Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with win32/sirefef.er


  • Please log in to reply
10 replies to this topic

#1 ScooterMagoo

ScooterMagoo

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:10:12 PM

Posted 21 March 2012 - 08:53 PM

Hello,
I'm a noob to this forum, but it's my last resort and I'm at my wits end. As stated above, my desktop is infected with win32/sirefef.er, at least that is what AGV was saying. I keep getting pop ups of the threat and I can't quarentine the virus, a new window just pops up. That's how it started. I have read other threads in this forum on posible cures but got nowhere with the procedures. Now, when I restart the computer, AGV still pops up threat windows, but it displays other trojan names, not the "win32/sirefef.er" as it did originally did. I am afraid the trojan is so deeply rooted, I just turned off the computer and I am using my P.O.S. Evo N800v laptop to post here.

The computer in question is a Medion running Windows Vista Home Premium, SP2 I believe.

Any help would be appreciated.

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:12 AM

Posted 21 March 2012 - 09:10 PM

Hello and welcome. I moved this to the Am I Infected... please do these.

Please click Start > Run, type inetcpl.cpl in the runbox and press enter.
Click the Connections tab and click the LAN settings option.
Verify if "Use a proxy..." is checked, if so, UNcheck it and click OK/OK to exit.


>>>>>
I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Under scan settings, check Posted Image and check Remove found threats
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


NOTE: In some instances if no malware is found there will be no log produced.


>>>>>>>>>>>>>
Reboot into Safe Mode with Networking
How to start Windows 7 in Safe Mode


b]Run RKill[/b]....


Download and Run RKill
  • Please download RKill by Grinler from one of the 4 links below and save it to your desktop.

    Link 1
    Link 2
    Link 3
    Link 4

  • Before we begin, you should disable your anti-malware softwares you have installed so they do not interfere RKill running as some anti-malware softwares detect RKill as malicious. Please refer to this page if you are not sure how.
  • Double-click on Rkill on your desktop to run it. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • If nothing happens or if the tool does not run, please let me know in your next reply

Do not reboot your computer after running rkill as the malware programs will start again. Or if rebooting is required run it again.


If you continue having problems running rkill.com, you can download iExplore.exe or eXplorer.exe, which are renamed copies of rkill.com, and try them instead.

>>>
Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log has a name like: TDSSKiller.Version_Date_Time_log.txt.



If TDSSKiller does not run, try renaming it. To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to these[/color] instructions. In some cases it may be necessary to redownload TDSSKiller and randomly rename it before downloading and saving to the computer.


>>>
Next run MBAM (MalwareBytes):

Please download Malwarebytes Anti-Malware Posted Image and save it to your desktop.
  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.
Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you cannot update Malwarebytes or use the Internet to download any files to the infected computer, manually update the database by following the instructions in FAQ Section A: 4. Issues.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.
Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.

-- Some types of malware will target Malwarebytes and other security tools to keep them from running properly. If that's the case, go to Start > All Programs > Malwarebytes Anti-Malware folder > Tools > click on [color=blue]Malwarebytes Chameleon
and follow the onscreen instructions. The Chameleon folder can be accessed by opening the program folder for Malwarebytes Anti-Malware (normally C:\Program Files\Malwarebytes' Anti-Malware or C:\Program Files (x86)\Malwarebytes' Anti-Malware).
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 ScooterMagoo

ScooterMagoo
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:10:12 PM

Posted 21 March 2012 - 09:56 PM

Thank you for the blistering fast response. I will perform all the tasks you have listed tomorrow. You should also know, and shame on me for not listing earlier, but I ran ComboFix and MBAM last night with no results. I am not sure if this changes the advised procedure or not. But regardless, I will run the diagnostics advised by you as stated.

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:12 AM

Posted 21 March 2012 - 10:40 PM

Ok, well lets see what we get here and go from there.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 ScooterMagoo

ScooterMagoo
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:10:12 PM

Posted 23 March 2012 - 08:06 AM

Hello,
Worked on it last night. I still need to do the MBAM and will do that later today. I will be posting results soon. Thanks.

#6 ScooterMagoo

ScooterMagoo
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:10:12 PM

Posted 23 March 2012 - 03:51 PM

OK, I performed all of the procedure you have requested and here are the details of the sequence of events:

I downloaded and ran ESET Scanner
I saved the ESET Log
Rebooted into safe mode
Downloaded RKill
Ran RKill
I then lost the desktop, all my icon dissapeared.
I logged off and back on
I ran RKill again
It did the same thing
I logged of and then back on
I downloaded and ran TDSSKiller
I logged TDSSKiller log
I downloaded, updated and ran MBAM
I saved MBAM log
MBAM had me reboot
When I reboot, AVG popped up a window saying I am infected with "IDP.TROJAN.1C8D1A13"

I'm sure if I try to quarantine that virus, another window will pop up with another virus.

Below are the cut and pasted loggs you requested. They are in the order of: ESET, TDSSKiller and finally MBAM.

ESET Log:

C:\Program Files\GridinSoft Trojan Killer\trojankiller.exe a variant of Win32/1AntiVirus application cleaned by deleting - quarantined
C:\Users\Amanda\Documents\Amanda's Jams\30h3 - dont trust me.mp3 a variant of WMA/TrojanDownloader.GetCodec.gen trojan cleaned - quarantined
C:\Users\Amanda\Documents\LimeWire\Incomplete\Preview-T-5125802-12 dance lap t pain.au a variant of WMA/TrojanDownloader.GetCodec.gen trojan cleaned - quarantined
C:\Users\Amanda\Documents\LimeWire\Saved\30h3 - dont trust me.mp3 a variant of WMA/TrojanDownloader.GetCodec.gen trojan cleaned - quarantined
C:\Users\Jeremy\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\75aa825c-50946719 a variant of Java/TrojanDownloader.OpenStream.NBF trojan deleted - quarantined
C:\Users\Kimberly\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3\480f0d03-76d6baef multiple threats deleted - quarantined
C:\Users\Kimberly\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46\358ec72e-4b6723fd multiple threats deleted - quarantined
C:\Users\Nicholas\Documents\LimeWire\Saved\Second Week Of Deer Camp - Da Yoopers.wma WMA/TrojanDownloader.Wimad.NAG trojan cleaned by deleting - quarantined
C:\Users\Public\Music\Amandas File\30h3 - dont trust me.mp3 a variant of WMA/TrojanDownloader.GetCodec.gen trojan cleaned - quarantined
C:\Users\Scott\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10\71f9298a-4b989c34 Java/Exploit.CVE-2011-3544.BB trojan deleted - quarantined
C:\Users\Scott\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\20\7cf98614-41d45512 a variant of Java/Exploit.CVE-2011-3544.Q trojan deleted - quarantined
C:\Users\Scott\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\21\771f93d5-62d0cae1 a variant of Java/Exploit.Blacole.AN trojan deleted - quarantined
C:\Users\Scott\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\7cfc94e9-3a015c89 a variant of Java/TrojanDownloader.Agent.AD trojan deleted - quarantined
C:\Users\Scott\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\5ff50938-47d69497 Java/Exploit.CVE-2011-3544.AV trojan deleted - quarantined
C:\Users\Scott\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\384947c7-3f15e02b Java/Exploit.CVE-2011-3544.AN trojan deleted - quarantined
C:\Users\Scott\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\9\4af32649-35e323ac Java/Exploit.CVE-2011-3544.AA trojan deleted - quarantined
C:\Users\Scott\AppData\Roaming\AVG\Rescue\PC Tuneup 2011\101031114022113.rsc multiple threats deleted - quarantined
C:\Users\Scott\Documents\LimeWire\Saved\Billy Idol - Shooting Stars.mp3 a variant of WMA/TrojanDownloader.GetCodec.gen trojan cleaned - quarantined
C:\Users\Scott\Documents\LimeWire\Saved\cyanide (best quality).mp3 a variant of WMA/TrojanDownloader.GetCodec.gen trojan cleaned - quarantined
C:\Users\Scott\Documents\LimeWire\Saved\family guy fart contest.mp3 a variant of WMA/TrojanDownloader.GetCodec.gen trojan cleaned - quarantined
C:\Users\Scott\Documents\LimeWire\Saved\family guy fart song.mp3 a variant of WMA/TrojanDownloader.GetCodec.gen trojan cleaned - quarantined


TDSSKiller log:

21:59:36.0083 1544 TDSS rootkit removing tool 2.7.22.0 Mar 21 2012 17:40:00
21:59:36.0426 1544 ============================================================
21:59:36.0426 1544 Current date / time: 2012/03/22 21:59:36.0426
21:59:36.0426 1544 SystemInfo:
21:59:36.0426 1544
21:59:36.0426 1544 OS Version: 6.0.6002 ServicePack: 2.0
21:59:36.0426 1544 Product type: Workstation
21:59:36.0426 1544 ComputerName: OFFICE-PC
21:59:36.0426 1544 UserName: Scott
21:59:36.0426 1544 Windows directory: C:\Windows
21:59:36.0426 1544 System windows directory: C:\Windows
21:59:36.0426 1544 Processor architecture: Intel x86
21:59:36.0426 1544 Number of processors: 2
21:59:36.0426 1544 Page size: 0x1000
21:59:36.0426 1544 Boot type: Safe boot with network
21:59:36.0426 1544 ============================================================
21:59:36.0816 1544 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x950BAAC, SectorsPerTrack: 0x1, TracksPerCylinder: 0x4, Type 'K0', Flags 0x00000050
21:59:36.0847 1544 \Device\Harddisk0\DR0:
21:59:36.0847 1544 MBR used
21:59:36.0847 1544 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2242D000
21:59:36.0879 1544 \Device\Harddisk0\DR0\Partition1: MBR, Type 0xB, StartLBA 0x2242D83F, BlocksNum 0x28008F8
21:59:36.0894 1544 Initialize success
21:59:36.0894 1544 ============================================================
21:59:38.0548 1192 ============================================================
21:59:38.0548 1192 Scan started
21:59:38.0548 1192 Mode: Manual;
21:59:38.0548 1192 ============================================================
21:59:38.0953 1192 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
21:59:38.0953 1192 ACPI - ok
21:59:39.0016 1192 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
21:59:39.0016 1192 adp94xx - ok
21:59:39.0063 1192 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
21:59:39.0063 1192 adpahci - ok
21:59:39.0094 1192 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
21:59:39.0094 1192 adpu160m - ok
21:59:39.0156 1192 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
21:59:39.0156 1192 adpu320 - ok
21:59:39.0250 1192 AdvancedSystemCareService5 (e410da575ff48d976b41670c6d262a82) C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe
21:59:39.0250 1192 AdvancedSystemCareService5 - ok
21:59:39.0343 1192 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
21:59:39.0359 1192 AeLookupSvc - ok
21:59:39.0437 1192 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
21:59:39.0437 1192 AFD - ok
21:59:39.0499 1192 AgereModemAudio (39e435c90c9c4f780fa0ed05ca3c3a1b) C:\Windows\system32\agrsmsvc.exe
21:59:39.0499 1192 AgereModemAudio - ok
21:59:39.0546 1192 AgereSoftModem (7560f465f1ce69c53bf17559ee195548) C:\Windows\system32\DRIVERS\AGRSM.sys
21:59:39.0562 1192 AgereSoftModem - ok
21:59:39.0609 1192 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
21:59:39.0609 1192 aic78xx - ok
21:59:39.0687 1192 akshasp (64fc197d24a2b240598f29ce0a6660c0) C:\Windows\system32\DRIVERS\akshasp.sys
21:59:39.0687 1192 akshasp - ok
21:59:39.0749 1192 aksusb (cce6c56f18d214de8d66f3f2a774cd5b) C:\Windows\system32\DRIVERS\aksusb.sys
21:59:39.0749 1192 aksusb - ok
21:59:39.0811 1192 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
21:59:39.0811 1192 ALG - ok
21:59:39.0843 1192 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
21:59:39.0843 1192 aliide - ok
21:59:39.0889 1192 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
21:59:39.0889 1192 amdagp - ok
21:59:39.0921 1192 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
21:59:39.0921 1192 amdide - ok
21:59:39.0983 1192 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
21:59:39.0983 1192 AmdK7 - ok
21:59:40.0014 1192 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys
21:59:40.0014 1192 AmdK8 - ok
21:59:40.0077 1192 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
21:59:40.0077 1192 Appinfo - ok
21:59:40.0155 1192 Apple Mobile Device (536fcd2cec5161bfcc91cc21726b9db2) C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
21:59:40.0155 1192 Apple Mobile Device - ok
21:59:40.0248 1192 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
21:59:40.0248 1192 arc - ok
21:59:40.0264 1192 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
21:59:40.0264 1192 arcsas - ok
21:59:40.0326 1192 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
21:59:40.0326 1192 AsyncMac - ok
21:59:40.0404 1192 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
21:59:40.0404 1192 atapi - ok
21:59:40.0482 1192 athr (2846f5ee802889d500fcf5cc48b28381) C:\Windows\system32\DRIVERS\athr.sys
21:59:40.0482 1192 athr - ok
21:59:40.0545 1192 Ati External Event Utility (b081773b209c3abf6c4360f3cc0a351d) C:\Windows\system32\Ati2evxx.exe
21:59:40.0545 1192 Ati External Event Utility - ok
21:59:40.0560 1192 AtiPcie (4aa1eb65481c392955939e735d27118b) C:\Windows\system32\DRIVERS\AtiPcie.sys
21:59:40.0560 1192 AtiPcie - ok
21:59:40.0623 1192 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
21:59:40.0623 1192 AudioEndpointBuilder - ok
21:59:40.0623 1192 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
21:59:40.0623 1192 Audiosrv - ok
21:59:40.0841 1192 AVGIDSAgent (6d440ff3f44ca72edfd6176c6d6a89c0) C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
21:59:40.0872 1192 AVGIDSAgent - ok
21:59:41.0028 1192 AVGIDSDriver (4cbb56fbc9c0cbc517e6e3a6889ebddc) C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys
21:59:41.0028 1192 AVGIDSDriver - ok
21:59:41.0106 1192 AVGIDSEH (459bce188232e2fe6152423efef65d76) C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
21:59:41.0106 1192 AVGIDSEH - ok
21:59:41.0137 1192 AVGIDSFilter (91d9abe7e88eac7c167cba4ed4d983bf) C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys
21:59:41.0137 1192 AVGIDSFilter - ok
21:59:41.0200 1192 AVGIDSShim (3fc2714e185c04308215d46730d41a94) C:\Windows\system32\DRIVERS\AVGIDSShim.Sys
21:59:41.0200 1192 AVGIDSShim - ok
21:59:41.0247 1192 Avgldx86 (bf8118cd5e2255387b715b534d64acd1) C:\Windows\system32\DRIVERS\avgldx86.sys
21:59:41.0247 1192 Avgldx86 - ok
21:59:41.0293 1192 Avgmfx86 (1c77ef67f196466adc9924cb288afe87) C:\Windows\system32\DRIVERS\avgmfx86.sys
21:59:41.0293 1192 Avgmfx86 - ok
21:59:41.0325 1192 Avgrkx86 (f2038ed7284b79dcef581468121192a9) C:\Windows\system32\DRIVERS\avgrkx86.sys
21:59:41.0325 1192 Avgrkx86 - ok
21:59:41.0356 1192 Avgtdix (a6d562b612216d8d02a35ebeb92366bd) C:\Windows\system32\DRIVERS\avgtdix.sys
21:59:41.0356 1192 Avgtdix - ok
21:59:41.0465 1192 avgwd (6699ece24fe4b3f752a66c66a602ee86) C:\Program Files\AVG\AVG2012\avgwdsvc.exe
21:59:41.0481 1192 avgwd - ok
21:59:41.0559 1192 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
21:59:41.0559 1192 Beep - ok
21:59:41.0621 1192 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
21:59:41.0621 1192 BFE - ok
21:59:41.0699 1192 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\system32\qmgr.dll
21:59:41.0715 1192 BITS - ok
21:59:41.0715 1192 blbdrive - ok
21:59:41.0793 1192 Bonjour Service (73686fe0b2e0469f89fd2075be724704) C:\Program Files\Bonjour\mDNSResponder.exe
21:59:41.0793 1192 Bonjour Service - ok
21:59:41.0855 1192 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
21:59:41.0855 1192 bowser - ok
21:59:41.0886 1192 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
21:59:41.0886 1192 BrFiltLo - ok
21:59:41.0917 1192 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
21:59:41.0917 1192 BrFiltUp - ok
21:59:41.0949 1192 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
21:59:41.0949 1192 Browser - ok
21:59:41.0995 1192 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
21:59:42.0011 1192 Brserid - ok
21:59:42.0058 1192 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
21:59:42.0058 1192 BrSerWdm - ok
21:59:42.0089 1192 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
21:59:42.0089 1192 BrUsbMdm - ok
21:59:42.0136 1192 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
21:59:42.0136 1192 BrUsbSer - ok
21:59:42.0167 1192 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
21:59:42.0167 1192 BTHMODEM - ok
21:59:42.0292 1192 catchme - ok
21:59:42.0370 1192 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
21:59:42.0370 1192 cdfs - ok
21:59:42.0448 1192 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
21:59:42.0448 1192 cdrom - ok
21:59:42.0510 1192 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
21:59:42.0510 1192 CertPropSvc - ok
21:59:42.0573 1192 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
21:59:42.0573 1192 circlass - ok
21:59:42.0635 1192 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
21:59:42.0635 1192 CLFS - ok
21:59:42.0697 1192 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:59:42.0697 1192 clr_optimization_v2.0.50727_32 - ok
21:59:42.0807 1192 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:59:42.0822 1192 clr_optimization_v4.0.30319_32 - ok
21:59:42.0885 1192 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
21:59:42.0885 1192 cmdide - ok
21:59:42.0900 1192 Compbatt (82b8c91d327cfecf76cb58716f7d4997) C:\Windows\system32\drivers\compbatt.sys
21:59:42.0900 1192 Compbatt - ok
21:59:42.0947 1192 COMSysApp - ok
21:59:42.0978 1192 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
21:59:42.0978 1192 crcdisk - ok
21:59:43.0009 1192 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
21:59:43.0009 1192 Crusoe - ok
21:59:43.0119 1192 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
21:59:43.0119 1192 CryptSvc - ok
21:59:43.0165 1192 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
21:59:43.0165 1192 DcomLaunch - ok
21:59:43.0228 1192 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
21:59:43.0228 1192 DfsC - ok
21:59:43.0321 1192 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
21:59:43.0337 1192 DFSR - ok
21:59:43.0399 1192 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
21:59:43.0399 1192 Dhcp - ok
21:59:43.0477 1192 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
21:59:43.0477 1192 disk - ok
21:59:43.0540 1192 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
21:59:43.0540 1192 Dnscache - ok
21:59:43.0602 1192 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
21:59:43.0602 1192 dot3svc - ok
21:59:43.0633 1192 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
21:59:43.0633 1192 DPS - ok
21:59:43.0696 1192 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
21:59:43.0696 1192 drmkaud - ok
21:59:43.0758 1192 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
21:59:43.0758 1192 DXGKrnl - ok
21:59:43.0821 1192 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
21:59:43.0821 1192 E1G60 - ok
21:59:43.0852 1192 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
21:59:43.0852 1192 EapHost - ok
21:59:43.0914 1192 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
21:59:43.0914 1192 Ecache - ok
21:59:43.0977 1192 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
21:59:43.0977 1192 ehRecvr - ok
21:59:44.0008 1192 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
21:59:44.0008 1192 ehSched - ok
21:59:44.0039 1192 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
21:59:44.0055 1192 ehstart - ok
21:59:44.0117 1192 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
21:59:44.0117 1192 elxstor - ok
21:59:44.0179 1192 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
21:59:44.0179 1192 EMDMgmt - ok
21:59:44.0257 1192 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
21:59:44.0273 1192 EventSystem - ok
21:59:44.0320 1192 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
21:59:44.0320 1192 exfat - ok
21:59:44.0398 1192 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
21:59:44.0398 1192 fastfat - ok
21:59:44.0445 1192 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
21:59:44.0445 1192 fdc - ok
21:59:44.0476 1192 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
21:59:44.0476 1192 fdPHost - ok
21:59:44.0507 1192 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
21:59:44.0507 1192 FDResPub - ok
