Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Latest News:    Google warns uBlock Origin and other extensions may be disabled soon

Featured Deal: Train to be a certified ethical hacker with this $50 course bundle deal

Latest Buyer's Guide:    PureVPN review: How good is it in 2024?

Generic User Avatar

Ads keep popping up bottom right corner

Started by JauneSinge , Aug 30 2012 08:03 PM

  • Please log in to reply
7 replies to this topic

#1 JauneSinge

JauneSinge

  • Avatar image
  • Members
  • 5 posts
  • OFFLINE
    •  
  • Local time:09:04 PM

Posted 30 August 2012 - 08:03 PM

Hello.

It started two days ago this problem of mine. I keep receiving pop ups on my browsers in the bottom right corner of my screen and I'm convinced it's a virus or something since I have
some ad protection and the ads are always about the current page I'm on.

I've downloaded about three different virus scanner and I still have the problem.

Some help would be fantastic, thanks in advance.

Chris

BC AdBot (Login to Remove)

 

#2 boopme

boopme

    To Insanity and Beyond


  • Avatar image
  • Helper Emeritus
  • 85,296 posts
  • OFFLINE
    •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:04 PM

Posted 30 August 2012 - 08:16 PM

Hello and welcome,as I don't know what you have or ran I will suggest we do these.

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed


Next run MBAM (MalwareBytes):

Please download Malwarebytes Anti-Malware Posted Image and save it to your desktop.
  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.
Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you cannot update Malwarebytes or use the Internet to download any files to the infected computer, manually update the database by following the instructions in FAQ Section A: 4. Issues.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.
Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.

-- Some types of malware will target Malwarebytes and other security tools to keep them from running properly. If that's the case, go to Start > All Programs > Malwarebytes Anti-Malware folder > Tools > click on Malwarebytes Chameleon and follow the onscreen instructions. The Chameleon folder can be accessed by opening the program folder for Malwarebytes Anti-Malware (normally C:\Program Files\Malwarebytes' Anti-Malware or C:\Program Files (x86)\Malwarebytes' Anti-Malware).

>>>>

Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click on Change Parameters
  • Put a check in the box of Detect TDLFS file system
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log has a name like: TDSSKiller.Version_Date_Time_log.txt.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 JauneSinge

JauneSinge
  • Topic Starter

  • Avatar image
  • Members
  • 5 posts
  • OFFLINE
    •  
  • Local time:09:04 PM

Posted 30 August 2012 - 08:53 PM

Here's the results of Minitoolbox :
MiniToolBox by Farbar Version: 23-07-2012
Ran by JauneSinge (administrator) on 30-08-2012 at 21:30:22
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost








































































































































































































64.27.10.42 www.google-analytics.com.
64.27.10.42 ad-emea.doubleclick.net.
64.27.10.42 www.statcounter.com.
108.163.215.51 www.google-analytics.com.
108.163.215.51 ad-emea.doubleclick.net.
108.163.215.51 www.statcounter.com.

127.0.0.1 localhost

========================= IP Configuration: ================================

Realtek RTL8168C/8111C Family PCI-E Gigabit Ethernet NIC (NDIS 6.0) = Local Area Connection (Connected)
Hamachi Network Interface = Hamachi (Connected)
Foxconn 802.11 a/b/g/n Wireless System Adaptor = Wireless Network Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add route prefix=169.254.0.0/16 interface="iftype0_0" nexthop=5.254.159.45 metric=1
add route prefix=169.254.0.0/16 interface="iftype0_0" nexthop=192.168.2.12 metric=1
add route prefix=0.0.0.0/0 interface="Hamachi" nexthop=5.0.0.1
set interface interface="Hamachi" forwarding=disabled advertise=disabled metric=9000 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : JauneSinge-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : home

Wireless LAN adapter Wireless Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Foxconn 802.11 a/b/g/n Wireless System Adaptor
Physical Address. . . . . . . . . : 00-1E-4C-34-BF-A6
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Realtek RTL8168C/8111C Family PCI-E Gigabit Ethernet NIC (NDIS 6.0)
Physical Address. . . . . . . . . : 00-1E-8C-41-13-52
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::c11:5b16:bc9d:515f%8(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.2.12(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : August-29-12 11:11:05 PM
Lease Expires . . . . . . . . . . : September-01-12 11:11:01 PM
Default Gateway . . . . . . . . . : 192.168.2.1
DHCP Server . . . . . . . . . . . : 192.168.2.1
DHCPv6 IAID . . . . . . . . . . . : 201334412
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-10-62-23-22-00-1E-8C-41-13-52
DNS Servers . . . . . . . . . . . : 192.168.2.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Hamachi:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Hamachi Network Interface
Physical Address. . . . . . . . . : 7A-79-05-FE-9F-2D
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2620:9b::5fe:9f2d(Preferred)
Link-local IPv6 Address . . . . . : fe80::4d7f:cf50:305:8112%11(Preferred)
IPv4 Address. . . . . . . . . . . : 5.254.159.45(Preferred)
Subnet Mask . . . . . . . . . . . : 255.0.0.0
Lease Obtained. . . . . . . . . . : August-29-12 11:11:05 PM
Lease Expires . . . . . . . . . . : August-29-13 11:13:08 PM
Default Gateway . . . . . . . . . : 5.0.0.1
DHCP Server . . . . . . . . . . . : 5.0.0.1
DHCPv6 IAID . . . . . . . . . . . : 310016356
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-10-62-23-22-00-1E-8C-41-13-52
DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
fec0:0:0:ffff::2%1
fec0:0:0:ffff::3%1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : isatap.home
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 13:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{4AC0CB29-54EA-4212-A18B-C8601F45344D}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 14:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{33D5B706-A68C-4F92-8A24-E6CC3023D934}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: monreseau.home
Address: 192.168.2.1

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
Name: google.com
Addresses: 2001:4860:4008:802::1004
74.125.226.14
74.125.226.4
74.125.226.1
74.125.226.8
74.125.226.7
74.125.226.9
74.125.226.2
74.125.226.6
74.125.226.5
74.125.226.0
74.125.226.3



Pinging google.com [74.125.226.3] with 32 bytes of data:

Reply from 74.125.226.3: bytes=32 time=25ms TTL=54

Reply from 74.125.226.3: bytes=32 time=23ms TTL=54



Ping statistics for 74.125.226.3:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 23ms, Maximum = 25ms, Average = 24ms

Server: monreseau.home
Address: 192.168.2.1

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
Name: yahoo.com
Addresses: 98.138.253.109
98.139.183.24
72.30.38.140



Pinging yahoo.com [72.30.38.140] with 32 bytes of data:

Reply from 72.30.38.140: bytes=32 time=226ms TTL=50

Reply from 72.30.38.140: bytes=32 time=514ms TTL=50



Ping statistics for 72.30.38.140:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 226ms, Maximum = 514ms, Average = 370ms

Server: monreseau.home
Address: 192.168.2.1

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time=4ms TTL=128

Reply from 127.0.0.1: bytes=32 time=4ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 4ms, Maximum = 4ms, Average = 4ms

===========================================================================
Interface List
9 ...00 1e 4c 34 bf a6 ...... Foxconn 802.11 a/b/g/n Wireless System Adaptor
8 ...00 1e 8c 41 13 52 ...... Realtek RTL8168C/8111C Family PCI-E Gigabit Ethernet NIC (NDIS 6.0)
11 ...7a 79 05 fe 9f 2d ...... Hamachi Network Interface
1 ........................... Software Loopback Interface 1
16 ...00 00 00 00 00 00 00 e0 isatap.home
10 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
14 ...00 00 00 00 00 00 00 e0 isatap.{4AC0CB29-54EA-4212-A18B-C8601F45344D}
15 ...00 00 00 00 00 00 00 e0 isatap.{33D5B706-A68C-4F92-8A24-E6CC3023D934}
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 5.0.0.1 5.254.159.45 9256
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.12 10
5.0.0.0 255.0.0.0 On-link 5.254.159.45 9256
5.254.159.45 255.255.255.255 On-link 5.254.159.45 9256
5.255.255.255 255.255.255.255 On-link 5.254.159.45 9256
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
169.254.0.0 255.255.0.0 On-link 5.254.159.45 9001
169.254.0.0 255.255.0.0 On-link 192.168.2.12 11
169.254.255.255 255.255.255.255 On-link 5.254.159.45 9256
169.254.255.255 255.255.255.255 On-link 192.168.2.12 266
192.168.2.0 255.255.255.0 On-link 192.168.2.12 266
192.168.2.12 255.255.255.255 On-link 192.168.2.12 266
192.168.2.255 255.255.255.255 On-link 192.168.2.12 266
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 5.254.159.45 9256
224.0.0.0 240.0.0.0 On-link 192.168.2.12 266
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 5.254.159.45 9256
255.255.255.255 255.255.255.255 On-link 192.168.2.12 266
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
169.254.0.0 255.255.0.0 5.254.159.45 1
169.254.0.0 255.255.0.0 192.168.2.12 1
0.0.0.0 0.0.0.0 5.0.0.1 Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 276 2620:9b::/96 On-link
11 276 2620:9b::5fe:9f2d/128 On-link
11 276 fe80::/64 On-link
8 266 fe80::/64 On-link
8 266 fe80::c11:5b16:bc9d:515f/128
On-link
11 276 fe80::4d7f:cf50:305:8112/128
On-link
1 306 ff00::/8 On-link
11 276 ff00::/8 On-link
8 266 ff00::/8 On-link
===========================================================================
Persistent Routes:
If Metric Network Destination Gateway
0 4294967295 2620:9b::/96 On-link
===========================================================================
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [19968] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [61440] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [62976] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [78848] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [78848] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [27648] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/30/2012 01:56:50 PM) (Source: Application Error) (User: )
Description: Faulting application SUPERAntiSpyware.exe, version 0.0.0.0, time stamp 0x4ffb6b81, faulting module ntdll.dll, version 6.0.6002.18541, time stamp 0x4ec3e855, exception code 0xc0000005, fault offset 0x000000000002574a,
process id 0x9a0, application start time 0xSUPERAntiSpyware.exe0.

