14:31:38.0446 3344 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
14:31:38.0446 3344 NetBIOS - ok
14:31:38.0493 3344 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
14:31:38.0493 3344 netbt - ok
14:31:38.0540 3344 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
14:31:38.0540 3344 Netlogon - ok
14:31:38.0587 3344 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
14:31:38.0587 3344 Netman - ok
14:31:38.0618 3344 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
14:31:38.0633 3344 netprofm - ok
14:31:38.0680 3344 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:31:38.0680 3344 NetTcpPortSharing - ok
14:31:38.0852 3344 NETw5v32 (8de67bd902095a13329fd82c85a1fa09) C:\Windows\system32\DRIVERS\NETw5v32.sys
14:31:38.0883 3344 NETw5v32 - ok
14:31:38.0992 3344 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
14:31:38.0992 3344 nfrd960 - ok
14:31:39.0039 3344 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
14:31:39.0039 3344 NlaSvc - ok
14:31:39.0070 3344 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
14:31:39.0070 3344 Npfs - ok
14:31:39.0086 3344 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
14:31:39.0086 3344 nsi - ok
14:31:39.0117 3344 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
14:31:39.0117 3344 nsiproxy - ok
14:31:39.0195 3344 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
14:31:39.0211 3344 Ntfs - ok
14:31:39.0257 3344 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
14:31:39.0257 3344 ntrigdigi - ok
14:31:39.0289 3344 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
14:31:39.0289 3344 Null - ok
14:31:39.0320 3344 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
14:31:39.0320 3344 nvraid - ok
14:31:39.0351 3344 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
14:31:39.0351 3344 nvstor - ok
14:31:39.0382 3344 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
14:31:39.0382 3344 nv_agp - ok
14:31:39.0382 3344 NwlnkFlt - ok
14:31:39.0398 3344 NwlnkFwd - ok
14:31:39.0554 3344 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
14:31:39.0554 3344 odserv - ok
14:31:39.0601 3344 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
14:31:39.0601 3344 ohci1394 - ok
14:31:39.0679 3344 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:31:39.0679 3344 ose - ok
14:31:39.0725 3344 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
14:31:39.0741 3344 p2pimsvc - ok
14:31:39.0757 3344 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
14:31:39.0757 3344 p2psvc - ok
14:31:39.0803 3344 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
14:31:39.0803 3344 Parport - ok
14:31:39.0866 3344 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
14:31:39.0866 3344 partmgr - ok
14:31:39.0897 3344 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
14:31:39.0897 3344 Parvdm - ok
14:31:39.0928 3344 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
14:31:39.0944 3344 PcaSvc - ok
14:31:39.0975 3344 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
14:31:39.0975 3344 pci - ok
14:31:40.0006 3344 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\DRIVERS\pciide.sys
14:31:40.0006 3344 pciide - ok
14:31:40.0053 3344 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
14:31:40.0053 3344 pcmcia - ok
14:31:40.0131 3344 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
14:31:40.0147 3344 PEAUTH - ok
14:31:40.0193 3344 PGEffect (28f7ffff50c474cf8be16a2cacc7ce42) C:\Windows\system32\DRIVERS\pgeffect.sys
14:31:40.0193 3344 PGEffect - ok
14:31:40.0287 3344 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
14:31:40.0365 3344 pla - ok
14:31:40.0521 3344 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
14:31:40.0521 3344 PlugPlay - ok
14:31:40.0661 3344 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
14:31:40.0677 3344 PNRPAutoReg - ok
14:31:40.0693 3344 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
14:31:40.0693 3344 PNRPsvc - ok
14:31:40.0739 3344 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
14:31:40.0755 3344 PolicyAgent - ok
14:31:40.0802 3344 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
14:31:40.0802 3344 PptpMiniport - ok
14:31:40.0817 3344 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
14:31:40.0833 3344 Processor - ok
14:31:40.0864 3344 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
14:31:40.0864 3344 ProfSvc - ok
14:31:40.0911 3344 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
14:31:40.0911 3344 ProtectedStorage - ok
14:31:40.0958 3344 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
14:31:40.0958 3344 PSched - ok
14:31:40.0989 3344 PxHelp20 (49452bfcec22f36a7a9b9c2181bc3042) C:\Windows\system32\Drivers\PxHelp20.sys
14:31:40.0989 3344 PxHelp20 - ok
14:31:41.0036 3344 QCDonner (b1ad87b4c97b6b59fcd075001e76865f) C:\Windows\system32\DRIVERS\LVCD.sys
14:31:41.0051 3344 QCDonner - ok
14:31:41.0145 3344 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
14:31:41.0161 3344 ql2300 - ok
14:31:41.0176 3344 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
14:31:41.0176 3344 ql40xx - ok
14:31:41.0223 3344 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
14:31:41.0223 3344 QWAVE - ok
14:31:41.0254 3344 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
14:31:41.0270 3344 QWAVEdrv - ok
14:31:41.0270 3344 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
14:31:41.0270 3344 RasAcd - ok
14:31:41.0317 3344 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
14:31:41.0317 3344 RasAuto - ok
14:31:41.0332 3344 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
14:31:41.0332 3344 Rasl2tp - ok
14:31:41.0379 3344 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
14:31:41.0379 3344 RasMan - ok
14:31:41.0426 3344 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
14:31:41.0426 3344 RasPppoe - ok
14:31:41.0457 3344 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
14:31:41.0457 3344 RasSstp - ok
14:31:41.0519 3344 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
14:31:41.0519 3344 rdbss - ok
14:31:41.0535 3344 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
14:31:41.0535 3344 RDPCDD - ok
14:31:41.0582 3344 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
14:31:41.0582 3344 rdpdr - ok
14:31:41.0597 3344 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
14:31:41.0597 3344 RDPENCDD - ok
14:31:41.0644 3344 RDPWD (c127ebd5afab31524662c48dfceb773a) C:\Windows\system32\drivers\RDPWD.sys
14:31:41.0644 3344 RDPWD - ok
14:31:41.0753 3344 RegSrvc (3ff45b7f17d5837216abae652cc61540) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
14:31:41.0769 3344 RegSrvc - ok
14:31:41.0816 3344 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
14:31:41.0816 3344 RemoteAccess - ok
14:31:41.0847 3344 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
14:31:41.0847 3344 RemoteRegistry - ok
14:31:41.0894 3344 rkhdrv40 (ba96e9fc124585f4cbec11416d85dc1e) C:\Windows\system32\drivers\rkhdrv40.sys
14:31:41.0894 3344 rkhdrv40 - ok
14:31:41.0925 3344 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
14:31:41.0941 3344 RpcLocator - ok
14:31:41.0987 3344 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
14:31:41.0987 3344 RpcSs - ok
14:31:42.0050 3344 RSELSVC - ok
14:31:42.0097 3344 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
14:31:42.0097 3344 rspndr - ok
14:31:42.0159 3344 RTL8169 (2d19a7469ea19993d0c12e627f4530bc) C:\Windows\system32\DRIVERS\Rtlh86.sys
14:31:42.0159 3344 RTL8169 - ok
14:31:42.0206 3344 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
14:31:42.0206 3344 SamSs - ok
14:31:42.0268 3344 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
14:31:42.0268 3344 sbp2port - ok
14:31:42.0362 3344 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
14:31:42.0362 3344 SCardSvr - ok
14:31:42.0424 3344 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
14:31:42.0424 3344 Schedule - ok
14:31:42.0455 3344 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
14:31:42.0455 3344 SCPolicySvc - ok
14:31:42.0487 3344 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
14:31:42.0487 3344 SDRSVC - ok
14:31:42.0502 3344 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
14:31:42.0502 3344 secdrv - ok
14:31:42.0533 3344 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
14:31:42.0533 3344 seclogon - ok
14:31:42.0565 3344 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
14:31:42.0565 3344 SENS - ok
14:31:42.0596 3344 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
14:31:42.0596 3344 Serenum - ok
14:31:42.0627 3344 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
14:31:42.0627 3344 Serial - ok
14:31:42.0658 3344 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
14:31:42.0658 3344 sermouse - ok
14:31:42.0705 3344 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
14:31:42.0705 3344 SessionEnv - ok
14:31:42.0752 3344 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
14:31:42.0752 3344 sffdisk - ok
14:31:42.0783 3344 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
14:31:42.0783 3344 sffp_mmc - ok
14:31:42.0783 3344 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
14:31:42.0783 3344 sffp_sd - ok
14:31:42.0814 3344 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
14:31:42.0814 3344 sfloppy - ok
14:31:42.0861 3344 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
14:31:42.0861 3344 SharedAccess - ok
14:31:42.0955 3344 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
14:31:42.0970 3344 ShellHWDetection - ok
14:31:43.0001 3344 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
14:31:43.0001 3344 sisagp - ok
14:31:43.0033 3344 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
14:31:43.0033 3344 SiSRaid2 - ok
14:31:43.0048 3344 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
14:31:43.0048 3344 SiSRaid4 - ok
14:31:43.0204 3344 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
14:31:43.0251 3344 slsvc - ok
14:31:43.0345 3344 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
14:31:43.0345 3344 SLUINotify - ok
14:31:43.0407 3344 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
14:31:43.0407 3344 Smb - ok
14:31:43.0454 3344 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
14:31:43.0454 3344 SNMPTRAP - ok
14:31:43.0485 3344 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
14:31:43.0485 3344 spldr - ok
14:31:43.0516 3344 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
14:31:43.0516 3344 Spooler - ok
14:31:43.0641 3344 SRTSP (83726cf02eced69138948083e06b6eac) C:\Windows\System32\Drivers\N360\0502020.003\SRTSP.SYS
14:31:43.0641 3344 SRTSP - ok
14:31:43.0672 3344 SRTSPX (4e7eab2e5615d39cf1f1df9c71e5e225) C:\Windows\system32\drivers\N360\0502020.003\SRTSPX.SYS
14:31:43.0672 3344 SRTSPX - ok
14:31:43.0703 3344 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
14:31:43.0703 3344 srv - ok
14:31:43.0735 3344 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
14:31:43.0735 3344 srv2 - ok
14:31:43.0750 3344 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
14:31:43.0766 3344 srvnet - ok
14:31:43.0797 3344 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
14:31:43.0797 3344 SSDPSRV - ok
14:31:43.0828 3344 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
14:31:43.0844 3344 SstpSvc - ok
14:31:43.0891 3344 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
14:31:43.0906 3344 stisvc - ok
14:31:43.0937 3344 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
14:31:43.0937 3344 swenum - ok
14:31:43.0984 3344 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
14:31:43.0984 3344 swprv - ok
14:31:44.0031 3344 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
14:31:44.0031 3344 Symc8xx - ok
14:31:44.0125 3344 SymDS (9bbeb8c6258e72d62e7560e6667aad39) C:\Windows\system32\drivers\N360\0502020.003\SYMDS.SYS
14:31:44.0125 3344 SymDS - ok
14:31:44.0203 3344 SymEFA (d5c02629c02a820a7e71bca3d44294a3) C:\Windows\system32\drivers\N360\0502020.003\SYMEFA.SYS
14:31:44.0218 3344 SymEFA - ok
14:31:44.0265 3344 SymEvent (ab33c3b196197ca467cbdda717860dba) C:\Windows\system32\Drivers\SYMEVENT.SYS
14:31:44.0265 3344 SymEvent - ok
14:31:44.0327 3344 SymIRON (a73399804d5d4a8b20ba60fcf70c9f1f) C:\Windows\system32\drivers\N360\0502020.003\Ironx86.SYS
14:31:44.0327 3344 SymIRON - ok
14:31:44.0452 3344 SYMTDIv (d42a7229e333af725f1445f785e4658d) C:\Windows\System32\Drivers\N360\0502020.003\SYMTDIV.SYS
14:31:44.0452 3344 SYMTDIv - ok
14:31:44.0515 3344 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
14:31:44.0515 3344 Sym_hi - ok
14:31:44.0561 3344 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
14:31:44.0561 3344 Sym_u3 - ok
