Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

System Check virus


  • Please log in to reply
9 replies to this topic

#1 ianchesh

ianchesh

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:07:56 AM

Posted 28 March 2012 - 12:47 PM

So I've got the "SYSTEM CHECK Virus". I can't access anything in the start menu. My desktop is completely blank with a black screen. When I start the computer about 15 "Windows - Delayed Write Failed" errors pop up immediately and then the System Check screen pops up and starts scanning and ends up "finding" 14 "errors".

I tried booting in safe mode which didn't help. It loaded and none of the "Windows- Delayed Write Failed" errors pop up, either did the System Check screen but I'm not able to do anything with the start menu (no options) and task manager still doesn't work.

Any help would be amazing!

I have Windows XP.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:56 AM

Posted 28 March 2012 - 01:49 PM

boot the PC into safemode with networking

Press Windows+R key and type

cmd and click ok

If your task manager is disabled,copy and run this command

Echo y | reg delete HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System /v DisableTaskMgr

Press ENTER

If you're desktop is blank and unable to right click on it ,run this command

Echo y | reg delete HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer /v NoDesktop


Restart your PC in safemode with networking

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log


Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

good luck

#3 ianchesh

ianchesh
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:07:56 AM

Posted 28 March 2012 - 02:18 PM

I tried to run this "Echo y | reg delete HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System /v DisableTaskMgr" but when I hit enter is says "Windows cannot find 'Echo". Make sure you typed the name correctly, and then try again. To search for a file, click the Start button, and then click Search."

If I remove the "Echo y |" it asks if I want to "delete the registry value DisableTaskMgr (Y/N)?"

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:56 AM

Posted 28 March 2012 - 03:14 PM

yes go ahead and delete it,do the same for next command

good luck

#5 ianchesh

ianchesh
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:07:56 AM

Posted 28 March 2012 - 03:26 PM

Ok I did the first two commands. Restarted in safe mode w/ networking. I'm able to get into task manager & desktop is showing "My Computer" and "Recycle Bin" but start menu has no options still.

Edited by ianchesh, 28 March 2012 - 03:36 PM.


#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:56 AM

Posted 28 March 2012 - 04:50 PM

Press Windows+R key and type

%temp% and click ok

If you're lucky you will find a folder called SMTMP,copy it to a safe location(let me know if you have the folder)

Download and run UNHIDE

http://download.bleepingcomputer.com/grinler/unhide.exe

Run it

Follow other instructions

#7 ianchesh

ianchesh
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:07:56 AM

Posted 28 March 2012 - 09:05 PM

I did the "%temp%" command and the only folder I have is "WPDNSE" which is empty. I can't access the internet on that computer so how do I download these files onto my computer?

#8 ianchesh

ianchesh
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:07:56 AM

Posted 28 March 2012 - 09:31 PM

Got into Internet Explorer with CMD and tried to download MalwareBytes but as it finished installing (I already have/had it on my computer) it said it couldn't finish and was "rolling back install".

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:56 AM

Posted 29 March 2012 - 08:29 AM

If you're unable to download files,Copy all the tools from a clean PC to infected PC.

