Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I can't run any programs !


  • This topic is locked This topic is locked
24 replies to this topic

#1 ser909

ser909

  • Members
  • 58 posts
  • OFFLINE
  •  
  • Local time:06:08 AM

Posted 09 December 2011 - 12:19 AM

Environment: Windows Vista Home Premium Ver 6.0

When I try to run a program i either get a "Open With" pop-up asking me to choose a program to open the file
or
a pop-up saying application not found.

Previously I had run AVG scan which showed an unhealable problem in netbt.sys The virus was named generic14.bzsz
I ran Malawarebytes several times. It claimed to have cleared several problems
I also ran SAS sveral time. It found a problem with a program whose name I can't remember and I can't get into the system to find out.
Please help me.
Now I can't run anything.

Edited by hamluis, 10 December 2011 - 08:14 AM.
Moved from Vista to Am I Infected.


BC AdBot (Login to Remove)

 


#2 504Steve

504Steve

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New Orleans, LA
  • Local time:05:08 AM

Posted 09 December 2011 - 01:07 AM

Ser909,

Hello and welcome to BleepingComputer! Why don't you try downloading this file and running it? It seems like you've simply lost your .exe file association.

Just a heads up, this file modifies your registry. I've used it well over a hundred times on XP, Vista, and Windows 7 with great success.

#3 hamluis

hamluis

    Moderator


  • Moderator
  • 56,296 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:06:08 AM

Posted 09 December 2011 - 10:04 AM

Just a note...

Prior to suggesting/trying any registry edit (no matter how safe or well-known)...it is suggested that any user first backup the registry. The unexpected should be treated as if it is expected, IMO.

A good tool for doing such is ERUNT Registry Backup Tool - http://www.snapfiles.com/get/erunt.html

Louis

#4 ser909

ser909
  • Topic Starter

  • Members
  • 58 posts
  • OFFLINE
  •  
  • Local time:06:08 AM

Posted 09 December 2011 - 02:20 PM

Thanks for the suggestions.
I needed a browser to download the programs. When I tried to open Firefox I got the Open With pop-up. I browsed the program files from the pop-up and chose the firefox.exe program which opened a browser window but got a server not found message. What now?
Thanks for any help.

#5 504Steve

504Steve

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New Orleans, LA
  • Local time:05:08 AM

Posted 09 December 2011 - 03:44 PM

Louis,

Thanks for the suggestion, I will keep that in mind.

Ser909,

Give this a try. It's kind of a 50/50 thing when you're having this issue. Try going to start -> run -> type in iexplore

This should open up Internet Explorer. If it doesn't, you can try typing www.google.com in a regular Windows Explorer window (For example, My Documents, My Computer, any folder on your desktop etc.) Once you have Internet Explorer open, go ahead and input that link and you should be good to go.

If this doesn't work for you...
Do you have another computer that you could possibly download this file from, then burn onto a CD? That would be the safest way, I don't recommend plugging in a USB Flash drive just yet.

#6 ser909

ser909
  • Topic Starter

  • Members
  • 58 posts
  • OFFLINE
  •  
  • Local time:06:08 AM

Posted 09 December 2011 - 06:28 PM

start -> run -> type in iexplore
didn't work
C:Program Files\Internet Explorer\IEXPLORE.EXE Application not found

I downloaded both programs on my mac and burned to CD
xp_exe_fix.reg is ready to run on my desk top

but erunt-setup.exe gets the Open With pop-up when I try to double-click it on the CD-r
and gets an Application not found when I try to execute it from the run window

#7 YardDog1

YardDog1

  • Members
  • 91 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:FLorida
  • Local time:07:08 AM

Posted 09 December 2011 - 06:41 PM

Hello, in addition to you other instructions, may i offer a possible fix for if you have acquired some corrupt files whilst you got infected . Try this to repair any corrupt or missing files with this : http://www.vistax64.com/tutorials/66978-system-files-sfc-command.html
Let us know if this assist's you , i have some other Context tutorials that may assist , if you need them. Please post your results .



Please use restore points often



660099



#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:08 AM

Posted 10 December 2011 - 12:16 AM

Hi

you are infected with zero access rootkit(generic14.bzsz).Its not possible for AVG to remove it.You still have the infection.

You may need the help of

http://www.bleepingcomputer.com/forums/forum103.html

They may help you proceed further

Good luck

#9 ser909

ser909
  • Topic Starter

  • Members
  • 58 posts
  • OFFLINE
  •  
  • Local time:06:08 AM

Posted 10 December 2011 - 03:03 PM

Was able to run the install of ERUNT by replying to the Open With pop-up using the name of the install exe.
Ran ERUNT to create the registry backup
Ran the xp_exe_fix.reg and got a messge from the Registry Editor:
" Cannot import C:\Users\...\Desktop\xp_exe_fix.reg; Not all data was successfully written to the registry. Some keys are open by the system or other processes."

I have briefly tries to run some programs including Malawarebytes and so far they seem to run OK.
I have not tried to reboot and I've disconnected from the network.
Where does that leave me?
Do I restore the registry because of the unsuccessful completion of the registry fix
Am I still infected?
Should I run diagnostics?
Am I in the right forum?
Thanks for your help

#10 ser909

ser909
  • Topic Starter

  • Members
  • 58 posts
  • OFFLINE
  •  
  • Local time:06:08 AM

Posted 13 December 2011 - 05:44 PM

Since this "infection" began last wek I have not been able to update:

AVG - msg: "Update failed."