Error: (08/29/2012 01:56:20 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\JAUNESINGE\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\9S412QBO.DEFAULT\CACHE\A> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (08/29/2012 01:56:20 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\JAUNESINGE\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\9S412QBO.DEFAULT\CACHE\A> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (08/29/2012 01:56:20 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\JAUNESINGE\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\9S412QBO.DEFAULT\CACHE\9> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (08/29/2012 01:56:20 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\JAUNESINGE\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\9S412QBO.DEFAULT\CACHE\9> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (08/29/2012 01:56:20 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\JAUNESINGE\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\9S412QBO.DEFAULT\CACHE\8> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (08/29/2012 01:56:20 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\JAUNESINGE\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\9S412QBO.DEFAULT\CACHE\8> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (08/29/2012 01:56:19 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\JAUNESINGE\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\9S412QBO.DEFAULT\CACHE\7> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (08/29/2012 01:56:19 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\JAUNESINGE\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\9S412QBO.DEFAULT\CACHE\7> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (08/29/2012 01:56:19 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\JAUNESINGE\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\9S412QBO.DEFAULT\CACHE\6> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)


System errors:
=============
Error: (08/29/2012 11:11:40 PM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer KT1
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{33D5B706-A68C-4F92-8A24-E6CC3023D934}.
The master browser is stopping or an election is being forced.

Error: (08/29/2012 04:39:07 PM) (Source: netbt) (User: )
Description: The name "WORKGROUP :1d" could not be registered on the interface with IP address 5.254.159.45.
The computer with the IP address 5.52.204.207 did not allow the name to be claimed by
this computer.

Error: (08/27/2012 00:01:17 AM) (Source: bowser) (User: )
Description: The master browser has received a server announcement from the computer PC-DE-LUC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{33D5B706-A68C-4F92-8A24-E6CC3023D934}.
The master browser is stopping or an election is being forced.

Error: (08/16/2012 02:17:30 PM) (Source: Service Control Manager) (User: )
Description: Steam Client Service%%1053

Error: (08/16/2012 02:17:30 PM) (Source: Service Control Manager) (User: )
Description: 30000Steam Client Service

Error: (08/15/2012 04:36:18 AM) (Source: Dhcp) (User: )
Description: The IP address lease 0.0.0.0 for the Network Card with network address 001E8C411352 has been denied by the DHCP server 0.0.0.0 (The DHCP Server sent a DHCPNACK message).

Error: (08/15/2012 04:34:24 AM) (Source: Dhcp) (User: )
Description: Your computer was not assigned an address from the network (by the DHCP Server) for the Network Card with network address 001E8C411352. The following error occurred:
%%1223. Your computer will continue to try and obtain an address on its own from the network address (DHCP) server.

Error: (08/12/2012 08:22:23 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 8:18:36 AM on 12/08/2012 was unexpected.

Error: (08/10/2012 06:13:15 PM) (Source: DCOM) (User: )
Description: 1083LiveUpdate{03E0E6C2-363B-11D3-B536-00902771A435}

Error: (08/05/2012 06:12:34 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 6:09:23 PM on 05/08/2012 was unexpected.


Microsoft Office Sessions:
=========================
Error: (08/30/2012 01:56:50 PM) (Source: Application Error)(User: )
Description: SUPERAntiSpyware.exe0.0.0.04ffb6b81ntdll.dll6.0.6002.185414ec3e855c0000005000000000002574a9a001cd865d1a403230

Error: (08/29/2012 01:56:20 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)
C:\USERS\JAUNESINGE\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\9S412QBO.DEFAULT\CACHE\A

Error: (08/29/2012 01:56:20 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)
C:\USERS\JAUNESINGE\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\9S412QBO.DEFAULT\CACHE\A

Error: (08/29/2012 01:56:20 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)
C:\USERS\JAUNESINGE\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\9S412QBO.DEFAULT\CACHE\9

Error: (08/29/2012 01:56:20 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)
C:\USERS\JAUNESINGE\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\9S412QBO.DEFAULT\CACHE\9

Error: (08/29/2012 01:56:20 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)
C:\USERS\JAUNESINGE\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\9S412QBO.DEFAULT\CACHE\8

Error: (08/29/2012 01:56:20 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)
C:\USERS\JAUNESINGE\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\9S412QBO.DEFAULT\CACHE\8

Error: (08/29/2012 01:56:19 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)
C:\USERS\JAUNESINGE\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\9S412QBO.DEFAULT\CACHE\7

Error: (08/29/2012 01:56:19 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)
C:\USERS\JAUNESINGE\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\9S412QBO.DEFAULT\CACHE\7

Error: (08/29/2012 01:56:19 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)
C:\USERS\JAUNESINGE\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\9S412QBO.DEFAULT\CACHE\6


=========================== Installed Programs ============================

Canon MX430 series MP Drivers
Google Chrome (Version: 21.0.1180.83)
HP On-Screen Cap/Num/Scroll Lock Indicator
HP Photosmart Essential 2.5 (Version: 2.5)
Intel® Matrix Storage Manager
Java™ 7 Update 4 (64-bit) (Version: 7.0.40)
Magic The Gathering Online (Version: 3.4.67.229)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Windows Application Compatibility Database
NVIDIA 3D Vision Controller Driver 296.10 (Version: 296.10)
NVIDIA 3D Vision Driver 296.10 (Version: 296.10)
NVIDIA Control Panel 296.10 (Version: 296.10)
NVIDIA Graphics Driver 296.10 (Version: 296.10)
NVIDIA Install Application (Version: 2.1002.62.312)
NVIDIA PhysX System Software 9.12.0213 (Version: 9.12.0213)
NVIDIA Update 1.7.11 (Version: 1.7.11)
NVIDIA Update Components (Version: 1.7.11)
Soft Data Fax Modem with SmartCP (Version: 7.74.00)
SPBBC 64bit (Version: 107.0.0.134)
Unity Web Player (Version: )
WeatherBug Gadget (Version: 1.0.0.6)
WinRAR 4.11 (64-bit) (Version: 4.11.0)

========================= Memory info: ===================================

Percentage of memory in use: 46%
Total physical RAM: 4094.39 MB
Available physical RAM: 2174.52 MB
Total Pagefile: 8402.07 MB
Available Pagefile: 5927.98 MB
Total Virtual: 4095.88 MB
Available Virtual: 3995.66 MB

========================= Partitions: =====================================

1 Drive c: (HP) (Fixed) (Total:455.21 GB) (Free:205.7 GB) NTFS
2 Drive d: (FACTORY_IMAGE) (Fixed) (Total:10.55 GB) (Free:1.42 GB) NTFS

========================= Users: ========================================

User accounts for \\JAUNESINGE-PC

Administrator Guest JauneSinge
UpdatusUser


**** End of log ****

#4 JauneSinge

JauneSinge
  • Topic Starter

  • Avatar image
  • Members
  • 5 posts
  • OFFLINE
    •  
  • Local time:09:04 PM

Posted 30 August 2012 - 08:55 PM

Now Malwarebytes is running with "chameleon" since it did not locate any viruses while running normaly.

A note to add is that I tried to save it with another name as suggested but I could not change the name before saving it with either Firefox nor Google Chrome (the only option was to save the file).

Edited by JauneSinge, 30 August 2012 - 09:04 PM.

#5 JauneSinge

JauneSinge
  • Topic Starter

  • Avatar image
  • Members
  • 5 posts
  • OFFLINE
    •  
  • Local time:09:04 PM