I want you to run the UNHIDE tool first and then try installing malwarebytes

good luck

#10 ianchesh

ianchesh
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:07:56 AM

Posted 29 March 2012 - 09:54 PM

19:50:51.0375 1504 TDSS rootkit removing tool 2.7.23.0 Mar 26 2012 13:40:18
19:50:51.0968 1504 ============================================================
19:50:51.0968 1504 Current date / time: 2012/03/29 19:50:51.0968
19:50:51.0968 1504 SystemInfo:
19:50:51.0968 1504
19:50:51.0968 1504 OS Version: 5.1.2600 ServicePack: 3.0
19:50:51.0968 1504 Product type: Workstation
19:50:51.0968 1504 ComputerName: I-00363D3F64A94
19:50:51.0968 1504 UserName: Jaimee And Ian
19:50:51.0968 1504 Windows directory: C:\WINDOWS
19:50:51.0968 1504 System windows directory: C:\WINDOWS
19:50:51.0968 1504 Processor architecture: Intel x86
19:50:51.0968 1504 Number of processors: 2
19:50:51.0968 1504 Page size: 0x1000
19:50:51.0968 1504 Boot type: Normal boot
19:50:51.0968 1504 ============================================================
19:50:54.0250 1504 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
19:50:54.0250 1504 Drive \Device\Harddisk1\DR2 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
19:50:54.0281 1504 \Device\Harddisk0\DR0:
19:50:54.0281 1504 MBR used
19:50:54.0281 1504 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xDF93782
19:50:54.0281 1504 \Device\Harddisk1\DR2:
19:50:54.0281 1504 MBR used
19:50:54.0281 1504 \Device\Harddisk1\DR2\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C41
19:50:54.0328 1504 Initialize success
19:50:54.0328 1504 ============================================================
19:51:06.0546 3104 ============================================================
19:51:06.0546 3104 Scan started
19:51:06.0546 3104 Mode: Manual; TDLFS;
19:51:06.0546 3104 ============================================================
19:51:07.0671 3104 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
19:51:07.0671 3104 !SASCORE - ok
19:51:07.0859 3104 Abiosdsk - ok
19:51:08.0046 3104 abp480n5 - ok
19:51:08.0140 3104 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:51:08.0140 3104 ACPI - ok
19:51:08.0187 3104 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
19:51:08.0187 3104 ACPIEC - ok
19:51:08.0234 3104 adpu160m - ok
19:51:08.0296 3104 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
19:51:08.0296 3104 aec - ok
19:51:08.0343 3104 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
19:51:08.0359 3104 AFD - ok
19:51:08.0375 3104 Aha154x - ok
19:51:08.0406 3104 aic78u2 - ok
19:51:08.0421 3104 aic78xx - ok
19:51:08.0625 3104 ALCXWDM (dd8520280304b6145a6be31008748c7c) C:\WINDOWS\system32\drivers\ALCXWDM.SYS
19:51:08.0734 3104 ALCXWDM - ok
19:51:08.0796 3104 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
19:51:08.0796 3104 Alerter - ok
19:51:08.0843 3104 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
19:51:08.0843 3104 ALG - ok
19:51:08.0859 3104 AliIde - ok
19:51:08.0906 3104 AmdK8 (efbb0956baed786e137351b5ca272aef) C:\WINDOWS\system32\DRIVERS\AmdK8.sys
19:51:08.0906 3104 AmdK8 - ok
19:51:08.0953 3104 AmdLLD (ad8fa28d8ed0d0a689a0559085ce0f18) C:\WINDOWS\system32\DRIVERS\AmdLLD.sys
19:51:08.0953 3104 AmdLLD - ok
19:51:09.0000 3104 amsint - ok
19:51:09.0125 3104 Apple Mobile Device (3debbecf665dcdde3a95d9b902010817) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:51:09.0125 3104 Apple Mobile Device - ok
19:51:09.0187 3104 AppMgmt (d8849f77c0b66226335a59d26cb4edc6) C:\WINDOWS\System32\appmgmts.dll
19:51:09.0187 3104 AppMgmt - ok
19:51:09.0250 3104 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
19:51:09.0250 3104 Arp1394 - ok
19:51:09.0281 3104 asc - ok
19:51:09.0296 3104 asc3350p - ok
19:51:09.0328 3104 asc3550 - ok
19:51:09.0453 3104 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
19:51:09.0453 3104 aspnet_state - ok
19:51:09.0484 3104 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:51:09.0484 3104 AsyncMac - ok
19:51:09.0515 3104 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
19:51:09.0515 3104 atapi - ok
19:51:09.0546 3104 Atdisk - ok
19:51:09.0625 3104 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:51:09.0625 3104 Atmarpc - ok
19:51:09.0703 3104 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
19:51:09.0703 3104 AudioSrv - ok
19:51:09.0765 3104 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
19:51:09.0765 3104 audstub - ok
19:51:09.0812 3104 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
19:51:09.0812 3104 Beep - ok
19:51:09.0890 3104 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
19:51:10.0000 3104 BITS - ok
19:51:10.0125 3104 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
19:51:10.0140 3104 Bonjour Service - ok
19:51:10.0203 3104 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
19:51:10.0203 3104 Browser - ok
19:51:10.0359 3104 catchme - ok
