Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Blue screen of death-Simple Fix?


  • Please log in to reply
22 replies to this topic

#1 john john 2

john john 2

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:06:31 PM

Posted 23 September 2011 - 11:33 AM

Hi Everyone

May I just say that I have created 3 topics on this before and have never had one answer, the last topic I made was about 3 months ago, and I really do not know what to do anymore.

My Laptop used to start up, and then tell me that a remote adress was trying to access it and it had been blocked, it about an hour ago told me I couldnt connect to Windows host, and then a blue screen came up, it will no longer let me start up my account, I get the boot up, and then the Vista circle and the "please wait" but then the bsod comes up and thats it. I am now in safe mode with networking and "Microsoft windows has recovered from a serious problem" has come up.

It says "Files that may help the problem"-

C:\Windows\Minidump\Mini092311-04.dmp
C:\Users\John\appdata\local\temp\wer-7859-0.sysdata.xml
C:\Users\John\appdata\local\temp\wera4c6.tmp.version.txt

It always says it cannot find a solution.

I really hope someone can help me!

BC AdBot (Login to Remove)

 


#2 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,698 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:03:31 PM

Posted 23 September 2011 - 04:42 PM

Download BlueScreenView (in Zip file)
No installation required.
Unzip downloaded file and double click on BlueScreenView.exe file to run the program.
When scanning is done, go Edit>Select All.
Go File>Save Selected Items, and save the report as BSOD.txt.
Open BSOD.txt in Notepad, copy all content, and paste it into your next reply.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#3 john john 2

john john 2
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:06:31 PM

Posted 24 September 2011 - 06:43 AM

Thanks for the reply!
==================================================
Dump File : Mini092411-02.dmp
Crash Time : 24/09/2011 12:29:57
Bug Check String : KERNEL_MODE_EXCEPTION_NOT_HANDLED
Bug Check Code : 0x1000008e
Parameter 1 : 0xc0000005
Parameter 2 : 0x858490b8
Parameter 3 : 0xa286577c
Parameter 4 : 0x00000000
Caused By Driver : iaStor.sys
Caused By Address : iaStor.sys+3e0b8
File Description : Intel Matrix Storage Manager driver - ia32
Product Name : Intel Matrix Storage Manager driver
Company : Intel Corporation
File Version : 8.0.0.1039
Processor : 32-bit
Crash Address : iaStor.sys+3e0b8
Stack Address 1 : ntkrnlpa.exe+44976
Stack Address 2 : fltmgr.sys+22c06
Stack Address 3 : aswSnx.SYS+2ba4
Computer Name :
Full Path : C:\Windows\Minidump\Mini092411-02.dmp
Processors Count : 1
Major Version : 15
Minor Version : 6002
Dump File Size : 138,744
==================================================

==================================================
Dump File : Mini092411-01.dmp
Crash Time : 24/09/2011 12:26:08
Bug Check String : KERNEL_MODE_EXCEPTION_NOT_HANDLED
Bug Check Code : 0x1000008e
Parameter 1 : 0xc0000005
Parameter 2 : 0x858410b8
Parameter 3 : 0x9ecac77c
Parameter 4 : 0x00000000
Caused By Driver : iaStor.sys
Caused By Address : iaStor.sys+3e0b8
File Description : Intel Matrix Storage Manager driver - ia32
Product Name : Intel Matrix Storage Manager driver
Company : Intel Corporation
File Version : 8.0.0.1039
Processor : 32-bit
Crash Address : iaStor.sys+3e0b8
Stack Address 1 : ntkrnlpa.exe+44976
Stack Address 2 : fltmgr.sys+22c06
Stack Address 3 : aswSnx.SYS+2ba4
Computer Name :
Full Path : C:\Windows\Minidump\Mini092411-01.dmp
Processors Count : 1
Major Version : 15
Minor Version : 6002
Dump File Size : 138,744
==================================================

==================================================
Dump File : Mini092311-01.dmp
Crash Time : 23/09/2011 19:04:09
Bug Check String : KERNEL_MODE_EXCEPTION_NOT_HANDLED
Bug Check Code : 0x1000008e
Parameter 1 : 0xc0000005
Parameter 2 : 0x858450b8
Parameter 3 : 0x9b1f877c
Parameter 4 : 0x00000000
Caused By Driver : iaStor.sys
Caused By Address : iaStor.sys+3e0b8
File Description : Intel Matrix Storage Manager driver - ia32
Product Name : Intel Matrix Storage Manager driver
Company : Intel Corporation
File Version : 8.0.0.1039
Processor : 32-bit
Crash Address : iaStor.sys+3e0b8
Stack Address 1 : ntkrnlpa.exe+44976
Stack Address 2 : fltmgr.sys+22c06
Stack Address 3 : aswSnx.SYS+2ba4
Computer Name :
Full Path : C:\Windows\Minidump\Mini092311-01.dmp
Processors Count : 1
Major Version : 15
Minor Version : 6002
Dump File Size : 138,744
==================================================

#4 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,698 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:03:31 PM

Posted 24 September 2011 - 10:08 AM

Please download Rootkit Unhooker from one of the following links and save it to your desktop.
Link 1 (.exe file)
Link 2 (zipped file)
Link 3 (.rar file)In order to use this tool if you downloaded from either of the second two links, you will need to extract the RKUnhookerLE.exe file using a program capable of extracing ZIP and RAR compressed files. If you don't have an extraction program, you can download, install and use the free 7-zip utility.

  • Double-click on RKUnhookerLE.exe to start the program.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • Click the Report tab, then click Scan.
  • Check Drivers, Stealth, and uncheck the rest.
  • Click OK.
  • Wait until it's finished and then go to File > Save Report.
  • Save the report to your Desktop.
  • Copy and paste the contents of the report into your next reply.
-- Note: You may get this warning...just ignore it, click OK and continue: "Rootkit Unhooker has detected a parasite inside itself! It is recommended to remove parasite, okay?".

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#5 john john 2

john john 2
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:06:31 PM

Posted 24 September 2011 - 12:41 PM

I have downloaded the program but it says "This is not configured to run in safe mode, please reboot into normal mode" I cannot get onto the Laptop in normal mode.

It also comes up Error loading driver, NTSTATUS code 0xC000035f

#6 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,698 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:03:31 PM

Posted 24 September 2011 - 01:07 PM

Yeah, sorry about it.

Please download GMER from one of the following locations and save it to your desktop:
  • Main Mirror
    This version will download a randomly named file (Recommended)
  • Zipped Mirror
    This version will download a zip file you will need to extract first. If you use this mirror, please extract the zip file to your desktop.
  • Disconnect from the Internet and close all running programs.
  • Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.
  • Double-click on the randomly named GMER file (i.e. n7gmo46c.exe) and allow the gmer.sys driver to load if asked.
  • Note: If you downloaded the zipped version, extract the file to its own folder such as C:\gmer and then double-click on gmer.exe.

    Posted Image
  • GMER will open to the Rootkit/Malware tab and perform an automatic quick scan when first run. (do not use the computer while the scan is in progress)
  • If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
  • Now click the Scan button. If you see a rootkit warning window, click OK.
  • When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
  • Click the Copy button and paste the results into your next reply.
  • Exit GMER and be sure to re-enable your anti-virus, Firewall and any other security programs you had disabled.

IMPORTANT! If for some reason GMER refuses to run, try again.
If it still fails, try to UN-check "Devices" in right pane.
If still no joy, try to run it from Safe Mode.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#7 john john 2

john john 2
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:06:31 PM

Posted 24 September 2011 - 02:37 PM

Thank you.

GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2011-09-24 20:19:37
Windows 6.0.6002 Service Pack 2 Harddisk0\DR0 -> \Device\Ide\iaStor0 TOSHIBA_ rev.LV01
Running: m4u0d7w4.exe; Driver: C:\Users\John\AppData\Local\Temp\fwqcquow.sys


---- Kernel code sections - GMER 1.0.15 ----

.text C:\Windows\system32\DRIVERS\tos_sps32.sys section is writeable [0x8D34F480, 0x3C939, 0xE8000020]
.dsrt C:\Windows\system32\DRIVERS\tos_sps32.sys unknown last section [0x8D390900, 0x3CA, 0x48000040]
.text bridge.sys 8D1D6462 519 Bytes [8B, FF, 55, 8B, EC, 81, EC, ...]

---- User code sections - GMER 1.0.15 ----

.text C:\Windows\system32\svchost.exe[928] ntdll.dll!NtProtectVirtualMemory 77B44B84 5 Bytes JMP 008C000A
.text C:\Windows\system32\svchost.exe[928] ntdll.dll!NtWriteVirtualMemory 77B454C4 5 Bytes JMP 00AE000A
.text C:\Windows\system32\svchost.exe[928] ntdll.dll!KiUserExceptionDispatcher 77B45BF8 5 Bytes JMP 0087000A
.text C:\Windows\system32\svchost.exe[928] ole32.dll!CoCreateInstance 77779F3E 5 Bytes JMP 0125000A
.text C:\Windows\system32\svchost.exe[928] USER32.dll!WindowFromPoint 7742884F 5 Bytes JMP 0130000A
.text C:\Windows\system32\svchost.exe[928] USER32.dll!GetForegroundWindow 774332C4 5 Bytes JMP 0135000A
.text C:\Windows\system32\svchost.exe[928] USER32.dll!GetCursorPos 77440B88 5 Bytes JMP 012A000A
.text C:\Program Files\Mozilla Firefox\firefox.exe[1580] ntdll.dll!NtProtectVirtualMemory 77B44B84 5 Bytes JMP 01EB000A
.text C:\Program Files\Mozilla Firefox\firefox.exe[1580] ntdll.dll!NtWriteVirtualMemory 77B454C4 5 Bytes JMP 01EC000A
.text C:\Program Files\Mozilla Firefox\firefox.exe[1580] ntdll.dll!KiUserExceptionDispatcher 77B45BF8 5 Bytes JMP 01D6000A
.text C:\Program Files\Mozilla Firefox\firefox.exe[1580] USER32.dll!GetWindowInfo 7743428E 5 Bytes JMP 6CFB92D0 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
.text C:\Windows\Explorer.EXE[1660] ntdll.dll!NtProtectVirtualMemory 77B44B84 5 Bytes JMP 00C0000A
.text C:\Windows\Explorer.EXE[1660] ntdll.dll!NtWriteVirtualMemory 77B454C4 5 Bytes JMP 00C1000A
.text C:\Windows\Explorer.EXE[1660] ntdll.dll!KiUserExceptionDispatcher 77B45BF8 5 Bytes JMP 00BF000A
.text C:\Program Files\Mozilla Firefox\plugin-container.exe[3060] USER32.dll!SetWindowLongA 7742E7CD 5 Bytes JMP 6D1AA800 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
.text C:\Program Files\Mozilla Firefox\plugin-container.exe[3060] USER32.dll!SetWindowLongW 774313B4 5 Bytes JMP 6D1AA792 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
.text C:\Program Files\Mozilla Firefox\plugin-container.exe[3060] USER32.dll!GetWindowInfo 7743428E 5 Bytes JMP 6CFB229C C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
.text C:\Program Files\Mozilla Firefox\plugin-container.exe[3060] USER32.dll!TrackPopupMenu 774414F3 5 Bytes JMP 6CFB2861 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)