Posted 30 August 2012 - 09:20 PM

Finally, the TDSSKILLER report :
Current date / time: 2012/08/30 22:17:31.0274
22:17:31.0274 4516 SystemInfo:
22:17:31.0274 4516
22:17:31.0274 4516 OS Version: 6.0.6002 ServicePack: 2.0
22:17:31.0274 4516 Product type: Workstation
22:17:31.0274 4516 ComputerName: JAUNESINGE-PC
22:17:31.0274 4516 UserName: JauneSinge
22:17:31.0274 4516 Windows directory: C:\Windows
22:17:31.0274 4516 System windows directory: C:\Windows
22:17:31.0274 4516 Running under WOW64
22:17:31.0274 4516 Processor architecture: Intel x64
22:17:31.0274 4516 Number of processors: 4
22:17:31.0274 4516 Page size: 0x1000
22:17:31.0274 4516 Boot type: Normal boot
22:17:31.0274 4516 ============================================================
22:17:31.0669 4516 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:17:31.0669 4516 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:17:31.0689 4516 ============================================================
22:17:31.0689 4516 \Device\Harddisk0\DR0:
22:17:31.0694 4516 MBR partitions:
22:17:31.0694 4516 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x38E6BFE1
22:17:31.0694 4516 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x38E6C020, BlocksNum 0x1518C21
22:17:31.0694 4516 \Device\Harddisk1\DR1:
22:17:31.0694 4516 Invalid mbr signature
22:17:31.0694 4516 ============================================================
22:17:31.0716 4516 C: <-> \Device\Harddisk0\DR0\Partition1
22:17:31.0744 4516 D: <-> \Device\Harddisk0\DR0\Partition2
22:17:31.0744 4516 ============================================================
22:17:31.0744 4516 Initialize success
22:17:31.0745 4516 ============================================================
22:17:45.0428 4124 ============================================================
22:17:45.0428 4124 Scan started
22:17:45.0428 4124 Mode: Manual; TDLFS;
22:17:45.0428 4124 ============================================================
22:17:46.0909 4124 ================ Scan system memory ========================
22:17:46.0909 4124 System memory - ok
22:17:46.0909 4124 ================ Scan services =============================
22:17:47.0065 4124 [ 1965AAFFAB07E3FB03C77F81BEBA3547 ] ACPI C:\Windows\system32\drivers\acpi.sys
22:17:47.0071 4124 ACPI - ok
22:17:47.0152 4124 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:17:47.0153 4124 AdobeFlashPlayerUpdateSvc - ok
22:17:47.0193 4124 [ 9137451D37BA1C325CD6C2DEF3D2D692 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
22:17:47.0200 4124 adp94xx - ok
22:17:47.0257 4124 [ 01F80898DF5CC7DF19B3B11351846263 ] adpahci C:\Windows\system32\drivers\adpahci.sys
22:17:47.0262 4124 adpahci - ok
22:17:47.0286 4124 [ DA001DB13FFF45DFE9109936E265B7CC ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
22:17:47.0289 4124 adpu160m - ok
22:17:47.0330 4124 [ 2B10C35C5B7C5C0C28F572E035319602 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
22:17:47.0333 4124 adpu320 - ok
22:17:47.0377 4124 [ 0F421175574BFE0BF2F4D8E910A253BB ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:17:47.0378 4124 AeLookupSvc - ok
22:17:47.0452 4124 [ C4F6CE6087760AD70960C9EB130E7943 ] AFD C:\Windows\system32\drivers\afd.sys
22:17:47.0458 4124 AFD - ok
22:17:47.0491 4124 [ 5CCDD13BC602AE33CD8B62D33C29AB72 ] agp440 C:\Windows\system32\drivers\agp440.sys
22:17:47.0492 4124 agp440 - ok
22:17:47.0512 4124 [ 222CB641B4B8A1D1126F8033F9FD6A00 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
22:17:47.0514 4124 aic78xx - ok
22:17:47.0563 4124 [ 5922F4F59B7868F3D74BBBBEB7B825A3 ] ALG C:\Windows\System32\alg.exe
22:17:47.0565 4124 ALG - ok
22:17:47.0587 4124 [ 20080762E2571D950DFC4D492F300FCF ] aliide C:\Windows\system32\drivers\aliide.sys
22:17:47.0588 4124 aliide - ok
22:17:47.0597 4124 [ 3FFCDF21FC1FEAC7C6FB1D64C82CEF9B ] amdide C:\Windows\system32\drivers\amdide.sys
22:17:47.0599 4124 amdide - ok
22:17:47.0618 4124 [ DE55DC52F7CEB89A967572D6B491ADA2 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
22:17:47.0619 4124 AmdK8 - ok
22:17:47.0692 4124 [ 9C37B3FD5615477CB9A0CD116CF43F5C ] Appinfo C:\Windows\System32\appinfo.dll
22:17:47.0694 4124 Appinfo - ok
22:17:47.0725 4124 [ 2E8623F2FED998A97129A3DB919551C8 ] arc C:\Windows\system32\drivers\arc.sys
22:17:47.0727 4124 arc - ok
22:17:47.0768 4124 [ 741A003C041A3EC480A2E71AF71E9654 ] arcsas C:\Windows\system32\drivers\arcsas.sys
22:17:47.0770 4124 arcsas - ok
22:17:47.0880 4124 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:17:47.0881 4124 aspnet_state - ok
22:17:47.0903 4124 [ 22D13FF3DAFEC2A80634752B1EAA2DE6 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:17:47.0905 4124 AsyncMac - ok
22:17:47.0923 4124 [ 43BF0E0988B1C7DBA1C767465757034E ] atapi C:\Windows\system32\drivers\atapi.sys
22:17:47.0924 4124 atapi - ok
22:17:47.0976 4124 [ 16DDAED085BA93267B57EDD6915D97CE ] athr C:\Windows\system32\DRIVERS\athrx.sys
22:17:47.0992 4124 athr - ok
22:17:48.0079 4124 [ 79318C744693EC983D20E9337A2F8196 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:17:48.0097 4124 AudioEndpointBuilder - ok
22:17:48.0120 4124 [ 79318C744693EC983D20E9337A2F8196 ] AudioSrv C:\Windows\System32\Audiosrv.dll
22:17:48.0123 4124 AudioSrv - ok
22:17:48.0197 4124 [ DE220DCEA74E13E659FF6192C3AFE49C ] Automatic LiveUpdate Scheduler c:\Program Files (x86)\Symantec\LiveUpdate\AluSchedulerSvc.exe
22:17:48.0201 4124 Automatic LiveUpdate Scheduler - ok
22:17:48.0269 4124 [ FFB96C2589FFA60473EAD78B39FBDE29 ] BFE C:\Windows\System32\bfe.dll
22:17:48.0286 4124 BFE - ok
22:17:48.0370 4124 [ 6D316F4859634071CC25C4FD4589AD2C ] BITS C:\Windows\System32\qmgr.dll
22:17:48.0420 4124 BITS - ok
22:17:48.0425 4124 blbdrive - ok
22:17:48.0485 4124 [ 2348447A80920B2493A9B582A23E81E1 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:17:48.0488 4124 bowser - ok
22:17:48.0516 4124 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
22:17:48.0518 4124 BrFiltLo - ok
22:17:48.0544 4124 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
22:17:48.0545 4124 BrFiltUp - ok
22:17:48.0586 4124 [ A1B39DE453433B115B4EA69EE0343816 ] Browser C:\Windows\System32\browser.dll
22:17:48.0588 4124 Browser - ok
22:17:48.0623 4124 [ F0F0BA4D815BE446AA6A4583CA3BCA9B ] Brserid C:\Windows\system32\drivers\brserid.sys
22:17:48.0626 4124 Brserid - ok
22:17:48.0643 4124 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
22:17:48.0645 4124 BrSerWdm - ok
22:17:48.0667 4124 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
22:17:48.0669 4124 BrUsbMdm - ok
22:17:48.0680 4124 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
22:17:48.0681 4124 BrUsbSer - ok
22:17:48.0723 4124 [ E0777B34E05F8A82A21856EFC900C29F ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
22:17:48.0725 4124 BTHMODEM - ok
22:17:48.0769 4124 [ 6C2DD66A3DB32450D661BA89B18B1941 ] CAXHWBS2 C:\Windows\system32\DRIVERS\CAXHWBS2.sys
22:17:48.0774 4124 CAXHWBS2 - ok
22:17:48.0825 4124 [ B4D787DB8D30793A4D4DF9FEED18F136 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:17:48.0827 4124 cdfs - ok
22:17:48.0849 4124 [ C025AA69BE3D0D25C7A2E746EF6F94FC ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
22:17:48.0851 4124 cdrom - ok
22:17:48.0899 4124 [ 5A268127633C7EE2A7FB87F39D748D56 ] CertPropSvc C:\Windows\System32\certprop.dll
22:17:48.0901 4124 CertPropSvc - ok
22:17:48.0946 4124 [ 02EA568D498BBDD4BA55BF3FCE34D456 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
22:17:48.0948 4124 circlass - ok
22:17:48.0992 4124 [ 3DCA9A18B204939CFB24BEA53E31EB48 ] CLFS C:\Windows\system32\CLFS.sys
22:17:48.0998 4124 CLFS - ok
22:17:49.0067 4124 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:17:49.0068 4124 clr_optimization_v2.0.50727_32 - ok
22:17:49.0090 4124 [ CE07A466201096F021CD09D631B21540 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:17:49.0093 4124 clr_optimization_v2.0.50727_64 - ok
22:17:49.0143 4124 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:17:49.0147 4124 clr_optimization_v4.0.30319_32 - ok
22:17:49.0168 4124 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:17:49.0192 4124 clr_optimization_v4.0.30319_64 - ok
22:17:49.0221 4124 [ D510EFB34C9436199675B81DBA88A6D5 ] cmdide C:\Windows\system32\drivers\cmdide.sys
22:17:49.0222 4124 cmdide - ok
22:17:49.0236 4124 [ 0E77A445640BF310817F60941C50560C ] Compbatt C:\Windows\system32\drivers\compbatt.sys
22:17:49.0237 4124 Compbatt - ok
22:17:49.0242 4124 COMSysApp - ok
22:17:49.0268 4124 [ B1192DCD5B9CF46BEED0E2A9E5BCF59A ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
22:17:49.0270 4124 crcdisk - ok
22:17:49.0318 4124 [ 62740B9D2A137E8CED41A9E4239A7A31 ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:17:49.0322 4124 CryptSvc - ok
22:17:49.0380 4124 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] DcomLaunch C:\Windows\system32\rpcss.dll
22:17:49.0405 4124 DcomLaunch - ok
22:17:49.0453 4124 [ 2B9A817DC1BDAD9CE5495099B6A7136A ] Desura Install Service C:\Program Files (x86)\Common Files\Desura\desura_service.exe
22:17:49.0456 4124 Desura Install Service - ok
22:17:49.0494 4124 [ 8B722BA35205C71E7951CDC4CDBADE19 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:17:49.0497 4124 DfsC - ok
22:17:49.0603 4124 [ C647F468F7DE343DF8C143655C5557D4 ] DFSR C:\Windows\system32\DFSR.exe
22:17:49.0680 4124 DFSR - ok
22:17:49.0703 4124 [ 3ED0321127CE70ACDAABBF77E157C2A7 ] Dhcp C:\Windows\System32\dhcpcsvc.dll
22:17:49.0708 4124 Dhcp - ok
22:17:49.0736 4124 [ B0107E40ECDB5FA692EBF832F295D905 ] disk C:\Windows\system32\drivers\disk.sys
22:17:49.0738 4124 disk - ok
22:17:49.0782 4124 [ 06230F1B721494A6DF8D47FD395BB1B0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:17:49.0785 4124 Dnscache - ok
22:17:49.0829 4124 [ 1A7156DD1E850E9914E5E991E3225B94 ] dot3svc C:\Windows\System32\dot3svc.dll
22:17:49.0834 4124 dot3svc - ok
22:17:49.0862 4124 [ 1583B39790DB3EAEC7EDB0CB0140C708 ] DPS C:\Windows\system32\dps.dll
22:17:49.0865 4124 DPS - ok
22:17:49.0897 4124 [ F1A78A98CFC2EE02144C6BEC945447E6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:17:49.0898 4124 drmkaud - ok
22:17:49.0973 4124 [ B8E554E502D5123BC111F99D6A2181B4 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:17:50.0007 4124 DXGKrnl - ok
22:17:50.0047 4124 [ D57FE09B575545738A73A0C193D0616A ] E1G60 C:\Windows\system32\DRIVERS\E1G6032E.sys
22:17:50.0050 4124 E1G60 - ok
22:17:50.0070 4124 EagleX64 - ok
22:17:50.0122 4124 [ C2303883FD9BE49DC36A6400643002EA ] EapHost C:\Windows\System32\eapsvc.dll
22:17:50.0124 4124 EapHost - ok
