Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

SVCHost infection


  • Please log in to reply
17 replies to this topic

#1 meancheese

meancheese

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:03:04 PM

Posted 29 October 2011 - 07:20 PM

Hi all, just used my laptop for the first time after a week or so. I don't have much time, but the lowdown is: I have Panda 2011 and it just won't stop notifying me of "Unknown virus blocked" "A malicious program has been detected and blocked in order to guarantee the security of your computer and prevent it from spreading." The log is full to the brim and more with this event about every 5 seconds. The file directory is : C:\Users\MyUsername\AppData\Roaming\Windir\SVCHOST.exe. It is an SFX Self-Cabinet Extractor and when I scan it individually with Panda, it say it's infected with Trj/CI.A. Tried finding a solution through Panda's Solution or whatever site thingy, but as you will probably tell me, I'm looking at changing my protection software. Strangely, the one thing the Panda site did say was that it was originally detected in 08. Weird. Any help would be great. Nothing catastrophic yet, but it's annoying as hell and slowing my performance. Thanks.
Who are you? I know you? Handy with a computer? Psshhh. Shyeah..humpph...he-Ok, just give me the damn thing!

BC AdBot (Login to Remove)

 


#2 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,716 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:01:04 PM

Posted 30 October 2011 - 01:38 PM

Download Security Check from HERE, and save it to your Desktop.

* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.

=============================================================================

Please download MiniToolBox and run it.

Checkmark following boxes:
  • Report IE Proxy Settings
  • Report FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size
Click Go and post the result.

=============================================================================

Download Malwarebytes' Anti-Malware (aka MBAM): https://www.bleepingcomputer.com/download/malwarebytes-anti-malware/ to your desktop.

* Double-click mbam-setup.exe and follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad.
* Post the log back here.

Be sure to restart the computer.

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

=============================================================================

Please download GMER from one of the following locations and save it to your desktop:
  • Main Mirror
    This version will download a randomly named file (Recommended)
  • Zipped Mirror
    This version will download a zip file you will need to extract first. If you use this mirror, please extract the zip file to your desktop.
  • Disconnect from the Internet and close all running programs.
  • Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.
  • Double-click on the randomly named GMER file (i.e. n7gmo46c.exe) and allow the gmer.sys driver to load if asked.
  • Note: If you downloaded the zipped version, extract the file to its own folder such as C:\gmer and then double-click on gmer.exe.

    Posted Image
  • GMER will open to the Rootkit/Malware tab and perform an automatic quick scan when first run. (do not use the computer while the scan is in progress)
  • If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
  • Now click the Scan button. If you see a rootkit warning window, click OK.
  • When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
  • Click the Copy button and paste the results into your next reply.
  • Exit GMER and be sure to re-enable your anti-virus, Firewall and any other security programs you had disabled.

IMPORTANT! If for some reason GMER refuses to run, try again.
If it still fails, try to UN-check "Devices" in right pane.
If still no joy, try to run it from Safe Mode.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#3 meancheese

meancheese
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:03:04 PM

Posted 30 October 2011 - 02:45 PM

Can't even get to your Security Check download site. With Panda off, I still get a page that only says "Panda GP 2012 has cataloged this page as a Malware page." And I have no in-browser Panda add-ons or monitoring. Weird. Hate Panda.
Who are you? I know you? Handy with a computer? Psshhh. Shyeah..humpph...he-Ok, just give me the damn thing!

#4 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,716 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:01:04 PM

Posted 30 October 2011 - 02:52 PM

Disable Panda for a moment.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#5 meancheese

meancheese
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:03:04 PM

Posted 30 October 2011 - 03:46 PM

I already did, that's what I was sayin. Even with it off, it still acting like it's monitoring websites
Who are you? I know you? Handy with a computer? Psshhh. Shyeah..humpph...he-Ok, just give me the damn thing!

#6 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,716 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:01:04 PM

Posted 30 October 2011 - 04:50 PM

Restart in Safe Mode with Networking and download from there.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#7 meancheese