21:59:44.0538 1192 FETNDIS (b2b2c38e916184ff8523c7439ddd417f) C:\Windows\system32\DRIVERS\fetnd5.sys
21:59:44.0538 1192 FETNDIS - ok
21:59:44.0569 1192 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
21:59:44.0569 1192 FileInfo - ok
21:59:44.0616 1192 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
21:59:44.0616 1192 Filetrace - ok
21:59:44.0694 1192 FLEXnet Licensing Service (227846995afeefa70d328bf5334a86a5) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
21:59:44.0694 1192 FLEXnet Licensing Service - ok
21:59:44.0772 1192 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
21:59:44.0772 1192 flpydisk - ok
21:59:44.0835 1192 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
21:59:44.0835 1192 FltMgr - ok
21:59:44.0897 1192 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
21:59:44.0913 1192 FontCache - ok
21:59:44.0991 1192 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
21:59:44.0991 1192 FontCache3.0.0.0 - ok
21:59:45.0053 1192 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
21:59:45.0069 1192 Fs_Rec - ok
21:59:45.0100 1192 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
21:59:45.0100 1192 gagp30kx - ok
21:59:45.0162 1192 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:59:45.0162 1192 GEARAspiWDM - ok
21:59:45.0240 1192 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
21:59:45.0240 1192 gpsvc - ok
21:59:45.0303 1192 grmnusb (d956358054e99e6ffac69cd87e893a89) C:\Windows\system32\drivers\grmnusb.sys
21:59:45.0303 1192 grmnusb - ok
21:59:45.0412 1192 gupdate (626a24ed1228580b9518c01930936df9) C:\Program Files\Google\Update\GoogleUpdate.exe
21:59:45.0412 1192 gupdate - ok
21:59:45.0459 1192 gupdatem (626a24ed1228580b9518c01930936df9) C:\Program Files\Google\Update\GoogleUpdate.exe
21:59:45.0459 1192 gupdatem - ok
21:59:45.0490 1192 gusvc (408ddd80eede47175f6844817b90213e) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
21:59:45.0490 1192 gusvc - ok
21:59:45.0599 1192 Hardlock (995178a443b07fa9eeaea041d7b4b5ca) C:\Windows\system32\drivers\hardlock.sys
21:59:45.0599 1192 Hardlock - ok
21:59:45.0646 1192 Haspnt (2dd25f060dc9f79b5cdf33d90ed93669) C:\Windows\system32\drivers\Haspnt.sys
21:59:45.0646 1192 Haspnt - ok
21:59:45.0693 1192 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
21:59:45.0693 1192 HdAudAddService - ok
21:59:45.0786 1192 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
21:59:45.0786 1192 HDAudBus - ok
21:59:45.0802 1192 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
21:59:45.0802 1192 HidBth - ok
21:59:45.0849 1192 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
21:59:45.0849 1192 HidIr - ok
21:59:45.0927 1192 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
21:59:45.0927 1192 hidserv - ok
21:59:46.0005 1192 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
21:59:46.0005 1192 HidUsb - ok
21:59:46.0051 1192 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
21:59:46.0051 1192 hkmsvc - ok
21:59:46.0098 1192 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
21:59:46.0098 1192 HpCISSs - ok
21:59:46.0176 1192 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
21:59:46.0176 1192 HTTP - ok
21:59:46.0192 1192 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
21:59:46.0192 1192 i2omp - ok
21:59:46.0239 1192 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
21:59:46.0239 1192 i8042prt - ok
21:59:46.0270 1192 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
21:59:46.0270 1192 iaStorV - ok
21:59:46.0379 1192 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:59:46.0379 1192 idsvc - ok
21:59:46.0426 1192 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
21:59:46.0426 1192 iirsp - ok
21:59:46.0504 1192 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
21:59:46.0504 1192 IKEEXT - ok
21:59:46.0582 1192 IntcAzAudAddService (7bd4e0428776d11c8e8e26f9f5508690) C:\Windows\system32\drivers\RTKVHDA.sys
21:59:46.0597 1192 IntcAzAudAddService - ok
21:59:46.0644 1192 intelide (97469037714070e45194ed318d636401) C:\Windows\system32\drivers\intelide.sys
21:59:46.0644 1192 intelide - ok
21:59:46.0675 1192 intelppm (ce44cc04262f28216dd4341e9e36a16f) C:\Windows\system32\DRIVERS\intelppm.sys
21:59:46.0675 1192 intelppm - ok
21:59:46.0722 1192 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
21:59:46.0722 1192 IPBusEnum - ok
21:59:46.0738 1192 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:59:46.0738 1192 IpFilterDriver - ok
21:59:46.0800 1192 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
21:59:46.0800 1192 iphlpsvc - ok
21:59:46.0816 1192 IpInIp - ok
21:59:46.0831 1192 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
21:59:46.0831 1192 IPMIDRV - ok
21:59:46.0878 1192 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
21:59:46.0878 1192 IPNAT - ok
21:59:46.0941 1192 iPod Service (1e6f080d5edb4c3b4c4eb787a0848dcc) C:\Program Files\iPod\bin\iPodService.exe
21:59:46.0941 1192 iPod Service - ok
21:59:47.0019 1192 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
21:59:47.0019 1192 IRENUM - ok
21:59:47.0050 1192 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
21:59:47.0050 1192 isapnp - ok
21:59:47.0112 1192 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
21:59:47.0112 1192 iScsiPrt - ok
21:59:47.0143 1192 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
21:59:47.0143 1192 iteatapi - ok
21:59:47.0175 1192 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
21:59:47.0190 1192 iteraid - ok
21:59:47.0253 1192 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
21:59:47.0253 1192 kbdclass - ok
21:59:47.0299 1192 kbdhid (d2600cb17b7408b4a83f231dc9a11ac3) C:\Windows\system32\drivers\kbdhid.sys
21:59:47.0299 1192 kbdhid - ok
21:59:47.0346 1192 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
21:59:47.0346 1192 KeyIso - ok
21:59:47.0393 1192 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
21:59:47.0393 1192 KSecDD - ok
21:59:47.0440 1192 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
21:59:47.0440 1192 KtmRm - ok
21:59:47.0502 1192 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
21:59:47.0502 1192 LanmanServer - ok
21:59:47.0565 1192 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
21:59:47.0565 1192 LanmanWorkstation - ok
21:59:47.0658 1192 LightScribeService (6e5dac168d1ff9843e84a59d51d31107) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
21:59:47.0658 1192 LightScribeService - ok
21:59:47.0767 1192 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
21:59:47.0767 1192 lltdio - ok
21:59:47.0814 1192 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
21:59:47.0814 1192 lltdsvc - ok
21:59:47.0861 1192 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
21:59:47.0861 1192 lmhosts - ok
21:59:47.0923 1192 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
21:59:47.0923 1192 LSI_FC - ok
21:59:47.0955 1192 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
21:59:47.0955 1192 LSI_SAS - ok
21:59:48.0001 1192 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
21:59:48.0001 1192 LSI_SCSI - ok
21:59:48.0064 1192 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
21:59:48.0064 1192 luafv - ok
21:59:48.0111 1192 lxdcCATSCustConnectService (e9251eb760bd49aa99cdac57569278b7) C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxdcserv.exe
21:59:48.0111 1192 lxdcCATSCustConnectService - ok
21:59:48.0126 1192 lxdc_device - ok
21:59:48.0204 1192 McciCMService (e6cb119ef2e148eaa1a247343550756e) C:\Program Files\Common Files\Motive\McciCMService.exe
21:59:48.0204 1192 McciCMService - ok
21:59:48.0282 1192 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2svc.dll
21:59:48.0298 1192 Mcx2Svc - ok
21:59:48.0345 1192 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
21:59:48.0345 1192 megasas - ok
21:59:48.0454 1192 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
21:59:48.0454 1192 Microsoft Office Groove Audit Service - ok
21:59:48.0516 1192 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
21:59:48.0516 1192 MMCSS - ok
21:59:48.0579 1192 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
21:59:48.0579 1192 Modem - ok
21:59:48.0625 1192 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
21:59:48.0625 1192 monitor - ok
21:59:48.0688 1192 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
21:59:48.0688 1192 mouclass - ok
21:59:48.0735 1192 mouhid (a3a6dff7e9e757db3df51a833bc28885) C:\Windows\system32\drivers\mouhid.sys
21:59:48.0735 1192 mouhid - ok
21:59:48.0813 1192 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
21:59:48.0813 1192 MountMgr - ok
21:59:48.0828 1192 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
21:59:48.0828 1192 mpio - ok
21:59:48.0875 1192 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
21:59:48.0875 1192 mpsdrv - ok
21:59:48.0953 1192 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
21:59:48.0953 1192 MpsSvc - ok
21:59:48.0984 1192 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
21:59:48.0984 1192 Mraid35x - ok
21:59:49.0062 1192 MREMP50 (9bd4dcb5412921864a7aacdedfbd1923) C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
21:59:49.0062 1192 MREMP50 - ok
21:59:49.0078 1192 MREMPR5 - ok
21:59:49.0109 1192 MRENDIS5 - ok
21:59:49.0140 1192 MRESP50 (07c02c892e8e1a72d6bf35004f0e9c5e) C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
21:59:49.0140 1192 MRESP50 - ok
21:59:49.0249 1192 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
21:59:49.0249 1192 MRxDAV - ok
21:59:49.0312 1192 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:59:49.0312 1192 mrxsmb - ok
21:59:49.0374 1192 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:59:49.0374 1192 mrxsmb10 - ok
21:59:49.0390 1192 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:59:49.0390 1192 mrxsmb20 - ok
21:59:49.0437 1192 msahci (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys
21:59:49.0437 1192 msahci - ok
21:59:49.0468 1192 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
21:59:49.0468 1192 msdsm - ok
21:59:49.0515 1192 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
21:59:49.0515 1192 MSDTC - ok
21:59:49.0593 1192 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
21:59:49.0593 1192 Msfs - ok
21:59:49.0624 1192 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
21:59:49.0624 1192 msisadrv - ok
21:59:49.0702 1192 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
21:59:49.0702 1192 MSiSCSI - ok
21:59:49.0733 1192 msiserver - ok
21:59:49.0780 1192 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
21:59:49.0780 1192 MSKSSRV - ok
21:59:49.0827 1192 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
21:59:49.0827 1192 MSPCLOCK - ok
21:59:49.0858 1192 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
21:59:49.0858 1192 MSPQM - ok
21:59:49.0920 1192 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
21:59:49.0920 1192 MsRPC - ok
21:59:49.0983 1192 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
21:59:49.0983 1192 mssmbios - ok
21:59:50.0092 1192 MSSQL$INFLOWSQL - ok
21:59:50.0139 1192 MSSQLServerADHelper (1d89eb4e2a99cabd4e81225f4f4c4b25) c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
21:59:50.0139 1192 MSSQLServerADHelper - ok
21:59:50.0201 1192 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
21:59:50.0201 1192 MSTEE - ok
21:59:50.0263 1192 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
21:59:50.0263 1192 Mup - ok
21:59:50.0326 1192 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
21:59:50.0326 1192 napagent - ok
21:59:50.0388 1192 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
21:59:50.0388 1192 NativeWifiP - ok
21:59:50.0482 1192 NBService (9576cc8e84f7ceda9189cdda1cfd4bc1) C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
21:59:50.0482 1192 NBService - ok
21:59:50.0607 1192 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
21:59:50.0607 1192 NDIS - ok
21:59:50.0638 1192 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
21:59:50.0638 1192 NdisTapi - ok
21:59:50.0685 1192 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