Malawrebytes - msg: "An error has ocurred...
PROGRAM_ERROR_UPDATING (11004, 0, No address found)
The requested name is valid, but no data of the requested type was found"

Super Anti Spyware - msg: Autheticating Connection Complete
Checking for Definition Updates Failed
Definition Updates ERROR FAILED

nor can I connect to the internet through Firefox - msg: "Server not found"


though I have (I think) a Broadband connection.

I thought there might be a firewall problem.
I went to the Control Panel : Windows Firewall
Saw a messgae: The windows Firewall service is not running
I clicked on Turn Windows Firewall on or off
got a message:
"Due to an unidentified problem, Windows cannot display Windows Firewall settings."

I ran Windows Network Diagnostics and got a messge
"This computer has limited or no connectivity"

This is a real mess.
Can anyone advise me?

#11 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:11:08 AM

Posted 17 December 2011 - 02:10 PM

Can you please run the following:

Now GMER

GMER does not work in 64bit Mode!!!!!!

Please download GMER from one of the following locations and save it to your desktop:

  • Main Mirror
    This version will download a randomly named file (Recommended)
  • Zipped Mirror
    This version will download a zip file you will need to extract first. If you use this mirror, please extract the zip file to your desktop.
  • Disconnect from the Internet and close all running programs.
  • Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.
  • Double-click on the randomly named GMER file (i.e. n7gmo46c.exe) and allow the gmer.sys driver to load if asked.
  • Note: If you downloaded the zipped version, extract the file to its own folder such as C:\gmer and then double-click on gmer.exe.

    Posted Image
  • GMER will open to the Rootkit/Malware tab and perform an automatic Full Scan when first run. (do not use the computer while the scan is in progress)
  • If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
  • Now click the Scan button. If you see a rootkit warning window, click OK.
  • When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
  • Click the Copy button and paste the results into your next reply.
  • Exit GMER and be sure to re-enable your anti-virus, Firewall and any other security programs you had disabled.
-- If you encounter any problems, try running GMER in safe mode.
-- If GMER crashes or keeps resulting in a BSODs, uncheck Devices on the right side before scanning
.


All scans above should be performed in regular boot mode, and if that is not possible then I will post instructions in a follow up reply on how to get into Safe Mode to perform the scans. Also all scans should be COMPLETE and not quick unless specifically instructed to do so.

#12 ser909

ser909
  • Topic Starter

  • Members
  • 58 posts
  • OFFLINE
  •  
  • Local time:06:08 AM

Posted 17 December 2011 - 09:33 PM

Thank you for your help.

- I can't connect to the internet from the infected PC so I had to download the GMER from a MacBook and use a flashdrive to transfer program to PC's desktop.

- When I ran GMER the first time, at the end of the run I got a blue screen. I'm sorry that I don't remember what the message was.

- After a reboot I ran GMER, saved the log to the desktop and ported it back to the MAC. (I hope I'm not infecting the MAC.)





GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2011-12-17 21:15:19
Windows 6.0.6002 Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 WDC_WD50 rev.12.0
Running: xyebs763.exe; Driver: C:\Users\Eddie\AppData\Local\Temp\ugloapod.sys


---- System - GMER 1.0.15 ----

SSDT \SystemRoot\system32\DRIVERS\AVGIDSShim.Sys (IDS Application Activity Monitor Loader Driver./AVG Technologies CZ, s.r.o. ) ZwOpenProcess [0xA02CD7A0]
SSDT \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS ZwTerminateProcess [0x920A1640]
SSDT \SystemRoot\system32\DRIVERS\AVGIDSShim.Sys (IDS Application Activity Monitor Loader Driver./AVG Technologies CZ, s.r.o. ) ZwTerminateThread [0xA02CD8E4]
SSDT \SystemRoot\system32\DRIVERS\AVGIDSShim.Sys (IDS Application Activity Monitor Loader Driver./AVG Technologies CZ, s.r.o. ) ZwWriteVirtualMemory [0xA02CD980]

---- Kernel code sections - GMER 1.0.15 ----

.text ntkrnlpa.exe!KeSetEvent + 3F1 81CE4B74 4 Bytes [A0, D7, 2C, A0]
.text ntkrnlpa.exe!KeSetEvent + 621 81CE4DA4 8 Bytes [40, 16, 0A, 92, E4, D8, 2C, ...] {INC EAX; PUSH SS; OR DL, [EDX-0x5fd3271c]}
.text ntkrnlpa.exe!KeSetEvent + 681 81CE4E04 4 Bytes [80, D9, 2C, A0]
.text C:\Windows\system32\DRIVERS\atikmdag.sys section is writeable [0x8EE0A000, 0x263A88, 0xE8000020]

---- Devices - GMER 1.0.15 ----

AttachedDevice \FileSystem\Ntfs \Ntfs AVGIDSFilter.Sys (IDS Application Activity Monitor Filter Driver./AVG Technologies CZ, s.r.o. )
AttachedDevice \Driver\tdx \Device\Tcp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\tdx \Device\Udp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\tdx \Device\RawIp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \FileSystem\fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
AttachedDevice \FileSystem\fastfat \Fat AVGIDSFilter.Sys (IDS Application Activity Monitor Filter Driver./AVG Technologies CZ, s.r.o. )

---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\Services\NetBT\Parameters\Interfaces\Tcpip_{3FB84151-2050-4DF6-9310-477A826D54AC}
Reg HKLM\SYSTEM\CurrentControlSet\Services\NetBT\Parameters\Interfaces\Tcpip_{3FB84151-2050-4DF6-9310-477A826D54AC}@NameServerList ?
Reg HKLM\SYSTEM\ControlSet003\Services\NetBT\Parameters\Interfaces\Tcpip_{3FB84151-2050-4DF6-9310-477A826D54AC} (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet003\Services\NetBT\Parameters\Interfaces\Tcpip_{3FB84151-2050-4DF6-9310-477A826D54AC}@NameServerList ?

