Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected again?


  • Please log in to reply
13 replies to this topic

#1 mutts111

mutts111

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:10:59 PM

Posted 21 February 2012 - 07:47 PM

The last month, my computer is freezing up. It is also very slow to respond. I get "______is not responding". AVG shows a clean log very day.

I am running windows 7 64 bit. Any suggestions would be appreciated.

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:59 PM

Posted 21 February 2012 - 07:55 PM

Hi mutts, lets looks at a couple more please.

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.


Next run MBAM (MalwareBytes):

Please download Malwarebytes Anti-Malware and save it to your desktop.
Download Link 1 <<<== Use this one first.

Download Link 2MBAM may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.
  • Make sure you are connected to the Internet.
  • Double-click on mbam-setup.exe to install the application.
    For instructions with screenshots, please refer to the How to use Malwarebytes' Anti-Malware Guide.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • When installation has finished, make sure you leave both of these checked:
    • Update Malwarebytes' Anti-Malware
    • Launch Malwarebytes' Anti-Malware
  • Then click Finish.
MBAM will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button to close that box and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.
On the Scanner tab:
  • Make sure the "Perform Quick Scan" option is selected.
  • Then click on the Scan button.
  • If asked to select the drives to scan, leave all the drives selected and click on the Start Scan button.
  • The scan will begin and "Scan in progress" will show at the top. It may take some time to complete so please be patient.
  • When the scan is finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box and continue with the removal process.
Back at the main Scanner screen:
  • Click on the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked, and click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.
  • Exit MBAM when done.
Note: If MBAM encounters a file that is difficult to remove, you will be asked to reboot your computer so MBAM can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally (not into safe mode) will prevent MBAM from removing all the malware.

Troubleshoot Malwarebytes' Anti-Malware


>>>>
I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Under scan settings, check Posted Image and check Remove found threats
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


NOTE: In some instances if no malware is found there will be no log produced.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 mutts111

mutts111
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:10:59 PM

Posted 22 February 2012 - 07:15 AM

I ran all the tools. ESET found two items.

MiniToolBox by Farbar Version: 18-01-2012
Ran by Ed (administrator) on 21-02-2012 at 22:04:29
Microsoft Windows 7 Home Premium Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

NVIDIA nForce Networking Controller = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set interface interface="loopback_0" forwarding=disabled advertise=disabled mtu=1492 metric=0 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled
set interface interface="Local Area Connection" forwarding=disabled advertise=disabled mtu=1492 metric=0 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : office
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : home

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : NVIDIA nForce Networking Controller
Physical Address. . . . . . . . . : 00-1C-25-E5-12-D9
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::60e0:2079:6d0d:beb8%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.2(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Tuesday, February 21, 2012 6:13:34 PM
Lease Expires . . . . . . . . . . : Wednesday, February 22, 2012 6:13:34 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 251658604
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-0F-56-2A-69-00-01-6C-16-EA-F4
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:1495:1143:b59a:7031(Preferred)
Link-local IPv6 Address . . . . . : fe80::1495:1143:b59a:7031%11(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.home:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: Wireless_Broadband_Router.home
Address: 192.168.1.1

Name: google.com
Addresses: 74.125.226.137
74.125.226.140
74.125.226.131
74.125.226.139
74.125.226.141
74.125.226.135
74.125.226.134
74.125.226.142
74.125.226.129
74.125.226.133
74.125.226.136
74.125.226.143
74.125.226.130
74.125.226.132
74.125.226.128
74.125.226.138


Pinging google.com [173.194.43.37] with 32 bytes of data:
Reply from 173.194.43.37: bytes=32 time=9ms TTL=252
Reply from 173.194.43.37: bytes=32 time=11ms TTL=252

Ping statistics for 173.194.43.37:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 9ms, Maximum = 11ms, Average = 10ms
Server: Wireless_Broadband_Router.home
Address: 192.168.1.1

Name: yahoo.com
Addresses: 98.139.127.62
98.139.183.24
209.191.122.70


Pinging yahoo.com [98.139.127.62] with 32 bytes of data:
Reply from 98.139.127.62: bytes=32 time=146ms TTL=250
Reply from 98.139.127.62: bytes=32 time=128ms TTL=250

Ping statistics for 98.139.127.62:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 128ms, Maximum = 146ms, Average = 137ms
Server: Wireless_Broadband_Router.home
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=2ms TTL=128
Reply from 127.0.0.1: bytes=32 time=2ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 2ms, Maximum = 2ms, Average = 2ms
===========================================================================
Interface List
10...00 1c 25 e5 12 d9 ......NVIDIA nForce Networking Controller
1...........................Software Loopback Interface 1
11...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
12...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.2 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.2 276
192.168.1.2 255.255.255.255 On-link 192.168.1.2 276
192.168.1.255 255.255.255.255 On-link 192.168.1.2 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.2 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.2 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
11 58 ::/0 On-link
1 306 ::1/128 On-link
11 58 2001::/32 On-link
11 306 2001:0:4137:9e76:1495:1143:b59a:7031/128
On-link
10 276 fe80::/64 On-link
11 306 fe80::/64 On-link
11 306 fe80::1495:1143:b59a:7031/128
On-link
10 276 fe80::60e0:2079:6d0d:beb8/128
On-link
1 306 ff00::/8 On-link
11 306 ff00::/8 On-link
10 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Catalog5 06 C:\Windows\system32\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 07 C:\Windows\System32\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\System32\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (02/21/2012 06:14:58 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/20/2012 09:30:25 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/19/2012 08:56:50 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762"1".
Dependent Assembly Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (02/19/2012 03:37:37 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/18/2012 06:17:03 PM) (Source: Application Hang) (User: )
Description: The program wmplayer.exe version 12.0.7601.17514 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 18d4

Start Time: 01ccee893385f8d0

Termination Time: 193

Application Path: C:\Program Files\Windows Media Player\wmplayer.exe

Report Id: 9db09b21-5a86-11e1-a8cd-001c25e512d9

Error: (02/18/2012 01:26:50 PM) (Source: Application Hang) (User: )
Description: The program wmplayer.exe version 12.0.7601.17514 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 26d8

Start Time: 01ccee6acbd59ce0

Termination Time: 18

Application Path: C:\Program Files\Windows Media Player\wmplayer.exe

Report Id: 132b5c61-5a5e-11e1-a8cd-001c25e512d9

Error: (02/17/2012 08:45:16 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/17/2012 02:00:59 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762"1".
Dependent Assembly Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (02/16/2012 03:28:46 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/16/2012 02:03:49 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762"1".
Dependent Assembly Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762" could not be found.
Please use sxstrace.exe for detailed diagnosis.


System errors:
=============

Microsoft Office Sessions:
=========================
Error: (02/21/2012 06:14:58 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/20/2012 09:30:25 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/19/2012 08:56:50 PM) (Source: SideBySide)(User: )
Description: Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762"C:\Program Files\Acronis\TrueImageHome\BartPE\Files\TrueImage.exe

Error: (02/19/2012 03:37:37 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/18/2012 06:17:03 PM) (Source: Application Hang)(User: )
Description: wmplayer.exe12.0.7601.1751418d401ccee893385f8d0193C:\Program Files\Windows Media Player\wmplayer.exe9db09b21-5a86-11e1-a8cd-001c25e512d9

Error: (02/18/2012 01:26:50 PM) (Source: Application Hang)(User: )
Description: wmplayer.exe12.0.7601.1751426d801ccee6acbd59ce018C:\Program Files\Windows Media Player\wmplayer.exe132b5c61-5a5e-11e1-a8cd-001c25e512d9

Error: (02/17/2012 08:45:16 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/17/2012 02:00:59 AM) (Source: SideBySide)(User: )
Description: Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762"C:\Program Files\Acronis\TrueImageHome\BartPE\Files\TrueImage.exe

Error: (02/16/2012 03:28:46 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/16/2012 02:03:49 AM) (Source: SideBySide)(User: )
Description: Microsoft.VC80.CRT,processorArchitecture="x86",type="win32",version="8.0.50727.762"C:\Program Files\Acronis\TrueImageHome\BartPE\Files\TrueImage.exe


