Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Requesting Assistance With An Infected Machine, Please. . .


  • This topic is locked This topic is locked
14 replies to this topic

#1 MrCoffeeMate

MrCoffeeMate

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Local time:09:33 AM

Posted 23 March 2012 - 01:01 PM

Hello There B)

I am new here. I had received a bit of help over at Microsoft Answers, but the guy eventually told me I needed to join one of these antimalware communities and get some more intense help in this manner.

I believe I picked up this mess from a site I visited a couple of nights ago (yes, I site I should not have gone to --- and certainly won't go to again :wacko: )

I'm running Vista Home Basic, on a Toshiba Satellite mahcine, AMD 64, Athlon X2, and 2 GB of RAM (I think).

I have the latest free versions of Ad-Aware, Windows Security Essentials, and Malwarebytes. After I realize my machine had become infected (initially because of windows continually popping up on the screen), and decided to check my Security Center and also run a scan. It was then I found out that my Firewall had been disabled, and not only this, but. . .I cannot turn it back on (each time I attempt to, I am given an error indicating that for some unknown reason, Windows is unable to comply with that request).

I am the Administrator of this Satellite, and logged in as such. I have run scans with MSE, Ad-Aware, and Malwarebytes. Ad-Aware found three Trojan-type threats of varrying intensity. One of them was removed by the Ad-Watch Live and/or Submitted By Threatwork Alliance option (whatever that means). But I still cannot enable the Firewall. Malwarebytes found some things, as well (four of them), and removed them. But I still cannot turn on the Firewall. Also there is a slight RE-DIRECT issue going on, as well, somewhat intermittently though. But as far as MSE goes, although it has supposedly already removed close to a hundred threats, I keep getting pop-up notifications from MSE that it keeps finding "new" threats (even though I'm not running a scan at the moment). This happens about once every 3 to 5 minutes, and is kind of annoying. Here is a short list and description of the types of things that my MSE utility has found (and removed?) thus far:

Trojan:Win32/Sirefef.AC
Trojan:JS/BlacoleRef.AL
TrojanDropper:Win32/Zegost.Z
Backdoor:Win32/ProxyBot.E


Lastly, here are a few things which I also hope will be helpful for you to know before responding back to me with any assistance:

1) I do not own a working printer, and. . .
2) I have not been able to restart this laptop for a couple of years now. It gets hung up somewhere between being in an OFF and ON state whenever I select the RESTART option. Then I eventually have to finish the process by doing a hard shut down, followed by a hard boot. But since I tend to blame overheating as a possible cause or reason for this, I like to give it some time to cool off before booting it up again.

I hope this information is helpful for someone here who might be able to help me out.

Much thanks in advance!!

Edit: Moved topic from Vista to the more appropriate forum. ~ Animal

BC AdBot (Login to Remove)

 


#2 paul2

paul2

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:08:33 AM

Posted 23 March 2012 - 02:59 PM

Need more info was not helpful

#3 MrCoffeeMate

MrCoffeeMate
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Local time:09:33 AM

Posted 23 March 2012 - 03:07 PM

.

Edited by MrCoffeeMate, 23 March 2012 - 03:35 PM.


#4 jburd1800

jburd1800

  • Members
  • 565 posts
  • OFFLINE
  •  
  • Local time:09:33 AM

Posted 23 March 2012 - 03:20 PM

I'm not sure what paul2 was getting at, but there is some great help on this board. They are busy but will get to you.

“May the sun bring you new energy by day, may the moon softly restore you by night, may the rain wash away your worries, may the breeze blow new strength into your being, may you walk gently thorugh the world and know it's beauty all the days of your life.”


#5 MrCoffeeMate

MrCoffeeMate
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Local time:09:33 AM

Posted 23 March 2012 - 03:40 PM

OK, Cool. Thanks!!

#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,906 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:33 AM

Posted 23 March 2012 - 09:04 PM

You may want to blow compressed air thru the fan and clear any dust
So it will boot?

If so..
Info scan
Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.




Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log has a name like: TDSSKiller.Version_Date_Time_log.txt.



If TDSSKiller does not run, try renaming it. To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to these[/color] instructions. In some cases it may be necessary to redownload TDSSKiller and randomly rename it before downloading and saving to the computer.



Next run MBAM (MalwareBytes):

Please download Malwarebytes Anti-Malware Posted Image and save it to your desktop.
  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.
Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you cannot update Malwarebytes or use the Internet to download any files to the infected computer, manually update the database by following the instructions in FAQ Section A: 4. Issues.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.
Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.

-- Some types of malware will target Malwarebytes and other security tools to keep them from running properly. If that's the case, go to Start > All Programs > Malwarebytes Anti-Malware folder > Tools > click on [color=blue]Malwarebytes Chameleon
and follow the onscreen instructions. The Chameleon folder can be accessed by opening the program folder for Malwarebytes Anti-Malware (normally C:\Program Files\Malwarebytes' Anti-Malware or C:\Program Files (x86)\Malwarebytes' Anti-Malware).


We'll do more if these work.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 MrCoffeeMate

MrCoffeeMate
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Local time:09:33 AM

Posted 23 March 2012 - 10:57 PM

MiniToolBox by Farbar Version: 18-01-2012
Ran by Administrator on 23-03-2012 at 23:50:49
Microsoft® Windows Vista™ Home Basic Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

Hosts file not detected in the default directory
========================= IP Configuration: ================================

Realtek RTL8187B Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter = Wireless Network Connection (Connected)
Realtek PCIe FE Family Controller = Local Area Connection (Media disconnected)
The following helper DLL cannot be loaded: WSHELPER.DLL.
The following helper DLL cannot be loaded: IFMON.DLL.
The following command was not found: int ip dump.

Windows IP Configuration

Host Name . . . . . . . . . . . . : Laptop
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : launchmodem.com

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : launchmodem.com
Description . . . . . . . . . . . : Realtek RTL8187B Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter
Physical Address. . . . . . . . . : 00-16-44-6A-1B-07
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::8c69:9827:2d46:253a%9(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.95(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Friday, March 23, 2012 10:29:31 AM
Lease Expires . . . . . . . . . . : Saturday, March 24, 2012 10:29:36 PM
Default Gateway . . . . . . . . . : 192.168.1.254
DHCP Server . . . . . . . . . . . : 192.168.1.254
DHCPv6 IAID . . . . . . . . . . . : 234886724
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-0E-A0-8F-EA-00-A0-D1-86-15-E1
DNS Servers . . . . . . . . . . . : 192.168.1.254
192.168.1.254
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
Physical Address. . . . . . . . . : 00-A0-D1-88-78-86
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.launchmodem.com
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{60E44A58-7227-4ACC-819B-3838336D3E01}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Tun Miniport Adapter #2
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes


Pinging google.com [74.125.47.102] with 32 bytes of data:

Reply from 74.125.47.102: bytes=32 time=28ms TTL=51

Reply from 74.125.47.102: bytes=32 time=27ms TTL=52



Ping statistics for 74.125.47.102:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 27ms, Maximum = 28ms, Average = 27ms



Pinging yahoo.com [209.191.122.70] with 32 bytes of data:

Reply from 209.191.122.70: bytes=32 time=44ms TTL=49

Reply from 209.191.122.70: bytes=32 time=695ms TTL=49



Ping statistics for 209.191.122.70:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 44ms, Maximum = 695ms, Average = 369ms



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Request timed out.

Request timed out.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
9 ...00 16 44 6a 1b 07 ...... Realtek RTL8187B Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter
8 ...00 a0 d1 88 78 86 ...... Realtek PCIe FE Family Controller
1 ........................... Software Loopback Interface 1
14 ...00 00 00 00 00 00 00 e0 isatap.launchmodem.com
13 ...00 00 00 00 00 00 00 e0 isatap.{60E44A58-7227-4ACC-819B-3838336D3E01}
12 ...02 00 54 55 4e 01 ...... Microsoft Tun Miniport Adapter #2
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.95 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.95 281
192.168.1.95 255.255.255.255 On-link 192.168.1.95 281
192.168.1.255 255.255.255.255 On-link 192.168.1.95 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.95 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.95 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
9 281 fe80::/64 On-link
9 281 fe80::8c69:9827:2d46:253a/128
On-link
1 306 ff00::/8 On-link
9 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 mswsock.dll [File Not found] ()
Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
Catalog9 11 mswsock.dll [File Not found] ()
Catalog9 12 mswsock.dll [File Not found] ()
Catalog9 13 mswsock.dll [File Not found] ()
Catalog9 14 mswsock.dll [File Not found] ()
Catalog9 15 mswsock.dll [File Not found] ()
Catalog9 16 mswsock.dll [File Not found] ()
Catalog9 17 mswsock.dll [File Not found] ()
Catalog9 18 mswsock.dll [File Not found] ()
Catalog9 19 mswsock.dll [File Not found] ()
Catalog9 20 mswsock.dll [File Not found] ()
Catalog9 21 mswsock.dll [File Not found] ()
Catalog9 22 mswsock.dll [File Not found] ()
Catalog9 23 mswsock.dll [File Not found] ()
Catalog9 24 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/23/2012 11:53:26 PM) (Source: Application Error) (User: )
Description: Faulting application nslookup.exe, version 6.0.6002.18005, time stamp 0x49e01d63, faulting module ntdll.dll, version 6.0.6002.18541, time stamp 0x4ec3e3d5, exception code 0xc0000138, fault offset 0x00009f5d,
process id 0xb20, application start time 0xnslookup.exe0.