---- User IAT/EAT - GMER 1.0.15 ----

IAT C:\Windows\Explorer.EXE[1660] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusShutdown] [745E7817] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1660] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCloneImage] [7463A86D] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1660] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDrawImageRectI] [745EBB22] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1660] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetInterpolationMode] [745DF695] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1660] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusStartup] [745E75E9] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1660] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateFromHDC] [745DE7CA] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1660] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromStreamICM] [74618395] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1660] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromStream] [745EDA60] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1660] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageHeight] [745DFFFA] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1660] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageWidth] [745DFF61] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1660] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDisposeImage] [745D71CF] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1660] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipLoadImageFromFileICM] [7466CAE2] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1660] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipLoadImageFromFile] [7460C8D8] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1660] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDeleteGraphics] [745DD968] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1660] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipFree] [745D6853] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1660] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipAlloc] [745D687E] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[1660] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetCompositingMode] [745E2AD1] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

---- Devices - GMER 1.0.15 ----

AttachedDevice \Driver\kbdclass \Device\KeyboardClass0 Wdf01000.sys (WDF Dynamic/Microsoft Corporation)
AttachedDevice \Driver\kbdclass \Device\KeyboardClass1 Wdf01000.sys (WDF Dynamic/Microsoft Corporation)
AttachedDevice \Driver\tdx \Device\Tcp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\tdx \Device\Udp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\tdx \Device\RawIp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)

---- Disk sectors - GMER 1.0.15 ----

Disk \Device\Harddisk0\DR0 TDL4@MBR code has been found <-- ROOTKIT !!!
Disk \Device\Harddisk0\DR0 sector 00: rootkit-like behavior

---- EOF - GMER 1.0.15 ----

#8 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,698 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:03:31 PM

Posted 24 September 2011 - 05:04 PM

Download TDSSKiller and save it to your desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#9 john john 2

