Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Kids Infected My Laptop - Website Redirect


  • Please log in to reply
15 replies to this topic

#1 tmoney662

tmoney662

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:13 PM

Posted 08 September 2012 - 08:21 AM

Hello there,
Seems my laptop (windows 7, 32 bit) has been infected with some type of malware that redirects web search links. This does not happen every lnk I clink, but maybe around 25% or so (One site that I get redirected to is "looksmart"). I had Trend Titanium installed, obviously that didn't work! My kids are always downloading photos from the internet, perhaps that is how I was infected, but not really sure.
I ran Malwarebytes, it found a few things that I removed, but the problem still exists. I just installed Microsoft Security Essentials as well, but that did not help either.

I also ran and hav the DDS and GMER logs, should I post them here?

Thanks in Advance!

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:13 PM

Posted 08 September 2012 - 08:26 AM

DDS and GMER logs are not needed here


Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 tmoney662

tmoney662
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:13 PM

Posted 08 September 2012 - 04:52 PM

Thanks for the reply.

Here's the TDSS Report:

12:44:03.0888 2244 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
12:44:04.0303 2244 ============================================================
12:44:04.0303 2244 Current date / time: 2012/09/08 12:44:04.0303
12:44:04.0303 2244 SystemInfo:
12:44:04.0303 2244
12:44:04.0304 2244 OS Version: 6.1.7600 ServicePack: 0.0
12:44:04.0304 2244 Product type: Workstation
12:44:04.0304 2244 ComputerName: HPLAPTOP
12:44:04.0304 2244 UserName: Travis
12:44:04.0304 2244 Windows directory: C:\Windows
12:44:04.0304 2244 System windows directory: C:\Windows
12:44:04.0305 2244 Processor architecture: Intel x86
12:44:04.0306 2244 Number of processors: 2
12:44:04.0306 2244 Page size: 0x1000
12:44:04.0306 2244 Boot type: Normal boot
12:44:04.0306 2244 ============================================================
12:44:07.0493 2244 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
12:44:07.0892 2244 ============================================================
12:44:07.0892 2244 \Device\Harddisk0\DR0:
12:44:07.0892 2244 MBR partitions:
12:44:07.0892 2244 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x23E68FC1
12:44:07.0893 2244 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x23E69000, BlocksNum 0x15C4000
12:44:07.0893 2244 ============================================================
12:44:07.0895 2244 C: <-> \Device\Harddisk0\DR0\Partition1
12:44:07.0973 2244 D: <-> \Device\Harddisk0\DR0\Partition2
12:44:07.0973 2244 ============================================================
12:44:07.0973 2244 Initialize success
12:44:07.0973 2244 ============================================================
12:44:14.0395 3592 ============================================================
12:44:14.0395 3592 Scan started
12:44:14.0395 3592 Mode: Manual;
12:44:14.0395 3592 ============================================================
12:44:15.0160 3592 ================ Scan system memory ========================
12:44:15.0160 3592 System memory - ok
12:44:15.0160 3592 ================ Scan services =============================
12:44:15.0355 3592 [ 6D2ACA41739BFE8CB86EE8E85F29697D ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
12:44:15.0358 3592 1394ohci - ok
12:44:15.0385 3592 [ F0E07D144C8685B8774BC32FC8DA4DF0 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
12:44:15.0387 3592 ACPI - ok
12:44:15.0411 3592 [ 98D81CA942D19F7D9153B095162AC013 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
12:44:15.0412 3592 AcpiPmi - ok
12:44:15.0545 3592 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
12:44:15.0547 3592 AdobeARMservice - ok
12:44:15.0672 3592 [ 0D4C486A24A711A45FD83ACDF4D18506 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
12:44:15.0674 3592 AdobeFlashPlayerUpdateSvc - ok
12:44:15.0723 3592 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
12:44:15.0729 3592 adp94xx - ok
12:44:15.0739 3592 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
12:44:15.0743 3592 adpahci - ok
12:44:15.0775 3592 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
12:44:15.0778 3592 adpu320 - ok
12:44:15.0819 3592 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
12:44:15.0820 3592 AeLookupSvc - ok
12:44:15.0851 3592 [ DDC040FDB01EF1712A6B13E52AFB104C ] AFD C:\Windows\system32\drivers\afd.sys
12:44:15.0853 3592 AFD - ok
12:44:15.0877 3592 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
12:44:15.0879 3592 agp440 - ok
12:44:15.0935 3592 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
12:44:15.0936 3592 aic78xx - ok
12:44:15.0976 3592 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
12:44:15.0977 3592 ALG - ok
12:44:16.0003 3592 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
12:44:16.0004 3592 aliide - ok
12:44:16.0028 3592 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\DRIVERS\amdagp.sys
12:44:16.0029 3592 amdagp - ok
12:44:16.0035 3592 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\DRIVERS\amdide.sys
12:44:16.0036 3592 amdide - ok
12:44:16.0054 3592 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
12:44:16.0056 3592 AmdK8 - ok
12:44:16.0070 3592 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
12:44:16.0072 3592 AmdPPM - ok
12:44:16.0079 3592 [ 2101A86C25C154F8314B24EF49D7FBC2 ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys
12:44:16.0081 3592 amdsata - ok
12:44:16.0108 3592 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
12:44:16.0111 3592 amdsbs - ok
12:44:16.0123 3592 [ B81C2B5616F6420A9941EA093A92B150 ] amdxata C:\Windows\system32\DRIVERS\amdxata.sys
12:44:16.0123 3592 amdxata - ok
12:44:16.0158 3592 [ FEB834C02CE1E84B6A38F953CA067706 ] AppID C:\Windows\system32\drivers\appid.sys
12:44:16.0159 3592 AppID - ok
12:44:16.0188 3592 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
12:44:16.0188 3592 AppIDSvc - ok
12:44:16.0208 3592 [ 7DEAD9E3F65DCB2794F2711003BBF650 ] Appinfo C:\Windows\System32\appinfo.dll
12:44:16.0209 3592 Appinfo - ok
12:44:16.0256 3592 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
12:44:16.0258 3592 AppMgmt - ok
12:44:16.0265 3592 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
12:44:16.0267 3592 arc - ok
12:44:16.0289 3592 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
12:44:16.0291 3592 arcsas - ok
12:44:16.0326 3592 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
12:44:16.0327 3592 AsyncMac - ok
12:44:16.0350 3592 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\DRIVERS\atapi.sys
12:44:16.0351 3592 atapi - ok
12:44:16.0436 3592 [ 614A60AEE03A6151FDCBAC295854A9CB ] athr C:\Windows\system32\DRIVERS\athr.sys
12:44:16.0444 3592 athr - ok
12:44:16.0486 3592 [ 510C873BFA135AA829F4180352772734 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:44:16.0490 3592 AudioEndpointBuilder - ok
12:44:16.0508 3592 [ 510C873BFA135AA829F4180352772734 ] Audiosrv C:\Windows\System32\Audiosrv.dll
12:44:16.0512 3592 Audiosrv - ok
12:44:16.0550 3592 [ DD6A431B43E34B91A767D1CE33728175 ] AxInstSV C:\Windows\System32\AxInstSV.dll
12:44:16.0551 3592 AxInstSV - ok
12:44:16.0612 3592 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
12:44:16.0618 3592 b06bdrv - ok
12:44:16.0659 3592 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
12:44:16.0663 3592 b57nd60x - ok
12:44:16.0703 3592 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
12:44:16.0705 3592 BDESVC - ok
12:44:16.0732 3592 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
12:44:16.0733 3592 Beep - ok
12:44:16.0767 3592 [ 85AC71C045CEB054ED48A7841AAE0C11 ] BFE C:\Windows\System32\bfe.dll
12:44:16.0772 3592 BFE - ok
12:44:16.0823 3592 [ 53F476476F55A27F580661BDE09C4EC4 ] BITS C:\Windows\System32\qmgr.dll
12:44:16.0840 3592 BITS - ok
12:44:16.0856 3592 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
12:44:16.0857 3592 blbdrive - ok
12:44:16.0875 3592 [ FCAFAEF6798D7B51FF029F99A9898961 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
12:44:16.0876 3592 bowser - ok
12:44:16.0901 3592 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
12:44:16.0903 3592 BrFiltLo - ok
12:44:16.0915 3592 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
12:44:16.0916 3592 BrFiltUp - ok
12:44:16.0942 3592 [ 598E1280E7FF3744F4B8329366CC5635 ] Browser C:\Windows\System32\browser.dll
12:44:16.0944 3592 Browser - ok
12:44:16.0968 3592 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
12:44:16.0973 3592 Brserid - ok
12:44:16.0993 3592 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
12:44:16.0995 3592 BrSerWdm - ok
12:44:17.0041 3592 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
12:44:17.0043 3592 BrUsbMdm - ok
12:44:17.0062 3592 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
12:44:17.0063 3592 BrUsbSer - ok
12:44:17.0085 3592 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
12:44:17.0087 3592 BTHMODEM - ok
12:44:17.0137 3592 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
12:44:17.0138 3592 bthserv - ok
12:44:17.0172 3592 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
12:44:17.0174 3592 cdfs - ok
12:44:17.0212 3592 [ BA6E70AA0E6091BC39DE29477D866A77 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
12:44:17.0214 3592 cdrom - ok
12:44:17.0265 3592 [ 628A9E30EC5E18DD5DE6BE4DBDC12198 ] CertPropSvc C:\Windows\System32\certprop.dll
12:44:17.0267 3592 CertPropSvc - ok
12:44:17.0291 3592 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
12:44:17.0292 3592 circlass - ok
12:44:17.0326 3592 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
12:44:17.0328 3592 CLFS - ok
12:44:17.0427 3592 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:44:17.0429 3592 clr_optimization_v2.0.50727_32 - ok
12:44:17.0447 3592 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
12:44:17.0448 3592 CmBatt - ok
12:44:17.0479 3592 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
12:44:17.0480 3592 cmdide - ok
12:44:17.0507 3592 [ 1B675691ED940766149C93E8F4488D68 ] CNG C:\Windows\system32\Drivers\cng.sys
12:44:17.0510 3592 CNG - ok
12:44:17.0544 3592 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
12:44:17.0544 3592 Compbatt - ok
12:44:17.0565 3592 [ F1724BA27E97D627F808FB0BA77A28A6 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
12:44:17.0565 3592 CompositeBus - ok
12:44:17.0582 3592 COMSysApp - ok
12:44:17.0608 3592 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
12:44:17.0610 3592 crcdisk - ok
12:44:17.0671 3592 [ 9C231178CE4FB385F4B54B0A9080B8A4 ] CryptSvc C:\Windows\system32\cryptsvc.dll
12:44:17.0673 3592 CryptSvc - ok
12:44:17.0717 3592 [ 27C9490BDD0AE48911AB8CF1932591ED ] CSC C:\Windows\system32\drivers\csc.sys
12:44:17.0719 3592 CSC - ok
12:44:17.0745 3592 [ 56FB5F222EA30D3D3FC459879772CB73 ] CscService C:\Windows\System32\cscsvc.dll
12:44:17.0749 3592 CscService - ok
12:44:17.0803 3592 [ B82CD39E336973359D7C9BF911E8E84F ] DcomLaunch C:\Windows\system32\rpcss.dll
12:44:17.0807 3592 DcomLaunch - ok
12:44:17.0849 3592 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
12:44:17.0851 3592 defragsvc - ok
12:44:17.0876 3592 [ 8E09E52EE2E3CEB199EF3DD99CF9E3FB ] DfsC C:\Windows\system32\Drivers\dfsc.sys
12:44:17.0877 3592 DfsC - ok
12:44:17.0912 3592 [ C56495FBD770712367CAD35E5DE72DA6 ] Dhcp C:\Windows\system32\dhcpcore.dll
12:44:17.0915 3592 Dhcp - ok
12:44:17.0963 3592 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
12:44:17.0964 3592 discache - ok
12:44:17.0994 3592 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
12:44:17.0995 3592 Disk - ok
12:44:18.0037 3592 [ D0722E963D3C6145446874241401B209 ] Dnscache C:\Windows\System32\dnsrslvr.dll
12:44:18.0039 3592 Dnscache - ok
12:44:18.0064 3592 [ 4408C85C21EEA48EB0CE486BAEEF0502 ] dot3svc C:\Windows\System32\dot3svc.dll
12:44:18.0068 3592 dot3svc - ok
12:44:18.0122 3592 [ 7FA81C6E11CAA594ADB52084DA73A1E5 ] DPS C:\Windows\system32\dps.dll
12:44:18.0124 3592 DPS - ok
12:44:18.0171 3592 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
12:44:18.0172 3592 drmkaud - ok
12:44:18.0229 3592 [ C94B6C3CC628179CB9B9061C19888B99 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
12:44:18.0234 3592 DXGKrnl - ok
12:44:18.0271 3592 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
12:44:18.0274 3592 EapHost - ok
12:44:18.0373 3592 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
12:44:18.0456 3592 ebdrv - ok
12:44:18.0493 3592 [ F42309C4191C506B71DB5D1126D26318 ] EFS C:\Windows\System32\lsass.exe
12:44:18.0496 3592 EFS - ok
12:44:18.0569 3592 [ 3A74A6E33685662B125A3269B1F2114F ] ehRecvr C:\Windows\ehome\ehRecvr.exe
12:44:18.0585 3592 ehRecvr - ok
12:44:18.0612 3592 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
12:44:18.0613 3592 ehSched - ok
12:44:18.0647 3592 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
12:44:18.0653 3592 elxstor - ok
12:44:18.0669 3592 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
12:44:18.0670 3592 ErrDev - ok
12:44:18.0711 3592 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