22:17:50.0173 4124 [ 5F94962BE5A62DB6E447FF6470C4F48A ] Ecache C:\Windows\system32\drivers\ecache.sys
22:17:50.0177 4124 Ecache - ok
22:17:50.0228 4124 [ 14CE384D2E27B64C256BDA4DC39C312D ] ehRecvr C:\Windows\ehome\ehRecvr.exe
22:17:50.0234 4124 ehRecvr - ok
22:17:50.0278 4124 [ B93159C1313D66FDFBBE876F5189CD52 ] ehSched C:\Windows\ehome\ehsched.exe
22:17:50.0282 4124 ehSched - ok
22:17:50.0308 4124 [ F5EE2527D74449868E3C3227A59BCD28 ] ehstart C:\Windows\ehome\ehstart.dll
22:17:50.0308 4124 ehstart - ok
22:17:50.0344 4124 [ 3D6298AFF3FE06C0616CE5D090A3EEAA ] elxstor C:\Windows\system32\drivers\elxstor.sys
22:17:50.0351 4124 elxstor - ok
22:17:50.0395 4124 [ A9B18B63A4FD6BAAB83326706D857FAB ] EMDMgmt C:\Windows\system32\emdmgmt.dll
22:17:50.0402 4124 EMDMgmt - ok
22:17:50.0472 4124 [ E12F22B73F153DECE721CD45EC05B4AF ] EventSystem C:\Windows\system32\es.dll
22:17:50.0478 4124 EventSystem - ok
22:17:50.0533 4124 [ 486844F47B6636044A42454614ED4523 ] exfat C:\Windows\system32\drivers\exfat.sys
22:17:50.0536 4124 exfat - ok
22:17:50.0557 4124 [ 1A4BEE34277784619DDAF0422C0C6E23 ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:17:50.0561 4124 fastfat - ok
22:17:50.0609 4124 [ 61B6DBD1AD1143F008364D4E9A96B224 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
22:17:50.0610 4124 fdc - ok
22:17:50.0636 4124 [ BB9267ACACD8B7533DD936C34A0CBA5E ] fdPHost C:\Windows\system32\fdPHost.dll
22:17:50.0637 4124 fdPHost - ok
22:17:50.0675 4124 [ 300C80931EABBE1DB7591C516EFE8D0F ] FDResPub C:\Windows\system32\fdrespub.dll
22:17:50.0676 4124 FDResPub - ok
22:17:50.0728 4124 [ 457B7D1D533E4BD62A99AED9C7BB4C59 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:17:50.0730 4124 FileInfo - ok
22:17:50.0770 4124 [ D421327FD6EFCCAF884A54C58E1B0D7F ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:17:50.0771 4124 Filetrace - ok
22:17:50.0789 4124 [ 12C3D1B4D0CE49E1CE343BA2F22F15E0 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
22:17:50.0791 4124 flpydisk - ok
22:17:50.0819 4124 [ E3041BC26D6930D61F42AEDB79C91720 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:17:50.0824 4124 FltMgr - ok
22:17:50.0905 4124 [ BE1C5BD1CA7ED015BC6FA1AE67E592C8 ] FontCache C:\Windows\system32\FntCache.dll
22:17:50.0965 4124 FontCache - ok
22:17:51.0017 4124 [ BC5B0BE5AF3510B0FD8C140EE42C6D3E ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:17:51.0018 4124 FontCache3.0.0.0 - ok
22:17:51.0068 4124 [ 5779B86CD8B32519FBECB136394D946A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:17:51.0070 4124 Fs_Rec - ok
22:17:51.0090 4124 [ B54520CC7B4B55134D7527B1CD3FC1F2 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
22:17:51.0091 4124 gagp30kx - ok
22:17:51.0160 4124 [ 44D07E5A444692E9B6A5CDD7401B4402 ] GameConsoleService C:\Program Files (x86)\HP Games\My HP Game Console\GameConsoleService.exe
22:17:51.0161 4124 GameConsoleService - ok
22:17:51.0197 4124 [ A0E1B575BA8F504968CD40C0FAEB2384 ] gpsvc C:\Windows\System32\gpsvc.dll
22:17:51.0210 4124 gpsvc - ok
22:17:51.0238 4124 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
22:17:51.0239 4124 hamachi - ok
22:17:51.0310 4124 [ 21D24138B736983F6E23823E092E9428 ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
22:17:51.0361 4124 Hamachi2Svc - ok
22:17:51.0414 4124 [ 38E209DE62964FDFBD3665C89CC4F2BA ] HCW85BDA C:\Windows\system32\drivers\HCW85BDA.sys
22:17:51.0497 4124 HCW85BDA - ok
22:17:51.0536 4124 [ DF45F8142DC6DF9D18C39B3EFFBD0409 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:17:51.0540 4124 HdAudAddService - ok
22:17:51.0595 4124 [ F942C5820205F2FB453243EDFEC82A3D ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
22:17:51.0662 4124 HDAudBus - ok
22:17:51.0700 4124 [ B4881C84A180E75B8C25DC1D726C375F ] HidBth C:\Windows\system32\drivers\hidbth.sys
22:17:51.0701 4124 HidBth - ok
22:17:51.0735 4124 [ 5F47839455D01FF6403B008D481A6F5B ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
22:17:51.0737 4124 HidIr - ok
22:17:51.0778 4124 [ 59361D38A297755D46A540E450202B2A ] hidserv C:\Windows\system32\hidserv.dll
22:17:51.0779 4124 hidserv - ok
22:17:51.0803 4124 [ 443BDD2D30BB4F00795C797E2CF99EDF ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
22:17:51.0804 4124 HidUsb - ok
22:17:51.0890 4124 [ 5350AEF38CA2D8885F47D4455E7EF4EE ] HiPatchService C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
22:17:51.0891 4124 HiPatchService - ok
22:17:51.0936 4124 [ B12F367EA39C0795FD57E31242CE1A5A ] hkmsvc C:\Windows\system32\kmsvc.dll
22:17:51.0938 4124 hkmsvc - ok
22:17:51.0990 4124 [ 0D26C438E2938A3E6BDD91173BC96FF0 ] HP Health Check Service c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
22:17:51.0991 4124 HP Health Check Service - ok
22:17:52.0040 4124 [ DEB82AF183F1CD06813D91ED104C645C ] HPBtnSrv c:\hp\HPEZBTN\HPBtnSrv.exe
22:17:52.0043 4124 HPBtnSrv - ok
22:17:52.0075 4124 [ 8EDC820115DF1E04763B2923676EA5B2 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
22:17:52.0078 4124 HpCISSs - ok
22:17:52.0136 4124 [ 3A9291D4047935F776DB8AF831AB9BA6 ] HSF_DP C:\Windows\system32\DRIVERS\CAX_DP.sys
22:17:52.0177 4124 HSF_DP - ok
22:17:52.0233 4124 [ 098F1E4E5C9CB5B0063A959063631610 ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:17:52.0243 4124 HTTP - ok
22:17:52.0270 4124 [ F2901763845570ECAC48E6A50EC50812 ] i2omp C:\Windows\system32\drivers\i2omp.sys
22:17:52.0271 4124 i2omp - ok
22:17:52.0306 4124 [ CBB597659A2713CE0C9CC20C88C7591F ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
22:17:52.0308 4124 i8042prt - ok
22:17:52.0362 4124 [ 204A73A56751C68C6031E9D5D611EC98 ] IAANTMON C:\Program Files (X86)\Intel\Intel Matrix Storage Manager\Iaantmon.exe
22:17:52.0369 4124 IAANTMON - ok
22:17:52.0390 4124 [ CEB53BB804B41C52AB0782505C8E2994 ] iaStor C:\Windows\system32\drivers\iastor.sys
22:17:52.0392 4124 iaStor - ok
22:17:52.0423 4124 [ 72C3EE7EA3CD75A772E62AE0E5DF8B8C ] iaStorV C:\Windows\system32\drivers\iastorv.sys
22:17:52.0428 4124 iaStorV - ok
22:17:52.0515 4124 [ 749F5F8CEDCA70F2A512945325FC489D ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:17:52.0565 4124 idsvc - ok
22:17:52.0594 4124 [ 8C3951AD2FE886EF76C7B5027C3125D3 ] iirsp C:\Windows\system32\drivers\iirsp.sys
22:17:52.0596 4124 iirsp - ok
22:17:52.0645 4124 [ 0C9EA6E654E7B0471741E343A6C671AF ] IKEEXT C:\Windows\System32\ikeext.dll
22:17:52.0659 4124 IKEEXT - ok
22:17:52.0746 4124 [ 890423C12B36D4A8F85F54720E4EABE2 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
22:17:52.0820 4124 IntcAzAudAddService - ok
22:17:52.0851 4124 [ 8222DB778DD1F120DF35B651C22DC1A9 ] intelide C:\Windows\system32\drivers\intelide.sys
22:17:52.0852 4124 intelide - ok
22:17:52.0892 4124 [ BFD84AF32FA1BAD6231C4585CB469630 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
22:17:52.0894 4124 intelppm - ok
22:17:52.0941 4124 [ 5624BC1BC5EEB49C0AB76A8114F05EA3 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:17:52.0944 4124 IPBusEnum - ok
22:17:52.0967 4124 [ D8AABC341311E4780D6FCE8C73C0AD81 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:17:52.0969 4124 IpFilterDriver - ok
22:17:53.0006 4124 [ BF0DBFA9792C5C14FA00F61C75116C1B ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
22:17:53.0010 4124 iphlpsvc - ok
22:17:53.0016 4124 IpInIp - ok
22:17:53.0054 4124 [ EACDBBE429C6D170BDEEE0EFFCBC317B ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
22:17:53.0056 4124 IPMIDRV - ok
22:17:53.0085 4124 [ B7E6212F581EA5F6AB0C3A6CEEEB89BE ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
22:17:53.0088 4124 IPNAT - ok
22:17:53.0100 4124 [ 8C42CA155343A2F11D29FECA67FAA88D ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:17:53.0101 4124 IRENUM - ok
22:17:53.0138 4124 [ D3BB520B31F28C1A065CD058E762EE73 ] isapnp C:\Windows\system32\drivers\isapnp.sys
22:17:53.0140 4124 isapnp - ok
22:17:53.0171 4124 [ E4FDF99599F27EC25D2CF6D754243520 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
22:17:53.0175 4124 iScsiPrt - ok
22:17:53.0206 4124 [ 63C766CDC609FF8206CB447A65ABBA4A ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
22:17:53.0208 4124 iteatapi - ok
22:17:53.0241 4124 [ 1281FE73B17664631D12F643CBEA3F59 ] iteraid C:\Windows\system32\drivers\iteraid.sys
22:17:53.0242 4124 iteraid - ok
22:17:53.0266 4124 [ 423696F3BA6472DD17699209B933BC26 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
22:17:53.0268 4124 kbdclass - ok
22:17:53.0289 4124 [ DBDF75D51464FBC47D0104EC3D572C05 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
22:17:53.0290 4124 kbdhid - ok
22:17:53.0337 4124 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] KeyIso C:\Windows\system32\lsass.exe
22:17:53.0338 4124 KeyIso - ok
22:17:53.0413 4124 [ 88956AD9FA510848AD176777A6C6C1F5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:17:53.0431 4124 KSecDD - ok
22:17:53.0519 4124 [ 1D419CF43DB29396ECD7113D129D94EB ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
22:17:53.0520 4124 ksthunk - ok
22:17:53.0563 4124 [ 1FAF6926F3416D3DA05C5B265491BDAE ] KtmRm C:\Windows\system32\msdtckrm.dll
22:17:53.0570 4124 KtmRm - ok
22:17:53.0631 4124 [ 50C7A3CB427E9BB5ED0708A669956AB5 ] LanmanServer C:\Windows\system32\srvsvc.dll
22:17:53.0635 4124 LanmanServer - ok
22:17:53.0678 4124 [ CAF86FC1388BE1E470F1A7B43E348ADB ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:17:53.0684 4124 LanmanWorkstation - ok
22:17:53.0727 4124 [ 75AC54B996F7C8E17594EBC32B6614BD ] LightScribeService c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
22:17:53.0729 4124 LightScribeService - ok
22:17:53.0814 4124 [ 63ED50A6ED61829C2DEF5B733D258A05 ] LiveUpdate c:\Program Files (x86)\Symantec\LiveUpdate\LuComServer_3_4.EXE
22:17:53.0916 4124 LiveUpdate - ok
22:17:53.0954 4124 [ 96ECE2659B6654C10A0C310AE3A6D02C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:17:53.0956 4124 lltdio - ok
22:17:53.0984 4124 [ 961CCBD0B1CCB5675D64976FAE37D092 ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:17:53.0989 4124 lltdsvc - ok
22:17:54.0030 4124 [ A47F8080CACC23C91FE823AD19AA5612 ] lmhosts C:\Windows\System32\lmhsvc.dll
22:17:54.0032 4124 lmhosts - ok
22:17:54.0061 4124 [ 1572F8D999C0AB4376AFDCE058A78DF9 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
22:17:54.0063 4124 LSI_FC - ok
22:17:54.0077 4124 [ 64470979C3E3C9FF60EDFB5230C56E0E ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
22:17:54.0079 4124 LSI_SAS - ok
22:17:54.0123 4124 [ 4CED7D3B54BFC5BBAE75C4A73C7F7428 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
22:17:54.0125 4124 LSI_SCSI - ok
22:17:54.0177 4124 [ 52F87B9CC8932C2A7375C3B2A9BE5E3E ] luafv C:\Windows\system32\drivers\luafv.sys