meancheese
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:03:04 PM

Posted 30 October 2011 - 05:05 PM

Results of screen317's Security Check version 0.99.24
Windows Vista x64 (UAC is enabled)
Out of date service pack!!
Internet Explorer 8 Out of date!
``````````````````````````````
Antivirus/Firewall Check:

Windows Security Center service is not running! This report may not be accurate!
Windows Firewall Disabled!
Panda Global Protection 2010
Panda Global Protection 2012
Panda Global Protection 2010
Panda Global Protection 2012
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:

Malwarebytes' Anti-Malware
Java™ 6 Update 29
Adobe Flash Player 11.0.1.152
Mozilla Thunderbird (3.1.11) Thunderbird Out of Date!
````````````````````````````````
Process Check:
objlist.exe by Laurent

``````````End of Log````````````
Who are you? I know you? Handy with a computer? Psshhh. Shyeah..humpph...he-Ok, just give me the damn thing!

#8 meancheese

meancheese
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:03:04 PM

Posted 30 October 2011 - 05:08 PM

MiniToolBox by Farbar
Ran by Megeddo (administrator) on 30-10-2011 at 17:08:22
Windows ™ Vista Home Premium Service Pack 1 (X64)

***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

========================= FF Proxy Settings: ==============================

========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Megeddo-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® WiFi Link 5100 AGN
Physical Address. . . . . . . . . : 00-21-6B-68-68-82
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::53f:8372:e471:5ec6%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.16(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Sunday, October 30, 2011 5:01:11 PM
Lease Expires . . . . . . . . . . : Sunday, October 30, 2011 6:01:11 PM
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DNS Servers . . . . . . . . . . . : 68.105.28.11
68.105.29.11
68.105.28.12
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller
Physical Address. . . . . . . . . : 00-23-8B-70-62-39
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{ABB16F87-2A26-4BA7-9537-C97BB5355B8F}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 18:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{C30D4AFC-C980-4E95-BE67-ED267D42A84D}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 17:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{C30D4AFC-C980-4E95-BE67-ED267D42A84D}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 19:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{ABB16F87-2A26-4BA7-9537-C97BB5355B8F}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 21:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{C30D4AFC-C980-4E95-BE67-ED267D42A84D}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 22:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{C30D4AFC-C980-4E95-BE67-ED267D42A84D}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 23:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{ABB16F87-2A26-4BA7-9537-C97BB5355B8F}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 25:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{C30D4AFC-C980-4E95-BE67-ED267D42A84D}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 26:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{C30D4AFC-C980-4E95-BE67-ED267D42A84D}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 27:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.armp.org
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 28:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{ABB16F87-2A26-4BA7-9537-C97BB5355B8F}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 29:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{C30D4AFC-C980-4E95-BE67-ED267D42A84D}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 30:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{C30D4AFC-C980-4E95-BE67-ED267D42A84D}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 31:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{ABB16F87-2A26-4BA7-9537-C97BB5355B8F}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 32:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{ABB16F87-2A26-4BA7-9537-C97BB5355B8F}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{ABB16F87-2A26-4BA7-9537-C97BB5355B8F}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 13:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{ABB16F87-2A26-4BA7-9537-C97BB5355B8F}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 35:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{C30D4AFC-C980-4E95-BE67-ED267D42A84D}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: cdns1.cox.net
Address: 68.105.28.11

Name: google.com
Addresses: 173.194.64.103
173.194.64.104
173.194.64.105
173.194.64.106
173.194.64.147
173.194.64.99



Pinging google.com [173.194.64.105] with 32 bytes of data:

Reply from 173.194.64.105: bytes=32 time=46ms TTL=49

Reply from 173.194.64.105: bytes=32 time=43ms TTL=49



Ping statistics for 173.194.64.105:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 43ms, Maximum = 46ms, Average = 44ms

Server: cdns1.cox.net
Address: 68.105.28.11

Name: yahoo.com
Addresses: 209.191.122.70
67.195.160.76
72.30.2.43
98.137.149.56
98.139.180.149



Pinging yahoo.com [72.30.2.43] with 32 bytes of data:

Reply from 72.30.2.43: bytes=32 time=79ms TTL=57

Reply from 72.30.2.43: bytes=32 time=77ms TTL=57



Ping statistics for 72.30.2.43:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 77ms, Maximum = 79ms, Average = 78ms



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
11 ...00 21 6b 68 68 82 ...... Intel® WiFi Link 5100 AGN
10 ...00 23 8b 70 62 39 ...... Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller
1 ........................... Software Loopback Interface 1
13 ...00 00 00 00 00 00 00 e0 isatap.{ABB16F87-2A26-4BA7-9537-C97BB5355B8F}
19 ...00 00 00 00 00 00 00 e0 isatap.{C30D4AFC-C980-4E95-BE67-ED267D42A84D}
14 ...00 00 00 00 00 00 00 e0 isatap.{C30D4AFC-C980-4E95-BE67-ED267D42A84D}
12 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
16 ...00 00 00 00 00 00 00 e0 isatap.{ABB16F87-2A26-4BA7-9537-C97BB5355B8F}
20 ...00 00 00 00 00 00 00 e0 isatap.{C30D4AFC-C980-4E95-BE67-ED267D42A84D}
21 ...00 00 00 00 00 00 00 e0 isatap.{C30D4AFC-C980-4E95-BE67-ED267D42A84D}
22 ...00 00 00 00 00 00 00 e0 isatap.{ABB16F87-2A26-4BA7-9537-C97BB5355B8F}
24 ...00 00 00 00 00 00 00 e0 isatap.{C30D4AFC-C980-4E95-BE67-ED267D42A84D}
25 ...00 00 00 00 00 00 00 e0 isatap.{C30D4AFC-C980-4E95-BE67-ED267D42A84D}
26 ...00 00 00 00 00 00 00 e0 isatap.armp.org
27 ...00 00 00 00 00 00 00 e0 isatap.{ABB16F87-2A26-4BA7-9537-C97BB5355B8F}
31 ...00 00 00 00 00 00 00 e0 isatap.{C30D4AFC-C980-4E95-BE67-ED267D42A84D}
28 ...00 00 00 00 00 00 00 e0 isatap.{C30D4AFC-C980-4E95-BE67-ED267D42A84D}
29 ...00 00 00 00 00 00 00 e0 isatap.{ABB16F87-2A26-4BA7-9537-C97BB5355B8F}
30 ...00 00 00 00 00 00 00 e0 isatap.{ABB16F87-2A26-4BA7-9537-C97BB5355B8F}
38 ...00 00 00 00 00 00 00 e0 isatap.{ABB16F87-2A26-4BA7-9537-C97BB5355B8F}
40 ...00 00 00 00 00 00 00 e0 isatap.{ABB16F87-2A26-4BA7-9537-C97BB5355B8F}
39 ...00 00 00 00 00 00 00 e0 isatap.{C30D4AFC-C980-4E95-BE67-ED267D42A84D}
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.16 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.16 281
192.168.0.16 255.255.255.255 On-link 192.168.0.16 281
192.168.0.255 255.255.255.255 On-link 192.168.0.16 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.16 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.16 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 281 fe80::/64 On-link
11 281 fe80::53f:8372:e471:5ec6/128
On-link
1 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [61440] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [62976] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [78848] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [78848] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [27648] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [193824] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/30/2011 05:01:48 PM) (Source: EventSystem) (User: )
Description: d:\vistasp1_gdr\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (10/30/2011 05:01:26 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/30/2011 00:54:44 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\MEGEDDO\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\PMIISAR1.DEFAULT\CACHE\9> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (10/30/2011 00:54:44 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\MEGEDDO\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\PMIISAR1.DEFAULT\CACHE\9> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (10/30/2011 00:54:44 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\MEGEDDO\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\PMIISAR1.DEFAULT\CACHE\8> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (10/30/2011 00:54:44 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\MEGEDDO\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\PMIISAR1.DEFAULT\CACHE\8> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (10/30/2011 00:54:44 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\MEGEDDO\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\PMIISAR1.DEFAULT\CACHE\7> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (10/30/2011 00:54:44 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\MEGEDDO\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\PMIISAR1.DEFAULT\CACHE\7> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (10/30/2011 00:54:44 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\MEGEDDO\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\PMIISAR1.DEFAULT\CACHE\6> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (10/30/2011 00:54:44 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\MEGEDDO\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\PMIISAR1.DEFAULT\CACHE\6> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)