=========================== Installed Programs ============================

.NET Utilities (Version: 128.0.0)
ABBYY FineReader 6.0 Sprint (Version: 6.00.2146.41621)
Acronis True Image Home (Version: 12.0.9505)
ActivePerl 5.8.9 Build 825 (Version: 5.8.825)
Adobe AIR (Version: 3.1.0.4880)
Adobe Flash Player 10 ActiveX (Version: 10.3.181.34)
Adobe Flash Player 10 Plugin (Version: 10.3.183.5)
Adobe Reader 9.4.7 (Version: 9.4.7)
Advertising Center (Version: 0.0.0.1)
Amazon MP3 Downloader 1.0.15 (Version: 1.0.15)
Amazon MP3 Uploader (Version: 1.0.7)
Apple Application Support (Version: 2.1.5)
Apple Software Update (Version: 2.1.3.127)
Audacity 1.2.6
AVG 2012 (Version: 12.0.1913)
AVG 2012 (Version: 12.0.2113)
AVG 2012 (Version: 2012.0.1913)
Big Fish Games: Game Manager (Version: 2.0.0.28)
Bonjour (Version: 2.0.2.0)
Bonjour Print Services (Version: 2.0.2.0)
Browser Address Error Redirector
CCleaner (Version: 3.08)
Chinese Traditional Fonts Support For Adobe Reader 8 (Version: 8.0.0)
Cole2k Media - Codec Pack (Advanced) 7.1.0
Cucusoft MPEG to DVD Author 1.09
Cucusoft MPEG/MOV/RM/DivX/AVI to DVD/VCD/SVCD Creator Pro 7.07
CyberLink PowerDirector (Version: 7.0.2521)
Dell Driver Download Manager (Version: 2.1.0.0)
DirectShow Dump (Version: 1.0.0)
DivX Setup (Version: 2.1.2.2)
DVD Shrink 3.2
DVD Suite (Version: 5.0.1319)
eMachines Recovery Center Installer (Version: 1.01.044)
ERUNT 1.1j
ESET Online Scanner v3
FileZilla Client 3.0.11.1 (Version: 3.0.11.1)
GIMP 2.6.3
GOM Player
Google Chrome (Version: 12.0.742.100)
HiJackThis (Version: 1.0.0)
HijackThis 2.0.2 (Version: 2.0.2)
iCare Data Recovery Professional 4.6.3.3
Indeo® Software
IrfanView (remove only) (Version: 4.30)
Java Auto Updater (Version: 2.0.5.1)
Java™ 6 Update 26 (Version: 6.0.260)
K-Lite Codec Pack 5.1.8 (Full) (Version: 5.1.8)
Karen's Directory Printer (Version: 5.3.0.2)
Lexmark Printable Web (Version: 1.0.0.0)
Lexmark Pro200-S500 Series
LightScribe System Software (Version: 1.18.6.1)
Logitech Harmony Remote Software 7 (Version: 7.5.0.10)
Malwarebytes Anti-Malware version 1.60.1.1000 (Version: 1.60.1.1000)
MediaLooks QuickTime Source 1.6.3.1 (DirectShow Filter) (Version: 1.6.3.1)
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft IntelliPoint 8.2 (Version: 8.20.468.0)
Microsoft Office Access MUI (English) 2010 (Beta) (Version: 14.0.4536.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Beta) (Version: 14.0.4536.1000)
Microsoft Office Excel MUI (English) 2010 (Beta) (Version: 14.0.4536.1000)
Microsoft Office Groove MUI (English) 2010 (Beta) (Version: 14.0.4536.1000)
Microsoft Office InfoPath MUI (English) 2010 (Beta) (Version: 14.0.4536.1000)
Microsoft Office OneNote MUI (English) 2010 (Beta) (Version: 14.0.4536.1000)
Microsoft Office Outlook MUI (English) 2010 (Beta) (Version: 14.0.4536.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Beta) (Version: 14.0.4536.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Professional Plus 2010 (Beta) (Version: 14.0.4536.1000)
Microsoft Office Proof (English) 2010 (Beta) (Version: 14.0.4536.1000)
Microsoft Office Proof (French) 2010 (Beta) (Version: 14.0.4536.1000)
Microsoft Office Proof (Spanish) 2010 (Beta) (Version: 14.0.4536.1000)
Microsoft Office Proofing (English) 2010 (Beta) (Version: 14.0.4536.1000)
Microsoft Office Publisher MUI (English) 2010 (Beta) (Version: 14.0.4536.1000)
Microsoft Office Shared MUI (English) 2010 (Beta) (Version: 14.0.4536.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Beta) (Version: 14.0.4536.1000)
Microsoft Office Word MUI (English) 2010 (Beta) (Version: 14.0.4536.1000)
Microsoft Primary Interoperability Assemblies 2005 (Version: 8.0.50727.42)
Microsoft Silverlight (Version: 4.1.10111.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (Version: 9.0.21022.218)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 9.7.0621)
Mobisynapse (Version: 1.6.4 Beta)
MotoHelper 2.0.51 Driver 5.1.0 (Version: 2.0.51)
MotoHelper MergeModules (Version: 1.2.0)
MOTOROLA MEDIA LINK (Version: 1.5.2091.0)
Motorola Mobile Drivers Installation 5.1.0 (Version: 5.1.0)
Mozilla Firefox 10.0.2 (x86 en-US) (Version: 10.0.2)
Mp3 Tag Tools v1.2
MPEG Video Wizard DVD 5.0.0.109 (07/2010) (Version: 5.0.0.109)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB941833) (Version: 4.20.9849.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Music Manager
Mystery Case Files: Ravenhearst &reg;
Nero 9 Essentials
Nero ControlCenter (Version: 9.0.0.1)
Nero Installer (Version: 4.4.9.0)
Nero Online Upgrade (Version: 1.3.0.0)
Nero StartSmart (Version: 9.4.12.100)
Nero StartSmart OEM (Version: 9.4.10.100)
neroxml (Version: 1.0.0)
NVIDIA Drivers
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
OpenOffice.org 3.2 (Version: 3.2.9502)
PandoraRecovery (Remove Only)
Paragon Drive Copy™ 11 Compact (Version: 90.00.0003)
PhotoFiltre
PhotoPerfect 3.20
Power2Go 5.0
PowerDVD (Version: 7.0.3409.a)
QuickTime (Version: 7.71.80.42)
QuickTime Alternative 2.6.0 (Version: 2.6.0)
Realtek High Definition Audio Driver
Remote Control USB Driver (Version: 2.3.2.317)
Revo Uninstaller 1.92 (Version: 1.92)
Roxio Drag-to-Disc (Version: 9.05)
Roxio Easy CD and DVD Burning (Version: 9.0.554)
Sansa Updater
Secunia PSI
Shuangs WAV to MP3 Converter 3.2
SmartSound Quicktracks Plugin (Version: 3.0.3.0)
Spesoft Free CD Ripper Version 3.00
SpywareBlaster 4.4 (Version: 4.4.0)
TiVo Desktop 2.7
TiVo Desktop 2.7 (Version: 2.7.323.86)
TomTom HOME 2.8.1.2218 (Version: 2.8.1.2218)
TomTom HOME Visual Studio Merge Modules (Version: 1.0.2)
Total Recorder 8.2
Trader's Little Helper 2.4.1 (Version: 2.4.1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
USB Storage Toolbox
VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0)
VLC media player 0.9.8a (Version: 0.9.8a)
Windows 7 Upgrade Advisor (Version: 2.0.5000.0)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinPatrol (Version: 20.5.2011.0)
WinRAR archiver
WinX DVD Author 5.5
WinX DVD Ripper Platinum 6.0.0
WinX Video Converter 4.0
Xvid 1.2.2 final uninstall (Version: 1.2)

========================= Memory info: ===================================

Percentage of memory in use: 40%
Total physical RAM: 1919.55 MB
Available physical RAM: 1144.22 MB
Total Pagefile: 5758.65 MB
Available Pagefile: 4600.81 MB
Total Virtual: 2047.88 MB
Available Virtual: 1927.02 MB

========================= Partitions: =====================================

1 Drive c: (Partition_1) (Fixed) (Total:139.5 GB) (Free:39.62 GB) NTFS
2 Drive d: (Recovery) (Fixed) (Total:9.55 GB) (Free:4.36 GB) NTFS
3 Drive f: (Partition_1) (Fixed) (Total:139.5 GB) (Free:32.31 GB) NTFS
5 Drive h: (Recovery) (Fixed) (Total:9.55 GB) (Free:4.36 GB) NTFS
6 Drive i: (New Volume) (Fixed) (Total:1248.21 GB) (Free:1149.92 GB) NTFS

========================= Users: ========================================

User accounts for \\OFFICE

Administrator ASPNET Ed
Guest


**** End of log ****


Malwarebytes Anti-Malware (PRO) 1.60.1.1000
www.malwarebytes.org

Database version: v2012.02.21.06

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
Ed :: OFFICE [administrator]

Protection: Enabled

2/21/2012 10:16:22 PM
mbam-log-2012-02-21 (22-16-22).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 202485
Time elapsed: 5 minute(s), 49 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

C:\$RECYCLE.BIN\S-1-5-21-1212098578-3481688397-481139802-1000\$RSD9LMM\zgInstaller.exe multiple threats deleted - quarantined
C:\$RECYCLE.BIN\S-1-5-21-1212098578-3481688397-481139802-1000\$RY9FWAO\cnet_iview430_setup_exe.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined

#4 mutts111

mutts111
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:10:59 PM

Posted 22 February 2012 - 08:37 PM

Another thing I noticed, is that media player constantly hangs up.

#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:59 PM

Posted 22 February 2012 - 09:55 PM

I see a lot of errors on that in the log.

