Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Keep Being redirected...


  • Please log in to reply
5 replies to this topic

#1 joboo78

joboo78

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:12:21 AM

Posted 02 February 2012 - 12:40 PM

Hello,

I am having a problem where I am continually being redirected to an "instant search" website and/or websites such as:

http://the-consumer-reporter.org/jobs3/?from=US_1_113594_5_${SUBID

will randomly open on my computer. How can I go about fixing this? Any help is much appreciated.

Thanks much,

Joe

Edited by Budapest, 02 February 2012 - 05:28 PM.
Moved from Virus, Trojan, Spyware, and Malware Removal Logs ~Budapest


BC AdBot (Login to Remove)

 


#2 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,725 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:10:21 PM

Posted 02 February 2012 - 06:41 PM

Download Security Check from HERE, and save it to your Desktop.

* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.

=============================================================================

Please download Farbar Service Scanner and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center
    • Windows Update
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.

====================================================================================

Please download MiniToolBox and run it.

Checkmark following boxes:
  • Report IE Proxy Settings
  • Report FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size
Click Go and post the result.

=============================================================================

Download Malwarebytes' Anti-Malware (aka MBAM): https://www.bleepingcomputer.com/download/malwarebytes-anti-malware/ to your desktop.

* Double-click mbam-setup.exe and follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad.
* Post the log back here.

Be sure to restart the computer.

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

=============================================================================

Download aswMBR to your desktop.
Double click the aswMBR.exe to run it.
If you see this question: Would you like to download latest Avast! virus definitions?" say "Yes".
Click the "Scan" button to start scan.
On completion of the scan click "Save log", save it to your desktop and post in your next reply.

NOTE. aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#3 joboo78

joboo78
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:12:21 AM

Posted 02 February 2012 - 09:55 PM

Thank you for the quick response!!

Here are the results:

Results of screen317's Security Check version 0.99.24
Windows Vista Service Pack 2 x86 (UAC is enabled)
Internet Explorer 9
``````````````````````````````
Antivirus/Firewall Check:

Symantec Endpoint Protection
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:

Java™ 6 Update 7
Out of date Java installed!
Adobe Reader X (10.1.1)
Mozilla Firefox (3.0.11) Firefox Out of Date!
````````````````````````````````
Process Check:
objlist.exe by Laurent

``````````End of Log````````````

Farbar Service Scanner Version: 02-02-2012
Ran by j_banta (administrator) on 02-02-2012 at 18:52:06
Microsoft® Windows Vista™ Home Basic Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Yahoo IP is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: Attention! Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: Attention! Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: Attention! Unable to open MpsSvc registry key. The service key does not exist.
Checking LEGACY_MpsSvc: Attention! Unable to open LEGACY_MpsSvc\0000 registry key. The key does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: Attention! Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: Attention! Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: Attention! Unable to open bfe registry key. The service key does not exist.
Checking LEGACY_bfe: Attention! Unable to open LEGACY_bfe\0000 registry key. The key does not exist.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
===========

File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll
[2009-09-10 18:54] - [2009-04-11 01:28] - 0758784 ____A (Microsoft Corporation) 93952506C6D67330367F7E7934B6A02F

C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll
[2009-09-10 18:53] - [2009-04-11 01:28] - 0129024 ____A (Microsoft Corporation) FB27772BEAF8E1D28CCD825C09DA939B

C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****

MiniToolBox by Farbar Version: 18-01-2012
Ran by j_banta (administrator) on 02-02-2012 at 18:54:17
Microsoft® Windows Vista™ Home Basic Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

========================= FF Proxy Settings: ==============================

Hosts file not detected in the default directory
========================= IP Configuration: ================================

Realtek RTL8102E Family PCI-E Fast Ethernet NIC (NDIS 6.0) = Local Area Connection (Connected)
Atheros AR5007 802.11b/g WiFi Adapter = Wireless Network Connection (Media disconnected)
The following helper DLL cannot be loaded: WSHELPER.DLL.
The following helper DLL cannot be loaded: IFMON.DLL.
The following command was not found: int ip dump.

Windows IP Configuration

Host Name . . . . . . . . . . . . : j_banta-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : hsd1.pa.comcast.net.

Wireless LAN adapter Wireless Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR5007 802.11b/g WiFi Adapter
Physical Address. . . . . . . . . : 00-24-2C-3B-BB-F6
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : hsd1.pa.comcast.net.
Description . . . . . . . . . . . : Realtek RTL8102E Family PCI-E Fast Ethernet NIC (NDIS 6.0)
Physical Address. . . . . . . . . : 00-1F-16-79-12-1C
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::ed65:fbe0:d58e:3349%10(Preferred)
IPv4 Address. . . . . . . . . . . : 76.99.21.227(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.248.0
Lease Obtained. . . . . . . . . . : Thursday, February 02, 2012 3:25:24 PM
Lease Expires . . . . . . . . . . : Sunday, February 05, 2012 10:57:21 AM
Default Gateway . . . . . . . . . : 76.99.16.1
DHCP Server . . . . . . . . . . . : 68.87.64.10
DHCPv6 IAID . . . . . . . . . . . : 167780118
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-11-80-F3-63-00-24-2C-3B-BB-F6
DNS Servers . . . . . . . . . . . : 75.75.75.75
75.75.76.76
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.hsd1.pa.comcast.net.
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.hsd1.pa.comcast.net.
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 14:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 6TO4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 16:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 6TO4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 17:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{CB535D14-FA86-4432-BDF1-07C506FF7361}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 19:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 6TO4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes


Pinging google.com [74.125.113.104] with 32 bytes of data:

Reply from 74.125.113.104: bytes=32 time=33ms TTL=48

Reply from 74.125.113.104: bytes=32 time=34ms TTL=48



Ping statistics for 74.125.113.104:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 33ms, Maximum = 34ms, Average = 33ms



Pinging yahoo.com [72.30.2.43] with 32 bytes of data:

Reply from 72.30.2.43: bytes=32 time=92ms TTL=48

Reply from 72.30.2.43: bytes=32 time=96ms TTL=48



Ping statistics for 72.30.2.43:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 92ms, Maximum = 96ms, Average = 94ms



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
11 ...00 24 2c 3b bb f6 ...... Atheros AR5007 802.11b/g WiFi Adapter
10 ...00 1f 16 79 12 1c ...... Realtek RTL8102E Family PCI-E Fast Ethernet NIC (NDIS 6.0)
1 ........................... Software Loopback Interface 1
16 ...00 00 00 00 00 00 00 e0 isatap.hsd1.pa.comcast.net.
20 ...00 00 00 00 00 00 00 e0 isatap.hsd1.pa.comcast.net.
12 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
15 ...00 00 00 00 00 00 00 e0 6TO4 Adapter
17 ...00 00 00 00 00 00 00 e0 6TO4 Adapter
18 ...00 00 00 00 00 00 00 e0 isatap.{CB535D14-FA86-4432-BDF1-07C506FF7361}
22 ...00 00 00 00 00 00 00 e0 6TO4 Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 76.99.16.1 76.99.21.227 20
76.99.16.0 255.255.248.0 On-link 76.99.21.227 276
76.99.21.227 255.255.255.255 On-link 76.99.21.227 276
76.99.23.255 255.255.255.255 On-link 76.99.21.227 276
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 76.99.21.227 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 76.99.21.227 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
10 276 fe80::/64 On-link
10 276 fe80::ed65:fbe0:d58e:3349/128
On-link
1 306 ff00::/8 On-link
10 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 mswsock.dll [File Not found] ()
Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
Catalog9 11 mswsock.dll [File Not found] ()
Catalog9 12 mswsock.dll [File Not found] ()
Catalog9 13 mswsock.dll [File Not found] ()
Catalog9 14 mswsock.dll [File Not found] ()
Catalog9 15 mswsock.dll [File Not found] ()
Catalog9 16 mswsock.dll [File Not found] ()
Catalog9 17 mswsock.dll [File Not found] ()
Catalog9 18 mswsock.dll [File Not found] ()
Catalog9 19 mswsock.dll [File Not found] ()
Catalog9 20 mswsock.dll [File Not found] ()
Catalog9 21 mswsock.dll [File Not found] ()
Catalog9 22 mswsock.dll [File Not found] ()
Catalog9 23 mswsock.dll [File Not found] ()
Catalog9 24 mswsock.dll [File Not found] ()
Catalog9 25 mswsock.dll [File Not found] ()
Catalog9 26 mswsock.dll [File Not found] ()
Catalog9 27 mswsock.dll [File Not found] ()
Catalog9 28 mswsock.dll [File Not found] ()
Catalog9 29 mswsock.dll [File Not found] ()
Catalog9 30 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (02/02/2012 06:55:04 PM) (Source: Application Error) (User: )
Description: Faulting application nslookup.exe, version 6.0.6002.18005, time stamp 0x49e01d63, faulting module ntdll.dll, version 6.0.6002.18327, time stamp 0x4cb73436, exception code 0xc0000138, fault offset 0x00009f7d,
process id 0x16dc, application start time 0xnslookup.exe0.