---- Files - GMER 1.0.15 ----

File C:\Windows\$NtUninstallKB25802$\2784911124 0 bytes
File C:\Windows\$NtUninstallKB25802$\2868891189 0 bytes
File C:\Windows\$NtUninstallKB25802$\2868891189\@ 2048 bytes
File C:\Windows\$NtUninstallKB25802$\2868891189\bckfg.tmp 851 bytes
File C:\Windows\$NtUninstallKB25802$\2868891189\cfg.ini 208 bytes
File C:\Windows\$NtUninstallKB25802$\2868891189\Desktop.ini 4608 bytes
File C:\Windows\$NtUninstallKB25802$\2868891189\keywords 413 bytes
File C:\Windows\$NtUninstallKB25802$\2868891189\kwrd.dll 223744 bytes
File C:\Windows\$NtUninstallKB25802$\2868891189\L 0 bytes
File C:\Windows\$NtUninstallKB25802$\2868891189\L\qnbwvoto 185856 bytes
File C:\Windows\$NtUninstallKB25802$\2868891189\U 0 bytes
File C:\Windows\$NtUninstallKB25802$\2868891189\U\00000001.@ 2048 bytes
File C:\Windows\$NtUninstallKB25802$\2868891189\U\00000002.@ 224768 bytes
File C:\Windows\$NtUninstallKB25802$\2868891189\U\00000004.@ 1024 bytes
File C:\Windows\$NtUninstallKB25802$\2868891189\U\80000000.@ 1024 bytes
File C:\Windows\$NtUninstallKB25802$\2868891189\U\80000004.@ 12800 bytes
File C:\Windows\$NtUninstallKB25802$\2868891189\U\80000032.@ 98304 bytes

---- EOF - GMER 1.0.15 ----

#13 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:11:08 AM

Posted 20 December 2011 - 09:50 PM

sorry for letting this topic go, but can you download and run and the following TDSSKiller and post the logs. They should be located in c:\ with the naming of TDSS* and if it asks you to fix anything then PLEASE DO NOT FIX ANYTHING.