14:31:44.0608 3344 SynTP (8fe2c9649ffe62143965f8d16b08be28) C:\Windows\system32\DRIVERS\SynTP.sys
14:31:44.0608 3344 SynTP - ok
14:31:44.0702 3344 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
14:31:44.0702 3344 SysMain - ok
14:31:44.0733 3344 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
14:31:44.0733 3344 TabletInputService - ok
14:31:44.0780 3344 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
14:31:44.0780 3344 TapiSrv - ok
14:31:44.0795 3344 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
14:31:44.0811 3344 TBS - ok
14:31:44.0873 3344 Tcpip (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\drivers\tcpip.sys
14:31:44.0889 3344 Tcpip - ok
14:31:44.0905 3344 Tcpip6 (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\DRIVERS\tcpip.sys
14:31:44.0920 3344 Tcpip6 - ok
14:31:44.0951 3344 tcpipreg (2c2d4cff5e09c73908f9b5af49a51365) C:\Windows\system32\drivers\tcpipreg.sys
14:31:44.0951 3344 tcpipreg - ok
14:31:45.0014 3344 tdcmdpst (6fdfba25002ce4bac463ac866ae71405) C:\Windows\system32\DRIVERS\tdcmdpst.sys
14:31:45.0014 3344 tdcmdpst - ok
14:31:45.0061 3344 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
14:31:45.0061 3344 TDPIPE - ok
14:31:45.0092 3344 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
14:31:45.0092 3344 TDTCP - ok
14:31:45.0123 3344 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
14:31:45.0123 3344 tdx - ok
14:31:45.0170 3344 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
14:31:45.0170 3344 TermDD - ok
14:31:45.0217 3344 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
14:31:45.0232 3344 TermService - ok
14:31:45.0373 3344 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
14:31:45.0373 3344 Themes - ok
14:31:45.0435 3344 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
14:31:45.0435 3344 THREADORDER - ok
14:31:45.0560 3344 TNaviSrv (22bc804efe155f54252f389b0781d7f2) C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
14:31:45.0560 3344 TNaviSrv - ok
14:31:45.0607 3344 TODDSrv (c5ac715b65b01788abc22d10749dddd8) C:\Windows\system32\TODDSrv.exe
14:31:45.0607 3344 TODDSrv - ok
14:31:45.0685 3344 TosCoSrv (5557e7f940cbcf09be43379f551f6689) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
14:31:45.0685 3344 TosCoSrv - ok
14:31:45.0747 3344 TOSHIBA eco Utility Service (4d689051684eb542187395dc14f28a7f) C:\Program Files\TOSHIBA\TECO\TecoService.exe
14:31:45.0747 3344 TOSHIBA eco Utility Service - ok
14:31:45.0809 3344 TOSHIBA HDD SSD Alert Service (b792d35b8bdc5fc4106808ff5c7770ab) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
14:31:45.0809 3344 TOSHIBA HDD SSD Alert Service - ok
14:31:45.0872 3344 tos_sps32 (4399a9bf7d8f49991a07fd86590a1619) C:\Windows\system32\DRIVERS\tos_sps32.sys
14:31:45.0872 3344 tos_sps32 - ok
14:31:45.0965 3344 TPCHSrv (507759e00572524834940dae5caff007) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
14:31:45.0965 3344 TPCHSrv - ok
14:31:45.0997 3344 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
14:31:45.0997 3344 TrkWks - ok
14:31:46.0043 3344 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
14:31:46.0043 3344 TrustedInstaller - ok
14:31:46.0075 3344 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
14:31:46.0075 3344 tssecsrv - ok
14:31:46.0106 3344 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
14:31:46.0106 3344 tunmp - ok
14:31:46.0121 3344 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
14:31:46.0121 3344 tunnel - ok
14:31:46.0168 3344 TVALZ (792a8b80f8188aba4b2be271583f3e46) C:\Windows\system32\DRIVERS\TVALZ_O.SYS
14:31:46.0168 3344 TVALZ - ok
14:31:46.0215 3344 TVALZFL (009aecd4c19209b09669a6615ea1e889) C:\Windows\system32\DRIVERS\TVALZFL.sys
14:31:46.0215 3344 TVALZFL - ok
14:31:46.0277 3344 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
14:31:46.0277 3344 uagp35 - ok
14:31:46.0355 3344 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
14:31:46.0355 3344 udfs - ok
14:31:46.0402 3344 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
14:31:46.0402 3344 UI0Detect - ok
14:31:46.0465 3344 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
14:31:46.0465 3344 uliagpkx - ok
14:31:46.0558 3344 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
14:31:46.0558 3344 uliahci - ok
14:31:46.0574 3344 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
14:31:46.0574 3344 UlSata - ok
14:31:46.0652 3344 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
14:31:46.0652 3344 ulsata2 - ok
14:31:46.0683 3344 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
14:31:46.0683 3344 umbus - ok
14:31:46.0730 3344 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
14:31:46.0745 3344 upnphost - ok
14:31:46.0823 3344 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
14:31:46.0823 3344 USBAAPL - ok
14:31:46.0870 3344 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
14:31:46.0870 3344 usbccgp - ok
14:31:46.0917 3344 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
14:31:46.0917 3344 usbcir - ok
14:31:46.0979 3344 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
14:31:46.0979 3344 usbehci - ok
14:31:47.0026 3344 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
14:31:47.0026 3344 usbhub - ok
14:31:47.0073 3344 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
14:31:47.0073 3344 usbohci - ok
14:31:47.0120 3344 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
14:31:47.0120 3344 usbprint - ok
14:31:47.0213 3344 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:31:47.0213 3344 USBSTOR - ok
14:31:47.0260 3344 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
14:31:47.0260 3344 usbuhci - ok
14:31:47.0307 3344 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
14:31:47.0307 3344 usbvideo - ok
14:31:47.0354 3344 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
14:31:47.0369 3344 UxSms - ok
14:31:47.0463 3344 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
14:31:47.0479 3344 vds - ok
14:31:47.0525 3344 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
14:31:47.0525 3344 vga - ok
14:31:47.0541 3344 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
14:31:47.0541 3344 VgaSave - ok
14:31:47.0572 3344 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
14:31:47.0572 3344 viaagp - ok
14:31:47.0619 3344 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
14:31:47.0619 3344 ViaC7 - ok
14:31:47.0619 3344 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
14:31:47.0619 3344 viaide - ok
14:31:47.0666 3344 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
14:31:47.0666 3344 volmgr - ok
14:31:47.0728 3344 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
14:31:47.0744 3344 volmgrx - ok
14:31:47.0822 3344 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
14:31:47.0822 3344 volsnap - ok
14:31:47.0869 3344 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
14:31:47.0884 3344 vsmraid - ok
14:31:47.0962 3344 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
14:31:47.0978 3344 VSS - ok
14:31:48.0009 3344 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
14:31:48.0025 3344 W32Time - ok
14:31:48.0087 3344 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
14:31:48.0087 3344 WacomPen - ok
14:31:48.0118 3344 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
14:31:48.0118 3344 Wanarp - ok
14:31:48.0118 3344 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
14:31:48.0118 3344 Wanarpv6 - ok
14:31:48.0181 3344 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
14:31:48.0181 3344 wcncsvc - ok
14:31:48.0212 3344 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
14:31:48.0212 3344 WcsPlugInService - ok
14:31:48.0259 3344 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
14:31:48.0259 3344 Wd - ok
14:31:48.0305 3344 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
14:31:48.0305 3344 Wdf01000 - ok
14:31:48.0337 3344 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
14:31:48.0352 3344 WdiServiceHost - ok
14:31:48.0352 3344 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
14:31:48.0352 3344 WdiSystemHost - ok
14:31:48.0461 3344 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
14:31:48.0461 3344 WebClient - ok
14:31:48.0493 3344 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
14:31:48.0508 3344 Wecsvc - ok
14:31:48.0555 3344 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
14:31:48.0571 3344 wercplsupport - ok
14:31:48.0633 3344 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
14:31:48.0633 3344 WerSvc - ok
14:31:48.0758 3344 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
14:31:48.0758 3344 WinDefend - ok
14:31:48.0758 3344 WinHttpAutoProxySvc - ok
14:31:48.0851 3344 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
14:31:48.0867 3344 Winmgmt - ok
14:31:48.0945 3344 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
14:31:48.0961 3344 WinRM - ok
14:31:49.0007 3344 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
14:31:49.0023 3344 Wlansvc - ok
14:31:49.0070 3344 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
14:31:49.0070 3344 WmiAcpi - ok
14:31:49.0132 3344 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
14:31:49.0132 3344 wmiApSrv - ok
14:31:49.0241 3344 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
14:31:49.0257 3344 WMPNetworkSvc - ok
14:31:49.0288 3344 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
14:31:49.0288 3344 WPCSvc - ok
14:31:49.0319 3344 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
14:31:49.0319 3344 WPDBusEnum - ok
14:31:49.0460 3344 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
14:31:49.0475 3344 WPFFontCache_v0400 - ok
14:31:49.0538 3344 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
14:31:49.0538 3344 ws2ifsl - ok
14:31:49.0569 3344 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\system32\wscsvc.dll
14:31:49.0585 3344 wscsvc - ok
14:31:49.0585 3344 WSearch - ok
14:31:49.0694 3344 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
14:31:49.0709 3344 wuauserv - ok
14:31:49.0834 3344 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
14:31:49.0834 3344 WUDFRd - ok
14:31:49.0865 3344 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
14:31:49.0865 3344 wudfsvc - ok
14:31:49.0912 3344 MBR (0x1B8) (5b5e648d12fcadc244c1ec30318e1eb9) \Device\Harddisk0\DR0
14:31:50.0474 3344 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
14:31:50.0474 3344 \Device\Harddisk0\DR0 - detected TDSS File System (1)
14:31:50.0505 3344 Boot (0x1200) (62e0715b1ae51e6399b5095b0139ba59) \Device\Harddisk0\DR0\Partition0
14:31:50.0505 3344 \Device\Harddisk0\DR0\Partition0 - ok
14:31:50.0505 3344 ============================================================
14:31:50.0505 3344 Scan finished
14:31:50.0505 3344 ============================================================
14:31:50.0521 5904 Detected object count: 1
14:31:50.0521 5904 Actual detected object count: 1
14:31:59.0179 5904 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
14:31:59.0179 5904 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-09 14:26:14
-----------------------------
14:26:14.998 OS Version: Windows 6.0.6002 Service Pack 2
14:26:14.998 Number of processors: 2 586 0x170A
14:26:14.998 ComputerName: IANOGELBY-PC UserName: Ian Ogelby
14:26:17.041 Initialize success
14:40:31.321 AVAST engine defs: 12080900
14:40:44.066 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
14:40:44.082 Disk 0 Vendor: TOSHIBA_ FG01 Size: 305245MB BusType: 3
14:40:44.098 Disk 0 MBR read successfully
14:40:44.098 Disk 0 MBR scan
14:40:44.113 Disk 0 Windows VISTA default MBR code
14:40:44.144 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
14:40:44.238 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 294695 MB offset 3074048
14:40:44.269 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS NTFS 9049 MB offset 606609408
14:40:44.332 Disk 0 scanning sectors +625141760
14:40:44.472 Disk 0 scanning C:\Windows\system32\drivers
14:41:04.424 Service scanning
14:41:47.683 Modules scanning
14:42:03.268 Disk 0 trace - called modules:
14:42:03.814 ntkrnlpa.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
14:42:03.814 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x864e4730]
14:42:03.829 3 CLASSPNP.SYS[8a3118b3] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0x85294028]
14:42:05.467 AVAST engine scan C:\Windows
14:42:08.790 AVAST engine scan C:\Windows\system32
14:46:32.343 AVAST engine scan C:\Windows\system32\drivers
14:46:55.526 AVAST engine scan C:\Users\Ian Ogelby
14:48:37.987 Disk 0 MBR has been saved successfully to "C:\Users\Ian Ogelby\Documents\MBR.dat"
14:48:37.987 The log file has been saved successfully to "C:\Users\Ian Ogelby\Documents\aswMBR.txt"