Error: (02/02/2012 06:54:56 PM) (Source: Application Error) (User: )
Description: Faulting application nslookup.exe, version 6.0.6002.18005, time stamp 0x49e01d63, faulting module ntdll.dll, version 6.0.6002.18327, time stamp 0x4cb73436, exception code 0xc0000138, fault offset 0x00009f7d,
process id 0x16b0, application start time 0xnslookup.exe0.

Error: (02/02/2012 06:54:44 PM) (Source: Application Error) (User: )
Description: Faulting application nslookup.exe, version 6.0.6002.18005, time stamp 0x49e01d63, faulting module ntdll.dll, version 6.0.6002.18327, time stamp 0x4cb73436, exception code 0xc0000138, fault offset 0x00009f7d,
process id 0x128c, application start time 0xnslookup.exe0.

Error: (02/02/2012 03:51:32 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 9.0.8112.16421, time stamp 0x4d76255d, faulting module YontooIEClient.dll_unloaded, version 0.0.0.0, time stamp 0x4e85fbe3, exception code 0xc0000005, fault offset 0x6917e37b,
process id 0xf1c, application start time 0xiexplore.exe0.

Error: (02/02/2012 03:25:45 PM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 18 227.21.99.76.in-addr.arpa. PTR j-banta-PC.local.

Error: (02/02/2012 03:25:45 PM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: Received from 76.99.21.227:5353 20 227.21.99.76.in-addr.arpa. PTR j-banta-PC-2.local.

Error: (02/02/2012 09:37:06 AM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 9.0.8112.16421, time stamp 0x4d76255d, faulting module YontooIEClient.dll, version 1.10.1.0, time stamp 0x4e85fbe3, exception code 0xc0000005, fault offset 0x0000909f,
process id 0xe50, application start time 0xiexplore.exe0.

Error: (02/01/2012 10:10:45 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\J_BANTA\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\MACROMEDIA.COM\SUPPORT\FLASHPLAYER\SYS\#S.NSDSVC.COM> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (02/01/2012 10:10:45 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\J_BANTA\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\MACROMEDIA.COM\SUPPORT\FLASHPLAYER\SYS\#S.NSDSVC.COM> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (02/01/2012 10:10:44 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\J_BANTA\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\MACROMEDIA.COM\SUPPORT\FLASHPLAYER\SYS\#S.NSDSVC.COM> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)


System errors:
=============
Error: (02/02/2012 03:26:09 PM) (Source: Service Control Manager) (User: )
Description: 30000Symantec Settings Manager

Error: (02/02/2012 03:26:09 PM) (Source: Service Control Manager) (User: )
Description: TfFsMon
TFSysMon

Error: (02/02/2012 03:26:09 PM) (Source: Service Control Manager) (User: )
Description: Internet Connection Sharing (ICS)BFE

Error: (02/02/2012 03:26:09 PM) (Source: Service Control Manager) (User: )
Description: IPsec Policy AgentBFE

Error: (02/02/2012 03:26:09 PM) (Source: Service Control Manager) (User: )
Description: IKE and AuthIP IPsec Keying ModulesBFE

Error: (02/02/2012 03:26:09 PM) (Source: Service Control Manager) (User: )
Description: Computer Browser%%1060

Error: (02/02/2012 03:26:09 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (02/02/2012 03:26:09 PM) (Source: Service Control Manager) (User: )
Description: 30000Symantec Settings Manager

Error: (02/02/2012 03:25:50 PM) (Source: DCOM) (User: )
Description: 1068Symantec AntiVirus{5CEC0E13-CF22-414C-8D67-D44B06420FC1}

Error: (02/02/2012 03:25:50 PM) (Source: Print) (User: SYSTEM)
Description: The print spooler failed to share printer Send To OneNote 2007 with shared resource name Send To OneNote 2007. Error 1753. The printer cannot be used by others on the network.


Microsoft Office Sessions:
=========================
Error: (11/08/2010 04:42:52 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 360 seconds with 60 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.1.377)
Activation Assistant for the 2007 Microsoft Office suites
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0)
ActiveCheck component for HP Active Support Library (Version: 3.0.0.2)
Adobe Acrobat 5.0 (Version: 5.0)
Adobe Acrobat 9 Pro - English, Français, Deutsch (Version: 9.2.0)
Adobe Acrobat 9.2.0 - CPSID_50026
Adobe AIR (Version: 1.0.4990)
Adobe AIR (Version: 1.0.8.4990)
Adobe Connect Add-in
Adobe Flash Player 11 ActiveX (Version: 11.1.102.55)
Adobe Reader X (10.1.1) (Version: 10.1.1)
Adobe Shockwave Player (Version: 11.0)
aioprnt (Version: 5.3.1.0)
aioscnnr (Version: 6.2.3.10)
aioscnnr (Version: 7.3.4.0)
Apple Application Support (Version: 2.1.6)
Apple Mobile Device Support (Version: 4.0.0.97)
Apple Software Update (Version: 2.1.3.127)
Atheros Driver Installation Program (Version: 9.0)
Bonjour (Version: 3.0.0.10)
C4USelfUpdater (Version: 1.00.0000)
center (Version: 6.2.5.0)
ChemAxon Marvin Beans 5.7.0
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
Citrix XenApp Plugin for Hosted Apps (Version: 11.0.12.5357)
CLEP Sampler
Comcast Desktop Software (v1.2.0.9) (Version: 23)
Compatibility Pack for the 2007 Office system (Version: 12.0.6425.1000)
Conexant HD Audio (Version: 4.58.0.0)
CyberLink DVD Suite (Version: 6.0.2203)
DivX Plus DirectShow Filters
DivX Version Checker (Version: 7.1.0.9)
essentials (Version: 6.0.14.0)
ESU for Microsoft Vista (Version: 1.0.0)
ffdshow [rev 2527] [2008-12-19] (Version: 1.0)
Foxit Toolbar (Version: 4.1.0.5)
Freeciv 2.1.7 (GTK+ client)
Freeciv 2.2.2 (GTK+ client)
Google Chrome (Version: 16.0.912.77)
Google Update Helper (Version: 1.3.21.79)
HDAUDIO Soft Data Fax Modem with SmartCP
HP Active Support Library (Version: 3.1.9.1)
HP Customer Experience Enhancements (Version: 5.7.0.2664)
HP Doc Viewer (Version: 1.03.0001)
HP DVD Play 3.7 (Version: 3.7.0.5723)
HP Help and Support (Version: 2.1.1.0)
HP Quick Launch Buttons 6.40 H2 (Version: 6.40 H2)
HP Total Care Advisor (Version: 2.4.4941.2798)
HP Update (Version: 5.003.001.001)
HP User Guides 0118 (Version: 1.00.0000)
HP Wireless Assistant (Version: 3.00 K2)
HPAsset component for HP Active Support Library (Version: 3.0.0.6)
HPNetworkAssistant (Version: 1.1.70)
HPTCSSetup (Version: 1.1.1963.2799)
iCloud (Version: 1.0.2.17)
Intel® Graphics Media Accelerator Driver
iTunes (Version: 10.5.2.11)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 7 (Version: 1.6.0.70)
JChem .NET API 5.7.0.712 (Version: 5.7.0.0)
Juniper Networks Setup Client (Version: 2.0.0.3217)
Juniper Networks UAC Host Checker (Version: 3.0.0.13209)
Juno Preloader (Version: 1.0.0)
Kodak AIO Printer (Version: 7.3.4.0)
KODAK AiO Software (Version: 7.3.8.20)
ksDIP (Version: 3.20.0000.0001)
LabelPrint (Version: 2.5.0926)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Live Search Toolbar (Version: 3.0.541.0)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (Version: 12.0.6425.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6425.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Standard Edition 2003 (Version: 11.0.8173.0)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Silverlight (Version: 4.0.60831.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 9.7.0621)
MobileMe Control Panel (Version: 3.1.8.0)
Mozilla Firefox (3.0.11) (Version: 3.0.11 (en-US))
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
muvee Reveal (Version: 7.0.35.6951)
My HP Games (Version: 1.0.0.62)
NetWaiting (Version: 2.5.52)
ocr (Version: 6.2.3.50)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
Power2Go (Version: 6.0.2202)
PowerDirector (Version: 7.0.2201)
PreReq (Version: 6.2.3.0)
Progress Bar
QuickTime (Version: 7.71.80.42)
Revo Uninstaller 1.93 (Version: 1.93)
Revo Uninstaller Pro 2.5.5 (Version: 2.5.5)
Safari (Version: 5.34.52.7)