System errors:
=============
Error: (10/30/2011 05:02:08 PM) (Source: Service Control Manager) (User: )
Description: PnP-X IP Bus EnumeratorFunction Discovery Provider Host%%1068

Error: (10/30/2011 05:01:54 PM) (Source: DCOM) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}

Error: (10/30/2011 05:01:53 PM) (Source: DCOM) (User: )
Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error: (10/30/2011 05:01:49 PM) (Source: DCOM) (User: )
Description: 1068fdPHost{145B4335-FE2A-4927-A040-7C35AD3180EF}

Error: (10/30/2011 05:01:48 PM) (Source: DCOM) (User: )
Description: 1084EventSystem{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (10/30/2011 05:01:39 PM) (Source: DCOM) (User: )
Description: 1084ShellHWDetection{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (10/30/2011 05:01:26 PM) (Source: Service Control Manager) (User: )
Description: APPFLT
archlp
DSAFLT
ElbyCDIO
FNETMON
IDSFLT
pavboot
ShldFlt
spldr
Wanarpv6
WNMFLT

Error: (10/30/2011 05:01:26 PM) (Source: Service Control Manager) (User: )
Description: Computer BrowserServer%%1068

Error: (10/29/2011 06:30:24 PM) (Source: Service Control Manager) (User: )
Description: archlp

Error: (10/29/2011 06:30:23 PM) (Source: Service Control Manager) (User: )
Description: Diagnostic Service Host


Microsoft Office Sessions:
=========================
Error: (08/14/2010 06:14:15 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6535.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 35 seconds with 0 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
µTorrent (Version: 3.0.0)
64 Bit HP CIO Components Installer (Version: 6.2.2)
ABBYY FineReader 6.0 Sprint (Version: 6.00.2146.41621)
Acer Arcade Deluxe (Version: 2.0.5817)
Acer Assist
Acer eAudio Management (Version: 3.0.3009)
Acer eDataSecurity Management (Version: 3.0.3065)
Acer Empowering Technology (Version: 3.0.3013)
Acer ePower Management (Version: 3.0.3016)
Acer eRecovery Management (Version: 3.0.3014)
Acer eSettings Management (Version: 3.0.3011)
Acer GridVista (Version: 2.72.317)
Acer Mobility Center Plug-In (Version: 3.0.3000)
Acer Registration
Acer ScreenSaver (Version: 1.11.0701)
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.1.377)
Adobe AIR (Version: 3.0.0.4080)
Adobe Flash Player 10 ActiveX (Version: 10.1.53.64)
Adobe Flash Player 11 Plugin (Version: 11.0.1.152)
Adobe Reader 9.4.6 (Version: 9.4.6)
AGEIA PhysX v7.09.13 (Version: 7.09.13)
Amazon MP3 Downloader 1.0.12 (Version: 1.0.12)
Amazon MP3 Uploader (Version: 1.0.5)
Any Video Converter 3.2.3
Apple Application Support (Version: 1.4.1)
Apple Mobile Device Support (Version: 3.3.1.3)
Apple Software Update (Version: 2.1.1.116)
ASIO4ALL (Version: 2.10)
Atheros Communications Inc.® AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver (Version: 1.0.0.30)
Bonjour (Version: 2.0.3.0)
BSP DB Toolbar
BufferChm (Version: 100.0.170.000)
C:\Program Files (x86)\Acer GameZone\GameConsole (Version: 2.0.1.4)
Carbonite Online Backup Setup (Version: 3.7.0)
Choice Guard (Version: 1.2.87.0)
CloneDVD2
Corel VideoStudio 12 (Version: 12.0.0.0000)
CPUID CPU-Z 1.52.2
CyberLink BD Advisor 2.0
CyberLink PowerDirector (Version: 6.5.3524)
CyberLink PowerDVD 8 (Version: 8.0.3228g)
D1500 (Version: 100.0.206.000)
D1500_Help (Version: 100.0.206.000)
Debut Video Capture Software
DeskScapes (Free)
DeskScapes 3
DesktopX
DeviceDiscovery (Version: 100.0.190.000)
DeviceManagementQFolder (Version: 1.00.0000)
DHTML Editing Component (Version: 6.02.0001)
DJ_SF_03_D1500_ProductContext (Version: 100.0.215.000)
DJ_SF_03_D1500_Software (Version: 100.0.206.000)
DJ_SF_03_D1500_Software_Min (Version: 100.0.239.000)
Download Updater (AOL LLC)
Driver Detective (Version: 8.0.1)
eSupportQFolder (Version: 1.00.0000)
Express Burn
Express Rip
Fallout 3 (Version: 1.00.0000)
Firebird SQL Server - MAGIX Edition (Version: 2.0.1.13)
FL Studio 10
FL Studio v7.0
Garmin USB Drivers (Version: 2.3.0.0)
Garmin WebUpdater (Version: 2.4.2)
GEAR driver installer for x86 Win2K (Version: 5.005.3)
GIMP 2.6.11 (Version: 2.6.11)
Google Chrome (Version: 14.0.835.202)
Google Earth (Version: 6.0.3.2197)
Google Update Helper (Version: 1.3.21.79)
Google Updater (Version: 2.4.2432.1652)
GPBaseService (Version: 100.0.187.000)
HDAUDIO Soft Data Fax Modem with SmartCP (Version: 7.73.00.52)
Hoyle Card Games (Version: 1.0.0)
HP Deskjet D1500 Printer Driver Software 10.0 Rel .3 (Version: 10.0)
HP Imaging Device Functions 10.0 (Version: 10.0)
HP Photosmart D110 All-In-One Driver 14.0 Rel. 7 (Version: 14.0)
HP Product Detection (Version: 10.7.9.0)
HP Smart Web Printing (Version: 3.5)
HP Solution Center 10.0 (Version: 10.0)
HP Update (Version: 5.002.008.001)
HPProductAssistant (Version: 100.0.170.000)
HPSSupply (Version: 100.0.170.000)
HTC Imagio™ (Version: 1.0)
IconDeveloper
IL Download Manager
Impulse (Version: 1.0)
Intel® Matrix Storage Manager
iTunes (Version: 10.1.2.17)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 29 (Version: 6.0.290)
Junk Mail filter update (Version: 14.0.8050.1202)
Launch Manager
Lexmark Printable Web (Version: 1.0.0.0)
Lexmark S300-S400 Series
Lexmark Toolbar (Version: 4.3.37.0)
Lexmark Tools for Office (Version: 1.29.0.0)
Lexmark X5400 Series
LightScribe 1.4.142.1 (Version: 1.4.142.1)
Logitech Gaming Software 5.02 (Version: 5.02.116)
LogonStudio Vista
Malwarebytes' Anti-Malware
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.88.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Home and Student 2007 (Version: 12.0.6425.1000)
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6425.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Suite Activation Assistant (Version: 2.9)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Silverlight (Version: 4.0.60531.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 08.05.0818)
Mozilla Firefox (3.6.17) (Version: 3.6.17 (en-US))
Mozilla Firefox 7.0.1 (x86 en-US) (Version: 7.0.1)
Mozilla Thunderbird (3.1.11) (Version: 3.1.11 (en-US))
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MultiScreen (Version: 1.00.0000)
Network64 (Version: 140.0.212.000)
NTI Backup Now 5 (Version: 5.1.2.606)
NTI Backup Now Standard (Version: 5.1.2.606)
NTI Media Maker 8 (Version: 8.0.2.6329)
NVIDIA Drivers (Version: 1.5)
ObjectBar
ObjectDock
Oblivion (Version: 1.00.0000)
ooVoo (Version: 2.9.0105)
ooVoo Toolbar (Version: 2.5.0.3)
Panda Global Protection 2010 (Version: 3.00.00)
Panda Global Protection 2012 (Version: 5.00.00)
Panda Secure Vault 5
Panda USB Vaccine 1.0.1.16
Pandora (Version: 2.0.5)
PANTECH UM175 Driver (Version: 3.0.14.517)
PC Connectivity Solution (Version: 8.15.0.0)
Pinnacle Game Profiler (Version: 4.0.0)
Prism Video Converter
PS_AIO_07_D110_SW_Min (Version: 140.0.142.000)
PunkBuster Services (Version: 0.986)
PureEdge Viewer 6.5
PVSonyDll (Version: 1.00.0001)
QuickPar 0.9 (Version: 0.9)
QuickTime (Version: 7.69.80.9)
RAR Password Cracker (Version: 4.12)
Realtek High Definition Audio Driver (Version: 6.0.1.5704)
Realtek USB 2.0 Card Reader (Version: )
RightClick
SAMSUNG Mobile Composite Device Software
Samsung Mobile Modem Device Software
SAMSUNG Mobile Modem Driver Set
Samsung Mobile phone USB driver Software
SAMSUNG Mobile USB Modem 1.0 Software
SAMSUNG Mobile USB Modem Software
Samsung PC Studio 3 USB Driver Installer (Version: 3.2.0.70701)
SAMSUNG SYMBIAN USB Download Driver (Version: 1.1.808.7165)
SAMSUNG USB Mobile Device Software
SamsungConnectivityCableDriver (Version: 6.83.6.2.1)
Scan (Version: 140.0.77.000)
Shop for HP Supplies (Version: 10.0)
SkinStudio
SkinStudio (Version: 6.40)
SkinStudio 7 Professional
Skype Toolbars (Version: 5.3.7555)
Skype™ 5.3 (Version: 5.3.120)
SmartWebPrintingOC (Version: 100.0.189.000)
SolutionCenter (Version: 100.0.175.000)
Status (Version: 100.0.175.000)
Switch Sound File Converter
Synaptics Pointing Device Driver (Version: 11.1.4.0)
Toolbox (Version: 140.0.424.000)
Total 3D Home and Landscape Deluxe Suite (Version: 9.1)
TrayApp (Version: 100.0.170.000)
Unified Remote (Version: 2.1.2.0)
UnloadSupport (Version: 10.0.0)
Unreal Tournament 3 (Version: 1.00.0000)
Update for 2007 Microsoft Office System (KB2284654)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 (KB974631)
Update for Microsoft Office Word 2007 Help (KB963665)
uTorrentBar2 Toolbar (Version: 6.6.0.19)
VideoStudio (Version: 12.0.0.0000)
VLC (Version: 1.0.0.0)
VLC media player 1.1.5 (Version: 1.1.5)
WavePad Sound Editor