Error: (03/23/2012 11:53:18 PM) (Source: Application Error) (User: )
Description: Faulting application nslookup.exe, version 6.0.6002.18005, time stamp 0x49e01d63, faulting module ntdll.dll, version 6.0.6002.18541, time stamp 0x4ec3e3d5, exception code 0xc0000138, fault offset 0x00009f5d,
process id 0x13bc, application start time 0xnslookup.exe0.

Error: (03/23/2012 11:53:00 PM) (Source: Application Error) (User: )
Description: Faulting application nslookup.exe, version 6.0.6002.18005, time stamp 0x49e01d63, faulting module ntdll.dll, version 6.0.6002.18541, time stamp 0x4ec3e3d5, exception code 0xc0000138, fault offset 0x00009f5d,
process id 0x1458, application start time 0xnslookup.exe0.

Error: (03/23/2012 06:46:43 PM) (Source: Application Error) (User: )
Description: Faulting application ping.exe, version 6.0.6001.18000, time stamp 0x47919130, faulting module jscript9.dll_unloaded, version 0.0.0.0, time stamp 0x4ee8124d, exception code 0xc0000005, fault offset 0x6868c085,
process id 0x1464, application start time 0xping.exe0.

Error: (03/23/2012 00:35:39 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {30ee9aa4-7c73-4347-9089-994c813ce3de}

Error: (03/22/2012 06:07:22 PM) (Source: EventSystem) (User: )
Description: 80070005EventSystem.EventSubscription{CEB8B221-89C5-41A8-98CE-79B413BF150B}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}

Error: (03/22/2012 01:33:15 PM) (Source: Lavasoft Ad-Aware Service) (User: )
Description: Only one instance of service process is allowed.

Error: (03/22/2012 00:27:12 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {8213177d-4e4a-4e15-880b-fd73bfe7eb4e}

Error: (03/20/2012 01:25:36 AM) (Source: EventSystem) (User: )
Description: 80070005EventSystem.EventSubscription{CEB8B221-89C5-41A8-98CE-79B413BF150B}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}

Error: (03/19/2012 01:38:19 PM) (Source: Lavasoft Ad-Aware Service) (User: )
Description: Only one instance of service process is allowed.


System errors:
=============

Microsoft Office Sessions:
=========================
Error: (03/23/2012 11:53:26 PM) (Source: Application Error)(User: )
Description: nslookup.exe6.0.6002.1800549e01d63ntdll.dll6.0.6002.185414ec3e3d5c000013800009f5db2001cd0971a8818f70

Error: (03/23/2012 11:53:18 PM) (Source: Application Error)(User: )
Description: nslookup.exe6.0.6002.1800549e01d63ntdll.dll6.0.6002.185414ec3e3d5c000013800009f5d13bc01cd0971a4360310

Error: (03/23/2012 11:53:00 PM) (Source: Application Error)(User: )
Description: nslookup.exe6.0.6002.1800549e01d63ntdll.dll6.0.6002.185414ec3e3d5c000013800009f5d145801cd09715e8659f0

Error: (03/23/2012 06:46:43 PM) (Source: Application Error)(User: )
Description: ping.exe6.0.6001.1800047919130jscript9.dll_unloaded0.0.0.04ee8124dc00000056868c085146401cd0944de5d559d

Error: (03/23/2012 00:35:39 AM) (Source: VSS)(User: )
Description: 0x80070005

Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {30ee9aa4-7c73-4347-9089-994c813ce3de}

Error: (03/22/2012 06:07:22 PM) (Source: EventSystem)(User: )
Description: 80070005EventSystem.EventSubscription{CEB8B221-89C5-41A8-98CE-79B413BF150B}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}

Error: (03/22/2012 01:33:15 PM) (Source: Lavasoft Ad-Aware Service)(User: )
Description: Only one instance of service process is allowed.

Error: (03/22/2012 00:27:12 AM) (Source: VSS)(User: )
Description: 0x80070005

Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {8213177d-4e4a-4e15-880b-fd73bfe7eb4e}

Error: (03/20/2012 01:25:36 AM) (Source: EventSystem)(User: )
Description: 80070005EventSystem.EventSubscription{CEB8B221-89C5-41A8-98CE-79B413BF150B}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}

Error: (03/19/2012 01:38:19 PM) (Source: Lavasoft Ad-Aware Service)(User: )
Description: Only one instance of service process is allowed.


=========================== Installed Programs ============================

7-Zip 9.22beta
Ad-Aware (Version: 9.5.0)
Adobe Flash Player 11 ActiveX (Version: 11.1.102.63)
Adobe Flash Player 11 Plugin (Version: 11.1.102.63)
Adobe Reader 8.3.1 (Version: 8.3.1)
Album Art Downloader XUI 0.43 (Version: 0.43)
Amazon MP3 Downloader 1.0.15 (Version: 1.0.15)
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
ATI Catalyst Install Manager (Version: 3.0.634.0)
ATI Catalyst Install Manager (Version: 3.0.641.0)
Auto Updater 1.0.0.5
Belarc Advisor 7.2
Bluetooth Stack for Windows by Toshiba (Version: v5.10.14(T))
Bonjour (Version: 3.0.0.10)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2007.0727.2307.39475)
Catalyst Control Center Graphics Full Existing (Version: 2007.0727.2307.39475)
Catalyst Control Center Graphics Full New (Version: 2007.0727.2307.39475)
Catalyst Control Center Graphics Light (Version: 2007.0727.2307.39475)
Catalyst Control Center Graphics Previews Vista (Version: 2007.0727.2307.39475)
Catalyst Control Center Localization Chinese Standard (Version: 2007.0727.2307.39475)
Catalyst Control Center Localization Chinese Traditional (Version: 2007.0727.2307.39475)
Catalyst Control Center Localization Czech (Version: 2007.0727.2307.39475)
Catalyst Control Center Localization Danish (Version: 2007.0727.2307.39475)
Catalyst Control Center Localization Dutch (Version: 2007.0727.2307.39475)
Catalyst Control Center Localization Finnish (Version: 2007.0727.2307.39475)
Catalyst Control Center Localization French (Version: 2007.0727.2307.39475)
Catalyst Control Center Localization German (Version: 2007.0727.2307.39475)
Catalyst Control Center Localization Greek (Version: 2007.0727.2307.39475)
Catalyst Control Center Localization Hungarian (Version: 2007.0727.2307.39475)
Catalyst Control Center Localization Italian (Version: 2007.0727.2307.39475)
Catalyst Control Center Localization Japanese (Version: 2007.0727.2307.39475)
Catalyst Control Center Localization Korean (Version: 2007.0727.2307.39475)
Catalyst Control Center Localization Norwegian (Version: 2007.0727.2307.39475)
Catalyst Control Center Localization Polish (Version: 2007.0727.2307.39475)
Catalyst Control Center Localization Portuguese (Version: 2007.0727.2307.39475)
Catalyst Control Center Localization Russian (Version: 2007.0727.2307.39475)
Catalyst Control Center Localization Spanish (Version: 2007.0727.2307.39475)
Catalyst Control Center Localization Swedish (Version: 2007.0727.2307.39475)
Catalyst Control Center Localization Thai (Version: 2007.0727.2307.39475)
Catalyst Control Center Localization Turkish (Version: 2007.0727.2307.39475)
ccc-core-static (Version: 2007.0727.2307.39475)
ccc-utility (Version: 2007.0727.2307.39475)
CCC Help Chinese Standard (Version: 2007.0727.2306.39475)
CCC Help Chinese Traditional (Version: 2007.0727.2306.39475)
CCC Help Czech (Version: 2007.0727.2306.39475)
CCC Help Danish (Version: 2007.0727.2306.39475)
CCC Help Dutch (Version: 2007.0727.2306.39475)
CCC Help English (Version: 2007.0727.2306.39475)
CCC Help Finnish (Version: 2007.0727.2306.39475)
CCC Help French (Version: 2007.0727.2306.39475)
CCC Help German (Version: 2007.0727.2306.39475)
CCC Help Greek (Version: 2007.0727.2306.39475)
CCC Help Hungarian (Version: 2007.0727.2306.39475)
CCC Help Italian (Version: 2007.0727.2306.39475)
CCC Help Japanese (Version: 2007.0727.2306.39475)
CCC Help Korean (Version: 2007.0727.2306.39475)
CCC Help Norwegian (Version: 2007.0727.2306.39475)
CCC Help Polish (Version: 2007.0727.2306.39475)
CCC Help Portuguese (Version: 2007.0727.2306.39475)
CCC Help Russian (Version: 2007.0727.2306.39475)
CCC Help Spanish (Version: 2007.0727.2306.39475)
CCC Help Swedish (Version: 2007.0727.2306.39475)
CCC Help Thai (Version: 2007.0727.2306.39475)
CCC Help Turkish (Version: 2007.0727.2306.39475)
CD/DVD Drive Acoustic Silencer (Version: 2.01.03)
Google Update Helper (Version: 1.3.21.111)
iCloud (Version: 1.1.0.40)
InstallIQ Updater (Version: 1.4.3.0)
iTunes (Version: 10.6.0.40)
Java Auto Updater (Version: 2.0.3.1)
Java™ 6 Update 24 (Version: 6.0.240)
Malwarebytes Anti-Malware version 1.60.1.1000 (Version: 1.60.1.1000)
Media Jukebox 14 (Version: 14)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Antimalware (Version: 3.0.8402.2)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft IntelliPoint 6.2 (Version: 6.20.182.0)
Microsoft Security Client (Version: 2.1.1116.0)
Microsoft Security Essentials (Version: 2.1.1116.0)
Microsoft Silverlight (Version: 4.1.10111.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Word 2002 (Version: 10.0.6626.0)
Microsoft Works 2003 Setup Launcher
Microsoft XML Parser (Version: 8.20.8730.4)
Mozilla Firefox 11.0 (x86 en-US) (Version: 11.0)
MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB941833) (Version: 4.20.9849.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
oDesk Team
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
Picasa 3 (Version: 3.8)
QuickTime (Version: 7.71.80.42)
Realtek 8169 PCI, 8168 and 8101E PCIe Ethernet Network Card Driver for Windows Vista (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.5464)
REALTEK RTL8187B Wireless LAN Driver (Version: Package:1.00.0008 Driver:6.1089.601.2007)
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.51.01 (Version: 3.51.01)
Safari (Version: 5.34.54.16)
Shockwave
Skins (Version: 2007.0727.2307.39475)
Synaptics Pointing Device Driver (Version: 11.2.4.0)
TOSHIBA Assist (Version: 2.01.05)
TOSHIBA ConfigFree (Version: 7.00.32)
TOSHIBA Disc Creator (Version: 2.0.0.8)
TOSHIBA DVD PLAYER (Version: 1.10.08)
TOSHIBA Extended Tiles for Windows Mobility Center (Version: 1.01.00)
TOSHIBA Hardware Setup (Version: 2.00.06)
Toshiba Registration (Version: 1.00.0000)
TOSHIBA SD Memory Utilities (Version: 1.8.1.1)
TOSHIBA Software Modem (Version: 2.1.77 (SM2177ALD04))
TOSHIBA Software Upgrades (Version: 4.2)
TOSHIBA Speech System Applications
TOSHIBA Speech System SR Engine(U.S.) Version1.0
TOSHIBA Speech System TTS Engine(U.S.) Version1.0
TOSHIBA Supervisor Password (Version: 2.00.02)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Virtual Pool Windows
Visual C++ 2008 x86 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
Winbond CIR Device Drivers (Version: 7.60.1003)
Windows Media Encoder 9 Series
Windows Media Encoder 9 Series (Version: 9.00.3374)
Works Suite OS Pack (Version: 3.0.0.0000)