SimUText (Version: 1.5.1)
SweetIM for Messenger 3.1 (Version: 3.1.0004)
Symantec Endpoint Protection (Version: 11.0.4202.75)
Synaptics Pointing Device Driver (Version: 11.1.3.0)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596651) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596789) 32-Bit Edition
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office Excel 2007 (KB2596596) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)

========================= Memory info: ===================================

Percentage of memory in use: 57%
Total physical RAM: 1978.45 MB
Available physical RAM: 837.59 MB
Total Pagefile: 4202.16 MB
Available Pagefile: 2764.5 MB
Total Virtual: 2047.88 MB
Available Virtual: 1951.67 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:138.7 GB) (Free:69.69 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:10.34 GB) (Free:1.47 GB) NTFS

========================= Users: ========================================

User accounts for \\J_BANTA-PC

Administrator Guest j_banta


**** End of log ****

alwarebytes Anti-Malware 1.60.1.1000
www.malwarebytes.org

Database version: v2012.02.02.08

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
j_banta :: J_BANTA-PC [administrator]

2/2/2012 7:03:31 PM
mbam-log-2012-02-02 (19-03-31).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 261271
Time elapsed: 1 hour(s), 21 minute(s), 34 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 7
HKLM\SYSTEM\CurrentControlSet\Services\5689 (Trojan.Agent) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4e7f49ed-8c94-4aaa-a407-3010d099b11a} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKCR\Interface\{4e7f49ed-8c94-4aaa-a407-3010d099b11a} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{99b340f7-76e0-44ab-9948-b95a1b475d39} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d09094b3-b426-4f16-a6d9-e211fe222127} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKCU\Software\AppDataLow\gvtl (Adware.GameVance) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Smart-Shopper (Adware.SmartShopper) -> Quarantined and deleted successfully.

Registry Values Detected: 2
HKLM\SOFTWARE\Mozilla\Firefox\Extensions|64ffxtbr@TelevisionFanatic.com (Adware.MyWebSearch) -> Data: C:\Program Files\TelevisionFanatic\bar\1.bin -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Mozilla\Firefox\Extensions|paffxtbr@FilmFanatic.com (Adware.MyWebSearch) -> Data: C:\Program Files\FilmFanatic\bar\1.bin -> Quarantined and deleted successfully.

Registry Data Items Detected: 1
HKLM\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\safemode\command| (Hijack.StartMenuInternet) -> Bad: ("C:\Users\j_banta\AppData\Local\lha.exe" -a "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode) Good: (firefox.exe -safe-mode) -> Quarantined and repaired successfully.

Folders Detected: 0
(No malicious items detected)

Files Detected: 16
C:\Windows\temp\5689.sys (Trojan.Agent) -> Quarantined and deleted successfully.
C:\ProgramData\Np74ff03.exe (Trojan.Email) -> Quarantined and deleted successfully.
C:\ProgramData\gM28300OcEmC28300\gM28300OcEmC28300.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\Windows\System32\i42083jl0.com_ (Trojan.Email) -> Quarantined and deleted successfully.
C:\Users\j_banta\AppData\Local\temp\Low\0.1621741950199197.exe (Rootkit.0Access) -> Quarantined and deleted successfully.
C:\Users\j_banta\AppData\Local\temp\Low\msimg32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Users\j_banta\AppData\Local\temp\Low\bgi.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\Windows\temp\28C1.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Windows\temp\aFC33.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Windows\temp\_ex-08.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\Windows\temp\_ex-68.exe (Spyware.Passwords.XGen) -> Quarantined and deleted successfully.
C:\Windows\temp\_ex-89.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\Windows\temp\hki177311.exe (Trojan.Email) -> Quarantined and deleted successfully.
C:\Windows\temp\ouqosk\setup.exe (Trojan.Email) -> Quarantined and deleted successfully.
C:\Windows\temp\vuuswk\setup.exe (Trojan.Downloader.BH) -> Quarantined and deleted successfully.
C:\Users\j_banta\Downloads\setup.exe (Rogue.Installer) -> Quarantined and deleted successfully.

(end)

aswMBR version 0.9.9.1532 Copyright© 2011 AVAST Software
Run date: 2012-02-02 20:52:20
-----------------------------
20:52:20.742 OS Version: Windows 6.0.6002 Service Pack 2
20:52:20.742 Number of processors: 1 586 0xF0D
20:52:20.743 ComputerName: J_BANTA-PC UserName: j_banta
20:52:22.348 Initialize success
20:52:53.095 AVAST engine defs: 12020202
20:58:29.802 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
20:58:29.804 Disk 0 Vendor: WDC_WD1600BEVT-60ZCT1 13.01A13 Size: 152627MB BusType: 3
20:58:29.828 Disk 0 MBR read successfully
20:58:29.831 Disk 0 MBR scan
20:58:29.867 Disk 0 unknown MBR code
20:58:29.871 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 142032 MB offset 63
20:58:29.918 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 10591 MB offset 290883584
20:58:29.927 Disk 0 scanning sectors +312573952
20:58:29.984 Disk 0 scanning C:\Windows\system32\drivers
20:58:35.825 File: C:\Windows\system32\drivers\i8042prt.sys **INFECTED** Win32:Aluroot [Rtk]
20:58:51.022 Disk 0 trace - called modules:
20:58:51.042 ntkrnlpa.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0x870b1f10]<<
20:58:51.052 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x866a6698]
20:58:51.382 3 CLASSPNP.SYS[82e098b3] -> nt!IofCallDriver -> [0x870dea70]
20:58:51.392 \Driver\00000755[0x870deba8] -> IRP_MJ_CREATE -> 0x870b1f10
20:58:53.098 AVAST engine scan C:\Windows
20:58:56.980 AVAST engine scan C:\Windows\system32
21:03:35.954 AVAST engine scan C:\Windows\system32\drivers
21:03:42.894 File: C:\Windows\system32\drivers\i8042prt.sys **INFECTED** Win32:Aluroot [Rtk]
21:03:55.135 AVAST engine scan C:\Users\j_banta
21:06:51.021 File: C:\Users\j_banta\AppData\Local\temp\Low\220.7423.exe **INFECTED** Win32:MalOb-GR [Cryp]
21:06:53.672 File: C:\Users\j_banta\AppData\Local\temp\Low\nsz353.tmp\j1iipb7.82z **INFECTED** Win32:MalOb-HO [Cryp]
21:06:53.736 File: C:\Users\j_banta\AppData\Local\temp\Low\nsz353.tmp\rlls3dr.wni **INFECTED** Win32:MalOb-HO [Cryp]
21:06:53.821 File: C:\Users\j_banta\AppData\Local\temp\Low\nsz353.tmp\xx6wnoe.4n3 **INFECTED** Win32:MalOb-HO [Cryp]
21:06:53.899 File: C:\Users\j_banta\AppData\Local\temp\Low\nsz353.tmp\xzgb37c.ess **INFECTED** Win32:MalOb-HO [Cryp]
21:08:29.412 File: C:\Users\j_banta\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\bf5b34c-3595aef6 **INFECTED** Win32:MalOb-IG [Cryp]
21:08:42.528 File: C:\Users\j_banta\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\3703f461-32309aa5 **INFECTED** Win32:MalOb-GR [Cryp]
21:08:58.673 File: C:\Users\j_banta\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\684d1fba-3eeeef1a **INFECTED** Win32:MalOb-GR [Cryp]
21:14:57.758 AVAST engine scan C:\ProgramData
21:20:21.611 Scan finished successfully
21:48:59.295 Disk 0 MBR has been saved successfully to "C:\Users\j_banta\Desktop\Clean Computer Files\MBR.dat"
21:48:59.326 The log file has been saved successfully to "C:\Users\j_banta\Desktop\Clean Computer Files\aswMBR.txt"

That's it... Thank you again for your help!

Best,
Joe

#4 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,725 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:10:21 PM

Posted 02 February 2012 - 10:02 PM

Download TDSSKiller and save it to your desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#5 joboo78

joboo78