john john 2
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:06:31 PM

Posted 24 September 2011 - 05:44 PM

Thanks for the reply


23:30:38.0845 1000 TDSS rootkit removing tool 2.6.0.0 Sep 23 2011 07:42:37
23:30:38.0938 1000 ============================================================
23:30:38.0938 1000 Current date / time: 2011/09/24 23:30:38.0938
23:30:38.0938 1000 SystemInfo:
23:30:38.0939 1000
23:30:38.0939 1000 OS Version: 6.0.6002 ServicePack: 2.0
23:30:38.0939 1000 Product type: Workstation
23:30:38.0939 1000 ComputerName: LARRY-THE-LAPTO
23:30:38.0939 1000 UserName: John
23:30:38.0939 1000 Windows directory: C:\Windows
23:30:38.0939 1000 System windows directory: C:\Windows
23:30:38.0939 1000 Processor architecture: Intel x86
23:30:38.0939 1000 Number of processors: 1
23:30:38.0939 1000 Page size: 0x1000
23:30:38.0939 1000 Boot type: Safe boot with network
23:30:38.0939 1000 ============================================================
23:30:40.0176 1000 Initialize success
23:30:49.0359 0504 ============================================================
23:30:49.0359 0504 Scan started
23:30:49.0359 0504 Mode: Manual;
23:30:49.0359 0504 ============================================================
23:30:50.0226 0504 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
23:30:50.0230 0504 ACPI - ok
23:30:50.0310 0504 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
23:30:50.0316 0504 adp94xx - ok
23:30:50.0463 0504 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
23:30:50.0487 0504 adpahci - ok
23:30:50.0515 0504 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
23:30:50.0518 0504 adpu160m - ok
23:30:50.0662 0504 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
23:30:50.0665 0504 adpu320 - ok
23:30:50.0779 0504 AFD (a201207363aa900abf1a388468688570) C:\Windows\system32\drivers\afd.sys
23:30:50.0790 0504 AFD - ok
23:30:50.0980 0504 AgereSoftModem (ce91b158fa490cf4c4d487a4130f4660) C:\Windows\system32\DRIVERS\AGRSM.sys
23:30:50.0997 0504 AgereSoftModem - ok
23:30:51.0162 0504 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
23:30:51.0163 0504 agp440 - ok
23:30:51.0197 0504 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
23:30:51.0199 0504 aic78xx - ok
23:30:51.0230 0504 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
23:30:51.0231 0504 aliide - ok
23:30:51.0413 0504 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
23:30:51.0414 0504 amdagp - ok
23:30:51.0443 0504 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
23:30:51.0444 0504 amdide - ok
23:30:51.0601 0504 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
23:30:51.0603 0504 AmdK7 - ok
23:30:51.0626 0504 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
23:30:51.0627 0504 AmdK8 - ok
23:30:51.0863 0504 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
23:30:51.0865 0504 arc - ok
23:30:51.0921 0504 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
23:30:51.0923 0504 arcsas - ok
23:30:52.0068 0504 aswFsBlk (c47623ffd181a1e7d63574dde2a0a711) C:\Windows\system32\drivers\aswFsBlk.sys
23:30:52.0070 0504 aswFsBlk - ok
23:30:52.0254 0504 aswMonFlt (4804753a4ec7d67cc22d226bffd1c1e3) C:\Windows\system32\drivers\aswMonFlt.sys
23:30:52.0256 0504 aswMonFlt - ok
23:30:52.0483 0504 aswRdr (36239e24470a3dd81fae37510953cc6c) C:\Windows\system32\drivers\aswRdr.sys
23:30:52.0483 0504 aswRdr - ok
23:30:52.0601 0504 aswSnx (caa846e9c83836bdc3d2d700c678db65) C:\Windows\system32\drivers\aswSnx.sys
23:30:52.0609 0504 aswSnx - ok
23:30:52.0784 0504 aswSP (748ae7f2d7da33adb063fe05704a9969) C:\Windows\system32\drivers\aswSP.sys
23:30:52.0789 0504 aswSP - ok
23:30:52.0823 0504 aswTdi (ca9925ce1dbd07ffe1eb357752cf5577) C:\Windows\system32\drivers\aswTdi.sys
23:30:52.0824 0504 aswTdi - ok
23:30:53.0002 0504 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
23:30:53.0003 0504 AsyncMac - ok
23:30:53.0065 0504 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
23:30:53.0066 0504 atapi - ok
23:30:53.0323 0504 Avgfwfd (d30b785ab801a0e2b0ad922d66f971f3) C:\Windows\system32\DRIVERS\avgfwd6x.sys
23:30:53.0324 0504 Avgfwfd - ok
23:30:53.0426 0504 AVGIDSDriver (97824e8c95d9717777abd46a7b632310) C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys
23:30:53.0429 0504 AVGIDSDriver - ok
23:30:53.0563 0504 AVGIDSEH (c59c9bc3f0612bd207ccdc5d8cb9ce39) C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
23:30:53.0564 0504 AVGIDSEH - ok
23:30:53.0625 0504 AVGIDSFilter (c5559de2ec66cede15a1664f6d183d8e) C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys
23:30:53.0626 0504 AVGIDSFilter - ok
23:30:53.0803 0504 AVGIDSShim (ae5e9667fa40206796d1bd5bd0427a8a) C:\Windows\system32\DRIVERS\AVGIDSShim.Sys
23:30:53.0804 0504 AVGIDSShim - ok
23:30:53.0872 0504 Avgldx86 (4e796d3d2c3182b13b3e3b5a2ad4ef0a) C:\Windows\system32\DRIVERS\avgldx86.sys
23:30:53.0876 0504 Avgldx86 - ok
23:30:54.0020 0504 Avgmfx86 (5639de66b37d02bd22df4cf3155fba60) C:\Windows\system32\DRIVERS\avgmfx86.sys
23:30:54.0021 0504 Avgmfx86 - ok
23:30:54.0073 0504 Avgrkx86 (d1baf652eda0ae70896276a1fb32c2d4) C:\Windows\system32\DRIVERS\avgrkx86.sys
23:30:54.0075 0504 Avgrkx86 - ok
23:30:54.0283 0504 Avgtdix (aaf0ebcad95f2164cffb544e00392498) C:\Windows\system32\DRIVERS\avgtdix.sys
23:30:54.0285 0504 Avgtdix - ok
23:30:54.0545 0504 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
23:30:54.0546 0504 Beep - ok
23:30:54.0616 0504 BlackBox (32790d68ddcf79c990622564585ca546) C:\Windows\system32\drivers\BlackBox.sys
23:30:54.0618 0504 BlackBox - ok
23:30:54.0745 0504 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
23:30:54.0746 0504 blbdrive - ok
23:30:54.0855 0504 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
23:30:54.0857 0504 bowser - ok
23:30:54.0996 0504 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
23:30:54.0997 0504 BrFiltLo - ok
23:30:55.0047 0504 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
23:30:55.0048 0504 BrFiltUp - ok
23:30:55.0114 0504 Bridge (b1564976d98e91fc764d5dc28a0297da) C:\Windows\system32\DRIVERS\bridge.sys
23:30:55.0116 0504 Bridge - ok
23:30:55.0145 0504 BridgeMP (b1564976d98e91fc764d5dc28a0297da) C:\Windows\system32\DRIVERS\bridge.sys
23:30:55.0146 0504 BridgeMP - ok
23:30:55.0284 0504 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
23:30:55.0286 0504 Brserid - ok
23:30:55.0329 0504 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
23:30:55.0330 0504 BrSerWdm - ok
23:30:55.0364 0504 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
23:30:55.0365 0504 BrUsbMdm - ok
23:30:55.0488 0504 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
23:30:55.0490 0504 BrUsbSer - ok
23:30:55.0546 0504 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
23:30:55.0547 0504 BTHMODEM - ok
23:30:55.0701 0504 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
23:30:55.0703 0504 cdfs - ok
23:30:55.0791 0504 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
23:30:55.0792 0504 cdrom - ok
23:30:55.0923 0504 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
23:30:55.0924 0504 circlass - ok
23:30:55.0996 0504 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
23:30:56.0008 0504 CLFS - ok
23:30:56.0170 0504 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
23:30:56.0171 0504 CmBatt - ok
23:30:56.0216 0504 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
23:30:56.0217 0504 cmdide - ok
23:30:56.0264 0504 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
23:30:56.0266 0504 Compbatt - ok
23:30:56.0421 0504 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
23:30:56.0422 0504 crcdisk - ok
23:30:56.0483 0504 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
23:30:56.0485 0504 Crusoe - ok
23:30:56.0651 0504 DfsC (218d8ae46c88e82014f5d73d0236d9b2) C:\Windows\system32\Drivers\dfsc.sys
23:30:56.0653 0504 DfsC - ok
23:30:56.0843 0504 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
23:30:56.0845 0504 disk - ok
23:30:56.0955 0504 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
23:30:56.0956 0504 drmkaud - ok
23:30:57.0090 0504 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
23:30:57.0101 0504 DXGKrnl - ok
23:30:57.0215 0504 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
23:30:57.0218 0504 E1G60 - ok
23:30:57.0349 0504 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
23:30:57.0352 0504 Ecache - ok
23:30:58.0013 0504 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
23:30:58.0026 0504 elxstor - ok
23:30:58.0182 0504 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
23:30:58.0198 0504 ErrDev - ok
23:30:58.0317 0504 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
23:30:58.0320 0504 exfat - ok
23:30:58.0430 0504 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
23:30:58.0433 0504 fastfat - ok
23:30:58.0505 0504 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
23:30:58.0507 0504 fdc - ok
23:30:58.0616 0504 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
23:30:58.0618 0504 FileInfo - ok
23:30:58.0666 0504 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
23:30:58.0667 0504 Filetrace - ok
23:30:58.0791 0504 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
23:30:58.0792 0504 flpydisk - ok
23:30:58.0873 0504 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
23:30:58.0876 0504 FltMgr - ok
23:30:59.0002 0504 fssfltr (b74b0578fd1d3f897e95f2a2b69ea051) C:\Windows\system32\DRIVERS\fssfltr.sys
23:30:59.0003 0504 fssfltr - ok
23:30:59.0093 0504 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
23:30:59.0094 0504 Fs_Rec - ok
23:30:59.0288 0504 FwLnk (cbc22823628544735625b280665e434e) C:\Windows\system32\DRIVERS\FwLnk.sys
23:30:59.0289 0504 FwLnk - ok
23:30:59.0368 0504 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
23:30:59.0370 0504 gagp30kx - ok
23:30:59.0509 0504 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
23:30:59.0509 0504 GEARAspiWDM - ok
23:30:59.0675 0504 hamachi (833051c6c6c42117191935f734cfbd97) C:\Windows\system32\DRIVERS\hamachi.sys
23:30:59.0677 0504 hamachi - ok
23:30:59.0849 0504 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
23:30:59.0853 0504 HdAudAddService - ok
23:30:59.0916 0504 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
23:30:59.0925 0504 HDAudBus - ok
23:31:00.0064 0504 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
23:31:00.0065 0504 HidBth - ok
23:31:00.0105 0504 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
23:31:00.0107 0504 HidIr - ok
23:31:00.0175 0504 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
23:31:00.0176 0504 HidUsb - ok
23:31:00.0346 0504 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
23:31:00.0347 0504 HpCISSs - ok
23:31:00.0403 0504 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
23:31:00.0410 0504 HTTP - ok
23:31:00.0546 0504 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
23:31:00.0548 0504 i2omp - ok
23:31:00.0723 0504 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
23:31:00.0724 0504 i8042prt - ok
23:31:00.0774 0504 iaStor (db0cc620b27a928d968c1a1e9cd9cb87) C:\Windows\system32\DRIVERS\iaStor.sys
23:31:00.0776 0504 iaStor - ok
23:31:00.0915 0504 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
23:31:00.0919 0504 iaStorV - ok
23:31:01.0044 0504 igfx (6fb1858d1f0923d122b0331865695041) C:\Windows\system32\DRIVERS\igdkmd32.sys
23:31:01.0080 0504 igfx - ok
23:31:01.0220 0504 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
23:31:01.0221 0504 iirsp - ok
23:31:01.0396 0504 IntcAzAudAddService (b9cbd3dea7ca02868621173bf7a2af9f) C:\Windows\system32\drivers\RTKVHDA.sys
23:31:01.0427 0504 IntcAzAudAddService - ok
23:31:01.0582 0504 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
23:31:01.0583 0504 intelide - ok
23:31:01.0608 0504 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
23:31:01.0610 0504 intelppm - ok
23:31:01.0787 0504 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:31:01.0789 0504 IpFilterDriver - ok
23:31:01.0806 0504 IpInIp - ok
23:31:01.0843 0504 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
23:31:01.0845 0504 IPMIDRV - ok
23:31:01.0879 0504 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
23:31:01.0881 0504 IPNAT - ok
23:31:02.0049 0504 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
23:31:02.0050 0504 IRENUM - ok
23:31:02.0081 0504 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
23:31:02.0082 0504 isapnp - ok
23:31:02.0144 0504 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
23:31:02.0145 0504 iScsiPrt - ok
23:31:02.0317 0504 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
23:31:02.0319 0504 iteatapi - ok
23:31:02.0399 0504 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
23:31:02.0400 0504 iteraid - ok
23:31:02.0555 0504 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
23:31:02.0556 0504 kbdclass - ok
23:31:02.0585 0504 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\drivers\kbdhid.sys
23:31:02.0586 0504 kbdhid - ok
23:31:02.0647 0504 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
23:31:02.0654 0504 KSecDD - ok
23:31:02.0803 0504 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
23:31:02.0804 0504 lltdio - ok
23:31:02.0852 0504 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
23:31:02.0854 0504 LSI_FC - ok
23:31:02.0893 0504 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
23:31:02.0895 0504 LSI_SAS - ok
23:31:03.0043 0504 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
23:31:03.0046 0504 LSI_SCSI - ok
23:31:03.0080 0504 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
23:31:03.0082 0504 luafv - ok
23:31:03.0161 0504 mcdbus (8fd868e32459ece2a1bb0169f513d31e) C:\Windows\system32\DRIVERS\mcdbus.sys
23:31:03.0163 0504 mcdbus - ok
23:31:03.0284 0504 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
23:31:03.0296 0504 megasas - ok
23:31:03.0368 0504 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
23:31:03.0375 0504 MegaSR - ok
23:31:03.0488 0504 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
23:31:03.0490 0504 Modem - ok
23:31:03.0558 0504 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
23:31:03.0559 0504 monitor - ok
23:31:03.0606 0504 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
23:31:03.0606 0504 mouclass - ok
23:31:03.0679 0504 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
23:31:03.0680 0504 mouhid - ok
23:31:03.0718 0504 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
23:31:03.0720 0504 MountMgr - ok
23:31:03.0815 0504 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
23:31:03.0817 0504 mpio - ok
23:31:03.0881 0504 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
23:31:03.0883 0504 mpsdrv - ok
23:31:03.0962 0504 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
23:31:03.0963 0504 Mraid35x - ok
23:31:04.0098 0504 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
23:31:04.0101 0504 MRxDAV - ok
23:31:04.0140 0504 mrxsmb (5fe5cf325f5b02ebc60832d3440cb414) C:\Windows\system32\DRIVERS\mrxsmb.sys
23:31:04.0142 0504 mrxsmb - ok
23:31:04.0186 0504 mrxsmb10 (30b9c769446af379a2afb72b0392604d) C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:31:04.0190 0504 mrxsmb10 - ok
23:31:04.0328 0504 mrxsmb20 (fea239b3ec4877e2b7e23204af589ddf) C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:31:04.0330 0504 mrxsmb20 - ok
23:31:04.0424 0504 msahci (f70590424eefbf5c27a40c67afdb8383) C:\Windows\system32\drivers\msahci.sys
23:31:04.0427 0504 msahci - ok
23:31:04.0563 0504 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
23:31:04.0566 0504 msdsm - ok
23:31:04.0599 0504 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
23:31:04.0600 0504 Msfs - ok
23:31:04.0647 0504 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
23:31:04.0648 0504 msisadrv - ok
23:31:04.0800 0504 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
23:31:04.0802 0504 MSKSSRV - ok
23:31:04.0843 0504 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