========================= Memory info: ===================================

Percentage of memory in use: 64%
Total physical RAM: 1917.32 MB
Available physical RAM: 678.04 MB
Total Pagefile: 4087.87 MB
Available Pagefile: 2009.68 MB
Total Virtual: 2047.88 MB
Available Virtual: 1950.23 MB

========================= Partitions: =====================================

1 Drive c: (SQ004559V02) (Fixed) (Total:110.32 GB) (Free:33.35 GB) NTFS

========================= Users: ========================================

User accounts for \\LAPTOP

Administrator Guest Louis126


**** End of log ****

Edited by MrCoffeeMate, 23 March 2012 - 10:58 PM.


#8 MrCoffeeMate

MrCoffeeMate
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Local time:09:33 AM

Posted 24 March 2012 - 12:00 AM

00:36:48.0610 2776 TDSS rootkit removing tool 2.7.22.0 Mar 21 2012 17:40:00
00:36:49.0155 2776 ============================================================
00:36:49.0155 2776 Current date / time: 2012/03/24 00:36:49.0155
00:36:49.0155 2776 SystemInfo:
00:36:49.0155 2776
00:36:49.0156 2776 OS Version: 6.0.6002 ServicePack: 2.0
00:36:49.0156 2776 Product type: Workstation
00:36:49.0156 2776 ComputerName: LAPTOP
00:36:49.0157 2776 UserName: Louis126
00:36:49.0157 2776 Windows directory: C:\Windows
00:36:49.0157 2776 System windows directory: C:\Windows
00:36:49.0157 2776 Processor architecture: Intel x86
00:36:49.0157 2776 Number of processors: 2
00:36:49.0157 2776 Page size: 0x1000
00:36:49.0157 2776 Boot type: Normal boot
00:36:49.0157 2776 ============================================================
00:36:51.0838 2776 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
00:36:51.0842 2776 \Device\Harddisk0\DR0:
00:36:51.0843 2776 MBR used
00:36:51.0843 2776 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0xDCA4800
00:36:51.0859 2776 Initialize success
00:36:51.0860 2776 ============================================================
00:36:54.0682 3832 ============================================================
00:36:54.0682 3832 Scan started
00:36:54.0682 3832 Mode: Manual;
00:36:54.0682 3832 ============================================================
00:36:57.0474 3832 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
00:36:57.0486 3832 ACPI - ok
00:36:57.0707 3832 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
00:36:57.0786 3832 adp94xx - ok
00:36:57.0861 3832 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
00:36:57.0884 3832 adpahci - ok
00:36:58.0003 3832 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
00:36:58.0009 3832 adpu160m - ok
00:36:58.0087 3832 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
00:36:58.0094 3832 adpu320 - ok
00:36:58.0226 3832 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
00:36:58.0232 3832 AeLookupSvc - ok
00:36:58.0366 3832 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
00:36:58.0468 3832 AFD - ok
00:36:58.0613 3832 AgereModemAudio (39e435c90c9c4f780fa0ed05ca3c3a1b) C:\Windows\system32\agrsmsvc.exe
00:36:58.0616 3832 AgereModemAudio - ok
00:36:58.0756 3832 AgereSoftModem (ce91b158fa490cf4c4d487a4130f4660) C:\Windows\system32\DRIVERS\AGRSM.sys
00:36:58.0812 3832 AgereSoftModem - ok
00:36:58.0935 3832 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
00:36:58.0940 3832 agp440 - ok
00:36:59.0041 3832 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
00:36:59.0047 3832 aic78xx - ok
00:36:59.0161 3832 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
00:36:59.0171 3832 ALG - ok
00:36:59.0287 3832 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
00:36:59.0291 3832 aliide - ok
00:36:59.0414 3832 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
00:36:59.0423 3832 amdagp - ok
00:36:59.0480 3832 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
00:36:59.0484 3832 amdide - ok
00:36:59.0572 3832 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
00:36:59.0576 3832 AmdK7 - ok
00:36:59.0664 3832 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys
00:36:59.0668 3832 AmdK8 - ok
00:36:59.0806 3832 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
00:36:59.0809 3832 Appinfo - ok
00:36:59.0943 3832 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
00:36:59.0949 3832 Apple Mobile Device - ok
00:37:00.0100 3832 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
00:37:00.0106 3832 arc - ok
00:37:00.0193 3832 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
00:37:00.0199 3832 arcsas - ok
00:37:00.0324 3832 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
00:37:00.0354 3832 AsyncMac - ok
00:37:00.0442 3832 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
00:37:00.0444 3832 atapi - ok
00:37:00.0575 3832 athr (6046a55f79de9c581b8d5e9c1366cc81) C:\Windows\system32\DRIVERS\athr.sys
00:37:00.0605 3832 athr - ok
00:37:00.0733 3832 Ati External Event Utility (581b9be9e92a0f3856cc85ec011edc6f) C:\Windows\system32\Ati2evxx.exe
00:37:00.0769 3832 Ati External Event Utility - ok
00:37:00.0993 3832 atikmdag (22d300f835600c9c634860cf2912f9cf) C:\Windows\system32\DRIVERS\atikmdag.sys
00:37:01.0104 3832 atikmdag - ok
00:37:01.0216 3832 AtiPcie (4aa1eb65481c392955939e735d27118b) C:\Windows\system32\DRIVERS\AtiPcie.sys
00:37:01.0220 3832 AtiPcie - ok
00:37:01.0356 3832 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
00:37:01.0388 3832 AudioEndpointBuilder - ok
00:37:01.0423 3832 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
00:37:01.0432 3832 Audiosrv - ok
00:37:01.0568 3832 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
00:37:01.0580 3832 Beep - ok
00:37:01.0761 3832 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
00:37:01.0784 3832 BFE - ok
00:37:01.0960 3832 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
00:37:01.0997 3832 BITS - ok
00:37:02.0085 3832 blbdrive - ok
00:37:02.0248 3832 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
00:37:02.0272 3832 Bonjour Service - ok
00:37:02.0353 3832 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
00:37:02.0362 3832 bowser - ok
00:37:02.0477 3832 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
00:37:02.0481 3832 BrFiltLo - ok
00:37:02.0538 3832 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
00:37:02.0546 3832 BrFiltUp - ok
00:37:02.0630 3832 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
00:37:02.0636 3832 Browser - ok
00:37:02.0743 3832 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
00:37:02.0750 3832 Brserid - ok
00:37:03.0034 3832 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
00:37:03.0086 3832 BrSerWdm - ok
00:37:03.0143 3832 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
00:37:03.0147 3832 BrUsbMdm - ok
00:37:03.0184 3832 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
00:37:03.0203 3832 BrUsbSer - ok
00:37:03.0299 3832 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
00:37:03.0304 3832 BTHMODEM - ok
00:37:03.0481 3832 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
00:37:03.0487 3832 cdfs - ok
00:37:03.0615 3832 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
00:37:03.0727 3832 cdrom - ok
00:37:03.0862 3832 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
00:37:03.0867 3832 CertPropSvc - ok
00:37:03.0984 3832 CFSvcs (c82162949bba6cc5d006c7bd008f3cf1) C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
00:37:03.0987 3832 CFSvcs - ok
00:37:04.0099 3832 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\DRIVERS\circlass.sys
00:37:04.0103 3832 circlass - ok
00:37:04.0202 3832 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
00:37:04.0213 3832 CLFS - ok
00:37:04.0299 3832 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
00:37:04.0306 3832 clr_optimization_v2.0.50727_32 - ok
00:37:04.0404 3832 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
00:37:04.0425 3832 clr_optimization_v4.0.30319_32 - ok
00:37:04.0594 3832 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
00:37:04.0598 3832 CmBatt - ok
00:37:04.0664 3832 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
00:37:04.0668 3832 cmdide - ok
00:37:04.0737 3832 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
00:37:04.0741 3832 Compbatt - ok
00:37:04.0797 3832 COMSysApp - ok
00:37:04.0834 3832 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
00:37:04.0845 3832 crcdisk - ok
00:37:04.0945 3832 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
00:37:04.0954 3832 Crusoe - ok
00:37:05.0076 3832 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
00:37:05.0082 3832 CryptSvc - ok
00:37:05.0195 3832 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
00:37:05.0227 3832 DcomLaunch - ok
00:37:05.0333 3832 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
00:37:05.0454 3832 DfsC - ok
00:37:05.0638 3832 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
00:37:05.0726 3832 DFSR - ok
00:37:05.0900 3832 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
00:37:05.0906 3832 Dhcp - ok
00:37:06.0037 3832 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
00:37:06.0044 3832 disk - ok
00:37:06.0199 3832 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
00:37:06.0208 3832 Dnscache - ok
00:37:06.0307 3832 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
00:37:06.0316 3832 dot3svc - ok
00:37:06.0448 3832 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
00:37:06.0459 3832 DPS - ok