12:44:18.0714 3592 EventSystem - ok
12:44:18.0754 3592 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
12:44:18.0757 3592 exfat - ok
12:44:18.0785 3592 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
12:44:18.0788 3592 fastfat - ok
12:44:18.0867 3592 [ F7EA23CC5E6BF2181F3F399D54F6EFC1 ] Fax C:\Windows\system32\fxssvc.exe
12:44:18.0874 3592 Fax - ok
12:44:18.0899 3592 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
12:44:18.0901 3592 fdc - ok
12:44:18.0946 3592 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
12:44:18.0947 3592 fdPHost - ok
12:44:18.0958 3592 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
12:44:18.0960 3592 FDResPub - ok
12:44:18.0969 3592 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
12:44:18.0970 3592 FileInfo - ok
12:44:18.0988 3592 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
12:44:18.0989 3592 Filetrace - ok
12:44:19.0028 3592 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
12:44:19.0029 3592 flpydisk - ok
12:44:19.0068 3592 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
12:44:19.0070 3592 FltMgr - ok
12:44:19.0139 3592 [ 151258FC2EC8C48BDF8A53350AE0A676 ] FontCache C:\Windows\system32\FntCache.dll
12:44:19.0168 3592 FontCache - ok
12:44:19.0226 3592 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
12:44:19.0227 3592 FontCache3.0.0.0 - ok
12:44:19.0245 3592 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
12:44:19.0247 3592 FsDepends - ok
12:44:19.0262 3592 [ A574B4360E438977038AAE4BF60D79A2 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
12:44:19.0263 3592 Fs_Rec - ok
12:44:19.0285 3592 [ 5592F5DBA26282D24D2B080EB438A4D7 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
12:44:19.0286 3592 fvevol - ok
12:44:19.0308 3592 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
12:44:19.0309 3592 gagp30kx - ok
12:44:19.0367 3592 [ 8BA3C04702BF8F927AB36AE8313CA4EE ] gpsvc C:\Windows\System32\gpsvc.dll
12:44:19.0384 3592 gpsvc - ok
12:44:19.0409 3592 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
12:44:19.0410 3592 hcw85cir - ok
12:44:19.0478 3592 [ 3530CAD25DEBA7DC7DE8BB51632CBC5F ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:44:19.0481 3592 HdAudAddService - ok
12:44:19.0508 3592 [ 717A2207FD6F13AD3E664C7D5A43C7BF ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
12:44:19.0509 3592 HDAudBus - ok
12:44:19.0533 3592 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
12:44:19.0534 3592 HidBatt - ok
12:44:19.0557 3592 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
12:44:19.0559 3592 HidBth - ok
12:44:19.0573 3592 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
12:44:19.0574 3592 HidIr - ok
12:44:19.0598 3592 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
12:44:19.0600 3592 hidserv - ok
12:44:19.0630 3592 [ 25072FB35AC90B25F9E4E3BACF774102 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
12:44:19.0631 3592 HidUsb - ok
12:44:19.0672 3592 [ 741C2A45CA8407E374AABA3E330B7872 ] hkmsvc C:\Windows\system32\kmsvc.dll
12:44:19.0674 3592 hkmsvc - ok
12:44:19.0699 3592 [ A768CA158BB06782A2835B907F4873C3 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:44:19.0701 3592 HomeGroupListener - ok
12:44:19.0747 3592 [ FB08DEC5EF43D0C66D83B8E9694E7549 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:44:19.0751 3592 HomeGroupProvider - ok
12:44:19.0780 3592 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
12:44:19.0781 3592 HpSAMD - ok
12:44:19.0839 3592 [ C531C7FD9E8B62021112787C4E2C5A5A ] HTTP C:\Windows\system32\drivers\HTTP.sys
12:44:19.0843 3592 HTTP - ok
12:44:19.0876 3592 [ 8305F33CDE89AD6C7A0763ED0B5A8D42 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
12:44:19.0876 3592 hwpolicy - ok
12:44:20.0009 3592 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
12:44:20.0010 3592 i8042prt - ok
12:44:20.0075 3592 [ 934AF4D7C5F457B9F0743F4299B77B67 ] iaStorV C:\Windows\system32\DRIVERS\iaStorV.sys
12:44:20.0080 3592 iaStorV - ok
12:44:20.0174 3592 [ 5AF815EB5BC9802E5A064E2BA62BFC0C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:44:20.0195 3592 idsvc - ok
12:44:20.0365 3592 [ AD626F6964F4D364D226C39E06872DD3 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
12:44:20.0398 3592 igfx - ok
12:44:20.0406 3592 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
12:44:20.0408 3592 iirsp - ok
12:44:20.0462 3592 [ FAC0EE6562B121B1399D6E855583F7A5 ] IKEEXT C:\Windows\System32\ikeext.dll
12:44:20.0478 3592 IKEEXT - ok
12:44:20.0487 3592 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\DRIVERS\intelide.sys
12:44:20.0488 3592 intelide - ok
12:44:20.0513 3592 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
12:44:20.0514 3592 intelppm - ok
12:44:20.0533 3592 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
12:44:20.0536 3592 IPBusEnum - ok
12:44:20.0556 3592 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:44:20.0558 3592 IpFilterDriver - ok
12:44:20.0590 3592 [ 477397B432A256A50EE7E4339EB9EA14 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
12:44:20.0595 3592 iphlpsvc - ok
12:44:20.0615 3592 [ E4454B6C37D7FFD5649611F6496308A7 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
12:44:20.0617 3592 IPMIDRV - ok
12:44:20.0638 3592 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
12:44:20.0640 3592 IPNAT - ok
12:44:20.0673 3592 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
12:44:20.0675 3592 IRENUM - ok
12:44:20.0682 3592 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
12:44:20.0683 3592 isapnp - ok
12:44:20.0722 3592 [ ED46C223AE46C6866AB77CDC41C404B7 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
12:44:20.0726 3592 iScsiPrt - ok
12:44:20.0764 3592 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
12:44:20.0765 3592 kbdclass - ok
12:44:20.0782 3592 [ 3D9F0EBF350EDCFD6498057301455964 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
12:44:20.0783 3592 kbdhid - ok
12:44:20.0795 3592 [ F42309C4191C506B71DB5D1126D26318 ] KeyIso C:\Windows\system32\lsass.exe
12:44:20.0797 3592 KeyIso - ok
12:44:20.0815 3592 [ E36A061EC11B373826905B21BE10948F ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
12:44:20.0816 3592 KSecDD - ok
12:44:20.0832 3592 [ 26C046977E85B95036453D7B88BA1820 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
12:44:20.0834 3592 KSecPkg - ok
12:44:20.0875 3592 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
12:44:20.0881 3592 KtmRm - ok
12:44:20.0928 3592 [ BCA92CB047A4326925ECEF759DBAA233 ] LanmanServer C:\Windows\system32\srvsvc.dll
12:44:20.0933 3592 LanmanServer - ok
12:44:20.0976 3592 [ B9891F885DCF1F0513A51CB58493CB1F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:44:20.0981 3592 LanmanWorkstation - ok
12:44:21.0007 3592 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
12:44:21.0008 3592 lltdio - ok
12:44:21.0051 3592 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
12:44:21.0054 3592 lltdsvc - ok
12:44:21.0077 3592 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
12:44:21.0079 3592 lmhosts - ok
12:44:21.0111 3592 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
12:44:21.0113 3592 LSI_FC - ok
12:44:21.0121 3592 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
12:44:21.0123 3592 LSI_SAS - ok
12:44:21.0129 3592 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
12:44:21.0132 3592 LSI_SAS2 - ok
12:44:21.0139 3592 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
12:44:21.0142 3592 LSI_SCSI - ok
12:44:21.0180 3592 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
12:44:21.0181 3592 luafv - ok
12:44:21.0218 3592 [ E2B0887816ED336685954E3D8FDAA51D ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
12:44:21.0220 3592 Mcx2Svc - ok
12:44:21.0226 3592 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
12:44:21.0228 3592 megasas - ok
12:44:21.0276 3592 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
12:44:21.0280 3592 MegaSR - ok
12:44:21.0367 3592 [ FAFE367D032ED82E9332B4C741A20216 ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
12:44:21.0369 3592 Microsoft Office Groove Audit Service - ok
12:44:21.0409 3592 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
12:44:21.0411 3592 MMCSS - ok
12:44:21.0470 3592 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
12:44:21.0471 3592 Modem - ok
12:44:21.0502 3592 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
12:44:21.0503 3592 monitor - ok
12:44:21.0525 3592 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
12:44:21.0526 3592 mouclass - ok
12:44:21.0547 3592 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
12:44:21.0548 3592 mouhid - ok
12:44:21.0566 3592 [ 921C18727C5920D6C0300736646931C2 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
12:44:21.0567 3592 mountmgr - ok
12:44:21.0661 3592 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
12:44:21.0663 3592 MozillaMaintenance - ok
12:44:21.0735 3592 [ D993BEA500E7382DC4E760BF4F35EFCB ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
12:44:21.0737 3592 MpFilter - ok
12:44:21.0778 3592 [ 2AF5997438C55FB79D33D015C30E1974 ] mpio C:\Windows\system32\DRIVERS\mpio.sys
12:44:21.0781 3592 mpio - ok
12:44:21.0970 3592 [ A69630D039C38018689190234F866D77 ] MpKsleeb39f12 c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{019C45C1-3738-493D-BF67-2431CC9ED700}\MpKsleeb39f12.sys
12:44:21.0971 3592 MpKsleeb39f12 - ok
12:44:21.0987 3592 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
12:44:21.0988 3592 mpsdrv - ok
12:44:22.0043 3592 [ 5CD996CECF45CBC3E8D109C86B82D69E ] MpsSvc C:\Windows\system32\mpssvc.dll
12:44:22.0048 3592 MpsSvc - ok
12:44:22.0069 3592 [ B1BE47008D20E43DA3ADC37C24CDB89D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
12:44:22.0071 3592 MRxDAV - ok
12:44:22.0103 3592 [ F4A054BE78AF7F410129C4B64B07DC9B ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
12:44:22.0104 3592 mrxsmb - ok
12:44:22.0124 3592 [ DEFFA295BD1895C6ED8E3078412AC60B ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:44:22.0126 3592 mrxsmb10 - ok
12:44:22.0141 3592 [ 24D76ABE5DCAD22F19D105F76FDF0CE1 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:44:22.0142 3592 mrxsmb20 - ok
12:44:22.0153 3592 [ 4326D168944123F38DD3B2D9C37A0B12 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
12:44:22.0153 3592 msahci - ok
12:44:22.0180 3592 [ 455029C7174A2DBB03DBA8A0D8BDDD9A ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
12:44:22.0183 3592 msdsm - ok
12:44:22.0213 3592 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
12:44:22.0217 3592 MSDTC - ok
12:44:22.0240 3592 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
12:44:22.0240 3592 Msfs - ok
12:44:22.0255 3592 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
12:44:22.0256 3592 mshidkmdf - ok
12:44:22.0276 3592 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
12:44:22.0277 3592 msisadrv - ok
12:44:22.0325 3592 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
12:44:22.0328 3592 MSiSCSI - ok
12:44:22.0334 3592 msiserver - ok
12:44:22.0389 3592 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
12:44:22.0390 3592 MSKSSRV - ok
12:44:22.0519 3592 [ 24516BF4E12A46CB67302E2CDCB8CDDF ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
12:44:22.0520 3592 MsMpSvc - ok
12:44:22.0580 3592 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
12:44:22.0581 3592 MSPCLOCK - ok
12:44:22.0611 3592 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
12:44:22.0612 3592 MSPQM - ok
12:44:22.0638 3592 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
12:44:22.0639 3592 MsRPC - ok
12:44:22.0655 3592 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
12:44:22.0656 3592 mssmbios - ok
12:44:22.0677 3592 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
12:44:22.0679 3592 MSTEE - ok
12:44:22.0700 3592 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
12:44:22.0701 3592 MTConfig - ok
12:44:22.0720 3592 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
12:44:22.0721 3592 Mup - ok
12:44:22.0770 3592 [ 80284F1985C70C86F0B5F86DA2DFE1DF ] napagent C:\Windows\system32\qagentRT.dll
12:44:22.0776 3592 napagent - ok
12:44:22.0844 3592 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
12:44:22.0846 3592 NativeWifiP - ok
12:44:22.0890 3592 [ 23759D175A0A9BAAF04D05047BC135A8 ] NDIS C:\Windows\system32\drivers\ndis.sys
12:44:22.0896 3592 NDIS - ok
12:44:22.0915 3592 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
12:44:22.0917 3592 NdisCap - ok
12:44:22.0946 3592 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
12:44:22.0947 3592 NdisTapi - ok
12:44:22.0963 3592 [ B30AE7F2B6D7E343B0DF32E6C08FCE75 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
12:44:22.0964 3592 Ndisuio - ok
12:44:22.0977 3592 [ 267C415EADCBE53C9CA873DEE39CF3A4 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
12:44:22.0979 3592 NdisWan - ok
12:44:22.0995 3592 [ AF7E7C63DCEF3F8772726F86039D6EB4 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
12:44:22.0996 3592 NDProxy - ok
12:44:23.0041 3592 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
12:44:23.0042 3592 NetBIOS - ok
12:44:23.0056 3592 [ DD52A733BF4CA5AF84562A5E2F963B91 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