Please run SFC.. System File Checker
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 mutts111

mutts111
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:10:59 PM

Posted 22 February 2012 - 10:32 PM

I ran it. Here is the log:

2012-02-22 22:17:00, Info CSI 00000009 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:17:00, Info CSI 0000000a [SR] Beginning Verify and Repair transaction
2012-02-22 22:17:05, Info CSI 0000000c [SR] Verify complete
2012-02-22 22:17:06, Info CSI 0000000d [SR] Verifying 100 (0x00000064) components
2012-02-22 22:17:06, Info CSI 0000000e [SR] Beginning Verify and Repair transaction
2012-02-22 22:17:10, Info CSI 00000010 [SR] Verify complete
2012-02-22 22:17:10, Info CSI 00000011 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:17:10, Info CSI 00000012 [SR] Beginning Verify and Repair transaction
2012-02-22 22:17:15, Info CSI 00000014 [SR] Verify complete
2012-02-22 22:17:15, Info CSI 00000015 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:17:15, Info CSI 00000016 [SR] Beginning Verify and Repair transaction
2012-02-22 22:17:18, Info CSI 00000018 [SR] Verify complete
2012-02-22 22:17:18, Info CSI 00000019 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:17:18, Info CSI 0000001a [SR] Beginning Verify and Repair transaction
2012-02-22 22:17:22, Info CSI 0000001c [SR] Verify complete
2012-02-22 22:17:22, Info CSI 0000001d [SR] Verifying 100 (0x00000064) components
2012-02-22 22:17:22, Info CSI 0000001e [SR] Beginning Verify and Repair transaction
2012-02-22 22:17:27, Info CSI 00000020 [SR] Verify complete
2012-02-22 22:17:28, Info CSI 00000021 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:17:28, Info CSI 00000022 [SR] Beginning Verify and Repair transaction
2012-02-22 22:17:31, Info CSI 00000024 [SR] Verify complete
2012-02-22 22:17:32, Info CSI 00000025 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:17:32, Info CSI 00000026 [SR] Beginning Verify and Repair transaction
2012-02-22 22:17:36, Info CSI 00000028 [SR] Verify complete
2012-02-22 22:17:37, Info CSI 00000029 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:17:37, Info CSI 0000002a [SR] Beginning Verify and Repair transaction
2012-02-22 22:17:41, Info CSI 0000002c [SR] Verify complete
2012-02-22 22:17:41, Info CSI 0000002d [SR] Verifying 100 (0x00000064) components
2012-02-22 22:17:41, Info CSI 0000002e [SR] Beginning Verify and Repair transaction
2012-02-22 22:17:45, Info CSI 00000030 [SR] Verify complete
2012-02-22 22:17:45, Info CSI 00000031 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:17:45, Info CSI 00000032 [SR] Beginning Verify and Repair transaction
2012-02-22 22:17:50, Info CSI 00000034 [SR] Verify complete
2012-02-22 22:17:50, Info CSI 00000035 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:17:50, Info CSI 00000036 [SR] Beginning Verify and Repair transaction
2012-02-22 22:17:57, Info CSI 00000038 [SR] Verify complete
2012-02-22 22:17:58, Info CSI 00000039 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:17:58, Info CSI 0000003a [SR] Beginning Verify and Repair transaction
2012-02-22 22:18:03, Info CSI 0000003f [SR] Verify complete
2012-02-22 22:18:03, Info CSI 00000040 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:18:03, Info CSI 00000041 [SR] Beginning Verify and Repair transaction
2012-02-22 22:18:09, Info CSI 00000044 [SR] Verify complete
2012-02-22 22:18:09, Info CSI 00000045 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:18:09, Info CSI 00000046 [SR] Beginning Verify and Repair transaction
2012-02-22 22:18:14, Info CSI 0000004a [SR] Verify complete
2012-02-22 22:18:15, Info CSI 0000004b [SR] Verifying 100 (0x00000064) components
2012-02-22 22:18:15, Info CSI 0000004c [SR] Beginning Verify and Repair transaction
2012-02-22 22:18:24, Info CSI 00000055 [SR] Verify complete
2012-02-22 22:18:24, Info CSI 00000056 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:18:24, Info CSI 00000057 [SR] Beginning Verify and Repair transaction
2012-02-22 22:18:31, Info CSI 0000005a [SR] Verify complete
2012-02-22 22:18:31, Info CSI 0000005b [SR] Verifying 100 (0x00000064) components
2012-02-22 22:18:31, Info CSI 0000005c [SR] Beginning Verify and Repair transaction
2012-02-22 22:18:38, Info CSI 0000005e [SR] Verify complete
2012-02-22 22:18:38, Info CSI 0000005f [SR] Verifying 100 (0x00000064) components
2012-02-22 22:18:38, Info CSI 00000060 [SR] Beginning Verify and Repair transaction
2012-02-22 22:18:43, Info CSI 00000062 [SR] Verify complete
2012-02-22 22:18:44, Info CSI 00000063 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:18:44, Info CSI 00000064 [SR] Beginning Verify and Repair transaction
2012-02-22 22:18:49, Info CSI 00000066 [SR] Verify complete
2012-02-22 22:18:50, Info CSI 00000067 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:18:50, Info CSI 00000068 [SR] Beginning Verify and Repair transaction
2012-02-22 22:18:56, Info CSI 0000006a [SR] Verify complete
2012-02-22 22:18:56, Info CSI 0000006b [SR] Verifying 100 (0x00000064) components
2012-02-22 22:18:56, Info CSI 0000006c [SR] Beginning Verify and Repair transaction
2012-02-22 22:19:06, Info CSI 00000070 [SR] Verify complete
2012-02-22 22:19:06, Info CSI 00000071 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:19:06, Info CSI 00000072 [SR] Beginning Verify and Repair transaction
2012-02-22 22:19:17, Info CSI 00000074 [SR] Verify complete
2012-02-22 22:19:17, Info CSI 00000075 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:19:17, Info CSI 00000076 [SR] Beginning Verify and Repair transaction
2012-02-22 22:19:28, Info CSI 00000078 [SR] Verify complete
2012-02-22 22:19:29, Info CSI 00000079 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:19:29, Info CSI 0000007a [SR] Beginning Verify and Repair transaction
2012-02-22 22:19:43, Info CSI 0000007c [SR] Verify complete
2012-02-22 22:19:43, Info CSI 0000007d [SR] Verifying 100 (0x00000064) components
2012-02-22 22:19:43, Info CSI 0000007e [SR] Beginning Verify and Repair transaction
2012-02-22 22:19:47, Info CSI 00000080 [SR] Verify complete
2012-02-22 22:19:47, Info CSI 00000081 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:19:47, Info CSI 00000082 [SR] Beginning Verify and Repair transaction
2012-02-22 22:19:51, Info CSI 00000084 [SR] Verify complete
2012-02-22 22:19:51, Info CSI 00000085 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:19:51, Info CSI 00000086 [SR] Beginning Verify and Repair transaction
2012-02-22 22:19:55, Info CSI 00000088 [SR] Verify complete
2012-02-22 22:19:55, Info CSI 00000089 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:19:55, Info CSI 0000008a [SR] Beginning Verify and Repair transaction
2012-02-22 22:20:05, Info CSI 000000a8 [SR] Verify complete
2012-02-22 22:20:05, Info CSI 000000a9 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:20:05, Info CSI 000000aa [SR] Beginning Verify and Repair transaction
2012-02-22 22:20:10, Info CSI 000000ac [SR] Verify complete
2012-02-22 22:20:10, Info CSI 000000ad [SR] Verifying 100 (0x00000064) components
2012-02-22 22:20:10, Info CSI 000000ae [SR] Beginning Verify and Repair transaction
2012-02-22 22:20:15, Info CSI 000000b0 [SR] Verify complete
2012-02-22 22:20:15, Info CSI 000000b1 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:20:15, Info CSI 000000b2 [SR] Beginning Verify and Repair transaction
2012-02-22 22:20:19, Info CSI 000000b4 [SR] Verify complete
2012-02-22 22:20:19, Info CSI 000000b5 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:20:19, Info CSI 000000b6 [SR] Beginning Verify and Repair transaction
2012-02-22 22:20:29, Info CSI 000000b8 [SR] Verify complete
2012-02-22 22:20:30, Info CSI 000000b9 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:20:30, Info CSI 000000ba [SR] Beginning Verify and Repair transaction
2012-02-22 22:20:40, Info CSI 000000bd [SR] Verify complete
2012-02-22 22:20:41, Info CSI 000000be [SR] Verifying 100 (0x00000064) components
2012-02-22 22:20:41, Info CSI 000000bf [SR] Beginning Verify and Repair transaction
2012-02-22 22:20:44, Info CSI 000000c1 [SR] Verify complete
2012-02-22 22:20:44, Info CSI 000000c2 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:20:44, Info CSI 000000c3 [SR] Beginning Verify and Repair transaction
2012-02-22 22:20:48, Info CSI 000000c5 [SR] Verify complete
2012-02-22 22:20:49, Info CSI 000000c6 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:20:49, Info CSI 000000c7 [SR] Beginning Verify and Repair transaction
2012-02-22 22:20:58, Info CSI 000000c9 [SR] Verify complete
2012-02-22 22:20:59, Info CSI 000000ca [SR] Verifying 100 (0x00000064) components
2012-02-22 22:20:59, Info CSI 000000cb [SR] Beginning Verify and Repair transaction
2012-02-22 22:21:05, Info CSI 000000cd [SR] Verify complete
2012-02-22 22:21:05, Info CSI 000000ce [SR] Verifying 100 (0x00000064) components
2012-02-22 22:21:05, Info CSI 000000cf [SR] Beginning Verify and Repair transaction
2012-02-22 22:21:15, Info CSI 000000d1 [SR] Verify complete
2012-02-22 22:21:15, Info CSI 000000d2 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:21:15, Info CSI 000000d3 [SR] Beginning Verify and Repair transaction
2012-02-22 22:21:27, Info CSI 000000e6 [SR] Verify complete
2012-02-22 22:21:27, Info CSI 000000e7 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:21:27, Info CSI 000000e8 [SR] Beginning Verify and Repair transaction
2012-02-22 22:21:35, Info CSI 000000fd [SR] Verify complete
2012-02-22 22:21:35, Info CSI 000000fe [SR] Verifying 100 (0x00000064) components
2012-02-22 22:21:35, Info CSI 000000ff [SR] Beginning Verify and Repair transaction
2012-02-22 22:21:43, Info CSI 00000101 [SR] Verify complete
2012-02-22 22:21:44, Info CSI 00000102 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:21:44, Info CSI 00000103 [SR] Beginning Verify and Repair transaction
2012-02-22 22:22:03, Info CSI 00000105 [SR] Verify complete
2012-02-22 22:22:03, Info CSI 00000106 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:22:03, Info CSI 00000107 [SR] Beginning Verify and Repair transaction
2012-02-22 22:22:19, Info CSI 0000010a [SR] Verify complete
2012-02-22 22:22:20, Info CSI 0000010b [SR] Verifying 100 (0x00000064) components
2012-02-22 22:22:20, Info CSI 0000010c [SR] Beginning Verify and Repair transaction
2012-02-22 22:22:29, Info CSI 0000010e [SR] Verify complete
2012-02-22 22:22:29, Info CSI 0000010f [SR] Verifying 100 (0x00000064) components
2012-02-22 22:22:29, Info CSI 00000110 [SR] Beginning Verify and Repair transaction
2012-02-22 22:22:36, Info CSI 00000112 [SR] Verify complete
2012-02-22 22:22:36, Info CSI 00000113 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:22:36, Info CSI 00000114 [SR] Beginning Verify and Repair transaction
2012-02-22 22:22:42, Info CSI 00000116 [SR] Verify complete
2012-02-22 22:22:42, Info CSI 00000117 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:22:42, Info CSI 00000118 [SR] Beginning Verify and Repair transaction
2012-02-22 22:22:49, Info CSI 0000011b [SR] Verify complete
2012-02-22 22:22:50, Info CSI 0000011c [SR] Verifying 100 (0x00000064) components
2012-02-22 22:22:50, Info CSI 0000011d [SR] Beginning Verify and Repair transaction
2012-02-22 22:23:04, Info CSI 0000011f [SR] Verify complete
2012-02-22 22:23:04, Info CSI 00000120 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:23:04, Info CSI 00000121 [SR] Beginning Verify and Repair transaction
2012-02-22 22:23:16, Info CSI 00000124 [SR] Verify complete
2012-02-22 22:23:16, Info CSI 00000125 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:23:16, Info CSI 00000126 [SR] Beginning Verify and Repair transaction
2012-02-22 22:23:23, Info CSI 00000128 [SR] Verify complete
2012-02-22 22:23:23, Info CSI 00000129 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:23:23, Info CSI 0000012a [SR] Beginning Verify and Repair transaction
2012-02-22 22:23:29, Info CSI 0000012c [SR] Verify complete
2012-02-22 22:23:30, Info CSI 0000012d [SR] Verifying 100 (0x00000064) components
2012-02-22 22:23:30, Info CSI 0000012e [SR] Beginning Verify and Repair transaction
2012-02-22 22:23:41, Info CSI 00000131 [SR] Verify complete
2012-02-22 22:23:41, Info CSI 00000132 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:23:41, Info CSI 00000133 [SR] Beginning Verify and Repair transaction
2012-02-22 22:23:49, Info CSI 00000135 [SR] Verify complete
2012-02-22 22:23:49, Info CSI 00000136 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:23:49, Info CSI 00000137 [SR] Beginning Verify and Repair transaction
2012-02-22 22:23:55, Info CSI 00000139 [SR] Verify complete
2012-02-22 22:23:55, Info CSI 0000013a [SR] Verifying 100 (0x00000064) components
2012-02-22 22:23:55, Info CSI 0000013b [SR] Beginning Verify and Repair transaction
2012-02-22 22:24:02, Info CSI 0000013d [SR] Verify complete
2012-02-22 22:24:02, Info CSI 0000013e [SR] Verifying 100 (0x00000064) components
2012-02-22 22:24:02, Info CSI 0000013f [SR] Beginning Verify and Repair transaction
2012-02-22 22:24:10, Info CSI 00000142 [SR] Verify complete
2012-02-22 22:24:10, Info CSI 00000143 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:24:10, Info CSI 00000144 [SR] Beginning Verify and Repair transaction
2012-02-22 22:24:17, Info CSI 00000146 [SR] Verify complete
2012-02-22 22:24:17, Info CSI 00000147 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:24:17, Info CSI 00000148 [SR] Beginning Verify and Repair transaction
2012-02-22 22:24:24, Info CSI 0000014a [SR] Verify complete
2012-02-22 22:24:24, Info CSI 0000014b [SR] Verifying 100 (0x00000064) components
2012-02-22 22:24:24, Info CSI 0000014c [SR] Beginning Verify and Repair transaction
2012-02-22 22:24:31, Info CSI 0000014f [SR] Verify complete
2012-02-22 22:24:32, Info CSI 00000150 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:24:32, Info CSI 00000151 [SR] Beginning Verify and Repair transaction
2012-02-22 22:24:39, Info CSI 00000153 [SR] Verify complete
2012-02-22 22:24:40, Info CSI 00000154 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:24:40, Info CSI 00000155 [SR] Beginning Verify and Repair transaction
2012-02-22 22:24:47, Info CSI 00000157 [SR] Verify complete
2012-02-22 22:24:48, Info CSI 00000158 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:24:48, Info CSI 00000159 [SR] Beginning Verify and Repair transaction
2012-02-22 22:24:55, Info CSI 0000015b [SR] Verify complete
2012-02-22 22:24:56, Info CSI 0000015c [SR] Verifying 100 (0x00000064) components
2012-02-22 22:24:56, Info CSI 0000015d [SR] Beginning Verify and Repair transaction
2012-02-22 22:25:09, Info CSI 0000015f [SR] Verify complete
2012-02-22 22:25:09, Info CSI 00000160 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:25:09, Info CSI 00000161 [SR] Beginning Verify and Repair transaction
2012-02-22 22:25:12, Info CSI 00000163 [SR] Verify complete
2012-02-22 22:25:12, Info CSI 00000164 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:25:12, Info CSI 00000165 [SR] Beginning Verify and Repair transaction
2012-02-22 22:25:17, Info CSI 00000167 [SR] Verify complete
2012-02-22 22:25:18, Info CSI 00000168 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:25:18, Info CSI 00000169 [SR] Beginning Verify and Repair transaction
2012-02-22 22:25:33, Info CSI 0000016b [SR] Verify complete
2012-02-22 22:25:34, Info CSI 0000016c [SR] Verifying 100 (0x00000064) components
2012-02-22 22:25:34, Info CSI 0000016d [SR] Beginning Verify and Repair transaction
2012-02-22 22:25:46, Info CSI 0000016f [SR] Verify complete
2012-02-22 22:25:46, Info CSI 00000170 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:25:46, Info CSI 00000171 [SR] Beginning Verify and Repair transaction
2012-02-22 22:25:57, Info CSI 00000173 [SR] Verify complete
2012-02-22 22:25:57, Info CSI 00000174 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:25:57, Info CSI 00000175 [SR] Beginning Verify and Repair transaction
2012-02-22 22:26:13, Info CSI 00000177 [SR] Verify complete
2012-02-22 22:26:13, Info CSI 00000178 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:26:13, Info CSI 00000179 [SR] Beginning Verify and Repair transaction
2012-02-22 22:26:37, Info CSI 0000017b [SR] Verify complete
2012-02-22 22:26:37, Info CSI 0000017c [SR] Verifying 100 (0x00000064) components
2012-02-22 22:26:37, Info CSI 0000017d [SR] Beginning Verify and Repair transaction
2012-02-22 22:27:01, Info CSI 0000017f [SR] Verify complete
2012-02-22 22:27:01, Info CSI 00000180 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:27:01, Info CSI 00000181 [SR] Beginning Verify and Repair transaction
2012-02-22 22:27:10, Info CSI 00000183 [SR] Verify complete
2012-02-22 22:27:10, Info CSI 00000184 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:27:10, Info CSI 00000185 [SR] Beginning Verify and Repair transaction
2012-02-22 22:27:15, Info CSI 00000187 [SR] Verify complete
2012-02-22 22:27:15, Info CSI 00000188 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:27:15, Info CSI 00000189 [SR] Beginning Verify and Repair transaction
2012-02-22 22:27:20, Info CSI 0000018b [SR] Verify complete
2012-02-22 22:27:21, Info CSI 0000018c [SR] Verifying 100 (0x00000064) components
2012-02-22 22:27:21, Info CSI 0000018d [SR] Beginning Verify and Repair transaction
2012-02-22 22:27:28, Info CSI 0000018f [SR] Verify complete
2012-02-22 22:27:28, Info CSI 00000190 [SR] Verifying 100 (0x00000064) components
2012-02-22 22:27:28, Info CSI 00000191 [SR] Beginning Verify and Repair transaction
2012-02-22 22:27:37, Info CSI 00000193 [SR] Verify complete
2012-02-22 22:27:37, Info CSI 00000194 [SR] Verifying 79 (0x0000004f) components
2012-02-22 22:27:37, Info CSI 00000195 [SR] Beginning Verify and Repair transaction
2012-02-22 22:27:41, Info CSI 00000197 [SR] Verify complete
2012-02-22 22:27:41, Info CSI 00000198 [SR] Repairing 0 components
2012-02-22 22:27:41, Info CSI 00000199 [SR] Beginning Verify and Repair transaction
2012-02-22 22:27:41, Info CSI 0000019b [SR] Repair complete