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:12:21 AM

Posted 02 February 2012 - 10:09 PM

Wow, again thank you for the very quick response.

Here are the results:

22:04:43.0690 5692 TDSS rootkit removing tool 2.7.9.0 Feb 1 2012 09:28:49
22:04:43.0930 5692 ============================================================
22:04:43.0930 5692 Current date / time: 2012/02/02 22:04:43.0930
22:04:43.0930 5692 SystemInfo:
22:04:43.0930 5692
22:04:43.0930 5692 OS Version: 6.0.6002 ServicePack: 2.0
22:04:43.0930 5692 Product type: Workstation
22:04:43.0930 5692 ComputerName: J_BANTA-PC
22:04:43.0930 5692 UserName: j_banta
22:04:43.0930 5692 Windows directory: C:\Windows
22:04:43.0930 5692 System windows directory: C:\Windows
22:04:43.0930 5692 Processor architecture: Intel x86
22:04:43.0930 5692 Number of processors: 1
22:04:43.0930 5692 Page size: 0x1000
22:04:43.0930 5692 Boot type: Normal boot
22:04:43.0930 5692 ============================================================
22:04:45.0781 5692 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
22:04:45.0940 5692 \Device\Harddisk0\DR0:
22:04:45.0941 5692 MBR used
22:04:45.0941 5692 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x115687C1
22:04:45.0941 5692 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x11568800, BlocksNum 0x14AF800
22:04:46.0003 5692 Initialize success
22:04:46.0003 5692 ============================================================
22:04:48.0017 6060 ============================================================
22:04:48.0017 6060 Scan started
22:04:48.0017 6060 Mode: Manual;
22:04:48.0017 6060 ============================================================
22:04:50.0721 6060 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
22:04:50.0742 6060 ACPI - ok
22:04:50.0848 6060 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
22:04:50.0870 6060 adp94xx - ok
22:04:50.0892 6060 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
22:04:50.0907 6060 adpahci - ok
22:04:50.0947 6060 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
22:04:50.0956 6060 adpu160m - ok
22:04:50.0973 6060 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
22:04:50.0984 6060 adpu320 - ok
22:04:51.0063 6060 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
22:04:51.0084 6060 AFD - ok
22:04:51.0123 6060 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
22:04:51.0133 6060 agp440 - ok
22:04:51.0159 6060 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
22:04:51.0169 6060 aic78xx - ok
22:04:51.0189 6060 aliide (3d76fda1a10acc3dc84728f55c29b6d4) C:\Windows\system32\drivers\aliide.sys
22:04:51.0198 6060 aliide - ok
22:04:51.0220 6060 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
22:04:51.0230 6060 amdagp - ok
22:04:51.0241 6060 amdide (5b92e7839f5a1fbc1b39de67758ad6f8) C:\Windows\system32\drivers\amdide.sys
22:04:51.0251 6060 amdide - ok
22:04:51.0273 6060 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
22:04:51.0283 6060 AmdK7 - ok
22:04:51.0303 6060 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
22:04:51.0313 6060 AmdK8 - ok
22:04:51.0381 6060 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
22:04:51.0390 6060 arc - ok
22:04:51.0522 6060 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
22:04:51.0531 6060 arcsas - ok
22:04:51.0559 6060 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
22:04:51.0560 6060 AsyncMac - ok
22:04:51.0590 6060 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
22:04:51.0591 6060 atapi - ok
22:04:51.0710 6060 athr (c8bb2e935a5d195692140e795ea9ac14) C:\Windows\system32\DRIVERS\athr.sys
22:04:51.0828 6060 athr - ok
22:04:51.0945 6060 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
22:04:51.0951 6060 Beep - ok
22:04:51.0996 6060 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
22:04:52.0006 6060 blbdrive - ok
22:04:52.0081 6060 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
22:04:52.0090 6060 bowser - ok
22:04:52.0123 6060 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
22:04:52.0132 6060 BrFiltLo - ok
22:04:52.0151 6060 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
22:04:52.0157 6060 BrFiltUp - ok
22:04:52.0202 6060 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
22:04:52.0212 6060 Brserid - ok
22:04:52.0247 6060 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
22:04:52.0256 6060 BrSerWdm - ok
22:04:52.0274 6060 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
22:04:52.0281 6060 BrUsbMdm - ok
22:04:52.0298 6060 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
22:04:52.0305 6060 BrUsbSer - ok
22:04:52.0344 6060 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
22:04:52.0352 6060 BTHMODEM - ok
22:04:52.0451 6060 catchme - ok
22:04:52.0540 6060 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
22:04:52.0550 6060 cdfs - ok
22:04:52.0611 6060 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
22:04:52.0621 6060 cdrom - ok
22:04:52.0653 6060 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
22:04:52.0661 6060 circlass - ok
22:04:52.0712 6060 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
22:04:52.0734 6060 CLFS - ok
22:04:52.0785 6060 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
22:04:52.0794 6060 CmBatt - ok
22:04:52.0807 6060 cmdide (d36372a6ea6805efbe8884d10772313f) C:\Windows\system32\drivers\cmdide.sys
22:04:52.0814 6060 cmdide - ok
22:04:52.0864 6060 CnxtHdAudService (1adf6f4852e7d7e2e8ac481bdb970586) C:\Windows\system32\drivers\CHDRT32.sys
22:04:52.0886 6060 CnxtHdAudService - ok
22:04:52.0929 6060 COH_Mon (86a22dff16e8ca67601044efe6825537) C:\Windows\system32\Drivers\COH_Mon.sys
22:04:52.0938 6060 COH_Mon - ok
22:04:52.0954 6060 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
22:04:52.0962 6060 Compbatt - ok
22:04:52.0999 6060 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
22:04:53.0007 6060 crcdisk - ok
22:04:53.0031 6060 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
22:04:53.0040 6060 Crusoe - ok
22:04:53.0120 6060 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
22:04:53.0130 6060 DfsC - ok
22:04:53.0229 6060 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
22:04:53.0240 6060 disk - ok
22:04:53.0319 6060 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
22:04:53.0326 6060 drmkaud - ok
22:04:53.0404 6060 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
22:04:53.0433 6060 DXGKrnl - ok
22:04:53.0478 6060 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
22:04:53.0488 6060 E1G60 - ok
22:04:53.0556 6060 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
22:04:53.0568 6060 Ecache - ok
22:04:53.0628 6060 eeCtrl (5461f01b7def17dc90d90b029f874c3b) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
22:04:53.0649 6060 eeCtrl - ok
22:04:53.0706 6060 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
22:04:53.0727 6060 elxstor - ok
22:04:53.0883 6060 EraserUtilRebootDrv (17fcc372d03ba39f3aee85198c0ec594) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
22:04:53.0908 6060 EraserUtilRebootDrv - ok
22:04:53.0982 6060 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
22:04:53.0989 6060 ErrDev - ok
22:04:54.0081 6060 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
22:04:54.0093 6060 exfat - ok
22:04:54.0220 6060 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
22:04:54.0231 6060 fastfat - ok
22:04:54.0291 6060 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
22:04:54.0299 6060 fdc - ok
22:04:54.0332 6060 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
22:04:54.0342 6060 FileInfo - ok
22:04:54.0365 6060 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
22:04:54.0373 6060 Filetrace - ok
22:04:54.0433 6060 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