WD SmartWare (Version: 1.1.0.2)
WebReg (Version: 100.0.170.000)
Winamp (Version: 5.621 )
Winamp Remote (Version: 2.2008.0508.1530)
Winamp Toolbar
Winbond CIR Device Drivers (Version: 7.60.1012)
WindowBlinds (Version: 6.30)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0) (Version: 06/03/2009 2.3.0.0)
Windows Driver Package - Nokia pccsmcfd (10/12/2007 6.85.4.0) (Version: 10/12/2007 6.85.4.0)
Windows Live Call (Version: 14.0.8050.1202)
Windows Live Communications Platform (Version: 14.0.8050.1202)
Windows Live Essentials (Version: 14.0.8050.1202)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
Windows Live Mail (Version: 14.0.8050.1202)
Windows Live Messenger (Version: 14.0.8050.1202)
Windows Live Photo Gallery (Version: 14.0.8051.1204)
Windows Live Sync (Version: 14.0.8050.1202)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8050.1202)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
Windows Mobile Device Center (Version: 6.1.6965.0)
Windows Mobile Device Center Driver Update (Version: 6.1.6965.0)
Windows Mobile Device Updater Component (Version: 04.07.1407.00)
WinRAR archiver
WModem Driver Installer
Yahoo! Detect
Zune (Version: 04.07.1404.00)
Zune Language Pack (DEU) (Version: 04.07.1404.00)
Zune Language Pack (ESP) (Version: 04.07.1404.00)
Zune Language Pack (FRA) (Version: 04.07.1404.00)
Zune Language Pack (ITA) (Version: 04.07.1404.00)
Zune Language Pack (NLD) (Version: 04.07.1404.00)
Zune Language Pack (PTB) (Version: 04.07.1404.00)
Zune Language Pack (PTG) (Version: 04.07.1404.00)

========================= Memory info: ===================================

Percentage of memory in use: 21%
Total physical RAM: 4059.93 MB
Available physical RAM: 3191.03 MB
Total Pagefile: 8295.14 MB
Available Pagefile: 7488.2 MB
Total Virtual: 4095.88 MB
Available Virtual: 4011.18 MB

========================= Partitions: =====================================

1 Drive c: (Primary Warrior Tablet) (Fixed) (Total:142.54 GB) (Free:40.59 GB) NTFS
2 Drive d: (Secondary Warrior Tablet) (Fixed) (Total:139 GB) (Free:31.8 GB) NTFS

========================= Users: ========================================

User accounts for \\MEGEDDO-PC

Administrator Guest Megeddo


**** End of log ****
Who are you? I know you? Handy with a computer? Psshhh. Shyeah..humpph...he-Ok, just give me the damn thing!

#9 meancheese

meancheese
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:03:04 PM

Posted 30 October 2011 - 05:31 PM

Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Database version: 8048

Windows 6.0.6001 Service Pack 1 (Safe Mode)
Internet Explorer 8.0.6001.19088

10/30/2011 5:30:28 PM
mbam-log-2011-10-30 (17-30-28).txt

Scan type: Quick scan
Objects scanned: 194309
Time elapsed: 3 minute(s), 10 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 1
Registry Values Infected: 1
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 7

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CLASSES_ROOT\thunder (Trojan.Agent) -> Quarantined and deleted successfully.

Registry Values Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\HKCU (Trojan.Agent) -> Value: HKCU -> Quarantined and deleted successfully.

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
c:\Users\Megeddo\AppData\Roaming\logs.dat (Bifrose.Trace) -> Quarantined and deleted successfully.
c:\Users\Megeddo\AppData\Local\Temp\IELOGIN.abc (Malware.Trace) -> Quarantined and deleted successfully.
c:\Users\Megeddo\AppData\Local\Temp\MSN.abc (Malware.Trace) -> Quarantined and deleted successfully.
c:\Users\Megeddo\AppData\Local\Temp\UuU.uUu (Malware.Trace) -> Quarantined and deleted successfully.
c:\Users\Megeddo\AppData\Local\Temp\XxX.xXx (Malware.Trace) -> Quarantined and deleted successfully.
c:\Users\Megeddo\AppData\Local\Temp\xxxyyyzzz.dat (Malware.Trace) -> Quarantined and deleted successfully.
c:\Users\Megeddo\AppData\Roaming\WinDir\svchost.exe (Trojan.Agent) -> Quarantined and deleted successfully.
Who are you? I know you? Handy with a computer? Psshhh. Shyeah..humpph...he-Ok, just give me the damn thing!

#10 meancheese

meancheese
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:03:04 PM

Posted 30 October 2011 - 05:51 PM

Having an issue connecting to GMER.net
Who are you? I know you? Handy with a computer? Psshhh. Shyeah..humpph...he-Ok, just give me the damn thing!

#11 meancheese

meancheese
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:03:04 PM

Posted 30 October 2011 - 06:57 PM

Nothing found. Saved the log file and opened it, but it was empty. Then realized after I closed GMER, I didn't try copying from there. But I'm suspecting it's the same.
Who are you? I know you? Handy with a computer? Psshhh. Shyeah..humpph...he-Ok, just give me the damn thing!

#12 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,716 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:01:04 PM

Posted 30 October 2011 - 07:14 PM

Download aswMBR to your desktop.
Double click the aswMBR.exe to run it.
If you see this question: Would you like to download latest Avast! virus definitions?" say "Yes".
Click the "Scan" button to start scan:
Posted Image

On completion of the scan click "Save log", save it to your desktop and post in your next reply:
Posted Image

NOTE. aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#13 meancheese

meancheese
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:03:04 PM

Posted 30 October 2011 - 07:35 PM

aswMBR version 0.9.8.986 Copyright© 2011 AVAST Software
Run date: 2011-10-30 19:17:45
-----------------------------
19:17:45.465 OS Version: Windows x64 6.0.6001 Service Pack 1
19:17:45.465 Number of processors: 2 586 0x170A
19:17:45.466 ComputerName: MEGEDDO-PC UserName: Megeddo
19:17:46.128 Initialize success
19:19:14.358 AVAST engine defs: 11103001
19:21:17.998 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
19:21:18.000 Disk 0 Vendor: Hitachi_ FB4O Size: 305245MB BusType: 3
19:21:18.026 Disk 0 MBR read successfully
19:21:18.027 Disk 0 MBR scan
19:21:18.030 Disk 0 unknown MBR code
19:21:18.046 Service scanning
19:21:19.568 Modules scanning
19:21:19.570 Disk 0 trace - called modules:
19:21:19.592 ntoskrnl.exe CLASSPNP.SYS disk.sys acpi.sys iaStor.sys hal.dll
19:21:19.607 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004ce7060]
19:21:19.610 3 CLASSPNP.SYS[fffffa6000d3bb3a] -> nt!IofCallDriver -> [0xfffffa8004b9a9f0]
19:21:19.612 5 acpi.sys[fffffa60008c1ff6] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004bac050]
19:21:20.163 AVAST engine scan C:\Windows
19:21:23.718 AVAST engine scan C:\Windows\system32
19:23:15.474 AVAST engine scan C:\Windows\system32\drivers
19:23:25.385 AVAST engine scan C:\Users\Megeddo
19:30:18.113 AVAST engine scan C:\ProgramData
19:33:26.947 Scan finished successfully
19:33:44.311 Disk 0 MBR has been saved successfully to "C:\Users\Megeddo\Desktop\MBR.dat"
19:33:44.331 The log file has been saved successfully to "C:\Users\Megeddo\Desktop\aswMBR.txt"
Who are you? I know you? Handy with a computer? Psshhh. Shyeah..humpph...he-Ok, just give me the damn thing!

#14 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,716 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:01:04 PM

Posted 30 October 2011 - 07:36 PM

Download TDSSKiller and save it to your desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#15 meancheese

meancheese
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:03:04 PM

Posted 30 October 2011 - 07:59 PM

19:52:23.0723 1536 TDSS rootkit removing tool 2.6.14.0 Oct 28 2011 11:11:01
19:52:23.0960 1536 ============================================================
19:52:23.0960 1536 Current date / time: 2011/10/30 19:52:23.0960
19:52:23.0960 1536 SystemInfo:
19:52:23.0960 1536
19:52:23.0960 1536 OS Version: 6.0.6001 ServicePack: 1.0
19:52:23.0960 1536 Product type: Workstation
19:52:23.0960 1536 ComputerName: MEGEDDO-PC
19:52:23.0960 1536 UserName: Megeddo
19:52:23.0960 1536 Windows directory: C:\Windows
19:52:23.0960 1536 System windows directory: C:\Windows
19:52:23.0960 1536 Running under WOW64
19:52:23.0960 1536 Processor architecture: Intel x64
19:52:23.0960 1536 Number of processors: 2
19:52:23.0960 1536 Page size: 0x1000
19:52:23.0960 1536 Boot type: Safe boot with network
19:52:23.0960 1536 ============================================================
19:52:24.0395 1536 Initialize success
19:52:31.0261 1384 ============================================================
19:52:31.0261 1384 Scan started
19:52:31.0261 1384 Mode: Manual;
19:52:31.0261 1384 ============================================================
19:52:31.0792 1384 ACPI (8c99ed256a889d647935a97c543b7b85) C:\Windows\system32\drivers\acpi.sys
19:52:31.0797 1384 ACPI - ok
19:52:31.0929 1384 adp94xx (f14215e37cf124104575073f782111d2) C:\Windows\system32\drivers\adp94xx.sys
19:52:31.0935 1384 adp94xx - ok
19:52:32.0053 1384 adpahci (7d05a75e3066861a6610f7ee04ff085c) C:\Windows\system32\drivers\adpahci.sys
19:52:32.0057 1384 adpahci - ok
19:52:32.0081 1384 adpu160m (820a201fe08a0c345b3bedbc30e1a77c) C:\Windows\system32\drivers\adpu160m.sys
19:52:32.0082 1384 adpu160m - ok
19:52:32.0108 1384 adpu320 (9b4ab6854559dc168fbb4c24fc52e794) C:\Windows\system32\drivers\adpu320.sys