#14 ser909

ser909
  • Topic Starter

  • Members
  • 58 posts
  • OFFLINE
  •  
  • Local time:06:08 AM

Posted 20 December 2011 - 11:22 PM

23:12:25.0663 4964 TDSS rootkit removing tool 2.6.23.0 Dec 13 2011 10:39:31
23:12:25.0710 4964 ============================================================
23:12:25.0710 4964 Current date / time: 2011/12/20 23:12:25.0710
23:12:25.0710 4964 SystemInfo:
23:12:25.0710 4964
23:12:25.0710 4964 OS Version: 6.0.6002 ServicePack: 2.0
23:12:25.0710 4964 Product type: Workstation
23:12:25.0710 4964 ComputerName: EDDIE-PC
23:12:25.0710 4964 UserName: Eddie
23:12:25.0710 4964 Windows directory: C:\Windows
23:12:25.0710 4964 System windows directory: C:\Windows
23:12:25.0710 4964 Processor architecture: Intel x86
23:12:25.0710 4964 Number of processors: 4
23:12:25.0710 4964 Page size: 0x1000
23:12:25.0710 4964 Boot type: Normal boot
23:12:25.0710 4964 ============================================================
23:12:27.0098 4964 Initialize success
23:14:10.0838 5776 ============================================================
23:14:10.0838 5776 Scan started
23:14:10.0838 5776 Mode: Manual;
23:14:10.0838 5776 ============================================================
23:14:11.0291 5776 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
23:14:11.0291 5776 ACPI - ok
23:14:11.0353 5776 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
23:14:11.0353 5776 adp94xx - ok
23:14:11.0384 5776 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
23:14:11.0384 5776 adpahci - ok
23:14:11.0400 5776 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
23:14:11.0400 5776 adpu160m - ok
23:14:11.0431 5776 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
23:14:11.0431 5776 adpu320 - ok
23:14:11.0540 5776 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
23:14:11.0540 5776 AFD - ok
23:14:11.0572 5776 agp440 (8b10ce1c1f9f1d47e4deb1a547a00cd4) C:\Windows\system32\drivers\agp440.sys
23:14:11.0572 5776 agp440 - ok
23:14:11.0587 5776 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
23:14:11.0603 5776 aic78xx - ok
23:14:11.0618 5776 aliide (dc67a153fdb8105b25d05334b5e1d8e2) C:\Windows\system32\drivers\aliide.sys
23:14:11.0618 5776 aliide - ok
23:14:11.0650 5776 amdagp (848f27e5b27c1c253f6cefdc1a5d8f21) C:\Windows\system32\drivers\amdagp.sys
23:14:11.0650 5776 amdagp - ok
23:14:11.0665 5776 amdide (835c4c3355088298a5ebd818fa31430f) C:\Windows\system32\drivers\amdide.sys
23:14:11.0665 5776 amdide - ok
23:14:11.0681 5776 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
23:14:11.0696 5776 AmdK7 - ok
23:14:11.0712 5776 AmdK8 (0ca0071da4315b00fc1328ca86b425da) C:\Windows\system32\drivers\amdk8.sys
23:14:11.0712 5776 AmdK8 - ok
23:14:11.0728 5776 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
23:14:11.0728 5776 arc - ok
23:14:11.0743 5776 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
23:14:11.0743 5776 arcsas - ok
23:14:11.0774 5776 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
23:14:11.0774 5776 AsyncMac - ok
23:14:11.0790 5776 atapi (61ca2c1e145809813c28752298cf9843) C:\Windows\system32\drivers\atapi.sys
23:14:11.0790 5776 atapi - ok
23:14:11.0837 5776 ATIAVPCI (c445d1e73e891833a065bb8fac445f7e) C:\Windows\system32\DRIVERS\atinavrr.sys
23:14:11.0852 5776 ATIAVPCI - ok
23:14:11.0962 5776 atikmdag (18f4c1c503f1cdd39ad006aa54b79ea8) C:\Windows\system32\DRIVERS\atikmdag.sys
23:14:11.0993 5776 atikmdag - ok
23:14:12.0040 5776 AVGIDSDriver (1c8d965bbcaa9ee5defdb54743437086) C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys
23:14:12.0040 5776 AVGIDSDriver - ok
23:14:12.0086 5776 AVGIDSEH (c59c9bc3f0612bd207ccdc5d8cb9ce39) C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
23:14:12.0086 5776 AVGIDSEH - ok
23:14:12.0118 5776 AVGIDSFilter (c5559de2ec66cede15a1664f6d183d8e) C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys
23:14:12.0118 5776 AVGIDSFilter - ok
23:14:12.0180 5776 AVGIDSShim (ae5e9667fa40206796d1bd5bd0427a8a) C:\Windows\system32\DRIVERS\AVGIDSShim.Sys
23:14:12.0180 5776 AVGIDSShim - ok
23:14:12.0242 5776 Avgldx86 (4e796d3d2c3182b13b3e3b5a2ad4ef0a) C:\Windows\system32\DRIVERS\avgldx86.sys
23:14:12.0242 5776 Avgldx86 - ok
23:14:12.0242 5776 Avgmfx86 (5639de66b37d02bd22df4cf3155fba60) C:\Windows\system32\DRIVERS\avgmfx86.sys
23:14:12.0258 5776 Avgmfx86 - ok
23:14:12.0274 5776 Avgrkx86 (d1baf652eda0ae70896276a1fb32c2d4) C:\Windows\system32\DRIVERS\avgrkx86.sys
23:14:12.0274 5776 Avgrkx86 - ok
23:14:12.0305 5776 Avgtdix (aaf0ebcad95f2164cffb544e00392498) C:\Windows\system32\DRIVERS\avgtdix.sys
23:14:12.0320 5776 Avgtdix - ok
23:14:12.0367 5776 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
23:14:12.0367 5776 Beep - ok
23:14:12.0383 5776 blbdrive - ok
23:14:12.0430 5776 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
23:14:12.0430 5776 bowser - ok
23:14:12.0461 5776 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
23:14:12.0476 5776 BrFiltLo - ok
23:14:12.0508 5776 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
23:14:12.0508 5776 BrFiltUp - ok
23:14:12.0539 5776 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
23:14:12.0539 5776 Brserid - ok
23:14:12.0570 5776 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
23:14:12.0570 5776 BrSerWdm - ok
23:14:12.0617 5776 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
23:14:12.0617 5776 BrUsbMdm - ok
23:14:12.0648 5776 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
23:14:12.0648 5776 BrUsbSer - ok
23:14:12.0695 5776 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
23:14:12.0695 5776 BTHMODEM - ok
23:14:12.0710 5776 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
23:14:12.0726 5776 cdfs - ok
23:14:12.0788 5776 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
23:14:12.0788 5776 cdrom - ok