22:17:54.0181 4124 luafv - ok
22:17:54.0231 4124 [ 76A58DF02BD4EA29F189B82D0BEF17F8 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
22:17:54.0234 4124 Mcx2Svc - ok
22:17:54.0269 4124 [ E4F44EC214B3E381E1FC844A02926666 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
22:17:54.0270 4124 mdmxsdk - ok
22:17:54.0299 4124 [ 2F631C2939D5F2E8958935EE701D70D7 ] megasas C:\Windows\system32\drivers\megasas.sys
22:17:54.0300 4124 megasas - ok
22:17:54.0306 4124 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] MMCSS C:\Windows\system32\mmcss.dll
22:17:54.0308 4124 MMCSS - ok
22:17:54.0339 4124 [ 59848D5CC74606F0EE7557983BB73C2E ] Modem C:\Windows\system32\drivers\modem.sys
22:17:54.0340 4124 Modem - ok
22:17:54.0382 4124 [ C247CC2A57E0A0C8C6DCCF7807B3E9E5 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:17:54.0384 4124 monitor - ok
22:17:54.0393 4124 [ 9367304E5E412B120CF5F4EA14E4E4F1 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
22:17:54.0394 4124 mouclass - ok
22:17:54.0409 4124 [ C2C2BD5C5CE5AAF786DDD74B75D2AC69 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
22:17:54.0411 4124 mouhid - ok
22:17:54.0421 4124 [ 11BC9B1E8801B01F7F6ADB9EAD30019B ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
22:17:54.0424 4124 MountMgr - ok
22:17:54.0462 4124 [ E8D79312373F254DC13F3965BDB3D521 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:17:54.0464 4124 MozillaMaintenance - ok
22:17:54.0494 4124 [ ED48EAC719EE28DB773359EB1B06E2B5 ] mpio C:\Windows\system32\drivers\mpio.sys
22:17:54.0497 4124 mpio - ok
22:17:54.0552 4124 [ C92B9ABDB65A5991E00C28F13491DBA2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:17:54.0554 4124 mpsdrv - ok
22:17:54.0608 4124 [ 897E3BAF68BA406A61682AE39C83900C ] MpsSvc C:\Windows\system32\mpssvc.dll
22:17:54.0618 4124 MpsSvc - ok
22:17:54.0657 4124 [ 3C200630A89EF2C0864D515B7A75802E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
22:17:54.0658 4124 Mraid35x - ok
22:17:54.0685 4124 [ 7C1DE4AA96DC0C071611F9E7DE02A68D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:17:54.0688 4124 MRxDAV - ok
22:17:54.0752 4124 [ 1485811B320FF8C7EDAD1CAEBB1C6C2B ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:17:54.0755 4124 mrxsmb - ok
22:17:54.0769 4124 [ 3B929A60C833FC615FD97FBA82BC7632 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:17:54.0773 4124 mrxsmb10 - ok
22:17:54.0818 4124 [ C64AB3E1F53B4F5B5BB6D796B2D7BEC3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:17:54.0820 4124 mrxsmb20 - ok
22:17:54.0886 4124 [ 49A6FC116C1F37131C956349FCBACC4C ] msahci C:\Windows\system32\drivers\msahci.sys
22:17:54.0887 4124 msahci - ok
22:17:54.0919 4124 [ 96D7C0A1B98434C6E4FF0C2E26A0E20A ] msdsm C:\Windows\system32\drivers\msdsm.sys
22:17:54.0922 4124 msdsm - ok
22:17:54.0970 4124 [ 7EC02CE772F068ED0BEAFA3DA341A9BC ] MSDTC C:\Windows\System32\msdtc.exe
22:17:54.0973 4124 MSDTC - ok
22:17:55.0019 4124 [ 704F59BFC4512D2BB0146AEC31B10A7C ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:17:55.0020 4124 Msfs - ok
22:17:55.0053 4124 [ 00EBC952961664780D43DCA157E79B27 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
22:17:55.0054 4124 msisadrv - ok
22:17:55.0077 4124 [ 366B0C1F4478B519C181E37D43DCDA32 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:17:55.0081 4124 MSiSCSI - ok
22:17:55.0086 4124 msiserver - ok
22:17:55.0138 4124 [ 0EA73E498F53B96D83DBFCA074AD4CF8 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:17:55.0139 4124 MSKSSRV - ok
22:17:55.0156 4124 [ 52E59B7E992A58E740AA63F57EDBAE8B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:17:55.0157 4124 MSPCLOCK - ok
22:17:55.0167 4124 [ 49084A75BAE043AE02D5B44D02991BB2 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:17:55.0168 4124 MSPQM - ok
22:17:55.0212 4124 [ DC6CCF440CDEDE4293DB41C37A5060A5 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:17:55.0217 4124 MsRPC - ok
22:17:55.0260 4124 [ 855796E59DF77EA93AF46F20155BF55B ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
22:17:55.0261 4124 mssmbios - ok
22:17:55.0305 4124 [ 86D632D75D05D5B7C7C043FA3564AE86 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:17:55.0306 4124 MSTEE - ok
22:17:55.0341 4124 [ 0CC49F78D8ACA0877D885F149084E543 ] Mup C:\Windows\system32\Drivers\mup.sys
22:17:55.0343 4124 Mup - ok
22:17:55.0397 4124 [ A5B10C845E7538C60C0F5D87A57CB3F5 ] napagent C:\Windows\system32\qagentRT.dll
22:17:55.0403 4124 napagent - ok
22:17:55.0421 4124 [ 2007B826C4ACD94AE32232B41F0842B9 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:17:55.0424 4124 NativeWifiP - ok
22:17:55.0460 4124 [ 65950E07329FCEE8E6516B17C8D0ABB6 ] NDIS C:\Windows\system32\drivers\ndis.sys
22:17:55.0520 4124 NDIS - ok
22:17:55.0566 4124 [ 64DF698A425478E321981431AC171334 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:17:55.0567 4124 NdisTapi - ok
22:17:55.0606 4124 [ 8BAA43196D7B5BB972C9A6B2BBF61A19 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:17:55.0607 4124 Ndisuio - ok
22:17:55.0624 4124 [ F8158771905260982CE724076419EF19 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:17:55.0628 4124 NdisWan - ok
22:17:55.0642 4124 [ 9CB77ED7CB72850253E973A2D6AFDF49 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:17:55.0643 4124 NDProxy - ok
22:17:55.0692 4124 [ A499294F5029A7862ADC115BDA7371CE ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:17:55.0694 4124 NetBIOS - ok
22:17:55.0712 4124 [ FC2C792EBDDC8E28DF939D6A92C83D61 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
22:17:55.0716 4124 netbt - ok
22:17:55.0761 4124 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] Netlogon C:\Windows\system32\lsass.exe
22:17:55.0762 4124 Netlogon - ok
22:17:55.0832 4124 [ 9B63B29DEFC0F3115A559D2597BF5D75 ] Netman C:\Windows\System32\netman.dll
22:17:55.0837 4124 Netman - ok
22:17:55.0882 4124 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:17:55.0903 4124 NetMsmqActivator - ok
22:17:55.0907 4124 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:17:55.0908 4124 NetPipeActivator - ok
22:17:55.0977 4124 [ 7846D0136CC2B264926A73047BA7688A ] netprofm C:\Windows\System32\netprofm.dll
22:17:55.0984 4124 netprofm - ok
22:17:56.0028 4124 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:17:56.0029 4124 NetTcpActivator - ok
22:17:56.0034 4124 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:17:56.0035 4124 NetTcpPortSharing - ok
22:17:56.0073 4124 [ 4AC08BD6AF2DF42E0C3196D826C8AEA7 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
22:17:56.0075 4124 nfrd960 - ok
22:17:56.0109 4124 [ F145BF4C4668E7E312069F81EF847CFC ] NlaSvc C:\Windows\System32\nlasvc.dll
22:17:56.0113 4124 NlaSvc - ok
22:17:56.0170 4124 [ B298874F8E0EA93F06EC40AA8D146478 ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:17:56.0172 4124 Npfs - ok
22:17:56.0214 4124 [ ACB62BAA1C319B17752553DF3026EEEB ] nsi C:\Windows\system32\nsisvc.dll
22:17:56.0216 4124 nsi - ok
22:17:56.0263 4124 [ 1523AF19EE8B030BA682F7A53537EAEB ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:17:56.0264 4124 nsiproxy - ok
22:17:56.0339 4124 [ BAC869DFB98E499BA4D9BB1FB43270E1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:17:56.0417 4124 Ntfs - ok
22:17:56.0468 4124 [ DD5D684975352B85B52E3FD5347C20CB ] Null C:\Windows\system32\drivers\Null.sys
22:17:56.0469 4124 Null - ok
22:17:56.0771 4124 [ 0EB204639119370F5F8F2871FBF4E14B ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
22:17:57.0035 4124 nvlddmkm - ok
22:17:57.0057 4124 [ 840EEB44DC49317A6161961F7682CD99 ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:17:57.0060 4124 nvraid - ok
22:17:57.0078 4124 [ 94C5334040A5D500897F4C5FD12AEEDE ] nvstor C:\Windows\system32\drivers\nvstor.sys
22:17:57.0079 4124 nvstor - ok
22:17:57.0125 4124 [ 32FF8EE6DCEE5C0CB91FF892FB1CA364 ] nvsvc C:\Windows\system32\nvvsvc.exe
22:17:57.0158 4124 nvsvc - ok
22:17:57.0213 4124 [ BD012DC22C78BE1071BC21EB125D782F ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
22:17:57.0272 4124 nvUpdatusService - ok
22:17:57.0297 4124 [ AA1B6C86A4763502E20B65C025F39BAD ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
22:17:57.0299 4124 nv_agp - ok
22:17:57.0303 4124 NwlnkFlt - ok
22:17:57.0306 4124 NwlnkFwd - ok
22:17:57.0351 4124 [ B5B1CE65AC15BBD11C0619E3EF7CFC28 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
22:17:57.0353 4124 ohci1394 - ok
22:17:57.0408 4124 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2pimsvc C:\Windows\system32\p2psvc.dll
22:17:57.0422 4124 p2pimsvc - ok
22:17:57.0435 4124 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2psvc C:\Windows\system32\p2psvc.dll
22:17:57.0440 4124 p2psvc - ok
22:17:57.0459 4124 [ AECD57F94C887F58919F307C35498EA0 ] Parport C:\Windows\system32\drivers\parport.sys
22:17:57.0462 4124 Parport - ok
22:17:57.0502 4124 [ B43751085E2ABE389DA466BC62A4B987 ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:17:57.0504 4124 partmgr - ok
22:17:57.0540 4124 [ 9AB157B374192FF276C1628FBDBA2B0E ] PcaSvc C:\Windows\System32\pcasvc.dll
22:17:57.0543 4124 PcaSvc - ok
22:17:57.0567 4124 [ 47AB1E0FC9D0E12BB53BA246E3A0906D ] pci C:\Windows\system32\drivers\pci.sys
22:17:57.0571 4124 pci - ok
22:17:57.0597 4124 [ 975BB9ECC3073362B5E8BE21E110C3EE ] pciide C:\Windows\system32\drivers\pciide.sys
22:17:57.0598 4124 pciide - ok
22:17:57.0625 4124 [ 037661F3D7C507C9993B7010CEEE6288 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
22:17:57.0629 4124 pcmcia - ok
22:17:57.0669 4124 [ 58865916F53592A61549B04941BFD80D ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:17:57.0686 4124 PEAUTH - ok
22:17:57.0787 4124 [ 0ED8727EA0172860F47258456C06CAEA ] PerfHost C:\Windows\SysWow64\perfhost.exe
22:17:57.0788 4124 PerfHost - ok
22:17:57.0863 4124 [ E9E68C1A0F25CF4A7AC966EEA74EE89E ] pla C:\Windows\system32\pla.dll
22:17:57.0930 4124 pla - ok
22:17:57.0981 4124 [ FE6B0F59215C9FD9F9D26539C58C8B82 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:17:57.0988 4124 PlugPlay - ok
22:17:58.0041 4124 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
22:17:58.0046 4124 PNRPAutoReg - ok
22:17:58.0099 4124 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPsvc C:\Windows\system32\p2psvc.dll
22:17:58.0105 4124 PNRPsvc - ok
22:17:58.0156 4124 [ 89A5560671C2D8B4A4B51F3E1AA069D8 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:17:58.0165 4124 PolicyAgent - ok
22:17:58.0213 4124 [ 23386E9952025F5F21C368971E2E7301 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:17:58.0215 4124 PptpMiniport - ok