19:51:10.0421 3104 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
19:51:10.0421 3104 cbidf2k - ok
19:51:10.0500 3104 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
19:51:10.0500 3104 CCDECODE - ok
19:51:10.0531 3104 cd20xrnt - ok
19:51:10.0593 3104 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
19:51:10.0593 3104 Cdaudio - ok
19:51:10.0656 3104 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
19:51:10.0656 3104 Cdfs - ok
19:51:10.0687 3104 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:51:10.0687 3104 Cdrom - ok
19:51:10.0718 3104 Changer - ok
19:51:10.0781 3104 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
19:51:10.0781 3104 CiSvc - ok
19:51:10.0812 3104 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
19:51:10.0812 3104 ClipSrv - ok
19:51:10.0937 3104 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:51:10.0937 3104 clr_optimization_v2.0.50727_32 - ok
19:51:11.0031 3104 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:51:11.0031 3104 clr_optimization_v4.0.30319_32 - ok
19:51:11.0062 3104 CmdIde - ok
19:51:11.0093 3104 COMSysApp - ok
19:51:11.0109 3104 Cpqarray - ok
19:51:11.0156 3104 cpuz135 - ok
19:51:11.0218 3104 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
19:51:11.0218 3104 CryptSvc - ok
19:51:11.0265 3104 ctsfm2k (8db84de3aab34a8b4c2f644eff41cd76) C:\WINDOWS\system32\DRIVERS\ctsfm2k.sys
19:51:11.0265 3104 ctsfm2k - ok
19:51:11.0296 3104 dac2w2k - ok
19:51:11.0328 3104 dac960nt - ok
19:51:11.0406 3104 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
19:51:11.0421 3104 DcomLaunch - ok
19:51:11.0484 3104 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
19:51:11.0484 3104 Dhcp - ok
19:51:11.0546 3104 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
19:51:11.0546 3104 Disk - ok
19:51:11.0578 3104 dmadmin - ok
19:51:11.0640 3104 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
19:51:11.0671 3104 dmboot - ok
19:51:11.0718 3104 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
19:51:11.0718 3104 dmio - ok
19:51:11.0734 3104 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
19:51:11.0734 3104 dmload - ok
19:51:11.0765 3104 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
19:51:11.0765 3104 dmserver - ok
19:51:11.0828 3104 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
19:51:11.0828 3104 DMusic - ok
19:51:11.0906 3104 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
19:51:11.0906 3104 Dnscache - ok
19:51:11.0953 3104 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
19:51:11.0953 3104 Dot3svc - ok
19:51:12.0000 3104 dpti2o - ok
19:51:12.0062 3104 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
19:51:12.0062 3104 drmkaud - ok
19:51:12.0093 3104 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
19:51:12.0093 3104 EapHost - ok
19:51:12.0140 3104 EntDrv51 - ok
19:51:12.0187 3104 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
19:51:12.0187 3104 ERSvc - ok
19:51:12.0234 3104 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
19:51:12.0250 3104 Eventlog - ok
19:51:12.0328 3104 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\system32\es.dll
19:51:12.0328 3104 EventSystem - ok
19:51:12.0390 3104 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
19:51:12.0390 3104 Fastfat - ok
19:51:12.0468 3104 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
19:51:12.0468 3104 FastUserSwitchingCompatibility - ok
19:51:12.0500 3104 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
19:51:12.0500 3104 Fdc - ok
19:51:12.0531 3104 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
19:51:12.0531 3104 Fips - ok
19:51:12.0578 3104 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
19:51:12.0578 3104 Flpydisk - ok
19:51:12.0656 3104 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
19:51:12.0656 3104 FltMgr - ok
19:51:12.0750 3104 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:51:12.0765 3104 FontCache3.0.0.0 - ok
19:51:12.0781 3104 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:51:12.0781 3104 Fs_Rec - ok
19:51:12.0812 3104 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:51:12.0812 3104 Ftdisk - ok
19:51:12.0921 3104 Futuremark SystemInfo Service (84ec7ffdc8a0b0b1833f690edea2f9f9) C:\Program Files\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe
19:51:12.0937 3104 Futuremark SystemInfo Service - ok
19:51:13.0000 3104 gameenum (065639773d8b03f33577f6cdaea21063) C:\WINDOWS\system32\DRIVERS\gameenum.sys
19:51:13.0000 3104 gameenum - ok
19:51:13.0078 3104 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
19:51:13.0078 3104 GEARAspiWDM - ok
19:51:13.0156 3104 getPlusHelper (63677825d08cf4458caae9ef2372e5d6) C:\Program Files\NOS\bin\getPlus_Helper.dll
19:51:13.0156 3104 getPlusHelper - ok
19:51:13.0156 3104 GMSIPCI - ok
19:51:13.0234 3104 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:51:13.0234 3104 Gpc - ok