23:14:12.0820 5776 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
23:14:12.0820 5776 circlass - ok
23:14:12.0882 5776 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
23:14:12.0882 5776 CLFS - ok
23:14:12.0929 5776 cmdide (e79cbb2195e965f6e3256e2c1b23fd1c) C:\Windows\system32\drivers\cmdide.sys
23:14:12.0929 5776 cmdide - ok
23:14:12.0944 5776 Compbatt (722936afb75a7f509662b69b5632f48a) C:\Windows\system32\drivers\compbatt.sys
23:14:12.0944 5776 Compbatt - ok
23:14:12.0960 5776 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
23:14:12.0960 5776 crcdisk - ok
23:14:12.0976 5776 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
23:14:12.0976 5776 Crusoe - ok
23:14:13.0038 5776 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
23:14:13.0054 5776 DfsC - ok
23:14:13.0132 5776 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
23:14:13.0132 5776 disk - ok
23:14:13.0163 5776 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
23:14:13.0163 5776 drmkaud - ok
23:14:13.0225 5776 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
23:14:13.0241 5776 DXGKrnl - ok
23:14:13.0288 5776 e1express (04944f4fc4f0477185f5d26ae0ddb90e) C:\Windows\system32\DRIVERS\e1e6032.sys
23:14:13.0288 5776 e1express - ok
23:14:13.0334 5776 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
23:14:13.0334 5776 E1G60 - ok
23:14:13.0428 5776 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
23:14:13.0428 5776 Ecache - ok
23:14:13.0459 5776 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
23:14:13.0475 5776 elxstor - ok
23:14:13.0553 5776 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
23:14:13.0568 5776 exfat - ok
23:14:13.0600 5776 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
23:14:13.0600 5776 fastfat - ok
23:14:13.0646 5776 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
23:14:13.0646 5776 fdc - ok
23:14:13.0693 5776 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
23:14:13.0693 5776 FileInfo - ok
23:14:13.0709 5776 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
23:14:13.0709 5776 Filetrace - ok
23:14:13.0771 5776 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
23:14:13.0771 5776 flpydisk - ok
23:14:13.0834 5776 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
23:14:13.0834 5776 FltMgr - ok
23:14:13.0849 5776 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
23:14:13.0849 5776 Fs_Rec - ok
23:14:13.0865 5776 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
23:14:13.0880 5776 gagp30kx - ok
23:14:13.0943 5776 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
23:14:13.0943 5776 HDAudBus - ok
23:14:13.0958 5776 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
23:14:13.0958 5776 HidBth - ok
23:14:13.0990 5776 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
23:14:13.0990 5776 HidIr - ok
23:14:14.0052 5776 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
23:14:14.0052 5776 HidUsb - ok
23:14:14.0068 5776 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
23:14:14.0068 5776 HpCISSs - ok
23:14:14.0130 5776 HSF_DPV (53229dcf431d76434816cd29251168a0) C:\Windows\system32\DRIVERS\HSX_DPV.sys
23:14:14.0161 5776 HSF_DPV - ok
23:14:14.0177 5776 HSXHWBS2 (ed98350ecd4a5a9c9f1e641c09872bb2) C:\Windows\system32\DRIVERS\HSXHWBS2.sys
23:14:14.0177 5776 HSXHWBS2 - ok
23:14:14.0239 5776 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
23:14:14.0239 5776 HTTP - ok
23:14:14.0255 5776 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
23:14:14.0270 5776 i2omp - ok
23:14:14.0317 5776 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
23:14:14.0317 5776 i8042prt - ok
23:14:14.0364 5776 iaStor (e5a0034847537eaee3c00349d5c34c5f) C:\Windows\system32\drivers\iastor.sys
23:14:14.0364 5776 iaStor - ok
23:14:14.0380 5776 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
23:14:14.0380 5776 iaStorV - ok
23:14:14.0411 5776 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
23:14:14.0411 5776 iirsp - ok
23:14:14.0473 5776 IntelDH (7f440f8ced849fcdfa85bb3521b4f048) C:\Windows\system32\Drivers\IntelDH.sys
23:14:14.0473 5776 IntelDH - ok
23:14:14.0504 5776 intelide (0084046c084d68e494f8cf36bcf08186) C:\Windows\system32\drivers\intelide.sys
23:14:14.0504 5776 intelide - ok
23:14:14.0551 5776 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
23:14:14.0551 5776 intelppm - ok
23:14:14.0598 5776 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:14:14.0598 5776 IpFilterDriver - ok
23:14:14.0614 5776 IpInIp - ok
23:14:14.0645 5776 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
23:14:14.0645 5776 IPMIDRV - ok
23:14:14.0692 5776 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
23:14:14.0692 5776 IPNAT - ok
23:14:14.0754 5776 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
23:14:14.0754 5776 IRENUM - ok
23:14:14.0785 5776 isapnp (2f8ece2699e7e2070545e9b0960a8ed2) C:\Windows\system32\drivers\isapnp.sys
23:14:14.0785 5776 isapnp - ok
23:14:14.0848 5776 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
23:14:14.0848 5776 iScsiPrt - ok
23:14:14.0863 5776 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
23:14:14.0879 5776 iteatapi - ok
23:14:14.0910 5776 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
23:14:14.0910 5776 iteraid - ok
23:14:14.0972 5776 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
23:14:14.0972 5776 kbdclass - ok
23:14:15.0035 5776 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
23:14:15.0035 5776 kbdhid - ok
23:14:15.0113 5776 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
23:14:15.0113 5776 KSecDD - ok
23:14:15.0144 5776 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
23:14:15.0144 5776 lltdio - ok
23:14:15.0175 5776 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
23:14:15.0175 5776 LSI_FC - ok