00:37:06.0558 3832 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
00:37:06.0561 3832 drmkaud - ok
00:37:06.0671 3832 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
00:37:06.0704 3832 DXGKrnl - ok
00:37:06.0846 3832 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
00:37:06.0853 3832 E1G60 - ok
00:37:06.0983 3832 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
00:37:06.0992 3832 EapHost - ok
00:37:07.0125 3832 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
00:37:07.0147 3832 Ecache - ok
00:37:07.0264 3832 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
00:37:07.0287 3832 elxstor - ok
00:37:07.0392 3832 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
00:37:07.0429 3832 EMDMgmt - ok
00:37:07.0565 3832 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
00:37:07.0587 3832 EventSystem - ok
00:37:07.0730 3832 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
00:37:07.0738 3832 exfat - ok
00:37:07.0817 3832 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
00:37:07.0825 3832 fastfat - ok
00:37:07.0891 3832 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
00:37:07.0896 3832 fdc - ok
00:37:07.0982 3832 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
00:37:07.0988 3832 fdPHost - ok
00:37:08.0057 3832 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
00:37:08.0061 3832 FDResPub - ok
00:37:08.0141 3832 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
00:37:08.0147 3832 FileInfo - ok
00:37:08.0222 3832 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
00:37:08.0227 3832 Filetrace - ok
00:37:08.0302 3832 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
00:37:08.0306 3832 flpydisk - ok
00:37:08.0413 3832 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
00:37:08.0421 3832 FltMgr - ok
00:37:08.0573 3832 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
00:37:08.0590 3832 FontCache - ok
00:37:08.0673 3832 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
00:37:08.0677 3832 FontCache3.0.0.0 - ok
00:37:08.0781 3832 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
00:37:08.0785 3832 Fs_Rec - ok
00:37:08.0837 3832 FwLnk (cbc22823628544735625b280665e434e) C:\Windows\system32\DRIVERS\FwLnk.sys
00:37:08.0841 3832 FwLnk - ok
00:37:08.0888 3832 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
00:37:08.0892 3832 gagp30kx - ok
00:37:09.0000 3832 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\Drivers\GEARAspiWDM.sys
00:37:09.0005 3832 GEARAspiWDM - ok
00:37:09.0108 3832 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
00:37:09.0142 3832 gpsvc - ok
00:37:09.0263 3832 gupdate1c9bb254effe9cb (626a24ed1228580b9518c01930936df9) C:\Program Files\Google\Update\GoogleUpdate.exe
00:37:09.0271 3832 gupdate1c9bb254effe9cb - ok
00:37:09.0305 3832 gupdatem (626a24ed1228580b9518c01930936df9) C:\Program Files\Google\Update\GoogleUpdate.exe
00:37:09.0309 3832 gupdatem - ok
00:37:09.0391 3832 gusvc (c1b577b2169900f4cf7190c39f085794) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
00:37:09.0400 3832 gusvc - ok
00:37:09.0549 3832 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
00:37:09.0560 3832 HdAudAddService - ok
00:37:09.0653 3832 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
00:37:09.0688 3832 HDAudBus - ok
00:37:09.0748 3832 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
00:37:09.0752 3832 HidBth - ok
00:37:09.0833 3832 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\DRIVERS\hidir.sys
00:37:09.0856 3832 HidIr - ok
00:37:09.0969 3832 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
00:37:09.0973 3832 hidserv - ok
00:37:10.0046 3832 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
00:37:10.0051 3832 HidUsb - ok
00:37:10.0144 3832 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
00:37:10.0152 3832 hkmsvc - ok
00:37:10.0222 3832 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
00:37:10.0226 3832 HpCISSs - ok
00:37:10.0331 3832 HTTP (0eeeca26c8d4bde2a4664db058a81937) C:\Windows\system32\drivers\HTTP.sys
00:37:10.0353 3832 HTTP - ok
00:37:10.0405 3832 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
00:37:10.0409 3832 i2omp - ok
00:37:10.0547 3832 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
00:37:10.0655 3832 i8042prt - ok
00:37:10.0744 3832 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
00:37:10.0755 3832 iaStorV - ok
00:37:10.0872 3832 IDriverT (6f95324909b502e2651442c1548ab12f) C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
00:37:10.0879 3832 IDriverT - ok
00:37:10.0975 3832 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
00:37:11.0019 3832 idsvc - ok
00:37:11.0093 3832 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
00:37:11.0097 3832 iirsp - ok
00:37:11.0227 3832 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
00:37:11.0261 3832 IKEEXT - ok
00:37:11.0458 3832 IntcAzAudAddService (97cac2a7e92ffcb30c15101ab002ed30) C:\Windows\system32\drivers\RTKVHDA.sys
00:37:11.0536 3832 IntcAzAudAddService - ok
00:37:11.0668 3832 intelide (97469037714070e45194ed318d636401) C:\Windows\system32\drivers\intelide.sys
00:37:11.0671 3832 intelide - ok
00:37:11.0761 3832 intelppm (ce44cc04262f28216dd4341e9e36a16f) C:\Windows\system32\DRIVERS\intelppm.sys
00:37:11.0765 3832 intelppm - ok
00:37:11.0858 3832 IO_Memory - ok
00:37:11.0956 3832 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
00:37:11.0965 3832 IPBusEnum - ok
00:37:12.0051 3832 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
00:37:12.0057 3832 IpFilterDriver - ok
00:37:12.0100 3832 IpInIp - ok
00:37:12.0192 3832 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
00:37:12.0197 3832 IPMIDRV - ok
00:37:12.0279 3832 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
00:37:12.0285 3832 IPNAT - ok
00:37:12.0360 3832 iPod Service (ce004777b92dea56fe14ec900d20baa4) C:\Program Files\iPod\bin\iPodService.exe
00:37:12.0393 3832 iPod Service - ok
00:37:12.0483 3832 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
00:37:12.0489 3832 IRENUM - ok
00:37:12.0588 3832 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
00:37:12.0594 3832 isapnp - ok
00:37:12.0710 3832 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
00:37:12.0719 3832 iScsiPrt - ok
00:37:12.0815 3832 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
00:37:12.0819 3832 iteatapi - ok
00:37:12.0898 3832 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
00:37:12.0913 3832 iteraid - ok
00:37:12.0986 3832 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
00:37:12.0991 3832 kbdclass - ok
00:37:13.0078 3832 kbdhid (d2600cb17b7408b4a83f231dc9a11ac3) C:\Windows\system32\DRIVERS\kbdhid.sys
00:37:13.0082 3832 kbdhid - ok
00:37:13.0169 3832 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
00:37:13.0175 3832 KeyIso - ok
00:37:13.0292 3832 KR10I (e8ca038f51f7761bd6e3a3b0b8014263) C:\Windows\system32\drivers\kr10i.sys
00:37:13.0302 3832 KR10I - ok
00:37:13.0363 3832 KR10N (6a4adb9186dd0e114e623daf57e42b31) C:\Windows\system32\drivers\kr10n.sys
00:37:13.0373 3832 KR10N - ok
00:37:13.0481 3832 KR3NPXP (485e005cd51ff502fb16483eb4b69c17) C:\Windows\system32\drivers\kr3npxp.sys
00:37:13.0767 3832 KR3NPXP - ok
00:37:13.0911 3832 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
00:37:13.0934 3832 KSecDD - ok
00:37:14.0076 3832 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
00:37:14.0098 3832 KtmRm - ok
00:37:14.0176 3832 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
00:37:14.0188 3832 LanmanServer - ok
00:37:14.0334 3832 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
00:37:14.0348 3832 LanmanWorkstation - ok
00:37:14.0496 3832 Lavasoft Ad-Aware Service (4d99fca201b72e0f2ca996e357baa170) C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
00:37:14.0583 3832 Lavasoft Ad-Aware Service - ok
00:37:14.0675 3832 Lavasoft Kernexplorer (6c4a3804510ad8e0f0c07b5be3d44ddb) C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys
00:37:14.0678 3832 Lavasoft Kernexplorer - ok
00:37:14.0821 3832 Lbd (336abe8721cbc3110f1c6426da633417) C:\Windows\system32\DRIVERS\Lbd.sys
00:37:14.0827 3832 Lbd - ok
00:37:14.0910 3832 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
00:37:14.0916 3832 lltdio - ok
00:37:14.0989 3832 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
00:37:15.0004 3832 lltdsvc - ok
00:37:15.0063 3832 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
00:37:15.0068 3832 lmhosts - ok
00:37:15.0227 3832 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
00:37:15.0233 3832 LSI_FC - ok
00:37:15.0291 3832 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
00:37:15.0296 3832 LSI_SAS - ok
00:37:15.0354 3832 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
00:37:15.0359 3832 LSI_SCSI - ok
00:37:15.0441 3832 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
00:37:15.0448 3832 luafv - ok
00:37:15.0562 3832 McciCMService (4f74184920b2d6e33024409b4c5c57c1) C:\Program Files\Common Files\Motive\McciCMService.exe
00:37:15.0585 3832 McciCMService - ok
00:37:15.0708 3832 Media Jukebox 14 Service (5ac6d44ccb8d5c4abac823eaa85d571d) C:\Program Files\J River\Media Jukebox 14\JRService.exe
00:37:16.0097 3832 Media Jukebox 14 Service - ok
00:37:16.0212 3832 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
00:37:16.0217 3832 megasas - ok