#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:59 PM

Posted 23 February 2012 - 10:45 PM

Did you install a new program recently?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 mutts111

mutts111
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:10:59 PM

Posted 23 February 2012 - 10:54 PM

According to my programs list there were five programs installed within the last month. There were all update however. They were:

Malwarebytes Anti-malware version 1.60.1.1000 on 2/21/12
Mozilla Firefox 10.0.2 on 2/17/12
Microsoft Silverlight on 2/16/12
Microsoft office power point viewer 2007 (english) on 2/7/12
AVG 2012 on 1/31/12

The only one that I think is new is the powerpoint viewer, and I didn't install it.

#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:59 PM

Posted 23 February 2012 - 11:19 PM

Ok then lets check for rootkits.

First remove these and reboot...
Adobe Reader 9.4.7 (Version: 9.4.7)
Java™ 6 Update 26 (Version: 6.0.260)
HiJackThis (Version: 1.0.0)

Update to
Adobe Reader X
adobe flash player 11
Java™ 7 Update 3


Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log have a name like: TDSSKiller.Version_Date_Time_log.txt.

>>>

Download aswMBR to your desktop.
Double click the aswMBR.exe to run it.
Click the "Scan" button to start scan:
Posted Image

On completion of the scan click "Save log", save it to your desktop and post in your next reply:
Posted Image

NOTE. aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 mutts111

mutts111
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:10:59 PM

Posted 24 February 2012 - 12:00 AM

I deleted those programs and winpatrol popped up with a "Do you approve this IE helper? (jp2ssv.dll)? I said no. now I am rebooting.

#11 mutts111

mutts111
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:10:59 PM

Posted 24 February 2012 - 12:20 AM

TDSSKiller found nothing. Here is the log:

00:18:54.0118 4312 TDSS rootkit removing tool 2.7.13.0 Feb 15 2012 19:33:14
00:18:54.0484 4312 ============================================================
00:18:54.0485 4312 Current date / time: 2012/02/24 00:18:54.0484
00:18:54.0485 4312 SystemInfo:
00:18:54.0485 4312
00:18:54.0485 4312 OS Version: 6.1.7601 ServicePack: 1.0
00:18:54.0485 4312 Product type: Workstation
00:18:54.0485 4312 ComputerName: OFFICE
00:18:54.0485 4312 UserName: Ed
00:18:54.0485 4312 Windows directory: C:\Windows
00:18:54.0485 4312 System windows directory: C:\Windows
00:18:54.0485 4312 Processor architecture: Intel x86
00:18:54.0485 4312 Number of processors: 2
00:18:54.0485 4312 Page size: 0x1000
00:18:54.0485 4312 Boot type: Normal boot
00:18:54.0485 4312 ============================================================
00:18:56.0062 4312 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
00:18:56.0074 4312 Drive \Device\Harddisk1\DR1 - Size: 0x15D50F66000 (1397.27 Gb), SectorSize: 0x200, Cylinders: 0x2C881, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
00:18:56.0077 4312 \Device\Harddisk0\DR0:
00:18:56.0077 4312 MBR used
00:18:56.0077 4312 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x131ADE0
00:18:56.0077 4312 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x131AE1F, BlocksNum 0x116FDCA2
00:18:56.0077 4312 \Device\Harddisk1\DR1:
00:18:56.0077 4312 MBR used
00:18:56.0077 4312 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x131ADE0
00:18:56.0078 4312 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x131AE1F, BlocksNum 0x116FDCA2
00:18:56.0078 4312 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x12A19000, BlocksNum 0x9C06E000
00:18:56.0227 4312 Initialize success
00:18:56.0227 4312 ============================================================
00:19:03.0795 4500 ============================================================
00:19:03.0796 4500 Scan started
00:19:03.0796 4500 Mode: Manual;
00:19:03.0796 4500 ============================================================
00:19:04.0812 4500 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
00:19:04.0855 4500 1394ohci - ok
00:19:04.0902 4500 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
00:19:04.0906 4500 ACPI - ok
00:19:04.0992 4500 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
00:19:05.0030 4500 AcpiPmi - ok
00:19:05.0199 4500 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
00:19:05.0206 4500 adp94xx - ok
00:19:05.0230 4500 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
00:19:05.0244 4500 adpahci - ok
00:19:05.0347 4500 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
00:19:05.0350 4500 adpu320 - ok
00:19:05.0404 4500 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
00:19:05.0410 4500 AFD - ok
00:19:05.0501 4500 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
00:19:05.0521 4500 agp440 - ok
00:19:05.0575 4500 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
00:19:05.0577 4500 aic78xx - ok
00:19:05.0762 4500 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
00:19:05.0793 4500 aliide - ok
00:19:05.0891 4500 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
00:19:05.0916 4500 amdagp - ok
00:19:06.0039 4500 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
00:19:06.0048 4500 amdide - ok
00:19:06.0093 4500 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
00:19:06.0096 4500 AmdK8 - ok
00:19:06.0171 4500 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
00:19:06.0283 4500 AmdPPM - ok
00:19:06.0378 4500 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
00:19:06.0381 4500 amdsata - ok
00:19:06.0409 4500 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
00:19:06.0412 4500 amdsbs - ok
00:19:06.0431 4500 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
00:19:06.0433 4500 amdxata - ok
00:19:06.0537 4500 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
00:19:06.0539 4500 AppID - ok
00:19:06.0592 4500 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
00:19:06.0609 4500 arc - ok
00:19:06.0695 4500 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
00:19:06.0718 4500 arcsas - ok
00:19:06.0772 4500 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
00:19:06.0773 4500 AsyncMac - ok
00:19:06.0869 4500 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
00:19:06.0871 4500 atapi - ok
00:19:06.0982 4500 AVGIDSDriver (f6878b90a8a9795116bce335238e65af) C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys
00:19:06.0986 4500 AVGIDSDriver - ok
00:19:07.0009 4500 AVGIDSEH (19a08a6728a6e02099d64268218cd799) C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
00:19:07.0010 4500 AVGIDSEH - ok
00:19:07.0031 4500 AVGIDSFilter (f8927ab1dd086edeff2924a64dc89869) C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys
00:19:07.0033 4500 AVGIDSFilter - ok
00:19:07.0130 4500 AVGIDSShim (dadca567891033dcf2ec4a3f9da46ae4) C:\Windows\system32\DRIVERS\AVGIDSShim.Sys
00:19:07.0131 4500 AVGIDSShim - ok
00:19:07.0176 4500 Avgldx86 (bf8118cd5e2255387b715b534d64acd1) C:\Windows\system32\DRIVERS\avgldx86.sys
00:19:07.0185 4500 Avgldx86 - ok
00:19:07.0218 4500 Avgmfx86 (1c77ef67f196466adc9924cb288afe87) C:\Windows\system32\DRIVERS\avgmfx86.sys
00:19:07.0220 4500 Avgmfx86 - ok
00:19:07.0308 4500 Avgrkx86 (f2038ed7284b79dcef581468121192a9) C:\Windows\system32\DRIVERS\avgrkx86.sys
00:19:07.0310 4500 Avgrkx86 - ok
00:19:07.0357 4500 Avgtdix (a6d562b612216d8d02a35ebeb92366bd) C:\Windows\system32\DRIVERS\avgtdix.sys
00:19:07.0392 4500 Avgtdix - ok
00:19:07.0514 4500 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
00:19:07.0530 4500 b06bdrv - ok
00:19:07.0573 4500 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
00:19:07.0627 4500 b57nd60x - ok
00:19:07.0734 4500 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
00:19:07.0755 4500 Beep - ok
00:19:07.0874 4500 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
00:19:07.0876 4500 blbdrive - ok
00:19:07.0923 4500 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
00:19:07.0925 4500 bowser - ok
00:19:08.0021 4500 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
00:19:08.0023 4500 BrFiltLo - ok
00:19:08.0040 4500 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
00:19:08.0042 4500 BrFiltUp - ok
00:19:08.0088 4500 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
00:19:08.0132 4500 Brserid - ok
00:19:08.0234 4500 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
00:19:08.0253 4500 BrSerWdm - ok
00:19:08.0274 4500 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
00:19:08.0276 4500 BrUsbMdm - ok
00:19:08.0296 4500 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
00:19:08.0334 4500 BrUsbSer - ok
00:19:08.0463 4500 BTCFilterService (4813df77ede536a52e3737971f910baa) C:\Windows\system32\DRIVERS\motfilt.sys
00:19:08.0490 4500 BTCFilterService - ok
00:19:08.0519 4500 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
00:19:08.0535 4500 BTHMODEM - ok
00:19:08.0654 4500 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
00:19:08.0656 4500 cdfs - ok
00:19:08.0693 4500 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\DRIVERS\cdrom.sys
00:19:08.0708 4500 cdrom - ok
00:19:08.0802 4500 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
00:19:08.0804 4500 circlass - ok
00:19:08.0845 4500 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
00:19:08.0849 4500 CLFS - ok
00:19:08.0975 4500 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
00:19:09.0004 4500 CmBatt - ok
00:19:09.0060 4500 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
00:19:09.0088 4500 cmdide - ok
00:19:09.0167 4500 CNG (6427525d76f61d0c519b008d3680e8e7) C:\Windows\system32\Drivers\cng.sys
00:19:09.0172 4500 CNG - ok
00:19:09.0212 4500 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
00:19:09.0214 4500 Compbatt - ok
00:19:09.0296 4500 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys
00:19:09.0315 4500 CompositeBus - ok
00:19:09.0380 4500 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
00:19:09.0382 4500 crcdisk - ok
00:19:09.0504 4500 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
00:19:09.0506 4500 DfsC - ok
00:19:09.0554 4500 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
00:19:09.0555 4500 discache - ok
00:19:09.0588 4500 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
00:19:09.0590 4500 Disk - ok
00:19:09.0697 4500 DLABMFSM (ace95725b7d9e12227590f4c2e47707f) C:\Windows\system32\DLA\DLABMFSM.SYS
00:19:09.0699 4500 DLABMFSM - ok
00:19:09.0726 4500 DLABOIOM (f872cf678b07a7a415bc78c309c433a8) C:\Windows\system32\DLA\DLABOIOM.SYS
00:19:09.0728 4500 DLABOIOM - ok
00:19:09.0766 4500 DLACDBHM (5230cdb7e715f3a3b4a882e254cdd35d) C:\Windows\system32\Drivers\DLACDBHM.SYS
00:19:09.0767 4500 DLACDBHM - ok
00:19:09.0859 4500 DLADResM (0049cb1260d08b4e28ae28073ab6d6bf) C:\Windows\system32\DLA\DLADResM.SYS
00:19:09.0860 4500 DLADResM - ok
00:19:09.0902 4500 DLAIFS_M (8d74e30d25a962485c4620fbc795c576) C:\Windows\system32\DLA\DLAIFS_M.SYS
00:19:09.0905 4500 DLAIFS_M - ok
00:19:09.0953 4500 DLAOPIOM (d4523b4284191c5824e79a4959cf8103) C:\Windows\system32\DLA\DLAOPIOM.SYS
00:19:09.0955 4500 DLAOPIOM - ok
00:19:10.0017 4500 DLAPoolM (8330839e47287595545d4d4abdea2b18) C:\Windows\system32\DLA\DLAPoolM.SYS
00:19:10.0018 4500 DLAPoolM - ok
00:19:10.0057 4500 DLARTL_M (ccd46b2e9de7dde28055008e52d19e62) C:\Windows\system32\Drivers\DLARTL_M.SYS
00:19:10.0059 4500 DLARTL_M - ok
00:19:10.0135 4500 DLAUDFAM (c1574997b02ed1c1fdde8ef66106ad90) C:\Windows\system32\DLA\DLAUDFAM.SYS
00:19:10.0137 4500 DLAUDFAM - ok
00:19:10.0193 4500 DLAUDF_M (4bbb14b293a9ec274361b0a543c78f80) C:\Windows\system32\DLA\DLAUDF_M.SYS
00:19:10.0196 4500 DLAUDF_M - ok
00:19:10.0278 4500 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
00:19:10.0314 4500 drmkaud - ok
00:19:10.0404 4500 DRVMCDB (55f25c7eb606f923fa317ae29a8bd72a) C:\Windows\system32\Drivers\DRVMCDB.SYS
00:19:10.0406 4500 DRVMCDB - ok
00:19:10.0476 4500 DRVNDDM (ffc371525aa55d1bae18715ebcb8797c) C:\Windows\system32\Drivers\DRVNDDM.SYS
00:19:10.0478 4500 DRVNDDM - ok
00:19:10.0543 4500 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
00:19:10.0567 4500 DXGKrnl - ok
00:19:10.0748 4500 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
00:19:10.0783 4500 ebdrv - ok
00:19:10.0921 4500 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
00:19:10.0939 4500 elxstor - ok
00:19:10.0971 4500 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
00:19:10.0974 4500 ErrDev - ok
00:19:11.0075 4500 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
00:19:11.0115 4500 exfat - ok
00:19:11.0159 4500 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
00:19:11.0163 4500 fastfat - ok
00:19:11.0255 4500 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
00:19:11.0286 4500 fdc - ok
00:19:11.0340 4500 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
00:19:11.0342 4500 FileInfo - ok
00:19:11.0366 4500 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
00:19:11.0367 4500 Filetrace - ok
00:19:11.0457 4500 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
00:19:11.0486 4500 flpydisk - ok
00:19:11.0547 4500 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
00:19:11.0551 4500 FltMgr - ok
00:19:11.0594 4500 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
00:19:11.0596 4500 FsDepends - ok
00:19:11.0659 4500 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
00:19:11.0660 4500 Fs_Rec - ok
00:19:11.0700 4500 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
00:19:11.0704 4500 fvevol - ok
00:19:11.0747 4500 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