#4 pandablue

pandablue
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:01:46 PM

Posted 09 August 2012 - 02:33 PM

C:\Users\Ian Ogelby\AppData\Local\Temp\Temp1_FFSetup220.zip\FFSetup220.exe Win32/Adware.ADON application

It won't let me remove the virus. It wants me to buy the full version or do free trial. And also TDSkiller now does not pick up the virus that it did before. And there is also now a TDSSKiller_Quarantine in my C Drive folder.

Edited by pandablue, 09 August 2012 - 05:23 PM.


#5 pandablue

pandablue
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:01:46 PM

Posted 10 August 2012 - 07:20 AM

I would like to thank you for you help so far. My computer is still redirecting.

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:46 PM

Posted 10 August 2012 - 07:25 AM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#7 pandablue

pandablue
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:01:46 PM

Posted 10 August 2012 - 12:46 PM

Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.10.05

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 8.0.6001.19272
Ian Ogelby :: IANOGELBY-PC [administrator]

8/10/2012 8:45:23 AM
mbam-log-2012-08-10 (08-45-23).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 416076
Time elapsed: 3 hour(s), 53 minute(s), 52 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

This is the first scan and it didn't find anything. I am doing a second scan just to make sure.

#8 pandablue

pandablue
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:01:46 PM

Posted 10 August 2012 - 03:42 PM

Second Clean scan. Still getting redirecting. Gonna do the other tasks you told me to do.

Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.10.05

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 8.0.6001.19272
Ian Ogelby :: IANOGELBY-PC [administrator]

8/10/2012 12:42:49 PM
mbam-log-2012-08-10 (12-42-49).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 416520
Time elapsed: 3 hour(s), 57 minute(s), 39 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#9 pandablue

pandablue
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:01:46 PM

Posted 10 August 2012 - 03:49 PM

MiniToolBox by Farbar Version: 23-07-2012
Ran by Ian Ogelby (administrator) on 10-08-2012 at 16:43:25
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.http", "127.0.0.1"
"network.proxy.http_port", 49164
"network.proxy.no_proxies_on", "localho,t,127.0.0.1,*.local"
"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com

There are 15253 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Intel® WiFi Link 5100 AGN = Wireless Network Connection (Connected)
Realtek PCIe FE Family Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : IanOgelby-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : myhome.westell.com

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : myhome.westell.com
Description . . . . . . . . . . . : Intel® WiFi Link 5100 AGN
Physical Address. . . . . . . . . : 00-1E-65-42-BF-46
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::b53d:a31f:9117:e7a2%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.46(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Friday, August 10, 2012 8:06:22 AM
Lease Expires . . . . . . . . . . : Saturday, August 11, 2012 8:06:32 AM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 285220453
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-11-F9-06-2F-00-1E-33-D1-8B-70
DNS Servers . . . . . . . . . . . : 192.168.1.1
192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
Physical Address. . . . . . . . . : 00-1E-33-D1-8B-70
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{6B5000AA-FF92-48A3-A5FD-27C3B6EDA01C}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : myhome.westell.com
Description . . . . . . . . . . . : isatap.myhome.westell.com
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 6TO4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 13:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 6TO4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: dslrouter
Address: 192.168.1.1

Name: google.com
Addresses: 2607:f8b0:4006:802::1003
173.194.43.0
173.194.43.1
173.194.43.2
173.194.43.3
173.194.43.4
173.194.43.5
173.194.43.6
173.194.43.7
173.194.43.8
173.194.43.9
173.194.43.14



Pinging google.com [173.194.43.0] with 32 bytes of data:

Reply from 173.194.43.0: bytes=32 time=228ms TTL=54

Reply from 173.194.43.0: bytes=32 time=244ms TTL=54



Ping statistics for 173.194.43.0:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 228ms, Maximum = 244ms, Average = 236ms

Server: dslrouter
Address: 192.168.1.1

Name: yahoo.com
Addresses: 72.30.38.140
98.139.183.24
209.191.122.70



Pinging yahoo.com [209.191.122.70] with 32 bytes of data:

Reply from 209.191.122.70: bytes=32 time=218ms TTL=51

Reply from 209.191.122.70: bytes=32 time=225ms TTL=51



Ping statistics for 209.191.122.70:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 218ms, Maximum = 225ms, Average = 221ms

Server: dslrouter
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Request timed out.