12:44:23.0057 3592 NetBT - ok
12:44:23.0074 3592 [ F42309C4191C506B71DB5D1126D26318 ] Netlogon C:\Windows\system32\lsass.exe
12:44:23.0076 3592 Netlogon - ok
12:44:23.0136 3592 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
12:44:23.0139 3592 Netman - ok
12:44:23.0150 3592 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
12:44:23.0154 3592 netprofm - ok
12:44:23.0193 3592 [ FE2AA5A684B0DD9B1FAE57B7817C198B ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
12:44:23.0196 3592 NetTcpPortSharing - ok
12:44:23.0259 3592 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
12:44:23.0261 3592 nfrd960 - ok
12:44:23.0322 3592 [ B52F26BADE7D7E4A79706E3FD91834CD ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
12:44:23.0323 3592 NisDrv - ok
12:44:23.0378 3592 [ 290C0D4C4889398797F8DF3BE00B9698 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
12:44:23.0381 3592 NisSrv - ok
12:44:23.0418 3592 [ 2226496E34BD40734946A054B1CD657F ] NlaSvc C:\Windows\System32\nlasvc.dll
12:44:23.0422 3592 NlaSvc - ok
12:44:23.0433 3592 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
12:44:23.0434 3592 Npfs - ok
12:44:23.0469 3592 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
12:44:23.0471 3592 nsi - ok
12:44:23.0486 3592 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
12:44:23.0486 3592 nsiproxy - ok
12:44:23.0537 3592 [ 3795DCD21F740EE799FB7223234215AF ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
12:44:23.0546 3592 Ntfs - ok
12:44:23.0565 3592 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
12:44:23.0565 3592 Null - ok
12:44:23.0596 3592 [ 3F3D04B1D08D43C16EA7963954EC768D ] nvraid C:\Windows\system32\DRIVERS\nvraid.sys
12:44:23.0599 3592 nvraid - ok
12:44:23.0606 3592 [ C99F251A5DE63C6F129CF71933ACED0F ] nvstor C:\Windows\system32\DRIVERS\nvstor.sys
12:44:23.0609 3592 nvstor - ok
12:44:23.0655 3592 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
12:44:23.0657 3592 nv_agp - ok
12:44:23.0746 3592 [ 84DE1DD996B48B05ACE31AD015FA108A ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
12:44:23.0753 3592 odserv - ok
12:44:23.0793 3592 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
12:44:23.0795 3592 ohci1394 - ok
12:44:23.0863 3592 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:44:23.0865 3592 ose - ok
12:44:23.0913 3592 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
12:44:23.0920 3592 p2pimsvc - ok
12:44:23.0972 3592 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
12:44:23.0977 3592 p2psvc - ok
12:44:23.0995 3592 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
12:44:23.0997 3592 Parport - ok
12:44:24.0014 3592 [ FF4218952B51DE44FE910953A3E686B9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
12:44:24.0015 3592 partmgr - ok
12:44:24.0036 3592 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
12:44:24.0037 3592 Parvdm - ok
12:44:24.0058 3592 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
12:44:24.0062 3592 PcaSvc - ok
12:44:24.0074 3592 [ C858CB77C577780ECC456A892E7E7D0F ] pci C:\Windows\system32\DRIVERS\pci.sys
12:44:24.0076 3592 pci - ok
12:44:24.0099 3592 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\DRIVERS\pciide.sys
12:44:24.0101 3592 pciide - ok
12:44:24.0125 3592 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
12:44:24.0128 3592 pcmcia - ok
12:44:24.0151 3592 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
12:44:24.0152 3592 pcw - ok
12:44:24.0194 3592 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
12:44:24.0198 3592 PEAUTH - ok
12:44:24.0272 3592 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
12:44:24.0305 3592 PeerDistSvc - ok
12:44:24.0399 3592 [ 9C1BFF7910C89A1D12E57343475840CB ] pla C:\Windows\system32\pla.dll
12:44:24.0448 3592 pla - ok
12:44:24.0494 3592 [ 2CC2008F1296968FBA162ED9F9AFE328 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
12:44:24.0500 3592 PlugPlay - ok
12:44:24.0518 3592 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
12:44:24.0521 3592 PNRPAutoReg - ok
12:44:24.0548 3592 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
12:44:24.0552 3592 PNRPsvc - ok
12:44:24.0606 3592 [ 48E1B75C6DC0232FD92BAAE4BD344721 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
12:44:24.0612 3592 PolicyAgent - ok
12:44:24.0634 3592 [ DBFF83F709A91049621C1D35DD45C92C ] Power C:\Windows\system32\umpo.dll
12:44:24.0637 3592 Power - ok
12:44:24.0689 3592 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
12:44:24.0690 3592 PptpMiniport - ok
12:44:24.0710 3592 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
12:44:24.0711 3592 Processor - ok
12:44:24.0762 3592 [ 630CF26F0227498B7D5A92B12548960F ] ProfSvc C:\Windows\system32\profsvc.dll
12:44:24.0767 3592 ProfSvc - ok
12:44:24.0776 3592 [ F42309C4191C506B71DB5D1126D26318 ] ProtectedStorage C:\Windows\system32\lsass.exe
12:44:24.0778 3592 ProtectedStorage - ok
12:44:24.0802 3592 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
12:44:24.0803 3592 Psched - ok
12:44:24.0875 3592 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
12:44:24.0918 3592 ql2300 - ok
12:44:24.0928 3592 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
12:44:24.0930 3592 ql40xx - ok
12:44:24.0968 3592 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
12:44:24.0973 3592 QWAVE - ok
12:44:24.0993 3592 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
12:44:24.0993 3592 QWAVEdrv - ok
12:44:25.0015 3592 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
12:44:25.0016 3592 RasAcd - ok
12:44:25.0073 3592 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
12:44:25.0074 3592 RasAgileVpn - ok
12:44:25.0096 3592 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
12:44:25.0100 3592 RasAuto - ok
12:44:25.0120 3592 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
12:44:25.0121 3592 Rasl2tp - ok
12:44:25.0161 3592 [ 0CE66EC736B7FC526D78F7624C7D2A94 ] RasMan C:\Windows\System32\rasmans.dll
12:44:25.0167 3592 RasMan - ok
12:44:25.0184 3592 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
12:44:25.0185 3592 RasPppoe - ok
12:44:25.0233 3592 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
12:44:25.0234 3592 RasSstp - ok
12:44:25.0258 3592 [ 835D7E81BF517A3B72384BDCC85E1CE6 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
12:44:25.0260 3592 rdbss - ok
12:44:25.0280 3592 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
12:44:25.0281 3592 rdpbus - ok
12:44:25.0292 3592 [ 1E016846895B15A99F9A176A05029075 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
12:44:25.0292 3592 RDPCDD - ok
12:44:25.0337 3592 [ C5FF95883FFEF704D50C40D21CFB3AB5 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
12:44:25.0340 3592 RDPDR - ok
12:44:25.0372 3592 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
12:44:25.0372 3592 RDPENCDD - ok
12:44:25.0392 3592 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
12:44:25.0392 3592 RDPREFMP - ok
12:44:25.0429 3592 [ 801371BA9782282892D00AADB08EE367 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
12:44:25.0432 3592 RDPWD - ok
12:44:25.0457 3592 [ 4EA225BF1CF05E158853F30A99CA29A7 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
12:44:25.0459 3592 rdyboost - ok
12:44:25.0519 3592 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
12:44:25.0522 3592 RemoteAccess - ok
12:44:25.0559 3592 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
12:44:25.0563 3592 RemoteRegistry - ok
12:44:25.0593 3592 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
12:44:25.0596 3592 RpcEptMapper - ok
12:44:25.0643 3592 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
12:44:25.0644 3592 RpcLocator - ok
12:44:25.0664 3592 [ B82CD39E336973359D7C9BF911E8E84F ] RpcSs C:\Windows\system32\rpcss.dll
12:44:25.0669 3592 RpcSs - ok
12:44:25.0690 3592 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
12:44:25.0692 3592 rspndr - ok
12:44:25.0763 3592 [ 7DFD48E24479B68B258D8770121155A0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt86win7.sys
12:44:25.0764 3592 RTL8167 - ok
12:44:25.0795 3592 [ 5423D8437051E89DD34749F242C98648 ] s3cap C:\Windows\system32\DRIVERS\vms3cap.sys
12:44:25.0797 3592 s3cap - ok
12:44:25.0832 3592 [ F42309C4191C506B71DB5D1126D26318 ] SamSs C:\Windows\system32\lsass.exe
12:44:25.0834 3592 SamSs - ok
12:44:25.0885 3592 [ 2A54EFF79B03A8C2389F2BB0F2264F1E ] Samsung UPD Service2 C:\Windows\System32\SUPDSvc2.exe
12:44:25.0890 3592 Samsung UPD Service2 - ok
12:44:25.0904 3592 [ 34EE0C44B724E3E4CE2EFF29126DE5B5 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
12:44:25.0906 3592 sbp2port - ok
12:44:25.0951 3592 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
12:44:25.0956 3592 SCardSvr - ok
12:44:25.0993 3592 [ A95C54B2AC3CC9C73FCDF9E51A1D6B51 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
12:44:25.0994 3592 scfilter - ok
12:44:26.0023 3592 [ 3E8B0C453E25613A1F59762A5C42AA75 ] Schedule C:\Windows\system32\schedsvc.dll
12:44:26.0046 3592 Schedule - ok
12:44:26.0060 3592 [ 628A9E30EC5E18DD5DE6BE4DBDC12198 ] SCPolicySvc C:\Windows\System32\certprop.dll
12:44:26.0061 3592 SCPolicySvc - ok
12:44:26.0074 3592 [ 5FD90ABDBFAEE85986802622CBB03446 ] SDRSVC C:\Windows\System32\SDRSVC.dll
12:44:26.0079 3592 SDRSVC - ok
12:44:26.0099 3592 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
12:44:26.0099 3592 secdrv - ok
12:44:26.0122 3592 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
12:44:26.0125 3592 seclogon - ok
12:44:26.0154 3592 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
12:44:26.0157 3592 SENS - ok
12:44:26.0203 3592 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
12:44:26.0206 3592 SensrSvc - ok
12:44:26.0229 3592 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
12:44:26.0230 3592 Serenum - ok
12:44:26.0242 3592 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
12:44:26.0244 3592 Serial - ok
12:44:26.0271 3592 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
12:44:26.0272 3592 sermouse - ok
12:44:26.0330 3592 [ 8F55CE568C543D5ADF45C409D16718FC ] SessionEnv C:\Windows\system32\sessenv.dll
12:44:26.0334 3592 SessionEnv - ok
12:44:26.0358 3592 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
12:44:26.0360 3592 sffdisk - ok
12:44:26.0380 3592 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
12:44:26.0381 3592 sffp_mmc - ok
12:44:26.0398 3592 [ 4F1E5B0FE7C8050668DBFADE8999AEFB ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
12:44:26.0399 3592 sffp_sd - ok
12:44:26.0411 3592 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
12:44:26.0412 3592 sfloppy - ok
12:44:26.0450 3592 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
12:44:26.0453 3592 SharedAccess - ok
12:44:26.0482 3592 [ CD2E48FA5B29EE2B3B5858056D246EF2 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:44:26.0487 3592 ShellHWDetection - ok
12:44:26.0517 3592 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\DRIVERS\sisagp.sys
12:44:26.0519 3592 sisagp - ok
12:44:26.0561 3592 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
12:44:26.0562 3592 SiSRaid2 - ok
12:44:26.0568 3592 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
12:44:26.0571 3592 SiSRaid4 - ok
12:44:26.0724 3592 [ 753D254205E0A62100A050BD8B458D06 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
12:44:26.0791 3592 Skype C2C Service - ok
12:44:26.0842 3592 [ 68EA68D03BF58389FE6AD2B38FAD798C ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
12:44:26.0845 3592 SkypeUpdate - ok
12:44:26.0883 3592 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
12:44:26.0884 3592 Smb - ok
12:44:26.0926 3592 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
12:44:26.0929 3592 SNMPTRAP - ok
12:44:26.0947 3592 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
12:44:26.0948 3592 spldr - ok
12:44:26.0981 3592 [ 49B6DD6AB3715B7A67965F17194E98A9 ] Spooler C:\Windows\System32\spoolsv.exe
12:44:26.0987 3592 Spooler - ok
12:44:27.0072 3592 [ 4C287F9069FEDBD791178876EE9DE536 ] sppsvc C:\Windows\system32\sppsvc.exe
12:44:27.0151 3592 sppsvc - ok
12:44:27.0184 3592 [ D8E3E19EEBDAB49DD4A8D3062EAD4EC7 ] sppuinotify C:\Windows\system32\sppuinotify.dll
12:44:27.0188 3592 sppuinotify - ok
12:44:27.0238 3592 [ 2BA4EBC7DFBA845A1EDBE1F75913BE33 ] srv C:\Windows\system32\DRIVERS\srv.sys
12:44:27.0240 3592 srv - ok
12:44:27.0262 3592 [ DCE7E10FEAABD4CAE95948B3DE5340BB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
12:44:27.0265 3592 srv2 - ok
12:44:27.0320 3592 [ E00FDFAFF025E94F9821153750C35A6D ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL3.SYS
12:44:27.0322 3592 SrvHsfHDA - ok
12:44:27.0355 3592 [ CEB4E3B6890E1E42DCA6694D9E59E1A0 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV3.SYS
12:44:27.0362 3592 SrvHsfV92 - ok
12:44:27.0387 3592 [ BC0C7EA89194C299F051C24119000E17 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
12:44:27.0392 3592 SrvHsfWinac - ok
12:44:27.0406 3592 [ B5665BAA2120B8A54E22E9CD07C05106 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
12:44:27.0407 3592 srvnet - ok
12:44:27.0458 3592 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
12:44:27.0462 3592 SSDPSRV - ok
12:44:27.0536 3592 [ EF3458337D7341A05169CEFC73709264 ] SSPORT C:\Windows\system32\Drivers\SSPORT.sys