19:52:32.0110 1384 adpu320 - ok
19:52:32.0236 1384 AFD (9bb97042fa331a0fb4bdd98b9280a50a) C:\Windows\system32\drivers\afd.sys
19:52:32.0242 1384 AFD - ok
19:52:32.0347 1384 agp440 (f6f6793b7f17b550ecfdbd3b229173f7) C:\Windows\system32\drivers\agp440.sys
19:52:32.0347 1384 agp440 - ok
19:52:32.0391 1384 aic78xx (222cb641b4b8a1d1126f8033f9fd6a00) C:\Windows\system32\drivers\djsvs.sys
19:52:32.0392 1384 aic78xx - ok
19:52:32.0498 1384 aliide (157d0898d4b73f075ce9fa26b482df98) C:\Windows\system32\drivers\aliide.sys
19:52:32.0498 1384 aliide - ok
19:52:32.0528 1384 amdide (970fa5059e61e30d25307b99903e991e) C:\Windows\system32\drivers\amdide.sys
19:52:32.0529 1384 amdide - ok
19:52:32.0581 1384 AmdK8 (cdc3632a3a5ea4dbb83e46076a3165a1) C:\Windows\system32\drivers\amdk8.sys
19:52:32.0582 1384 AmdK8 - ok
19:52:32.0685 1384 AmFSM (71336e77f98a65efaaeb950902611d3f) C:\Windows\system32\DRIVERS\amm6460.sys
19:52:32.0685 1384 AmFSM - ok
19:52:32.0729 1384 APPFLT (b1a935537be5c168c223946572e2edd1) C:\Windows\system32\Drivers\APPFLT64.SYS
19:52:32.0730 1384 APPFLT - ok
19:52:32.0882 1384 arc (ba8417d4765f3988ff921f30f630e303) C:\Windows\system32\drivers\arc.sys
19:52:32.0883 1384 arc - ok
19:52:32.0924 1384 archlp - ok
19:52:33.0027 1384 arcsas (9d41c435619733b34cc16a511e644b11) C:\Windows\system32\drivers\arcsas.sys
19:52:33.0028 1384 arcsas - ok
19:52:33.0172 1384 AsyncMac (22d13ff3dafec2a80634752b1eaa2de6) C:\Windows\system32\DRIVERS\asyncmac.sys
19:52:33.0172 1384 AsyncMac - ok
19:52:33.0201 1384 atapi (1898fae8e07d97f2f6c2d5326c633fac) C:\Windows\system32\drivers\atapi.sys
19:52:33.0201 1384 atapi - ok
19:52:33.0335 1384 blbdrive (79feeb40056683f8f61398d81dda65d2) C:\Windows\system32\drivers\blbdrive.sys
19:52:33.0335 1384 blbdrive - ok
19:52:33.0398 1384 bowser (f0f035fcec3554cc1b70c5611bd87951) C:\Windows\system32\DRIVERS\bowser.sys
19:52:33.0399 1384 bowser - ok
19:52:33.0496 1384 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\brfiltlo.sys
19:52:33.0497 1384 BrFiltLo - ok
19:52:33.0535 1384 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\brfiltup.sys
19:52:33.0536 1384 BrFiltUp - ok
19:52:33.0578 1384 Bridge (71142fa02068cb93c9319417737c915d) C:\Windows\system32\DRIVERS\bridge.sys
19:52:33.0579 1384 Bridge - ok
19:52:33.0606 1384 BridgeMP (71142fa02068cb93c9319417737c915d) C:\Windows\system32\DRIVERS\bridge.sys
19:52:33.0607 1384 BridgeMP - ok
19:52:33.0716 1384 Brserid (f0f0ba4d815be446aa6a4583ca3bca9b) C:\Windows\system32\drivers\brserid.sys
19:52:33.0717 1384 Brserid - ok
19:52:33.0743 1384 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\system32\drivers\brserwdm.sys
19:52:33.0743 1384 BrSerWdm - ok
19:52:33.0777 1384 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\system32\drivers\brusbmdm.sys
19:52:33.0778 1384 BrUsbMdm - ok
19:52:33.0806 1384 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\system32\drivers\brusbser.sys
19:52:33.0807 1384 BrUsbSer - ok
19:52:33.0902 1384 BTHMODEM (e0777b34e05f8a82a21856efc900c29f) C:\Windows\system32\drivers\bthmodem.sys
19:52:33.0903 1384 BTHMODEM - ok
19:52:33.0974 1384 CAXHWAZL (cd69e6640bc4778eb4159d34a707106e) C:\Windows\system32\DRIVERS\CAXHWAZL.sys
19:52:33.0978 1384 CAXHWAZL - ok
19:52:34.0052 1384 cdfs (b4d787db8d30793a4d4df9feed18f136) C:\Windows\system32\DRIVERS\cdfs.sys
19:52:34.0053 1384 cdfs - ok
19:52:34.0100 1384 cdrom (3b2fb35363423ed60c8fbf15fc8680bd) C:\Windows\system32\DRIVERS\cdrom.sys
19:52:34.0101 1384 cdrom - ok
19:52:34.0209 1384 circlass (02ea568d498bbdd4ba55bf3fce34d456) C:\Windows\system32\DRIVERS\circlass.sys
19:52:34.0210 1384 circlass - ok
19:52:34.0240 1384 CLFS (caeda2572b7042b11062f327f099251d) C:\Windows\system32\CLFS.sys
19:52:34.0245 1384 CLFS - ok
19:52:34.0395 1384 CmBatt (b52d9a14ce4101577900a364ba86f3df) C:\Windows\system32\DRIVERS\CmBatt.sys
19:52:34.0396 1384 CmBatt - ok
19:52:34.0432 1384 cmdide (e5d5499a1c50a54b5161296b6afe6192) C:\Windows\system32\drivers\cmdide.sys
19:52:34.0433 1384 cmdide - ok
19:52:34.0481 1384 ComFiltr (8a64c45f467fb30c47a30ae2819ddd62) C:\Windows\system32\DRIVERS\COMFiltr.sys
19:52:34.0482 1384 ComFiltr - ok
19:52:34.0535 1384 Compbatt (7fb8ad01db0eabe60c8a861531a8f431) C:\Windows\system32\DRIVERS\compbatt.sys
19:52:34.0535 1384 Compbatt - ok
19:52:34.0629 1384 cpuz132 (c9c25778efe890baa4087e32937016a0) C:\Windows\system32\drivers\cpuz132_x64.sys
19:52:34.0629 1384 cpuz132 - ok
19:52:34.0680 1384 crcdisk (a8585b6412253803ce8efcbd6d6dc15c) C:\Windows\system32\drivers\crcdisk.sys
19:52:34.0680 1384 crcdisk - ok
19:52:34.0769 1384 DfsC (3725c43c9e90731eca651d506cc599a3) C:\Windows\system32\Drivers\dfsc.sys
19:52:34.0770 1384 DfsC - ok
19:52:34.0854 1384 disk (2dc415fc05fb8a079f896cbbacb19324) C:\Windows\system32\drivers\disk.sys
19:52:34.0855 1384 disk - ok
19:52:34.0876 1384 DKbFltr - ok
19:52:35.0009 1384 Dot4 (74c02b1717740c3b8039539e23e4b53f) C:\Windows\system32\DRIVERS\Dot4.sys
19:52:35.0010 1384 Dot4 - ok
19:52:35.0060 1384 Dot4Print (08321d1860235bf42cf2854234337aea) C:\Windows\system32\DRIVERS\Dot4Prt.sys
19:52:35.0061 1384 Dot4Print - ok
19:52:35.0114 1384 dot4usb (4adccf0124f2b6911d3786a5d0e779e5) C:\Windows\system32\DRIVERS\dot4usb.sys
19:52:35.0114 1384 dot4usb - ok
19:52:35.0211 1384 drmkaud (f1a78a98cfc2ee02144c6bec945447e6) C:\Windows\system32\drivers\drmkaud.sys
19:52:35.0212 1384 drmkaud - ok
19:52:35.0250 1384 DSAFLT (64648b677d5005749f2fe412254512b7) C:\Windows\system32\Drivers\DSAFLT64.SYS
19:52:35.0251 1384 DSAFLT - ok
19:52:35.0282 1384 DXGKrnl (412964040ce920ff83aff6b5b551bf99) C:\Windows\System32\drivers\dxgkrnl.sys
19:52:35.0295 1384 DXGKrnl - ok
19:52:35.0399 1384 E1G60 (264cee7b031a9d6c827f3d0cb031f2fe) C:\Windows\system32\DRIVERS\E1G6032E.sys
19:52:35.0400 1384 E1G60 - ok
19:52:35.0449 1384 Ecache (7343d950a34a95dcb7441642e3e6beef) C:\Windows\system32\drivers\ecache.sys
19:52:35.0450 1384 Ecache - ok
19:52:35.0579 1384 ElbyCDIO (702d5606cf2199e0edea6f0e0d27cd10) C:\Windows\system32\Drivers\ElbyCDIO.sys
19:52:35.0580 1384 ElbyCDIO - ok
19:52:35.0618 1384 elxstor (c4636d6e10469404ab5308d9fd45ed07) C:\Windows\system32\drivers\elxstor.sys
19:52:35.0623 1384 elxstor - ok
19:52:35.0725 1384 ErrDev (bc3a58e938bb277e46bf4b3003b01abd) C:\Windows\system32\drivers\errdev.sys
19:52:35.0725 1384 ErrDev - ok
19:52:35.0760 1384 exfat (2a546b9a84658b0554b1ec35cd9adaf5) C:\Windows\system32\drivers\exfat.sys
19:52:35.0762 1384 exfat - ok
19:52:35.0787 1384 fastfat (fe731d345ed9eeabbc72a59b35941834) C:\Windows\system32\drivers\fastfat.sys
19:52:35.0790 1384 fastfat - ok
19:52:35.0883 1384 fdc (81b79b6df71fa1d2c6d688d830616e39) C:\Windows\system32\DRIVERS\fdc.sys
19:52:35.0884 1384 fdc - ok
19:52:35.0914 1384 FileInfo (457b7d1d533e4bd62a99aed9c7bb4c59) C:\Windows\system32\drivers\fileinfo.sys
19:52:35.0915 1384 FileInfo - ok
19:52:35.0935 1384 Filetrace (d421327fd6efccaf884a54c58e1b0d7f) C:\Windows\system32\drivers\filetrace.sys
19:52:35.0936 1384 Filetrace - ok
19:52:35.0984 1384 flpydisk (230923ea2b80f79b0f88d90f87b87ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
19:52:35.0985 1384 flpydisk - ok
19:52:36.0055 1384 FltMgr (7dacf1a3a4219575070c6dc7c957428a) C:\Windows\system32\drivers\fltmgr.sys
19:52:36.0058 1384 FltMgr - ok
19:52:36.0098 1384 FNETMON (50c6c310a98108a94e985fd46b4e150c) C:\Windows\system32\Drivers\fnetm64.SYS
19:52:36.0098 1384 FNETMON - ok
19:52:36.0129 1384 Fs_Rec (29d99e860a1ca0a03c6a733fdd0da703) C:\Windows\system32\drivers\Fs_Rec.sys
19:52:36.0129 1384 Fs_Rec - ok
19:52:36.0194 1384 gagp30kx (c8e416668d3dc2be3d4fe4c79224997f) C:\Windows\system32\drivers\gagp30kx.sys
19:52:36.0195 1384 gagp30kx - ok
19:52:36.0262 1384 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
19:52:36.0262 1384 GEARAspiWDM - ok
19:52:36.0341 1384 grmnusb (2ed7ff3e1ada4092632393781518b3a7) C:\Windows\system32\drivers\grmnusb.sys
19:52:36.0342 1384 grmnusb - ok
19:52:36.0446 1384 HdAudAddService (df45f8142dc6df9d18c39b3effbd0409) C:\Windows\system32\drivers\HdAudio.sys
19:52:36.0449 1384 HdAudAddService - ok
19:52:36.0509 1384 HDAudBus (0c0d0f8a3ff09ecc81963d09ec6a0a84) C:\Windows\system32\DRIVERS\HDAudBus.sys
19:52:36.0510 1384 HDAudBus - ok
19:52:36.0551 1384 HidBth (b4881c84a180e75b8c25dc1d726c375f) C:\Windows\system32\drivers\hidbth.sys
19:52:36.0552 1384 HidBth - ok
19:52:36.0583 1384 HidIr (5f47839455d01ff6403b008d481a6f5b) C:\Windows\system32\DRIVERS\hidir.sys
19:52:36.0584 1384 HidIr - ok
19:52:36.0668 1384 HidUsb (128e2da8483fdd4dd0c7b3f9abd6f323) C:\Windows\system32\DRIVERS\hidusb.sys
19:52:36.0669 1384 HidUsb - ok
19:52:36.0726 1384 HpCISSs (d7109a1e6bd2dfdbcba72a6bc626a13b) C:\Windows\system32\drivers\hpcisss.sys
19:52:36.0727 1384 HpCISSs - ok
19:52:36.0839 1384 HSFHWAZL (57ba73b5b321291e5114cb21350e1ea0) C:\Windows\system32\DRIVERS\VSTAZL6.SYS
19:52:36.0842 1384 HSFHWAZL - ok
19:52:36.0925 1384 HSF_DPV (ebdba99c2362457be429f024396b63be) C:\Windows\system32\DRIVERS\CAX_DPV.sys
19:52:36.0947 1384 HSF_DPV - ok
19:52:37.0037 1384 HTTP (e690736da6c543f5d99c8fa27bea31db) C:\Windows\system32\drivers\HTTP.sys
19:52:37.0045 1384 HTTP - ok
19:52:37.0131 1384 i2omp (da94c854cea5fac549d4e1f6e88349e8) C:\Windows\system32\drivers\i2omp.sys