Request timed out.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
11 ...00 1e 65 42 bf 46 ...... Intel® WiFi Link 5100 AGN
10 ...00 1e 33 d1 8b 70 ...... Realtek PCIe FE Family Controller
1 ........................... Software Loopback Interface 1
15 ...00 00 00 00 00 00 00 e0 isatap.{6B5000AA-FF92-48A3-A5FD-27C3B6EDA01C}
16 ...00 00 00 00 00 00 00 e0 isatap.myhome.westell.com
13 ...00 00 00 00 00 00 00 e0 6TO4 Adapter
12 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
14 ...00 00 00 00 00 00 00 e0 6TO4 Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.46 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.46 281
192.168.1.46 255.255.255.255 On-link 192.168.1.46 281
192.168.1.255 255.255.255.255 On-link 192.168.1.46 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.46 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.46 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 281 fe80::/64 On-link
11 281 fe80::b53d:a31f:9117:e7a2/128
On-link
1 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/10/2012 08:06:18 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/10/2012 00:38:40 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/10/2012 00:24:08 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/09/2012 07:26:12 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3079257

Error: (08/09/2012 07:26:12 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3079257

Error: (08/09/2012 07:26:11 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/09/2012 01:59:49 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/09/2012 10:06:39 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/09/2012 09:46:07 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/09/2012 00:56:33 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7220195


System errors:
=============
Error: (08/10/2012 09:43:37 AM) (Source: iaStor) (User: )
Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.

Error: (08/10/2012 08:08:42 AM) (Source: Service Control Manager) (User: )
Description: KtmRm for Distributed Transaction Coordinator2147942438 (0x80070026)

Error: (08/10/2012 08:06:19 AM) (Source: Service Control Manager) (User: )
Description: lsbppg

Error: (08/10/2012 08:04:45 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: C:\Windows\System32\IWMSSvc.dll21

Error: (08/10/2012 08:04:22 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 8:01:53 AM on 8/10/2012 was unexpected.

Error: (08/10/2012 07:59:05 AM) (Source: Service Control Manager) (User: )
Description: KtmRm for Distributed Transaction Coordinator2147942438 (0x80070026)

Error: (08/10/2012 07:58:31 AM) (Source: Service Control Manager) (User: )
Description: 30000ShellHWDetection

Error: (08/10/2012 07:57:51 AM) (Source: Service Control Manager) (User: )
Description: 30000N360

Error: (08/10/2012 07:57:21 AM) (Source: Service Control Manager) (User: )
Description: 30000

Error: (08/10/2012 07:56:31 AM) (Source: Service Control Manager) (User: )
Description: 30000N360


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
7-Zip 4.65
Adobe AIR (Version: 3.2.0.2070)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.270)
Adobe Flash Player 11 Plugin (Version: 11.3.300.270)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Apple Application Support (Version: 2.1.6)
Apple Mobile Device Support (Version: 4.0.0.97)
Apple Software Update (Version: 2.1.3.127)
Audacity 1.2.6
Bones screensaver
Bonjour (Version: 3.0.0.10)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Direct DiscRecorder (Version: 1.00.0000)
DVD MovieFactory for TOSHIBA (Version: 7.0.0)
ESET Online Scanner v3
FormatFactory 2.96 (Version: 2.96)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.3.2710.138)
Google Update Helper (Version: 1.3.21.115)
Intel® Graphics Media Accelerator Driver
Intel® PROSet/Wireless WiFi Software (Version: 12.02.0000)
Intel® Matrix Storage Manager
iTunes (Version: 10.5.2.11)
Java™ 6 Update 11 (Version: 6.0.110)
Lernout & Hauspie TruVoice American English TTS Engine
LightScribe 1.4.124.1 (Version: 1.4.124.1)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Suite Activation Assistant (Version: 2.9)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 9.7.0621)
Move Media Player
Mozilla Firefox 14.0.1 (x86 en-GB) (Version: 14.0.1)
Mozilla Maintenance Service (Version: 14.0.1)
MSXML 4.0 SP2 (KB941833) (Version: 4.20.9849.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Norton 360 (Version: 5.2.2.3)
Paint.NET v3.5.10 (Version: 3.60.0)
Picasa 3 (Version: 3.8)
PlayReady PC runtime (Version: 1)
QuickBooks Financial Center (Version: 1.10.0000)
QuickTime (Version: 7.71.80.42)
Realtek 8136 8168 8169 Ethernet Driver (Version: 1.00.0004)
Realtek High Definition Audio Driver (Version: 6.0.1.5809)
Realtek USB 2.0 Card Reader (Version: 6.0.6000.20130)
SanctionedMedia (Version: 4.5.0.0)
Skype Launcher (Version: 1.0)
Spelling Dictionaries Support For Adobe Reader 9 (Version: 9.0.0)
Spybot - Search & Destroy (Version: 1.6.2)
Synaptics Pointing Device Driver (Version: 12.2.10.0)
TOSHIBA Agreement Notification Utility (Version: 1.0.11.0)
Toshiba Application and Driver Installer (Version: 8.0.0.4)
TOSHIBA Assist (Version: 2.01.10)
TOSHIBA ConfigFree (Version: 7.4.8)
TOSHIBA Disc Creator (Version: 2.0.1.3)
TOSHIBA DVD PLAYER (Version: 3.00.1.04-A)
TOSHIBA eco Utility (Version: 1.0.2.0)
TOSHIBA Extended Tiles for Windows Mobility Center (Version: 1.01.00)
TOSHIBA Face Recognition (Version: 3.0.4.32)
TOSHIBA Hardware Setup (Version: 2.00.03)
TOSHIBA HDD/SSD Alert (Version: 3.0.0.0)
TOSHIBA Internal Modem Region Select Utility (Version: 2.3.0.00)
TOSHIBA PC Health Monitor (Version: 1.3.1.0)
Toshiba Quality Application (Version: 1.001.0000)
TOSHIBA Recovery Disc Creator (Version: 2.0.0.2)
Toshiba Registration (Version: 1.00.0000)
Toshiba Resources Page (Version: 1.0.2.1)
TOSHIBA SD Memory Utilities (Version: 1.8.1.6_Vista32)
TOSHIBA Software Modem
TOSHIBA Speech System Applications
TOSHIBA Speech System SR Engine(U.S.) Version1.0
TOSHIBA Speech System TTS Engine(U.S.) Version1.0
TOSHIBA Supervisor Password (Version: 2.00.02)
TOSHIBA Value Added Package (Version: 1.2.8)
TOSHIBA Web Camera Application (Version: 1.0.1.8)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
WildTangent Games (Version: 1.0.0.66)
Zynga Toolbar (Version: 6.8.5.1)

========================= Memory info: ===================================

Percentage of memory in use: 50%
Total physical RAM: 2939.24 MB
Available physical RAM: 1449.18 MB
Total Pagefile: 6084.77 MB
Available Pagefile: 4468.96 MB
Total Virtual: 2047.88 MB
Available Virtual: 1943.41 MB

========================= Partitions: =====================================

1 Drive c: (TI100712V0E) (Fixed) (Total:287.79 GB) (Free:27.84 GB) NTFS

========================= Users: ========================================

User accounts for \\IANOGELBY-PC

Administrator Guest Ian Ogelby


**** End of log ****

#10 pandablue

pandablue
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:01:46 PM

Posted 10 August 2012 - 03:52 PM

Farbar Service Scanner Version: 06-08-2012
Ran by Ian Ogelby (administrator) on 10-08-2012 at 16:50:20
Running from "C:\Users\Ian Ogelby\Pictures\Downloads\Downloads"
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll
[2008-01-20 22:24] - [2008-01-20 22:24] - 0288256 ____A (Microsoft Corporation) E1499BD0FF76B1B2FBBF1AF339D91165

C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****

#11 pandablue

pandablue
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:01:46 PM

Posted 10 August 2012 - 04:03 PM

# AdwCleaner v1.800 - Logfile created 08/10/2012 at 16:53:23
# Updated 01/08/2012 by Xplode
# Operating system : Windows Vista ™ Home Premium Service Pack 2 (32 bits)
# User : Ian Ogelby - IANOGELBY-PC
# Running from : C:\Users\Ian Ogelby\Pictures\Downloads\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Users\Ian Ogelby\AppData\Local\Conduit
Folder Deleted : C:\Users\Ian Ogelby\AppData\Local\SanctionedMedia
Folder Deleted : C:\Users\Ian Ogelby\AppData\Local\Zynga
Folder Deleted : C:\Users\Ian Ogelby\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Ian Ogelby\AppData\LocalLow\Zynga
Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Program Files\Zynga
File Deleted : C:\Program Files\Mozilla FireFox\Components\AskHPRFF.js

***** [Registry] *****

[*] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2438727
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\Toolbar
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Headlight
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Smad
Key Deleted : HKCU\Software\SanctionedMedia
Key Deleted : HKCU\Software\Zynga
Key Deleted : HKCU\Toolbar
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Zynga Toolbar
Key Deleted : HKLM\SOFTWARE\Software
Key Deleted : HKLM\SOFTWARE\Zynga

***** [Registre - GUID] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7B13EC3E-999A-4B70-B9CB-2617B8323822}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{636E19A4-E9F1-4F72-8D81-85E5A2D3DB18}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FBD6A3C5-A05B-4BC8-84BE-682AFF915FF0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{16AEBFC3-12EB-4BE0-9630-781DD9A6143C}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7B13EC3E-999A-4B70-B9CB-2617B8323822}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{636E19A4-E9F1-4F72-8D81-85E5A2D3DB18}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7B13EC3E-999A-4B70-B9CB-2617B8323822}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7B13EC3E-999A-4B70-B9CB-2617B8323822}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{636E19A4-E9F1-4F72-8D81-85E5A2D3DB18}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{7B13EC3E-999A-4B70-B9CB-2617B8323822}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{7B13EC3E-999A-4B70-B9CB-2617B8323822}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{7B13EC3E-999A-4B70-B9CB-2617B8323822}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{7B13EC3E-999A-4B70-B9CB-2617B8323822}]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.19272

[OK] Registry is clean.