22:17:58.0277 4124 [ 6BC78E5F12CBB74E7930AAAA4A0DB387 ] Processor C:\Windows\system32\drivers\processr.sys
22:17:58.0279 4124 Processor - ok
22:17:58.0318 4124 [ E058CE4FC2449D8BFA14739C83B7FF2A ] ProfSvc C:\Windows\system32\profsvc.dll
22:17:58.0323 4124 ProfSvc - ok
22:17:58.0335 4124 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] ProtectedStorage C:\Windows\system32\lsass.exe
22:17:58.0336 4124 ProtectedStorage - ok
22:17:58.0367 4124 [ 1D0A3F565397D08707F3D75B88586645 ] Ps2 C:\Windows\system32\DRIVERS\PS2.sys
22:17:58.0368 4124 Ps2 - ok
22:17:58.0391 4124 [ C5AB7F0809392D0DA027F4A2A81BFA31 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
22:17:58.0393 4124 PSched - ok
22:17:58.0444 4124 [ 4A29D25704917161BAD9B4659A248DFD ] ql2300 C:\Windows\system32\drivers\ql2300.sys
22:17:58.0487 4124 ql2300 - ok
22:17:58.0507 4124 [ E1C80F8D4D1E39EF9595809C1369BF2A ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
22:17:58.0510 4124 ql40xx - ok
22:17:58.0550 4124 [ 90574842C3DA781E279061A3EFF91F07 ] QWAVE C:\Windows\system32\qwave.dll
22:17:58.0555 4124 QWAVE - ok
22:17:58.0597 4124 [ E8D76EDAB77EC9C634C27B8EAC33ADC5 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:17:58.0599 4124 QWAVEdrv - ok
22:17:58.0628 4124 [ 1013B3B663A56D3DDD784F581C1BD005 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:17:58.0629 4124 RasAcd - ok
22:17:58.0652 4124 [ B2AE18F847D07F0044404DDF7CB04497 ] RasAuto C:\Windows\System32\rasauto.dll
22:17:58.0655 4124 RasAuto - ok
22:17:58.0668 4124 [ AC7BC4D42A7E558718DFDEC599BBFC2C ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:17:58.0671 4124 Rasl2tp - ok
22:17:58.0716 4124 [ 3AD83E4046C43BE510DE681588ACB8AF ] RasMan C:\Windows\System32\rasmans.dll
22:17:58.0721 4124 RasMan - ok
22:17:58.0773 4124 [ 4517FBF8B42524AFE4EDE1DE102AAE3E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:17:58.0775 4124 RasPppoe - ok
22:17:58.0789 4124 [ C6A593B51F34C33E5474539544072527 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:17:58.0792 4124 RasSstp - ok
22:17:58.0804 4124 [ 322DB5C6B55E8D8EE8D6F358B2AAABB1 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:17:58.0809 4124 rdbss - ok
22:17:58.0850 4124 [ 603900CC05F6BE65CCBF373800AF3716 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:17:58.0851 4124 RDPCDD - ok
22:17:58.0891 4124 [ 2D98DDA8EDCE73DF99854BF3692CCC87 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
22:17:58.0896 4124 rdpdr - ok
22:17:58.0900 4124 [ CAB9421DAF3D97B33D0D055858E2C3AB ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:17:58.0901 4124 RDPENCDD - ok
22:17:58.0939 4124 [ AE4BD9E1C33D351D8E607FC81F15160C ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:17:58.0943 4124 RDPWD - ok
22:17:58.0992 4124 [ C612B9557DA73F70D41F8A6FBC8E5344 ] RemoteAccess C:\Windows\System32\mprdim.dll
22:17:58.0995 4124 RemoteAccess - ok
22:17:59.0011 4124 [ 44B9D8EC2F3EF3A0EFB00857AF70D861 ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:17:59.0016 4124 RemoteRegistry - ok
22:17:59.0061 4124 [ F46C457840D4B7A4DAAFEE739CE04102 ] RpcLocator C:\Windows\system32\locator.exe
22:17:59.0063 4124 RpcLocator - ok
22:17:59.0092 4124 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] RpcSs C:\Windows\system32\rpcss.dll
22:17:59.0125 4124 RpcSs - ok
22:17:59.0173 4124 [ 22A9CB08B1A6707C1550C6BF099AAE73 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:17:59.0175 4124 rspndr - ok
22:17:59.0192 4124 [ 593DA3DC8FEDD4D85DBB5503155BA24E ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh64.sys
22:17:59.0194 4124 RTL8169 - ok
22:17:59.0234 4124 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] SamSs C:\Windows\system32\lsass.exe
22:17:59.0235 4124 SamSs - ok
22:17:59.0270 4124 [ CD9C693589C60AD59BBBCFB0E524E01B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
22:17:59.0272 4124 sbp2port - ok
22:17:59.0293 4124 [ FD1CDCF108D5EF3366F00D18B70FB89B ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:17:59.0296 4124 SCardSvr - ok
22:17:59.0359 4124 [ 0F838C811AD295D2A4489B9993096C63 ] Schedule C:\Windows\system32\schedsvc.dll
22:17:59.0411 4124 Schedule - ok
22:17:59.0469 4124 [ 5A268127633C7EE2A7FB87F39D748D56 ] SCPolicySvc C:\Windows\System32\certprop.dll
22:17:59.0470 4124 SCPolicySvc - ok
22:17:59.0515 4124 [ 4FF71B076A7760FE75EA5AE2D0EE0018 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:17:59.0519 4124 SDRSVC - ok
22:17:59.0558 4124 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:17:59.0559 4124 secdrv - ok
22:17:59.0573 4124 [ 5ACDCBC67FCF894A1815B9F96D704490 ] seclogon C:\Windows\system32\seclogon.dll
22:17:59.0575 4124 seclogon - ok
22:17:59.0641 4124 [ 90973A64B96CD647FF81C79443618EED ] SENS C:\Windows\System32\sens.dll
22:17:59.0644 4124 SENS - ok
22:17:59.0676 4124 [ F71BFE7AC6C52273B7C82CBF1BB2A222 ] Serenum C:\Windows\system32\drivers\serenum.sys
22:17:59.0677 4124 Serenum - ok
22:17:59.0688 4124 [ E62FAC91EE288DB29A9696A9D279929C ] Serial C:\Windows\system32\drivers\serial.sys
22:17:59.0691 4124 Serial - ok
22:17:59.0704 4124 [ A842F04833684BCEEA7336211BE478DF ] sermouse C:\Windows\system32\drivers\sermouse.sys
22:17:59.0705 4124 sermouse - ok
22:17:59.0743 4124 [ A8E4A4407A09F35DCCC3771AF590B0C4 ] SessionEnv C:\Windows\system32\sessenv.dll
22:17:59.0746 4124 SessionEnv - ok
22:17:59.0777 4124 [ 18C056B109DA7CD823BFAE223818EB2E ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
22:17:59.0778 4124 sffdisk - ok
22:17:59.0791 4124 [ B387781EA1A47BBE08A6E4CBD82F9790 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
22:17:59.0792 4124 sffp_mmc - ok
22:17:59.0801 4124 [ 4E6B82359DFBD84E914B4D01256EF3BF ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
22:17:59.0802 4124 sffp_sd - ok
22:17:59.0816 4124 [ 6B7838C94135768BD455CBDC23E39E5F ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
22:17:59.0818 4124 sfloppy - ok
22:17:59.0844 4124 [ 4C5AEE179DA7E1EE9A9CCB9DA289AF34 ] SharedAccess C:\Windows\System32\ipnathlp.dll
22:17:59.0849 4124 SharedAccess - ok
22:17:59.0935 4124 [ 56793271ECDEDD350C5ADD305603E963 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:17:59.0942 4124 ShellHWDetection - ok
22:17:59.0982 4124 [ 08DDA16573FA44F8B13AFE74597AD2E5 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
22:17:59.0984 4124 SiSRaid2 - ok
22:18:00.0001 4124 [ C52259E9DAAF3890D572D87FFEE0979E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
22:18:00.0003 4124 SiSRaid4 - ok
22:18:00.0074 4124 [ DDAA5F4A6B958FC313EBD02DD925752F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
22:18:00.0077 4124 SkypeUpdate - ok
22:18:00.0169 4124 [ A9A27A8E257B45A604FDAD4F26FE7241 ] slsvc C:\Windows\system32\SLsvc.exe
22:18:00.0253 4124 slsvc - ok
22:18:00.0268 4124 [ FD74B4B7C2088E390A30C85A896FC3AF ] SLUINotify C:\Windows\system32\SLUINotify.dll
22:18:00.0271 4124 SLUINotify - ok
22:18:00.0313 4124 [ 290B6F6A0EC4FCDFC90F5CB6D7020473 ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:18:00.0315 4124 Smb - ok
22:18:00.0373 4124 [ F8F47F38909823B1AF28D60B96340CFF ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:18:00.0375 4124 SNMPTRAP - ok
22:18:00.0416 4124 [ 386C3C63F00A7040C7EC5E384217E89D ] spldr C:\Windows\system32\drivers\spldr.sys
22:18:00.0417 4124 spldr - ok
22:18:00.0465 4124 [ F66FF751E7EFC816D266977939EF5DC3 ] Spooler C:\Windows\System32\spoolsv.exe
22:18:00.0470 4124 Spooler - ok
22:18:00.0517 4124 [ 880A57FCCB571EBD063D4DD50E93E46D ] srv C:\Windows\system32\DRIVERS\srv.sys
22:18:00.0526 4124 srv - ok
22:18:00.0568 4124 [ A1AD14A6D7A37891FFFECA35EBBB0730 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:18:00.0572 4124 srv2 - ok
22:18:00.0584 4124 [ 4BED62F4FA4D8300973F1151F4C4D8A7 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:18:00.0587 4124 srvnet - ok
22:18:00.0633 4124 [ 192C74646EC5725AEF3F80D19FF75F6A ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:18:00.0638 4124 SSDPSRV - ok
22:18:00.0661 4124 [ 2EE3FA0308E6185BA64A9A7F2E74332B ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:18:00.0666 4124 SstpSvc - ok
22:18:00.0683 4124 Steam Client Service - ok
22:18:00.0705 4124 [ FC0A58529A02B1EED55DDC58696B7908 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
22:18:00.0711 4124 Stereo Service - ok
22:18:00.0768 4124 [ 15825C1FBFB8779992CB65087F316AF5 ] stisvc C:\Windows\System32\wiaservc.dll
22:18:00.0779 4124 stisvc - ok
22:18:00.0795 4124 [ 8A851CA908B8B974F89C50D2E18D4F0C ] swenum C:\Windows\system32\DRIVERS\swenum.sys
22:18:00.0796 4124 swenum - ok
22:18:00.0849 4124 [ 6DE37F4DE19D4EFD9C48C43ADDBC949A ] swprv C:\Windows\System32\swprv.dll
22:18:00.0868 4124 swprv - ok
22:18:00.0897 4124 [ 2F26A2C6FC96B29BEFF5D8ED74E6625B ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
22:18:00.0899 4124 Symc8xx - ok
22:18:00.0904 4124 SymIM - ok
22:18:00.0908 4124 SymIMMP - ok
22:18:00.0919 4124 [ A909667976D3BCCD1DF813FED517D837 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
22:18:00.0921 4124 Sym_hi - ok
22:18:00.0937 4124 [ 36887B56EC2D98B9C362F6AE4DE5B7B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
22:18:00.0938 4124 Sym_u3 - ok
22:18:00.0975 4124 [ 92D7A8B0F87B036F17D25885937897A6 ] SysMain C:\Windows\system32\sysmain.dll
22:18:01.0002 4124 SysMain - ok
22:18:01.0019 4124 [ 005CE42567F9113A3BCCB3B20073B029 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:18:01.0022 4124 TabletInputService - ok
22:18:01.0069 4124 [ CC2562B4D55E0B6A4758C65407F63B79 ] TapiSrv C:\Windows\System32\tapisrv.dll
22:18:01.0075 4124 TapiSrv - ok
22:18:01.0127 4124 [ CDBE8D7C1E201B911CDC346D06617FB5 ] TBS C:\Windows\System32\tbssvc.dll
22:18:01.0131 4124 TBS - ok
22:18:01.0200 4124 [ 46D448E9117464E4D3BBF36D7E3FA48E ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:18:01.0233 4124 Tcpip - ok
22:18:01.0284 4124 [ 46D448E9117464E4D3BBF36D7E3FA48E ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
22:18:01.0292 4124 Tcpip6 - ok
22:18:01.0312 4124 [ C7E72A4071EE0200E3C075DACFB2B334 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:18:01.0314 4124 tcpipreg - ok
22:18:01.0331 4124 [ 1D8BF4AAA5FB7A2761475781DC1195BC ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:18:01.0332 4124 TDPIPE - ok
22:18:01.0346 4124 [ 7F7E00CDF609DF657F4CDA02DD1C9BB1 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:18:01.0348 4124 TDTCP - ok
22:18:01.0388 4124 [ 458919C8C42E398DC4802178D5FFEE27 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:18:01.0391 4124 tdx - ok
22:18:01.0411 4124 [ 8C19678D22649EC002EF2282EAE92F98 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
22:18:01.0413 4124 TermDD - ok