23:14:15.0191 5776 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
23:14:15.0206 5776 LSI_SAS - ok
23:14:15.0222 5776 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
23:14:15.0222 5776 LSI_SCSI - ok
23:14:15.0253 5776 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
23:14:15.0253 5776 luafv - ok
23:14:15.0331 5776 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys
23:14:15.0331 5776 mdmxsdk - ok
23:14:15.0362 5776 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
23:14:15.0362 5776 megasas - ok
23:14:15.0394 5776 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
23:14:15.0394 5776 Modem - ok
23:14:15.0409 5776 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
23:14:15.0409 5776 monitor - ok
23:14:15.0440 5776 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
23:14:15.0440 5776 mouclass - ok
23:14:15.0456 5776 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
23:14:15.0456 5776 mouhid - ok
23:14:15.0487 5776 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
23:14:15.0487 5776 MountMgr - ok
23:14:15.0518 5776 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
23:14:15.0518 5776 mpio - ok
23:14:15.0550 5776 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
23:14:15.0550 5776 mpsdrv - ok
23:14:15.0565 5776 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
23:14:15.0565 5776 Mraid35x - ok
23:14:15.0628 5776 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
23:14:15.0628 5776 MRxDAV - ok
23:14:15.0690 5776 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
23:14:15.0690 5776 mrxsmb - ok
23:14:15.0721 5776 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:14:15.0721 5776 mrxsmb10 - ok
23:14:15.0737 5776 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:14:15.0752 5776 mrxsmb20 - ok
23:14:15.0768 5776 msahci (d420bc42a637ac3cc4f411220549c0dc) C:\Windows\system32\drivers\msahci.sys
23:14:15.0768 5776 msahci - ok
23:14:15.0799 5776 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
23:14:15.0799 5776 msdsm - ok
23:14:15.0830 5776 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
23:14:15.0830 5776 Msfs - ok
23:14:15.0893 5776 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
23:14:15.0893 5776 msisadrv - ok
23:14:15.0940 5776 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
23:14:15.0940 5776 MSKSSRV - ok
23:14:15.0971 5776 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
23:14:15.0971 5776 MSPCLOCK - ok
23:14:16.0002 5776 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
23:14:16.0002 5776 MSPQM - ok
23:14:16.0049 5776 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
23:14:16.0064 5776 MsRPC - ok
23:14:16.0080 5776 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
23:14:16.0080 5776 mssmbios - ok
23:14:16.0111 5776 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
23:14:16.0111 5776 MSTEE - ok
23:14:16.0127 5776 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
23:14:16.0127 5776 Mup - ok
23:14:16.0158 5776 MXOPSWD (216ac775320f64de28cfeb7c179c4ff9) C:\Windows\system32\DRIVERS\mxopswd.sys
23:14:16.0158 5776 MXOPSWD - ok
23:14:16.0220 5776 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
23:14:16.0236 5776 NativeWifiP - ok
23:14:16.0298 5776 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
23:14:16.0314 5776 NDIS - ok
23:14:16.0345 5776 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
23:14:16.0345 5776 NdisTapi - ok
23:14:16.0408 5776 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
23:14:16.0408 5776 Ndisuio - ok
23:14:16.0470 5776 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
23:14:16.0470 5776 NdisWan - ok
23:14:16.0501 5776 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
23:14:16.0501 5776 NDProxy - ok
23:14:16.0532 5776 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
23:14:16.0532 5776 NetBIOS - ok
23:14:16.0610 5776 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
23:14:16.0610 5776 nfrd960 - ok
23:14:16.0657 5776 nmsunidr (dfeabb7cfffadea4a912ab95bdc3177a) C:\Windows\system32\DRIVERS\nmsunidr.sys
23:14:16.0657 5776 nmsunidr - ok
23:14:16.0735 5776 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
23:14:16.0735 5776 Npfs - ok
23:14:16.0766 5776 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
23:14:16.0766 5776 nsiproxy - ok
23:14:16.0844 5776 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
23:14:16.0876 5776 Ntfs - ok
23:14:16.0891 5776 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
23:14:16.0891 5776 ntrigdigi - ok
23:14:16.0922 5776 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
23:14:16.0922 5776 Null - ok
23:14:16.0954 5776 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
23:14:16.0954 5776 nvraid - ok
23:14:16.0985 5776 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
23:14:16.0985 5776 nvstor - ok
23:14:17.0016 5776 nv_agp (055081fd5076401c1ee1bcab08d81911) C:\Windows\system32\drivers\nv_agp.sys
23:14:17.0016 5776 nv_agp - ok
23:14:17.0016 5776 NwlnkFlt - ok
23:14:17.0032 5776 NwlnkFwd - ok
23:14:17.0125 5776 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
23:14:17.0125 5776 ohci1394 - ok
23:14:17.0156 5776 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
23:14:17.0156 5776 Parport - ok
23:14:17.0219 5776 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
23:14:17.0219 5776 partmgr - ok
23:14:17.0250 5776 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
23:14:17.0250 5776 Parvdm - ok
23:14:17.0312 5776 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
23:14:17.0312 5776 pci - ok
23:14:17.0344 5776 pciide (eb03c52c1cc6ffc31757e0a69fffd5b6) C:\Windows\system32\drivers\pciide.sys
23:14:17.0344 5776 pciide - ok
23:14:17.0484 5776 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
23:14:17.0484 5776 pcmcia - ok