-\\ Mozilla Firefox v14.0.1 (en-GB)

Profile name : default
File : C:\Users\Ian Ogelby\AppData\Roaming\Mozilla\Firefox\Profiles\9wkvlirn.default\prefs.js

Deleted : user_pref("browser.search.defaultengine", "Ask.com");
Deleted : user_pref("browser.search.defaultenginename", "Ask.com");
Deleted : user_pref("browser.search.order.1", "Ask.com");
Deleted : user_pref("browser.search.selectedengine", "Ask.com");

Profile name : default-1344454289102 [Profil par défaut]
File : C:\Users\Ian Ogelby\AppData\Roaming\Mozilla\Firefox\Profiles\d0btgmb9.default-1344454289102\prefs.js

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [4703 octets] - [10/08/2012 16:53:23]

########## EOF - C:\AdwCleaner[S1].txt - [4831 octets] ##########

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:46 PM

Posted 10 August 2012 - 04:19 PM

Download

Hosts fix

Run it,restart the PC

Which browser gets redirected?

Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the text contents here

#13 pandablue

pandablue
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:01:46 PM

Posted 10 August 2012 - 04:37 PM

I have been using Firefox to view the blog and I have been searching using firefox and a few searches were getting redirected. I haven't tested i.e to see if its still redirecting.

Edited by pandablue, 10 August 2012 - 05:06 PM.