23:31:04.0844 0504 MSPCLOCK - ok
23:31:04.0868 0504 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
23:31:04.0869 0504 MSPQM - ok
23:31:04.0916 0504 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
23:31:04.0920 0504 MsRPC - ok
23:31:05.0039 0504 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
23:31:05.0040 0504 mssmbios - ok
23:31:05.0160 0504 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
23:31:05.0161 0504 MSTEE - ok
23:31:05.0317 0504 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
23:31:05.0318 0504 Mup - ok
23:31:05.0428 0504 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
23:31:05.0431 0504 NativeWifiP - ok
23:31:05.0589 0504 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
23:31:05.0597 0504 NDIS - ok
23:31:05.0684 0504 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
23:31:05.0685 0504 NdisTapi - ok
23:31:05.0774 0504 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
23:31:05.0775 0504 Ndisuio - ok
23:31:05.0824 0504 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
23:31:05.0826 0504 NdisWan - ok
23:31:05.0901 0504 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
23:31:05.0902 0504 NDProxy - ok
23:31:06.0025 0504 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
23:31:06.0027 0504 NetBIOS - ok
23:31:06.0093 0504 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
23:31:06.0096 0504 netbt - ok
23:31:06.0395 0504 NETw5v32 (e559ea9138c77b5d1fda8c558764a25f) C:\Windows\system32\DRIVERS\NETw5v32.sys
23:31:06.0476 0504 NETw5v32 - ok
23:31:06.0618 0504 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
23:31:06.0620 0504 nfrd960 - ok
23:31:06.0718 0504 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
23:31:06.0719 0504 Npfs - ok
23:31:06.0934 0504 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
23:31:06.0934 0504 nsiproxy - ok
23:31:07.0053 0504 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
23:31:07.0076 0504 Ntfs - ok
23:31:07.0196 0504 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
23:31:07.0197 0504 ntrigdigi - ok
23:31:07.0312 0504 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
23:31:07.0312 0504 Null - ok
23:31:07.0360 0504 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
23:31:07.0363 0504 nvraid - ok
23:31:07.0461 0504 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
23:31:07.0462 0504 nvstor - ok
23:31:07.0542 0504 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
23:31:07.0545 0504 nv_agp - ok
23:31:07.0577 0504 NwlnkFlt - ok
23:31:07.0591 0504 NwlnkFwd - ok
23:31:07.0707 0504 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
23:31:07.0709 0504 ohci1394 - ok
23:31:07.0837 0504 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
23:31:07.0839 0504 Parport - ok
23:31:07.0945 0504 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
23:31:07.0946 0504 partmgr - ok
23:31:08.0037 0504 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
23:31:08.0038 0504 Parvdm - ok
23:31:08.0125 0504 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
23:31:08.0135 0504 pci - ok
23:31:08.0225 0504 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\DRIVERS\pciide.sys
23:31:08.0226 0504 pciide - ok
23:31:08.0283 0504 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
23:31:08.0287 0504 pcmcia - ok
23:31:08.0436 0504 pctplsg - ok
23:31:08.0546 0504 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
23:31:08.0559 0504 PEAUTH - ok
23:31:08.0737 0504 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
23:31:08.0739 0504 PptpMiniport - ok
23:31:08.0786 0504 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
23:31:08.0787 0504 Processor - ok
23:31:08.0956 0504 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
23:31:08.0958 0504 PSched - ok
23:31:09.0071 0504 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
23:31:09.0088 0504 ql2300 - ok
23:31:09.0222 0504 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
23:31:09.0225 0504 ql40xx - ok
23:31:09.0259 0504 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
23:31:09.0260 0504 QWAVEdrv - ok
23:31:09.0291 0504 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
23:31:09.0292 0504 RasAcd - ok
23:31:09.0334 0504 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
23:31:09.0335 0504 Rasl2tp - ok
23:31:09.0482 0504 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
23:31:09.0483 0504 RasPppoe - ok
23:31:09.0514 0504 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
23:31:09.0516 0504 RasSstp - ok
23:31:09.0569 0504 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
23:31:09.0573 0504 rdbss - ok
23:31:09.0713 0504 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
23:31:09.0714 0504 RDPCDD - ok
23:31:09.0758 0504 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
23:31:09.0763 0504 rdpdr - ok
23:31:09.0778 0504 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
23:31:09.0779 0504 RDPENCDD - ok
23:31:09.0841 0504 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
23:31:09.0844 0504 RDPWD - ok
23:31:10.0004 0504 Revoflt (b9bb8e2093c1615ad6ea55ad96214354) C:\Windows\system32\DRIVERS\revoflt.sys
23:31:10.0005 0504 Revoflt - ok
23:31:10.0088 0504 RimUsb (f17713d108aca124a139fde877eef68a) C:\Windows\system32\Drivers\RimUsb.sys
23:31:10.0089 0504 RimUsb - ok
23:31:10.0236 0504 RMCAST (eec7ee5675294b03e88aa868540007c1) C:\Windows\system32\DRIVERS\RMCAST.sys
23:31:10.0238 0504 RMCAST - ok
23:31:10.0316 0504 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
23:31:10.0318 0504 rspndr - ok
23:31:10.0469 0504 RTL8169 (a1adc7b4c074744662207da6edcdfbb0) C:\Windows\system32\DRIVERS\Rtlh86.sys
23:31:10.0473 0504 RTL8169 - ok
23:31:10.0518 0504 RTSTOR (9ff7d9cf3a5f296613588b0e8db83afe) C:\Windows\system32\drivers\RTSTOR.SYS
23:31:10.0520 0504 RTSTOR - ok
23:31:10.0662 0504 s115bus (e1ab463b36a7ef31d8a73a97a9b57afa) C:\Windows\system32\DRIVERS\s115bus.sys
23:31:10.0664 0504 s115bus - ok
23:31:10.0712 0504 s115mdfl (e24113fc13b8737c94cf4e3415488c76) C:\Windows\system32\DRIVERS\s115mdfl.sys
23:31:10.0713 0504 s115mdfl - ok
23:31:10.0839 0504 s115mdm (4029e49e7c673aa0670bd206b0af1b5b) C:\Windows\system32\DRIVERS\s115mdm.sys
23:31:10.0841 0504 s115mdm - ok
23:31:10.0887 0504 s115mgmt (eb02ab4ca8bccecfde236cad8fc6e135) C:\Windows\system32\DRIVERS\s115mgmt.sys
23:31:10.0890 0504 s115mgmt - ok
23:31:10.0961 0504 s115obex (089869db9ffd2ac807fa87fe82ac7761) C:\Windows\system32\DRIVERS\s115obex.sys
23:31:10.0963 0504 s115obex - ok
23:31:11.0082 0504 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
23:31:11.0084 0504 sbp2port - ok
23:31:11.0154 0504 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
23:31:11.0155 0504 secdrv - ok
23:31:11.0194 0504 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
23:31:11.0195 0504 Serenum - ok
23:31:11.0298 0504 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
23:31:11.0300 0504 Serial - ok
23:31:11.0338 0504 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
23:31:11.0339 0504 sermouse - ok
23:31:11.0421 0504 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
23:31:11.0422 0504 sffdisk - ok
23:31:11.0513 0504 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
23:31:11.0515 0504 sffp_mmc - ok
23:31:11.0541 0504 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
23:31:11.0543 0504 sffp_sd - ok
23:31:11.0592 0504 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
23:31:11.0593 0504 sfloppy - ok
23:31:11.0707 0504 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
23:31:11.0709 0504 sisagp - ok
23:31:11.0736 0504 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
23:31:11.0737 0504 SiSRaid2 - ok
23:31:11.0784 0504 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
23:31:11.0786 0504 SiSRaid4 - ok
23:31:11.0917 0504 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
23:31:11.0919 0504 Smb - ok
23:31:11.0985 0504 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
23:31:11.0986 0504 spldr - ok
23:31:12.0210 0504 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
23:31:12.0215 0504 srv - ok
23:31:12.0244 0504 srv2 (a5940ca32ed206f90be9fabdf6e92de4) C:\Windows\system32\DRIVERS\srv2.sys
23:31:12.0254 0504 srv2 - ok
23:31:12.0423 0504 srvnet (37aa1d560d5fa486c4b11c2f276ada61) C:\Windows\system32\DRIVERS\srvnet.sys
23:31:12.0425 0504 srvnet - ok
23:31:12.0519 0504 ssm_bus (df5c19f053eff7f8ba25d73aea899656) C:\Windows\system32\DRIVERS\ssm_bus.sys
23:31:12.0521 0504 ssm_bus - ok
23:31:12.0653 0504 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
23:31:12.0654 0504 swenum - ok
23:31:12.0702 0504 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
23:31:12.0703 0504 Symc8xx - ok
23:31:12.0726 0504 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
23:31:12.0727 0504 Sym_hi - ok
23:31:12.0752 0504 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
23:31:12.0754 0504 Sym_u3 - ok
23:31:12.0908 0504 SynTP (70534d1e4f9ac990536d5fb5b550b3de) C:\Windows\system32\DRIVERS\SynTP.sys
23:31:12.0910 0504 SynTP - ok
23:31:13.0013 0504 Tcpip (a474879afa4a596b3a531f3e69730dbf) C:\Windows\system32\drivers\tcpip.sys
23:31:13.0027 0504 Tcpip - ok
23:31:13.0174 0504 Tcpip6 (a474879afa4a596b3a531f3e69730dbf) C:\Windows\system32\DRIVERS\tcpip.sys
23:31:13.0180 0504 Tcpip6 - ok
23:31:13.0224 0504 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
23:31:13.0226 0504 tcpipreg - ok
23:31:13.0270 0504 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
23:31:13.0271 0504 TDPIPE - ok
23:31:13.0383 0504 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
23:31:13.0385 0504 TDTCP - ok
23:31:13.0440 0504 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
23:31:13.0441 0504 tdx - ok
23:31:13.0623 0504 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
23:31:13.0623 0504 TermDD - ok
23:31:13.0722 0504 tos_sps32 (4399a9bf7d8f49991a07fd86590a1619) C:\Windows\system32\DRIVERS\tos_sps32.sys
23:31:13.0727 0504 tos_sps32 - ok
23:31:13.0862 0504 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
23:31:13.0863 0504 tssecsrv - ok
23:31:13.0914 0504 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
23:31:13.0915 0504 tunmp - ok
23:31:13.0961 0504 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
23:31:13.0962 0504 tunnel - ok
23:31:14.0075 0504 TVALZ (792a8b80f8188aba4b2be271583f3e46) C:\Windows\system32\DRIVERS\TVALZ_O.SYS
23:31:14.0076 0504 TVALZ - ok
23:31:14.0124 0504 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
23:31:14.0125 0504 uagp35 - ok
23:31:14.0236 0504 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
23:31:14.0247 0504 udfs - ok
23:31:14.0299 0504 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
23:31:14.0315 0504 uliagpkx - ok
23:31:14.0357 0504 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
23:31:14.0362 0504 uliahci - ok
23:31:14.0461 0504 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
23:31:14.0464 0504 UlSata - ok
23:31:14.0514 0504 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
23:31:14.0527 0504 ulsata2 - ok
23:31:14.0561 0504 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
23:31:14.0562 0504 umbus - ok
23:31:14.0706 0504 USBAAPL (1df89c499bf45d878b87ebd4421d462d) C:\Windows\system32\Drivers\usbaapl.sys
23:31:14.0707 0504 USBAAPL - ok
23:31:14.0834 0504 usbbus (cccece399b1990d63bfc8de8161dd838) C:\Windows\system32\DRIVERS\lgusbbus.sys
23:31:14.0835 0504 usbbus - ok
23:31:14.0942 0504 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
23:31:14.0944 0504 usbccgp - ok
23:31:14.0997 0504 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
23:31:14.0999 0504 usbcir - ok
23:31:15.0040 0504 UsbDiag (b2ef4693e17404a178da88318c5236b8) C:\Windows\system32\DRIVERS\lgusbdiag.sys
23:31:15.0041 0504 UsbDiag - ok
23:31:15.0169 0504 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
23:31:15.0170 0504 usbehci - ok
23:31:15.0239 0504 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
23:31:15.0249 0504 usbhub - ok
23:31:15.0383 0504 USBModem (eb16939525ed91fb649ec68afc865dce) C:\Windows\system32\DRIVERS\lgusbmodem.sys
23:31:15.0385 0504 USBModem - ok
23:31:15.0467 0504 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
23:31:15.0468 0504 usbohci - ok
23:31:15.0498 0504 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
23:31:15.0499 0504 usbprint - ok
23:31:15.0606 0504 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:31:15.0607 0504 USBSTOR - ok
23:31:15.0673 0504 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
23:31:15.0674 0504 usbuhci - ok
23:31:15.0810 0504 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
23:31:15.0813 0504 usbvideo - ok
23:31:15.0857 0504 UVCFTR (8c5094a8ab24de7496c7c19942f2df04) C:\Windows\system32\Drivers\UVCFTR_S.SYS
23:31:15.0858 0504 UVCFTR - ok
23:31:15.0919 0504 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
23:31:15.0920 0504 vga - ok
23:31:15.0952 0504 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
23:31:15.0953 0504 VgaSave - ok
23:31:16.0057 0504 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
23:31:16.0059 0504 viaagp - ok
23:31:16.0135 0504 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
23:31:16.0136 0504 ViaC7 - ok
23:31:16.0215 0504 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
23:31:16.0217 0504 viaide - ok
23:31:16.0268 0504 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
23:31:16.0270 0504 volmgr - ok
23:31:16.0347 0504 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
23:31:16.0352 0504 volmgrx - ok
23:31:16.0464 0504 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
23:31:16.0468 0504 volsnap - ok
23:31:16.0543 0504 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
23:31:16.0546 0504 vsmraid - ok
23:31:16.0672 0504 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
23:31:16.0673 0504 WacomPen - ok
23:31:16.0715 0504 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
23:31:16.0717 0504 Wanarp - ok
23:31:16.0762 0504 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
23:31:16.0763 0504 Wanarpv6 - ok
23:31:16.0812 0504 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
23:31:16.0813 0504 Wd - ok
23:31:16.0903 0504 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
23:31:16.0911 0504 Wdf01000 - ok
23:31:17.0044 0504 WinFLdrv (7575ab6902c3f321d62a8e5a7e4f55a9) C:\Windows\system32\WinFLdrv.sys
23:31:17.0130 0504 WinFLdrv - ok
23:31:17.0271 0504 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
23:31:17.0273 0504 WmiAcpi - ok
23:31:17.0401 0504 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
23:31:17.0402 0504 WpdUsb - ok
23:31:17.0544 0504 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
23:31:17.0546 0504 ws2ifsl - ok
23:31:17.0608 0504 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
23:31:17.0610 0504 WUDFRd - ok
23:31:17.0663 0504 MBR (0x1B8) (04d4350ae5fb6fc2ad3e7c26b1323c68) \Device\Harddisk0\DR0
23:31:17.0664 0504 \Device\Harddisk0\DR0 ( Rootkit.Win32.TDSS.tdl4 ) - infected
23:31:17.0664 0504 \Device\Harddisk0\DR0 - detected Rootkit.Win32.TDSS.tdl4 (0)
23:31:17.0688 0504 Boot (0x1200) (fda254e4031a6dab566ce9531a88d51b) \Device\Harddisk0\DR0\Partition0
23:31:17.0688 0504 \Device\Harddisk0\DR0\Partition0 - ok
23:31:17.0717 0504 Boot (0x1200) (a834c69d7f38207e1f59fd4f287b058c) \Device\Harddisk0\DR0\Partition1
23:31:17.0718 0504 \Device\Harddisk0\DR0\Partition1 - ok
23:31:17.0721 0504 ============================================================
23:31:17.0721 0504 Scan finished
23:31:17.0721 0504 ============================================================
23:31:17.0732 0392 Detected object count: 1
23:31:17.0732 0392 Actual detected object count: 1
23:31:28.0424 0392 \Device\Harddisk0\DR0 ( Rootkit.Win32.TDSS.tdl4 ) - will be cured on reboot
23:31:28.0424 0392 \Device\Harddisk0\DR0 - ok
23:31:28.0425 0392 \Device\Harddisk0\DR0 ( Rootkit.Win32.TDSS.tdl4 ) - User select action: Cure
23:31:35.0382 1236 Deinitialize success