00:19:11.0750 4500 gagp30kx - ok
00:19:11.0821 4500 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
00:19:11.0824 4500 hcw85cir - ok
00:19:11.0864 4500 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys
00:19:11.0866 4500 HDAudBus - ok
00:19:11.0914 4500 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
00:19:11.0916 4500 HidBatt - ok
00:19:11.0990 4500 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
00:19:11.0993 4500 HidBth - ok
00:19:12.0013 4500 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
00:19:12.0057 4500 HidIr - ok
00:19:12.0133 4500 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys
00:19:12.0135 4500 HidUsb - ok
00:19:12.0254 4500 hotcore3 (25c03f58fd5036c9ab38d22697c63e16) C:\Windows\system32\DRIVERS\hotcore3.sys
00:19:12.0257 4500 hotcore3 - ok
00:19:12.0299 4500 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
00:19:12.0329 4500 HpSAMD - ok
00:19:12.0465 4500 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
00:19:12.0473 4500 HTTP - ok
00:19:12.0506 4500 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
00:19:12.0509 4500 hwpolicy - ok
00:19:12.0595 4500 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys
00:19:12.0614 4500 i8042prt - ok
00:19:12.0660 4500 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
00:19:12.0666 4500 iaStorV - ok
00:19:12.0764 4500 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
00:19:12.0804 4500 iirsp - ok
00:19:12.0950 4500 IntcAzAudAddService (efad2bc74d06c5f53fa64b6dd6dbb459) C:\Windows\system32\drivers\RTKVHDA.sys
00:19:13.0166 4500 IntcAzAudAddService - ok
00:19:13.0249 4500 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
00:19:13.0250 4500 intelide - ok
00:19:13.0289 4500 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
00:19:13.0292 4500 intelppm - ok
00:19:13.0373 4500 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
00:19:13.0376 4500 IpFilterDriver - ok
00:19:13.0417 4500 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
00:19:13.0421 4500 IPMIDRV - ok
00:19:13.0453 4500 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
00:19:13.0494 4500 IPNAT - ok
00:19:13.0608 4500 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
00:19:13.0610 4500 IRENUM - ok
00:19:13.0635 4500 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
00:19:13.0637 4500 isapnp - ok
00:19:13.0671 4500 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
00:19:13.0676 4500 iScsiPrt - ok
00:19:13.0761 4500 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\drivers\kbdclass.sys
00:19:13.0763 4500 kbdclass - ok
00:19:13.0800 4500 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\drivers\kbdhid.sys
00:19:13.0832 4500 kbdhid - ok
00:19:13.0967 4500 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\Windows\system32\Drivers\ksecdd.sys
00:19:13.0969 4500 KSecDD - ok
00:19:14.0003 4500 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\Windows\system32\Drivers\ksecpkg.sys
00:19:14.0006 4500 KSecPkg - ok
00:19:14.0116 4500 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
00:19:14.0118 4500 lltdio - ok
00:19:14.0169 4500 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
00:19:14.0172 4500 LSI_FC - ok
00:19:14.0187 4500 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
00:19:14.0190 4500 LSI_SAS - ok
00:19:14.0276 4500 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
00:19:14.0279 4500 LSI_SAS2 - ok
00:19:14.0289 4500 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
00:19:14.0292 4500 LSI_SCSI - ok
00:19:14.0332 4500 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
00:19:14.0334 4500 luafv - ok
00:19:14.0464 4500 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\Windows\system32\drivers\mbam.sys
00:19:14.0465 4500 MBAMProtector - ok
00:19:14.0521 4500 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
00:19:14.0523 4500 megasas - ok
00:19:14.0622 4500 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
00:19:14.0627 4500 MegaSR - ok
00:19:14.0653 4500 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
00:19:14.0655 4500 Modem - ok
00:19:14.0697 4500 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
00:19:14.0698 4500 monitor - ok
00:19:14.0812 4500 motandroidusb (0a43169e115b5e9346a4ba1effcb04cb) C:\Windows\system32\Drivers\motoandroid.sys
00:19:14.0869 4500 motandroidusb - ok
00:19:14.0918 4500 motccgp (f4ea1193a52c8fe4b8a135e210abe546) C:\Windows\system32\DRIVERS\motccgp.sys
00:19:15.0061 4500 motccgp - ok
00:19:15.0168 4500 motccgpfl (b812da6605caf02641312f1f65c75419) C:\Windows\system32\DRIVERS\motccgpfl.sys
00:19:15.0224 4500 motccgpfl - ok
00:19:15.0322 4500 motmodem (69814acd50a9d6d28296050ef6215d46) C:\Windows\system32\DRIVERS\motmodem.sys
00:19:15.0396 4500 motmodem - ok
00:19:15.0442 4500 MotoSwitchService (fd8c2cef7ad8b23c6714103d621fac1f) C:\Windows\system32\DRIVERS\motswch.sys
00:19:15.0459 4500 MotoSwitchService - ok
00:19:15.0533 4500 Motousbnet (ddc489d40b49f443787e7ffa75373522) C:\Windows\system32\DRIVERS\Motousbnet.sys
00:19:15.0573 4500 Motousbnet - ok
00:19:15.0702 4500 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
00:19:15.0704 4500 mouclass - ok
00:19:15.0764 4500 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
00:19:15.0766 4500 mouhid - ok
00:19:15.0871 4500 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
00:19:15.0874 4500 mountmgr - ok
00:19:15.0907 4500 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
00:19:15.0911 4500 mpio - ok
00:19:15.0979 4500 MpKsl0333ce94 - ok
00:19:15.0986 4500 MpKsl123d46a4 - ok
00:19:15.0998 4500 MpKsl5040d221 - ok
00:19:16.0004 4500 MpKsl57b81a27 - ok
00:19:16.0011 4500 MpKsl6234e589 - ok
00:19:16.0026 4500 MpKsl7de5bf6f - ok
00:19:16.0034 4500 MpKsl86cc0a5f - ok
00:19:16.0040 4500 MpKsl9108eb53 - ok
00:19:16.0053 4500 MpKsl96bbad8f - ok
00:19:16.0060 4500 MpKsld59cba4a - ok
00:19:16.0067 4500 MpKslf0368a2d - ok
00:19:16.0074 4500 MpKslf9e4e926 - ok
00:19:16.0162 4500 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
00:19:16.0164 4500 mpsdrv - ok
00:19:16.0207 4500 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
00:19:16.0211 4500 MRxDAV - ok
00:19:16.0238 4500 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
00:19:16.0241 4500 mrxsmb - ok
00:19:16.0317 4500 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
00:19:16.0321 4500 mrxsmb10 - ok
00:19:16.0351 4500 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
00:19:16.0353 4500 mrxsmb20 - ok
00:19:16.0384 4500 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
00:19:16.0386 4500 msahci - ok
00:19:16.0454 4500 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
00:19:16.0457 4500 msdsm - ok
00:19:16.0499 4500 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
00:19:16.0501 4500 Msfs - ok
00:19:16.0532 4500 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
00:19:16.0534 4500 mshidkmdf - ok
00:19:16.0569 4500 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
00:19:16.0571 4500 msisadrv - ok
00:19:16.0672 4500 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
00:19:16.0674 4500 MSKSSRV - ok
00:19:16.0707 4500 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
00:19:16.0709 4500 MSPCLOCK - ok
00:19:16.0729 4500 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
00:19:16.0731 4500 MSPQM - ok
00:19:16.0753 4500 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
00:19:16.0757 4500 MsRPC - ok
00:19:16.0832 4500 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys
00:19:16.0834 4500 mssmbios - ok
00:19:16.0890 4500 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
00:19:16.0892 4500 MSTEE - ok
00:19:16.0914 4500 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
00:19:16.0916 4500 MTConfig - ok
00:19:16.0988 4500 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
00:19:16.0990 4500 Mup - ok
00:19:17.0044 4500 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
00:19:17.0065 4500 NativeWifiP - ok
00:19:17.0155 4500 NCHSSVAD (0df9cc7b5cc173f545723f23e68fac93) C:\Windows\system32\drivers\nchssvad.sys
00:19:17.0320 4500 NCHSSVAD - ok
00:19:17.0435 4500 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
00:19:17.0444 4500 NDIS - ok
00:19:17.0488 4500 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
00:19:17.0490 4500 NdisCap - ok
00:19:17.0555 4500 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
00:19:17.0557 4500 NdisTapi - ok
00:19:17.0585 4500 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
00:19:17.0588 4500 Ndisuio - ok
00:19:17.0625 4500 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
00:19:17.0658 4500 NdisWan - ok
00:19:17.0767 4500 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
00:19:17.0769 4500 NDProxy - ok
00:19:17.0814 4500 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
00:19:17.0816 4500 NetBIOS - ok
00:19:17.0855 4500 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
00:19:17.0859 4500 NetBT - ok
00:19:17.0979 4500 NetworkX (5ef7dd401771693245d46f4b0b69fe2b) C:\Windows\system32\ckldrv.sys
00:19:17.0981 4500 NetworkX - ok
00:19:18.0040 4500 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
00:19:18.0042 4500 nfrd960 - ok
00:19:18.0145 4500 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
00:19:18.0147 4500 Npfs - ok
00:19:18.0199 4500 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
00:19:18.0200 4500 nsiproxy - ok
00:19:18.0282 4500 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
00:19:18.0297 4500 Ntfs - ok
00:19:18.0369 4500 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
00:19:18.0398 4500 Null - ok
00:19:18.0471 4500 NVENETFD (b5e37e31c053bc9950455a257526514b) C:\Windows\system32\DRIVERS\nvm62x32.sys
00:19:18.0525 4500 NVENETFD - ok
00:19:18.0814 4500 nvlddmkm (b0881dda5a8160422561ffab7f0008b1) C:\Windows\system32\DRIVERS\nvlddmkm.sys
00:19:19.0013 4500 nvlddmkm - ok
00:19:19.0098 4500 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
00:19:19.0101 4500 nvraid - ok
00:19:19.0118 4500 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
00:19:19.0120 4500 nvstor - ok
00:19:19.0150 4500 nvstor32 (a1ce1a6fd74c046f029448fcfa5e386d) C:\Windows\system32\DRIVERS\nvstor32.sys
00:19:19.0153 4500 nvstor32 - ok
00:19:19.0177 4500 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
00:19:19.0180 4500 nv_agp - ok
00:19:19.0263 4500 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
00:19:19.0265 4500 ohci1394 - ok
00:19:19.0315 4500 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
00:19:19.0318 4500 Parport - ok
00:19:19.0353 4500 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys
00:19:19.0355 4500 partmgr - ok
00:19:19.0431 4500 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
00:19:19.0432 4500 Parvdm - ok
00:19:19.0472 4500 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
00:19:19.0475 4500 pci - ok
00:19:19.0485 4500 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
00:19:19.0487 4500 pciide - ok
00:19:19.0526 4500 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
00:19:19.0530 4500 pcmcia - ok
00:19:19.0600 4500 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
00:19:19.0602 4500 pcw - ok
00:19:19.0632 4500 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
00:19:19.0640 4500 PEAUTH - ok
00:19:19.0702 4500 Point32 (896d916de06f5502d301e8c4dc442ae8) C:\Windows\system32\DRIVERS\point32.sys
00:19:19.0704 4500 Point32 - ok
00:19:19.0795 4500 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
00:19:19.0798 4500 PptpMiniport - ok
00:19:19.0834 4500 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