22:04:54.0470 6060 flpydisk - ok
22:04:54.0538 6060 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
22:04:54.0550 6060 FltMgr - ok
22:04:54.0579 6060 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
22:04:54.0587 6060 Fs_Rec - ok
22:04:54.0620 6060 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
22:04:54.0656 6060 gagp30kx - ok
22:04:54.0722 6060 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:04:54.0767 6060 GEARAspiWDM - ok
22:04:54.0900 6060 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
22:04:54.0922 6060 HdAudAddService - ok
22:04:54.0972 6060 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
22:04:55.0036 6060 HDAudBus - ok
22:04:55.0064 6060 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
22:04:55.0072 6060 HidBth - ok
22:04:55.0102 6060 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
22:04:55.0110 6060 HidIr - ok
22:04:55.0173 6060 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
22:04:55.0180 6060 HidUsb - ok
22:04:55.0233 6060 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
22:04:55.0243 6060 HpCISSs - ok
22:04:55.0272 6060 HpqKbFiltr (35956140e686d53bf676cf0c778880fc) C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
22:04:55.0281 6060 HpqKbFiltr - ok
22:04:55.0353 6060 HSF_DPV (cc267848cb3508e72762be65734e764d) C:\Windows\system32\DRIVERS\HSX_DPV.sys
22:04:55.0430 6060 HSF_DPV - ok
22:04:55.0466 6060 HSXHWAZL (a2882945cc4b6e3e4e9e825590438888) C:\Windows\system32\DRIVERS\HSXHWAZL.sys
22:04:55.0486 6060 HSXHWAZL - ok
22:04:55.0524 6060 HTTP (0eeeca26c8d4bde2a4664db058a81937) C:\Windows\system32\drivers\HTTP.sys
22:04:55.0551 6060 HTTP - ok
22:04:55.0576 6060 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
22:04:55.0585 6060 i2omp - ok
22:04:55.0624 6060 i8042prt (f6c4789cab33e3c19f53466ebcecb99a) C:\Windows\system32\DRIVERS\i8042prt.sys
22:04:55.0654 6060 i8042prt - ok
22:04:55.0702 6060 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
22:04:55.0724 6060 iaStorV - ok
22:04:55.0996 6060 igfx (8266ae06df974e5ba047b3e9e9e70b3f) C:\Windows\system32\DRIVERS\igdkmd32.sys
22:04:56.0308 6060 igfx - ok
22:04:56.0380 6060 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
22:04:56.0390 6060 iirsp - ok
22:04:56.0481 6060 IntcHdmiAddService (c7e7e43cbd34d3b0a0156b51b917dfcc) C:\Windows\system32\drivers\IntcHdmi.sys
22:04:56.0492 6060 IntcHdmiAddService - ok
22:04:56.0596 6060 intelide (dd512a049bd7b4bce8a83554c5eff2c1) C:\Windows\system32\drivers\intelide.sys
22:04:56.0605 6060 intelide - ok
22:04:56.0628 6060 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
22:04:56.0669 6060 intelppm - ok
22:04:56.0782 6060 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:04:56.0792 6060 IpFilterDriver - ok
22:04:56.0803 6060 IpInIp - ok
22:04:56.0853 6060 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
22:04:56.0863 6060 IPMIDRV - ok
22:04:56.0892 6060 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
22:04:56.0903 6060 IPNAT - ok
22:04:56.0926 6060 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
22:04:56.0934 6060 IRENUM - ok
22:04:56.0960 6060 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
22:04:56.0970 6060 isapnp - ok
22:04:57.0007 6060 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
22:04:57.0020 6060 iScsiPrt - ok
22:04:57.0043 6060 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
22:04:57.0052 6060 iteatapi - ok
22:04:57.0063 6060 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
22:04:57.0071 6060 iteraid - ok
22:04:57.0091 6060 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
22:04:57.0100 6060 kbdclass - ok
22:04:57.0139 6060 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\DRIVERS\kbdhid.sys
22:04:57.0146 6060 kbdhid - ok
22:04:57.0203 6060 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
22:04:57.0220 6060 KSecDD - ok
22:04:57.0260 6060 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
22:04:57.0268 6060 lltdio - ok
22:04:57.0297 6060 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
22:04:57.0308 6060 LSI_FC - ok
22:04:57.0321 6060 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
22:04:57.0331 6060 LSI_SAS - ok
22:04:57.0345 6060 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
22:04:57.0355 6060 LSI_SCSI - ok
22:04:57.0370 6060 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
22:04:57.0379 6060 luafv - ok
22:04:57.0435 6060 MBAMSwissArmy (0db7527db188c7d967a37bb51bbf3963) C:\Windows\system32\drivers\mbamswissarmy.sys
22:04:57.0443 6060 MBAMSwissArmy - ok
22:04:57.0472 6060 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys
22:04:57.0480 6060 mdmxsdk - ok
22:04:57.0501 6060 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
22:04:57.0511 6060 megasas - ok
22:04:57.0533 6060 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
22:04:57.0550 6060 MegaSR - ok
22:04:57.0570 6060 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
22:04:57.0579 6060 Modem - ok
22:04:57.0623 6060 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
22:04:57.0637 6060 monitor - ok
22:04:57.0654 6060 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
22:04:57.0664 6060 mouclass - ok
22:04:57.0704 6060 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
22:04:57.0712 6060 mouhid - ok
22:04:57.0738 6060 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
22:04:57.0747 6060 MountMgr - ok
22:04:57.0760 6060 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
22:04:57.0771 6060 mpio - ok
22:04:57.0819 6060 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
22:04:57.0828 6060 mpsdrv - ok
22:04:57.0870 6060 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
22:04:57.0879 6060 Mraid35x - ok
22:04:57.0956 6060 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
22:04:57.0965 6060 MRxDAV - ok
22:04:58.0008 6060 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:04:58.0019 6060 mrxsmb - ok
22:04:58.0063 6060 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:04:58.0076 6060 mrxsmb10 - ok
22:04:58.0098 6060 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:04:58.0109 6060 mrxsmb20 - ok
22:04:58.0158 6060 msahci (5457dcfa7c0da43522f4d9d4049c1472) C:\Windows\system32\drivers\msahci.sys
22:04:58.0166 6060 msahci - ok
22:04:58.0191 6060 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
22:04:58.0202 6060 msdsm - ok
22:04:58.0237 6060 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
22:04:58.0245 6060 Msfs - ok
22:04:58.0279 6060 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
22:04:58.0287 6060 msisadrv - ok
22:04:58.0342 6060 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
22:04:58.0349 6060 MSKSSRV - ok
22:04:58.0373 6060 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
22:04:58.0380 6060 MSPCLOCK - ok
22:04:58.0401 6060 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
22:04:58.0408 6060 MSPQM - ok
22:04:58.0476 6060 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
22:04:58.0487 6060 MsRPC - ok
22:04:58.0506 6060 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
22:04:58.0515 6060 mssmbios - ok
22:04:58.0541 6060 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
22:04:58.0547 6060 MSTEE - ok
22:04:58.0572 6060 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
22:04:58.0581 6060 Mup - ok
22:04:58.0662 6060 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
22:04:58.0673 6060 NativeWifiP - ok
22:04:58.0803 6060 NAVENG (920d9701bba90dbb7ccfd3536ea4d6f9) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20110714.022\NAVENG.SYS
22:04:58.0805 6060 NAVENG - ok
22:04:58.0855 6060 NAVEX15 (31b1a9b53c3319b97f7874347cd992d2) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20110714.022\NAVEX15.SYS