21:59:50.0685 1192 Ndisuio - ok
21:59:50.0747 1192 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
21:59:50.0747 1192 NdisWan - ok
21:59:50.0794 1192 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
21:59:50.0794 1192 NDProxy - ok
21:59:50.0872 1192 NEOFLTR_610_13103 (753c386ef3666fe4002dc21c826608cf) C:\Windows\system32\Drivers\NEOFLTR_610_13103.SYS
21:59:50.0872 1192 NEOFLTR_610_13103 - ok
21:59:50.0919 1192 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
21:59:50.0934 1192 NetBIOS - ok
21:59:50.0950 1192 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
21:59:50.0965 1192 netbt - ok
21:59:50.0997 1192 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
21:59:50.0997 1192 Netlogon - ok
21:59:51.0059 1192 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
21:59:51.0059 1192 Netman - ok
21:59:51.0106 1192 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
21:59:51.0106 1192 netprofm - ok
21:59:51.0215 1192 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:59:51.0215 1192 NetTcpPortSharing - ok
21:59:51.0293 1192 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
21:59:51.0293 1192 nfrd960 - ok
21:59:51.0324 1192 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
21:59:51.0324 1192 NlaSvc - ok
21:59:51.0402 1192 NMIndexingService (c4ebbbd7165be535f0bfd06b80601d91) C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
21:59:51.0402 1192 NMIndexingService - ok
21:59:51.0449 1192 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
21:59:51.0449 1192 Npfs - ok
21:59:51.0480 1192 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
21:59:51.0480 1192 nsi - ok
21:59:51.0527 1192 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
21:59:51.0527 1192 nsiproxy - ok
21:59:51.0636 1192 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
21:59:51.0636 1192 Ntfs - ok
21:59:51.0699 1192 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
21:59:51.0699 1192 ntrigdigi - ok
21:59:51.0745 1192 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
21:59:51.0745 1192 Null - ok
21:59:51.0995 1192 nvlddmkm (377140a534d013bd661c69f1741de43c) C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:59:52.0057 1192 nvlddmkm - ok
21:59:52.0120 1192 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
21:59:52.0120 1192 nvraid - ok
21:59:52.0167 1192 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
21:59:52.0167 1192 nvstor - ok
21:59:52.0229 1192 nvsvc (4ed813efd77a9b7e57e341cdc1c5cbc4) C:\Windows\system32\nvvsvc.exe
21:59:52.0229 1192 nvsvc - ok
21:59:52.0291 1192 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
21:59:52.0291 1192 nv_agp - ok
21:59:52.0291 1192 NwlnkFlt - ok
21:59:52.0338 1192 NwlnkFwd - ok
21:59:52.0432 1192 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:59:52.0447 1192 odserv - ok
21:59:52.0541 1192 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
21:59:52.0541 1192 ohci1394 - ok
21:59:52.0588 1192 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:59:52.0603 1192 ose - ok
21:59:52.0681 1192 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
21:59:52.0681 1192 p2pimsvc - ok
21:59:52.0697 1192 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
21:59:52.0713 1192 p2psvc - ok
21:59:52.0806 1192 Par1284 (e2f8c7e5afe897700a57f45b7e680157) C:\Program Files\VE LXi Master 6\Program\Par1284.sys
21:59:52.0806 1192 Par1284 - ok
21:59:52.0884 1192 Parport (8a79fdf04a73428597e2caf9d0d67850) C:\Windows\system32\DRIVERS\parport.sys
21:59:52.0884 1192 Parport - ok
21:59:52.0931 1192 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
21:59:52.0931 1192 partmgr - ok
21:59:52.0993 1192 Parvdm (6c580025c81caf3ae9e3617c22cad00e) C:\Windows\system32\DRIVERS\parvdm.sys
21:59:52.0993 1192 Parvdm - ok
21:59:53.0025 1192 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
21:59:53.0040 1192 PcaSvc - ok
21:59:53.0103 1192 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
21:59:53.0103 1192 pci - ok
21:59:53.0118 1192 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
21:59:53.0118 1192 pciide - ok
21:59:53.0165 1192 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
21:59:53.0165 1192 pcmcia - ok
21:59:53.0227 1192 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
21:59:53.0227 1192 PEAUTH - ok
21:59:53.0337 1192 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
21:59:53.0352 1192 pla - ok
21:59:53.0415 1192 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
21:59:53.0415 1192 PlugPlay - ok
21:59:53.0477 1192 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
21:59:53.0477 1192 PNRPAutoReg - ok
21:59:53.0524 1192 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
21:59:53.0524 1192 PNRPsvc - ok
21:59:53.0602 1192 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
21:59:53.0602 1192 PolicyAgent - ok
21:59:53.0649 1192 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
21:59:53.0664 1192 PptpMiniport - ok
21:59:53.0680 1192 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
21:59:53.0680 1192 Processor - ok
21:59:53.0758 1192 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
21:59:53.0758 1192 ProfSvc - ok
21:59:53.0773 1192 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
21:59:53.0773 1192 ProtectedStorage - ok
21:59:53.0867 1192 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
21:59:53.0867 1192 PSched - ok
21:59:53.0976 1192 PSI_SVC_2 (543a4ef0923bf70d126625b034ef25af) c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
21:59:53.0976 1192 PSI_SVC_2 - ok
21:59:54.0054 1192 PxHelp20 (49452bfcec22f36a7a9b9c2181bc3042) C:\Windows\system32\Drivers\PxHelp20.sys
21:59:54.0054 1192 PxHelp20 - ok
21:59:54.0117 1192 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
21:59:54.0117 1192 ql2300 - ok
21:59:54.0132 1192 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
21:59:54.0132 1192 ql40xx - ok
21:59:54.0179 1192 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
21:59:54.0179 1192 QWAVE - ok
21:59:54.0288 1192 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
21:59:54.0288 1192 QWAVEdrv - ok
21:59:54.0366 1192 R300 (2017a1bea320814fdd75a637bd3f101a) C:\Windows\system32\DRIVERS\atikmdag.sys
21:59:54.0382 1192 R300 - ok
21:59:54.0413 1192 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
21:59:54.0413 1192 RasAcd - ok
21:59:54.0460 1192 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
21:59:54.0475 1192 RasAuto - ok
21:59:54.0522 1192 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:59:54.0522 1192 Rasl2tp - ok
21:59:54.0585 1192 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
21:59:54.0585 1192 RasMan - ok
21:59:54.0631 1192 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
21:59:54.0631 1192 RasPppoe - ok
21:59:54.0694 1192 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
21:59:54.0694 1192 RasSstp - ok
21:59:54.0756 1192 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
21:59:54.0756 1192 rdbss - ok
21:59:54.0803 1192 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:59:54.0803 1192 RDPCDD - ok
21:59:54.0881 1192 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
21:59:54.0881 1192 rdpdr - ok
21:59:54.0928 1192 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
21:59:54.0928 1192 RDPENCDD - ok
21:59:54.0990 1192 RDPWD (79c6df8477250f5c54f7c5ae1d6b814e) C:\Windows\system32\drivers\RDPWD.sys
21:59:54.0990 1192 RDPWD - ok
21:59:55.0021 1192 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
21:59:55.0021 1192 RemoteAccess - ok
21:59:55.0099 1192 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
21:59:55.0115 1192 RemoteRegistry - ok
21:59:55.0193 1192 RichVideo (4d05898896ec49cf663dda61041ab096) C:\Program Files\CyberLink\Shared Files\RichVideo.exe
21:59:55.0193 1192 RichVideo - ok
21:59:55.0302 1192 RimUsb (f17713d108aca124a139fde877eef68a) C:\Windows\system32\Drivers\RimUsb.sys
21:59:55.0302 1192 RimUsb - ok
21:59:55.0333 1192 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
21:59:55.0333 1192 RpcLocator - ok
21:59:55.0396 1192 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
21:59:55.0396 1192 RpcSs - ok
21:59:55.0458 1192 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
21:59:55.0458 1192 rspndr - ok
21:59:55.0489 1192 RTHDMIAzAudService (9bb3b278b082acd7dad7b6f4fa442e30) C:\Windows\system32\drivers\RtHDMIV.sys
21:59:55.0489 1192 RTHDMIAzAudService - ok
21:59:55.0552 1192 RTL8169 (2d19a7469ea19993d0c12e627f4530bc) C:\Windows\system32\DRIVERS\Rtlh86.sys
21:59:55.0552 1192 RTL8169 - ok
21:59:55.0599 1192 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
21:59:55.0599 1192 SamSs - ok
21:59:55.0645 1192 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
21:59:55.0645 1192 sbp2port - ok
21:59:55.0739 1192 SBSDWSCService (794d4b48dfb6e999537c7c3947863463) C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
21:59:55.0739 1192 SBSDWSCService - ok
21:59:55.0833 1192 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
21:59:55.0833 1192 SCardSvr - ok
21:59:55.0879 1192 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
21:59:55.0879 1192 Schedule - ok
21:59:55.0957 1192 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
21:59:55.0957 1192 SCPolicySvc - ok
21:59:56.0004 1192 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
21:59:56.0004 1192 SDRSVC - ok
21:59:56.0129 1192 SeaPort (331e7bde228914574fc9ae6cd520dafa) C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
21:59:56.0145 1192 SeaPort - ok
21:59:56.0223 1192 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
21:59:56.0223 1192 secdrv - ok
21:59:56.0269 1192 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
21:59:56.0285 1192 seclogon - ok
21:59:56.0301 1192 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\system32\sens.dll
21:59:56.0301 1192 SENS - ok
21:59:56.0347 1192 Sentinel (99c81af18c0bf4d3b2ce0b36941e150f) C:\Windows\System32\Drivers\SENTINEL.SYS
21:59:56.0347 1192 Sentinel - ok
21:59:56.0394 1192 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys
21:59:56.0394 1192 Serenum - ok
21:59:56.0457 1192 Serial (6d663022db3e7058907784ae14b69898) C:\Windows\system32\DRIVERS\serial.sys
21:59:56.0457 1192 Serial - ok
21:59:56.0519 1192 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
21:59:56.0519 1192 sermouse - ok
21:59:56.0597 1192 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
21:59:56.0597 1192 SessionEnv - ok
21:59:56.0644 1192 sffdisk (103b79418da647736ee95645f305f68a) C:\Windows\system32\drivers\sffdisk.sys
21:59:56.0644 1192 sffdisk - ok
21:59:56.0691 1192 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
21:59:56.0691 1192 sffp_mmc - ok
21:59:56.0706 1192 sffp_sd (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\drivers\sffp_sd.sys
21:59:56.0706 1192 sffp_sd - ok
21:59:56.0753 1192 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
21:59:56.0753 1192 sfloppy - ok
21:59:56.0831 1192 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
21:59:56.0831 1192 SharedAccess - ok
21:59:56.0893 1192 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
21:59:56.0909 1192 ShellHWDetection - ok
21:59:56.0940 1192 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
21:59:56.0940 1192 SiSRaid2 - ok
21:59:56.0987 1192 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
21:59:56.0987 1192 SiSRaid4 - ok
21:59:57.0096 1192 Slacker Portable Service (0ef733f5e0b68037d171bf9a96de0bc9) C:\Program Files\Slacker\USB Station Refresher\slacker.portable.service.exe
21:59:57.0096 1192 Slacker Portable Service - ok
21:59:57.0205 1192 slkrbus (d91aa23cfdba720e690907032a079df1) C:\Windows\system32\DRIVERS\slkrbus.sys
21:59:57.0205 1192 slkrbus - ok
21:59:57.0252 1192 slkrnd5 (582721657bf99b72bbabc2c660dfdc57) C:\Windows\system32\DRIVERS\slkrnd5.sys
21:59:57.0252 1192 slkrnd5 - ok
21:59:57.0330 1192 slkrunic (cb0398af970721fa25b4adc109927c97) C:\Windows\system32\DRIVERS\slkrunic.sys
21:59:57.0330 1192 slkrunic - ok
21:59:57.0471 1192 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
21:59:57.0486 1192 slsvc - ok