00:19:19.0867 4500 Processor - ok
00:19:19.0940 4500 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
00:19:19.0943 4500 Psched - ok
00:19:20.0028 4500 PSI (1df21f001f3a94eba4a2950c70cc358f) C:\Windows\system32\DRIVERS\psi_mf.sys
00:19:20.0052 4500 PSI - ok
00:19:20.0079 4500 PxHelp20 (f7bb4e7a7c02ab4a2672937e124e306e) C:\Windows\system32\Drivers\PxHelp20.sys
00:19:20.0081 4500 PxHelp20 - ok
00:19:20.0142 4500 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
00:19:20.0158 4500 ql2300 - ok
00:19:20.0252 4500 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
00:19:20.0255 4500 ql40xx - ok
00:19:20.0279 4500 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
00:19:20.0281 4500 QWAVEdrv - ok
00:19:20.0296 4500 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
00:19:20.0323 4500 RasAcd - ok
00:19:20.0402 4500 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
00:19:20.0405 4500 RasAgileVpn - ok
00:19:20.0478 4500 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
00:19:20.0512 4500 Rasl2tp - ok
00:19:20.0555 4500 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
00:19:20.0559 4500 RasPppoe - ok
00:19:20.0597 4500 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
00:19:20.0599 4500 RasSstp - ok
00:19:20.0640 4500 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
00:19:20.0645 4500 rdbss - ok
00:19:20.0714 4500 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
00:19:20.0717 4500 rdpbus - ok
00:19:20.0759 4500 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
00:19:20.0760 4500 RDPCDD - ok
00:19:20.0852 4500 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
00:19:20.0853 4500 RDPENCDD - ok
00:19:20.0881 4500 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
00:19:20.0883 4500 RDPREFMP - ok
00:19:20.0909 4500 RDPWD (288b06960d78428ff89e811632684e20) C:\Windows\system32\drivers\RDPWD.sys
00:19:20.0914 4500 RDPWD - ok
00:19:21.0010 4500 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
00:19:21.0013 4500 rdyboost - ok
00:19:21.0091 4500 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
00:19:21.0093 4500 rspndr - ok
00:19:21.0166 4500 RxFilter (30aed4a37e8f8bbf41983d4ae3a15df9) C:\Windows\system32\DRIVERS\RxFilter.sys
00:19:21.0280 4500 RxFilter - ok
00:19:21.0401 4500 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
00:19:21.0404 4500 sbp2port - ok
00:19:21.0429 4500 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
00:19:21.0431 4500 scfilter - ok
00:19:21.0493 4500 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
00:19:21.0495 4500 secdrv - ok
00:19:21.0570 4500 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
00:19:21.0573 4500 Serenum - ok
00:19:21.0624 4500 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
00:19:21.0627 4500 Serial - ok
00:19:21.0662 4500 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
00:19:21.0664 4500 sermouse - ok
00:19:21.0715 4500 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
00:19:21.0718 4500 sffdisk - ok
00:19:21.0769 4500 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
00:19:21.0803 4500 sffp_mmc - ok
00:19:21.0841 4500 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
00:19:21.0843 4500 sffp_sd - ok
00:19:21.0877 4500 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
00:19:21.0879 4500 sfloppy - ok
00:19:21.0965 4500 SI3112r (3da2f680bfc8e92a535cea5a5d80ac37) C:\Windows\system32\DRIVERS\SI3112r.sys
00:19:21.0968 4500 SI3112r - ok
00:19:22.0030 4500 SiFilter (d893aa1d1ee007b7ab1b16e1099e9f17) C:\Windows\system32\DRIVERS\SiWinAcc.sys
00:19:22.0032 4500 SiFilter - ok
00:19:22.0079 4500 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
00:19:22.0082 4500 sisagp - ok
00:19:22.0121 4500 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
00:19:22.0124 4500 SiSRaid2 - ok
00:19:22.0175 4500 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
00:19:22.0178 4500 SiSRaid4 - ok
00:19:22.0236 4500 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
00:19:22.0238 4500 Smb - ok
00:19:22.0280 4500 snapman368 (c6e42ee80baf517ccc9e36486380df8d) C:\Windows\system32\DRIVERS\snman368.sys
00:19:22.0284 4500 snapman368 - ok
00:19:22.0354 4500 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
00:19:22.0356 4500 spldr - ok
00:19:22.0425 4500 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
00:19:22.0431 4500 srv - ok
00:19:22.0470 4500 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
00:19:22.0475 4500 srv2 - ok
00:19:22.0527 4500 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
00:19:22.0530 4500 srvnet - ok
00:19:22.0609 4500 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
00:19:22.0611 4500 stexstor - ok
00:19:22.0699 4500 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys
00:19:22.0701 4500 swenum - ok
00:19:22.0769 4500 Tcpip (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\drivers\tcpip.sys
00:19:22.0789 4500 Tcpip - ok
00:19:22.0902 4500 TCPIP6 (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\DRIVERS\tcpip.sys
00:19:22.0911 4500 TCPIP6 - ok
00:19:22.0961 4500 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
00:19:22.0963 4500 tcpipreg - ok
00:19:23.0076 4500 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
00:19:23.0078 4500 TDPIPE - ok
00:19:23.0155 4500 tdrpman (566e572d3ec1d662b33384f605897b95) C:\Windows\system32\DRIVERS\tdrpman.sys
00:19:23.0166 4500 tdrpman - ok
00:19:23.0243 4500 TDTCP (2c10395baa4847f83042813c515cc289) C:\Windows\system32\drivers\tdtcp.sys
00:19:23.0280 4500 TDTCP - ok
00:19:23.0342 4500 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
00:19:23.0355 4500 tdx - ok
00:19:23.0383 4500 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys
00:19:23.0385 4500 TermDD - ok
00:19:23.0484 4500 TotRec8 (a0d67abc7a8cda2e000e63c0f648b93a) C:\Windows\system32\drivers\TotRec8.sys
00:19:23.0499 4500 TotRec8 - ok
00:19:23.0555 4500 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
00:19:23.0557 4500 tssecsrv - ok
00:19:23.0640 4500 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
00:19:23.0642 4500 TsUsbFlt - ok
00:19:23.0699 4500 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
00:19:23.0702 4500 tunnel - ok
00:19:23.0773 4500 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
00:19:23.0776 4500 uagp35 - ok
00:19:23.0805 4500 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
00:19:23.0811 4500 udfs - ok
00:19:23.0894 4500 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
00:19:23.0896 4500 uliagpkx - ok
00:19:23.0966 4500 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\drivers\umbus.sys
00:19:23.0968 4500 umbus - ok
00:19:23.0995 4500 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
00:19:24.0006 4500 UmPass - ok
00:19:24.0063 4500 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
00:19:24.0092 4500 usbccgp - ok
00:19:24.0155 4500 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
00:19:24.0158 4500 usbcir - ok
00:19:24.0202 4500 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys
00:19:24.0216 4500 usbehci - ok
00:19:24.0240 4500 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
00:19:24.0245 4500 usbhub - ok
00:19:24.0306 4500 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\DRIVERS\usbohci.sys
00:19:24.0309 4500 usbohci - ok
00:19:24.0355 4500 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
00:19:24.0357 4500 usbprint - ok
00:19:24.0392 4500 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
00:19:24.0394 4500 usbscan - ok
00:19:24.0424 4500 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
00:19:24.0427 4500 USBSTOR - ok
00:19:24.0492 4500 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\drivers\usbuhci.sys
00:19:24.0522 4500 usbuhci - ok
00:19:24.0576 4500 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
00:19:24.0579 4500 vdrvroot - ok
00:19:24.0617 4500 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
00:19:24.0619 4500 vga - ok
00:19:24.0674 4500 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
00:19:24.0676 4500 VgaSave - ok
00:19:24.0709 4500 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
00:19:24.0729 4500 vhdmp - ok
00:19:24.0769 4500 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
00:19:24.0772 4500 viaagp - ok
00:19:24.0843 4500 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
00:19:24.0846 4500 ViaC7 - ok
00:19:24.0877 4500 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
00:19:24.0878 4500 viaide - ok
00:19:24.0912 4500 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
00:19:24.0914 4500 volmgr - ok
00:19:24.0985 4500 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
00:19:24.0991 4500 volmgrx - ok
00:19:25.0009 4500 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
00:19:25.0013 4500 volsnap - ok
00:19:25.0043 4500 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
00:19:25.0047 4500 vsmraid - ok
00:19:25.0079 4500 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
00:19:25.0081 4500 vwifibus - ok
00:19:25.0152 4500 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
00:19:25.0154 4500 WacomPen - ok
00:19:25.0199 4500 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
00:19:25.0202 4500 WANARP - ok
00:19:25.0206 4500 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
00:19:25.0208 4500 Wanarpv6 - ok
00:19:25.0259 4500 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
00:19:25.0261 4500 Wd - ok
00:19:25.0339 4500 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
00:19:25.0346 4500 Wdf01000 - ok
00:19:25.0398 4500 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
00:19:25.0418 4500 WfpLwf - ok
00:19:25.0443 4500 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
00:19:25.0445 4500 WIMMount - ok
00:19:25.0550 4500 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUsb.sys
00:19:25.0552 4500 WinUsb - ok
00:19:25.0580 4500 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
00:19:25.0581 4500 WmiAcpi - ok
00:19:25.0648 4500 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
00:19:25.0650 4500 ws2ifsl - ok
00:19:25.0738 4500 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
00:19:25.0741 4500 WudfPf - ok
00:19:25.0788 4500 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
00:19:25.0791 4500 WUDFRd - ok
00:19:25.0837 4500 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
00:19:25.0900 4500 \Device\Harddisk0\DR0 - ok
00:19:25.0919 4500 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk1\DR1
00:19:25.0979 4500 \Device\Harddisk1\DR1 - ok
00:19:25.0983 4500 Boot (0x1200) (4d6b16e5f42f62ec78f5e39b30792a7e) \Device\Harddisk0\DR0\Partition0
00:19:25.0984 4500 \Device\Harddisk0\DR0\Partition0 - ok
00:19:25.0990 4500 Boot (0x1200) (dff062d677cee1d7de1b7ca0b329e3b3) \Device\Harddisk0\DR0\Partition1
00:19:25.0990 4500 \Device\Harddisk0\DR0\Partition1 - ok
00:19:25.0997 4500 Boot (0x1200) (4d6b16e5f42f62ec78f5e39b30792a7e) \Device\Harddisk1\DR1\Partition0
00:19:25.0998 4500 \Device\Harddisk1\DR1\Partition0 - ok
00:19:26.0012 4500 Boot (0x1200) (dff062d677cee1d7de1b7ca0b329e3b3) \Device\Harddisk1\DR1\Partition1
00:19:26.0014 4500 \Device\Harddisk1\DR1\Partition1 - ok
00:19:26.0034 4500 Boot (0x1200) (7a2cb59a2e951ee1c91784dcc5764896) \Device\Harddisk1\DR1\Partition2
00:19:26.0035 4500 \Device\Harddisk1\DR1\Partition2 - ok
00:19:26.0036 4500 ============================================================
00:19:26.0036 4500 Scan finished
00:19:26.0036 4500 ============================================================
00:19:26.0052 5104 Detected object count: 0
00:19:26.0052 5104 Actual detected object count: 0

