Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

PUM.Disabled.SecurityCenter


  • Please log in to reply
9 replies to this topic

#1 LaLamar

LaLamar

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:04:30 PM

Posted 17 October 2012 - 02:43 PM

Here is my MWB log file

Malwarebytes Anti-Malware (PRO) 1.65.0.1400
www.malwarebytes.org

Database version: v2012.10.17.09

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
HP_Administrator :: YOUR-4DACD0EA75 [administrator]

Protection: Enabled

10/17/2012 11:03:35 AM
mbam-log-2012-10-17 (11-03-35).txt

Scan type: Flash scan
Scan options enabled: Memory | Startup | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: Registry | File System | P2P
Objects scanned: 191277
Time elapsed: 9 minute(s), 15 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 1
HKLM\SOFTWARE\Microsoft\Security Center|AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
I am currenty running the ESET online scanner and will post it as soon as it is done. Is there anything else I can do at this time?

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:30 PM

Posted 17 October 2012 - 04:36 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 LaLamar

LaLamar
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:04:30 PM

Posted 17 October 2012 - 07:35 PM

ok after the 4:23:27 <G> ESET run here is what it found and did


C:\Documents and Settings\HP_Administrator\Desktop\Skyes dump 5-25-12\My Documents\Import\My Documents\BugdoctorSetup.exe Win32/Adware.BugDoctor application cleaned by deleting - quarantined
C:\Documents and Settings\HP_Administrator\Desktop\Skyes dump 5-25-12\My Documents\Import\My Documents\documents.ZIP Win32/Adware.BugDoctor application deleted - quarantined
C:\Documents and Settings\HP_Administrator\Desktop\Skyes dump 5-25-12\My Documents\My Downloads\cnet_ieSpellSetup264573_exe.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
C:\Documents and Settings\HP_Administrator\Desktop\Skyes dump 5-25-12\My Documents\My Received Files\documents.ZIP Win32/Adware.BugDoctor application deleted - quarantined
C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Default\aadidjdgdcgddcgddjgeggdfdegcdhgf\background.html Win32/BHO.OEI trojan cleaned by deleting - quarantined
C:\Documents and Settings\HP_Administrator\My Documents\downloads\uninstaller\cnet2_Free_Uninstaller_1_1_zip.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
C:\Documents and Settings\HP_Administrator\My Documents\downloads\uninstaller\PerfectUninstaller_Setup.exe a variant of Win32/PerfectUninstaller application cleaned by deleting - quarantined
C:\Program Files\Perfect_Uninstaller\PU.exe a variant of Win32/PerfectUninstaller application cleaned by deleting - quarantined