#10 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,698 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:03:31 PM

Posted 24 September 2011 - 05:55 PM

Good :)

Let's double check....

Please download Rootkit Unhooker from one of the following links and save it to your desktop.
Link 1 (.exe file)
Link 2 (zipped file)
Link 3 (.rar file)In order to use this tool if you downloaded from either of the second two links, you will need to extract the RKUnhookerLE.exe file using a program capable of extracing ZIP and RAR compressed files. If you don't have an extraction program, you can download, install and use the free 7-zip utility.

  • Double-click on RKUnhookerLE.exe to start the program.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • Click the Report tab, then click Scan.
  • Check Drivers, Stealth, and uncheck the rest.
  • Click OK.
  • Wait until it's finished and then go to File > Save Report.
  • Save the report to your Desktop.
  • Copy and paste the contents of the report into your next reply.
-- Note: You may get this warning...just ignore it, click OK and continue: "Rootkit Unhooker has detected a parasite inside itself! It is recommended to remove parasite, okay?".

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#11 john john 2

john john 2
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:06:31 PM

Posted 24 September 2011 - 06:04 PM

RkU Version: 3.8.389.593, Type LE (SR2)
==============================================
OS Name: Windows Vista
Version 6.0.6002 (Service Pack 2)
Number of processors #1
==============================================
>Drivers
==============================================
0x95008000 C:\Windows\system32\DRIVERS\igdkmd32.sys 7225344 bytes (Intel Corporation, Intel Graphics Kernel Mode Driver)
0x85005000 C:\Windows\system32\ntkrnlpa.exe 3907584 bytes (Microsoft Corporation, NT Kernel & System)
0x85005000 PnpManager 3907584 bytes
0x85005000 RAW 3907584 bytes
0x85005000 WMIxWDM 3907584 bytes
0x95E0D000 C:\Windows\system32\DRIVERS\NETw5v32.sys 3698688 bytes (Intel Corporation, Intel® Wireless WiFi Link Driver)
0x84460000 Win32k 2113536 bytes
0x84460000 C:\Windows\System32\win32k.sys 2113536 bytes (Microsoft Corporation, Multi-User Win32 Driver)
0x9BC00000 C:\Windows\system32\drivers\RTKVHDA.sys 2093056 bytes (Realtek Semiconductor Corp., Realtek® High Definition Audio Function Driver)
0x9BE05000 C:\Windows\system32\DRIVERS\AGRSM.sys 1163264 bytes (Agere Systems, SoftModem Device Driver)
0x8D40C000 C:\Windows\System32\Drivers\Ntfs.sys 1114112 bytes (Microsoft Corporation, NT File System Driver)
0x8D007000 C:\Windows\system32\drivers\ndis.sys 1093632 bytes (Microsoft Corporation, NDIS 6.0 wrapper driver)
0x8D209000 C:\Windows\System32\drivers\tcpip.sys 958464 bytes (Microsoft Corporation, TCP/IP Driver)
0x806D7000 C:\Windows\system32\CI.dll 917504 bytes (Microsoft Corporation, Code Integrity Module)
0xB7A5E000 C:\Windows\system32\drivers\peauth.sys 909312 bytes (Microsoft Corporation, Protected Environment Authentication and Authorization Export Driver)
0x90A9B000 C:\Windows\System32\Drivers\dump_iaStor.sys 843776 bytes
0x8CE01000 C:\Windows\system32\DRIVERS\iaStor.sys 843776 bytes (Intel Corporation, Intel Matrix Storage Manager driver - ia32)
0xB7208000 C:\Windows\system32\drivers\spsys.sys 720896 bytes (Microsoft Corporation, security processor)
0x956EC000 C:\Windows\System32\drivers\dxgkrnl.sys 655360 bytes (Microsoft Corporation, DirectX Graphics Kernel)
0x90922000 C:\Windows\system32\DRIVERS\HDAudBus.sys 577536 bytes (Microsoft Corporation, High Definition Audio Bus Driver)
0x85600000 C:\Windows\system32\drivers\Wdf01000.sys 507904 bytes (Microsoft Corporation, WDF Dynamic)
0x8CF41000 C:\Windows\System32\Drivers\ksecdd.sys 462848 bytes (Microsoft Corporation, Kernel Security Support Provider Interface)
0x9BF2E000 C:\Windows\System32\Drivers\aswSnx.SYS 458752 bytes (AVAST Software, avast! Virtualization Driver)
0x8060D000 C:\Windows\system32\mcupdate_GenuineIntel.dll 458752 bytes (Microsoft Corporation, Intel Microcode Update Library)
0xB72B8000 C:\Windows\system32\drivers\HTTP.sys 446464 bytes (Microsoft Corporation, HTTP Protocol Stack)
0xB7A0F000 C:\Windows\System32\DRIVERS\srv.sys 323584 bytes (Microsoft Corporation, Server driver)
0x90A06000 C:\Windows\System32\Drivers\aswSP.SYS 315392 bytes (AVAST Software, avast! self protection module)
0x85732000 C:\Windows\System32\drivers\volmgrx.sys 303104 bytes (Microsoft Corporation, Volume Manager Extension Driver)
0x9FEE0000 C:\Windows\system32\drivers\afd.sys 294912 bytes (Microsoft Corporation, Ancillary Function Driver for WinSock)
0x9FE67000 C:\Windows\system32\DRIVERS\avgtdix.sys 290816 bytes (AVG Technologies CZ, s.r.o., AVG Network connection watcher)
0x85689000 C:\Windows\system32\drivers\acpi.sys 286720 bytes (Microsoft Corporation, ACPI Driver for NT)
0x8D55A000 C:\Windows\system32\DRIVERS\tos_sps32.sys 274432 bytes (TOSHIBA Corporation, tos_sps2)
0x80696000 C:\Windows\system32\CLFS.SYS 266240 bytes (Microsoft Corporation, Common Log File System Driver)
0x8D36B000 C:\Windows\system32\DRIVERS\storport.sys 266240 bytes (Microsoft Corporation, Microsoft Storage Port Driver)
0x957A3000 C:\Windows\system32\DRIVERS\USBPORT.SYS 253952 bytes (Microsoft Corporation, USB 1.1 & 2.0 Port Driver)
0x9FFC3000 C:\Windows\system32\DRIVERS\avgldx86.sys 245760 bytes (AVG Technologies CZ, s.r.o., AVG AVI Loader Driver)
0x9FF66000 C:\Windows\system32\DRIVERS\rdbss.sys 245760 bytes (Microsoft Corporation, Redirected Drive Buffering SubSystem Driver)
0x8D13D000 C:\Windows\system32\drivers\NETIO.SYS 241664 bytes (Microsoft Corporation, Network I/O Subsystem)
0x90A53000 C:\Windows\system32\DRIVERS\udfs.sys 241664 bytes (Microsoft Corporation, UDF File System Driver)
0xB738F000 C:\Windows\system32\DRIVERS\mrxsmb10.sys 233472 bytes (Microsoft Corporation, Longhorn SMB Downlevel SubRdr)
0x8D51C000 C:\Windows\system32\drivers\volsnap.sys 233472 bytes (Microsoft Corporation, Volume Shadow Copy Driver)
0x90B9D000 C:\Windows\system32\drivers\aswMonFlt.sys 229376 bytes (AVAST Software, avast! File System Minifilter for Windows 2003/Vista)
0x857A1000 C:\Windows\system32\DRIVERS\usbhub.sys 217088 bytes (Microsoft Corporation, Default Hub Driver for USB)
0x853BF000 ACPI_HAL 208896 bytes
0x853BF000 C:\Windows\system32\hal.dll 208896 bytes (Microsoft Corporation, Hardware Abstraction Layer DLL)
0xB7B97000 C:\Windows\System32\Drivers\RDPWD.SYS 208896 bytes (Microsoft Corporation, RDP Terminal Stack Driver)
0x8CEFF000 C:\Windows\system32\drivers\fltmgr.sys 204800 bytes (Microsoft Corporation, Microsoft Filesystem Filter Manager)
0x9FEAE000 C:\Windows\System32\DRIVERS\netbt.sys 204800 bytes (Microsoft Corporation, MBT Transport driver)
0x90800000 C:\Windows\system32\DRIVERS\RMCAST.sys 196608 bytes (Microsoft Corporation, Reliable Multicast Transport)
0x961B2000 C:\Windows\system32\DRIVERS\SynTP.sys 196608 bytes (Synaptics, Inc., Synaptics Touchpad Driver)
0x8D33C000 C:\Windows\system32\DRIVERS\msiscsi.sys 192512 bytes (Microsoft Corporation, Microsoft iSCSI Initiator Driver)
0x909AF000 C:\Windows\system32\DRIVERS\Rtlh86.sys 192512 bytes (Realtek , Realtek 8136/8168/8169 NDIS6 32-bit Driver )
0x807C0000 C:\Windows\system32\drivers\portcls.sys 184320 bytes (Microsoft Corporation, Port Class (Class Driver for Port/Miniport Devices))
0x8D112000 C:\Windows\system32\drivers\msrpc.sys 176128 bytes (Microsoft Corporation, Kernel Remote Procedure Call Provider)
0x8CFB2000 C:\Windows\system32\DRIVERS\ks.sys 172032 bytes (Microsoft Corporation, Kernel CSA Library)
0x90830000 C:\Windows\system32\DRIVERS\nwifi.sys 172032 bytes (Microsoft Corporation, NativeWiFi Miniport Driver)
0x9086D000 C:\Windows\System32\DRIVERS\srv2.sys 163840 bytes (Microsoft Corporation, Smb 2.0 Server driver)
0x8D5B4000 C:\Windows\System32\drivers\ecache.sys 159744 bytes (Microsoft Corporation, Special Memory Device Cache)
0x856E0000 C:\Windows\system32\drivers\pci.sys 159744 bytes (Microsoft Corporation, NT Plug and Play PCI Enumerator)
0xB7B5A000 C:\Windows\system32\DRIVERS\ipnat.sys 155648 bytes (Microsoft Corporation, IP Network Address Translator)
0x8D1BA000 C:\Windows\system32\DRIVERS\SCSIPORT.SYS 155648 bytes (Microsoft Corporation, SCSI Port Driver)
0x857D6000 C:\Windows\system32\drivers\drmk.sys 151552 bytes (Microsoft Corporation, Microsoft Kernel DRM Descrambler Filter)
0x8D3C3000 C:\Windows\system32\DRIVERS\ndiswan.sys 143360 bytes (Microsoft Corporation, MS PPP Framing Driver (Strong Encryption))
0x8D30E000 C:\Windows\system32\drivers\CLASSPNP.SYS 135168 bytes (Microsoft Corporation, SCSI Class System Dll)
0x9BFBE000 C:\Windows\System32\Drivers\usbvideo.sys 135168 bytes (Microsoft Corporation, USB Video Class Driver)
0x8CFDC000 C:\Windows\System32\drivers\VIDEOPRT.SYS 135168 bytes (Microsoft Corporation, Video Port Driver)
0xB7370000 C:\Windows\system32\DRIVERS\mrxsmb.sys 126976 bytes (Microsoft Corporation, Windows NT SMB Minirdr)
0x8CED7000 C:\Windows\system32\drivers\ataport.SYS 122880 bytes (Microsoft Corporation, ATAPI Driver Extension)
0x8D19D000 C:\Windows\system32\DRIVERS\mcdbus.sys 118784 bytes (MagicISO, Inc., MagicISO SCSI Host Controller)
0xB7325000 C:\Windows\System32\DRIVERS\srvnet.sys 118784 bytes (Microsoft Corporation, Server Network driver)
0x908D2000 C:\Windows\system32\DRIVERS\bridge.sys 110592 bytes (Microsoft Corporation, MAC Bridge Driver)
0x8D2F3000 C:\Windows\System32\drivers\fwpkclnt.sys 110592 bytes (Microsoft Corporation, FWP/IPsec Kernel-Mode API)
0x90B82000 C:\Windows\system32\drivers\luafv.sys 110592 bytes (Microsoft Corporation, LUA File Virtualization Filter Driver)
0xB7342000 C:\Windows\system32\DRIVERS\bowser.sys 102400 bytes (Microsoft Corporation, NT Lan Manager Datagram Receiver Driver)
0x909DE000 C:\Windows\system32\DRIVERS\cdrom.sys 98304 bytes (Microsoft Corporation, SCSI CD-ROM Driver)
0xB73C8000 C:\Windows\system32\DRIVERS\mrxsmb20.sys 98304 bytes (Microsoft Corporation, Longhorn SMB 2.0 Redirector)