19:51:13.0265 3104 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:51:13.0265 3104 helpsvc - ok
19:51:13.0312 3104 HidServ (deb04da35cc871b6d309b77e1443c796) C:\WINDOWS\System32\hidserv.dll
19:51:13.0312 3104 HidServ - ok
19:51:13.0359 3104 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:51:13.0359 3104 hidusb - ok
19:51:13.0406 3104 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
19:51:13.0406 3104 hkmsvc - ok
19:51:13.0453 3104 hpn - ok
19:51:13.0515 3104 HPZid412 (9f1d80908658eb7f1bf70809e0b51470) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
19:51:13.0515 3104 HPZid412 - ok
19:51:13.0562 3104 HPZipr12 (f7e3e9d50f9cd3de28085a8fdaa0a1c3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
19:51:13.0562 3104 HPZipr12 - ok
19:51:13.0625 3104 HPZius12 (cf1b7951b4ec8d13f3c93b74bb2b461b) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
19:51:13.0625 3104 HPZius12 - ok
19:51:13.0718 3104 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
19:51:13.0718 3104 HTTP - ok
19:51:13.0765 3104 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
19:51:13.0765 3104 HTTPFilter - ok
19:51:13.0812 3104 i2omgmt - ok
19:51:13.0828 3104 i2omp - ok
19:51:13.0890 3104 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:51:13.0890 3104 i8042prt - ok
19:51:14.0015 3104 idsvc (c01ac32dc5c03076cfb852cb5da5229c) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:51:14.0046 3104 idsvc - ok
19:51:14.0125 3104 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
19:51:14.0125 3104 Imapi - ok
19:51:14.0187 3104 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe
19:51:14.0187 3104 ImapiService - ok
19:51:14.0250 3104 ini910u - ok
19:51:14.0265 3104 IntelIde - ok
19:51:14.0328 3104 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
19:51:14.0328 3104 Ip6Fw - ok
19:51:14.0390 3104 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:51:14.0390 3104 IpFilterDriver - ok
19:51:14.0453 3104 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:51:14.0453 3104 IpInIp - ok
19:51:14.0500 3104 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:51:14.0500 3104 IpNat - ok
19:51:14.0593 3104 iPod Service (178fe38b7740f598391eb2f51ae4ccac) C:\Program Files\iPod\bin\iPodService.exe
19:51:14.0656 3104 iPod Service - ok
19:51:14.0718 3104 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:51:14.0718 3104 IPSec - ok
19:51:14.0750 3104 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
19:51:14.0750 3104 IRENUM - ok
19:51:14.0812 3104 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:51:14.0812 3104 isapnp - ok
19:51:14.0890 3104 JavaQuickStarterService (381b25dc8e958d905b33130d500bbf29) C:\Program Files\Java\jre6\bin\jqs.exe
19:51:14.0890 3104 JavaQuickStarterService - ok
19:51:14.0921 3104 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:51:14.0921 3104 Kbdclass - ok
19:51:14.0968 3104 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
19:51:14.0968 3104 kbdhid - ok
19:51:15.0031 3104 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
19:51:15.0046 3104 kmixer - ok
19:51:15.0125 3104 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
19:51:15.0125 3104 KSecDD - ok
19:51:15.0187 3104 lanmanserver (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
19:51:15.0187 3104 lanmanserver - ok
19:51:15.0265 3104 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
19:51:15.0265 3104 lanmanworkstation - ok
19:51:15.0437 3104 Lavasoft Ad-Aware Service (ea38136981c61c571d52c380daad46ef) C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
19:51:15.0531 3104 Lavasoft Ad-Aware Service - ok
19:51:15.0562 3104 Lavasoft Kernexplorer (6c4a3804510ad8e0f0c07b5be3d44ddb) C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys
19:51:15.0562 3104 Lavasoft Kernexplorer - ok
19:51:15.0640 3104 Lbd (336abe8721cbc3110f1c6426da633417) C:\WINDOWS\system32\DRIVERS\Lbd.sys
19:51:15.0640 3104 Lbd - ok
19:51:15.0671 3104 lbrtfdc - ok
19:51:15.0750 3104 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
19:51:15.0750 3104 LmHosts - ok
19:51:15.0796 3104 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
19:51:15.0796 3104 Messenger - ok
19:51:15.0875 3104 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
19:51:15.0875 3104 mnmdd - ok
19:51:15.0921 3104 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe
19:51:15.0921 3104 mnmsrvc - ok
19:51:15.0968 3104 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
19:51:15.0968 3104 Modem - ok
19:51:16.0015 3104 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:51:16.0015 3104 Mouclass - ok
19:51:16.0062 3104 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:51:16.0062 3104 mouhid - ok
19:51:16.0093 3104 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
19:51:16.0093 3104 MountMgr - ok
19:51:16.0109 3104 mraid35x - ok