19:52:37.0132 1384 i2omp - ok
19:52:37.0172 1384 i8042prt (cbb597659a2713ce0c9cc20c88c7591f) C:\Windows\system32\DRIVERS\i8042prt.sys
19:52:37.0173 1384 i8042prt - ok
19:52:37.0277 1384 iaStor (fc28e90f2204d8fd147fa9bfa8a51c01) C:\Windows\system32\DRIVERS\iaStor.sys
19:52:37.0280 1384 iaStor - ok
19:52:37.0320 1384 iaStorV (3e3bf3627d886736d0b4e90054f929f6) C:\Windows\system32\drivers\iastorv.sys
19:52:37.0323 1384 iaStorV - ok
19:52:37.0362 1384 IDSFLT (e3fc339dac4ddf4a12188313dc4da94f) C:\Windows\system32\Drivers\IDSFLT64.SYS
19:52:37.0363 1384 IDSFLT - ok
19:52:37.0457 1384 iirsp (8c3951ad2fe886ef76c7b5027c3125d3) C:\Windows\system32\drivers\iirsp.sys
19:52:37.0458 1384 iirsp - ok
19:52:37.0518 1384 int15 (8c7fa71cb1ebcd3ede8958d27b1bf0b4) C:\Windows\SysWOW64\drivers\int15_64.sys
19:52:37.0519 1384 int15 - ok
19:52:37.0671 1384 IntcAzAudAddService (6fdf709500c20362ffc5057f0d1e0c8d) C:\Windows\system32\drivers\RTKVHD64.sys
19:52:37.0695 1384 IntcAzAudAddService - ok
19:52:37.0776 1384 intelide (df797a12176f11b2d301c5b234bb200e) C:\Windows\system32\drivers\intelide.sys
19:52:37.0776 1384 intelide - ok
19:52:37.0797 1384 intelppm (bfd84af32fa1bad6231c4585cb469630) C:\Windows\system32\DRIVERS\intelppm.sys
19:52:37.0798 1384 intelppm - ok
19:52:37.0851 1384 IpFilterDriver (99b821f5bebd6a3cc3fe564f802ae0fd) C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:52:37.0852 1384 IpFilterDriver - ok
19:52:37.0928 1384 IpInIp - ok
19:52:37.0962 1384 IPMIDRV (9c2ee2e6e5a7203bfae15c299475ec67) C:\Windows\system32\drivers\ipmidrv.sys
19:52:37.0963 1384 IPMIDRV - ok
19:52:37.0981 1384 IPNAT (b7e6212f581ea5f6ab0c3a6ceeeb89be) C:\Windows\system32\DRIVERS\ipnat.sys
19:52:37.0982 1384 IPNAT - ok
19:52:38.0003 1384 IRENUM (8c42ca155343a2f11d29feca67faa88d) C:\Windows\system32\drivers\irenum.sys
19:52:38.0004 1384 IRENUM - ok
19:52:38.0103 1384 isapnp (0672bfcedc6fc468a2b0500d81437f4f) C:\Windows\system32\drivers\isapnp.sys
19:52:38.0104 1384 isapnp - ok
19:52:38.0149 1384 iScsiPrt (49e4ccbf74783fce5d2cc1ff6480e1f4) C:\Windows\system32\DRIVERS\msiscsi.sys
19:52:38.0151 1384 iScsiPrt - ok
19:52:38.0177 1384 iteatapi (63c766cdc609ff8206cb447a65abba4a) C:\Windows\system32\drivers\iteatapi.sys
19:52:38.0178 1384 iteatapi - ok
19:52:38.0277 1384 iteraid (1281fe73b17664631d12f643cbea3f59) C:\Windows\system32\drivers\iteraid.sys
19:52:38.0278 1384 iteraid - ok
19:52:38.0303 1384 kbdclass (423696f3ba6472dd17699209b933bc26) C:\Windows\system32\DRIVERS\kbdclass.sys
19:52:38.0303 1384 kbdclass - ok
19:52:38.0321 1384 kbdhid (bf8783a5066cfecf45095459e8010fa7) C:\Windows\system32\DRIVERS\kbdhid.sys
19:52:38.0321 1384 kbdhid - ok
19:52:38.0371 1384 KSecDD (ccdcce6224e1e207e953af826b98a9d9) C:\Windows\system32\Drivers\ksecdd.sys
19:52:38.0378 1384 KSecDD - ok
19:52:38.0472 1384 ksthunk (1d419cf43db29396ecd7113d129d94eb) C:\Windows\system32\drivers\ksthunk.sys
19:52:38.0473 1384 ksthunk - ok
19:52:38.0533 1384 L1E (073508533e422ce8bcee234eb35ceebf) C:\Windows\system32\DRIVERS\L1E60x64.sys
19:52:38.0533 1384 L1E - ok
19:52:38.0643 1384 lltdio (96ece2659b6654c10a0c310ae3a6d02c) C:\Windows\system32\DRIVERS\lltdio.sys
19:52:38.0644 1384 lltdio - ok
19:52:38.0705 1384 LSI_FC (acbe1af32d3123e330a07bfbc5ec4a9b) C:\Windows\system32\drivers\lsi_fc.sys
19:52:38.0707 1384 LSI_FC - ok
19:52:38.0741 1384 LSI_SAS (799ffb2fc4729fa46d2157c0065b3525) C:\Windows\system32\drivers\lsi_sas.sys
19:52:38.0742 1384 LSI_SAS - ok
19:52:38.0850 1384 LSI_SCSI (f445ff1daad8a226366bfaf42551226b) C:\Windows\system32\drivers\lsi_scsi.sys
19:52:38.0851 1384 LSI_SCSI - ok
19:52:38.0899 1384 luafv (52f87b9cc8932c2a7375c3b2a9be5e3e) C:\Windows\system32\drivers\luafv.sys
19:52:38.0901 1384 luafv - ok
19:52:39.0542 1384 MBAMProtector (23a854450dab5c9b7a42ab9be6f2e4bd) C:\Windows\system32\drivers\mbam.sys
19:52:39.0542 1384 MBAMProtector - ok
19:52:39.0676 1384 mdmxsdk (e4f44ec214b3e381e1fc844a02926666) C:\Windows\system32\DRIVERS\mdmxsdk.sys
19:52:39.0676 1384 mdmxsdk - ok
19:52:39.0742 1384 megasas (5c5cd6aaced32fb26c3fb34b3dcf972f) C:\Windows\system32\drivers\megasas.sys
19:52:39.0743 1384 megasas - ok
19:52:39.0785 1384 MegaSR (859bc2436b076c77c159ed694acfe8f8) C:\Windows\system32\drivers\megasr.sys
19:52:39.0790 1384 MegaSR - ok
19:52:39.0887 1384 Modem (59848d5cc74606f0ee7557983bb73c2e) C:\Windows\system32\drivers\modem.sys
19:52:39.0887 1384 Modem - ok
19:52:39.0928 1384 monitor (c247cc2a57e0a0c8c6dccf7807b3e9e5) C:\Windows\system32\DRIVERS\monitor.sys
19:52:39.0929 1384 monitor - ok
19:52:39.0963 1384 mouclass (9367304e5e412b120cf5f4ea14e4e4f1) C:\Windows\system32\DRIVERS\mouclass.sys
19:52:39.0964 1384 mouclass - ok
19:52:40.0012 1384 mouhid (c2c2bd5c5ce5aaf786ddd74b75d2ac69) C:\Windows\system32\DRIVERS\mouhid.sys
19:52:40.0013 1384 mouhid - ok
19:52:40.0069 1384 MountMgr (11bc9b1e8801b01f7f6adb9ead30019b) C:\Windows\system32\drivers\mountmgr.sys
19:52:40.0070 1384 MountMgr - ok
19:52:40.0111 1384 mpio (f8276eb8698142884498a528dfea8478) C:\Windows\system32\drivers\mpio.sys
19:52:40.0112 1384 mpio - ok
19:52:40.0155 1384 mpsdrv (c92b9abdb65a5991e00c28f13491dba2) C:\Windows\system32\drivers\mpsdrv.sys
19:52:40.0155 1384 mpsdrv - ok
19:52:40.0187 1384 Mraid35x (3c200630a89ef2c0864d515b7a75802e) C:\Windows\system32\drivers\mraid35x.sys
19:52:40.0188 1384 Mraid35x - ok
19:52:40.0224 1384 MRxDAV (fe2706c15f8345c342820e4e4583fea0) C:\Windows\system32\drivers\mrxdav.sys
19:52:40.0225 1384 MRxDAV - ok
19:52:40.0293 1384 mrxsmb (b698eb9acc7ecd4927d99d268918f912) C:\Windows\system32\DRIVERS\mrxsmb.sys
19:52:40.0295 1384 mrxsmb - ok
19:52:40.0355 1384 mrxsmb10 (9a797e27fd28500ee13d43000c931435) C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:52:40.0359 1384 mrxsmb10 - ok
19:52:40.0386 1384 mrxsmb20 (f9425d610712533107a264e2d5b2154b) C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:52:40.0387 1384 mrxsmb20 - ok
19:52:40.0455 1384 msahci (1ac860612b85d8e85ee257d372e39f4d) C:\Windows\system32\drivers\msahci.sys
19:52:40.0456 1384 msahci - ok
19:52:40.0496 1384 msdsm (264bbb4aaf312a485f0e44b65a6b7202) C:\Windows\system32\drivers\msdsm.sys
19:52:40.0497 1384 msdsm - ok
19:52:40.0537 1384 Msfs (704f59bfc4512d2bb0146aec31b10a7c) C:\Windows\system32\drivers\Msfs.sys
19:52:40.0538 1384 Msfs - ok
19:52:40.0580 1384 msisadrv (00ebc952961664780d43dca157e79b27) C:\Windows\system32\drivers\msisadrv.sys
19:52:40.0581 1384 msisadrv - ok
19:52:40.0661 1384 MSKSSRV (0ea73e498f53b96d83dbfca074ad4cf8) C:\Windows\system32\drivers\MSKSSRV.sys
19:52:40.0662 1384 MSKSSRV - ok
19:52:40.0705 1384 MSPCLOCK (52e59b7e992a58e740aa63f57edbae8b) C:\Windows\system32\drivers\MSPCLOCK.sys
19:52:40.0705 1384 MSPCLOCK - ok
19:52:40.0732 1384 MSPQM (49084a75bae043ae02d5b44d02991bb2) C:\Windows\system32\drivers\MSPQM.sys
19:52:40.0732 1384 MSPQM - ok
19:52:40.0763 1384 MsRPC (b8e32e6103fbba9fbb1d0c11ff0d13b5) C:\Windows\system32\drivers\MsRPC.sys
19:52:40.0768 1384 MsRPC - ok
19:52:40.0836 1384 mssmbios (855796e59df77ea93af46f20155bf55b) C:\Windows\system32\DRIVERS\mssmbios.sys
19:52:40.0837 1384 mssmbios - ok
19:52:40.0901 1384 MSTEE (86d632d75d05d5b7c7c043fa3564ae86) C:\Windows\system32\drivers\MSTEE.sys
19:52:40.0902 1384 MSTEE - ok
19:52:40.0929 1384 Mup (ddf133501f68d6988a0f55dfa88637b4) C:\Windows\system32\Drivers\mup.sys
19:52:40.0930 1384 Mup - ok
19:52:41.0000 1384 NativeWifiP (73b99c98fa3a2ed1566e02d6fe1913a5) C:\Windows\system32\DRIVERS\nwifi.sys
19:52:41.0002 1384 NativeWifiP - ok
19:52:41.0076 1384 NDIS (2a2ee457af36c5c9a6808c768bd3a12b) C:\Windows\system32\drivers\ndis.sys
19:52:41.0087 1384 NDIS - ok
19:52:41.0147 1384 NdisTapi (64df698a425478e321981431ac171334) C:\Windows\system32\DRIVERS\ndistapi.sys
19:52:41.0148 1384 NdisTapi - ok
19:52:41.0190 1384 Ndisuio (8baa43196d7b5bb972c9a6b2bbf61a19) C:\Windows\system32\DRIVERS\ndisuio.sys
19:52:41.0191 1384 Ndisuio - ok
19:52:41.0236 1384 NdisWan (52e3e8e35101399be9b2938c992aa087) C:\Windows\system32\DRIVERS\ndiswan.sys
19:52:41.0238 1384 NdisWan - ok
19:52:41.0286 1384 NDProxy (9cb77ed7cb72850253e973a2d6afdf49) C:\Windows\system32\drivers\NDProxy.sys
19:52:41.0287 1384 NDProxy - ok
19:52:41.0317 1384 NetBIOS (a499294f5029a7862adc115bda7371ce) C:\Windows\system32\DRIVERS\netbios.sys
19:52:41.0318 1384 NetBIOS - ok
19:52:41.0348 1384 netbt (7a29ca243a629230799754162d80120f) C:\Windows\system32\DRIVERS\netbt.sys
19:52:41.0351 1384 netbt - ok
19:52:41.0428 1384 NETFLTDI (ba99a34a9b5eb737ce54bc0a7c596609) C:\Windows\system32\Drivers\NETTDI64.SYS
19:52:41.0429 1384 NETFLTDI - ok
19:52:41.0473 1384 NETIMFLT01060039 - ok
19:52:41.0521 1384 NETIMFLT01060044 (fd0bfed656d9b26c22e439cc0ef5c771) C:\Windows\system32\DRIVERS\n64i1644.sys
19:52:41.0522 1384 NETIMFLT01060044 - ok
19:52:41.0712 1384 NETw5v64 (2bdcb7b7917380794c9d87ac2153ce33) C:\Windows\system32\DRIVERS\NETw5v64.sys
19:52:41.0814 1384 NETw5v64 - ok
19:52:41.0898 1384 nfrd960 (4ac08bd6af2df42e0c3196d826c8aea7) C:\Windows\system32\drivers\nfrd960.sys
19:52:41.0899 1384 nfrd960 - ok
19:52:41.0932 1384 Npfs (b06154e2a2c91e9be5599fca53bc4cd0) C:\Windows\system32\drivers\Npfs.sys
19:52:41.0932 1384 Npfs - ok
19:52:41.0953 1384 nsiproxy (1523af19ee8b030ba682f7a53537eaeb) C:\Windows\system32\drivers\nsiproxy.sys