Now I will try the TDSSkiller and the aswMBR
Thank you for your time today

#4 LaLamar

LaLamar
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:04:30 PM

Posted 17 October 2012 - 08:00 PM

TDSSkiller gave these results

17:53:39.0078 5544 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
17:53:39.0750 5544 ============================================================
17:53:39.0750 5544 Current date / time: 2012/10/17 17:53:39.0750
17:53:39.0750 5544 SystemInfo:
17:53:39.0750 5544
17:53:39.0750 5544 OS Version: 5.1.2600 ServicePack: 3.0
17:53:39.0750 5544 Product type: Workstation
17:53:39.0750 5544 ComputerName: YOUR-4DACD0EA75
17:53:39.0750 5544 UserName: HP_Administrator
17:53:39.0750 5544 Windows directory: C:\WINDOWS
17:53:39.0750 5544 System windows directory: C:\WINDOWS
17:53:39.0750 5544 Processor architecture: Intel x86
17:53:39.0750 5544 Number of processors: 2
17:53:39.0750 5544 Page size: 0x1000
17:53:39.0750 5544 Boot type: Normal boot
17:53:39.0750 5544 ============================================================
17:53:42.0125 5544 Drive \Device\Harddisk0\DR0 - Size: 0x45DD826000 (279.46 Gb), SectorSize: 0x200, Cylinders: 0x8E81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
17:53:42.0343 5544 ============================================================
17:53:42.0343 5544 \Device\Harddisk0\DR0:
17:53:42.0343 5544 MBR partitions:
17:53:42.0343 5544 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x21D30EBD
17:53:42.0343 5544 \Device\Harddisk0\DR0\Partition2: MBR, Type 0xC, StartLBA 0x21D30EFC, BlocksNum 0x11B9E45
17:53:42.0343 5544 ============================================================
17:53:42.0437 5544 C: <-> \Device\Harddisk0\DR0\Partition1
17:53:42.0468 5544 D: <-> \Device\Harddisk0\DR0\Partition2
17:53:42.0468 5544 ============================================================
17:53:42.0468 5544 Initialize success
17:53:42.0468 5544 ============================================================
17:54:40.0078 0288 ============================================================
17:54:40.0078 0288 Scan started
17:54:40.0078 0288 Mode: Manual; TDLFS;
17:54:40.0078 0288 ============================================================
17:54:40.0718 0288 ================ Scan system memory ========================
17:54:40.0718 0288 System memory - ok
17:54:40.0718 0288 ================ Scan services =============================
17:54:40.0906 0288 Abiosdsk - ok
17:54:40.0906 0288 abp480n5 - ok
17:54:40.0968 0288 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
17:54:40.0968 0288 ACPI - ok
17:54:41.0015 0288 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
17:54:41.0015 0288 ACPIEC - ok
17:54:41.0171 0288 [ 8B46D5A1D3EF08232C04D0EAFB871FB2 ] Adobe LM Service C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
17:54:41.0171 0288 Adobe LM Service - ok
17:54:41.0312 0288 [ 41D15EAD554396BF35B7C5246AD47A28 ] Adobe Version Cue CS2 C:\Program Files\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe
17:54:41.0312 0288 Adobe Version Cue CS2 - ok
17:54:41.0328 0288 adpu160m - ok
17:54:41.0359 0288 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
17:54:41.0359 0288 aec - ok
17:54:41.0421 0288 [ 30BB1BDE595CA65FD5549462080D94E5 ] AegisP C:\WINDOWS\system32\DRIVERS\AegisP.sys
17:54:41.0421 0288 AegisP - ok
17:54:41.0484 0288 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
17:54:41.0484 0288 AFD - ok
17:54:41.0484 0288 Aha154x - ok
17:54:41.0484 0288 aic78u2 - ok
17:54:41.0500 0288 aic78xx - ok
17:54:41.0546 0288 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
17:54:41.0546 0288 Alerter - ok
17:54:41.0578 0288 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
17:54:41.0578 0288 ALG - ok
17:54:41.0578 0288 AliIde - ok
17:54:41.0593 0288 amsint - ok
17:54:41.0640 0288 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
17:54:41.0640 0288 AppMgmt - ok
17:54:41.0671 0288 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
17:54:41.0671 0288 Arp1394 - ok
17:54:41.0671 0288 asc - ok
17:54:41.0687 0288 asc3350p - ok
17:54:41.0687 0288 asc3550 - ok
17:54:41.0859 0288 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
17:54:41.0859 0288 aspnet_state - ok
17:54:41.0890 0288 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
17:54:41.0890 0288 AsyncMac - ok
17:54:41.0906 0288 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
17:54:41.0906 0288 atapi - ok
17:54:41.0906 0288 Atdisk - ok
17:54:41.0937 0288 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
17:54:41.0937 0288 Atmarpc - ok
17:54:41.0968 0288 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
17:54:41.0968 0288 AudioSrv - ok
17:54:41.0984 0288 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
17:54:41.0984 0288 audstub - ok
17:54:42.0000 0288 [ 7270D070173B20AC9487EA16BB08B45F ] bb-run C:\WINDOWS\system32\DRIVERS\bb-run.sys
17:54:42.0000 0288 bb-run - ok
17:54:42.0109 0288 [ 2ED050291BC1D7F9E322E328DB3AAECF ] BBSvc C:\Program Files\Microsoft\BingBar\BBSvc.EXE
17:54:42.0109 0288 BBSvc - ok
17:54:42.0171 0288 [ 785DE7ABDA13309D6065305542829E76 ] BBUpdate C:\Program Files\Microsoft\BingBar\SeaPort.EXE
17:54:42.0171 0288 BBUpdate - ok
17:54:42.0187 0288 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
17:54:42.0187 0288 Beep - ok
17:54:42.0234 0288 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
17:54:42.0250 0288 BITS - ok
17:54:42.0281 0288 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
17:54:42.0281 0288 Browser - ok
17:54:42.0312 0288 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
17:54:42.0312 0288 cbidf2k - ok
17:54:42.0328 0288 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
17:54:42.0328 0288 CCDECODE - ok
17:54:42.0343 0288 cd20xrnt - ok
17:54:42.0343 0288 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
17:54:42.0343 0288 Cdaudio - ok
17:54:42.0390 0288 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
17:54:42.0390 0288 Cdfs - ok
17:54:42.0390 0288 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
17:54:42.0390 0288 Cdrom - ok
17:54:42.0406 0288 Changer - ok
17:54:42.0406 0288 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
17:54:42.0406 0288 CiSvc - ok
17:54:42.0437 0288 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
17:54:42.0437 0288 ClipSrv - ok
17:54:42.0453 0288 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:54:42.0468 0288 clr_optimization_v2.0.50727_32 - ok