19:51:16.0140 3104 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:51:16.0140 3104 MRxDAV - ok
19:51:16.0203 3104 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:51:16.0218 3104 MRxSmb - ok
19:51:16.0281 3104 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe
19:51:16.0281 3104 MSDTC - ok
19:51:16.0343 3104 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
19:51:16.0343 3104 Msfs - ok
19:51:16.0359 3104 MSIServer - ok
19:51:16.0421 3104 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:51:16.0421 3104 MSKSSRV - ok
19:51:16.0468 3104 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:51:16.0468 3104 MSPCLOCK - ok
19:51:16.0531 3104 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
19:51:16.0531 3104 MSPQM - ok
19:51:16.0593 3104 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:51:16.0593 3104 mssmbios - ok
19:51:16.0687 3104 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
19:51:16.0687 3104 MSTEE - ok
19:51:16.0750 3104 ms_mpu401 (ca3e22598f411199adc2dfee76cd0ae0) C:\WINDOWS\system32\drivers\msmpu401.sys
19:51:16.0750 3104 ms_mpu401 - ok
19:51:16.0781 3104 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
19:51:16.0781 3104 Mup - ok
19:51:16.0843 3104 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
19:51:16.0843 3104 NABTSFEC - ok
19:51:16.0906 3104 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
19:51:16.0906 3104 napagent - ok
19:51:16.0984 3104 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
19:51:16.0984 3104 NDIS - ok
19:51:17.0031 3104 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
19:51:17.0031 3104 NdisIP - ok
19:51:17.0093 3104 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:51:17.0093 3104 NdisTapi - ok
19:51:17.0156 3104 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:51:17.0156 3104 Ndisuio - ok
19:51:17.0187 3104 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:51:17.0187 3104 NdisWan - ok
19:51:17.0250 3104 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
19:51:17.0250 3104 NDProxy - ok
19:51:17.0265 3104 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
19:51:17.0281 3104 NetBIOS - ok
19:51:17.0343 3104 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
19:51:17.0343 3104 NetBT - ok
19:51:17.0390 3104 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
19:51:17.0406 3104 NetDDE - ok
19:51:17.0406 3104 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
19:51:17.0406 3104 NetDDEdsdm - ok
19:51:17.0484 3104 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:51:17.0484 3104 Netlogon - ok
19:51:17.0546 3104 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
19:51:17.0546 3104 Netman - ok
19:51:17.0640 3104 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:51:17.0656 3104 NetTcpPortSharing - ok
19:51:17.0703 3104 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
19:51:17.0703 3104 NIC1394 - ok
19:51:17.0765 3104 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
19:51:17.0781 3104 Nla - ok
19:51:17.0843 3104 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
19:51:17.0843 3104 Npfs - ok
19:51:17.0890 3104 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
19:51:17.0953 3104 Ntfs - ok
19:51:18.0000 3104 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:51:18.0000 3104 NtLmSsp - ok
19:51:18.0062 3104 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
19:51:18.0093 3104 NtmsSvc - ok
19:51:18.0140 3104 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
19:51:18.0140 3104 Null - ok
19:51:18.0578 3104 nv (4b54dcd6adee535df80f07c59ddd8f14) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
19:51:18.0968 3104 nv - ok
19:51:19.0046 3104 NVSvc (cc4f8220ead1f6a38d51679708f435b9) C:\WINDOWS\system32\nvsvc32.exe
19:51:19.0062 3104 NVSvc - ok
19:51:19.0125 3104 NWCWorkstation (2c2fd0e6b0180f94c260dd26706aa5f4) C:\WINDOWS\System32\nwwks.dll
19:51:19.0125 3104 NWCWorkstation - ok
19:51:19.0171 3104 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:51:19.0187 3104 NwlnkFlt - ok
19:51:19.0234 3104 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:51:19.0234 3104 NwlnkFwd - ok
19:51:19.0312 3104 NwlnkIpx (8b8b1be2dba4025da6786c645f77f123) C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys
19:51:19.0312 3104 NwlnkIpx - ok
19:51:19.0343 3104 NwlnkNb (56d34a67c05e94e16377c60609741ff8) C:\WINDOWS\system32\DRIVERS\nwlnknb.sys
19:51:19.0359 3104 NwlnkNb - ok
19:51:19.0390 3104 NwlnkSpx (c0bb7d1615e1acbdc99757f6ceaf8cf0) C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys
19:51:19.0390 3104 NwlnkSpx - ok
19:51:19.0421 3104 NWRDR (36b9b950e3d2e100970a48d8bad86740) C:\WINDOWS\system32\DRIVERS\nwrdr.sys
19:51:19.0421 3104 NWRDR - ok
19:51:19.0437 3104 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
19:51:19.0437 3104 ohci1394 - ok
19:51:19.0515 3104 ose (7a56cf3e3f12e8af599963b16f50fb6a) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:51:19.0515 3104 ose - ok