19:52:41.0954 1384 nsiproxy - ok
19:52:42.0005 1384 Ntfs (fe86ba5ac3b50e2ca911e9c60c07b638) C:\Windows\system32\drivers\Ntfs.sys
19:52:42.0028 1384 Ntfs - ok
19:52:42.0111 1384 NTIDrvr (7d397449aaf52b0e7c79b64f6ad4473e) C:\Windows\system32\Drivers\NTIDrvr.sys
19:52:42.0112 1384 NTIDrvr - ok
19:52:42.0145 1384 Null (dd5d684975352b85b52e3fd5347c20cb) C:\Windows\system32\drivers\Null.sys
19:52:42.0146 1384 Null - ok
19:52:42.0198 1384 NVHDA (ad37248bd442d41c9a896e53eb8a85ee) C:\Windows\system32\drivers\nvhda64v.sys
19:52:42.0199 1384 NVHDA - ok
19:52:42.0482 1384 nvlddmkm (24f526274353ff7bb93d99d238e582da) C:\Windows\system32\DRIVERS\nvlddmkm.sys
19:52:42.0713 1384 nvlddmkm - ok
19:52:42.0803 1384 nvraid (2c040b7ada5b06f6facadac8514aa034) C:\Windows\system32\drivers\nvraid.sys
19:52:42.0804 1384 nvraid - ok
19:52:42.0857 1384 nvstor (f7ea0fe82842d05eda3efdd376dbfdba) C:\Windows\system32\drivers\nvstor.sys
19:52:42.0858 1384 nvstor - ok
19:52:42.0888 1384 nv_agp (19067ca93075ef4823e3938a686f532f) C:\Windows\system32\drivers\nv_agp.sys
19:52:42.0889 1384 nv_agp - ok
19:52:42.0902 1384 NwlnkFlt - ok
19:52:42.0912 1384 NwlnkFwd - ok
19:52:42.0994 1384 ohci1394 (7b58953e2f263421fdbb09a192712a85) C:\Windows\system32\drivers\ohci1394.sys
19:52:42.0994 1384 ohci1394 - ok
19:52:43.0063 1384 Parport (aecd57f94c887f58919f307c35498ea0) C:\Windows\system32\drivers\parport.sys
19:52:43.0064 1384 Parport - ok
19:52:43.0100 1384 partmgr (5ab40c36894f4c06bdab0c9a2fba282d) C:\Windows\system32\drivers\partmgr.sys
19:52:43.0101 1384 partmgr - ok
19:52:43.0182 1384 pavboot (337a81b3ff34f9851d245d42a725fc22) C:\Windows\system32\Drivers\pavboot64.sys
19:52:43.0183 1384 pavboot - ok
19:52:43.0238 1384 PavTPK.sys - ok
19:52:43.0343 1384 pccsmcfd (81b5e63131090879ad6ef9f32109b88d) C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
19:52:43.0344 1384 pccsmcfd - ok
19:52:43.0392 1384 pci (2a5b2a51559066ea84742909b5b2cd69) C:\Windows\system32\drivers\pci.sys
19:52:43.0394 1384 pci - ok
19:52:43.0412 1384 pciide (8d618c829034479985a9ed56106cc732) C:\Windows\system32\drivers\pciide.sys
19:52:43.0412 1384 pciide - ok
19:52:43.0471 1384 pcmcia (037661f3d7c507c9993b7010ceee6288) C:\Windows\system32\drivers\pcmcia.sys
19:52:43.0473 1384 pcmcia - ok
19:52:43.0530 1384 PEAUTH (58865916f53592a61549b04941bfd80d) C:\Windows\system32\drivers\peauth.sys
19:52:43.0539 1384 PEAUTH - ok
19:52:43.0694 1384 PptpMiniport (f5739f2c6db2534c384ad5150808e8f5) C:\Windows\system32\DRIVERS\raspptp.sys
19:52:43.0695 1384 PptpMiniport - ok
19:52:43.0748 1384 Processor (5080e59ecee0bc923f14018803aa7a01) C:\Windows\system32\drivers\processr.sys
19:52:43.0749 1384 Processor - ok
19:52:43.0767 1384 Prot6Flt - ok
19:52:43.0813 1384 PSched (0e0e205a296095fe4c631e6a4775ad6c) C:\Windows\system32\DRIVERS\pacer.sys
19:52:43.0814 1384 PSched - ok
19:52:43.0868 1384 PSDFilter (2cfd31d41cde75328acaeee2d4f4b836) C:\Windows\system32\DRIVERS\psdfilter.sys
19:52:43.0868 1384 PSDFilter - ok
19:52:43.0904 1384 PSDNServ (51a585f999672d8bb07f22ae12b40846) C:\Windows\system32\DRIVERS\PSDNServ.sys
19:52:43.0904 1384 PSDNServ - ok
19:52:43.0925 1384 psdvdisk (db50d3f5c31b1a848b04f7f2a6ff2709) C:\Windows\system32\DRIVERS\PSDVdisk.sys
19:52:43.0925 1384 psdvdisk - ok
19:52:43.0968 1384 PTDUBus (d41c41ef80188855457b1c052bd37365) C:\Windows\system32\DRIVERS\PTDUBus.sys
19:52:43.0969 1384 PTDUBus - ok
19:52:44.0036 1384 PTDUMdm (c346a1c338fc9a00c78c0ec17a4efcb1) C:\Windows\system32\DRIVERS\PTDUMdm.sys
19:52:44.0037 1384 PTDUMdm - ok
19:52:44.0079 1384 PTDUVsp (e9759c14495167a227ffb179df5ad6b1) C:\Windows\system32\DRIVERS\PTDUVsp.sys
19:52:44.0080 1384 PTDUVsp - ok
19:52:44.0118 1384 PTDUWWAN (478c83147f3ee598549cfa090cefb570) C:\Windows\system32\DRIVERS\PTDUWWAN.sys
19:52:44.0119 1384 PTDUWWAN - ok
19:52:44.0194 1384 ql2300 (0b83f4e681062f3839be2ec1d98fd94a) C:\Windows\system32\drivers\ql2300.sys
19:52:44.0212 1384 ql2300 - ok
19:52:44.0295 1384 ql40xx (e1c80f8d4d1e39ef9595809c1369bf2a) C:\Windows\system32\drivers\ql40xx.sys
19:52:44.0296 1384 ql40xx - ok
19:52:44.0333 1384 QWAVEdrv (e8d76edab77ec9c634c27b8eac33adc5) C:\Windows\system32\drivers\qwavedrv.sys
19:52:44.0333 1384 QWAVEdrv - ok
19:52:44.0378 1384 RasAcd (1013b3b663a56d3ddd784f581c1bd005) C:\Windows\system32\DRIVERS\rasacd.sys
19:52:44.0379 1384 RasAcd - ok
19:52:44.0455 1384 Rasl2tp (3b9085f91ef00abd15a6f36570e90e12) C:\Windows\system32\DRIVERS\rasl2tp.sys
19:52:44.0456 1384 Rasl2tp - ok
19:52:44.0488 1384 RasPppoe (2ce1703c27196094fb6e4c6e439f2c21) C:\Windows\system32\DRIVERS\raspppoe.sys
19:52:44.0489 1384 RasPppoe - ok
19:52:44.0501 1384 RasSstp (fcd04fa67e8b40fa0ad361dd38593942) C:\Windows\system32\DRIVERS\rassstp.sys
19:52:44.0502 1384 RasSstp - ok
19:52:44.0529 1384 rdbss (33fa5b6136d92ee0f53f021c79091300) C:\Windows\system32\DRIVERS\rdbss.sys
19:52:44.0533 1384 rdbss - ok
19:52:44.0543 1384 RDPCDD (603900cc05f6be65ccbf373800af3716) C:\Windows\system32\DRIVERS\RDPCDD.sys
19:52:44.0544 1384 RDPCDD - ok
19:52:44.0617 1384 rdpdr (c045d1fb111c28df0d1be8d4bda22c06) C:\Windows\system32\drivers\rdpdr.sys
19:52:44.0621 1384 rdpdr - ok
19:52:44.0651 1384 RDPENCDD (cab9421daf3d97b33d0d055858e2c3ab) C:\Windows\system32\drivers\rdpencdd.sys
19:52:44.0652 1384 RDPENCDD - ok
19:52:44.0681 1384 RDPWD (7747082f672aa2846235c9cea42e2e72) C:\Windows\system32\drivers\RDPWD.sys
19:52:44.0684 1384 RDPWD - ok
19:52:44.0800 1384 rspndr (22a9cb08b1a6707c1550c6bf099aae73) C:\Windows\system32\DRIVERS\rspndr.sys
19:52:44.0801 1384 rspndr - ok
19:52:44.0856 1384 RTSTOR (4ad8464fece8ebe276d4a7d75e418452) C:\Windows\system32\drivers\RTSTOR64.SYS
19:52:44.0857 1384 RTSTOR - ok
19:52:44.0917 1384 S3XXx64 (1baacb69dc6c99fa6b249ef27d4642ed) C:\Windows\system32\DRIVERS\S3XXx64.sys
19:52:44.0917 1384 S3XXx64 - ok
19:52:44.0981 1384 sbp2port (cd9c693589c60ad59bbbcfb0e524e01b) C:\Windows\system32\drivers\sbp2port.sys
19:52:44.0982 1384 sbp2port - ok
19:52:45.0035 1384 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
19:52:45.0035 1384 secdrv - ok
19:52:45.0061 1384 Serenum (f71bfe7ac6c52273b7c82cbf1bb2a222) C:\Windows\system32\drivers\serenum.sys
19:52:45.0062 1384 Serenum - ok
19:52:45.0093 1384 Serial (e62fac91ee288db29a9696a9d279929c) C:\Windows\system32\drivers\serial.sys
19:52:45.0094 1384 Serial - ok
19:52:45.0156 1384 sermouse (a842f04833684bceea7336211be478df) C:\Windows\system32\drivers\sermouse.sys
19:52:45.0157 1384 sermouse - ok
19:52:45.0213 1384 sffdisk (14d4b4465193a87c127933978e8c4106) C:\Windows\system32\drivers\sffdisk.sys
19:52:45.0214 1384 sffdisk - ok
19:52:45.0227 1384 sffp_mmc (7073aee3f82f3d598e3825962aa98ab2) C:\Windows\system32\drivers\sffp_mmc.sys
19:52:45.0228 1384 sffp_mmc - ok
19:52:45.0243 1384 sffp_sd (35e59ebe4a01a0532ed67975161c7b82) C:\Windows\system32\drivers\sffp_sd.sys
19:52:45.0244 1384 sffp_sd - ok
19:52:45.0261 1384 sfloppy (6b7838c94135768bd455cbdc23e39e5f) C:\Windows\system32\drivers\sfloppy.sys
19:52:45.0261 1384 sfloppy - ok
19:52:45.0346 1384 ShldFlt (03639a3b26aa808bae79d89fdb4b151c) C:\Windows\system32\DRIVERS\ShldFlt.sys
19:52:45.0347 1384 ShldFlt - ok
19:52:45.0405 1384 SiSRaid2 (7a5de502aeb719d4594c6471060a78b3) C:\Windows\system32\drivers\sisraid2.sys
19:52:45.0406 1384 SiSRaid2 - ok
19:52:45.0429 1384 SiSRaid4 (3a2f769fab9582bc720e11ea1dfb184d) C:\Windows\system32\drivers\sisraid4.sys
19:52:45.0430 1384 SiSRaid4 - ok
19:52:45.0458 1384 Smb (41eb2e8e005feedcafce301983eff932) C:\Windows\system32\DRIVERS\smb.sys
19:52:45.0459 1384 Smb - ok
19:52:45.0526 1384 spldr (f9cb0672162f7f04248e2b82c1ff4617) C:\Windows\system32\drivers\spldr.sys
19:52:45.0527 1384 spldr - ok
19:52:45.0593 1384 srv (a8abd7d0d907b45cf3831f4dd8644349) C:\Windows\system32\DRIVERS\srv.sys
19:52:45.0599 1384 srv - ok
19:52:45.0671 1384 srv2 (6c72eea39e1c37b436a6d1532999f9ec) C:\Windows\system32\DRIVERS\srv2.sys
19:52:45.0673 1384 srv2 - ok
19:52:45.0712 1384 srvnet (7f69bcf9e6fa3d93c82ee6b87812666d) C:\Windows\system32\DRIVERS\srvnet.sys
19:52:45.0714 1384 srvnet - ok
19:52:45.0761 1384 ssm_bus (7c1bac427ec5f9641ed769355b71a674) C:\Windows\system32\DRIVERS\ssm_bus.sys
19:52:45.0762 1384 ssm_bus - ok
19:52:45.0850 1384 ssm_mdfl (3b24a09ea547d1e7768e0abd7aea7f07) C:\Windows\system32\DRIVERS\ssm_mdfl.sys
19:52:45.0850 1384 ssm_mdfl - ok
19:52:45.0911 1384 ssm_mdm (6f5ae233d7286ea8e42851846c6322fe) C:\Windows\system32\DRIVERS\ssm_mdm.sys
19:52:45.0913 1384 ssm_mdm - ok
19:52:45.0969 1384 swenum (8a851ca908b8b974f89c50d2e18d4f0c) C:\Windows\system32\DRIVERS\swenum.sys
19:52:45.0970 1384 swenum - ok
19:52:46.0028 1384 Symc8xx (2f26a2c6fc96b29beff5d8ed74e6625b) C:\Windows\system32\drivers\symc8xx.sys
19:52:46.0029 1384 Symc8xx - ok
19:52:46.0076 1384 Sym_hi (a909667976d3bccd1df813fed517d837) C:\Windows\system32\drivers\sym_hi.sys
19:52:46.0076 1384 Sym_hi - ok
19:52:46.0104 1384 Sym_u3 (36887b56ec2d98b9c362f6ae4de5b7b0) C:\Windows\system32\drivers\sym_u3.sys
19:52:46.0105 1384 Sym_u3 - ok
19:52:46.0177 1384 SynTP (0f2e5efdf6730780afea6ec6bf8aacb0) C:\Windows\system32\DRIVERS\SynTP.sys
19:52:46.0179 1384 SynTP - ok
19:52:46.0261 1384 tcphoc - ok
19:52:46.0371 1384 Tcpip (7d86275fb640011b372fd566c0eafa8d) C:\Windows\system32\drivers\tcpip.sys