00:37:16.0300 3832 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
00:37:16.0307 3832 MMCSS - ok
00:37:16.0372 3832 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
00:37:16.0376 3832 Modem - ok
00:37:16.0491 3832 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
00:37:16.0496 3832 monitor - ok
00:37:16.0607 3832 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
00:37:16.0612 3832 mouclass - ok
00:37:16.0652 3832 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
00:37:16.0657 3832 mouhid - ok
00:37:16.0739 3832 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
00:37:16.0744 3832 MountMgr - ok
00:37:16.0855 3832 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\Windows\system32\DRIVERS\MpFilter.sys
00:37:16.0862 3832 MpFilter - ok
00:37:17.0013 3832 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
00:37:17.0020 3832 mpio - ok
00:37:17.0084 3832 MpNWMon (2c3489660d4a8d514c123c3f0d67df46) C:\Windows\system32\DRIVERS\MpNWMon.sys
00:37:17.0088 3832 MpNWMon - ok
00:37:17.0155 3832 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
00:37:17.0160 3832 mpsdrv - ok
00:37:17.0214 3832 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
00:37:17.0220 3832 Mraid35x - ok
00:37:17.0303 3832 MREMP50 (80b2ec735495823ae5771a5f603e73bd) C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
00:37:17.0414 3832 MREMP50 - ok
00:37:17.0425 3832 MREMP50a64 - ok
00:37:17.0480 3832 MRESP50 (37d7c22f7e26da90e2d2d260e5d27846) C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
00:37:17.0550 3832 MRESP50 - ok
00:37:17.0561 3832 MRESP50a64 - ok
00:37:17.0703 3832 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
00:37:17.0710 3832 MRxDAV - ok
00:37:17.0783 3832 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
00:37:17.0791 3832 mrxsmb - ok
00:37:17.0874 3832 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
00:37:17.0883 3832 mrxsmb10 - ok
00:37:17.0932 3832 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
00:37:17.0938 3832 mrxsmb20 - ok
00:37:18.0028 3832 msahci (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys
00:37:18.0036 3832 msahci - ok
00:37:18.0096 3832 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
00:37:18.0102 3832 msdsm - ok
00:37:18.0174 3832 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
00:37:18.0184 3832 MSDTC - ok
00:37:18.0280 3832 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
00:37:18.0289 3832 Msfs - ok
00:37:18.0434 3832 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
00:37:18.0439 3832 msisadrv - ok
00:37:18.0510 3832 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
00:37:18.0519 3832 MSiSCSI - ok
00:37:18.0558 3832 msiserver - ok
00:37:18.0638 3832 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
00:37:18.0642 3832 MSKSSRV - ok
00:37:18.0780 3832 MsMpSvc (cfce43b70ca0cc4dcc8adb62b792b173) c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
00:37:18.0782 3832 MsMpSvc - ok
00:37:18.0918 3832 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
00:37:18.0922 3832 MSPCLOCK - ok
00:37:18.0976 3832 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
00:37:18.0979 3832 MSPQM - ok
00:37:19.0074 3832 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
00:37:19.0082 3832 MsRPC - ok
00:37:19.0145 3832 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
00:37:19.0149 3832 mssmbios - ok
00:37:19.0199 3832 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
00:37:19.0204 3832 MSTEE - ok
00:37:19.0288 3832 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
00:37:19.0293 3832 Mup - ok
00:37:19.0394 3832 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
00:37:19.0416 3832 napagent - ok
00:37:19.0498 3832 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
00:37:19.0507 3832 NativeWifiP - ok
00:37:19.0590 3832 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
00:37:19.0613 3832 NDIS - ok
00:37:19.0722 3832 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
00:37:19.0727 3832 NdisTapi - ok
00:37:19.0798 3832 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
00:37:19.0803 3832 Ndisuio - ok
00:37:19.0887 3832 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
00:37:19.0895 3832 NdisWan - ok
00:37:19.0972 3832 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
00:37:19.0978 3832 NDProxy - ok
00:37:20.0060 3832 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
00:37:20.0150 3832 NetBIOS - ok
00:37:20.0243 3832 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
00:37:20.0369 3832 netbt - ok
00:37:20.0434 3832 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
00:37:20.0439 3832 Netlogon - ok
00:37:20.0530 3832 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
00:37:20.0554 3832 Netman - ok
00:37:20.0662 3832 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
00:37:20.0676 3832 netprofm - ok
00:37:20.0738 3832 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
00:37:20.0745 3832 NetTcpPortSharing - ok
00:37:20.0826 3832 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
00:37:20.0833 3832 nfrd960 - ok
00:37:20.0907 3832 NisDrv (7b01c6172cfd0b10116175e09200d4b4) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
00:37:20.0913 3832 NisDrv - ok
00:37:20.0986 3832 NisSrv (a5cb074f34bbd89948e34a630d459c0c) c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
00:37:20.0995 3832 NisSrv - ok
00:37:21.0103 3832 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
00:37:21.0113 3832 NlaSvc - ok
00:37:21.0194 3832 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
00:37:21.0263 3832 Npfs - ok
00:37:21.0364 3832 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
00:37:21.0371 3832 nsi - ok
00:37:21.0428 3832 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
00:37:21.0432 3832 nsiproxy - ok
00:37:21.0590 3832 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
00:37:21.0634 3832 Ntfs - ok
00:37:21.0708 3832 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
00:37:21.0713 3832 ntrigdigi - ok
00:37:21.0827 3832 NuidFltr (cf7e041663119e09d2e118521ada9300) C:\Windows\system32\DRIVERS\NuidFltr.sys
00:37:21.0832 3832 NuidFltr - ok
00:37:21.0915 3832 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
00:37:21.0919 3832 Null - ok
00:37:21.0990 3832 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
00:37:21.0997 3832 nvraid - ok
00:37:22.0069 3832 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
00:37:22.0073 3832 nvstor - ok
00:37:22.0134 3832 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
00:37:22.0141 3832 nv_agp - ok
00:37:22.0257 3832 NwlnkFlt - ok
00:37:22.0302 3832 NwlnkFwd - ok
00:37:22.0416 3832 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
00:37:22.0422 3832 ohci1394 - ok
00:37:22.0510 3832 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
00:37:22.0544 3832 p2pimsvc - ok
00:37:22.0589 3832 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
00:37:22.0606 3832 p2psvc - ok
00:37:22.0717 3832 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
00:37:22.0723 3832 Parport - ok
00:37:22.0803 3832 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
00:37:22.0807 3832 partmgr - ok
00:37:22.0857 3832 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
00:37:22.0861 3832 Parvdm - ok
00:37:22.0938 3832 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
00:37:22.0945 3832 PcaSvc - ok
00:37:23.0099 3832 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
00:37:23.0107 3832 pci - ok
00:37:23.0213 3832 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
00:37:23.0216 3832 pciide - ok
00:37:23.0288 3832 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
00:37:23.0296 3832 pcmcia - ok
00:37:23.0432 3832 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
00:37:23.0474 3832 PEAUTH - ok
00:37:23.0564 3832 pinger (6dbf2ac2bdaff355995ab25eccc4cfe1) C:\Toshiba\IVP\ISM\pinger.exe
00:37:23.0571 3832 pinger - ok
00:37:23.0778 3832 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
00:37:23.0845 3832 pla - ok
00:37:23.0925 3832 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
00:37:23.0939 3832 PlugPlay - ok
00:37:24.0021 3832 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
00:37:24.0089 3832 PNRPAutoReg - ok
00:37:24.0132 3832 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
00:37:24.0149 3832 PNRPsvc - ok
00:37:24.0253 3832 Point32 (437827d69040c0c2565d47b024ed5372) C:\Windows\system32\DRIVERS\point32k.sys
00:37:24.0259 3832 Point32 - ok
00:37:24.0345 3832 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
00:37:24.0377 3832 PolicyAgent - ok
00:37:24.0470 3832 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
00:37:24.0475 3832 PptpMiniport - ok
00:37:24.0563 3832 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
00:37:24.0568 3832 Processor - ok
00:37:24.0627 3832 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
00:37:24.0639 3832 ProfSvc - ok
00:37:24.0724 3832 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
00:37:24.0728 3832 ProtectedStorage - ok
00:37:24.0812 3832 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
00:37:24.0817 3832 PSched - ok
00:37:24.0915 3832 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\Windows\system32\Drivers\PxHelp20.sys
00:37:24.0920 3832 PxHelp20 - ok
00:37:25.0051 3832 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
00:37:25.0096 3832 ql2300 - ok