19:51:19.0593 3104 ossrv (103a9b117a7d9903111955cdafe65ac6) C:\WINDOWS\system32\DRIVERS\ctoss2k.sys
19:51:19.0593 3104 ossrv - ok
19:51:19.0687 3104 P17 (df886ffed69aead0cf608b89b18c3f6f) C:\WINDOWS\system32\drivers\P17.sys
19:51:19.0734 3104 P17 - ok
19:51:19.0796 3104 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
19:51:19.0796 3104 Parport - ok
19:51:19.0828 3104 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
19:51:19.0828 3104 PartMgr - ok
19:51:19.0890 3104 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
19:51:19.0890 3104 ParVdm - ok
19:51:19.0921 3104 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
19:51:19.0921 3104 PCI - ok
19:51:19.0953 3104 PCIDump - ok
19:51:19.0984 3104 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
19:51:19.0984 3104 PCIIde - ok
19:51:20.0046 3104 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
19:51:20.0062 3104 Pcmcia - ok
19:51:20.0093 3104 PDCOMP - ok
19:51:20.0125 3104 PDFRAME - ok
19:51:20.0140 3104 PDRELI - ok
19:51:20.0171 3104 PDRFRAME - ok
19:51:20.0187 3104 perc2 - ok
19:51:20.0218 3104 perc2hib - ok
19:51:20.0312 3104 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
19:51:20.0312 3104 PlugPlay - ok
19:51:20.0359 3104 Pml Driver HPZ12 (9d84376931440f3679beef2a414fa493) C:\WINDOWS\system32\HPZipm12.exe
19:51:20.0359 3104 Pml Driver HPZ12 - ok
19:51:20.0406 3104 PnkBstrA (681da309716aeb98bc901d7a0458d931) C:\WINDOWS\system32\PnkBstrA.exe
19:51:20.0406 3104 PnkBstrA - ok
19:51:20.0468 3104 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:51:20.0468 3104 PolicyAgent - ok
19:51:20.0531 3104 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:51:20.0531 3104 PptpMiniport - ok
19:51:20.0562 3104 Processor (a32bebaf723557681bfc6bd93e98bd26) C:\WINDOWS\system32\DRIVERS\processr.sys
19:51:20.0562 3104 Processor - ok
19:51:20.0578 3104 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:51:20.0593 3104 ProtectedStorage - ok
19:51:20.0609 3104 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
19:51:20.0609 3104 PSched - ok
19:51:20.0640 3104 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:51:20.0640 3104 Ptilink - ok
19:51:20.0671 3104 ql1080 - ok
19:51:20.0687 3104 Ql10wnt - ok
19:51:20.0718 3104 ql12160 - ok
19:51:20.0750 3104 ql1240 - ok
19:51:20.0781 3104 ql1280 - ok
19:51:20.0812 3104 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:51:20.0812 3104 RasAcd - ok
19:51:20.0859 3104 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
19:51:20.0859 3104 RasAuto - ok
19:51:20.0906 3104 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:51:20.0906 3104 Rasl2tp - ok
19:51:20.0968 3104 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
19:51:20.0968 3104 RasMan - ok
19:51:21.0000 3104 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:51:21.0000 3104 RasPppoe - ok
19:51:21.0015 3104 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
19:51:21.0015 3104 Raspti - ok
19:51:21.0046 3104 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:51:21.0046 3104 Rdbss - ok
19:51:21.0078 3104 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:51:21.0078 3104 RDPCDD - ok
19:51:21.0125 3104 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
19:51:21.0125 3104 rdpdr - ok
19:51:21.0203 3104 RDPWD (5b3055daa788bd688594d2f5981f2a83) C:\WINDOWS\system32\drivers\RDPWD.sys
19:51:21.0203 3104 RDPWD - ok
19:51:21.0281 3104 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
19:51:21.0281 3104 RDSessMgr - ok
19:51:21.0359 3104 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
19:51:21.0359 3104 redbook - ok
19:51:21.0406 3104 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
19:51:21.0406 3104 RemoteAccess - ok
19:51:21.0484 3104 RemoteRegistry (5b19b557b0c188210a56a6b699d90b8f) C:\WINDOWS\system32\regsvc.dll
19:51:21.0484 3104 RemoteRegistry - ok
19:51:21.0515 3104 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe
19:51:21.0515 3104 RpcLocator - ok
19:51:21.0593 3104 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\System32\rpcss.dll
19:51:21.0593 3104 RpcSs - ok
19:51:21.0687 3104 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
19:51:21.0687 3104 RSVP - ok
19:51:21.0765 3104 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:51:21.0765 3104 SamSs - ok
19:51:21.0875 3104 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
19:51:21.0875 3104 SASDIFSV - ok
19:51:21.0906 3104 SASENUM (7ce61c25c159f50f9eaf6d77fc83fa35) C:\Program Files\SUPERAntiSpyware\SASENUM.SYS
19:51:21.0906 3104 SASENUM - ok
19:51:21.0937 3104 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
19:51:21.0937 3104 SASKUTIL - ok
19:51:22.0000 3104 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
19:51:22.0000 3104 SCardSvr - ok
19:51:22.0062 3104 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
19:51:22.0078 3104 Schedule - ok