21:59:57.0580 1192 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
21:59:57.0580 1192 SLUINotify - ok
21:59:57.0673 1192 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
21:59:57.0673 1192 Smb - ok
21:59:57.0720 1192 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
21:59:57.0736 1192 SNMPTRAP - ok
21:59:57.0783 1192 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
21:59:57.0783 1192 spldr - ok
21:59:57.0845 1192 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
21:59:57.0845 1192 Spooler - ok
21:59:57.0954 1192 SQLBrowser (86ebd8b1f23e743aad21f4d5b4d40985) c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
21:59:57.0954 1192 SQLBrowser - ok
21:59:58.0001 1192 SQLWriter (d89083c4eb02daca8f944b0e05e57f9d) c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
21:59:58.0001 1192 SQLWriter - ok
21:59:58.0110 1192 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
21:59:58.0110 1192 srv - ok
21:59:58.0173 1192 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
21:59:58.0173 1192 srv2 - ok
21:59:58.0219 1192 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
21:59:58.0219 1192 srvnet - ok
21:59:58.0266 1192 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
21:59:58.0266 1192 SSDPSRV - ok
21:59:58.0313 1192 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
21:59:58.0313 1192 SstpSvc - ok
21:59:58.0391 1192 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
21:59:58.0407 1192 stisvc - ok
21:59:58.0453 1192 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
21:59:58.0453 1192 swenum - ok
21:59:58.0500 1192 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
21:59:58.0516 1192 swprv - ok
21:59:58.0547 1192 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
21:59:58.0547 1192 Symc8xx - ok
21:59:58.0578 1192 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
21:59:58.0578 1192 Sym_hi - ok
21:59:58.0594 1192 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
21:59:58.0594 1192 Sym_u3 - ok
21:59:58.0672 1192 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
21:59:58.0687 1192 SysMain - ok
21:59:58.0734 1192 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
21:59:58.0734 1192 TabletInputService - ok
21:59:58.0812 1192 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
21:59:58.0812 1192 TapiSrv - ok
21:59:58.0843 1192 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
21:59:58.0843 1192 TBS - ok
21:59:58.0937 1192 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
21:59:58.0937 1192 Tcpip - ok
21:59:58.0999 1192 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
21:59:59.0015 1192 Tcpip6 - ok
21:59:59.0062 1192 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
21:59:59.0062 1192 tcpipreg - ok
21:59:59.0124 1192 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
21:59:59.0124 1192 TDPIPE - ok
21:59:59.0140 1192 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
21:59:59.0140 1192 TDTCP - ok
21:59:59.0218 1192 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
21:59:59.0218 1192 tdx - ok
21:59:59.0249 1192 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
21:59:59.0249 1192 TermDD - ok
21:59:59.0296 1192 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
21:59:59.0311 1192 TermService - ok
21:59:59.0358 1192 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
21:59:59.0358 1192 Themes - ok
21:59:59.0405 1192 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
21:59:59.0405 1192 THREADORDER - ok
21:59:59.0436 1192 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
21:59:59.0436 1192 TrkWks - ok
21:59:59.0483 1192 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
21:59:59.0483 1192 TrustedInstaller - ok
21:59:59.0545 1192 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:59:59.0561 1192 tssecsrv - ok
21:59:59.0592 1192 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
21:59:59.0592 1192 tunmp - ok
21:59:59.0639 1192 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
21:59:59.0639 1192 tunnel - ok
21:59:59.0670 1192 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\DRIVERS\uagp35.sys
21:59:59.0670 1192 uagp35 - ok
21:59:59.0717 1192 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
21:59:59.0717 1192 udfs - ok
21:59:59.0764 1192 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
21:59:59.0764 1192 UI0Detect - ok
21:59:59.0811 1192 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
21:59:59.0811 1192 uliagpkx - ok
21:59:59.0842 1192 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
21:59:59.0842 1192 uliahci - ok
21:59:59.0873 1192 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
21:59:59.0873 1192 UlSata - ok
21:59:59.0904 1192 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
21:59:59.0904 1192 ulsata2 - ok
21:59:59.0982 1192 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
21:59:59.0982 1192 umbus - ok
22:00:00.0029 1192 UMPass (88bd96a1baeed33ee8bdf9499c07a841) C:\Windows\system32\DRIVERS\umpass.sys
22:00:00.0029 1192 UMPass - ok
22:00:00.0107 1192 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
22:00:00.0107 1192 upnphost - ok
22:00:00.0169 1192 USA19H (6d1e41657fdb48f9147598c773297513) C:\Windows\system32\DRIVERS\USA19H2k.sys
22:00:00.0185 1192 USA19H - ok
22:00:00.0216 1192 USA19H2KP (8a217fc16dd14ab8ad2eaa1f08b3b5c5) C:\Windows\system32\DRIVERS\USA19H2kp.SYS
22:00:00.0216 1192 USA19H2KP - ok
22:00:00.0294 1192 USBAAPL (1df89c499bf45d878b87ebd4421d462d) C:\Windows\system32\Drivers\usbaapl.sys
22:00:00.0294 1192 USBAAPL - ok
22:00:00.0341 1192 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
22:00:00.0341 1192 usbccgp - ok
22:00:00.0419 1192 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
22:00:00.0419 1192 usbcir - ok
22:00:00.0497 1192 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
22:00:00.0497 1192 usbehci - ok
22:00:00.0559 1192 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
22:00:00.0559 1192 usbhub - ok
22:00:00.0606 1192 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
22:00:00.0606 1192 usbohci - ok
22:00:00.0637 1192 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
22:00:00.0637 1192 usbprint - ok
22:00:00.0684 1192 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
22:00:00.0684 1192 usbscan - ok
22:00:00.0731 1192 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:00:00.0731 1192 USBSTOR - ok
22:00:00.0793 1192 usbuhci (325dbbacb8a36af9988ccf40eac228cc) C:\Windows\system32\DRIVERS\usbuhci.sys
22:00:00.0793 1192 usbuhci - ok
22:00:00.0825 1192 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
22:00:00.0840 1192 usbvideo - ok
22:00:00.0903 1192 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
22:00:00.0903 1192 UxSms - ok
22:00:00.0965 1192 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
22:00:00.0981 1192 vds - ok
22:00:01.0043 1192 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
22:00:01.0043 1192 vga - ok
22:00:01.0090 1192 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
22:00:01.0090 1192 VgaSave - ok
22:00:01.0137 1192 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
22:00:01.0137 1192 viaagp - ok
22:00:01.0152 1192 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
22:00:01.0152 1192 ViaC7 - ok
22:00:01.0199 1192 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
22:00:01.0215 1192 viaide - ok
22:00:01.0293 1192 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
22:00:01.0293 1192 volmgr - ok
22:00:01.0339 1192 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
22:00:01.0355 1192 volmgrx - ok
22:00:01.0417 1192 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
22:00:01.0417 1192 volsnap - ok
22:00:01.0464 1192 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
22:00:01.0464 1192 vsmraid - ok
22:00:01.0558 1192 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
22:00:01.0573 1192 VSS - ok
22:00:01.0651 1192 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
22:00:01.0651 1192 W32Time - ok
22:00:01.0745 1192 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
22:00:01.0761 1192 WacomPen - ok
22:00:01.0776 1192 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:00:01.0776 1192 Wanarp - ok
22:00:01.0792 1192 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:00:01.0792 1192 Wanarpv6 - ok
22:00:01.0839 1192 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
22:00:01.0854 1192 wcncsvc - ok
22:00:01.0870 1192 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
22:00:01.0885 1192 WcsPlugInService - ok
22:00:01.0932 1192 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
22:00:01.0932 1192 Wd - ok
22:00:01.0995 1192 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
22:00:01.0995 1192 Wdf01000 - ok
22:00:02.0041 1192 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
22:00:02.0041 1192 WdiServiceHost - ok
22:00:02.0073 1192 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
22:00:02.0073 1192 WdiSystemHost - ok
22:00:02.0151 1192 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
22:00:02.0166 1192 WebClient - ok
22:00:02.0213 1192 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
22:00:02.0213 1192 Wecsvc - ok
22:00:02.0229 1192 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
22:00:02.0244 1192 wercplsupport - ok
22:00:02.0307 1192 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
22:00:02.0307 1192 WerSvc - ok
22:00:02.0385 1192 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
22:00:02.0385 1192 WinDefend - ok
22:00:02.0400 1192 WinHttpAutoProxySvc - ok
22:00:02.0525 1192 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
22:00:02.0525 1192 Winmgmt - ok
22:00:02.0587 1192 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
22:00:02.0603 1192 WinRM - ok
22:00:02.0712 1192 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
22:00:02.0728 1192 Wlansvc - ok
22:00:02.0821 1192 wlidsvc (0a70f4022ec2e14c159efc4f69aa2477) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:00:02.0837 1192 wlidsvc - ok
22:00:02.0884 1192 WmiAcpi (701a9f884a294327e9141d73746ee279) C:\Windows\system32\drivers\wmiacpi.sys
22:00:02.0884 1192 WmiAcpi - ok
22:00:02.0962 1192 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
22:00:02.0962 1192 wmiApSrv - ok
22:00:03.0040 1192 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
22:00:03.0055 1192 WMPNetworkSvc - ok
22:00:03.0165 1192 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
22:00:03.0180 1192 WPCSvc - ok
22:00:03.0243 1192 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
22:00:03.0258 1192 WPDBusEnum - ok
22:00:03.0321 1192 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
22:00:03.0321 1192 WpdUsb - ok
22:00:03.0492 1192 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
22:00:03.0492 1192 WPFFontCache_v0400 - ok
22:00:03.0570 1192 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
22:00:03.0570 1192 ws2ifsl - ok
22:00:03.0617 1192 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\System32\wscsvc.dll
22:00:03.0617 1192 wscsvc - ok
22:00:03.0648 1192 WSearch - ok
22:00:03.0742 1192 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
22:00:03.0757 1192 wuauserv - ok
22:00:03.0789 1192 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:00:03.0789 1192 WUDFRd - ok
22:00:03.0851 1192 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
22:00:03.0851 1192 wudfsvc - ok
22:00:03.0882 1192 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
22:00:03.0913 1192 \Device\Harddisk0\DR0 - ok
22:00:03.0929 1192 Boot (0x1200) (5515db3dcd1813afba933beafe1e80d9) \Device\Harddisk0\DR0\Partition0
22:00:03.0929 1192 \Device\Harddisk0\DR0\Partition0 - ok
22:00:03.0945 1192 Boot (0x1200) (608559a2df7aa6b6fa477b24d8dd1239) \Device\Harddisk0\DR0\Partition1
22:00:03.0945 1192 \Device\Harddisk0\DR0\Partition1 - ok
22:00:03.0945 1192 ============================================================
22:00:03.0945 1192 Scan finished
22:00:03.0945 1192 ============================================================
22:00:03.0976 0384 Detected object count: 0
22:00:03.0976 0384 Actual detected object count: 0