12:44:27.0536 3592 SSPORT - ok
12:44:27.0547 3592 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
12:44:27.0551 3592 SstpSvc - ok
12:44:27.0574 3592 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
12:44:27.0575 3592 stexstor - ok
12:44:27.0626 3592 [ EDB05BD63148796F23EA78506404A538 ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
12:44:27.0627 3592 StillCam - ok
12:44:27.0693 3592 [ A22825E7BB7018E8AF3E229A5AF17221 ] StiSvc C:\Windows\System32\wiaservc.dll
12:44:27.0712 3592 StiSvc - ok
12:44:27.0769 3592 [ 957E346CA948668F2496A6CCF6FF82CC ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
12:44:27.0770 3592 storflt - ok
12:44:27.0796 3592 [ D5751969DC3E4B88BF482AC8EC9FE019 ] storvsc C:\Windows\system32\DRIVERS\storvsc.sys
12:44:27.0797 3592 storvsc - ok
12:44:27.0844 3592 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
12:44:27.0845 3592 swenum - ok
12:44:27.0868 3592 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
12:44:27.0875 3592 swprv - ok
12:44:27.0921 3592 [ 04105C8DA62353589C29BDAEB8D88BD8 ] SysMain C:\Windows\system32\sysmain.dll
12:44:27.0955 3592 SysMain - ok
12:44:27.0999 3592 [ FCFB6C552FBC0DA299799CBD50AD9FD4 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:44:28.0002 3592 TabletInputService - ok
12:44:28.0033 3592 [ 2F46B0C70A4ADC8C90CF825DA3B4FEAF ] TapiSrv C:\Windows\System32\tapisrv.dll
12:44:28.0039 3592 TapiSrv - ok
12:44:28.0061 3592 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
12:44:28.0064 3592 TBS - ok
12:44:28.0137 3592 [ 63170B9EE1D0EF0032F0408605671D1A ] Tcpip C:\Windows\system32\drivers\tcpip.sys
12:44:28.0145 3592 Tcpip - ok
12:44:28.0237 3592 [ 63170B9EE1D0EF0032F0408605671D1A ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
12:44:28.0245 3592 TCPIP6 - ok
12:44:28.0294 3592 [ E64444523ADD154F86567C469BC0B17F ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
12:44:28.0295 3592 tcpipreg - ok
12:44:28.0323 3592 [ 1875C1490D99E70E449E3AFAE9FCBADF ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
12:44:28.0324 3592 TDPIPE - ok
12:44:28.0338 3592 [ 7551E91EA999EE9A8E9C331D5A9C31F3 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
12:44:28.0339 3592 TDTCP - ok
12:44:28.0360 3592 [ CB39E896A2A83702D1737BFD402B3542 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
12:44:28.0361 3592 tdx - ok
12:44:28.0373 3592 [ C36F41EE20E6999DBF4B0425963268A5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
12:44:28.0374 3592 TermDD - ok
12:44:28.0410 3592 [ A01E50A04D7B1960B33E92B9080E6A94 ] TermService C:\Windows\System32\termsrv.dll
12:44:28.0427 3592 TermService - ok
12:44:28.0447 3592 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
12:44:28.0450 3592 Themes - ok
12:44:28.0459 3592 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
12:44:28.0461 3592 THREADORDER - ok
12:44:28.0510 3592 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
12:44:28.0514 3592 TrkWks - ok
12:44:28.0598 3592 [ 41A4C781D2286208D397D72099304133 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:44:28.0600 3592 TrustedInstaller - ok
12:44:28.0625 3592 [ 98AE6FA07D12CB4EC5CF4A9BFA5F4242 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
12:44:28.0626 3592 tssecsrv - ok
12:44:28.0669 3592 [ 3E461D890A97F9D4C168F5FDA36E1D00 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
12:44:28.0670 3592 tunnel - ok
12:44:28.0702 3592 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
12:44:28.0704 3592 uagp35 - ok
12:44:28.0727 3592 [ 09CC3E16F8E5EE7168E01CF8FCBE061A ] udfs C:\Windows\system32\DRIVERS\udfs.sys
12:44:28.0729 3592 udfs - ok
12:44:28.0750 3592 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
12:44:28.0754 3592 UI0Detect - ok
12:44:28.0784 3592 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
12:44:28.0786 3592 uliagpkx - ok
12:44:28.0821 3592 [ 049B3A50B3D646BAEEEE9EEC9B0668DC ] umbus C:\Windows\system32\DRIVERS\umbus.sys
12:44:28.0822 3592 umbus - ok
12:44:28.0850 3592 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
12:44:28.0851 3592 UmPass - ok
12:44:28.0908 3592 [ 8ECACA5454844F66386F7BE4AE0D7CD1 ] UmRdpService C:\Windows\System32\umrdp.dll
12:44:28.0912 3592 UmRdpService - ok
12:44:28.0961 3592 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
12:44:28.0966 3592 upnphost - ok
12:44:28.0982 3592 [ 8455C4ED038EFD09E99327F9D2D48FFA ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
12:44:28.0983 3592 usbccgp - ok
12:44:29.0013 3592 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
12:44:29.0014 3592 usbcir - ok
12:44:29.0043 3592 [ 1C333BFD60F2FED2C7AD5DAF533CB742 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
12:44:29.0044 3592 usbehci - ok
12:44:29.0060 3592 [ EE6EF93CCFA94FAE8C6AB298273D8AE2 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
12:44:29.0062 3592 usbhub - ok
12:44:29.0085 3592 [ A6FB7957EA7AFB1165991E54CE934B74 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
12:44:29.0087 3592 usbohci - ok
12:44:29.0122 3592 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
12:44:29.0123 3592 usbprint - ok
12:44:29.0148 3592 [ D8889D56E0D27E57ED4591837FE71D27 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:44:29.0149 3592 USBSTOR - ok
12:44:29.0160 3592 [ 78780C3EBCE17405B1CCD07A3A8A7D72 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
12:44:29.0161 3592 usbuhci - ok
12:44:29.0213 3592 [ F642A7E4BF78CFA359CCA0A3557C28D7 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
12:44:29.0215 3592 usbvideo - ok
12:44:29.0252 3592 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
12:44:29.0256 3592 UxSms - ok
12:44:29.0268 3592 [ F42309C4191C506B71DB5D1126D26318 ] VaultSvc C:\Windows\system32\lsass.exe
12:44:29.0270 3592 VaultSvc - ok
12:44:29.0279 3592 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
12:44:29.0280 3592 vdrvroot - ok
12:44:29.0314 3592 [ 8C4E7C49D3641BC9E299E466A7F8867D ] vds C:\Windows\System32\vds.exe
12:44:29.0320 3592 vds - ok
12:44:29.0346 3592 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
12:44:29.0348 3592 vga - ok
12:44:29.0372 3592 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
12:44:29.0372 3592 VgaSave - ok
12:44:29.0397 3592 [ 3BE6E1F3A4F1AFEC8CEE0D7883F93583 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
12:44:29.0400 3592 vhdmp - ok
12:44:29.0439 3592 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\DRIVERS\viaagp.sys
12:44:29.0440 3592 viaagp - ok
12:44:29.0449 3592 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
12:44:29.0450 3592 ViaC7 - ok
12:44:29.0467 3592 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\DRIVERS\viaide.sys
12:44:29.0468 3592 viaide - ok
12:44:29.0510 3592 [ 379B349F65F453D2A6E75EA6B7448E49 ] vmbus C:\Windows\system32\DRIVERS\vmbus.sys
12:44:29.0513 3592 vmbus - ok
12:44:29.0521 3592 [ EC2BBAB4B84D0738C6C83D2234DC36FE ] VMBusHID C:\Windows\system32\DRIVERS\VMBusHID.sys
12:44:29.0522 3592 VMBusHID - ok
12:44:29.0541 3592 [ 384E5A2AA49934295171E499F86BA6F3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
12:44:29.0542 3592 volmgr - ok
12:44:29.0586 3592 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
12:44:29.0588 3592 volmgrx - ok
12:44:29.0606 3592 [ 58DF9D2481A56EDDE167E51B334D44FD ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
12:44:29.0608 3592 volsnap - ok
12:44:29.0616 3592 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
12:44:29.0619 3592 vsmraid - ok
12:44:29.0697 3592 [ 7EA2BCD94D9CFAF4C556F5CC94532A6C ] VSS C:\Windows\system32\vssvc.exe
12:44:29.0743 3592 VSS - ok
12:44:29.0755 3592 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
12:44:29.0756 3592 vwifibus - ok
12:44:29.0773 3592 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
12:44:29.0774 3592 vwififlt - ok
12:44:29.0800 3592 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
12:44:29.0805 3592 W32Time - ok
12:44:29.0829 3592 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
12:44:29.0830 3592 WacomPen - ok
12:44:29.0876 3592 [ 692A712062146E96D28BA0B7D75DE31B ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
12:44:29.0877 3592 WANARP - ok
12:44:29.0882 3592 [ 692A712062146E96D28BA0B7D75DE31B ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
12:44:29.0883 3592 Wanarpv6 - ok
12:44:29.0948 3592 [ 7790B77FE1E5EE47DCC66247095BB4C9 ] wbengine C:\Windows\system32\wbengine.exe
12:44:29.0988 3592 wbengine - ok
12:44:30.0017 3592 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
12:44:30.0021 3592 WbioSrvc - ok
12:44:30.0049 3592 [ D0F88AA11EE1A62BCC6D6A8A7783CA11 ] wcncsvc C:\Windows\System32\wcncsvc.dll
12:44:30.0054 3592 wcncsvc - ok
12:44:30.0075 3592 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:44:30.0078 3592 WcsPlugInService - ok
12:44:30.0104 3592 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
12:44:30.0105 3592 Wd - ok
12:44:30.0137 3592 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
12:44:30.0140 3592 Wdf01000 - ok
12:44:30.0151 3592 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
12:44:30.0155 3592 WdiServiceHost - ok
12:44:30.0160 3592 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
12:44:30.0163 3592 WdiSystemHost - ok
12:44:30.0193 3592 [ D87C7D2C517F82A5AB7A73E203063D9E ] WebClient C:\Windows\System32\webclnt.dll
12:44:30.0199 3592 WebClient - ok
12:44:30.0227 3592 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
12:44:30.0231 3592 Wecsvc - ok
12:44:30.0256 3592 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
12:44:30.0259 3592 wercplsupport - ok
12:44:30.0271 3592 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
12:44:30.0275 3592 WerSvc - ok
12:44:30.0301 3592 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
12:44:30.0302 3592 WfpLwf - ok
12:44:30.0331 3592 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
12:44:30.0332 3592 WIMMount - ok
12:44:30.0423 3592 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
12:44:30.0450 3592 WinDefend - ok
12:44:30.0457 3592 WinHttpAutoProxySvc - ok
12:44:30.0548 3592 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
12:44:30.0549 3592 Winmgmt - ok
12:44:30.0622 3592 [ C4F5D3901D1B41D602DDC196E0B95B51 ] WinRM C:\Windows\system32\WsmSvc.dll
12:44:30.0656 3592 WinRM - ok
12:44:30.0750 3592 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
12:44:30.0772 3592 Wlansvc - ok
12:44:30.0787 3592 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
12:44:30.0788 3592 WmiAcpi - ok
12:44:30.0830 3592 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
12:44:30.0832 3592 wmiApSrv - ok
12:44:30.0980 3592 [ 77FBD400984CF72BA0FC4B3489D65F74 ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
12:44:31.0013 3592 WMPNetworkSvc - ok
12:44:31.0028 3592 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
12:44:31.0031 3592 WPCSvc - ok
12:44:31.0045 3592 [ B7F658A2EBC07129538AD9AB35212637 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
12:44:31.0050 3592 WPDBusEnum - ok
12:44:31.0096 3592 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
12:44:31.0097 3592 ws2ifsl - ok
12:44:31.0111 3592 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\System32\wscsvc.dll
12:44:31.0115 3592 wscsvc - ok
12:44:31.0121 3592 WSearch - ok
12:44:31.0214 3592 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
12:44:31.0269 3592 wuauserv - ok
12:44:31.0300 3592 [ 6F9B6C0C93232CFF47D0F72D6DB1D21E ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
12:44:31.0301 3592 WudfPf - ok
12:44:31.0326 3592 [ F91FF1E51FCA30B3C3981DB7D5924252 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
12:44:31.0328 3592 WUDFRd - ok
12:44:31.0372 3592 [ DDEE3682FE97037C45F4D7AB467CB8B6 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
12:44:31.0376 3592 wudfsvc - ok
12:44:31.0405 3592 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
12:44:31.0410 3592 WwanSvc - ok
12:44:31.0429 3592 ================ Scan global ===============================
12:44:31.0488 3592 [ 9A595DF601070DA78C40481120DD2C06 ] C:\Windows\system32\basesrv.dll
12:44:31.0539 3592 [ 827E4F75901CA3F990B1487D3301841E ] C:\Windows\system32\winsrv.dll
12:44:31.0559 3592 [ 827E4F75901CA3F990B1487D3301841E ] C:\Windows\system32\winsrv.dll
12:44:31.0603 3592 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
12:44:31.0651 3592 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
12:44:31.0657 3592 [Global] - ok
12:44:31.0657 3592 ================ Scan MBR ==================================
12:44:31.0665 3592 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
12:44:32.0248 3592 \Device\Harddisk0\DR0 - ok
12:44:32.0248 3592 ================ Scan VBR ==================================
12:44:32.0252 3592 [ 28579D93E66D7CCE1DCED60690532DF1 ] \Device\Harddisk0\DR0\Partition1
12:44:32.0253 3592 \Device\Harddisk0\DR0\Partition1 - ok
12:44:32.0289 3592 [ 4CF6B0D8F0F80A9B58CC760E629F4237 ] \Device\Harddisk0\DR0\Partition2
12:44:32.0290 3592 \Device\Harddisk0\DR0\Partition2 - ok
12:44:32.0290 3592 ============================================================
12:44:32.0290 3592 Scan finished
12:44:32.0291 3592 ============================================================
12:44:32.0306 2312 Detected object count: 0
12:44:32.0306 2312 Actual detected object count: 0