19:51:22.0171 3104 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:51:22.0171 3104 Secdrv - ok
19:51:22.0218 3104 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
19:51:22.0218 3104 seclogon - ok
19:51:22.0250 3104 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
19:51:22.0250 3104 SENS - ok
19:51:22.0265 3104 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
19:51:22.0281 3104 serenum - ok
19:51:22.0296 3104 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
19:51:22.0296 3104 Serial - ok
19:51:22.0375 3104 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
19:51:22.0375 3104 Sfloppy - ok
19:51:22.0437 3104 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
19:51:22.0453 3104 SharedAccess - ok
19:51:22.0531 3104 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
19:51:22.0531 3104 ShellHWDetection - ok
19:51:22.0593 3104 SI3132 (0b9b5c6df6226497ef4819b6e1b2efd5) C:\WINDOWS\system32\DRIVERS\SI3132.sys
19:51:22.0593 3104 SI3132 - ok
19:51:22.0671 3104 Si3132r5 (227e56633d6423e1f7d869618ac8404f) C:\WINDOWS\system32\DRIVERS\Si3132r5.sys
19:51:22.0671 3104 Si3132r5 - ok
19:51:22.0687 3104 SiFilter (dbdee2a96f2f616726817373516cb0bd) C:\WINDOWS\system32\DRIVERS\SiWinAcc.sys
19:51:22.0687 3104 SiFilter - ok
19:51:22.0718 3104 Simbad - ok
19:51:22.0734 3104 SiRemFil (3e6b438e5cb674a1382b2955aa98f637) C:\WINDOWS\system32\DRIVERS\SiRemFil.sys
19:51:22.0734 3104 SiRemFil - ok
19:51:22.0796 3104 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
19:51:22.0812 3104 SLIP - ok
19:51:22.0843 3104 Sparrow - ok
19:51:22.0875 3104 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
19:51:22.0875 3104 splitter - ok
19:51:22.0921 3104 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
19:51:22.0937 3104 Spooler - ok
19:51:22.0968 3104 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
19:51:22.0968 3104 sr - ok
19:51:23.0046 3104 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll
19:51:23.0062 3104 srservice - ok
19:51:23.0125 3104 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
19:51:23.0140 3104 Srv - ok
19:51:23.0203 3104 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
19:51:23.0203 3104 SSDPSRV - ok
19:51:23.0281 3104 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
19:51:23.0328 3104 stisvc - ok
19:51:23.0390 3104 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
19:51:23.0390 3104 streamip - ok
19:51:23.0437 3104 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
19:51:23.0437 3104 swenum - ok
19:51:23.0515 3104 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
19:51:23.0515 3104 swmidi - ok
19:51:23.0531 3104 SwPrv - ok
19:51:23.0578 3104 symc810 - ok
19:51:23.0609 3104 symc8xx - ok
19:51:23.0640 3104 sym_hi - ok
19:51:23.0656 3104 sym_u3 - ok
19:51:23.0718 3104 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
19:51:23.0718 3104 sysaudio - ok
19:51:23.0750 3104 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
19:51:23.0750 3104 SysmonLog - ok
19:51:23.0812 3104 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
19:51:23.0828 3104 TapiSrv - ok
19:51:23.0890 3104 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:51:23.0906 3104 Tcpip - ok
19:51:23.0953 3104 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
19:51:23.0953 3104 TDPIPE - ok
19:51:23.0984 3104 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
19:51:23.0984 3104 TDTCP - ok
19:51:24.0015 3104 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
19:51:24.0015 3104 TermDD - ok
19:51:24.0046 3104 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
19:51:24.0046 3104 TermService - ok
19:51:24.0156 3104 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
19:51:24.0156 3104 Themes - ok
19:51:24.0250 3104 TlntSvr (db7205804759ff62c34e3efd8a4cc76a) C:\WINDOWS\system32\tlntsvr.exe
19:51:24.0250 3104 TlntSvr - ok
19:51:24.0281 3104 TosIde - ok
19:51:24.0312 3104 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
19:51:24.0312 3104 TrkWks - ok
19:51:24.0359 3104 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
19:51:24.0359 3104 Udfs - ok
19:51:24.0406 3104 ultra - ok
19:51:24.0437 3104 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
19:51:24.0468 3104 Update - ok
19:51:24.0500 3104 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
19:51:24.0500 3104 upnphost - ok
19:51:24.0546 3104 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
19:51:24.0546 3104 UPS - ok
19:51:24.0609 3104 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\WINDOWS\system32\Drivers\usbaapl.sys
19:51:24.0609 3104 USBAAPL - ok
19:51:24.0687 3104 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
19:51:24.0687 3104 usbaudio - ok
19:51:24.0734 3104 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:51:24.0734 3104 usbccgp - ok
19:51:24.0750 3104 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:51:24.0750 3104 usbehci - ok