#14 pandablue

pandablue
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:01:46 PM

Posted 10 August 2012 - 04:45 PM

"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms" "" "" ""
+ "rdpclip" "" "" "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "00TCrdMain" "TOSHIBA Flash Cards" "TOSHIBA Corporation" "c:\program files\toshiba\flashcards\tcrdmain.exe"
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files\common files\adobe\arm\1.0\adobearm.exe"
+ "APSDaemon" "Apple Push" "Apple Inc." "c:\program files\common files\apple\apple application support\apsdaemon.exe"
+ "cfFncEnabler.exe" "cfFncEnabler" "Toshiba Corporation" "c:\program files\toshiba\configfree\cffncenabler.exe"
+ "HotKeysCmds" "hkcmd Module" "Intel Corporation" "c:\windows\system32\hkcmd.exe"
+ "HSON" "HotStartOn" "TOSHIBA Corporation" "c:\program files\toshiba\tbs\hson.exe"
+ "IgfxTray" "igfxTray Module" "Intel Corporation" "c:\windows\system32\igfxtray.exe"
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files\itunes\ituneshelper.exe"
+ "Malwarebytes Anti-Malware (reboot)" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbam.exe"
+ "NDSTray.exe" "ConfigFree Task Tray Menu" "TOSHIBA CORPORATION" "c:\program files\toshiba\configfree\ndstray.exe"
+ "Persistence" "persistence Module" "Intel Corporation" "c:\windows\system32\igfxpers.exe"
+ "QuickTime Task" "QuickTime Task" "Apple Inc." "c:\program files\quicktime\qttask.exe"
+ "RtHDVCpl" "HD Audio Control Panel" "Realtek Semiconductor" "c:\program files\realtek\audio\hda\rthdvcpl.exe"
+ "SmartFaceVWatcher" "SmartFaceVWatcher" "TOSHIBA Corporation" "c:\program files\toshiba\smartfacev\smartfacevwatcher.exe"
+ "SmoothView" "SmoothView" "TOSHIBA Corporation" "c:\program files\toshiba\smoothview\smoothview.exe"
+ "SynTPEnh" "Synaptics TouchPad Enhancements" "Synaptics Incorporated" "c:\program files\synaptics\syntp\syntpenh.exe"
+ "TANU" "" "TOSHIBA Corporation" "c:\program files\toshiba\tanu\tanu.exe"
+ "Teco" "TOSHIBA eco Utility" "TOSHIBA Corporation" "c:\program files\toshiba\teco\teco.exe"
+ "TosSENotify" "TosSENotify.exe.mui" "TOSHIBA Corporation" "c:\program files\toshiba\toshiba hdd ssd alert\tossenotify.exe"
+ "TPCHWMsg" "TOSHIBA PC Health Monitor" "TOSHIBA Corporation" "c:\program files\toshiba\tphm\tpchwmsg.exe"
+ "TPwrMain" "TOSHIBA Power Saver" "TOSHIBA Corporation" "c:\program files\toshiba\power saver\tpwrmain.exe"
+ "Windows Defender" "Windows Defender User Interface" "Microsoft Corporation" "c:\program files\windows defender\msascui.exe"
"C:\Users\Ian Ogelby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "OneNote 2007 Screen Clipper and Launcher.lnk" "Microsoft Office OneNote Quick Launcher" "Microsoft Corporation" "c:\program files\microsoft office\office12\onenotem.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows Mail 7" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "swg" "GoogleToolbarNotifier" "Google Inc." "c:\program files\google\googletoolbarnotifier\googletoolbarnotifier.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\msoxmlmf.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" ""
+ "ms-help" "Microsoft® Help Data Services Module" "Microsoft Corporation" "c:\program files\common files\microsoft shared\help\hxds.dll"
+ "ms-itss" "Microsoft® InfoTech Storage System Library" "Microsoft Corporation" "c:\program files\common files\microsoft shared\information retrieval\msitss.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" ""
+ "SABShellExecuteHook Class" "" "" "File not found: C:\Program Files\SUPERAntiSpyware\SASSEH.DLL"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\program files\7-zip\7-zip.dll"
+ "BUContextMenu" "Backup Shell" "Symantec Corporation" "c:\program files\norton 360\engine\5.2.2.3\bushell.dll"
+ "FormatFactoryShell" "FormatFactory Shell Menu Module" "Free Time" "c:\users\ian ogelby\formatfactory\shellex_101.dll"
+ "Symantec.Norton.Antivirus.IEContextMenu" "Symantec Shared Component Shell Extension Module" "Symantec Corporation" "c:\program files\norton 360\engine\5.2.2.3\navshext.dll"
"HKLM\Software\Classes\*\ShellEx\PropertySheetHandlers" "" "" ""
+ "BuPropertySheet" "Backup Shell" "Symantec Corporation" "c:\program files\norton 360\engine\5.2.2.3\bushell.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\program files\7-zip\7-zip.dll"
+ "FormatFactoryShell" "FormatFactory Shell Menu Module" "Free Time" "c:\users\ian ogelby\formatfactory\shellex_101.dll"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "7-Zip" "7-Zip Shell Extension" "Igor Pavlov" "c:\program files\7-zip\7-zip.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "igfxcui" "igfxpph Module" "Intel Corporation" "c:\windows\system32\igfxpph.dll"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "BUContextMenu" "Backup Shell" "Symantec Corporation" "c:\program files\norton 360\engine\5.2.2.3\bushell.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll"
+ "Symantec.Norton.Antivirus.IEContextMenu" "Symantec Shared Component Shell Extension Module" "Symantec Corporation" "c:\program files\norton 360\engine\5.2.2.3\navshext.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "OverlayExcluded" "Backup Shell" "Symantec Corporation" "c:\program files\norton 360\engine\5.2.2.3\bushell.dll"
+ "OverlayPending" "Backup Shell" "Symantec Corporation" "c:\program files\norton 360\engine\5.2.2.3\bushell.dll"
+ "OverlayProtected" "Backup Shell" "Symantec Corporation" "c:\program files\norton 360\engine\5.2.2.3\bushell.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Google Toolbar Helper" "Google Toolbar" "Google Inc." "c:\program files\google\google toolbar\googletoolbar_32.dll"
+ "Google Toolbar Notifier BHO" "GoogleToolbarNotifier" "Google Inc." "c:\program files\google\googletoolbarnotifier\5.7.7227.1100\swg.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files\java\jre6\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files\java\jre6\bin\ssv.dll"
+ "Symantec Intrusion Prevention" "IPS Browser Helper DLL" "Symantec Corporation" "c:\program files\norton 360\engine\5.2.2.3\ips\ipsbho.dll"
+ "Symantec NCO BHO" "coIEPlugIn" "Symantec Corporation" "c:\program files\norton 360\engine\5.2.2.3\coieplg.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Google Toolbar" "Google Toolbar" "Google Inc." "c:\program files\google\google toolbar\googletoolbar_32.dll"
+ "Norton Toolbar" "coIEPlugIn" "Symantec Corporation" "c:\program files\norton 360\engine\5.2.2.3\coieplg.dll"
"Task Scheduler" "" "" ""
+ "\Apple\AppleSoftwareUpdate" "Apple Software Update" "Apple Inc." "c:\program files\apple software update\softwareupdate.exe"
+ "\Microsoft\Windows\WindowsCalendar\Reminders - Ian Ogelby" "Windows Calendar" "Microsoft Corporation" "c:\program files\windows calendar\wincal.exe"
+ "\Microsoft\Windows\Wired\GatherWiredInfo" "" "" "c:\windows\system32\gatherwiredinfo.vbs"
+ "\Microsoft\Windows\Wireless\GatherWirelessInfo" "" "" "c:\windows\system32\gatherwirelessinfo.vbs"
+ "\RealUpgradeLogonTaskS-1-5-21-2196794291-975287098-1421465012-1000" "" "" "File not found: C:\Program Files\Real\RealUpgrade\RealUpgrade.exe"
+ "\RealUpgradeScheduledTaskS-1-5-21-2196794291-975287098-1421465012-1000" "" "" "File not found: C:\Program Files\Real\RealUpgrade\RealUpgrade.exe"
+ "\Symantec\Norton Error Analyzer 5.2.2.3" "Symantec Error Reporting" "Symantec Corporation" "c:\program files\norton 360\engine\5.2.2.3\symerr.exe"
+ "\UnHackMe Task Scheduler" "" "" "File not found: C:\Program Files\UnHackMe\hackmon.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AdobeARMservice" "Adobe Acrobat Updater keeps your Adobe software up to date." "Adobe Systems Incorporated" "c:\program files\common files\adobe\arm\1.0\armsvc.exe"
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\system32\macromed\flash\flashplayerupdateservice.exe"
+ "AgereModemAudio" "Agere Soft Modem Call Progress Service" "Agere Systems" "c:\windows\system32\agrsmsvc.exe"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe"
+ "camsvc" "" "TOSHIBA" "c:\program files\toshiba\toshiba web camera application\twebcamerasrv.exe"
+ "ConfigFree Service" "You can't stop this service, if you want to keep ConfigFree functionality fine." "TOSHIBA CORPORATION" "c:\program files\toshiba\configfree\cfsvcs.exe"
+ "EvtEng" "Manages the event trace messages for all the Intel® PROSet/Wireless Software components." "Intel® Corporation" "c:\program files\intel\wifi\bin\evteng.exe"
+ "F-Secure BlackLight Sensor" "" "" "File not found: C:\Users\IANOGE~1\AppData\Local\Temp\F-Secure\BlackLight\fsblsrv.exe"
+ "GameConsoleService" "GameConsole management services" "WildTangent, Inc." "c:\program files\toshiba games\toshiba game console\gameconsoleservice.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "gusvc" "Google Updater keeps your Google software up to date. If Google Updater Service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work." "Google" "c:\program files\google\common\google updater\googleupdaterservice.exe"
+ "IDriverT" "Provides support for the Running Object Table for InstallShield Drivers" "Macrovision Corporation" "c:\program files\common files\installshield\driver\1150\intel 32\idrivert.exe"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
+ "LightScribeService" "Used by the LightScribe software components to support 3rd party disc labeling applications using the LightScribe COM Application Programming Interface (LSCAPI). This service needs to run for LightScribe direct disc labeling to work." "Hewlett-Packard Company" "c:\program files\common files\lightscribe\lssrvc.exe"
+ "MozillaMaintenance" "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled." "Mozilla Foundation" "c:\program files\mozilla maintenance service\maintenanceservice.exe"
+ "N360" "Norton 360" "Symantec Corporation" "c:\program files\norton 360\engine\5.2.2.3\ccsvchst.exe"
+ "odserv" "Run portions of Microsoft Office Diagnostics." "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\odserv.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files\common files\microsoft shared\source engine\ose.exe"