22:04:58.0953 6060 NAVEX15 - ok
22:04:59.0198 6060 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
22:04:59.0241 6060 NDIS - ok
22:04:59.0356 6060 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
22:04:59.0366 6060 NdisTapi - ok
22:04:59.0392 6060 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
22:04:59.0399 6060 Ndisuio - ok
22:04:59.0468 6060 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
22:04:59.0481 6060 NdisWan - ok
22:04:59.0561 6060 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
22:04:59.0561 6060 NDProxy - ok
22:04:59.0670 6060 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
22:04:59.0686 6060 NetBIOS - ok
22:04:59.0764 6060 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
22:04:59.0779 6060 netbt - ok
22:04:59.0966 6060 NETw3v32 (35d5458d9a1b26b2005abffbf4c1c5e7) C:\Windows\system32\DRIVERS\NETw3v32.sys
22:05:00.0044 6060 NETw3v32 - ok
22:05:00.0122 6060 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
22:05:00.0122 6060 nfrd960 - ok
22:05:00.0169 6060 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
22:05:00.0185 6060 Npfs - ok
22:05:00.0216 6060 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
22:05:00.0232 6060 nsiproxy - ok
22:05:00.0333 6060 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
22:05:00.0463 6060 Ntfs - ok
22:05:00.0513 6060 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
22:05:00.0513 6060 ntrigdigi - ok
22:05:00.0553 6060 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
22:05:00.0563 6060 Null - ok
22:05:00.0633 6060 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
22:05:00.0643 6060 nvraid - ok
22:05:00.0663 6060 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
22:05:00.0673 6060 nvstor - ok
22:05:00.0723 6060 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
22:05:00.0733 6060 nv_agp - ok
22:05:00.0743 6060 NwlnkFlt - ok
22:05:00.0763 6060 NwlnkFwd - ok
22:05:00.0803 6060 ohci1394 (790e27c3db53410b40ff9ef2fd10a1d9) C:\Windows\system32\DRIVERS\ohci1394.sys
22:05:00.0813 6060 ohci1394 - ok
22:05:00.0863 6060 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
22:05:00.0873 6060 Parport - ok
22:05:00.0923 6060 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
22:05:00.0933 6060 partmgr - ok
22:05:00.0983 6060 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
22:05:00.0983 6060 Parvdm - ok
22:05:01.0053 6060 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
22:05:01.0073 6060 pci - ok
22:05:01.0083 6060 pciide (1d8b3d8df8eb7fcf2f0ac02f9f947802) C:\Windows\system32\drivers\pciide.sys
22:05:01.0093 6060 pciide - ok
22:05:01.0123 6060 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
22:05:01.0143 6060 pcmcia - ok
22:05:01.0203 6060 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
22:05:01.0263 6060 PEAUTH - ok
22:05:01.0333 6060 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
22:05:01.0343 6060 PptpMiniport - ok
22:05:01.0373 6060 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
22:05:01.0383 6060 Processor - ok
22:05:01.0463 6060 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
22:05:01.0473 6060 PSched - ok
22:05:01.0523 6060 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
22:05:01.0593 6060 ql2300 - ok
22:05:01.0613 6060 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
22:05:01.0633 6060 ql40xx - ok
22:05:01.0643 6060 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
22:05:01.0653 6060 QWAVEdrv - ok
22:05:01.0683 6060 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
22:05:01.0683 6060 RasAcd - ok
22:05:01.0723 6060 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:05:01.0733 6060 Rasl2tp - ok
22:05:01.0823 6060 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
22:05:01.0899 6060 RasPppoe - ok
22:05:01.0949 6060 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
22:05:01.0959 6060 RasSstp - ok
22:05:02.0041 6060 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
22:05:02.0063 6060 rdbss - ok
22:05:02.0097 6060 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:05:02.0104 6060 RDPCDD - ok
22:05:02.0144 6060 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
22:05:02.0158 6060 rdpdr - ok
22:05:02.0170 6060 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
22:05:02.0178 6060 RDPENCDD - ok
22:05:02.0308 6060 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
22:05:02.0320 6060 RDPWD - ok
22:05:02.0391 6060 Revoflt (b9bb8e2093c1615ad6ea55ad96214354) C:\Windows\system32\DRIVERS\revoflt.sys
22:05:02.0400 6060 Revoflt - ok
22:05:02.0445 6060 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
22:05:02.0454 6060 rspndr - ok
22:05:02.0509 6060 RTL8169 (125c504a34d0a2e152517e342e7e432c) C:\Windows\system32\DRIVERS\Rtlh86.sys
22:05:02.0519 6060 RTL8169 - ok
22:05:02.0541 6060 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
22:05:02.0552 6060 sbp2port - ok
22:05:02.0616 6060 sdbus (126ea89bcc413ee45e3004fb0764888f) C:\Windows\system32\DRIVERS\sdbus.sys
22:05:02.0627 6060 sdbus - ok
22:05:02.0662 6060 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
22:05:02.0670 6060 secdrv - ok
22:05:02.0700 6060 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
22:05:02.0709 6060 Serenum - ok
22:05:02.0737 6060 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
22:05:02.0746 6060 Serial - ok
22:05:02.0769 6060 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
22:05:02.0813 6060 sermouse - ok
22:05:02.0856 6060 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
22:05:02.0865 6060 sffdisk - ok
22:05:02.0897 6060 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
22:05:02.0904 6060 sffp_mmc - ok
22:05:02.0951 6060 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
22:05:02.0958 6060 sffp_sd - ok
22:05:02.0998 6060 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
22:05:03.0006 6060 sfloppy - ok
22:05:03.0075 6060 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
22:05:03.0085 6060 sisagp - ok
22:05:03.0109 6060 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
22:05:03.0118 6060 SiSRaid2 - ok
22:05:03.0167 6060 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
22:05:03.0177 6060 SiSRaid4 - ok
22:05:03.0238 6060 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
22:05:03.0248 6060 Smb - ok
22:05:03.0344 6060 SPBBCDrv (d7bb213566e16bca372e2cb517eda907) C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
22:05:03.0400 6060 SPBBCDrv - ok
22:05:03.0563 6060 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
22:05:03.0563 6060 spldr - ok
22:05:03.0610 6060 SRTSP (3cb2f35789632f0bae8a1b9edb08e965) C:\Windows\system32\Drivers\SRTSP.SYS
22:05:03.0626 6060 SRTSP - ok
22:05:03.0672 6060 SRTSPL (d69f1be5fd6da685a4c0e36d58a29e85) C:\Windows\system32\Drivers\SRTSPL.SYS
22:05:03.0688 6060 SRTSPL - ok
22:05:03.0719 6060 SRTSPX (1af60c53c43e2e672bbda3ba9a947d48) C:\Windows\system32\Drivers\SRTSPX.SYS
22:05:03.0735 6060 SRTSPX - ok
22:05:03.0782 6060 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
22:05:03.0813 6060 srv - ok
22:05:03.0860 6060 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
22:05:03.0860 6060 srv2 - ok
22:05:03.0922 6060 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
22:05:03.0938 6060 srvnet - ok
22:05:04.0000 6060 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
22:05:04.0016 6060 swenum - ok
22:05:04.0062 6060 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
22:05:04.0062 6060 Symc8xx - ok
22:05:04.0109 6060 SymEvent (e03ee3ef1037099554d17bed99545a5e) C:\Windows\system32\Drivers\SYMEVENT.SYS
22:05:04.0125 6060 SymEvent - ok
22:05:04.0172 6060 SYMREDRV (be3c117150c055e50a4caf23e548c856) C:\Windows\System32\Drivers\SYMREDRV.SYS