23:14:17.0531 5776 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
23:14:17.0546 5776 PEAUTH - ok
23:14:17.0609 5776 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
23:14:17.0609 5776 PptpMiniport - ok
23:14:17.0640 5776 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
23:14:17.0640 5776 Processor - ok
23:14:17.0718 5776 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
23:14:17.0718 5776 PSched - ok
23:14:17.0765 5776 PxHelp20 (49452bfcec22f36a7a9b9c2181bc3042) C:\Windows\system32\Drivers\PxHelp20.sys
23:14:17.0765 5776 PxHelp20 - ok
23:14:17.0812 5776 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
23:14:17.0843 5776 ql2300 - ok
23:14:17.0874 5776 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
23:14:17.0890 5776 ql40xx - ok
23:14:17.0936 5776 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
23:14:17.0936 5776 QWAVEdrv - ok
23:14:18.0046 5776 R300 (18f4c1c503f1cdd39ad006aa54b79ea8) C:\Windows\system32\DRIVERS\atikmdag.sys
23:14:18.0077 5776 R300 - ok
23:14:18.0092 5776 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
23:14:18.0092 5776 RasAcd - ok
23:14:18.0139 5776 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
23:14:18.0139 5776 Rasl2tp - ok
23:14:18.0202 5776 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
23:14:18.0202 5776 RasPppoe - ok
23:14:18.0248 5776 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
23:14:18.0248 5776 RasSstp - ok
23:14:18.0280 5776 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
23:14:18.0295 5776 rdbss - ok
23:14:18.0326 5776 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
23:14:18.0326 5776 RDPCDD - ok
23:14:18.0358 5776 rdpdr (0245418224cfa77bf4b41c2fe0622258) C:\Windows\system32\drivers\rdpdr.sys
23:14:18.0358 5776 rdpdr - ok
23:14:18.0373 5776 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
23:14:18.0373 5776 RDPENCDD - ok
23:14:18.0404 5776 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
23:14:18.0404 5776 RDPWD - ok
23:14:18.0436 5776 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
23:14:18.0436 5776 rspndr - ok
23:14:18.0498 5776 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
23:14:18.0498 5776 SASDIFSV - ok
23:14:18.0514 5776 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
23:14:18.0514 5776 SASKUTIL - ok
23:14:18.0529 5776 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
23:14:18.0529 5776 sbp2port - ok
23:14:18.0560 5776 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
23:14:18.0560 5776 secdrv - ok
23:14:18.0592 5776 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
23:14:18.0592 5776 Serenum - ok
23:14:18.0623 5776 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
23:14:18.0623 5776 Serial - ok
23:14:18.0670 5776 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
23:14:18.0670 5776 sermouse - ok
23:14:18.0701 5776 sffdisk (51cf56aa8bcc241f134b420b8f850406) C:\Windows\system32\drivers\sffdisk.sys
23:14:18.0701 5776 sffdisk - ok
23:14:18.0716 5776 sffp_mmc (96ded8b20c734ac41641ce275250e55d) C:\Windows\system32\drivers\sffp_mmc.sys
23:14:18.0716 5776 sffp_mmc - ok
23:14:18.0763 5776 sffp_sd (8b08cab1267b2c377883fc9e56981f90) C:\Windows\system32\drivers\sffp_sd.sys
23:14:18.0763 5776 sffp_sd - ok
23:14:18.0779 5776 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
23:14:18.0779 5776 sfloppy - ok
23:14:18.0810 5776 sisagp (08072b2fb92477fc813271a84b3a8698) C:\Windows\system32\drivers\sisagp.sys
23:14:18.0810 5776 sisagp - ok
23:14:18.0826 5776 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
23:14:18.0841 5776 SiSRaid2 - ok
23:14:18.0872 5776 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
23:14:18.0872 5776 SiSRaid4 - ok
23:14:18.0904 5776 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
23:14:18.0904 5776 Smb - ok
23:14:18.0935 5776 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
23:14:18.0935 5776 spldr - ok
23:14:18.0997 5776 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
23:14:18.0997 5776 srv - ok
23:14:19.0044 5776 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
23:14:19.0044 5776 srv2 - ok
23:14:19.0060 5776 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
23:14:19.0060 5776 srvnet - ok
23:14:19.0122 5776 STHDA (167909a1c36aa3e8f2582962f0ccc748) C:\Windows\system32\drivers\stwrt.sys
23:14:19.0122 5776 STHDA - ok
23:14:19.0200 5776 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
23:14:19.0200 5776 swenum - ok
23:14:19.0247 5776 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
23:14:19.0247 5776 Symc8xx - ok
23:14:19.0262 5776 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
23:14:19.0262 5776 Sym_hi - ok
23:14:19.0309 5776 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
23:14:19.0309 5776 Sym_u3 - ok
23:14:19.0356 5776 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
23:14:19.0372 5776 Tcpip - ok
23:14:19.0387 5776 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
23:14:19.0403 5776 Tcpip6 - ok
23:14:19.0496 5776 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
23:14:19.0496 5776 tcpipreg - ok
23:14:19.0528 5776 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
23:14:19.0543 5776 TDPIPE - ok
23:14:19.0559 5776 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
23:14:19.0559 5776 TDTCP - ok
23:14:19.0621 5776 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
23:14:19.0621 5776 tdx - ok
23:14:19.0684 5776 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
23:14:19.0699 5776 TermDD - ok
23:14:19.0808 5776 TSHWMDTCP (b56368b25a51cebda77e6b20764f07f2) C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\TSHWMDTCP.sys
23:14:19.0808 5776 TSHWMDTCP - ok
23:14:19.0855 5776 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
23:14:19.0855 5776 tssecsrv - ok
23:14:19.0902 5776 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