MBAM report:

Malwarebytes Anti-Malware (Trial) 1.60.1.1000
www.malwarebytes.org

Database version: v2012.03.23.04

Windows Vista Service Pack 2 x86 NTFS (Safe Mode/Networking)
Internet Explorer 8.0.6001.19190
Scott :: OFFICE-PC [administrator]

Protection: Disabled

3/23/2012 3:23:57 PM
mbam-log-2012-03-23 (15-23-57).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 839122
Time elapsed: 5 minute(s), 57 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce|GrpConv (Trojan.Agent.Gen) -> Data: grpconv -o -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\Windows\System32\grpconv.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.

(end)

#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:12 AM

Posted 23 March 2012 - 07:56 PM

OK, this looks a llot better. tu be certain there is no Siref,please click HERE and click run.


Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.


How is it running now?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 ScooterMagoo

ScooterMagoo
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:10:12 PM

Posted 24 March 2012 - 08:08 AM

I ran the 2 bits of software you advised me to. I ran the sirefef removal tool, it looks like there was no sirefef on my disk. I ran the minitoolbox, results are below. I rebooted after I ran minitoolbox. AVG poped up a few windows saying I still have a virus, but this time, I desided to choose to quarentine the viruses, as AVG suggests. I had 4 or 5 of these windows pop up...........and that was it. They are all gone, no more pop up windows! The computer appears to be clean, and actually seems to run faster! To verify, I rebooted the computer and had no pop ups upon restart.

How can I thank you? You saved the day! YOU ROCK!!!!!! I sure hope you get paid in some way to do this. My local computer guy was going to charge me 100 bucks just to walk in the door. RIP OFF!

Thanks, times a 1,000,000!

ANy suggestions on an anti-virus software that works? Is AGV adiquate? Do you have any suggestions on how to optimize my computer so it runs even faster?

MiniToolBox by Farbar Version: 18-01-2012
Ran by Scott (administrator) on 24-03-2012 at 07:35:13
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1001namen.com
127.0.0.1 1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com

There are 15003 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Atheros AR5007EG Wireless Network Adapter = Wireless Network Connection (Disconnected)
Realtek PCIe GBE Family Controller = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add address name="Local Area Connection 2" address=192.168.0.1
add address name="Local Area Connection 3" address=192.168.0.1


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Office-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : gateway.2wire.net

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : gateway.2wire.net
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 00-19-DB-BD-98-F5
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::d163:3b1f:41d0:8313%9(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.64(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Saturday, March 24, 2012 7:27:10 AM
Lease Expires . . . . . . . . . . : Sunday, March 25, 2012 7:27:09 AM
Default Gateway . . . . . . . . . : 192.168.1.254
DHCP Server . . . . . . . . . . . : 192.168.1.254
DHCPv6 IAID . . . . . . . . . . . : 218110427
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-0F-74-7F-02-00-19-DB-BD-98-F5
DNS Servers . . . . . . . . . . . : 192.168.1.254
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 7:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : gateway.2wire.net
Description . . . . . . . . . . . : isatap.gateway.2wire.net
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fb:3cac:1984:3f57:febf(Preferred)
Link-local IPv6 Address . . . . . : fe80::3cac:1984:3f57:febf%8(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 13:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 6TO4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 14:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{F830598A-1DFE-4915-B15D-9AC94ED81FA0}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: homeportal
Address: 192.168.1.254

Name: google.com
Addresses: 74.125.225.1
74.125.225.2
74.125.225.3
74.125.225.4
74.125.225.5
74.125.225.6
74.125.225.7
74.125.225.8
74.125.225.9
74.125.225.14
74.125.225.0



Pinging google.com [74.125.225.14] with 32 bytes of data:

Reply from 74.125.225.14: bytes=32 time=19ms TTL=55

Reply from 74.125.225.14: bytes=32 time=17ms TTL=55



Ping statistics for 74.125.225.14:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 17ms, Maximum = 19ms, Average = 18ms

Server: homeportal
Address: 192.168.1.254

Name: yahoo.com
Addresses: 98.139.183.24
209.191.122.70
72.30.38.140



Pinging yahoo.com [209.191.122.70] with 32 bytes of data:

Reply from 209.191.122.70: bytes=32 time=61ms TTL=44

Reply from 209.191.122.70: bytes=32 time=59ms TTL=44



Ping statistics for 209.191.122.70:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 59ms, Maximum = 61ms, Average = 60ms

Server: homeportal
Address: 192.168.1.254

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time=8ms TTL=128

Reply from 127.0.0.1: bytes=32 time=2ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 2ms, Maximum = 8ms, Average = 5ms

===========================================================================
Interface List
9 ...00 19 db bd 98 f5 ...... Realtek PCIe GBE Family Controller
1 ........................... Software Loopback Interface 1
17 ...00 00 00 00 00 00 00 e0 isatap.gateway.2wire.net
8 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
18 ...00 00 00 00 00 00 00 e0 6TO4 Adapter
16 ...00 00 00 00 00 00 00 e0 isatap.{F830598A-1DFE-4915-B15D-9AC94ED81FA0}
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.64 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
169.254.0.0 255.255.0.0 On-link 192.168.1.64 30
169.254.255.255 255.255.255.255 On-link 192.168.1.64 276
192.168.1.0 255.255.255.0 On-link 192.168.1.64 276
192.168.1.64 255.255.255.255 On-link 192.168.1.64 276
192.168.1.255 255.255.255.255 On-link 192.168.1.64 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.64 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.64 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
8 18 ::/0 On-link
1 306 ::1/128 On-link
8 18 2001::/32 On-link
8 266 2001:0:5ef5:79fb:3cac:1984:3f57:febf/128
On-link
9 276 fe80::/64 On-link
8 266 fe80::/64 On-link
8 266 fe80::3cac:1984:3f57:febf/128
On-link
9 276 fe80::d163:3b1f:41d0:8313/128
On-link
1 306 ff00::/8 On-link
8 266 ff00::/8 On-link
9 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Program Files\Juniper Networks\Secure Application Manager\samnsp.dll [71032] (Juniper Networks)
Catalog5 02 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 06 C:\Program Files\Juniper Networks\Secure Application Manager\samnsp.dll [71032] (Juniper Networks)
Catalog5 07 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 08 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [94208] (Apple Computer, Inc.)
Catalog9 01 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 32 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 33 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 34 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 35 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 36 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 37 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 38 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 39 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 40 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 41 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 42 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 43 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/24/2012 07:30:12 AM) (Source: Perflib) (User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4

Error: (03/24/2012 07:29:59 AM) (Source: Perflib) (User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4

Error: (03/24/2012 07:28:23 AM) (Source: Application Error) (User: )
Description: Faulting application wmplayer.exe, version 11.0.6002.18311, time stamp 0x4c8e2d72, faulting module unknown, version 0.0.0.0, time stamp 0x00000000, exception code 0xc0000005, fault offset 0x04642d2f,
process id 0xab0, application start time 0xwmplayer.exe0.