17:54:42.0468 0288 CmdIde - ok
17:54:42.0468 0288 COMSysApp - ok
17:54:42.0484 0288 Cpqarray - ok
17:54:42.0515 0288 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
17:54:42.0515 0288 CryptSvc - ok
17:54:42.0515 0288 dac2w2k - ok
17:54:42.0531 0288 dac960nt - ok
17:54:42.0609 0288 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
17:54:42.0609 0288 DcomLaunch - ok
17:54:42.0671 0288 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
17:54:42.0671 0288 Dhcp - ok
17:54:42.0671 0288 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
17:54:42.0671 0288 Disk - ok
17:54:42.0687 0288 dmadmin - ok
17:54:42.0734 0288 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
17:54:42.0734 0288 dmboot - ok
17:54:42.0781 0288 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
17:54:42.0781 0288 dmio - ok
17:54:42.0796 0288 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
17:54:42.0796 0288 dmload - ok
17:54:42.0859 0288 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
17:54:42.0859 0288 dmserver - ok
17:54:42.0875 0288 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
17:54:42.0875 0288 DMusic - ok
17:54:42.0921 0288 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
17:54:42.0937 0288 Dnscache - ok
17:54:42.0968 0288 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
17:54:42.0968 0288 Dot3svc - ok
17:54:42.0984 0288 dpti2o - ok
17:54:43.0015 0288 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
17:54:43.0015 0288 drmkaud - ok
17:54:43.0046 0288 [ 1FC1EED3EA0C3A0ECF8A95B97E1B4831 ] dvd43llh C:\WINDOWS\system32\DRIVERS\dvd43llh.sys
17:54:43.0046 0288 dvd43llh - ok
17:54:43.0078 0288 [ AC9CF17EE2AE003C98EB4F5336C38058 ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
17:54:43.0093 0288 E100B - ok
17:54:43.0125 0288 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
17:54:43.0125 0288 EapHost - ok
17:54:43.0218 0288 [ 5D1347AA5AE6E2F77D7F4F8372D95AC9 ] ehRecvr C:\WINDOWS\eHome\ehRecvr.exe
17:54:43.0218 0288 ehRecvr - ok
17:54:43.0281 0288 [ A53243709439AC2A4C216B817F8D7411 ] ehSched C:\WINDOWS\eHome\ehSched.exe
17:54:43.0281 0288 ehSched - ok
17:54:43.0343 0288 [ 1976FEDF6D7F87135C9B7F5CB4C8C868 ] ELacpi C:\WINDOWS\system32\DRIVERS\ELacpi.sys
17:54:43.0343 0288 ELacpi - ok
17:54:43.0343 0288 [ AE65C02444907966378454138B9F99F0 ] ELhid C:\WINDOWS\system32\DRIVERS\ELhid.sys
17:54:43.0359 0288 ELhid - ok
17:54:43.0359 0288 [ E485C3BA1DADDEEF3E14FEA1E8FDA6E1 ] ELkbd C:\WINDOWS\system32\DRIVERS\ELkbd.sys
17:54:43.0359 0288 ELkbd - ok
17:54:43.0359 0288 [ 0D87CB825ED6CB2EBCC147A10A42F1D6 ] ELmon C:\WINDOWS\system32\DRIVERS\ELmon.sys
17:54:43.0359 0288 ELmon - ok
17:54:43.0375 0288 [ A4ADD3847B67BACAB6FC851A2B60FDB3 ] ELmou C:\WINDOWS\system32\DRIVERS\ELmou.sys
17:54:43.0375 0288 ELmou - ok
17:54:43.0437 0288 [ D1DE16926C682DCD3D99AE5500CA5522 ] ELService C:\Program Files\Intel\IntelDH\Intel® Quick Resume Technology\ELService.exe
17:54:43.0437 0288 ELService - ok
17:54:43.0468 0288 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
17:54:43.0468 0288 ERSvc - ok
17:54:43.0515 0288 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
17:54:43.0515 0288 Eventlog - ok
17:54:43.0593 0288 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
17:54:43.0593 0288 EventSystem - ok
17:54:43.0625 0288 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
17:54:43.0625 0288 Fastfat - ok
17:54:43.0671 0288 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
17:54:43.0671 0288 FastUserSwitchingCompatibility - ok
17:54:43.0734 0288 [ E97D6A8684466DF94FF3BC24FB787A07 ] Fax C:\WINDOWS\system32\fxssvc.exe
17:54:43.0750 0288 Fax - ok
17:54:43.0750 0288 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
17:54:43.0765 0288 Fdc - ok
17:54:43.0765 0288 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
17:54:43.0765 0288 Fips - ok
17:54:43.0781 0288 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
17:54:43.0781 0288 Flpydisk - ok
17:54:43.0843 0288 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
17:54:43.0843 0288 FltMgr - ok
17:54:43.0921 0288 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
17:54:43.0921 0288 FontCache3.0.0.0 - ok
17:54:43.0968 0288 [ E0087225B137E57239FF40F8AE82059B ] fssfltr C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys
17:54:43.0968 0288 fssfltr - ok
17:54:44.0062 0288 [ 45B52394F9624237F33A8A3D73C0B221 ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe
17:54:44.0093 0288 fsssvc - ok
17:54:44.0109 0288 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
17:54:44.0109 0288 Fs_Rec - ok
17:54:44.0109 0288 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
17:54:44.0125 0288 Ftdisk - ok
17:54:44.0156 0288 [ 22399D3CE5840C6082844679CCA5D2FC ] ftsata2 C:\WINDOWS\system32\DRIVERS\ftsata2.sys
17:54:44.0156 0288 ftsata2 - ok
17:54:44.0218 0288 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
17:54:44.0218 0288 Gpc - ok
17:54:44.0328 0288 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
17:54:44.0328 0288 gupdate - ok
17:54:44.0328 0288 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
17:54:44.0328 0288 gupdatem - ok
17:54:44.0390 0288 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
17:54:44.0406 0288 gusvc - ok
17:54:44.0468 0288 [ 9436FBF3CA45A0FB726856B409734D7A ] hcwPP2 C:\WINDOWS\system32\DRIVERS\hcwPP2.sys
17:54:44.0468 0288 hcwPP2 - ok
17:54:44.0484 0288 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
17:54:44.0484 0288 HDAudBus - ok
17:54:44.0593 0288 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
17:54:44.0593 0288 helpsvc - ok
17:54:44.0609 0288 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
17:54:44.0609 0288 HidServ - ok
17:54:44.0625 0288 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
17:54:44.0625 0288 HidUsb - ok
17:54:44.0671 0288 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
17:54:44.0671 0288 hkmsvc - ok
17:54:44.0687 0288 hpn - ok
17:54:44.0703 0288 [ 30CA91E657CEDE2F95359D6EF186F650 ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
17:54:44.0703 0288 HPZid412 - ok
17:54:44.0718 0288 [ EFD31AFA752AA7C7BBB57BCBE2B01C78 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
17:54:44.0718 0288 HPZipr12 - ok
17:54:44.0750 0288 [ 7AC43C38CA8FD7ED0B0A4466F753E06E ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