Here is the aswMBR Report:
12:48:37.513 OS Version: Windows 6.1.7600
12:48:37.513 Number of processors: 2 586 0x170A
12:48:37.514 ComputerName: HPLAPTOP UserName: Travis
12:48:39.297 Initialize success
12:49:34.927 AVAST engine defs: 12090800
12:49:51.057 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
12:49:51.060 Disk 0 Vendor: WDC_WD3200BEVT-60ZCT1 13.01A13 Size: 305245MB BusType: 11
12:49:51.518 Disk 0 MBR read successfully
12:49:51.525 Disk 0 MBR scan
12:49:51.533 Disk 0 Windows 7 default MBR code
12:49:51.605 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 294097 MB offset 63
12:49:51.755 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 11144 MB offset 602312704
12:49:51.982 Disk 0 scanning sectors +625135616
12:49:53.142 Disk 0 scanning C:\Windows\system32\drivers
12:52:37.275 Service scanning
12:52:50.557 Service MpKsleeb39f12 c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{019C45C1-3738-493D-BF67-2431CC9ED700}\MpKsleeb39f12.sys **LOCKED** 32
12:53:10.344 Modules scanning
12:58:03.174 Disk 0 trace - called modules:
12:58:03.666 ntkrnlpa.exe CLASSPNP.SYS disk.sys ataport.SYS halmacpi.dll PCIIDEX.SYS msahci.sys dxgkrnl.sys igdkmd32.sys dxgmms1.sys watchdog.sys VSTCNXT3.SYS ndis.sys Rt86win7.sys
12:58:03.673 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85d3d030]
12:58:03.680 3 CLASSPNP.SYS[8adcd59e] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x85c6f030]
12:58:04.857 AVAST engine scan C:\Windows
13:00:51.388 Disk 0 MBR has been saved successfully to "C:\Users\Travis\Desktop\MBR.dat"
13:00:51.421 The log file has been saved successfully to "C:\Users\Travis\Desktop\aswMBR Log.txt"