22:18:01.0437 4124 [ 5CDD30BC217082DAC71A9878D9BFD566 ] TermService C:\Windows\System32\termsrv.dll
22:18:01.0454 4124 TermService - ok
22:18:01.0467 4124 [ 56793271ECDEDD350C5ADD305603E963 ] Themes C:\Windows\system32\shsvcs.dll
22:18:01.0470 4124 Themes - ok
22:18:01.0476 4124 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] THREADORDER C:\Windows\system32\mmcss.dll
22:18:01.0477 4124 THREADORDER - ok
22:18:01.0495 4124 [ F4689F05AF472A651A7B1B7B02D200E7 ] TrkWks C:\Windows\System32\trkwks.dll
22:18:01.0499 4124 TrkWks - ok
22:18:01.0516 4124 [ 66328B08EF5A9305D8EDE36B93930369 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:18:01.0518 4124 TrustedInstaller - ok
22:18:01.0539 4124 [ 9E5409CD17C8BEF193AAD498F3BC2CB8 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:18:01.0540 4124 tssecsrv - ok
22:18:01.0569 4124 [ 89EC74A9E602D16A75A4170511029B3C ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
22:18:01.0570 4124 tunmp - ok
22:18:01.0582 4124 [ 30A9B3F45AD081BFFC3BCAA9C812B609 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:18:01.0583 4124 tunnel - ok
22:18:01.0613 4124 [ E4722DFBD6232ACF17543EF2C2DCE8D2 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
22:18:01.0615 4124 uagp35 - ok
22:18:01.0650 4124 [ FAF2640A2A76ED03D449E443194C4C34 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:18:01.0656 4124 udfs - ok
22:18:01.0673 4124 [ 060507C4113391394478F6953A79EEDC ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:18:01.0676 4124 UI0Detect - ok
22:18:01.0703 4124 [ 5663D7696ABBE71F8C9D915C5374118A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
22:18:01.0705 4124 uliagpkx - ok
22:18:01.0722 4124 [ 6030B68E86A30D1B315B51C4D7778B16 ] uliahci C:\Windows\system32\drivers\uliahci.sys
22:18:01.0727 4124 uliahci - ok
22:18:01.0752 4124 [ 31707F09846056651EA2C37858F5DDB0 ] UlSata C:\Windows\system32\drivers\ulsata.sys
22:18:01.0756 4124 UlSata - ok
22:18:01.0781 4124 [ 85E5E43ED5B48C8376281BAB519271B7 ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
22:18:01.0784 4124 ulsata2 - ok
22:18:01.0821 4124 [ 46E9A994C4FED537DD951F60B86AD3F4 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
22:18:01.0823 4124 umbus - ok
22:18:01.0870 4124 [ 7093799FF80E9DECA0680D2E3535BE60 ] upnphost C:\Windows\System32\upnphost.dll
22:18:01.0876 4124 upnphost - ok
22:18:01.0928 4124 [ 07E3498FC60834219D2356293DA0FECC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
22:18:01.0931 4124 usbccgp - ok
22:18:01.0978 4124 [ 8C39D53E1A343F4C47EE8F3C052126D8 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
22:18:01.0980 4124 usbcir - ok
22:18:02.0002 4124 [ 827E44DE934A736EA31E91D353EB126F ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
22:18:02.0003 4124 usbehci - ok
22:18:02.0029 4124 [ BB35CD80A2ECECFADC73569B3D70C7D1 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
22:18:02.0034 4124 usbhub - ok
22:18:02.0076 4124 [ EBA14EF0C07CEC233F1529C698D0D154 ] usbohci C:\Windows\system32\drivers\usbohci.sys
22:18:02.0078 4124 usbohci - ok
22:18:02.0092 4124 [ ACFEE697AF477021BB3EC78C5431FED2 ] usbprint C:\Windows\system32\drivers\usbprint.sys
22:18:02.0093 4124 usbprint - ok
22:18:02.0123 4124 [ B854C1558FCA0C269A38663E8B59B581 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:18:02.0125 4124 USBSTOR - ok
22:18:02.0138 4124 [ B2872CBF9F47316ABD0E0C74A1ABA507 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
22:18:02.0139 4124 usbuhci - ok
22:18:02.0181 4124 [ D76E231E4850BB3F88A3D9A78DF191E3 ] UxSms C:\Windows\System32\uxsms.dll
22:18:02.0184 4124 UxSms - ok
22:18:02.0245 4124 [ 294945381DFA7CE58CECF0A9896AF327 ] vds C:\Windows\System32\vds.exe
22:18:02.0263 4124 vds - ok
22:18:02.0286 4124 [ 2998DC48905E9B4821AD8FD75B3E070C ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:18:02.0287 4124 vga - ok
22:18:02.0318 4124 [ B83AB16B51FEDA65DD81B8C59D114D63 ] VgaSave C:\Windows\System32\drivers\vga.sys
22:18:02.0320 4124 VgaSave - ok
22:18:02.0341 4124 [ F3491DA2A56EF91431312C78626BD103 ] viaide C:\Windows\system32\drivers\viaide.sys
22:18:02.0342 4124 viaide - ok
22:18:02.0373 4124 [ 2B7E885ED951519A12C450D24535DFCA ] volmgr C:\Windows\system32\drivers\volmgr.sys
22:18:02.0375 4124 volmgr - ok
22:18:02.0423 4124 [ CEC5AC15277D75D9E5DEC2E1C6EAF877 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:18:02.0429 4124 volmgrx - ok
22:18:02.0450 4124 [ 5280AADA24AB36B01A84A6424C475C8D ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:18:02.0455 4124 volsnap - ok
22:18:02.0482 4124 [ 410AE2C141142C58BC617FC2C677F8B0 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
22:18:02.0486 4124 vsmraid - ok
22:18:02.0530 4124 [ B75232DAD33BFD95BF6F0A3E6BFF51E1 ] VSS C:\Windows\system32\vssvc.exe
22:18:02.0565 4124 VSS - ok
22:18:02.0581 4124 [ F14A7DE2EA41883E250892E1E5230A9A ] W32Time C:\Windows\system32\w32time.dll
22:18:02.0590 4124 W32Time - ok
22:18:02.0617 4124 [ FEF8FE5923FEAD2CEE4DFABFCE3393A7 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
22:18:02.0618 4124 WacomPen - ok
22:18:02.0657 4124 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
22:18:02.0660 4124 Wanarp - ok
22:18:02.0664 4124 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:18:02.0665 4124 Wanarpv6 - ok
22:18:02.0682 4124 [ B4E4C37D0AA6100090A53213EE2BF1C1 ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:18:02.0699 4124 wcncsvc - ok
22:18:02.0721 4124 [ EA4B369560E986F19D93F45A881484AC ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:18:02.0724 4124 WcsPlugInService - ok
22:18:02.0743 4124 [ 59B501B0A04C9672142B7FFA2BDBF663 ] Wd C:\Windows\system32\drivers\wd.sys
22:18:02.0745 4124 Wd - ok
22:18:02.0800 4124 [ D02E7E4567DA1E7582FBF6A91144B0DF ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:18:02.0825 4124 Wdf01000 - ok
22:18:02.0836 4124 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:18:02.0838 4124 WdiServiceHost - ok
22:18:02.0842 4124 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:18:02.0844 4124 WdiSystemHost - ok
22:18:02.0863 4124 [ 3E6D05381CF35F75EBB055544A8ED9AC ] WebClient C:\Windows\System32\webclnt.dll
22:18:02.0867 4124 WebClient - ok
22:18:02.0893 4124 [ 8D40BC587993F876658BF9FB0F7D3462 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:18:02.0898 4124 Wecsvc - ok
22:18:02.0911 4124 [ 9C980351D7E96288EA0C23AE232BD065 ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:18:02.0915 4124 wercplsupport - ok
22:18:02.0925 4124 [ 66B9ECEBC46683F47EDC06333C075FEF ] WerSvc C:\Windows\System32\WerSvc.dll
22:18:02.0929 4124 WerSvc - ok
22:18:02.0963 4124 [ A53CDE6BEEA165FE9B430476EEDE3C54 ] winachsf C:\Windows\system32\DRIVERS\CAX_CNXT.sys
22:18:02.0982 4124 winachsf - ok
22:18:03.0006 4124 WinDefend - ok
22:18:03.0012 4124 WinHttpAutoProxySvc - ok
22:18:03.0077 4124 [ D2E7296ED1BD26D8DB2799770C077A02 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:18:03.0081 4124 Winmgmt - ok
22:18:03.0156 4124 [ 6CBB0C68F13B9C2EC1B16F5FA5E7C869 ] WinRM C:\Windows\system32\WsmSvc.dll
22:18:03.0223 4124 WinRM - ok
22:18:03.0281 4124 [ EC339C8115E91BAED835957E9A677F16 ] Wlansvc C:\Windows\System32\wlansvc.dll
22:18:03.0298 4124 Wlansvc - ok
22:18:03.0330 4124 [ AE34218455D5DC12D1E45DE85F160346 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
22:18:03.0331 4124 WmiAcpi - ok
22:18:03.0373 4124 [ 21FA389E65A852698B6A1341F36EE02D ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:18:03.0377 4124 wmiApSrv - ok
22:18:03.0387 4124 WMPNetworkSvc - ok
22:18:03.0424 4124 [ CBC156C913F099E6680D1DF9307DB7A8 ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:18:03.0429 4124 WPCSvc - ok
22:18:03.0484 4124 [ 490A18B4E4D53DC10879DEAA8E8B70D9 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:18:03.0488 4124 WPDBusEnum - ok
22:18:03.0600 4124 [ 991E2C2CF3BC204C2BB2EE1476149E4E ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
22:18:03.0618 4124 WPFFontCache_v0400 - ok
22:18:03.0657 4124 [ 8A900348370E359B6BFF6A550E4649E1 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:18:03.0658 4124 ws2ifsl - ok
22:18:03.0696 4124 [ 9EA3E6D0EF7A5C2B9181961052A4B01A ] wscsvc C:\Windows\System32\wscsvc.dll
22:18:03.0699 4124 wscsvc - ok
22:18:03.0702 4124 WSearch - ok
22:18:03.0767 4124 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
22:18:03.0852 4124 wuauserv - ok
22:18:03.0891 4124 [ 501A65252617B495C0F1832F908D54D8 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
22:18:03.0894 4124 WUDFRd - ok
22:18:03.0932 4124 [ 6CBD51FF913C851D56ED9DC7F2A27DDE ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:18:03.0935 4124 wudfsvc - ok
22:18:03.0942 4124 [ F22E443518BC599D12888DAF292A56D8 ] XAudio C:\Windows\system32\DRIVERS\xaudio64.sys
22:18:03.0942 4124 XAudio - ok
22:18:03.0963 4124 [ 963C27034BBA4AC52A13F7A3C657C708 ] XAudioService C:\Windows\system32\DRIVERS\xaudio64.exe
22:18:03.0970 4124 XAudioService - ok
22:18:04.0012 4124 [ B31D79AB5BCCDA9C570504A603EB855B ] {22D78859-9CE9-4B77-BF18-AC83E81A9263} C:\Program Files (x86)\HP\DVDPlay\000.fcl
22:18:04.0013 4124 {22D78859-9CE9-4B77-BF18-AC83E81A9263} - ok
22:18:04.0032 4124 ================ Scan global ===============================
22:18:04.0075 4124 [ 060DC3A7A9A2626031EB23D90151428D ] C:\Windows\system32\basesrv.dll
22:18:04.0132 4124 [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\system32\winsrv.dll
22:18:04.0146 4124 [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\system32\winsrv.dll
22:18:04.0194 4124 [ 934E0B7D77FF78C18D9F8891221B6DE3 ] C:\Windows\system32\services.exe
22:18:04.0202 4124 [Global] - ok
22:18:04.0202 4124 ================ Scan MBR ==================================
22:18:04.0211 4124 [ 81CD5EC01DB0CE57EDD853F82462EF27 ] \Device\Harddisk0\DR0
22:18:04.0445 4124 \Device\Harddisk0\DR0 - ok
22:18:04.0448 4124 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
22:18:04.0523 4124 \Device\Harddisk1\DR1 - ok
22:18:04.0523 4124 ================ Scan VBR ==================================
22:18:04.0526 4124 [ 60579DEECD0E30B8BBFCFF6014E83C78 ] \Device\Harddisk0\DR0\Partition1
22:18:04.0527 4124 \Device\Harddisk0\DR0\Partition1 - ok
22:18:04.0532 4124 [ F6FDAA64091BEC883FBFE5F7B1A198C3 ] \Device\Harddisk0\DR0\Partition2
22:18:04.0533 4124 \Device\Harddisk0\DR0\Partition2 - ok
22:18:04.0535 4124 ============================================================
22:18:04.0535 4124 Scan finished
22:18:04.0535 4124 ============================================================
22:18:04.0543 4308 Detected object count: 0
22:18:04.0543 4308 Actual detected object count: 0