19:51:24.0796 3104 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:51:24.0796 3104 usbhub - ok
19:51:24.0812 3104 usbohci (0daecce65366ea32b162f85f07c6753b) C:\WINDOWS\system32\DRIVERS\usbohci.sys
19:51:24.0812 3104 usbohci - ok
19:51:24.0859 3104 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
19:51:24.0859 3104 usbprint - ok
19:51:24.0937 3104 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
19:51:24.0937 3104 usbscan - ok
19:51:25.0015 3104 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:51:25.0015 3104 USBSTOR - ok
19:51:25.0046 3104 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
19:51:25.0046 3104 usbvideo - ok
19:51:25.0093 3104 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
19:51:25.0093 3104 VgaSave - ok
19:51:25.0125 3104 ViaIde - ok
19:51:25.0156 3104 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
19:51:25.0156 3104 VolSnap - ok
19:51:25.0218 3104 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
19:51:25.0218 3104 VSS - ok
19:51:25.0265 3104 W32Time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll
19:51:25.0265 3104 W32Time - ok
19:51:25.0312 3104 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:51:25.0312 3104 Wanarp - ok
19:51:25.0390 3104 Wdf01000 (bbcfeab7e871cddac2d397ee7fa91fdc) C:\WINDOWS\system32\Drivers\wdf01000.sys
19:51:25.0406 3104 Wdf01000 - ok
19:51:25.0437 3104 WDICA - ok
19:51:25.0500 3104 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
19:51:25.0500 3104 wdmaud - ok
19:51:25.0531 3104 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
19:51:25.0531 3104 WebClient - ok
19:51:25.0593 3104 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
19:51:25.0609 3104 winmgmt - ok
19:51:25.0703 3104 WinRM (18f347402da544a780949b8fdf83351b) C:\WINDOWS\system32\WsmSvc.dll
19:51:25.0734 3104 WinRM - ok
19:51:25.0812 3104 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll
19:51:25.0812 3104 WmdmPmSN - ok
19:51:25.0906 3104 Wmi (e76f8807070ed04e7408a86d6d3a6137) C:\WINDOWS\System32\advapi32.dll
19:51:25.0906 3104 Wmi - ok
19:51:25.0953 3104 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe
19:51:25.0953 3104 WmiApSrv - ok
19:51:26.0093 3104 WMPNetworkSvc (f74e3d9a7fa9556c3bbb14d4e5e63d3b) C:\Program Files\Windows Media Player\WMPNetwk.exe
19:51:26.0140 3104 WMPNetworkSvc - ok
19:51:26.0296 3104 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:51:26.0328 3104 WPFFontCache_v0400 - ok
19:51:26.0390 3104 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll
19:51:26.0390 3104 wscsvc - ok
19:51:26.0406 3104 WSearch - ok
19:51:26.0468 3104 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
19:51:26.0484 3104 WSTCODEC - ok
19:51:26.0515 3104 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll
19:51:26.0562 3104 wuauserv - ok
19:51:26.0640 3104 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:51:26.0640 3104 WudfPf - ok
19:51:26.0687 3104 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:51:26.0687 3104 WudfRd - ok
19:51:26.0750 3104 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
19:51:26.0750 3104 WudfSvc - ok
19:51:26.0843 3104 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
19:51:26.0859 3104 WZCSVC - ok
19:51:26.0906 3104 Xbox360Controller (aa128c5cd10246baa87875f626130680) C:\WINDOWS\system32\DRIVERS\x360chm.sys
19:51:26.0906 3104 Xbox360Controller - ok
19:51:26.0968 3104 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
19:51:27.0031 3104 xmlprov - ok
19:51:27.0093 3104 xusb21 (a640c90b007762939507c28a021be3b3) C:\WINDOWS\system32\DRIVERS\xusb21.sys
19:51:27.0093 3104 xusb21 - ok
19:51:27.0203 3104 YahooAUService (dd0042f0c3b606a6a8b92d49afb18ad6) C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
19:51:27.0234 3104 YahooAUService - ok
19:51:27.0312 3104 yukonwxp (4322c32ced8c4772e039616dcbf01d3f) C:\WINDOWS\system32\DRIVERS\yk51x86.sys
19:51:27.0312 3104 yukonwxp - ok
19:51:27.0359 3104 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
19:51:27.0531 3104 \Device\Harddisk0\DR0 - ok
19:51:27.0531 3104 MBR (0x1B8) (739b36f7a373fc81121d831231b6d311) \Device\Harddisk1\DR2
19:51:27.0875 3104 \Device\Harddisk1\DR2 - ok
19:51:27.0875 3104 Boot (0x1200) (788cac52e988b1ea3242b1a223d731a2) \Device\Harddisk0\DR0\Partition0
19:51:27.0875 3104 \Device\Harddisk0\DR0\Partition0 - ok
19:51:27.0875 3104 Boot (0x1200) (d8f482846b36c85eba6a7e97e1124a4b) \Device\Harddisk1\DR2\Partition0
19:51:27.0875 3104 \Device\Harddisk1\DR2\Partition0 - ok
19:51:27.0875 3104 ============================================================
19:51:27.0875 3104 Scan finished
19:51:27.0875 3104 ============================================================
19:51:27.0890 0808 Detected object count: 0
19:51:27.0890 0808 Actual detected object count: 0
19:52:14.0875 0268 Deinitialize success




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users