19:52:46.0380 1384 Tcpip - ok
19:52:46.0505 1384 Tcpip6 (7d86275fb640011b372fd566c0eafa8d) C:\Windows\system32\DRIVERS\tcpip.sys
19:52:46.0513 1384 Tcpip6 - ok
19:52:46.0590 1384 tcpipreg (c29d4b3b08ad0b7e8564814e4ff6a57b) C:\Windows\system32\drivers\tcpipreg.sys
19:52:46.0591 1384 tcpipreg - ok
19:52:46.0636 1384 TcUsb (cbd13e809e81b07116c8d51aa199f69b) C:\Windows\system32\Drivers\tcusb.sys
19:52:46.0637 1384 TcUsb - ok
19:52:46.0654 1384 TDPIPE (1d8bf4aaa5fb7a2761475781dc1195bc) C:\Windows\system32\drivers\tdpipe.sys
19:52:46.0655 1384 TDPIPE - ok
19:52:46.0672 1384 TDTCP (7f7e00cdf609df657f4cda02dd1c9bb1) C:\Windows\system32\drivers\tdtcp.sys
19:52:46.0673 1384 TDTCP - ok
19:52:46.0690 1384 tdx (8c39c72e0e853de04748c0337d9b9216) C:\Windows\system32\DRIVERS\tdx.sys
19:52:46.0691 1384 tdx - ok
19:52:46.0751 1384 TermDD (3f0ebf6ee609f2a276c0d5faf244ec90) C:\Windows\system32\DRIVERS\termdd.sys
19:52:46.0752 1384 TermDD - ok
19:52:46.0795 1384 TFsExDisk - ok
19:52:46.0836 1384 tssecsrv (9e5409cd17c8bef193aad498f3bc2cb8) C:\Windows\system32\DRIVERS\tssecsrv.sys
19:52:46.0837 1384 tssecsrv - ok
19:52:46.0847 1384 tunmp (89ec74a9e602d16a75a4170511029b3c) C:\Windows\system32\DRIVERS\tunmp.sys
19:52:46.0848 1384 tunmp - ok
19:52:46.0901 1384 tunnel (2dc2c423572946e9a3131425bda73cb6) C:\Windows\system32\DRIVERS\tunnel.sys
19:52:46.0902 1384 tunnel - ok
19:52:46.0967 1384 uagp35 (fec266ef401966311744bd0f359f7f56) C:\Windows\system32\drivers\uagp35.sys
19:52:46.0967 1384 uagp35 - ok
19:52:47.0020 1384 UBHelper (00c8ce31657624a125fdb90efd554371) C:\Windows\system32\drivers\UBHelper.sys
19:52:47.0021 1384 UBHelper - ok
19:52:47.0045 1384 udfs (eca6629e33f122afff18a2ab7c3eb033) C:\Windows\system32\DRIVERS\udfs.sys
19:52:47.0049 1384 udfs - ok
19:52:47.0084 1384 uliagpkx (4ec9447ac3ab462647f60e547208ca00) C:\Windows\system32\drivers\uliagpkx.sys
19:52:47.0085 1384 uliagpkx - ok
19:52:47.0156 1384 uliahci (697f0446134cdc8f99e69306184fbbb4) C:\Windows\system32\drivers\uliahci.sys
19:52:47.0159 1384 uliahci - ok
19:52:47.0226 1384 UlSata (31707f09846056651ea2c37858f5ddb0) C:\Windows\system32\drivers\ulsata.sys
19:52:47.0228 1384 UlSata - ok
19:52:47.0256 1384 ulsata2 (85e5e43ed5b48c8376281bab519271b7) C:\Windows\system32\drivers\ulsata2.sys
19:52:47.0258 1384 ulsata2 - ok
19:52:47.0293 1384 umbus (46e9a994c4fed537dd951f60b86ad3f4) C:\Windows\system32\DRIVERS\umbus.sys
19:52:47.0294 1384 umbus - ok
19:52:47.0394 1384 USBAAPL64 (cd03479f2da26500b203ed075c146a7a) C:\Windows\system32\Drivers\usbaapl64.sys
19:52:47.0394 1384 USBAAPL64 - ok
19:52:47.0467 1384 usbaudio (c899fb269be4740dbe2801b204cd71d4) C:\Windows\system32\drivers\usbaudio.sys
19:52:47.0468 1384 usbaudio - ok
19:52:47.0551 1384 usbccgp (07e3498fc60834219d2356293da0fecc) C:\Windows\system32\DRIVERS\usbccgp.sys
19:52:47.0552 1384 usbccgp - ok
19:52:47.0613 1384 USBCCID (d5db282587694f558caef8c3083d8766) C:\Windows\system32\DRIVERS\usbccid.sys
19:52:47.0614 1384 USBCCID - ok
19:52:47.0657 1384 usbcir (9247f7e0b65852c1f6631480984d6ed2) C:\Windows\system32\drivers\usbcir.sys
19:52:47.0658 1384 usbcir - ok
19:52:47.0741 1384 usbehci (da6d8d8ed0a53c63ac6f4bd40fe83fbe) C:\Windows\system32\DRIVERS\usbehci.sys
19:52:47.0742 1384 usbehci - ok
19:52:47.0787 1384 usbhub (99045369ae3216216573d0775fd7ed56) C:\Windows\system32\DRIVERS\usbhub.sys
19:52:47.0790 1384 usbhub - ok
19:52:47.0813 1384 usbohci (eba14ef0c07cec233f1529c698d0d154) C:\Windows\system32\drivers\usbohci.sys
19:52:47.0813 1384 usbohci - ok
19:52:47.0841 1384 usbprint (28b693b6d31e7b9332c1bdcefef228c1) C:\Windows\system32\DRIVERS\usbprint.sys
19:52:47.0841 1384 usbprint - ok
19:52:47.0925 1384 usbscan (ea0bf666868964fbe8cb10e50c97b9f1) C:\Windows\system32\DRIVERS\usbscan.sys
19:52:47.0925 1384 usbscan - ok
19:52:47.0972 1384 USBSTOR (586d9876a4945779c8eea926c0d16889) C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:52:47.0973 1384 USBSTOR - ok
19:52:47.0988 1384 usbuhci (b2872cbf9f47316abd0e0c74a1aba507) C:\Windows\system32\DRIVERS\usbuhci.sys
19:52:47.0989 1384 usbuhci - ok
19:52:48.0071 1384 usbvideo (fc33099877790d51b0927b7039059855) C:\Windows\system32\Drivers\usbvideo.sys
19:52:48.0073 1384 usbvideo - ok
19:52:48.0156 1384 usb_rndisx (567d09d1c41809550ece9ed22d6d612b) C:\Windows\system32\DRIVERS\usb8023x.sys
19:52:48.0156 1384 usb_rndisx - ok
19:52:48.0234 1384 vga (916b94bcf1e09873fff2d5fb11767bbc) C:\Windows\system32\DRIVERS\vgapnp.sys
19:52:48.0234 1384 vga - ok
19:52:48.0274 1384 VgaSave (b83ab16b51feda65dd81b8c59d114d63) C:\Windows\System32\drivers\vga.sys
19:52:48.0275 1384 VgaSave - ok
19:52:48.0303 1384 viaide (8294b6c3fdb6c33f24e150de647ecdaa) C:\Windows\system32\drivers\viaide.sys
19:52:48.0304 1384 viaide - ok
19:52:48.0340 1384 volmgr (793d9b32a1c462c91f6f70358283ac97) C:\Windows\system32\drivers\volmgr.sys
19:52:48.0341 1384 volmgr - ok
19:52:48.0410 1384 volmgrx (5aa217da5dc4ff5b9ac9ab86563b3223) C:\Windows\system32\drivers\volmgrx.sys
19:52:48.0415 1384 volmgrx - ok
19:52:48.0456 1384 volsnap (de4307412d98050239026e56a7dff3c0) C:\Windows\system32\drivers\volsnap.sys
19:52:48.0459 1384 volsnap - ok
19:52:48.0489 1384 vsmraid (a68f455ed2673835209318dd61bfbb0e) C:\Windows\system32\drivers\vsmraid.sys
19:52:48.0490 1384 vsmraid - ok
19:52:48.0521 1384 WacomPen (fef8fe5923fead2cee4dfabfce3393a7) C:\Windows\system32\drivers\wacompen.sys
19:52:48.0521 1384 WacomPen - ok
19:52:48.0596 1384 Wanarp (aea75207e443c8623c36b8d03596f84f) C:\Windows\system32\DRIVERS\wanarp.sys
19:52:48.0597 1384 Wanarp - ok
19:52:48.0601 1384 Wanarpv6 (aea75207e443c8623c36b8d03596f84f) C:\Windows\system32\DRIVERS\wanarp.sys
19:52:48.0603 1384 Wanarpv6 - ok
19:52:48.0677 1384 Wd (0c17a0816f65b89e362e682ad5e7266e) C:\Windows\system32\drivers\wd.sys
19:52:48.0677 1384 Wd - ok
19:52:48.0736 1384 WDC_SAM (a3d04ebf5227886029b4532f20d026f7) C:\Windows\system32\DRIVERS\wdcsam64.sys
19:52:48.0737 1384 WDC_SAM - ok
19:52:48.0807 1384 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
19:52:48.0816 1384 Wdf01000 - ok
19:52:48.0933 1384 winachsf (9e6c63f94d2c3d884a8936e448b1028b) C:\Windows\system32\DRIVERS\CAX_CNXT.sys
19:52:48.0943 1384 winachsf - ok
19:52:49.0042 1384 winbondcir (54d68b92dc59fbba95919c804a7c3e07) C:\Windows\system32\DRIVERS\winbondcir.sys
19:52:49.0043 1384 winbondcir - ok
19:52:49.0153 1384 WinUSB (2215b7b794b3b7e5cc9fc423e985e2aa) C:\Windows\system32\DRIVERS\WinUSB.sys
19:52:49.0153 1384 WinUSB - ok
19:52:49.0250 1384 WmBEnum (7a58ba979f7acb3fc5310c771a1cf155) C:\Windows\system32\drivers\WmBEnum.sys
19:52:49.0250 1384 WmBEnum - ok
19:52:49.0332 1384 WmFilter (8693a75c3ffd4a0c9e32be621fda71fb) C:\Windows\system32\drivers\WmFilter.sys
19:52:49.0333 1384 WmFilter - ok
19:52:49.0388 1384 WmiAcpi (e18aebaaa5a773fe11aa2c70f65320f5) C:\Windows\system32\DRIVERS\wmiacpi.sys
19:52:49.0389 1384 WmiAcpi - ok
19:52:49.0475 1384 WmVirHid (3d9266ccd0f1edb020c7aa24d527942b) C:\Windows\system32\drivers\WmVirHid.sys
19:52:49.0476 1384 WmVirHid - ok
19:52:49.0504 1384 WmXlCore (3cffdf56a00408913b1e51c67f999e2e) C:\Windows\system32\drivers\WmXlCore.sys
19:52:49.0504 1384 WmXlCore - ok
19:52:49.0578 1384 WNMFLT (c1b61612fccc6e750ad0a6e19c77ee85) C:\Windows\system32\Drivers\WNMFLT64.SYS
19:52:49.0579 1384 WNMFLT - ok
19:52:49.0657 1384 WpdUsb (6329d1990db931073b86ab5946d8e317) C:\Windows\system32\DRIVERS\wpdusb.sys
19:52:49.0658 1384 WpdUsb - ok
19:52:49.0693 1384 ws2ifsl (8a900348370e359b6bff6a550e4649e1) C:\Windows\system32\drivers\ws2ifsl.sys
19:52:49.0693 1384 ws2ifsl - ok
19:52:49.0781 1384 WSDPrintDevice (de5f5212ab34221dd1618b5fefe8db6c) C:\Windows\system32\DRIVERS\WSDPrint.sys
19:52:49.0781 1384 WSDPrintDevice - ok
19:52:49.0857 1384 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
19:52:49.0859 1384 WudfPf - ok
19:52:49.0905 1384 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
19:52:49.0907 1384 WUDFRd - ok
19:52:49.0966 1384 XAudio (f22e443518bc599d12888daf292a56d8) C:\Windows\system32\DRIVERS\xaudio64.sys
19:52:49.0966 1384 XAudio - ok
19:52:50.0088 1384 {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054} (74983addca2d9618512c088d856d6615) C:\Program Files (x86)\CyberLink\PowerDVD8\000.fcl
19:52:50.0091 1384 {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054} - ok
19:52:50.0108 1384 MBR (0x1B8) (bb9d3a6a13c5010348da7c900bb6af50) \Device\Harddisk0\DR0
19:52:50.0259 1384 \Device\Harddisk0\DR0 - ok
19:52:50.0275 1384 Boot (0x1200) (74d556e5e12fe5381a20e2e15f76e0fe) \Device\Harddisk0\DR0\Partition0
19:52:50.0276 1384 \Device\Harddisk0\DR0\Partition0 - ok
19:52:50.0302 1384 Boot (0x1200) (6dcb0a1192e5c696473f335b9f236905) \Device\Harddisk0\DR0\Partition1
19:52:50.0303 1384 \Device\Harddisk0\DR0\Partition1 - ok
19:52:50.0303 1384 ============================================================
19:52:50.0303 1384 Scan finished
19:52:50.0303 1384 ============================================================
19:52:50.0320 1724 Detected object count: 0
19:52:50.0320 1724 Actual detected object count: 0
Who are you? I know you? Handy with a computer? Psshhh. Shyeah..humpph...he-Ok, just give me the damn thing!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users