0x9FFAC000 C:\Windows\System32\Drivers\dfsc.sys 94208 bytes (Microsoft Corporation, DFS Namespace Client Driver)
0x8D3AC000 C:\Windows\system32\DRIVERS\rasl2tp.sys 94208 bytes (Microsoft Corporation, RAS L2TP mini-port/call-manager driver)
0x9BF9E000 C:\Windows\system32\DRIVERS\usbccgp.sys 94208 bytes (Microsoft Corporation, USB Common Class Generic Parent Driver)
0xB7BCA000 C:\Windows\system32\DRIVERS\cdfs.sys 90112 bytes (Microsoft Corporation, CD-ROM File System Driver)
0x9FF2F000 C:\Windows\system32\DRIVERS\pacer.sys 90112 bytes (Microsoft Corporation, QoS Packet Scheduler)
0x9FE32000 C:\Windows\system32\DRIVERS\tdx.sys 90112 bytes (Microsoft Corporation, TDI Translation Driver)
0xB735B000 C:\Windows\System32\drivers\mpsdrv.sys 86016 bytes (Microsoft Corporation, Microsoft Protection Service Driver)
0x8D178000 C:\Windows\system32\DRIVERS\rassstp.sys 86016 bytes (Microsoft Corporation, RAS SSTP Miniport Call Manager)
0x8D3E6000 C:\Windows\system32\DRIVERS\raspptp.sys 81920 bytes (Microsoft Corporation, Peer-to-Peer Tunneling Protocol)
0x9FE53000 C:\Windows\system32\DRIVERS\smb.sys 81920 bytes (Microsoft Corporation, SMB Transport driver)
0x96194000 C:\Windows\system32\DRIVERS\i8042prt.sys 77824 bytes (Microsoft Corporation, i8042 Port Driver)
0x9085A000 C:\Windows\system32\DRIVERS\rspndr.sys 77824 bytes (Microsoft Corporation, Link-Layer Topology Responder Driver for NDIS 6)
0x9FF53000 C:\Windows\system32\DRIVERS\wanarp.sys 77824 bytes (Microsoft Corporation, MS Remote Access and Routing ARP Driver)
0x9FE21000 C:\Windows\system32\DRIVERS\avgfwd6x.sys 69632 bytes (AVG Technologies CZ, s.r.o., AVG Filter Driver)
0x8D5DB000 C:\Windows\system32\drivers\disk.sys 69632 bytes (Microsoft Corporation, PnP Disk Driver)
0x8D1ED000 C:\Windows\System32\Drivers\NDProxy.SYS 69632 bytes (Microsoft Corporation, NDIS Proxy)
0x8067D000 C:\Windows\system32\PSHED.dll 69632 bytes (Microsoft Corporation, Platform Specific Hardware Error Driver)
0x8CF31000 C:\Windows\system32\drivers\fileinfo.sys 65536 bytes (Microsoft Corporation, FileInfo Filter Driver)
0x90BD8000 C:\Windows\system32\DRIVERS\lltdio.sys 65536 bytes (Microsoft Corporation, Link-Layer Topology Mapper I/O Driver)
0x8577C000 C:\Windows\System32\drivers\mountmgr.sys 65536 bytes (Microsoft Corporation, Mount Point Manager)
0x8D18D000 C:\Windows\system32\DRIVERS\termdd.sys 65536 bytes (Microsoft Corporation, Terminal Server Driver)
0x9090F000 C:\Windows\system32\DRIVERS\intelppm.sys 61440 bytes (Microsoft Corporation, Processor Device Driver)
0x90B73000 C:\Windows\system32\DRIVERS\monitor.sys 61440 bytes (Microsoft Corporation, Monitor Driver)
0x8D5A5000 C:\Windows\System32\Drivers\mup.sys 61440 bytes (Microsoft Corporation, Multiple UNC Provider driver)
0x85707000 C:\Windows\System32\drivers\partmgr.sys 61440 bytes (Microsoft Corporation, Partition Management Driver)
0x957F0000 C:\Windows\system32\DRIVERS\raspppoe.sys 61440 bytes (Microsoft Corporation, RAS PPPoE mini-port/call-manager driver)
0x957E1000 C:\Windows\system32\DRIVERS\usbehci.sys 61440 bytes (Microsoft Corporation, EHCI eUSB Miniport Driver)
0x85723000 C:\Windows\system32\drivers\volmgr.sys 61440 bytes (Microsoft Corporation, Volume Manager Driver)
0x846A0000 C:\Windows\System32\cdd.dll 57344 bytes (Microsoft Corporation, Canonical Display Driver)
0x9FF45000 C:\Windows\system32\DRIVERS\netbios.sys 57344 bytes (Microsoft Corporation, NetBIOS interface driver)
0x9FE0A000 C:\Windows\System32\Drivers\Npfs.SYS 57344 bytes (Microsoft Corporation, NPFS Driver)
0x85793000 C:\Windows\system32\DRIVERS\PCIIDEX.SYS 57344 bytes (Microsoft Corporation, PCI IDE Bus Driver Extension)
0x90A8E000 C:\Windows\System32\Drivers\crashdmp.sys 53248 bytes (Microsoft Corporation, Crash Dump Driver)
0x9BF21000 C:\Windows\system32\drivers\modem.sys 53248 bytes (Microsoft Corporation, Modem Device Driver)
0x8D1E0000 C:\Windows\system32\DRIVERS\umbus.sys 53248 bytes (Microsoft Corporation, User-Mode Bus Enumerator)
0x8567C000 C:\Windows\system32\drivers\WDFLDR.SYS 53248 bytes (Microsoft Corporation, WDFLDR)
0x9BFDF000 C:\Windows\system32\DRIVERS\avgmfx86.sys 49152 bytes (AVG Technologies CZ, s.r.o., AVG Resident Shield Minifilter Driver)
0xB7B46000 C:\Windows\System32\drivers\tcpipreg.sys 49152 bytes (Microsoft Corporation, TCP/IP Registry Compatibility Driver)
0xB7B8B000 C:\Windows\System32\DRIVERS\tssecsrv.sys 49152 bytes (Microsoft Corporation, TS Security Filter Driver)
0x8D400000 C:\Windows\System32\drivers\vga.sys 49152 bytes (Microsoft Corporation, VGA/Super VGA Video Driver)
0x9578C000 C:\Windows\System32\drivers\watchdog.sys 49152 bytes (Microsoft Corporation, Watchdog Driver)
0x9FE48000 C:\Windows\System32\Drivers\aswTdi.SYS 45056 bytes (AVAST Software, avast! TDI Filter Driver)
0x961A7000 C:\Windows\system32\DRIVERS\kbdclass.sys 45056 bytes (Microsoft Corporation, Keyboard Class Driver)
0x961E4000 C:\Windows\system32\DRIVERS\mouclass.sys 45056 bytes (Microsoft Corporation, Mouse Class Driver)
0x807F5000 C:\Windows\System32\Drivers\Msfs.SYS 45056 bytes (Microsoft Corporation, Mailslot driver)
0x95E00000 C:\Windows\system32\DRIVERS\ndistapi.sys 45056 bytes (Microsoft Corporation, NDIS 3.0 connection wrapper driver)
0x961F5000 C:\Windows\system32\DRIVERS\TDI.SYS 45056 bytes (Microsoft Corporation, TDI Wrapper)
0xB7B80000 C:\Windows\system32\drivers\tdtcp.sys 45056 bytes (Microsoft Corporation, TCP Transport Driver)
0x908F3000 C:\Windows\system32\DRIVERS\tunnel.sys 45056 bytes (Microsoft Corporation, Microsoft Tunnel Interface Driver)
0x95798000 C:\Windows\system32\DRIVERS\usbuhci.sys 45056 bytes (Microsoft Corporation, UHCI USB Miniport Driver)
0x85719000 C:\Windows\system32\DRIVERS\BATTC.SYS 40960 bytes (Microsoft Corporation, Battery Class Driver)
0x90B69000 C:\Windows\System32\drivers\Dxapi.sys 40960 bytes (Microsoft Corporation, DirectX API Driver)
0x8CEF5000 C:\Windows\system32\drivers\msahci.sys 40960 bytes (Microsoft Corporation, MS AHCI 1.0 Standard Driver)
0x909F6000 C:\Windows\system32\DRIVERS\mssmbios.sys 40960 bytes (Microsoft Corporation, System Management BIOS Driver)
0x90BE8000 C:\Windows\system32\DRIVERS\ndisuio.sys 40960 bytes (Microsoft Corporation, NDIS User mode I/O driver)
0x9FFA2000 C:\Windows\system32\drivers\nsiproxy.sys 40960 bytes (Microsoft Corporation, NSI Proxy)
0xB7B3C000 C:\Windows\System32\Drivers\secdrv.SYS 40960 bytes (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K., Macrovision SECURITY Driver)
0x807B7000 C:\Windows\System32\Drivers\BlackBox.sys 36864 bytes (RKU Driver)
0x8D5EC000 C:\Windows\system32\drivers\crcdisk.sys 36864 bytes (Microsoft Corporation, Disk Block Verification Filter Driver)
0x9BFEB000 C:\Windows\System32\Drivers\Fs_Rec.SYS 36864 bytes (Microsoft Corporation, File System Recognizer Driver)
0x9FE18000 C:\Windows\System32\DRIVERS\rasacd.sys 36864 bytes (Microsoft Corporation, RAS Automatic Connection Driver)
0x84680000 C:\Windows\System32\TSDDD.dll 36864 bytes (Microsoft Corporation, Framebuffer Display Driver)
0x908FE000 C:\Windows\system32\DRIVERS\tunmp.sys 36864 bytes (Microsoft Corporation, Microsoft Tunnel Interface Driver)
0x9BFB5000 C:\Windows\System32\Drivers\UVCFTR_S.SYS 36864 bytes (Chicony Electronics Co., Ltd., UVCFTR_S.sys)
0x856CF000 C:\Windows\system32\drivers\WMILIB.SYS 36864 bytes (Microsoft Corporation, WMILIB WMI support library Dll)
0x8CECF000 C:\Windows\system32\drivers\atapi.sys 32768 bytes (Microsoft Corporation, ATAPI IDE Miniport Driver)
0x8068E000 C:\Windows\system32\BOOTVID.dll 32768 bytes (Microsoft Corporation, VGA Boot Driver)
0x90907000 C:\Windows\system32\DRIVERS\FwLnk.sys 32768 bytes (TOSHIBA Corporation, TOSHIBA Firmware Linkage 32-bit Driver)
0x856D8000 C:\Windows\system32\drivers\msisadrv.sys 32768 bytes (Microsoft Corporation, ISA Driver)
0x8D200000 C:\Windows\System32\DRIVERS\RDPCDD.sys 32768 bytes (Microsoft Corporation, RDP Miniport)
0x807ED000 C:\Windows\system32\drivers\rdpencdd.sys 32768 bytes (Microsoft Corporation, RDP Miniport)
0x8D59D000 C:\Windows\System32\Drivers\spldr.sys 32768 bytes (Microsoft Corporation, loader for security processor)
0xB7B52000 C:\Windows\system32\WinFLdrv.sys 32768 bytes
0x9FF28000 C:\Windows\System32\Drivers\aswRdr.SYS 28672 bytes (AVAST Software, avast! TDI RDR Driver)
0x8D5F5000 C:\Windows\system32\DRIVERS\avgrkx86.sys 28672 bytes (AVG Technologies CZ, s.r.o., AVG Anti-Rootkit Driver)
0x95000000 C:\Windows\System32\Drivers\Beep.SYS 28672 bytes (Microsoft Corporation, BEEP Driver)
0x80606000 C:\Windows\system32\kdcom.dll 28672 bytes (Microsoft Corporation, Kernel Debugger HW Extension DLL)
0x9BFF4000 C:\Windows\System32\Drivers\Null.SYS 28672 bytes (Microsoft Corporation, NULL Driver)
0x8578C000 C:\Windows\system32\DRIVERS\pciide.sys 28672 bytes (Microsoft Corporation, Generic PCI IDE Bus Driver)
0x961EF000 C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 24576 bytes (GEAR Software Inc., CD DVD Filter)
0x8D555000 C:\Windows\system32\DRIVERS\TVALZ_O.SYS 20480 bytes (TOSHIBA Corporation, TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver)
0x8D5FC000 C:\Windows\system32\DRIVERS\AVGIDSEH.Sys 16384 bytes (AVG Technologies CZ, s.r.o. , IDS Application Activity Monitor Helper Driver.)
0x9091E000 C:\Windows\system32\DRIVERS\CmBatt.sys 16384 bytes (Microsoft Corporation, Control Method Battery Driver)
0x90BD5000 C:\Windows\System32\Drivers\aswFsBlk.SYS 12288 bytes (AVAST Software, avast! File System Access Blocking Driver)
0x85716000 C:\Windows\system32\DRIVERS\compbatt.sys 12288 bytes (Microsoft Corporation, Composite Battery Driver)
0x95E0B000 C:\Windows\system32\DRIVERS\swenum.sys 8192 bytes (Microsoft Corporation, Plug and Play Software Device Enumerator)
0x961E2000 C:\Windows\system32\DRIVERS\USBD.SYS 8192 bytes (Microsoft Corporation, Universal Serial Bus Driver)
==============================================
>Stealth
==============================================