17:54:44.0750 0288 HPZius12 - ok
17:54:44.0781 0288 [ 1F5C64B0C6B2E2F48735A77AE714CCB8 ] HSXHWBS2 C:\WINDOWS\system32\DRIVERS\HSXHWBS2.sys
17:54:44.0796 0288 HSXHWBS2 - ok
17:54:44.0828 0288 [ A7F8C9228898A1E871D2AE7082F50AC3 ] HSX_DP C:\WINDOWS\system32\DRIVERS\HSX_DP.sys
17:54:44.0828 0288 HSX_DP - ok
17:54:44.0906 0288 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
17:54:44.0906 0288 HTTP - ok
17:54:44.0937 0288 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
17:54:44.0937 0288 HTTPFilter - ok
17:54:44.0953 0288 i2omgmt - ok
17:54:44.0953 0288 i2omp - ok
17:54:44.0984 0288 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
17:54:44.0984 0288 i8042prt - ok
17:54:45.0031 0288 [ 0B66A9A2137213075F753579E7D573A5 ] IAANTMon C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
17:54:45.0031 0288 IAANTMon - ok
17:54:45.0093 0288 [ 309C4D86D989FB1FCF64BD30DC81C51B ] iaStor C:\WINDOWS\system32\DRIVERS\iaStor.sys
17:54:45.0093 0288 iaStor - ok
17:54:45.0187 0288 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
17:54:45.0187 0288 IDriverT - ok
17:54:45.0250 0288 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
17:54:45.0265 0288 idsvc - ok
17:54:45.0312 0288 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
17:54:45.0312 0288 Imapi - ok
17:54:45.0375 0288 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
17:54:45.0375 0288 ImapiService - ok
17:54:45.0390 0288 ini910u - ok
17:54:45.0593 0288 [ 14B48553BE78472D2BD3A518658A1710 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
17:54:45.0640 0288 IntcAzAudAddService - ok
17:54:45.0640 0288 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
17:54:45.0640 0288 IntelIde - ok
17:54:45.0703 0288 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
17:54:45.0703 0288 intelppm - ok
17:54:45.0750 0288 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
17:54:45.0750 0288 Ip6Fw - ok
17:54:45.0781 0288 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
17:54:45.0781 0288 IpFilterDriver - ok
17:54:45.0812 0288 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
17:54:45.0812 0288 IpInIp - ok
17:54:45.0843 0288 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
17:54:45.0843 0288 IpNat - ok
17:54:45.0859 0288 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
17:54:45.0859 0288 IPSec - ok
17:54:45.0890 0288 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
17:54:45.0890 0288 IRENUM - ok
17:54:45.0906 0288 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
17:54:45.0906 0288 isapnp - ok
17:54:45.0968 0288 [ 381B25DC8E958D905B33130D500BBF29 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
17:54:45.0968 0288 JavaQuickStarterService - ok
17:54:45.0968 0288 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
17:54:45.0984 0288 Kbdclass - ok
17:54:45.0984 0288 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
17:54:45.0984 0288 kbdhid - ok
17:54:46.0015 0288 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
17:54:46.0015 0288 kmixer - ok
17:54:46.0078 0288 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
17:54:46.0078 0288 KSecDD - ok
17:54:46.0125 0288 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
17:54:46.0125 0288 lanmanserver - ok
17:54:46.0187 0288 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
17:54:46.0203 0288 lanmanworkstation - ok
17:54:46.0203 0288 Lavasoft Kernexplorer - ok
17:54:46.0203 0288 lbrtfdc - ok
17:54:46.0281 0288 [ E4973B3229E0015345AFBE43A8A8EB3B ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
17:54:46.0281 0288 LightScribeService - ok
17:54:46.0296 0288 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
17:54:46.0296 0288 LmHosts - ok
17:54:46.0328 0288 [ 082EA07B461D1D184A82FDCB8B38A753 ] massfilter C:\WINDOWS\system32\drivers\massfilter.sys
17:54:46.0328 0288 massfilter - ok
17:54:46.0421 0288 [ DDF15A42E27E8EFE27B18FD403151A86 ] MatSvc C:\Program Files\Microsoft Fix it Center\Matsvc.exe
17:54:46.0437 0288 MatSvc - ok
17:54:46.0468 0288 [ 65E794E86468B61F2BC79ABC48BC4433 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
17:54:46.0468 0288 MBAMProtector - ok
17:54:46.0515 0288 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
17:54:46.0531 0288 MBAMScheduler - ok
17:54:46.0562 0288 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
17:54:46.0578 0288 MBAMService - ok
17:54:46.0640 0288 [ DF0A511F38F16016BF658FCA0090CB87 ] McrdSvc C:\WINDOWS\ehome\mcrdsvc.exe
17:54:46.0640 0288 McrdSvc - ok
17:54:46.0718 0288 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
17:54:46.0718 0288 MDM - ok
17:54:46.0781 0288 [ E246A32C445056996074A397DA56E815 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
17:54:46.0781 0288 mdmxsdk - ok
17:54:46.0828 0288 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
17:54:46.0828 0288 Messenger - ok
17:54:46.0921 0288 [ B7521F69C0A9B29D356157229376FB21 ] MHN C:\WINDOWS\System32\mhn.dll
17:54:46.0921 0288 MHN - ok
17:54:46.0984 0288 [ 7F2F1D2815A6449D346FCCCBC569FBD6 ] MHNDRV C:\WINDOWS\system32\DRIVERS\mhndrv.sys
17:54:46.0984 0288 MHNDRV - ok
17:54:47.0140 0288 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
17:54:47.0140 0288 Microsoft Office Groove Audit Service - ok
17:54:47.0187 0288 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
17:54:47.0187 0288 mnmdd - ok
17:54:47.0250 0288 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
17:54:47.0250 0288 mnmsrvc - ok
17:54:47.0312 0288 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
17:54:47.0312 0288 Modem - ok
17:54:47.0312 0288 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
17:54:47.0312 0288 Mouclass - ok
17:54:47.0375 0288 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
17:54:47.0375 0288 mouhid - ok
17:54:47.0375 0288 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
17:54:47.0375 0288 MountMgr - ok
17:54:47.0453 0288 [ EE728AF83850DDAD9A3FCAC0AAB3AD97 ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys
17:54:47.0453 0288 MpFilter - ok
17:54:47.0687 0288 [ A69630D039C38018689190234F866D77 ] MpKsled34f15e c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{78E46239-3BBA-4BEB-A143-350076C3B4A2}\MpKsled34f15e.sys
17:54:47.0687 0288 MpKsled34f15e - ok
17:54:47.0687 0288 mraid35x - ok
17:54:47.0703 0288 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
17:54:47.0703 0288 MRxDAV - ok
17:54:47.0750 0288 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