Error: (03/23/2012 03:17:59 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (03/23/2012 03:15:17 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (03/22/2012 09:48:29 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (03/22/2012 09:46:31 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (03/22/2012 09:43:30 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 0.0.0.0, time stamp 0x4d334d98, faulting module iexplore.exe, version 0.0.0.0, time stamp 0x4d334d98, exception code 0x40000015, fault offset 0x0008cb40,
process id 0x4dc, application start time 0xiexplore.exe0.

Error: (03/22/2012 09:38:05 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (03/22/2012 09:34:16 PM) (Source: EventSystem) (User: )
Description: 80070005EventSystem.EventSubscription{CEB8B221-89C5-41A8-98CE-79B413BF150B}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}


System errors:
=============
Error: (03/24/2012 07:33:58 AM) (Source: Service Control Manager) (User: )
Description: Windows Update

Error: (03/24/2012 07:27:55 AM) (Source: Service Control Manager) (User: )
Description: Sentinel%%20

Error: (03/24/2012 07:26:36 AM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: SYSTEM)
Description:

Error: (03/23/2012 03:34:06 PM) (Source: Service Control Manager) (User: )
Description: Sentinel%%20

Error: (03/23/2012 03:33:18 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: SYSTEM)
Description:

Error: (03/23/2012 03:15:36 PM) (Source: Service Control Manager) (User: )
Description: Avgldx86
Avgmfx86
spldr
Wanarpv6

Error: (03/23/2012 03:15:36 PM) (Source: Service Control Manager) (User: )
Description: Computer BrowserServer%%1068

Error: (03/23/2012 03:15:23 PM) (Source: DCOM) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}

Error: (03/23/2012 03:15:20 PM) (Source: DCOM) (User: )
Description: 1068fdPHost{145B4335-FE2A-4927-A040-7C35AD3180EF}

Error: (03/23/2012 03:15:17 PM) (Source: DCOM) (User: )
Description: 1084EventSystem{1BE1F766-5536-11D1-B726-00C04FB926AF}


Microsoft Office Sessions:
=========================
Error: (12/16/2011 04:39:10 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6562.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 1072 seconds with 60 seconds of active time. This session ended with a crash.

Error: (07/02/2011 04:20:15 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6557.5001, Microsoft Office Version: 12.0.6425.1000. This session lasted 91052 seconds with 480 seconds of active time. This session ended with a crash.

Error: (11/10/2010 08:43:37 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6539.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 4834 seconds with 120 seconds of active time. This session ended with a crash.

Error: (09/12/2010 08:52:29 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6535.5005, Microsoft Office Version: 12.0.6425.1000. This session lasted 181 seconds with 0 seconds of active time. This session ended with a crash.

Error: (07/15/2010 10:47:12 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6535.5005, Microsoft Office Version: 12.0.6425.1000. This session lasted 3 seconds with 0 seconds of active time. This session ended with a crash.

Error: (07/10/2010 08:38:47 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 336 seconds with 60 seconds of active time. This session ended with a crash.

Error: (06/29/2010 08:51:18 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 2 seconds with 0 seconds of active time. This session ended with a crash.

Error: (06/05/2010 07:23:22 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 2 seconds with 0 seconds of active time. This session ended with a crash.

Error: (12/15/2009 05:27:34 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 1 seconds with 0 seconds of active time. This session ended with a crash.

Error: (12/15/2009 05:19:06 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 63 seconds with 0 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
Activation Assistant for the 2007 Microsoft Office suites
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0)
Adobe Anchor Service CS3 (Version: 1.0)
Adobe Asset Services CS3 (Version: 3)
Adobe Bridge CS3 (Version: 2)
Adobe Bridge Start Meeting (Version: 1.0)
Adobe Camera Raw 4.0 (Version: 4.0)
Adobe CMaps (Version: 1.0)
Adobe Color - Photoshop Specific (Version: 1.0)
Adobe Color Common Settings (Version: 1.0.1)
Adobe Color EU Extra Settings (Version: 1.0)
Adobe Color JA Extra Settings (Version: 1.0)
Adobe Color NA Recommended Settings (Version: 1.0)
Adobe Default Language CS3 (Version: 1.0)
Adobe Device Central CS3 (Version: 1.0)
Adobe ExtendScript Toolkit 2 (Version: 2.0)
Adobe Flash Player 11 ActiveX (Version: 11.1.102.55)
Adobe Flash Player 11 Plugin (Version: 11.1.102.55)
Adobe Fonts All (Version: 1.0)
Adobe Help Viewer CS3 (Version: 1)
Adobe Illustrator CS3 (Version: 13)
Adobe Illustrator CS3 (Version: 13.0)
Adobe Linguistics CS3 (Version: 3.0.0)
Adobe PDF Library Files (Version: 8.0)
Adobe Photoshop 6.0 (Version: 6.0)
Adobe Photoshop CS3 (Version: 10)
Adobe Photoshop CS3 (Version: 10.0)
Adobe Photoshop Elements 2.0 (Version: 2.0)
Adobe Reader 9.5.0 (Version: 9.5.0)
Adobe Setup (Version: 1.0)
Adobe Shockwave Player (Version: 10.2.0.22)
Adobe Stock Photos CS3 (Version: 1.5)
Adobe Type Support (Version: 1.0)
Adobe Update Manager CS3 (Version: 5.1.0)
Adobe Version Cue CS3 Client (Version: 3)
Adobe WinSoft Linguistics Plugin (Version: 1.0)
Adobe XMP Panels CS3 (Version: 1.0)
Advanced SystemCare 5 (Version: 5.1.0)
Agere Systems PCI-SV92PP Soft Modem
AMP Font Viewer
AnswerWorks Runtime
Apple Application Support (Version: 1.1.0)
Apple Mobile Device Support (Version: 2.6.0.32)
Apple Software Update (Version: 2.1.1.116)
Applian Director (Version: 1.1)
ATI Catalyst Install Manager (Version: 3.0.641.0)
ATT Tech Support 360 Backup and Go (Version: 4.0.241)
AutoCAD 2002 (Version: 15.0.6.030)
AVG 2012 (Version: 12.0.1913)
AVG 2012 (Version: 12.0.2114)
AVG 2012 (Version: 2012.0.1913)
Bing Bar (Version: 6.3.2291.0)
Bing Bar Platform (Version: 6.3.2291.0)
Bing Rewards Client Installer (Version: 16.0.345.0)
C4USelfUpdater (Version: 1.00.0000)
Call of Duty® - World at War™ (Version: 1.0)
Canon Camera WIA Driver (Version: 5.4)
Canon EOS 20D WIA Driver (Version: 5.4)
Canon RAW Codec (Version: 1.2.0.36)
Canon Utilities Digital Photo Professional 3.10 (Version: 3.10.1.0)
Canon Utilities EOS Capture 1.2 (Version: 1.2)
Canon Utilities EOS Viewer Utility 1.2 (Version: 1.2.1)
Canon Utilities PhotoStitch 3.1 (Version: 3.1.14)
Catalyst Control Center Core Implementation (Version: 2007.0209.1621.29091)
Catalyst Control Center Graphics Full Existing (Version: 2007.0209.1621.29091)
Catalyst Control Center Graphics Full New (Version: 2007.0209.1621.29091)
Catalyst Control Center Graphics Light (Version: 2007.0209.1621.29091)
Catalyst Control Center Graphics Previews Vista (Version: 2007.0209.1621.29091)
ccc-core-static (Version: 2007.0209.1621.29091)
ccc-utility (Version: 2007.0209.1621.29091)
CCC Help English (Version: 2007.0209.1620.29091)
Corel Graphics - Windows Shell Extension (Version: 15.2.0.661)
Corel Graphics - Windows Shell Extension (Version: 15.2.661)
CorelDRAW Graphics Suite X5 - BR (Version: 15.2)
CorelDRAW Graphics Suite X5 - Capture (Version: 15.2)
CorelDRAW Graphics Suite X5 - Common (Version: 15.2)
CorelDRAW Graphics Suite X5 - Connect (Version: 15.2)
CorelDRAW Graphics Suite X5 - Custom Data (Version: 15.2)
CorelDRAW Graphics Suite X5 - Draw (Version: 15.2)
CorelDRAW Graphics Suite X5 - EN (Version: 15.2)
CorelDRAW Graphics Suite X5 - ES (Version: 15.2)
CorelDRAW Graphics Suite X5 - Extra Content
CorelDRAW Graphics Suite X5 - Extra Content (Version: 15.0)
CorelDRAW Graphics Suite X5 - Filters (Version: 15.2)
CorelDRAW Graphics Suite X5 - FontNav (Version: 15.2)
CorelDRAW Graphics Suite X5 - FR (Version: 15.2)
CorelDRAW Graphics Suite X5 - IPM (Version: 15.2)
CorelDRAW Graphics Suite X5 - PHOTO-PAINT (Version: 15.2)
CorelDRAW Graphics Suite X5 - Photozoom Plugin (Version: 15.0)
CorelDRAW Graphics Suite X5 - Premium Fonts (Version: 1.00.0000)
CorelDRAW Graphics Suite X5 - Redist (Version: 15.0)
CorelDRAW Graphics Suite X5 - Setup Files (Version: 15.2)
CorelDRAW Graphics Suite X5 - VBA (Version: 15.1)
CorelDRAW Graphics Suite X5 - VideoBrowser (Version: 15.2)
CorelDRAW Graphics Suite X5 - VSTA (Version: 15.1)
CorelDRAW Graphics Suite X5 - WT (Version: 15.1)
CorelDRAW Graphics Suite X5 (Version: 15.2)
CorelDRAW® Graphics Suite X5 (Version: 15.2.0.661)
Crystal Reports Basic Runtime for Visual Studio 2008 (Version: 10.5.0.0)
D3DX10 (Version: 15.4.2368.0902)
DHTML Editing Component (Version: 6.02.0001)
EA Network Play System
EOS Viewer Utility 1.2.1 (Version: 1.2.1)
ESET Online Scanner v3
EstiMate 1.95
EstiMate Visual Pricing System1.99
Eusing Free Registry Cleaner
Ghostscript GPL 8.64 (Msi Setup) (Version: 8.64)
Google Earth (Version: 6.1.0.5001)
Google Quick Search Box (Version: 1.2.1151.245)
Google SketchUp 7 (Version: 2.0.10247)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.3.2710.138)
Google Update Helper (Version: 1.3.21.99)
Google Updater (Version: 2.4.2432.1652)
HP Officejet 6500 E710n-z Basic Device Software (Version: 22.50.231.0)
HP Officejet 6500 E710n-z Help (Version: 140.0.2.2)
HP Officejet 6500 E710n-z Product Improvement Study (Version: 22.50.231.0)
HP Product Detection (Version: 4.00.0004)
HP Update (Version: 5.002.006.003)
I.R.I.S. OCR (Version: 12.3.4.0)
inFlow Inventory
iTunes (Version: 9.0.3.15)
Java™ 6 Update 24 (Version: 6.0.240)
Java™ 6 Update 6 (Version: 1.6.0.60)
Java™ 6 Update 7 (Version: 1.6.0.70)
Juniper Networks Host Checker (Version: 6.1.0.13103)
Juniper Networks Secure Application Manager (Version: 6.1.0.13103)
Juniper Networks Setup Client (Version: 1.1.0.0)
Junk Mail filter update (Version: 15.4.3502.0922)
Keyspan USB Serial Adapter (Version: 3.7s)
Lexmark 1300 Series
LightScribe 1.4.124.1 (Version: 1.4.124.1)
Malwarebytes Anti-Malware version 1.60.1.1000 (Version: 1.60.1.1000)
Marketsplash Shortcuts (Version: 1.0.1.7)
MediaShow (Version: 3.0.4109)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Default Manager (Version: 2.2.114.0)
Microsoft IntelliType Pro 7.1 (Version: 7.10.344.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Search Enhancement Pack (Version: 3.0.131.0)
Microsoft Silverlight (Version: 4.1.10111.0)
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server 2005 Express Edition (INFLOWSQL) (Version: 9.4.5000.00)
Microsoft SQL Server Management Objects Collection (Version: 9.00.1399.06)
Microsoft SQL Server Native Client (Version: 9.00.5000.00)
Microsoft SQL Server Setup Support Files (English) (Version: 9.00.5000.00)
Microsoft SQL Server VSS Writer (Version: 9.00.5000.00)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (Version: 9.0.30729)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (Version: 9.0.30729)
Microsoft Web Publishing Wizard 1.52
Microsoft Works (Version: 08.05.0818)
Microsoft Works Setup Launcher
Mozilla Firefox 10.0.2 (x86 en-US) (Version: 10.0.2)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB925672) (Version: 4.20.9839.0)
MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MyFonts Order M1266652 (Version: 1.0)
MyFonts Order M3179549 (Version: 1.0)
Nero 7 Essentials (Version: 7.02.4288)
NVIDIA Display Control Panel (Version: 6.14.12.5896)
NVIDIA Drivers (Version: 1.10.62.40)
NVIDIA PhysX (Version: 9.09.1112)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
PDF Settings (Version: 1.0)
PhotoNow! 1.0 (Version: 3.0.4004)
PhotoStitch (Version: 3.1.14)
Picasa 3 (Version: 3.8)
PokerStars
PowerDirector
PowerDVD (Version: 7.0.2802.0)
PowerProducer
PreReq (Version: 6.2.3.0)
PVSonyDll (Version: 1.00.0001)
QBXMLRP2 (Version: 4.0.00168.0)
QuickTime (Version: 7.65.17.80)
Realtek High Definition Audio Driver (Version: 6.0.1.5433)
Replay Music (Version: 3.95)
Rhapsody
RocketDock 1.3.5
Segoe UI (Version: 15.4.2271.0615)
Sentinel System Driver
Skins (Version: 2007.0209.1621.29091)
Slacker Software Player (Version: 1.0.0169.0000)
Slacker USB Station Refresher (Version: 2.1.2435.0000)
Spybot - Search & Destroy (Version: 1.6.2)
SWiSH miniMax2 (Version: 09.06.02.000)
Trojan Killer 2.1
Ulead PhotoImpact 12 (Version: 12.0)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596651) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596789) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2597970) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 (KB2596596) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VE LXi Master 6.6v1
Visual Basic for Applications ® Core - English (Version: 6.4.99.69)
Visual Basic for Applications ® Core (Version: 6.4.99.69)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinRAR archiver
Wireless PCI-Express Network Adapter (Version: 1.00)