#6 boopme

boopme

    To Insanity and Beyond


  • Avatar image
  • Helper Emeritus
  • 85,296 posts
  • OFFLINE
    •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:04 PM

Posted 31 August 2012 - 10:50 AM

Hello

Your HOSTS file may be infected.
Reset the HOSTS file
As this infection also changes your Windows HOSTS file, we want to replace this file with the default version for your operating system.
Some types of malware will alter the HOSTS file as part of its infection. Please follow the instructions provided in How do I reset the hosts file back to the default?

To reset the hosts file automatically,go HERE click the Posted Image button. Then just follow the prompts in the Fix it wizard.


OR
Click Run in the File Download dialog box or save MicrosoftFixit50267.msi to your Desktop and double-click on it to run. Then just follow the prompts in the Fix it wizard.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 JauneSinge

JauneSinge
  • Topic Starter

  • Avatar image
  • Members
  • 5 posts
  • OFFLINE
    •  
  • Local time:09:04 PM

Posted 31 August 2012 - 12:49 PM

Thanks for the response.

I did the automated fix of "Microsoft Fix it" and restarted the computer but alas I still have the ads on my browser.

#8 boopme

boopme

    To Insanity and Beyond


  • Avatar image
  • Helper Emeritus
  • 85,296 posts
  • OFFLINE
    •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:04 PM

Posted 31 August 2012 - 01:00 PM

Then there is a protected malware and to get it we need a deeper look. Please go here....Preparation Guide ,do steps 6-9.

Create a DDS log and post it in the new topic explained in step 9 which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.
If GMER won't run (it may not on a 64 bit system) skip it and move on.

Let me know if that went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook
Back to Am I infected? What do I do?


1 user(s) are reading this topic

0 members, 1 guests, 0 anonymous users


  1. BleepingComputer Forums
  2. Security
  3. Am I infected? What do I do?
  4. Privacy Policy
  5. Rules ·