23:14:19.0902 5776 tunmp - ok
23:14:19.0964 5776 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
23:14:19.0964 5776 tunnel - ok
23:14:20.0027 5776 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
23:14:20.0027 5776 uagp35 - ok
23:14:20.0074 5776 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
23:14:20.0089 5776 udfs - ok
23:14:20.0152 5776 uliagpkx (6d72ef05921abdf59fc45c7ebfe7e8dd) C:\Windows\system32\drivers\uliagpkx.sys
23:14:20.0152 5776 uliagpkx - ok
23:14:20.0183 5776 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
23:14:20.0183 5776 uliahci - ok
23:14:20.0230 5776 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
23:14:20.0230 5776 UlSata - ok
23:14:20.0245 5776 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
23:14:20.0261 5776 ulsata2 - ok
23:14:20.0308 5776 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
23:14:20.0308 5776 umbus - ok
23:14:20.0354 5776 usbccgp (8bd3ae150d97ba4e633c6c5c51b41ae1) C:\Windows\system32\DRIVERS\usbccgp.sys
23:14:20.0370 5776 usbccgp - ok
23:14:20.0386 5776 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
23:14:20.0386 5776 usbcir - ok
23:14:20.0448 5776 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
23:14:20.0448 5776 usbehci - ok
23:14:20.0479 5776 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
23:14:20.0479 5776 usbhub - ok
23:14:20.0510 5776 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
23:14:20.0510 5776 usbohci - ok
23:14:20.0542 5776 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
23:14:20.0542 5776 usbprint - ok
23:14:20.0557 5776 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:14:20.0557 5776 USBSTOR - ok
23:14:20.0588 5776 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
23:14:20.0588 5776 usbuhci - ok
23:14:20.0620 5776 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
23:14:20.0620 5776 vga - ok
23:14:20.0651 5776 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
23:14:20.0651 5776 VgaSave - ok
23:14:20.0666 5776 viaagp (d5929a28bdff4367a12caf06af901971) C:\Windows\system32\drivers\viaagp.sys
23:14:20.0666 5776 viaagp - ok
23:14:20.0698 5776 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
23:14:20.0698 5776 ViaC7 - ok
23:14:20.0713 5776 viaide (f3b4762eb85a2aff4999401f14c3262b) C:\Windows\system32\drivers\viaide.sys
23:14:20.0713 5776 viaide - ok
23:14:20.0776 5776 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
23:14:20.0776 5776 volmgr - ok
23:14:20.0854 5776 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
23:14:20.0854 5776 volmgrx - ok
23:14:20.0900 5776 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
23:14:20.0916 5776 volsnap - ok
23:14:20.0947 5776 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
23:14:20.0947 5776 vsmraid - ok
23:14:20.0978 5776 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
23:14:20.0994 5776 WacomPen - ok
23:14:21.0025 5776 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
23:14:21.0025 5776 Wanarp - ok
23:14:21.0025 5776 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
23:14:21.0025 5776 Wanarpv6 - ok
23:14:21.0056 5776 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
23:14:21.0056 5776 Wd - ok
23:14:21.0103 5776 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
23:14:21.0103 5776 Wdf01000 - ok
23:14:21.0166 5776 winachsf (6d2350bb6e77e800fc4be4e5b7a2e89a) C:\Windows\system32\DRIVERS\HSX_CNXT.sys
23:14:21.0181 5776 winachsf - ok
23:14:21.0197 5776 WinUsb (676f4b665bdd8053eaa53ac1695b8074) C:\Windows\system32\DRIVERS\WinUSB.SYS
23:14:21.0197 5776 WinUsb - ok
23:14:21.0228 5776 WmiAcpi (17eac0d023a65fa9b02114cc2baacad5) C:\Windows\system32\drivers\wmiacpi.sys
23:14:21.0228 5776 WmiAcpi - ok
23:14:21.0275 5776 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
23:14:21.0275 5776 ws2ifsl - ok
23:14:21.0306 5776 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
23:14:21.0322 5776 WUDFRd - ok
23:14:21.0337 5776 XAudio (5a7ff9a18ff6d7e0527fe3abf9204ef8) C:\Windows\system32\DRIVERS\xaudio.sys
23:14:21.0337 5776 XAudio - ok
23:14:21.0368 5776 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
23:14:21.0384 5776 \Device\Harddisk0\DR0 - ok
23:14:21.0384 5776 MBR (0x1B8) (a4a15d6782e6fe1dce41a606cb3affe3) \Device\Harddisk1\DR1
23:14:21.0400 5776 \Device\Harddisk1\DR1 - ok
23:14:21.0400 5776 MBR (0x1B8) (a4a15d6782e6fe1dce41a606cb3affe3) \Device\Harddisk2\DR3
23:14:21.0415 5776 \Device\Harddisk2\DR3 - ok
23:14:21.0415 5776 MBR (0x1B8) (b313b69eb8daf2d0c5cecc9b5222808c) \Device\Harddisk3\DR4
23:14:23.0396 5776 \Device\Harddisk3\DR4 - ok
23:14:23.0428 5776 Boot (0x1200) (e954ed8b2bcb58e24ab36ddeccf92afd) \Device\Harddisk0\DR0\Partition0
23:14:23.0428 5776 \Device\Harddisk0\DR0\Partition0 - ok
23:14:23.0428 5776 Boot (0x1200) (ad9a137a634f13b3b1d3b44d758aa81b) \Device\Harddisk0\DR0\Partition1
23:14:23.0428 5776 \Device\Harddisk0\DR0\Partition1 - ok
23:14:23.0443 5776 Boot (0x1200) (d3b92207aa6c489a9187c2c9445ad58f) \Device\Harddisk1\DR1\Partition0
23:14:23.0443 5776 \Device\Harddisk1\DR1\Partition0 - ok
23:14:23.0443 5776 Boot (0x1200) (4fa514cab2165efb372b73374afc26e4) \Device\Harddisk2\DR3\Partition0
23:14:23.0443 5776 \Device\Harddisk2\DR3\Partition0 - ok
23:14:23.0443 5776 ============================================================
23:14:23.0443 5776 Scan finished
23:14:23.0443 5776 ============================================================
23:14:23.0459 0552 Detected object count: 0
23:14:23.0459 0552 Actual detected object count: 0
23:14:39.0558 5724 Deinitialize success

#15 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:11:08 AM

Posted 20 December 2011 - 11:44 PM

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • List Minidump Files
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users