17:54:47.0750 0288 MRxSmb - ok
17:54:47.0765 0288 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
17:54:47.0765 0288 Msfs - ok
17:54:47.0765 0288 MSIServer - ok
17:54:47.0812 0288 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
17:54:47.0812 0288 MSKSSRV - ok
17:54:47.0859 0288 [ E077FCA2A7E79FB9BF67D3E30B5CE593 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
17:54:47.0859 0288 MsMpSvc - ok
17:54:47.0906 0288 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
17:54:47.0906 0288 MSPCLOCK - ok
17:54:47.0937 0288 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
17:54:47.0937 0288 MSPQM - ok
17:54:47.0953 0288 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
17:54:47.0953 0288 mssmbios - ok
17:54:47.0984 0288 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
17:54:48.0000 0288 MSTEE - ok
17:54:48.0000 0288 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
17:54:48.0015 0288 Mup - ok
17:54:48.0031 0288 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
17:54:48.0031 0288 NABTSFEC - ok
17:54:48.0062 0288 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
17:54:48.0062 0288 napagent - ok
17:54:48.0109 0288 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
17:54:48.0109 0288 NDIS - ok
17:54:48.0140 0288 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
17:54:48.0140 0288 NdisIP - ok
17:54:48.0171 0288 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
17:54:48.0171 0288 NdisTapi - ok
17:54:48.0171 0288 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
17:54:48.0171 0288 Ndisuio - ok
17:54:48.0187 0288 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:54:48.0187 0288 NdisWan - ok
17:54:48.0218 0288 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
17:54:48.0218 0288 NDProxy - ok
17:54:48.0218 0288 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
17:54:48.0218 0288 NetBIOS - ok
17:54:48.0250 0288 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
17:54:48.0250 0288 NetBT - ok
17:54:48.0296 0288 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
17:54:48.0296 0288 NetDDE - ok
17:54:48.0312 0288 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
17:54:48.0312 0288 NetDDEdsdm - ok
17:54:48.0343 0288 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
17:54:48.0343 0288 Netlogon - ok
17:54:48.0406 0288 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
17:54:48.0421 0288 Netman - ok
17:54:48.0468 0288 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:54:48.0468 0288 NetTcpPortSharing - ok
17:54:48.0500 0288 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
17:54:48.0500 0288 NIC1394 - ok
17:54:48.0546 0288 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
17:54:48.0546 0288 Nla - ok
17:54:48.0562 0288 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
17:54:48.0562 0288 Npfs - ok
17:54:48.0578 0288 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
17:54:48.0593 0288 Ntfs - ok
17:54:48.0593 0288 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
17:54:48.0593 0288 NtLmSsp - ok
17:54:48.0656 0288 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
17:54:48.0656 0288 NtmsSvc - ok
17:54:48.0703 0288 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
17:54:48.0703 0288 Null - ok
17:54:49.0156 0288 [ 7B5A17BD54BB9142843DBE99A1CAAED8 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
17:54:49.0250 0288 nv - ok
17:54:49.0281 0288 [ 5150B108EA88831E1C599603D8B89621 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
17:54:49.0296 0288 NVSvc - ok
17:54:49.0421 0288 [ 83E8AB7BB3C8956C53FEC071C94F0BBB ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
17:54:49.0468 0288 nvUpdatusService - ok
17:54:49.0500 0288 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
17:54:49.0500 0288 NwlnkFlt - ok
17:54:49.0515 0288 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
17:54:49.0515 0288 NwlnkFwd - ok
17:54:49.0609 0288 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:54:49.0625 0288 odserv - ok
17:54:49.0640 0288 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
17:54:49.0640 0288 ohci1394 - ok
17:54:49.0671 0288 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:54:49.0671 0288 ose - ok
17:54:49.0718 0288 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
17:54:49.0718 0288 Parport - ok
17:54:49.0734 0288 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
17:54:49.0734 0288 PartMgr - ok
17:54:49.0765 0288 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
17:54:49.0765 0288 ParVdm - ok
17:54:49.0765 0288 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
17:54:49.0765 0288 PCI - ok
17:54:49.0781 0288 PCIDump - ok
17:54:49.0781 0288 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
17:54:49.0781 0288 PCIIde - ok
17:54:49.0796 0288 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
17:54:49.0796 0288 Pcmcia - ok
17:54:49.0812 0288 PDCOMP - ok
17:54:49.0812 0288 PDFRAME - ok
17:54:49.0828 0288 PDRELI - ok
17:54:49.0828 0288 PDRFRAME - ok
17:54:49.0828 0288 perc2 - ok
17:54:49.0843 0288 perc2hib - ok
17:54:49.0890 0288 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
17:54:49.0890 0288 PlugPlay - ok
17:54:50.0000 0288 [ 2D091A99624FB9E7EEF0A86D872EC0C3 ] Pml Driver HPZ12 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZIPM12.EXE
17:54:50.0015 0288 Pml Driver HPZ12 - ok
17:54:50.0015 0288 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
17:54:50.0015 0288 PolicyAgent - ok
17:54:50.0031 0288 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
17:54:50.0031 0288 PptpMiniport - ok
17:54:50.0031 0288 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
17:54:50.0031 0288 ProtectedStorage - ok
17:54:50.0078 0288 [ 390C204CED3785609AB24E9C52054A84 ] Ps2 C:\WINDOWS\system32\DRIVERS\PS2.sys
17:54:50.0078 0288 Ps2 - ok
17:54:50.0093 0288 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
17:54:50.0093 0288 PSched - ok
17:54:50.0093 0288 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
17:54:50.0093 0288 Ptilink - ok
17:54:50.0140 0288 [ 0457E25BB122B854E267CF552DCDC370 ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
17:54:50.0140 0288 PxHelp20 - ok
17:54:50.0140 0288 ql1080 - ok
17:54:50.0140 0288 Ql10wnt - ok
17:54:50.0156 0288 ql12160 - ok
17:54:50.0156 0288 ql1240 - ok
17:54:50.0156 0288 ql1280 - ok
17:54:50.0171 0288 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