And Here is the ESET Log:
C:\Windows.old\Documents and Settings\Travis\AppData\Local\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\001IC3TN\stacked-haircut[1].htm HTML/ScrInject.B.Gen virus
C:\Windows.old\Documents and Settings\Travis\AppData\Local\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\5V37S8HU\view[1].htm HTML/Iframe.B.Gen virus
C:\Windows.old\Documents and Settings\Travis\AppData\Local\Application Data\Temporary Internet Files\Low\Content.IE5\001IC3TN\stacked-haircut[1].htm HTML/ScrInject.B.Gen virus
C:\Windows.old\Documents and Settings\Travis\AppData\Local\Application Data\Temporary Internet Files\Low\Content.IE5\5V37S8HU\view[1].htm HTML/Iframe.B.Gen virus
C:\Windows.old\Documents and Settings\Travis\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\001IC3TN\stacked-haircut[1].htm HTML/ScrInject.B.Gen virus
C:\Windows.old\Documents and Settings\Travis\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\5V37S8HU\view[1].htm HTML/Iframe.B.Gen virus
C:\Windows.old\Documents and Settings\Travis\AppData\Local\Temporary Internet Files\Low\Content.IE5\001IC3TN\stacked-haircut[1].htm HTML/ScrInject.B.Gen virus
C:\Windows.old\Documents and Settings\Travis\AppData\Local\Temporary Internet Files\Low\Content.IE5\5V37S8HU\view[1].htm HTML/Iframe.B.Gen virus
C:\Windows.old\Documents and Settings\Travis\Documents\Downloads\BlubsterSetup.exe Win32/Toolbar.Widgi application
C:\Windows.old\Documents and Settings\Travis\Documents\Nero 7 Premium\Nero_7_Premium.exe Win32/Toolbar.AskSBar application
C:\Windows.old\Documents and Settings\Travis\Local Settings\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\001IC3TN\stacked-haircut[1].htm HTML/ScrInject.B.Gen virus
C:\Windows.old\Documents and Settings\Travis\Local Settings\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\5V37S8HU\view[1].htm HTML/Iframe.B.Gen virus
C:\Windows.old\Documents and Settings\Travis\Local Settings\Temporary Internet Files\Low\Content.IE5\001IC3TN\stacked-haircut[1].htm HTML/ScrInject.B.Gen virus
C:\Windows.old\Documents and Settings\Travis\Local Settings\Temporary Internet Files\Low\Content.IE5\5V37S8HU\view[1].htm HTML/Iframe.B.Gen virus
C:\Windows.old\Documents and Settings\Travis\My Documents\Downloads\BlubsterSetup.exe Win32/Toolbar.Widgi application
C:\Windows.old\Documents and Settings\Travis\My Documents\Nero 7 Premium\Nero_7_Premium.exe Win32/Toolbar.AskSBar application
C:\Windows.old\Users\Travis\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\001IC3TN\stacked-haircut[1].htm HTML/ScrInject.B.Gen virus
C:\Windows.old\Users\Travis\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\5V37S8HU\view[1].htm HTML/Iframe.B.Gen virus
C:\Windows.old\Users\Travis\AppData\Local\Temporary Internet Files\Low\Content.IE5\001IC3TN\stacked-haircut[1].htm HTML/ScrInject.B.Gen virus
C:\Windows.old\Users\Travis\AppData\Local\Temporary Internet Files\Low\Content.IE5\5V37S8HU\view[1].htm HTML/Iframe.B.Gen virus
C:\Windows.old\Users\Travis\Documents\Downloads\BlubsterSetup.exe Win32/Toolbar.Widgi application
C:\Windows.old\Users\Travis\Documents\Nero 7 Premium\Nero_7_Premium.exe Win32/Toolbar.AskSBar application
C:\Windows.old\Users\Travis\Local Settings\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\001IC3TN\stacked-haircut[1].htm HTML/ScrInject.B.Gen virus
C:\Windows.old\Users\Travis\Local Settings\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\5V37S8HU\view[1].htm HTML/Iframe.B.Gen virus
C:\Windows.old\Users\Travis\Local Settings\Temporary Internet Files\Low\Content.IE5\001IC3TN\stacked-haircut[1].htm HTML/ScrInject.B.Gen virus
C:\Windows.old\Users\Travis\Local Settings\Temporary Internet Files\Low\Content.IE5\5V37S8HU\view[1].htm HTML/Iframe.B.Gen virus
C:\Windows.old\Users\Travis\My Documents\Downloads\BlubsterSetup.exe Win32/Toolbar.Widgi application
C:\Windows.old\Users\Travis\My Documents\Nero 7 Premium\Nero_7_Premium.exe Win32/Toolbar.AskSBar application