========================= Memory info: ===================================

Percentage of memory in use: 52%
Total physical RAM: 3454.52 MB
Available physical RAM: 1642.71 MB
Total Pagefile: 7135.55 MB
Available Pagefile: 4934.53 MB
Total Virtual: 2047.88 MB
Available Virtual: 1945.98 MB

========================= Partitions: =====================================

1 Drive c: (BOOT) (Fixed) (Total:274.09 GB) (Free:42.88 GB) NTFS
2 Drive d: (RECOVER) (Fixed) (Total:19.99 GB) (Free:9 GB) FAT32

========================= Users: ========================================

User accounts for \\OFFICE-PC

Administrator Alex Amanda
ASPNET Guest Jeremy
Kimberly Kimberly (USANA) Nicholas
Scott Scott_2


**** End of log ****

#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:12 AM

Posted 24 March 2012 - 09:46 AM

Excellent a little more to do...

Important Note: Your version of Java is out of date. Older versions have vulnerabilities that malicious sites can use to exploit and infect your system.Please follow these steps to remove older version Java components and update:
  • Download the latest version of Java Runtime Environment (JRE) Version 7 and save it to your desktop.
  • Look for "Java Platform, Standard Edition".
  • Click the "Download JRE" button to the right.
  • Read the License Agreement, and then check the box that says: "Accept License Agreement".
  • From the list, select your OS and Platform (32-bit or 64-bit).
  • If a download for an Offline Installation is available, it is recommended to choose that and save the file to your desktop.
  • Close any programs you may have running - especially your web browser.
Go to Posted Image > Control Panel, double-click on Add/Remove Programs or Programs and Features in Vista/Windows 7 and remove all older versions of Java.
  • Check (highlight) any item with Java Runtime Environment (JRE or J2SE) in the name.
  • Click the Remove or Change/Remove button and follow the onscreen instructions for the Java uninstaller.
  • Repeat as many times as necessary to remove each Java versions.
  • Reboot your computer once all Java components are removed.
  • Then from your desktop double-click on jre-7u3-windows-i586.exe (or jre-7u3-windows-x64.exe for 64-bit) to install the newest version.
  • If using Windows 7 or Vista and the installer refuses to launch due to insufficient user permissions, then Run As Administrator.
  • When the Java Setup - Welcome window opens, click the Install > button.
  • If offered to install a Toolbar, just uncheck the box before continuing unless you want it.
  • The McAfee Security Scan Plus tool is installed by default unless you uncheck the McAfee installation box when updating Java.
Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications but it's not necessary.
To disable the JQS service if you don't want to use it:
  • Go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter.
  • Click Ok and reboot your computer.


Similarly Update to Adobe Reader X (10.1.0)
Note UN check the box so you do not install the toolbar,unless you really want it..

Free! Google Toolbar search Google from any web page, block pop-ups

Yes, install Google Toolbar - optional

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 ScooterMagoo

ScooterMagoo
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:10:12 PM

Posted 26 March 2012 - 08:13 PM

Excellent, everything is cool!

#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:12 AM

Posted 26 March 2012 - 08:44 PM

Nice!! Now you should Create a New Restore Point to prevent possible reinfection from an old one. Some of the malware you picked up could have been saved in System Restore. Since this is a protected directory your tools cannot access to delete these files, they sometimes can reinfect your system if you accidentally use an old restore point. Setting a new restore point AFTER cleaning your system will help prevent this and enable your computer to "roll-back" to a clean working state.

The easiest and safest way to do this is:
  • Go to Start > Programs > Accessories > System Tools and click "System Restore".
  • Choose the radio button marked "Create a Restore Point" on the first screen then click "Next". Give the R.P. a name, then click "Create". The new point will be stamped with the current date and time. Keep a log of this so you can find it easily should you need to use System Restore.
  • Then use Disk Cleanup to remove all but the most recently created Restore Point.
  • Go to Start > Run and type: Cleanmgr
  • Click "Ok". Disk Cleanup will scan your files for several minutes, then open.
  • Click the "More Options" tab, then click the "Clean up" button under System Restore.
  • Click Ok. You will be prompted with "Are you sure you want to delete all but the most recent restore point?"
  • Click Yes, then click Ok.
  • Click Yes again when prompted with "Are you sure you want to perform these actions?"
  • Disk Cleanup will remove the files and close automatically.
Vista Users can refer to these links: Create a New Restore Point and Disk Cleanup.

Tips to protect yourself against malware and reduce the potential for re-infection:Avoid gaming sites, pirated software, cracking tools, keygens, and peer-to-peer (P2P) file sharing programs. They are a security risk which can make your computer susceptible to a smörgåsbord of malware infections, remote attacks, exposure of personal information, and identity theft. Many malicious worms and Trojans spread across P2P file sharing networks, gaming and underground sites. Users visiting such pages may see innocuous-looking banner ads containing code which can trigger pop-up ads and malicious Flash ads that install viruses, Trojans and spyware. Ads are a target for hackers because they offer a stealthy way to distribute malware to a wide range of Internet users. The best way to reduce the risk of infection is to avoid these types of web sites and not use any P2P applications. Read P2P Software User Advisories and Risks of File-Sharing Technology.

Keeping Autorun enabled on USB and other removable drives has become a significant security risk due to the increasing number of malware variants that can infect them and transfer the infection to your computer. To learn more about this risk, please read:
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users