00:37:25.0176 3832 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
00:37:25.0182 3832 ql40xx - ok
00:37:25.0264 3832 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
00:37:25.0280 3832 QWAVE - ok
00:37:25.0389 3832 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
00:37:25.0394 3832 QWAVEdrv - ok
00:37:25.0467 3832 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
00:37:25.0471 3832 RasAcd - ok
00:37:25.0554 3832 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
00:37:25.0565 3832 RasAuto - ok
00:37:25.0687 3832 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
00:37:25.0695 3832 Rasl2tp - ok
00:37:25.0805 3832 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
00:37:25.0819 3832 RasMan - ok
00:37:25.0911 3832 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
00:37:25.0916 3832 RasPppoe - ok
00:37:25.0986 3832 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
00:37:25.0993 3832 RasSstp - ok
00:37:26.0063 3832 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
00:37:26.0188 3832 rdbss - ok
00:37:26.0282 3832 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
00:37:26.0286 3832 RDPCDD - ok
00:37:26.0391 3832 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
00:37:26.0403 3832 rdpdr - ok
00:37:26.0464 3832 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
00:37:26.0468 3832 RDPENCDD - ok
00:37:26.0555 3832 RDPWD (79c6df8477250f5c54f7c5ae1d6b814e) C:\Windows\system32\drivers\RDPWD.sys
00:37:26.0565 3832 RDPWD - ok
00:37:26.0666 3832 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
00:37:26.0677 3832 RemoteAccess - ok
00:37:26.0750 3832 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
00:37:26.0761 3832 RemoteRegistry - ok
00:37:26.0838 3832 rimmptsk (c2ef513bbe069f0d4ee0938a76f975d3) C:\Windows\system32\DRIVERS\rimmptsk.sys
00:37:26.0844 3832 rimmptsk - ok
00:37:26.0952 3832 rimsptsk (a4216c71dd4f60b26418ccfd99cd0815) C:\Windows\system32\DRIVERS\rimsptsk.sys
00:37:26.0957 3832 rimsptsk - ok
00:37:27.0051 3832 rismxdp (2a2554cb24506e0a0508fc395c4a1b42) C:\Windows\system32\DRIVERS\rixdptsk.sys
00:37:27.0056 3832 rismxdp - ok
00:37:27.0113 3832 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
00:37:27.0122 3832 RpcLocator - ok
00:37:27.0218 3832 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
00:37:27.0235 3832 RpcSs - ok
00:37:27.0304 3832 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
00:37:27.0310 3832 rspndr - ok
00:37:27.0418 3832 RTL8169 (2d19a7469ea19993d0c12e627f4530bc) C:\Windows\system32\DRIVERS\Rtlh86.sys
00:37:27.0428 3832 RTL8169 - ok
00:37:27.0566 3832 RTL8187B (7fe5089eb5f624899de08c30db4377fc) C:\Windows\system32\DRIVERS\RTL8187B.sys
00:37:27.0588 3832 RTL8187B - ok
00:37:27.0657 3832 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
00:37:27.0663 3832 SamSs - ok
00:37:27.0768 3832 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
00:37:27.0774 3832 sbp2port - ok
00:37:27.0895 3832 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
00:37:27.0907 3832 SCardSvr - ok
00:37:28.0008 3832 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
00:37:28.0038 3832 Schedule - ok
00:37:28.0143 3832 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
00:37:28.0147 3832 SCPolicySvc - ok
00:37:28.0227 3832 sdbus (8f36b54688c31eed4580129040c6a3d3) C:\Windows\system32\DRIVERS\sdbus.sys
00:37:28.0234 3832 sdbus - ok
00:37:28.0301 3832 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
00:37:28.0313 3832 SDRSVC - ok
00:37:28.0360 3832 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
00:37:28.0366 3832 secdrv - ok
00:37:28.0482 3832 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
00:37:28.0490 3832 seclogon - ok
00:37:28.0539 3832 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
00:37:28.0548 3832 SENS - ok
00:37:28.0601 3832 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
00:37:28.0605 3832 Serenum - ok
00:37:28.0664 3832 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
00:37:28.0671 3832 Serial - ok
00:37:28.0751 3832 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
00:37:28.0755 3832 sermouse - ok
00:37:28.0896 3832 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
00:37:28.0907 3832 SessionEnv - ok
00:37:29.0055 3832 SessionLauncher - ok
00:37:29.0139 3832 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\DRIVERS\sffdisk.sys
00:37:29.0143 3832 sffdisk - ok
00:37:29.0235 3832 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
00:37:29.0239 3832 sffp_mmc - ok
00:37:29.0312 3832 sffp_sd (9f66a46c55d6f1ccabc79bb7afccc545) C:\Windows\system32\DRIVERS\sffp_sd.sys
00:37:29.0318 3832 sffp_sd - ok
00:37:29.0382 3832 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
00:37:29.0387 3832 sfloppy - ok
00:37:29.0465 3832 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
00:37:29.0488 3832 SharedAccess - ok
00:37:29.0599 3832 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
00:37:29.0614 3832 ShellHWDetection - ok
00:37:29.0681 3832 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
00:37:29.0688 3832 sisagp - ok
00:37:29.0741 3832 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
00:37:29.0745 3832 SiSRaid2 - ok
00:37:29.0859 3832 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
00:37:29.0866 3832 SiSRaid4 - ok
00:37:30.0132 3832 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
00:37:30.0308 3832 slsvc - ok
00:37:30.0389 3832 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
00:37:30.0399 3832 SLUINotify - ok
00:37:30.0481 3832 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
00:37:30.0605 3832 Smb - ok
00:37:30.0728 3832 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
00:37:30.0737 3832 SNMPTRAP - ok
00:37:30.0805 3832 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
00:37:30.0810 3832 spldr - ok
00:37:30.0884 3832 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
00:37:30.0896 3832 Spooler - ok
00:37:30.0988 3832 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
00:37:31.0010 3832 srv - ok
00:37:31.0127 3832 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
00:37:31.0135 3832 srv2 - ok
00:37:31.0180 3832 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
00:37:31.0189 3832 srvnet - ok
00:37:31.0266 3832 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
00:37:31.0279 3832 SSDPSRV - ok
00:37:31.0459 3832 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
00:37:31.0470 3832 SstpSvc - ok
00:37:31.0566 3832 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
00:37:31.0598 3832 stisvc - ok
00:37:31.0670 3832 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
00:37:31.0674 3832 swenum - ok
00:37:31.0796 3832 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
00:37:31.0819 3832 swprv - ok
00:37:31.0855 3832 Swupdtmr (327786c5d6bcf284fab14c2b5751f514) c:\Toshiba\IVP\swupdate\swupdtmr.exe
00:37:31.0859 3832 Swupdtmr - ok
00:37:31.0922 3832 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
00:37:31.0928 3832 Symc8xx - ok
00:37:31.0992 3832 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
00:37:31.0997 3832 Sym_hi - ok
00:37:32.0082 3832 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
00:37:32.0088 3832 Sym_u3 - ok
00:37:32.0212 3832 SynTP (70534d1e4f9ac990536d5fb5b550b3de) C:\Windows\system32\DRIVERS\SynTP.sys
00:37:32.0222 3832 SynTP - ok
00:37:32.0316 3832 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
00:37:32.0349 3832 SysMain - ok
00:37:32.0395 3832 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
00:37:32.0405 3832 TabletInputService - ok
00:37:32.0527 3832 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
00:37:32.0541 3832 TapiSrv - ok
00:37:32.0623 3832 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
00:37:32.0634 3832 TBS - ok
00:37:32.0737 3832 Tcpip (16731b631f28f63cd9f4cb60940e7ddd) C:\Windows\system32\drivers\tcpip.sys
00:37:32.0781 3832 Tcpip - ok
00:37:32.0893 3832 Tcpip6 (16731b631f28f63cd9f4cb60940e7ddd) C:\Windows\system32\DRIVERS\tcpip.sys
00:37:32.0912 3832 Tcpip6 - ok
00:37:32.0963 3832 tcpipreg (3fc13f09af9be487c7b4fac4070a036c) C:\Windows\system32\drivers\tcpipreg.sys
00:37:32.0968 3832 tcpipreg - ok
00:37:33.0013 3832 tdcmdpst (1825bceb47bf41c5a9f0e44de82fc27a) C:\Windows\system32\DRIVERS\tdcmdpst.sys
00:37:33.0019 3832 tdcmdpst - ok
00:37:33.0086 3832 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
00:37:33.0090 3832 TDPIPE - ok
00:37:33.0180 3832 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
00:37:33.0185 3832 TDTCP - ok
00:37:33.0274 3832 tdx (3b8b40a6f10cedd1cbdebf6abb9674ce) C:\Windows\system32\DRIVERS\tdx.sys
00:37:33.0281 3832 tdx - ok
00:37:33.0349 3832 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
00:37:33.0354 3832 TermDD - ok
00:37:33.0438 3832 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
00:37:33.0468 3832 TermService - ok
00:37:33.0555 3832 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
00:37:33.0566 3832 Themes - ok
00:37:33.0658 3832 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
00:37:33.0664 3832 THREADORDER - ok
00:37:33.0772 3832 TNaviSrv (804fed244fc47642cc635236d47a67d4) C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
00:37:33.0778 3832 TNaviSrv - ok
00:37:33.0837 3832 TODDSrv (d540858e65bfa6fded41ad2495ece344) C:\Windows\system32\TODDSrv.exe
00:37:33.0849 3832 TODDSrv - ok