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:13 PM

Posted 08 September 2012 - 05:04 PM

You have to remove the infections detected by ESET

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#5 tmoney662

tmoney662
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:13 PM

Posted 08 September 2012 - 07:54 PM

Here is the AdwCleaner log (the other 2 logs were lost when the computer restarted after AdwCleaner was complete.

# AdwCleaner v2.000 - Logfile created 09/08/2012 at 20:49:07
# Updated 30/08/2012 by Xplode
# Operating system : Windows 7 Ultimate (32 bits)
# User : Travis - HPLAPTOP
# Boot Mode : Normal
# Running from : C:\Users\Travis\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\ProgramData\boost_interprocess

***** [Registry] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.7600.16385

Restored : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]

-\\ Mozilla Firefox v15.0 (en-US)

Profile name : default
File : C:\Users\Travis\AppData\Roaming\Mozilla\Firefox\Profiles\wyooaaqb.default\prefs.js

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [982 octets] - [08/09/2012 20:49:07]

########## EOF - C:\AdwCleaner[S1].txt - [1041 octets] ##########

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:13 PM

Posted 08 September 2012 - 07:59 PM

Here is the AdwCleaner log (the other 2 logs were lost when the computer restarted after AdwCleaner was complete.


Please run them again

#7 tmoney662

tmoney662
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:13 PM

Posted 08 September 2012 - 08:06 PM

Ok, I ran them again. Here is mini toolbox log:

MiniToolBox by Farbar Version: 23-07-2012
Ran by Travis (administrator) on 08-09-2012 at 21:00:02
Microsoft Windows 7 Ultimate (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Atheros AR5007 802.11b/g WiFi Adapter = Wireless Network Connection (Connected)
Realtek RTL8102E/RTL8103E Family PCI-E Fast Ethernet NIC (NDIS 6.20) = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : HPLaptop
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : cfl.rr.com

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : cfl.rr.com
Description . . . . . . . . . . . : Atheros AR5007 802.11b/g WiFi Adapter
Physical Address. . . . . . . . . : 00-23-4E-77-70-0B
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::7583:b3ac:ba4c:8a6c%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.195(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Saturday, September 08, 2012 8:50:34 PM
Lease Expires . . . . . . . . . . : Sunday, September 09, 2012 8:50:35 PM
Default Gateway . . . . . . . . . : 192.058.0.1
DHCP Server . . . . . . . . . . . : 192.058.0.1
DHCPv6 IAID . . . . . . . . . . . : 218112846
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-12-58-C1-00-1F-16-5B-7C-14
DNS Servers . . . . . . . . . . . : 192.058.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek RTL8102E/RTL8103E Family PCI-E Fast Ethernet NIC (NDIS 6.20)
Physical Address. . . . . . . . . : 00-1F-17-5B-7C-14
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.cfl.rr.com:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : cfl.rr.com
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:953c:1418:1258:47a4:bfa9(Preferred)
Link-local IPv6 Address . . . . . : fe80::1418:1258:47a4:bfa9%13(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: UnKnown
Address: 192.168.0.1

Name: google.com
Addresses: 2001:4860:800a::65
74.125.137.102
74.125.137.113
74.125.137.138
74.125.137.139
74.125.137.100
74.125.137.101


Pinging google.com [74.125.45.113] with 32 bytes of data:
Reply from 74.125.45.113: bytes=32 time=20ms TTL=51
Reply from 74.125.45.113: bytes=32 time=18ms TTL=51

Ping statistics for 74.125.45.113:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 18ms, Maximum = 20ms, Average = 19ms
Server: UnKnown
Address: 192.058.0.1

Name: yahoo.com
Addresses: 72.30.38.140
98.138.253.109
98.139.183.24


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=100ms TTL=48
Reply from 98.138.253.109: bytes=32 time=122ms TTL=46

Ping statistics for 98.138.253.109:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 100ms, Maximum = 122ms, Average = 111ms
Server: UnKnown
Address: 192.058.0.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
12...00 23 4e 76 70 0b ......Atheros AR5007 802.11b/g WiFi Adapter
11...00 1f 16 5b 7c 14 ......Realtek RTL8102E/RTL8103E Family PCI-E Fast Ethernet NIC (NDIS 6.20)
1...........................Software Loopback Interface 1
14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.195 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.195 281
192.168.0.195 255.255.255.255 On-link 192.168.0.195 281
192.168.0.255 255.255.255.255 On-link 192.168.0.195 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.195 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.195 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
13 58 ::/0 On-link
1 306 ::1/128 On-link
13 58 2001::/32 On-link
13 306 2001:0:9d38:953c:1418:1258:47a4:bfa9/128
On-link
12 281 fe80::/64 On-link
13 306 fe80::/64 On-link
13 306 fe80::1418:1258:47a4:bfa9/128
On-link
12 281 fe80::7583:b3ac:ba4c:8a6c/128
On-link
1 306 ff00::/8 On-link
13 306 ff00::/8 On-link
12 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [51712] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/16/2012 08:03:00 PM) (Source: Application Error) (User: )
Description: Faulting application name: mspaint.exe, version: 6.1.7600.16385, time stamp: 0x4a5bc683
Faulting module name: UIRibbon.dll_unloaded, version: 0.0.0.0, time stamp: 0x4a5bdb20
Exception code: 0xc0000005
Fault offset: 0x67badc98
Faulting process id: 0x2a4
Faulting application start time: 0xmspaint.exe0
Faulting application path: mspaint.exe1
Faulting module path: mspaint.exe2
Report Id: mspaint.exe3

Error: (06/23/2012 11:36:11 AM) (Source: Application Hang) (User: )
Description: The program wmplayer.exe version 12.0.7600.16385 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1290

Start Time: 01cd5155de546529

Termination Time: 8

Application Path: C:\Program Files\Windows Media Player\wmplayer.exe

Report Id: 22f57f05-bd49-11e1-be8e-001f165b7c14

Error: (04/07/2012 02:21:11 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC80.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.4053"1".
Dependent Assembly Microsoft.VC80.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.4053" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (04/07/2012 02:20:59 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC80.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.4053"1".
Dependent Assembly Microsoft.VC80.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.4053" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (04/07/2012 02:20:58 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC80.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.4053"1".
Dependent Assembly Microsoft.VC80.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.4053" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (04/07/2012 02:06:36 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC80.ATL,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Dependent Assembly Microsoft.VC80.ATL,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (04/07/2012 02:06:26 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC80.ATL,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Dependent Assembly Microsoft.VC80.ATL,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (04/07/2012 02:06:26 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC80.ATL,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Dependent Assembly Microsoft.VC80.ATL,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (04/07/2012 02:06:26 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC80.ATL,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Dependent Assembly Microsoft.VC80.ATL,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (04/07/2012 02:06:25 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC80.ATL,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Dependent Assembly Microsoft.VC80.ATL,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.


System errors:
=============
Error: (09/01/2012 08:47:15 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.

Error: (08/28/2012 07:03:44 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.

Error: (08/15/2012 03:48:09 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Wlansvc service.

Error: (08/15/2012 02:49:04 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Wlansvc service.

Error: (08/11/2012 08:49:58 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.

Error: (08/09/2012 05:13:49 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SysMain service.

Error: (08/02/2012 07:47:43 AM) (Source: atapi) (User: )
Description: The driver detected a controller error on \Device\Ide\IdePort0.

Error: (08/02/2012 07:47:43 AM) (Source: atapi) (User: )
Description: The driver detected a controller error on \Device\Ide\IdePort0.

Error: (08/02/2012 07:47:43 AM) (Source: atapi) (User: )
Description: The driver detected a controller error on \Device\Ide\IdePort0.

Error: (08/02/2012 07:47:43 AM) (Source: atapi) (User: )
Description: The driver detected a controller error on \Device\Ide\IdePort0.