17:54:50.0171 0288 RasAcd - ok
17:54:50.0218 0288 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
17:54:50.0218 0288 RasAuto - ok
17:54:50.0250 0288 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
17:54:50.0250 0288 Rasl2tp - ok
17:54:50.0312 0288 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
17:54:50.0312 0288 RasMan - ok
17:54:50.0328 0288 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
17:54:50.0328 0288 RasPppoe - ok
17:54:50.0359 0288 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
17:54:50.0359 0288 Raspti - ok
17:54:50.0390 0288 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
17:54:50.0390 0288 Rdbss - ok
17:54:50.0390 0288 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
17:54:50.0390 0288 RDPCDD - ok
17:54:50.0406 0288 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
17:54:50.0421 0288 rdpdr - ok
17:54:50.0468 0288 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
17:54:50.0468 0288 RDPWD - ok
17:54:50.0500 0288 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
17:54:50.0515 0288 RDSessMgr - ok
17:54:50.0531 0288 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
17:54:50.0531 0288 redbook - ok
17:54:50.0562 0288 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
17:54:50.0562 0288 RemoteAccess - ok
17:54:50.0609 0288 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
17:54:50.0609 0288 RemoteRegistry - ok
17:54:50.0609 0288 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
17:54:50.0625 0288 RpcLocator - ok
17:54:50.0640 0288 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\system32\rpcss.dll
17:54:50.0656 0288 RpcSs - ok
17:54:50.0687 0288 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
17:54:50.0687 0288 RSVP - ok
17:54:50.0703 0288 [ D507C1400284176573224903819FFDA3 ] rtl8139 C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
17:54:50.0703 0288 rtl8139 - ok
17:54:50.0750 0288 [ AAB25C5DA336424F36D532462BECDE03 ] RTL8192su C:\WINDOWS\system32\DRIVERS\RTL8192su.sys
17:54:50.0750 0288 RTL8192su - ok
17:54:50.0765 0288 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
17:54:50.0765 0288 SamSs - ok
17:54:50.0781 0288 SBRE - ok
17:54:50.0796 0288 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
17:54:50.0796 0288 SCardSvr - ok
17:54:50.0812 0288 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
17:54:50.0812 0288 Schedule - ok
17:54:50.0859 0288 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
17:54:50.0859 0288 Secdrv - ok
17:54:50.0875 0288 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
17:54:50.0875 0288 seclogon - ok
17:54:50.0921 0288 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
17:54:50.0921 0288 SENS - ok
17:54:50.0921 0288 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\drivers\Serial.sys
17:54:50.0937 0288 Serial - ok
17:54:50.0984 0288 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
17:54:50.0984 0288 Sfloppy - ok
17:54:51.0062 0288 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
17:54:51.0062 0288 SharedAccess - ok
17:54:51.0078 0288 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
17:54:51.0078 0288 ShellHWDetection - ok
17:54:51.0093 0288 Simbad - ok
17:54:51.0125 0288 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
17:54:51.0125 0288 SLIP - ok
17:54:51.0187 0288 [ 1E715247EFFFDDA938C085913045D599 ] SMSIVZAM5 C:\PROGRA~1\VERIZO~1\VZACCE~1\SMSIVZAM5.SYS
17:54:51.0187 0288 SMSIVZAM5 - ok
17:54:51.0187 0288 Sparrow - ok
17:54:51.0218 0288 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
17:54:51.0218 0288 splitter - ok
17:54:51.0250 0288 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
17:54:51.0265 0288 Spooler - ok
17:54:51.0296 0288 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
17:54:51.0296 0288 sr - ok
17:54:51.0328 0288 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
17:54:51.0328 0288 srservice - ok
17:54:51.0375 0288 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
17:54:51.0375 0288 Srv - ok
17:54:51.0437 0288 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
17:54:51.0437 0288 SSDPSRV - ok
17:54:51.0500 0288 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
17:54:51.0515 0288 stisvc - ok
17:54:51.0546 0288 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
17:54:51.0546 0288 streamip - ok
17:54:51.0578 0288 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
17:54:51.0578 0288 swenum - ok
17:54:51.0593 0288 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
17:54:51.0593 0288 swmidi - ok
17:54:51.0593 0288 SwPrv - ok
17:54:51.0593 0288 symc810 - ok
17:54:51.0609 0288 symc8xx - ok
17:54:51.0609 0288 sym_hi - ok
17:54:51.0609 0288 sym_u3 - ok
17:54:51.0625 0288 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
17:54:51.0640 0288 sysaudio - ok
17:54:51.0703 0288 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
17:54:51.0703 0288 SysmonLog - ok
17:54:51.0750 0288 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
17:54:51.0750 0288 TapiSrv - ok
17:54:51.0812 0288 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
17:54:51.0812 0288 Tcpip - ok
17:54:51.0843 0288 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
17:54:51.0843 0288 TDPIPE - ok
17:54:51.0859 0288 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
17:54:51.0859 0288 TDTCP - ok
17:54:51.0890 0288 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
17:54:51.0890 0288 TermDD - ok
17:54:51.0953 0288 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
17:54:51.0953 0288 TermService - ok
17:54:51.0968 0288 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
17:54:51.0968 0288 Themes - ok
17:54:52.0015 0288 tilbljnk - ok
17:54:52.0062 0288 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
17:54:52.0062 0288 TlntSvr - ok
17:54:52.0062 0288 TosIde - ok
17:54:52.0109 0288 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
17:54:52.0109 0288 TrkWks - ok
17:54:52.0156 0288 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
17:54:52.0156 0288 Udfs - ok
17:54:52.0171 0288 ultra - ok
17:54:52.0218 0288 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
17:54:52.0218 0288 Update - ok
17:54:52.0250 0288 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
17:54:52.0250 0288 upnphost - ok
17:54:52.0265 0288 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
17:54:52.0265 0288 UPS - ok