Nothing detected :(

#12 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,698 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:03:31 PM

Posted 24 September 2011 - 06:06 PM

Very good :)

How is computer doing?

Download Security Check from HERE, and save it to your Desktop.

* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.

=============================================================================

Please download MiniToolBox and run it.

Checkmark following boxes:
  • Report IE Proxy Settings
  • Report FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size
Click Go and post the result.

=============================================================================

Download Malwarebytes' Anti-Malware (aka MBAM): https://www.bleepingcomputer.com/download/malwarebytes-anti-malware/ to your desktop.

* Double-click mbam-setup.exe and follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad.
* Post the log back here.

Be sure to restart the computer.

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#13 john john 2

john john 2
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:06:31 PM

Posted 24 September 2011 - 06:10 PM

Thank you so much for the help, I have installed Avast today, should I still do the MalwareBytes instillation?

Results of screen317's Security Check version 0.99.7
Windows Vista Service Pack 2 (UAC is enabled)
Internet Explorer 8
``````````````````````````````
Antivirus/Firewall Check:

Windows Security Center service is not running! This report may not be accurate!
Windows Firewall Enabled!
avast! Free Antivirus
AVG 2011
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:

MVPS Hosts File
Rootkit Unhooker LE 3.8 SR 2
CCleaner
Java™ 6 Update 21
Out of date Java installed!
Adobe Flash Player 10.3.181.14
Adobe Reader 8.1.4
Out of date Adobe Reader installed!
````````````````````````````````
Process Check:
objlist.exe by Laurent