22:05:04.0250 6060 SYMREDRV - ok
22:05:04.0281 6060 SYMTDI (7b0af4e22b32f8c5bfba5a5d53522160) C:\Windows\System32\Drivers\SYMTDI.SYS
22:05:04.0296 6060 SYMTDI - ok
22:05:04.0312 6060 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
22:05:04.0328 6060 Sym_hi - ok
22:05:04.0343 6060 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
22:05:04.0343 6060 Sym_u3 - ok
22:05:04.0374 6060 SynTP (00b19f27858f56181edb58b71a7c67a0) C:\Windows\system32\DRIVERS\SynTP.sys
22:05:04.0390 6060 SynTP - ok
22:05:04.0546 6060 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
22:05:04.0562 6060 Tcpip - ok
22:05:04.0608 6060 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
22:05:04.0624 6060 Tcpip6 - ok
22:05:04.0655 6060 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
22:05:04.0655 6060 tcpipreg - ok
22:05:04.0718 6060 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
22:05:04.0733 6060 TDPIPE - ok
22:05:04.0749 6060 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
22:05:04.0764 6060 TDTCP - ok
22:05:04.0811 6060 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
22:05:04.0827 6060 tdx - ok
22:05:04.0889 6060 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
22:05:04.0905 6060 TermDD - ok
22:05:04.0936 6060 TfFsMon - ok
22:05:04.0952 6060 TfNetMon - ok
22:05:04.0967 6060 TFSysMon - ok
22:05:05.0014 6060 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:05:05.0014 6060 tssecsrv - ok
22:05:05.0045 6060 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
22:05:05.0045 6060 tunmp - ok
22:05:05.0108 6060 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
22:05:05.0108 6060 tunnel - ok
22:05:05.0139 6060 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
22:05:05.0154 6060 uagp35 - ok
22:05:05.0196 6060 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
22:05:05.0216 6060 udfs - ok
22:05:05.0276 6060 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
22:05:05.0286 6060 uliagpkx - ok
22:05:05.0346 6060 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
22:05:05.0366 6060 uliahci - ok
22:05:05.0426 6060 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
22:05:05.0436 6060 UlSata - ok
22:05:05.0446 6060 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
22:05:05.0456 6060 ulsata2 - ok
22:05:05.0476 6060 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
22:05:05.0486 6060 umbus - ok
22:05:05.0556 6060 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
22:05:05.0566 6060 USBAAPL - ok
22:05:05.0616 6060 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
22:05:05.0626 6060 usbaudio - ok
22:05:05.0666 6060 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
22:05:05.0676 6060 usbccgp - ok
22:05:05.0696 6060 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
22:05:05.0706 6060 usbcir - ok
22:05:05.0826 6060 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
22:05:05.0866 6060 usbehci - ok
22:05:05.0906 6060 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
22:05:05.0946 6060 usbhub - ok
22:05:06.0066 6060 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
22:05:06.0076 6060 usbohci - ok
22:05:06.0116 6060 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
22:05:06.0126 6060 usbprint - ok
22:05:06.0186 6060 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
22:05:06.0196 6060 usbscan - ok
22:05:06.0246 6060 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:05:06.0256 6060 USBSTOR - ok
22:05:06.0306 6060 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
22:05:06.0306 6060 usbuhci - ok
22:05:06.0366 6060 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
22:05:06.0376 6060 usbvideo - ok
22:05:06.0426 6060 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
22:05:06.0436 6060 vga - ok
22:05:06.0476 6060 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
22:05:06.0476 6060 VgaSave - ok
22:05:06.0506 6060 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
22:05:06.0516 6060 viaagp - ok
22:05:06.0556 6060 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
22:05:06.0566 6060 ViaC7 - ok
22:05:06.0616 6060 viaide (ea1aa6e3abb3c194feba12a46de8cf2c) C:\Windows\system32\drivers\viaide.sys
22:05:06.0616 6060 viaide - ok
22:05:06.0646 6060 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
22:05:06.0656 6060 volmgr - ok
22:05:06.0716 6060 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
22:05:06.0736 6060 volmgrx - ok
22:05:06.0806 6060 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
22:05:06.0816 6060 volsnap - ok
22:05:06.0856 6060 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
22:05:06.0866 6060 vsmraid - ok
22:05:06.0956 6060 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
22:05:06.0966 6060 WacomPen - ok
22:05:07.0006 6060 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:05:07.0016 6060 Wanarp - ok
22:05:07.0026 6060 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:05:07.0026 6060 Wanarpv6 - ok
22:05:07.0066 6060 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
22:05:07.0076 6060 Wd - ok
22:05:07.0146 6060 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
22:05:07.0176 6060 Wdf01000 - ok
22:05:07.0276 6060 winachsf (0acd399f5db3df1b58903cf4949ab5a8) C:\Windows\system32\DRIVERS\HSX_CNXT.sys
22:05:07.0296 6060 winachsf - ok
22:05:07.0446 6060 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
22:05:07.0506 6060 WmiAcpi - ok
22:05:07.0586 6060 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
22:05:07.0596 6060 WpdUsb - ok
22:05:07.0646 6060 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
22:05:07.0656 6060 ws2ifsl - ok
22:05:07.0726 6060 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:05:07.0736 6060 WUDFRd - ok
22:05:07.0776 6060 XAudio (dab33cfa9dd24251aaa389ff36b64d4b) C:\Windows\system32\DRIVERS\xaudio.sys
22:05:07.0786 6060 XAudio - ok
22:05:07.0836 6060 yukonwlh (7d1f3b131d503ef43ee594b5a2b9b427) C:\Windows\system32\DRIVERS\yk60x86.sys
22:05:07.0846 6060 yukonwlh - ok
22:05:07.0886 6060 MBR (0x1B8) (588ae8f0c685c02ba11f30d9cd7e61a0) \Device\Harddisk0\DR0
22:05:07.0906 6060 \Device\Harddisk0\DR0 - ok
22:05:07.0910 6060 Boot (0x1200) (c5ce29a4642e2a179ed25f279ef0a02b) \Device\Harddisk0\DR0\Partition0
22:05:07.0911 6060 \Device\Harddisk0\DR0\Partition0 - ok
22:05:07.0975 6060 Boot (0x1200) (eafe330cafb991a4796f15e174ab24f2) \Device\Harddisk0\DR0\Partition1
22:05:07.0976 6060 \Device\Harddisk0\DR0\Partition1 - ok
22:05:07.0976 6060 ============================================================
22:05:07.0976 6060 Scan finished
22:05:07.0976 6060 ============================================================
22:05:07.0990 5388 Detected object count: 0
22:05:07.0990 5388 Actual detected object count: 0

#6 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,725 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:10:21 PM

Posted 02 February 2012 - 10:20 PM

Yeah, you'll need more advanced help using some tools not allowed in this forum.

Please follow the instructions in ==>This Guide<== starting at Step 6. If you cannot complete a step, skip it and continue.

Once the proper logs are created, then make a NEW TOPIC and post it ==>HERE<== Please include a description of your computer issues, what you have done to resolve them, and a link to this topic.

If you can produce at least some of the logs, then please create the new topic and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the topic and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.

It would be helpful if you post a note here once you have completed the steps in the guide and have started your topic in malware removal. Good luck and be patient.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users