00:37:33.0929 3832 TOSHIBA Bluetooth Service (87843b2da99051bc66e2d6c211e3d6a4) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
00:37:33.0936 3832 TOSHIBA Bluetooth Service - ok
00:37:34.0009 3832 Tosrfcom - ok
00:37:34.0069 3832 tosrfec (5c4103544612e5011ef46301b93d1aa6) C:\Windows\system32\DRIVERS\tosrfec.sys
00:37:34.0073 3832 tosrfec - ok
00:37:34.0187 3832 tos_sps32 (1ea5f27c29405bf49799feca77186da9) C:\Windows\system32\DRIVERS\tos_sps32.sys
00:37:34.0210 3832 tos_sps32 - ok
00:37:34.0283 3832 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
00:37:34.0293 3832 TrkWks - ok
00:37:34.0359 3832 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
00:37:34.0362 3832 TrustedInstaller - ok
00:37:34.0495 3832 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
00:37:34.0501 3832 tssecsrv - ok
00:37:34.0607 3832 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
00:37:34.0612 3832 tunmp - ok
00:37:34.0698 3832 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
00:37:34.0703 3832 tunnel - ok
00:37:34.0829 3832 TVALZ (792a8b80f8188aba4b2be271583f3e46) C:\Windows\system32\DRIVERS\TVALZ_O.SYS
00:37:34.0835 3832 TVALZ - ok
00:37:34.0893 3832 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
00:37:34.0899 3832 uagp35 - ok
00:37:34.0998 3832 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
00:37:35.0009 3832 udfs - ok
00:37:35.0116 3832 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
00:37:35.0130 3832 UI0Detect - ok
00:37:35.0212 3832 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
00:37:35.0218 3832 uliagpkx - ok
00:37:35.0336 3832 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
00:37:35.0347 3832 uliahci - ok
00:37:35.0416 3832 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
00:37:35.0423 3832 UlSata - ok
00:37:35.0506 3832 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
00:37:35.0513 3832 ulsata2 - ok
00:37:35.0613 3832 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
00:37:35.0619 3832 umbus - ok
00:37:35.0703 3832 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
00:37:35.0718 3832 upnphost - ok
00:37:35.0823 3832 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\Windows\system32\Drivers\usbaapl.sys
00:37:35.0913 3832 USBAAPL - ok
00:37:35.0989 3832 usbccgp (0adb101083dfa5039b1e65fb36551ab1) C:\Windows\system32\DRIVERS\usbccgp.sys
00:37:36.0001 3832 usbccgp - ok
00:37:36.0085 3832 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
00:37:36.0091 3832 usbcir - ok
00:37:36.0188 3832 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
00:37:36.0193 3832 usbehci - ok
00:37:36.0281 3832 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
00:37:36.0292 3832 usbhub - ok
00:37:36.0700 3832 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
00:37:36.0894 3832 usbohci - ok
00:37:38.0064 3832 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
00:37:38.0069 3832 usbprint - ok
00:37:38.0169 3832 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
00:37:38.0176 3832 USBSTOR - ok
00:37:38.0389 3832 usbuhci (325dbbacb8a36af9988ccf40eac228cc) C:\Windows\system32\DRIVERS\usbuhci.sys
00:37:38.0393 3832 usbuhci - ok
00:37:38.0508 3832 usbvideo (0a6b81f01bc86399482e27e6fda7b33b) C:\Windows\system32\Drivers\usbvideo.sys
00:37:38.0517 3832 usbvideo - ok
00:37:38.0585 3832 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
00:37:38.0598 3832 UxSms - ok
00:37:38.0690 3832 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
00:37:38.0724 3832 vds - ok
00:37:38.0849 3832 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
00:37:38.0853 3832 vga - ok
00:37:38.0945 3832 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
00:37:38.0950 3832 VgaSave - ok
00:37:39.0011 3832 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
00:37:39.0016 3832 viaagp - ok
00:37:39.0084 3832 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
00:37:39.0090 3832 ViaC7 - ok
00:37:39.0165 3832 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
00:37:39.0169 3832 viaide - ok
00:37:39.0278 3832 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
00:37:39.0308 3832 volmgr - ok
00:37:39.0455 3832 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
00:37:39.0479 3832 volmgrx - ok
00:37:39.0566 3832 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
00:37:39.0576 3832 volsnap - ok
00:37:39.0655 3832 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
00:37:39.0663 3832 vsmraid - ok
00:37:39.0781 3832 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
00:37:39.0836 3832 VSS - ok
00:37:39.0935 3832 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
00:37:39.0960 3832 W32Time - ok
00:37:40.0062 3832 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
00:37:40.0066 3832 WacomPen - ok
00:37:40.0153 3832 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
00:37:40.0158 3832 Wanarp - ok
00:37:40.0173 3832 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
00:37:40.0180 3832 Wanarpv6 - ok
00:37:40.0262 3832 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
00:37:40.0297 3832 wcncsvc - ok
00:37:40.0374 3832 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
00:37:40.0384 3832 WcsPlugInService - ok
00:37:40.0463 3832 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
00:37:40.0469 3832 Wd - ok
00:37:40.0576 3832 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
00:37:40.0638 3832 Wdf01000 - ok
00:37:40.0714 3832 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
00:37:40.0726 3832 WdiServiceHost - ok
00:37:40.0741 3832 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
00:37:40.0754 3832 WdiSystemHost - ok
00:37:40.0835 3832 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
00:37:40.0849 3832 WebClient - ok
00:37:40.0939 3832 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
00:37:40.0977 3832 Wecsvc - ok
00:37:41.0055 3832 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
00:37:41.0067 3832 wercplsupport - ok
00:37:41.0172 3832 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
00:37:41.0183 3832 WerSvc - ok
00:37:41.0302 3832 winbondcir (3fa87d56769838aac82fafc3e78fc732) C:\Windows\system32\DRIVERS\winbondcir.sys
00:37:41.0307 3832 winbondcir - ok
00:37:41.0330 3832 WinHttpAutoProxySvc - ok
00:37:41.0418 3832 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
00:37:41.0424 3832 Winmgmt - ok
00:37:41.0553 3832 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
00:37:41.0645 3832 WinRM - ok
00:37:41.0796 3832 WinUSB (676f4b665bdd8053eaa53ac1695b8074) C:\Windows\system32\DRIVERS\WinUSB.sys
00:37:41.0802 3832 WinUSB - ok
00:37:41.0888 3832 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
00:37:41.0921 3832 Wlansvc - ok
00:37:42.0007 3832 WmiAcpi (701a9f884a294327e9141d73746ee279) C:\Windows\system32\drivers\wmiacpi.sys
00:37:42.0012 3832 WmiAcpi - ok
00:37:42.0142 3832 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
00:37:42.0149 3832 wmiApSrv - ok
00:37:42.0249 3832 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
00:37:42.0290 3832 WMPNetworkSvc - ok
00:37:42.0388 3832 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
00:37:42.0402 3832 WPCSvc - ok
00:37:42.0527 3832 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
00:37:42.0539 3832 WPDBusEnum - ok
00:37:42.0656 3832 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
00:37:42.0735 3832 WpdUsb - ok
00:37:42.0855 3832 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
00:37:42.0900 3832 WPFFontCache_v0400 - ok
00:37:42.0998 3832 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
00:37:43.0003 3832 ws2ifsl - ok
00:37:43.0150 3832 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\System32\wscsvc.dll
00:37:43.0161 3832 wscsvc - ok
00:37:43.0229 3832 WSearch - ok
00:37:43.0431 3832 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
00:37:43.0499 3832 wuauserv - ok
00:37:43.0649 3832 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys
00:37:43.0656 3832 WudfPf - ok
00:37:43.0777 3832 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys
00:37:43.0785 3832 WUDFRd - ok
00:37:43.0836 3832 wudfsvc (2c0206ff8d2c75ac027d1096fa2fafda) C:\Windows\System32\WUDFSvc.dll
00:37:43.0846 3832 wudfsvc - ok
00:37:43.0915 3832 zd1211u(zydas) (11028c6a84a967070cb1286550f2058f) C:\Windows\system32\svcwrsssdk.dll
00:37:43.0973 3832 Suspicious file (NoAccess): C:\Windows\system32\svcwrsssdk.dll. md5: 11028c6a84a967070cb1286550f2058f
00:37:43.0975 3832 zd1211u(zydas) ( Backdoor.Multi.ZAccess.gen ) - infected
00:37:43.0975 3832 zd1211u(zydas) - detected Backdoor.Multi.ZAccess.gen (0)
00:37:44.0067 3832 MBR (0x1B8) (5b5e648d12fcadc244c1ec30318e1eb9) \Device\Harddisk0\DR0
00:37:44.0125 3832 \Device\Harddisk0\DR0 - ok
00:37:44.0136 3832 Boot (0x1200) (88790f2ca704ecd16940d813cb5020cd) \Device\Harddisk0\DR0\Partition0
00:37:44.0139 3832 \Device\Harddisk0\DR0\Partition0 - ok
00:37:44.0145 3832 ============================================================
00:37:44.0145 3832 Scan finished
00:37:44.0145 3832 ============================================================
00:37:44.0194 4504 Detected object count: 1
00:37:44.0194 4504 Actual detected object count: 1
00:37:56.0985 4504 zd1211u(zydas) ( Backdoor.Multi.ZAccess.gen ) - skipped by user
00:37:56.0985 4504 zd1211u(zydas) ( Backdoor.Multi.ZAccess.gen ) - User select action: Skip