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

µTorrent (Version: 1.8.4)
Adobe Flash Player 11 Plugin (Version: 11.2.202.228)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Coupon Printer for Windows (Version: 5.0.0.1)
ESET Online Scanner v3
HP Deskjet 3050A J611 series Basic Device Software (Version: 23.0.504.0)
HP Deskjet 3050A J611 series Help (Version: 140.0.2.2)
HP Deskjet 3050A J611 series Product Improvement Study (Version: 23.0.504.0)
Java Auto Updater (Version: 2.1.6.0)
Java™ 6 Update 31 (Version: 6.0.310)
Java™ 7 Update 5 (Version: 7.0.50)
JavaFX 2.1.1 (Version: 2.1.1)
Maintenance Samsung CLP-320 Series
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Enterprise 2007 (Version: 12.0.4518.1014)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Mozilla Firefox 15.0 (x86 en-US) (Version: 15.0)
Mozilla Firefox 15.0.1 (x86 en-US) (Version: 15.0.1)
Mozilla Maintenance Service (Version: 15.0.1)
Skype Click to Call (Version: 6.2.10687)
Skype™ 5.9 (Version: 5.9.114)
VLC media player 2.0.1 (Version: 2.0.1)

========================= Memory info: ===================================

Percentage of memory in use: 28%
Total physical RAM: 3003.2 MB
Available physical RAM: 2156.93 MB
Total Pagefile: 6004.67 MB
Available Pagefile: 5112.64 MB
Total Virtual: 2047.88 MB
Available Virtual: 1949.81 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:287.21 GB) (Free:82.77 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:10.88 GB) (Free:1.82 GB) NTFS
3 Drive e: (PHTLS) (CDROM) (Total:3.15 GB) (Free:0 GB) UDF

========================= Users: ========================================

User accounts for \\HPLAPTOP

Administrator Guest Travis


**** End of log ****


Here is the FS Log:

Farbar Service Scanner Version: 06-08-2012
Ran by Travis (administrator) on 08-09-2012 at 21:05:22
Running from "C:\Users\Travis\Downloads"
Microsoft Windows 7 Ultimate (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcore.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys
[2012-09-08 08:27] - [2010-04-09 03:24] - 1285000 ____A (Microsoft Corporation) 63170B9EE1D0EF0032F0408605671D1A

C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll
[2009-07-13 19:53] - [2009-07-13 21:15] - 0565760 ____A (Microsoft Corporation) 5CD996CECF45CBC3E8D109C86B82D69E

C:\Windows\system32\bfe.dll
[2009-07-13 19:54] - [2009-07-13 21:14] - 0493568 ____A (Microsoft Corporation) 85AC71C045CEB054ED48A7841AAE0C11

C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll
[2009-07-13 19:23] - [2009-07-13 21:16] - 0125952 ____A (Microsoft Corporation) 5FD90ABDBFAEE85986802622CBB03446

C:\Windows\system32\vssvc.exe
[2009-07-13 19:24] - [2009-07-13 21:14] - 1025536 ____A (Microsoft Corporation) 7EA2BCD94D9CFAF4C556F5CC94532A6C

C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll
[2009-07-13 19:30] - [2009-07-13 21:16] - 0589312 ____A (Microsoft Corporation) 53F476476F55A27F580661BDE09C4EC4

C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:13 PM

Posted 08 September 2012 - 08:50 PM

Malwarebytes log?


download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here

#9 tmoney662

tmoney662
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:13 PM

Posted 08 September 2012 - 09:01 PM

Malwarebytes Log:
Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.09.08.01

Windows 7 x86 NTFS
Internet Explorer 8.0.7600.16385
Travis :: HPLAPTOP [administrator]

9/8/2012 6:36:23 PM
mbam-log-2012-09-08 (18-36-23).txt

Scan type: Full scan (C:\|D:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 532164
Time elapsed: 2 hour(s), 5 minute(s), 46 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)


Rkill:
Rkill 2.3.10 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 09/08/2012 09:58:50 PM in x86 mode.
Windows Version: Windows 7 Ultimate

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* C:\Windows\Samsung\PanelMgr\SSMMgr.exe (PID: 2588) [WD-HEUR]
* C:\Users\Travis\Downloads\FSS.exe (PID: 3320) [UP-HEUR]

2 proccesses terminated!

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* Windows Defender Disabled

[HKLM\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware" = dword:00000001

Checking Windows Service Integrity:

* Windows Defender (WinDefend) is not Running.
Startup Type set to: Manual

Searching for Missing Digital Signatures:

* No issues found.

Program finished at: 09/08/2012 09:58:55 PM
Execution time: 0 hours(s), 0 minute(s), and 5 seconds(s)

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:13 PM

Posted 08 September 2012 - 09:02 PM

That looks good

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your flash player

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#11 tmoney662

tmoney662
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:13 PM

Posted 08 September 2012 - 09:06 PM

I will do that. Thank you for your help with this issue!

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:13 PM

Posted 08 September 2012 - 09:09 PM

You're welcome :)

#13 tmoney662

tmoney662
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:13 PM

Posted 09 September 2012 - 08:26 AM

After all this work it seems like the problem still exists.
Still am being redirected. I did a search for "bleeping computer" too see where the link would take me, and I ended up at:

http://63.209.69.107/search/web/bleeping+computer/6678_a10/46573-178852-972-27681/v5

Very frustrating, I fear a full system restore might be needed!

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:13 PM

Posted 09 September 2012 - 08:28 AM

which browser has redirects?

Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the text contents here

#15 tmoney662

tmoney662
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:13 PM

Posted 09 September 2012 - 08:41 AM

Firefox is the browser I am using.

Here is the autoruns log:

"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files\common files\adobe\arm\1.0\adobearm.exe"
+ "GrooveMonitor" "GrooveMonitor Utility" "Microsoft Corporation" "c:\program files\microsoft office\office12\groovemonitor.exe"
+ "MSC" "Microsoft Security Client User Interface" "Microsoft Corporation" "c:\program files\microsoft security client\msseces.exe"
+ "Samsung PanelMgr" "" "" "c:\windows\samsung\panelmgr\ssmmgr.exe"
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files\common files\java\java update\jusched.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\msoxmlmf.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" ""
+ "grooveLocalGWS" "GrooveSystemServices Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\groovesystemservices.dll"
+ "ms-help" "Microsoft® Help Data Services Module" "Microsoft Corporation" "c:\program files\common files\microsoft shared\help\hxds.dll"
+ "skype-ie-addon-data" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "skype4com" "Skype for COM API" "Skype Technologies" "c:\program files\common files\skype\skype4com.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" ""
+ "Groove GFS Stub Execution Hook" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "EPP" "Microsoft Security Client Shell Extension" "Microsoft Corporation" "c:\program files\microsoft security client\shellext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "EPP" "Microsoft Security Client Shell Extension" "Microsoft Corporation" "c:\program files\microsoft security client\shellext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Groove GFS Browser Helper" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files\java\jre7\bin\ssv.dll"
+ "Skype Browser Helper" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll"
"Task Scheduler" "" "" ""
+ "\HPCustParticipation HP Deskjet 3050A J611 series" "HP Customer Participation." "Hewlett-Packard Co." "c:\program files\hp\hp deskjet 3050a j611 series\bin\hpcustpartic.exe"
+ "\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan" "Microsoft Malware Protection Command Line Utility" "Microsoft Corporation" "c:\program files\microsoft security client\mpcmdrun.exe"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AdobeARMservice" "Adobe Acrobat Updater keeps your Adobe software up to date." "Adobe Systems Incorporated" "c:\program files\common files\adobe\arm\1.0\armsvc.exe"
+ "Microsoft Office Groove Audit Service" "Groove Audit Service" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveauditservice.exe"
+ "MozillaMaintenance" "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled." "Mozilla Foundation" "c:\program files\mozilla maintenance service\maintenanceservice.exe"
+ "MsMpSvc" "Helps protect users from malware and other potentially unwanted software" "Microsoft Corporation" "c:\program files\microsoft security client\msmpeng.exe"
+ "NisSrv" "Helps guard against intrusion attempts targeting known and newly discovered vulnerabilities in network protocols" "Microsoft Corporation" "c:\program files\microsoft security client\nissrv.exe"
+ "odserv" "Run portions of Microsoft Office Diagnostics." "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\odserv.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files\common files\microsoft shared\source engine\ose.exe"
+ "Samsung UPD Service2" "Port Service for Samsung Universal Print Driver" "Samsung Electronics" "c:\windows\system32\supdsvc2.exe"
+ "Skype C2C Service" "Skype Click to Call Update Service" "Skype Technologies S.A." "c:\programdata\skype\toolbars\skype c2c service\c2c_service.exe"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files\skype\updater\updater.exe"
+ "WinDefend" "Protection against spyware and potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "aic78xx" "Adaptec Ultra SCSI miniport" "Adaptec, Inc." "c:\windows\system32\drivers\djsvs.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows family" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "athr" "Atheros Extensible Wireless LAN device driver" "Atheros Communications, Inc." "c:\windows\system32\drivers\athr.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbdx.sys"
+ "b57nd60x" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60x.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbdx.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - ia32" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "igfx" "Intel Graphics Kernel Mode Driver" "Intel Corporation" "c:\windows\system32\drivers\igdkmd32.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7 for x86" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "MpKslb60224b4" "KSLDriver" "Microsoft Corporation" "c:\programdata\microsoft\microsoft antimalware\definition updates\{902162d2-cf9e-47c3-9723-4f7691975a3d}\mpkslb60224b4.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "RTL8167" "Realtek 8101E/8168/8169 NDIS 6.20 32-bit Driver " "Realtek Corporation " "c:\windows\system32\drivers\rt86win7.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "SrvHsfHDA" "HSF_HWAZL WDM driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstazl3.sys"
+ "SrvHsfV92" "HSF_DP driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstdpv3.sys"
+ "SrvHsfWinac" "HSF_CNXT driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstcnxt3.sys"
+ "SSPORT" "32bit Port Contention Driver" "Samsung Electronics" "c:\windows\system32\drivers\ssport.sys"
+ "stexstor" "Promise SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\system32\iccvid.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "HP a011 Status Monitor" "Print Status Language Monitor" "Hewlett-Packard Co." "c:\windows\system32\hpinkstsa011lm.dll"
+ "HP Discovery Port Monitor (HP Deskjet 3050A J611 series)" "HP Discovery Port Monitor" "Hewlett-Packard Co." "c:\windows\system32\hpdiscopma011.dll"
+ "spd__ Langmon" "Language Monitor for Status Monitor" "" "c:\windows\system32\spd__l.dll"
+ "SST3C Langmon" "Language Monitor for Status Monitor" "" "c:\windows\system32\sst3cl3.dll"




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users