17:54:52.0296 0288 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
17:54:52.0296 0288 usbaudio - ok
17:54:52.0328 0288 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
17:54:52.0328 0288 usbccgp - ok
17:54:52.0343 0288 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
17:54:52.0343 0288 usbehci - ok
17:54:52.0359 0288 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
17:54:52.0359 0288 usbhub - ok
17:54:52.0406 0288 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
17:54:52.0406 0288 usbprint - ok
17:54:52.0437 0288 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
17:54:52.0437 0288 usbscan - ok
17:54:52.0437 0288 [ A32426D9B14A089EAA1D922E0C5801A9 ] usbstor C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
17:54:52.0437 0288 usbstor - ok
17:54:52.0468 0288 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
17:54:52.0468 0288 usbuhci - ok
17:54:52.0484 0288 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
17:54:52.0484 0288 VgaSave - ok
17:54:52.0500 0288 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
17:54:52.0500 0288 ViaIde - ok
17:54:52.0515 0288 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
17:54:52.0515 0288 VolSnap - ok
17:54:52.0578 0288 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
17:54:52.0578 0288 VSS - ok
17:54:52.0640 0288 [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time C:\WINDOWS\system32\w32time.dll
17:54:52.0640 0288 W32Time - ok
17:54:52.0656 0288 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
17:54:52.0656 0288 Wanarp - ok
17:54:52.0718 0288 [ BBCFEAB7E871CDDAC2D397EE7FA91FDC ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys
17:54:52.0734 0288 Wdf01000 - ok
17:54:52.0734 0288 WDICA - ok
17:54:52.0750 0288 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
17:54:52.0750 0288 wdmaud - ok
17:54:52.0796 0288 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
17:54:52.0812 0288 WebClient - ok
17:54:52.0843 0288 [ 11EC1AFCEB5C917CE73D3C301FF4291E ] winachsx C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
17:54:52.0843 0288 winachsx - ok
17:54:52.0906 0288 [ F45DD1E1365D857DD08BC23563370D0E ] WinDefend C:\Program Files\Windows Defender\MsMpEng.exe
17:54:52.0906 0288 WinDefend - ok
17:54:53.0000 0288 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
17:54:53.0015 0288 winmgmt - ok
17:54:53.0078 0288 [ 18F347402DA544A780949B8FDF83351B ] WinRM C:\WINDOWS\system32\WsmSvc.dll
17:54:53.0093 0288 WinRM - ok
17:54:53.0203 0288 [ 5144AE67D60EC653F97DDF3FEED29E77 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:54:53.0250 0288 wlidsvc - ok
17:54:53.0296 0288 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
17:54:53.0296 0288 WmdmPmSN - ok
17:54:53.0359 0288 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi C:\WINDOWS\System32\advapi32.dll
17:54:53.0390 0288 Wmi - ok
17:54:53.0437 0288 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
17:54:53.0437 0288 WmiApSrv - ok
17:54:53.0515 0288 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
17:54:53.0546 0288 WMPNetworkSvc - ok
17:54:53.0562 0288 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
17:54:53.0562 0288 wscsvc - ok
17:54:53.0578 0288 WSearch - ok
17:54:53.0593 0288 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
17:54:53.0593 0288 WSTCODEC - ok
17:54:53.0625 0288 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
17:54:53.0625 0288 wuauserv - ok
17:54:53.0671 0288 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
17:54:53.0671 0288 WudfPf - ok
17:54:53.0687 0288 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
17:54:53.0687 0288 WudfRd - ok
17:54:53.0703 0288 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
17:54:53.0703 0288 WudfSvc - ok
17:54:53.0812 0288 [ BE0B3774113713059527FCF071CCDBFE ] wwEngineSvc C:\Program Files\Webroot\Washer\WasherSvc.exe
17:54:53.0812 0288 wwEngineSvc - ok
17:54:53.0890 0288 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
17:54:53.0890 0288 WZCSVC - ok
17:54:53.0921 0288 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
17:54:53.0937 0288 xmlprov - ok
17:54:53.0968 0288 [ A640C90B007762939507C28A021BE3B3 ] xusb21 C:\WINDOWS\system32\DRIVERS\xusb21.sys
17:54:53.0968 0288 xusb21 - ok
17:54:54.0046 0288 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
17:54:54.0062 0288 YahooAUService - ok
17:54:54.0109 0288 [ 28FB86AD7CC64AE5639E6E87F3B017D9 ] ZTEusbgps C:\WINDOWS\system32\DRIVERS\ZTEusbgps.sys
17:54:54.0109 0288 ZTEusbgps - ok
17:54:54.0140 0288 [ 28FB86AD7CC64AE5639E6E87F3B017D9 ] ZTEusbmdm6k C:\WINDOWS\system32\DRIVERS\ZTEusbmdm6k.sys
17:54:54.0140 0288 ZTEusbmdm6k - ok
17:54:54.0156 0288 [ 28FB86AD7CC64AE5639E6E87F3B017D9 ] ZTEusbnmea C:\WINDOWS\system32\DRIVERS\ZTEusbnmea.sys
17:54:54.0156 0288 ZTEusbnmea - ok
17:54:54.0187 0288 [ 28FB86AD7CC64AE5639E6E87F3B017D9 ] ZTEusbnmeaext C:\WINDOWS\system32\DRIVERS\ZTEusbnmeaext.sys
17:54:54.0187 0288 ZTEusbnmeaext - ok
17:54:54.0203 0288 [ 28FB86AD7CC64AE5639E6E87F3B017D9 ] ZTEusbser6k C:\WINDOWS\system32\DRIVERS\ZTEusbser6k.sys
17:54:54.0203 0288 ZTEusbser6k - ok
17:54:54.0218 0288 ================ Scan global ===============================
17:54:54.0265 0288 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
17:54:54.0312 0288 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
17:54:54.0328 0288 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
17:54:54.0390 0288 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
17:54:54.0390 0288 [Global] - ok
17:54:54.0390 0288 ================ Scan MBR ==================================
17:54:54.0421 0288 [ D11C727E03BB7318DCDA069B06E652F0 ] \Device\Harddisk0\DR0
17:54:54.0734 0288 \Device\Harddisk0\DR0 - ok
17:54:54.0734 0288 ================ Scan VBR ==================================
17:54:54.0734 0288 [ D871C9C1D19AC85E8CD17DD3F3F68725 ] \Device\Harddisk0\DR0\Partition1
17:54:54.0750 0288 \Device\Harddisk0\DR0\Partition1 - ok
17:54:54.0750 0288 [ AE44F21635226A585B6EBB62C71B2D13 ] \Device\Harddisk0\DR0\Partition2
17:54:54.0750 0288 \Device\Harddisk0\DR0\Partition2 - ok
17:54:54.0750 0288 ============================================================
17:54:54.0750 0288 Scan finished
17:54:54.0750 0288 ============================================================
17:54:54.0765 2256 Detected object count: 0
17:54:54.0765 2256 Actual detected object count: 0