#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,906 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:33 AM

Posted 24 March 2012 - 09:37 AM

Hello MrCoffeMate... You have a zeroaccess rootkit infection. We will need to start a new post with different logs to remove it.

Please go here....Preparation Guide ,do steps 6-9.

Create a DDS log and post it in the new topic explained in step 9 which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.
If GMER won't run skip it and move on.

Let me know if that went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 MrCoffeeMate

MrCoffeeMate
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Local time:09:33 AM

Posted 24 March 2012 - 12:16 PM

Step 9 seems confusing. At one point you ask for the DDS log to be copied and pasted, and in another place it says only to zip and attach it. Which one do you want?

Also, if I need to give you a detailed version of the issues I am (or have been) having, then I guess what I will do is copy what I have already reported earlier in this thread, and paste it. Why can't you just go back and re-read that. It IS extremely detailed, IMHO.

I also noticed that enabling the Firewall was recommended, as well. But, alas, unfortunately I am unable to do so right now, as a result of the infection which has attacked my computer. . .

Right now I'm backing up my hard drive. I'll try to get to the rest of these things throughout the day, today, or this evening.

Thanks.

Edited by MrCoffeeMate, 24 March 2012 - 12:24 PM.


#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,906 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:33 AM

Posted 24 March 2012 - 04:27 PM

At one point you ask for the DDS log to be copied and pasted, and in another place it says only to zip and attach it. Which one do you want?

Copy/paste the DDS log in the body of the post with your description.
Attach the Attach.txt file created by DDS.
You can just reuse the Post 1 content from this topic. Include this link also..

http://www.bleepingcomputer.com/forums/topic447346.html/page__pid__2641694#entry2641694

Don't worry about the firewall.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 MrCoffeeMate

MrCoffeeMate
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Local time:09:33 AM

Posted 25 March 2012 - 11:50 AM

Well, as an update for you, my laptop which has the infection on it has officially been banned from the Internet. I cannot get online no matter what I try.

I am presently using a much older laptop, a Dell Inspiron 1150, which I've had since around 2003. It is incredibly SLOW and inefficient, but aside from using my iPod Touch (or my wife's laptop --- which is very unlikely right now), I am kind of screwed, because I can't really proceed from Step 6. What I need to do now is download all of the tools which you mention, beginning with the DeFogger tool. I wonder if I can just download these things to the Inspiron, and save them to a flash drive?

Too bad the CD ROM drive doesn't work on the Dell. . .but anyway, I am going to try to download these things to the Inspiron, and see if they can be saved to a flash drive.

You also might be interested in finding out that, each time I start up the Toshiba (infected) laptop, I get the white screen right after I log on to Windows. It lasts for anywhere from 30 seconds to 2 minutes. Then it displays my desktop the way its supposed to be displayed.

Anyway, thanks again!!

#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,906 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:33 AM

Posted 25 March 2012 - 01:44 PM

If you can just run DDS off the USB and get that log into the new topic that will get us started. You can explain all this new stuff in the new topic so we can psoceed from there.

Include a link to this yopic it may be easier.

Link
http://www.bleepingcomputer.com/forums/topic447346.html/page__gopid__2642693#entry2642693

Edited by boopme, 25 March 2012 - 01:44 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#14 MrCoffeeMate

MrCoffeeMate
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Local time:09:33 AM

Posted 25 March 2012 - 02:16 PM

OK, I actually was able to post my DDS LOG in the other place you had told me to post it.

Thanks.

#15 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,906 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:33 AM

Posted 25 March 2012 - 02:26 PM

OK, great... Don't panic. It needs to be researched and then you will get a reply.

Now that your log is properly posted, you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a Malware Removal Team member, nor should you continue to ask for help elsewhere. Doing so can result in system changes which may not show it the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

From this point on the Malware Removal Team should be the only members that you take advice from, until they have verified your log as clean.

Please be patient. It may take a while to get a response because the Malware Removal Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the Malware Removal Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRL Team member is already assisting you and not open the thread to respond.

The current wait time is 1 - 3 days and ALL logs are answered.

To avoid confusion, I am closing this topic.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users