+ "RegSrvc" "Provides registry access to all Intel® PROSet/Wireless Software components" "Intel® Corporation" "c:\program files\common files\intel\wirelesscommon\regsrvc.exe"
+ "RSELSVC" "This service is the purpose of changing modem region" "TOSHIBA Corporation" "c:\program files\toshiba\rselect\rselsvc.exe"
+ "TNaviSrv" "TOSHIBA Navi Support Service" "TOSHIBA Corporation" "c:\program files\toshiba\toshiba dvd player\tnavisrv.exe"
+ "TODDSrv" "TDCSrv Application" "TOSHIBA Corporation" "c:\windows\system32\toddsrv.exe"
+ "TosCoSrv" "TOSHIBA Power Saver manages power saving settings supported by TOSHIBA. These settings will not work if the service has stopped." "TOSHIBA Corporation" "c:\program files\toshiba\power saver\toscosrv.exe"
+ "TOSHIBA eco Utility Service" "TOSHIBA eco Utility Service" "TOSHIBA Corporation" "c:\program files\toshiba\teco\tecoservice.exe"
+ "TOSHIBA HDD SSD Alert Service" "TosSmartSrv.exe" "TOSHIBA Corporation" "c:\program files\toshiba\toshiba hdd ssd alert\tossmartsrv.exe"
+ "TPCHSrv" "TOSHIBA PC Health Monitor" "TOSHIBA Corporation" "c:\program files\toshiba\tphm\tpchsrv.exe"
+ "WinDefend" "Scan your computer for unwanted software, schedule scans, and get the latest unwanted software definitions." "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AgereSoftModem" "SoftModem Device Driver" "Agere Systems" "c:\windows\system32\drivers\agrsm.sys"
+ "BHDrvx86" "SONAR Engine Driver" "Symantec Corporation" "c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\n360_5.0.2.1\definitions\bashdefs\20120804.001\bhdrvx86.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "E1G60" "Intel® PRO/1000 Adapter NDIS 6 deserialized driver" "Intel Corporation" "c:\windows\system32\drivers\e1g60i32.sys"
+ "eeCtrl" "Symantec Eraser Control Driver" "Symantec Corporation" "c:\program files\common files\symantec shared\eengine\eectrl.sys"
+ "ElRawDisk" "RawDisk Driver. Allows write access to files and raw disk sectors for user mode applications in Windows 2000, XP, 2003, Vista, 2008." "EldoS Corporation" "c:\windows\system32\drivers\rsdrv.sys"
+ "EraserUtilRebootDrv" "Symantec Eraser Utility Driver" "Symantec Corporation" "c:\program files\common files\symantec shared\eengine\eraserutilrebootdrv.sys"
+ "fsbl-standalone" "" "" "File not found: C:\Users\IANOGE~1\AppData\Local\Temp\F-Secure\BlackLight\fsbldrv.sys"
+ "FwLnk" "TOSHIBA Firmware Linkage 32-bit Driver" "TOSHIBA Corporation" "c:\windows\system32\drivers\fwlnk.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "iaStor" "Intel Matrix Storage Manager driver - ia32" "Intel Corporation" "c:\windows\system32\drivers\iastor.sys"
+ "IDSVix86" "Symantec Intrusion Prevention Driver" "Symantec Corporation" "c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\n360_5.0.2.1\definitions\ipsdefs\20120809.001\idsvix86.sys"
+ "igfx" "Intel Graphics Kernel Mode Driver" "Intel Corporation" "c:\windows\system32\drivers\igdkmd32.sys"
+ "IntcAzAudAddService" "Realtek® High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkvhda.sys"
+ "IpInIp" "IP in IP Tunnel Driver" "" "File not found: system32\DRIVERS\ipinip.sys"
+ "lsbppg" "" "" "File not found: System32\drivers\dlil.sys"
+ "NAVENG" "AV Engine" "Symantec Corporation" "c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\n360_5.0.2.1\definitions\virusdefs\20120810.001\naveng.sys"
+ "NAVEX15" "AV Engine" "Symantec Corporation" "c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\n360_5.0.2.1\definitions\virusdefs\20120810.001\navex15.sys"
+ "NETw5v32" "Intel® Wireless WiFi Link Driver" "Intel Corporation" "c:\windows\system32\drivers\netw5v32.sys"
+ "NwlnkFlt" "IPX Traffic Filter Driver" "" "File not found: system32\DRIVERS\nwlnkflt.sys"
+ "NwlnkFwd" "IPX Traffic Forwarder Driver" "" "File not found: system32\DRIVERS\nwlnkfwd.sys"
+ "PGEffect" "TOSHIBA Universal Camera Filter Driver" "TOSHIBA Corporation" "c:\windows\system32\drivers\pgeffect.sys"
+ "PxHelp20" "Px Engine Device Driver for Windows 2000/XP" "Sonic Solutions" "c:\windows\system32\drivers\pxhelp20.sys"
+ "QCDonner" "Video Minidriver" "Logitech Inc." "c:\windows\system32\drivers\lvcd.sys"
+ "rkhdrv40" "R00tkit Unh00ker Driver" "" "c:\windows\system32\drivers\rkhdrv40.sys"
+ "RTL8169" "Realtek 8136/8168/8169 NDIS6 32-bit Driver " "Realtek " "c:\windows\system32\drivers\rtlh86.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "SRTSP" "Symantec AutoProtect" "Symantec Corporation" "c:\windows\system32\drivers\n360\0502020.003\srtsp.sys"
+ "SRTSPX" "Symantec AutoProtect" "Symantec Corporation" "c:\windows\system32\drivers\n360\0502020.003\srtspx.sys"
+ "SymDS" "Symantec Data Store" "Symantec Corporation" "c:\windows\system32\drivers\n360\0502020.003\symds.sys"
+ "SymEFA" "Symantec Extended File Attributes" "Symantec Corporation" "c:\windows\system32\drivers\n360\0502020.003\symefa.sys"
+ "SymEvent" "Symantec Event Library" "Symantec Corporation" "c:\windows\system32\drivers\symevent.sys"
+ "SymIRON" "Iron Driver" "Symantec Corporation" "c:\windows\system32\drivers\n360\0502020.003\ironx86.sys"
+ "SYMTDIv" "Network Dispatch Driver" "Symantec Corporation" "c:\windows\system32\drivers\n360\0502020.003\symtdiv.sys"
+ "SynTP" "Synaptics Touchpad Driver" "Synaptics Incorporated" "c:\windows\system32\drivers\syntp.sys"
+ "tdcmdpst" "TOSHIBA ODD Writing Driver for x86." "TOSHIBA Corporation." "c:\windows\system32\drivers\tdcmdpst.sys"
+ "tos_sps32" "tos_sps2" "TOSHIBA Corporation" "c:\windows\system32\drivers\tos_sps32.sys"
+ "TVALZ" "TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver" "TOSHIBA Corporation" "c:\windows\system32\drivers\tvalz_o.sys"
+ "TVALZFL" "TOSHIBA TVALZ Filter Driver" "TOSHIBA Corporation" "c:\windows\system32\drivers\tvalzfl.sys"
+ "USBAAPL" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.dvacm" "Ulead DV Audio ACM Driver" "Ulead Systems, Inc." "c:\program files\common files\ulead systems\vio\dvacm.acm"
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
+ "msacm.mpegacm" "Ulead MPEG1 Layer2 Audio ACM Driver" "Ulead Systems, Inc." "c:\program files\common files\ulead systems\mpeg\mpegacm.acm"
+ "msacm.ulmp3acm" "Ulead MP3 codec engine" "Ulead systems" "c:\program files\common files\ulead systems\mpeg\ulmp3acm.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\system32\iccvid.dll"
+ "VIDC.I420" "Video Codec" "Logitech Inc." "c:\windows\system32\lvcodec2.dll"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "9x8Resize" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "AC3Filter" "ac3filter" "" "c:\users\ian ogelby\formatfactory\ffmodules\filters\ac3filter.ax"
+ "Allocator Fix" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Bitmap" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Capture ASF Writer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Dib Output" "" "Ulead Systems, Inc." "c:\program files\common files\ulead systems\filters\diboutput.ax"
+ "Dib Receive" "" "Ulead Systems, Inc." "c:\program files\common files\ulead systems\filters\dibreceive.ax"
+ "DirectVobSub" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "Gabest" "c:\users\ian ogelby\formatfactory\ffmodules\avisynthplugins\vsfilter.dll"
+ "DirectVobSub (auto-loading version)" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "Gabest" "c:\users\ian ogelby\formatfactory\ffmodules\avisynthplugins\vsfilter.dll"
+ "DV ACM V/A Source Filter" "" "Ulead Systems, Inc." "c:\program files\common files\ulead systems\filters\dvsf.ax"
+ "DV V/A Source Filter" "" "Ulead Systems, Inc." "c:\program files\common files\ulead systems\filters\dvsf.ax"
+ "DV Video Source Filter" "" "Ulead Systems, Inc." "c:\program files\common files\ulead systems\filters\dvsf.ax"
+ "ffdshow Audio Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\users\ian ogelby\formatfactory\ffmodules\filters\ffdshow\ffdshow.ax"
+ "ffdshow Audio Processor" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\users\ian ogelby\formatfactory\ffmodules\filters\ffdshow\ffdshow.ax"
+ "ffdshow DXVA Video Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\users\ian ogelby\formatfactory\ffmodules\filters\ffdshow\ffdshow.ax"
+ "ffdshow raw video filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\users\ian ogelby\formatfactory\ffmodules\filters\ffdshow\ffdshow.ax"
+ "ffdshow subtitles filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\users\ian ogelby\formatfactory\ffmodules\filters\ffdshow\ffdshow.ax"
+ "ffdshow Video Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\users\ian ogelby\formatfactory\ffmodules\filters\ffdshow\ffdshow.ax"
+ "Frame Eater" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Haali Matroska Muxer" "Haali Media Splitter" "" "c:\users\ian ogelby\formatfactory\ffmodules\filters\haali\splitter.ax"
+ "Haali Media Splitter" "Haali Media Splitter" "" "c:\users\ian ogelby\formatfactory\ffmodules\filters\haali\splitter.ax"
+ "Haali Media Splitter (AR)" "Haali Media Splitter" "" "c:\users\ian ogelby\formatfactory\ffmodules\filters\haali\splitter.ax"
+ "Haali Simple Media Splitter" "Haali Media Splitter" "" "c:\users\ian ogelby\formatfactory\ffmodules\filters\haali\splitter.ax"
+ "Haali Video Renderer" "" "" "c:\users\ian ogelby\formatfactory\ffmodules\filters\haali\dxr.dll"
+ "Haali Video Sink" "Haali Media Splitter" "" "c:\users\ian ogelby\formatfactory\ffmodules\filters\haali\splitter.ax"
+ "Image Effects" "TimeStam Dynamic Link Library" "" "c:\program files\toshiba\toshiba web camera application\pgtimefilter.dll"
+ "Logitech Video/Audio Tee" "Video/Audio Tee Filter" "Logitech Inc." "c:\windows\system32\vatee.ax"
+ "Logitech Virtual Camera Filter" "vsf source filter" "Logitech Inc." "c:\windows\twain_32\quickcam\vsf.ax"
+ "MPC - Avi Source" "Avi Splitter" "Gabest" "c:\users\ian ogelby\formatfactory\ffmodules\filters\avisplitter.ax"
+ "MPC - Avi Splitter" "Avi Splitter" "Gabest" "c:\users\ian ogelby\formatfactory\ffmodules\filters\avisplitter.ax"
+ "MPC - FLV Source (Gabest)" "FLV Splitter" "MPC-HC Team" "c:\users\ian ogelby\formatfactory\ffmodules\filters\flvsplitter.ax"
+ "MPC - FLV Splitter (Gabest)" "FLV Splitter" "MPC-HC Team" "c:\users\ian ogelby\formatfactory\ffmodules\filters\flvsplitter.ax"