#5 LaLamar

LaLamar
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:04:30 PM

Posted 18 October 2012 - 01:10 AM

all I got was this when I opened the saved file

3 ׼ zΎێ\   z fUB |2f"   >Uì
t ٿ 8mt4uf>RECOuf>VERYuEE<t
< t$<u- t= t9RufRucuLQ
tUxQ6lu26:luf3A=tL6UK6WD  <rtDuRtE &Rf3 zC6Su | [x
Missing operating system

Master Boot Record Error

Press a key.
Q  ? ! !E U

#6 LaLamar

LaLamar
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:04:30 PM

Posted 18 October 2012 - 01:12 AM

that is not what the program looks like in the black window. SO now what do I do??

#7 LaLamar

LaLamar
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:04:30 PM

Posted 18 October 2012 - 01:24 AM

Sorry that was a dat file here is the text file I found

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-10-17 18:02:48
-----------------------------
18:02:48.359 OS Version: Windows 5.1.2600 Service Pack 3
18:02:48.359 Number of processors: 2 586 0x604
18:02:48.359 ComputerName: YOUR-4DACD0EA75 UserName:
18:02:49.390 Initialize success
18:08:30.359 AVAST engine defs: 12101701
18:18:58.890 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
18:18:58.890 Disk 0 Vendor: WDC_WD30 21.0 Size: 286168MB BusType: 3
18:18:58.890 Disk 0 MBR read successfully
18:18:58.890 Disk 0 MBR scan
18:18:58.984 Disk 0 unknown MBR code
18:18:58.984 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 277089 MB offset 63
18:18:59.015 Disk 0 Partition 2 00 0C FAT32 LBA RECOVERY 9075 MB offset 567480060
18:19:00.328 Disk 0 scanning sectors +586067265
18:19:00.453 Disk 0 scanning C:\WINDOWS\system32\drivers
18:19:27.203 Service scanning
18:19:50.125 Service MpKsled34f15e c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{78E46239-3BBA-4BEB-A143-350076C3B4A2}\MpKsled34f15e.sys **LOCKED** 32
18:20:18.375 Modules scanning
18:20:25.484 Disk 0 trace - called modules:
18:20:25.515 ntkrnlpa.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
18:20:25.515 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8aef7ab8]
18:20:25.515 3 CLASSPNP.SYS[b8108fd7] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0x8aeb7030]
18:20:26.625 AVAST engine scan C:\
21:23:41.968 Scan finished successfully
23:07:47.359 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\HP_Administrator\Desktop\MBR.dat"
23:07:47.359 The log file has been saved successfully to "C:\Documents and Settings\HP_Administrator\Desktop\aswMBR.txt"

OK now what do you wish me to do to get rid of this bug?

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:30 PM

Posted 18 October 2012 - 03:52 AM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#9 LaLamar

LaLamar
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:04:30 PM

Posted 20 October 2012 - 10:54 AM

Malwarebytes Anti-Malware (PRO) 1.65.1.1000
www.malwarebytes.org

Database version: v2012.10.20.05

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
LaVonne :: YOUR-4DACD0EA75 [administrator]

Protection: Enabled

10/20/2012 7:49:46 AM
mbam-log-2012-10-20 (08-51-20).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 266630
Time elapsed: 19 minute(s), 7 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 1
HKLM\SOFTWARE\Microsoft\Security Center|AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#10 LaLamar

LaLamar
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:04:30 PM

Posted 20 October 2012 - 10:55 AM

Malwarebytes Anti-Malware (PRO) 1.65.1.1000
www.malwarebytes.org

Database version: v2012.10.20.05

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
LaVonne :: YOUR-4DACD0EA75 [administrator]

Protection: Enabled

10/20/2012 7:49:46 AM
mbam-log-2012-10-20 (07-49-46).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 266630
Time elapsed: 19 minute(s), 7 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 1
HKLM\SOFTWARE\Microsoft\Security Center|AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users