AVG avgwdsvc.exe
Microsoft Small Business Business Contact Manager BcmSqlStartupSvc.exe
AVAST Software Avast AvastSvc.exe
AVAST Software Avast AvastUI.exe
``````````End of Log````````````


Minitoolbox log coming in 1 minute!

#14 john john 2

john john 2
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:06:31 PM

Posted 24 September 2011 - 06:13 PM

MiniToolBox by Farbar
Ran by John (administrator) on 25-09-2011 at 00:08:32
Windows Vista ™ Home Premium Service Pack 2 (X86)

***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

========================= FF Proxy Settings: ==============================

========================= Hosts content: =================================

127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com

There are 14975 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add address name="Network Bridge" address=192.168.0.1


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Larry-the-Laptop
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Network Bridge:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : MAC Bridge Miniport
Physical Address. . . . . . . . . : 02-1E-33-6A-19-3F
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Morings Connection, nobody elses:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® Wireless WiFi Link 5100
Physical Address. . . . . . . . . : 00-21-5D-67-00-F4
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::348c:56d6:9560:86b%10(Preferred)
IPv4 Address. . . . . . . . . . . : 10.0.0.7(Preferred)
Subnet Mask . . . . . . . . . . . : 255.0.0.0
Lease Obtained. . . . . . . . . . : 24 September 2011 23:33:38
Lease Expires . . . . . . . . . . : 25 September 2011 23:33:37
Default Gateway . . . . . . . . . : 10.0.0.2
DHCP Server . . . . . . . . . . . : 10.0.0.2
DHCPv6 IAID . . . . . . . . . . . : 201335133
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-10-D9-2D-95-00-1E-33-6A-19-3F
DNS Servers . . . . . . . . . . . : 10.0.0.2
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 54:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{7AAF1736-8E48-4AC7-9F55-81933758BCF8}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fb:cdc:2bba:a06d:49ac(Preferred)
Link-local IPv6 Address . . . . . : fe80::cdc:2bba:a06d:49ac%11(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 18:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{927011F6-887C-4D1C-A122-5111A1D7ED14}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 19:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 20:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 21:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 22:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #6
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 23:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #7
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 60:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{7AAF1736-8E48-4AC7-9F55-81933758BCF8}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 24:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{D9B8208D-AC80-48FC-89C4-3DF1540BE079}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 33:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{7AAF1736-8E48-4AC7-9F55-81933758BCF8}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 113:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{7AAF1736-8E48-4AC7-9F55-81933758BCF8}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 331:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{7AAF1736-8E48-4AC7-9F55-81933758BCF8}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 734:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{BE095844-1269-426C-920E-EE68463E0BA3}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 739:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{BE095844-1269-426C-920E-EE68463E0BA3}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 740:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{BE095844-1269-426C-920E-EE68463E0BA3}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 743:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 6TO4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 16:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{7AAF1736-8E48-4AC7-9F55-81933758BCF8}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 746:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{BE095844-1269-426C-920E-EE68463E0BA3}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 728:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 6TO4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 10.0.0.2

DNS request timed out.
timeout was 2 seconds.
Name: google.com
Addresses: 74.125.230.144
74.125.230.147
74.125.230.148
74.125.230.145
74.125.230.146



Pinging google.com [74.125.230.147] with 32 bytes of data:

Reply from 74.125.230.147: bytes=32 time=14ms TTL=54

Reply from 74.125.230.147: bytes=32 time=12ms TTL=54



Ping statistics for 74.125.230.147:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 12ms, Maximum = 14ms, Average = 13ms

DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 10.0.0.2

DNS request timed out.
timeout was 2 seconds.
Name: yahoo.com
Addresses: 69.147.125.65
72.30.2.43
98.137.149.56
209.191.122.70
67.195.160.76



Pinging yahoo.com [69.147.125.65] with 32 bytes of data:

Reply from 69.147.125.65: bytes=32 time=89ms TTL=46

Reply from 69.147.125.65: bytes=32 time=150ms TTL=46



Ping statistics for 69.147.125.65:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 89ms, Maximum = 150ms, Average = 119ms



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
731 ...02 1e 33 6a 19 3f ...... MAC Bridge Miniport
10 ...00 21 5d 67 00 f4 ...... Intel® Wireless WiFi Link 5100
1 ........................... Software Loopback Interface 1
51 ...00 00 00 00 00 00 00 e0 isatap.{7AAF1736-8E48-4AC7-9F55-81933758BCF8}
11 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
13 ...00 00 00 00 00 00 00 e0 isatap.{927011F6-887C-4D1C-A122-5111A1D7ED14}
15 ...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
16 ...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
17 ...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
18 ...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #6
19 ...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #7
57 ...00 00 00 00 00 00 00 e0 isatap.{7AAF1736-8E48-4AC7-9F55-81933758BCF8}
723 ...00 00 00 00 00 00 00 e0 isatap.{D9B8208D-AC80-48FC-89C4-3DF1540BE079}
29 ...00 00 00 00 00 00 00 e0 isatap.{7AAF1736-8E48-4AC7-9F55-81933758BCF8}
110 ...00 00 00 00 00 00 00 e0 isatap.{7AAF1736-8E48-4AC7-9F55-81933758BCF8}
328 ...00 00 00 00 00 00 00 e0 isatap.{7AAF1736-8E48-4AC7-9F55-81933758BCF8}
741 ...00 00 00 00 00 00 00 e0 isatap.{BE095844-1269-426C-920E-EE68463E0BA3}
736 ...00 00 00 00 00 00 00 e0 isatap.{BE095844-1269-426C-920E-EE68463E0BA3}
739 ...00 00 00 00 00 00 00 e0 isatap.{BE095844-1269-426C-920E-EE68463E0BA3}
740 ...00 00 00 00 00 00 00 e0 6TO4 Adapter
747 ...00 00 00 00 00 00 00 e0 isatap.{7AAF1736-8E48-4AC7-9F55-81933758BCF8}
745 ...00 00 00 00 00 00 00 e0 isatap.{BE095844-1269-426C-920E-EE68463E0BA3}
746 ...00 00 00 00 00 00 00 e0 6TO4 Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 10.0.0.2 10.0.0.7 30
10.0.0.0 255.0.0.0 On-link 10.0.0.7 286
10.0.0.7 255.255.255.255 On-link 10.0.0.7 286
10.255.255.255 255.255.255.255 On-link 10.0.0.7 286
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 10.0.0.7 286
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 10.0.0.7 286
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
11 18 ::/0 On-link
1 306 ::1/128 On-link
11 18 2001::/32 On-link
11 266 2001:0:5ef5:79fb:cdc:2bba:a06d:49ac/128
On-link
10 286 fe80::/64 On-link
11 266 fe80::/64 On-link
11 266 fe80::cdc:2bba:a06d:49ac/128
On-link
10 286 fe80::348c:56d6:9560:86b/128
On-link
1 306 ff00::/8 On-link
11 266 ff00::/8 On-link
10 286 ff00::/8 On-link
===========================================================================
Persistent Routes:
None

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/24/2011 11:34:38 PM) (Source: Windows Search Service) (User: )
Description: The application cannot be initialized.

Context: Windows Application

Details:
The content index metadata cannot be read. (0xc0041801)

Error: (09/24/2011 11:34:38 PM) (Source: Windows Search Service) (User: )
Description: The gatherer object cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
The content index metadata cannot be read. (0xc0041801)

Error: (09/24/2011 11:34:38 PM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
Element not found. (0x80070490)

Error: (09/24/2011 11:34:37 PM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.JetPropStore> cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
The content index metadata cannot be read. (0xc0041801)

Error: (09/24/2011 11:34:37 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service cannot load the property store information.

Context: Windows Application, SystemIndex Catalog

Details:
0x%08x (0x80041181 - The content index server cannot find a description of the content index in its database. Search will automatically attempt to recreate the content index description. If this problem persists, stop and restart the search service and, if necessary, delete and recreate the content index. )

Error: (09/24/2011 11:34:28 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/24/2011 11:29:13 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/24/2011 11:28:29 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (09/24/2011 09:16:33 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/24/2011 09:13:02 PM) (Source: Application Error) (User: )
Description: Faulting application svchost.exe, version 6.0.6001.18000, time stamp 0x47918b89, faulting module mshtml.dll, version 8.0.6001.19048, time stamp 0x4d635562, exception code 0xc0000005, fault offset 0x00109484,
process id 0x3a0, application start time 0xsvchost.exe0.


System errors:
=============
Error: (09/25/2011 00:04:06 AM) (Source: Service Control Manager) (User: )
Description: AMService1

Error: (09/24/2011 11:36:02 PM) (Source: Service Control Manager) (User: )
Description: Windows Search%%1053

Error: (09/24/2011 11:36:02 PM) (Source: Service Control Manager) (User: )
Description: 30000Windows Search

Error: (09/24/2011 11:36:02 PM) (Source: DCOM) (User: )
Description: 1053WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error: (09/24/2011 11:35:59 PM) (Source: Service Control Manager) (User: )
Description: Windows Search1300001Restart the service

Error: (09/24/2011 11:34:38 PM) (Source: Service Control Manager) (User: )
Description: Windows Search2147749155 (0x80040D23)

Error: (09/24/2011 11:29:55 PM) (Source: iaStor) (User: )
Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.

Error: (09/24/2011 11:29:14 PM) (Source: Service Control Manager) (User: )
Description: aswSnx
aswSP
aswTdi
Avgldx86
Avgmfx86
spldr
Wanarpv6

Error: (09/24/2011 11:29:14 PM) (Source: Service Control Manager) (User: )
Description: Windows Media Center Extender ServiceFunction Discovery Provider Host%%1068

Error: (09/24/2011 11:29:14 PM) (Source: Service Control Manager) (User: )
Description: PnP-X IP Bus EnumeratorFunction Discovery Provider Host%%1068


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Adobe Flash Player 10 ActiveX (Version: 10.1.82.76)
Adobe Flash Player 10 Plugin (Version: 10.3.181.14)
Adobe Reader 8.1.4 (Version: 8.1.4)
Apple Application Support (Version: 1.1.0)
Apple Mobile Device Support (Version: 2.6.0.32)
Apple Software Update (Version: 2.1.1.116)
avast! Free Antivirus (Version: 6.0.1289.0)
AVG 2011 (Version: 10.0.1382)
AVG 2011 (Version: 10.0.1511)
Business Contact Manager for Outlook 2007 SP2 (Version: 3.0.8619.1)
Camera Assistant Software for Toshiba (Version: 1.7.193.0508L)
CCleaner (Version: 3.10)
CD/DVD Drive Acoustic Silencer (Version: 2.02.03)
Compatibility Pack for the 2007 Office system (Version: 12.0.6425.1000)
Google Update Helper (Version: 1.2.183.23)
HiJackThis (Version: 1.0.0)
Intel® Graphics Media Accelerator Driver
Intel® Matrix Storage Manager
iTunes (Version: 9.0.3.15)
Java Auto Updater (Version: 2.0.2.4)
Java™ 6 Update 21 (Version: 6.0.210)
Junk Mail filter update (Version: 14.0.8089.726)
LG USB Modem driver (Version: 4.9.2)
Magic ISO Maker v5.5 (build 0276)
MagicDisc 2.7.106
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Office 2003 Web Components (Version: 11.0.8173.0)
Microsoft Office 2007 Primary Interop Assemblies (Version: 12.0.4518.1014)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Live Add-in 1.3 (Version: 2.0.2313.0)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6425.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Small Business Connectivity Components (Version: 2.0.7024.0)
Microsoft Office Word 2007 (Version: 12.0.6425.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Search Enhancement Pack (Version: 3.0.127.0)
Microsoft Silverlight (Version: 4.0.60310.0)
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server 2005 Express Edition (MSSMLBIZ) (Version: 9.4.5000.00)
Microsoft SQL Server Native Client (Version: 9.00.5000.00)
Microsoft SQL Server Setup Support Files (English) (Version: 9.00.5000.00)
Microsoft SQL Server VSS Writer (Version: 9.00.5000.00)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Visual C Runtime (Version: 8.0.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Microsoft XML Parser (Version: 8.20.8730.4)
Mozilla Firefox 6.0.2 (x86 en-US) (Version: 6.0.2)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB941833) (Version: 4.20.9849.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
OpenOffice.org 3.0 (Version: 3.0.9379)
PC Wizard 2009.1.90
QuickTime (Version: 7.65.17.80)
Realtek 8169 8168 8101E 8102E Ethernet Driver (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.5599)
Realtek USB 2.0 Card Reader (Version: )
Revo Uninstaller Pro 2.5.3 (Version: 2.5.3)
Rootkit Unhooker LE 3.8 SR 2
Softonic-Eng7 Toolbar (Version: )
SopCast 3.2.9 (Version: 3.2.9)
Street-Ads Browser Enhancer
Synaptics Pointing Device Driver (Version: 11.2.4.0)
TeamViewer 5 (Version: 5.1.9220 )
TOSHIBA ConfigFree (Version: 7.2.20)
TOSHIBA DVD PLAYER (Version: 1.31.14)
TOSHIBA Extended Tiles for Windows Mobility Center (Version: 1.01.00)
TOSHIBA Face Recognition (Version: 2.0.2.32)
TOSHIBA Hardware Setup (Version: 2.00.08)
TOSHIBA Software Modem (Version: 2.1.77 (SM2177ALD04))
TOSHIBA Supervisor Password (Version: 2.00.04)
Toshiba TEMPRO (Version: 1.1)
TOSHIBA Value Added Package (Version: 1.1.24)
TRDCReminder (Version: 1.00.0015)
TRORDCLauncher (Version: 1.0.0.1)
Uninstall 1.0.0.1
Windows Live Call (Version: 14.0.8064.0206)
Windows Live Communications Platform (Version: 14.0.8064.206)
Windows Live Essentials (Version: 14.0.8089.0726)
Windows Live Essentials (Version: 14.0.8089.726)
Windows Live Family Safety (Version: 14.0.8093.805)
Windows Live Mail (Version: 14.0.8089.0726)
Windows Live Messenger (Version: 14.0.8089.0726)
Windows Live Photo Gallery (Version: 14.0.8081.709)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live Toolbar (Version: 14.0.8064.206)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8089.0726)
Windows Media Encoder 9 Series
Windows Media Encoder 9 Series (Version: 9.00.3374)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinRAR archiver
Wondershare Photo Story Platinum 3.2.1.2 (Version: 3.2.1.2)

========================= Memory info: ===================================

Percentage of memory in use: 53%
Total physical RAM: 2939.26 MB
Available physical RAM: 1377 MB
Total Pagefile: 6090.71 MB
Available Pagefile: 4606.55 MB
Total Virtual: 2047.88 MB
Available Virtual: 1955.69 MB

========================= Partitions: =====================================

1 Drive c: (Vista) (Fixed) (Total:74.37 GB) (Free:15.39 GB) NTFS
2 Drive e: (Data) (Fixed) (Total:73.21 GB) (Free:67.04 GB) NTFS
3 Drive f: (FM2010) (CDROM) (Total:2.3 GB) (Free:0 GB) UDF

========================= Users: ========================================

User accounts for \\LARRY-THE-LAPTO

Administrator Faster Guest
John


**** End of log ****

#15 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,698 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:03:31 PM

Posted 24 September 2011 - 06:14 PM

Avast and Malwarebytes are different type of tools and they will coexist.
However I can see you're already running AVG.
You can't run two AV programs (AVG and Avast).
If you want to switch to Avast you must uninstall AVG using AVG Remover: http://www.avg.com/us-en/utilities

You didn't say how is computer doing.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users