+ "MPC - Matroska Source" "Matroska Splitter" "MPC-HC Team" "c:\users\ian ogelby\formatfactory\ffmodules\filters\matroskasplitter.ax"
+ "MPC - Matroska Splitter" "Matroska Splitter" "MPC-HC Team" "c:\users\ian ogelby\formatfactory\ffmodules\filters\matroskasplitter.ax"
+ "MPC - MP4 Source" "MP4 Splitter" "MPC-HC Team" "c:\users\ian ogelby\formatfactory\ffmodules\filters\mp4splitter.ax"
+ "MPC - MP4 Splitter" "MP4 Splitter" "MPC-HC Team" "c:\users\ian ogelby\formatfactory\ffmodules\filters\mp4splitter.ax"
+ "MPC - Mpeg Source (Gabest)" "Mpeg Splitter" "MPC-HC Team" "c:\users\ian ogelby\formatfactory\ffmodules\filters\mpegsplitter.ax"
+ "MPC - Mpeg Splitter (Gabest)" "Mpeg Splitter" "MPC-HC Team" "c:\users\ian ogelby\formatfactory\ffmodules\filters\mpegsplitter.ax"
+ "MPC - MPEG4 Video Source" "MP4 Splitter" "MPC-HC Team" "c:\users\ian ogelby\formatfactory\ffmodules\filters\mp4splitter.ax"
+ "MPC - MPEG4 Video Splitter" "MP4 Splitter" "MPC-HC Team" "c:\users\ian ogelby\formatfactory\ffmodules\filters\mp4splitter.ax"
+ "MPC - Video decoder" "H.264/VC-1 DXVA video decoder" "MPC HomeCinema" "c:\users\ian ogelby\formatfactory\ffmodules\filters\mpcvideodec.ax"
+ "Multiple File Output" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Proxy Sink" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Proxy Source" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "RealAudio Decoder" "RealMedia Splitter" "Gabest" "c:\users\ian ogelby\formatfactory\ffmodules\filters\realmediasplitter.ax"
+ "RealMedia Source" "RealMedia Splitter" "Gabest" "c:\users\ian ogelby\formatfactory\ffmodules\filters\realmediasplitter.ax"
+ "RealMedia Splitter" "RealMedia Splitter" "Gabest" "c:\users\ian ogelby\formatfactory\ffmodules\filters\realmediasplitter.ax"
+ "RealVideo Decoder" "RealMedia Splitter" "Gabest" "c:\users\ian ogelby\formatfactory\ffmodules\filters\realmediasplitter.ax"
+ "Record Queue" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "SFVCaptureFilter" "SmartFaceVCapt" "TOSHIBA Corporation" "c:\program files\toshiba\smartfacev\smartfacevcapt.dll"
+ "ShotDetect" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Stetch" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "TOSHIBA Audio Back Switcher" "" "" "c:\program files\toshiba\toshiba dvd player\tosaudiobackswitcher.ax"
+ "TOSHIBA Audio Decoder DVD" "TOSHIBA Audio Decoder DVD" "TOSHIBA Corporation" "c:\program files\toshiba\toshiba dvd player\tosauddecl.ax"
+ "TOSHIBA Audio Front Switcher" "" "" "c:\program files\toshiba\toshiba dvd player\tosaudiofrontswitcher.ax"
+ "TOSHIBA Audio Rate Converter" "TOSHIBA Audio Rate Converter" "TOSHIBA Corporation" "c:\program files\toshiba\toshiba dvd player\tosarc.ax"
+ "TOSHIBA DualMono" "TOSHIBA DualMono" "TOSHIBA Corporation" "c:\program files\toshiba\toshiba dvd player\tosdualmono.ax"
+ "TOSHIBA DVD Navigator" "TOSHIBA DVD Navigator" "TOSHIBA Corporation" "c:\program files\toshiba\toshiba dvd player\tdvdnavi.ax"
+ "TOSHIBA DVD VR Navigator" "TOSHIBA DVD Player" "TOSHIBA Corporation" "c:\program files\toshiba\toshiba dvd player\tvrnavi.ax"
+ "TOSHIBA Progress Monitor" "TOSHIBA Progress Monitor" "TOSHIBA Corporation" "c:\program files\toshiba\toshiba disc creator\tprogmon.ax"
+ "TOSHIBA WAV Converter" "TOSHIBA Wav Converter" "TOSHIBA Corporation" "c:\program files\toshiba\toshiba disc creator\twavconv.ax"
+ "Ulead AMR Audio Decoder" "MP4 AMR Audio Decoder Filter" "Ulead Systems, Inc." "c:\program files\common files\ulead systems\mpeg\uladamr.ax"
+ "Ulead Audio Dual Channel Filter" "Ulead Audio Dual Channel Filter" "Ulead Systems, Inc." "c:\program files\common files\ulead systems\mpeg\uaudiodcfilter.ax"
+ "Ulead DV Scene Detect" "ulDvScDt" "Ulead system Inc." "c:\program files\common files\ulead systems\capture\uldvscdt.ax"
+ "Ulead DV SubTitle Filter" "DV SubTitle Filter" "Microsoft Corporation" "c:\program files\common files\ulead systems\mpeg\dvtranssubtitle.ax"
+ "Ulead DV Writer" "ulDVWriter" "Corel" "c:\program files\common files\ulead systems\capture\uldvrite.ax"
+ "Ulead DVB Parser" "Ulead DVB Parser Filter" "Ulead Systems, Inc." "c:\program files\common files\ulead systems\mpeg\uldvbparser.ax"
+ "Ulead DVD Audio Decoder 2" "Audio Decoder" "Ulead Systems, Inc." "c:\program files\common files\ulead systems\mpeg\uldvdaudio.ax"
+ "Ulead DVD Navigator" "DVD Navigator filter" "Ulead Systems, Inc." "c:\program files\common files\ulead systems\dvd\uleaddvdnavigator.ax"
+ "Ulead DVD Parser" "ulDVDParser" "Ulead Systems, Inc." "c:\program files\common files\ulead systems\mpeg\uldvdparser.ax"
+ "Ulead DVD Video decoder 2" "DVD Video Decoder with DxVA Support" "Ulead Systems, Inc." "c:\program files\common files\ulead systems\mpeg\uldvdvideo.ax"
+ "ULead File Source (Async.)" "Ulead Async Filter" "Ulead Systems" "c:\program files\common files\ulead systems\mpeg\ulasync.ax"
+ "ULead File Writer" "File Dump Filter" "ULead Systems" "c:\program files\common files\ulead systems\mpeg\uldump.ax"
+ "Ulead H264 Decoder" "uldsh264" "uleadivi" "c:\program files\common files\ulead systems\mpeg\uldsh264.ax"
+ "ULead Infinite Pin Tee" "Ulead Infinite Tee Filter" "Ulead Systems, Inc." "c:\program files\common files\ulead systems\mpeg\uinftee.ax"
+ "Ulead MPEG Audio Decoder" "Audio Decoder" "Ulead Systems, Inc." "c:\program files\common files\ulead systems\mpeg\uldvdaudio.ax"
+ "Ulead MPEG Encoder" "MPEG Encoder and Muxer" "ULead Systems" "c:\program files\common files\ulead systems\mpeg\ulesmpeg.ax"
+ "Ulead MPEG Muxer" "MPEG Muxer" "ULead Systems" "c:\program files\common files\ulead systems\mpeg\ulmxmpeg.ax"
+ "Ulead MPEG Splitter" "ULead Mpeg I/II Splitter" "ULead Systems" "c:\program files\common files\ulead systems\mpeg\ulspmpeg.ax"
+ "Ulead MPEG Transcoder" "ulMPGTrans" "Ulead com" "c:\program files\common files\ulead systems\mpeg\ulmpgtrans.ax"
+ "Ulead MPEG Video Decoder" "MPEG Video and Audio Decoder" "ULead Systems" "c:\program files\common files\ulead systems\mpeg\uldsmpeg.ax"
+ "Ulead MPEG-4 ASP Video Decoder" "MP4 ASP Video Decoder Filter" "Ulead Systems, Inc." "c:\program files\common files\ulead systems\mpeg\ulaspvdmp4.ax"
+ "Ulead MPEG-4 Encoder" "MP4 Encoder Filter" "Ulead Systems, Inc." "c:\program files\common files\ulead systems\mpeg\ulmp4enc.ax"
+ "Ulead MPEG-4 Splitter" "MP4 Splitter Filter" "Ulead Systems, Inc." "c:\program files\common files\ulead systems\mpeg\ulspmp4.ax"
+ "Ulead MPEG-4 Video Decoder" "MP4 Video Decoder Filter" "Ulead Systems, Inc." "c:\program files\common files\ulead systems\mpeg\ulvdmp4.ax"
+ "Ulead Ogg Parser" "ulOggParserFilter" "Ulead Systems, Inc." "c:\program files\common files\ulead systems\mpeg\uloggparserfilter.ax"
+ "Ulead OggVorbis Decoder" "ulOggVorbisDecoderFilter" "Ulead Systems, Inc." "c:\program files\common files\ulead systems\mpeg\uloggvorbisdecoderfilter.ax"
+ "Ulead OggVorbis Encoder" "ulOggVorbisEncoderFilter" "Ulead Systems, Inc." "c:\program files\common files\ulead systems\mpeg\uloggvorbisencoderfilter.ax"
+ "Ulead Push Source Filter" "Ulead Push Source Filter" "Ulead Systems, Inc." "c:\program files\common files\ulead systems\mpeg\ulpushsource.ax"
+ "Ulead Sub-Picture Push Source Filter" "Ulead Sub-Picture Push Source Filter" "Ulead Systems, Inc." "c:\program files\common files\ulead systems\mpeg\ulsubpicpushsource.ax"
+ "Ulead Video Deinterlace Filter" "" "Ulead Systems, Inc." "c:\program files\common files\ulead systems\filters\deinterlace.ax"
+ "WM VIH2 Fix" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Audio Analyzer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Black Frame Generator" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT DV Extract Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT FormatConversion" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Import Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Interlacer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Log Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT MuxDeMux Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Sample Info Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Switch Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Renderer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Source" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Volume" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" ""
+ "{B65F237C-AAFF-4df7-8872-91B65663E41F}" "SmartFaceVCP" "TOSHIBA Corporation" "c:\program files\toshiba\smartfacev\smartfacevcp.dll"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify" "" "" ""
+ "!SASWinLogon" "" "" "File not found: C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL"
+ "igfxcui" "igfxdev Module" "Intel Corporation" "c:\windows\system32\igfxdev.dll"
"HKCU\Control Panel\Desktop\Scrnsave.exe" "" "" ""
+ "C:\Windows\system32\BONESS~1.SCR" "ScreenTime Screensaver Engine" "ScreenTime Media" "c:\windows\system32\bones screensaver.scr"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "Canon BJ Language Monitor MP610 series" "IJ Language Monitor" "CANON INC." "c:\windows\system32\cnmlm93.dll"
"C:\Users\Ian Ogelby\AppData\Local\Microsoft\Windows Sidebar\Settings.ini" "" "" ""
+ "Clock" "Watch the clock in your own time zone or any city in the world." "Microsoft Corporation" "C:\Program Files\windows sidebar\gadgets\Clock.gadget\en-US\Gadget.xml"
+ "Feed Headlines" "Track the latest news, sports, and entertainment headlines." "Microsoft Corporation" "C:\Program Files\windows sidebar\gadgets\RSSFeeds.Gadget\en-US\Gadget.xml"
+ "Norton 360" "Protect your computer against digital dangers." "Symantec Corporation" "C:\Program Files\Windows Sidebar\Gadgets\Norton.Gadget\en-US\Gadget.xml"
+ "Slide Show" "Show a continuous slide show of your pictures." "Microsoft Corporation" "C:\Program Files\windows sidebar\gadgets\SlideShow.Gadget\en-US\Gadget.xml"

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:46 PM

Posted 10 August 2012 - 04:54 PM

Uninstall firefox

Makesure to checkmark Remove my personal data option

Reinstall it and let me know if it still redirects




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users