#12 mutts111

mutts111
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:10:59 PM

Posted 24 February 2012 - 12:26 AM

Here is aswMBR:

aswMBR version 0.9.9.1649 Copyright© 2011 AVAST Software
Run date: 2012-02-24 00:22:43
-----------------------------
00:22:43.938 OS Version: Windows 6.1.7601 Service Pack 1
00:22:43.938 Number of processors: 2 586 0x6B02
00:22:43.941 ComputerName: OFFICE UserName: Ed
00:23:02.583 Initialize success
00:23:37.204 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000006c
00:23:37.207 Disk 0 Vendor: Hitachi_ P22O Size: 152627MB BusType: 3
00:23:37.210 Disk 1 \Device\Harddisk1\DR1 -> \Device\0000006d
00:23:37.213 Disk 1 Vendor: ST315003 CC1H Size: 1430799MB BusType: 3
00:23:37.232 Disk 0 MBR read successfully
00:23:37.235 Disk 0 MBR scan
00:23:37.240 Disk 0 Windows 7 default MBR code
00:23:37.244 Disk 0 Partition 1 00 07 HPFS/NTFS NTFS 9781 MB offset 63
00:23:37.262 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 142843 MB offset 20033055
00:23:37.268 Disk 0 scanning sectors +312576705
00:23:37.332 Disk 0 scanning C:\Windows\system32\drivers
00:23:44.152 Service scanning
00:24:07.101 Modules scanning
00:24:15.808 Disk 0 trace - called modules:
00:24:15.830 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll storport.sys nvstor.sys
00:24:16.053 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86343030]
00:24:16.061 3 CLASSPNP.SYS[891a059e] -> nt!IofCallDriver -> [0x85ab90e0]
00:24:16.068 5 ACPI.sys[839c03d4] -> nt!IofCallDriver -> \Device\0000006c[0x85ab93b0]
00:24:16.076 Scan finished successfully
00:24:48.560 Disk 0 MBR has been saved successfully to "C:\Users\Ed\Desktop\MBR.dat"
00:24:48.568 The log file has been saved successfully to "C:\Users\Ed\Desktop\aswMBR.txt"

#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:59 PM

Posted 24 February 2012 - 11:13 AM

Well it looks clean now. If you still have a media player issue try to reinstall it. If no joy you need to start another topic in WIN7 so they can hrlp you.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#14 mutts111

mutts111
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:10:59 PM

Posted 24 February 2012 - 11:32 AM

Thanks for your help. Media player is still freezing. I'll try to uninstall and reinstall.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users