Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google Search redirects to erroneous pages; Computer sluggish and freezes up


  • Please log in to reply
11 replies to this topic

#1 Verve

Verve

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Local time:06:32 PM

Posted 06 April 2012 - 07:53 PM

I'm having problems whenever I use the Google website in either the Chrome or Firefox browsers. It will show me the search results but when I click on them, it takes me some erroneous websites. In addition to this problem, my computer runs slow at times and eventually freezes requiring me to turn it off/unplug it in order to reboot.

I've downloaded the programs suggested in other posts such as Security Check, Farbar Service Scanner, and aswMBR. I already have Malwarebytes and have run it in the past.

Any assistance would be greatly appreciated.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:32 PM

Posted 06 April 2012 - 11:13 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Please download GMER from here(doesnot work on 64 bit OS)

http://www2.gmer.net/download.php

Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.

GMER will open to the Rootkit/Malware tab and perform an automatic Full Scan when first run. (do not use the computer while the scan is in progress)

If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
Now click the Scan button. If you see a rootkit warning window, click OK.
When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
Click the Copy button and paste the results into your next reply.


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

#3 Verve

Verve
  • Topic Starter

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Local time:06:32 PM

Posted 07 April 2012 - 09:48 PM

I had problems with GMER. It ran for about 5 hours and before it could write the log file, it gave an error that said "Windows was unable to save data for file \$mft. May be failure of hardware or network connection." I will try running it again. Also, aswMBR.exe never fully completed either. I did get a log file up to the point it just froze. Results are below. I hope this can give some indication of what's happening with my computer.

Here are the results of TDSSkiller:


07:45:46.0578 4196 TDSS rootkit removing tool 2.7.26.0 Apr 4 2012 19:52:02
07:45:47.0546 4196 ============================================================
07:45:47.0546 4196 Current date / time: 2012/04/07 07:45:47.0546
07:45:47.0546 4196 SystemInfo:
07:45:47.0546 4196
07:45:47.0546 4196 OS Version: 5.1.2600 ServicePack: 3.0
07:45:47.0546 4196 Product type: Workstation
07:45:47.0546 4196 ComputerName: MV
07:45:47.0546 4196 UserName: MVaughan
07:45:47.0546 4196 Windows directory: C:\WINDOWS
07:45:47.0546 4196 System windows directory: C:\WINDOWS
07:45:47.0546 4196 Processor architecture: Intel x86
07:45:47.0546 4196 Number of processors: 2
07:45:47.0546 4196 Page size: 0x1000
07:45:47.0546 4196 Boot type: Normal boot
07:45:47.0546 4196 ============================================================
07:46:06.0015 4196 Drive \Device\Harddisk0\DR0 - Size: 0x2540BE4000 (149.01 Gb), SectorSize: 0x200, Cylinders: 0x4BFC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
07:46:06.0531 4196 Drive \Device\Harddisk5\DR8 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
07:46:06.0531 4196 \Device\Harddisk0\DR0:
07:46:06.0937 4196 MBR used
07:46:06.0937 4196 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x17886, BlocksNum 0x12071BCB
07:46:06.0937 4196 \Device\Harddisk5\DR8:
07:46:06.0937 4196 MBR used
07:46:06.0937 4196 \Device\Harddisk5\DR8\Partition0: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0x2542D682
07:46:07.0171 4196 Initialize success
07:46:07.0171 4196 ============================================================
07:46:39.0750 4988 ============================================================
07:46:39.0750 4988 Scan started
07:46:39.0750 4988 Mode: Manual; TDLFS;
07:46:39.0750 4988 ============================================================
07:46:48.0671 4988 Abiosdsk - ok
07:46:48.0937 4988 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
07:46:49.0015 4988 abp480n5 - ok
07:46:49.0234 4988 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
07:46:49.0281 4988 ACPI - ok
07:46:49.0390 4988 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
07:46:49.0421 4988 ACPIEC - ok
07:46:49.0687 4988 AdobeFlashPlayerUpdateSvc (0d4c486a24a711a45fd83acdf4d18506) C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
07:46:49.0781 4988 AdobeFlashPlayerUpdateSvc - ok
07:46:51.0859 4988 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
07:46:52.0609 4988 adpu160m - ok
07:47:11.0328 4988 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
07:47:11.0343 4988 aec - ok
07:47:11.0796 4988 AFD (7618d5218f2a614672ec61a80d854a37) C:\WINDOWS\System32\drivers\afd.sys
07:47:13.0984 4988 AFD - ok
07:47:15.0265 4988 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
07:47:15.0312 4988 agp440 - ok
07:47:16.0171 4988 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
07:47:16.0187 4988 agpCPQ - ok
07:47:22.0937 4988 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
07:47:23.0046 4988 Aha154x - ok
07:47:27.0656 4988 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
07:47:28.0187 4988 aic78u2 - ok
07:47:28.0437 4988 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
07:47:28.0531 4988 aic78xx - ok
07:47:28.0656 4988 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
07:47:28.0656 4988 Alerter - ok
07:47:28.0703 4988 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
07:47:28.0765 4988 ALG - ok
07:47:28.0875 4988 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
07:47:28.0953 4988 AliIde - ok
07:47:29.0031 4988 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
07:47:29.0031 4988 alim1541 - ok
07:47:29.0093 4988 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
07:47:29.0093 4988 amdagp - ok
07:47:29.0171 4988 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
07:47:29.0250 4988 amsint - ok
07:47:29.0546 4988 Apache2.2 (e157e4cdacf524d1fc68b5fdd19b0e6c) c:\server\xampp\apache\bin\apache.exe
07:47:29.0593 4988 Apache2.2 - ok
07:47:30.0031 4988 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
07:47:30.0031 4988 Apple Mobile Device - ok
07:47:30.0218 4988 AppMgmt (d8849f77c0b66226335a59d26cb4edc6) C:\WINDOWS\System32\appmgmts.dll
07:47:30.0656 4988 AppMgmt - ok
07:47:32.0171 4988 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
07:47:32.0437 4988 asc - ok
07:47:32.0562 4988 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
07:47:32.0640 4988 asc3350p - ok
07:47:32.0687 4988 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
07:47:32.0875 4988 asc3550 - ok
07:47:32.0937 4988 ASPI32 - ok
07:47:33.0062 4988 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
07:47:33.0203 4988 aspnet_state - ok
07:47:33.0375 4988 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
07:47:33.0375 4988 AsyncMac - ok
07:47:34.0078 4988 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
07:47:34.0078 4988 atapi - ok
07:47:34.0093 4988 Atdisk - ok
07:47:34.0156 4988 Ati HotKey Poller (51f5ec4a4e68c56a0304c47a0cd70ddb) C:\WINDOWS\system32\Ati2evxx.exe
07:47:34.0156 4988 Ati HotKey Poller - ok
07:47:34.0500 4988 ati2mtag (03621f7f968ff63713943405deb777f9) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
07:47:34.0781 4988 ati2mtag - ok
07:47:35.0062 4988 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
07:47:35.0078 4988 Atmarpc - ok
07:47:36.0000 4988 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
07:47:36.0000 4988 AudioSrv - ok
07:47:36.0218 4988 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
07:47:36.0234 4988 audstub - ok
07:47:36.0421 4988 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
07:47:36.0453 4988 Beep - ok
07:47:36.0671 4988 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
07:47:36.0687 4988 BITS - ok
07:47:36.0921 4988 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
07:47:37.0093 4988 Bonjour Service - ok
07:47:37.0281 4988 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
07:47:37.0281 4988 Browser - ok
07:47:37.0703 4988 btaudio (ca141a70ad8604c6d97ab9b3084ab954) C:\WINDOWS\system32\drivers\btaudio.sys
07:47:37.0875 4988 btaudio - ok
07:47:39.0109 4988 BTDriver (d307cb113bad063d4d56058f69b02d7a) C:\WINDOWS\system32\DRIVERS\btport.sys
07:47:39.0187 4988 BTDriver - ok
07:47:39.0390 4988 BTKRNL (0627ed35e6c287a924c3b685815db8d8) C:\WINDOWS\system32\DRIVERS\btkrnl.sys
07:47:39.0640 4988 BTKRNL - ok
07:47:39.0875 4988 BTSERIAL (e490c0b632e9e2cc551ca82a42a68d60) C:\WINDOWS\system32\drivers\btserial.sys
07:47:39.0968 4988 BTSERIAL - ok
07:47:40.0171 4988 BTSLBCSP (5abc4b88ea25d81b34bd00b7abe9553d) C:\WINDOWS\system32\drivers\btslbcsp.sys
07:47:40.0265 4988 BTSLBCSP - ok
07:47:40.0609 4988 btwdins (e2a600aaf666b03cadcf488a666487b9) C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
07:47:40.0609 4988 btwdins - ok
07:47:41.0015 4988 BTWDNDIS (5f69dd42413a09e0b501bbf4237454a6) C:\WINDOWS\system32\DRIVERS\btwdndis.sys
07:47:41.0187 4988 BTWDNDIS - ok
07:47:41.0500 4988 BTWUSB (540e6832d01e0b35a0e341fc0c3f5a4c) C:\WINDOWS\system32\Drivers\btwusb.sys
07:47:41.0656 4988 BTWUSB - ok
07:47:41.0703 4988 bvrp_pci - ok
07:47:41.0796 4988 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
07:47:41.0812 4988 cbidf - ok
07:47:41.0921 4988 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
07:47:41.0921 4988 cbidf2k - ok
07:47:41.0984 4988 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
07:47:42.0093 4988 cd20xrnt - ok
07:47:42.0281 4988 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
07:47:42.0312 4988 Cdaudio - ok
07:47:42.0421 4988 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
07:47:42.0437 4988 Cdfs - ok
07:47:42.0687 4988 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
07:47:42.0687 4988 Cdrom - ok
07:47:43.0000 4988 cfwids (1dcb5209601a70e36c70fe8d197d62cb) C:\WINDOWS\system32\drivers\cfwids.sys
07:47:43.0000 4988 cfwids - ok
07:47:43.0000 4988 cfwids01 - ok
07:47:43.0015 4988 cfwids03 - ok
07:47:43.0015 4988 cfwids07 - ok
07:47:43.0031 4988 cfwids08 - ok
07:47:43.0046 4988 cfwids10 - ok
07:47:43.0093 4988 Changer - ok
07:47:43.0218 4988 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
07:47:43.0234 4988 CiSvc - ok
07:47:43.0406 4988 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
07:47:43.0437 4988 ClipSrv - ok
07:47:43.0671 4988 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
07:47:44.0000 4988 clr_optimization_v2.0.50727_32 - ok
07:47:44.0218 4988 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
07:47:44.0218 4988 clr_optimization_v4.0.30319_32 - ok
07:47:44.0546 4988 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys
07:47:44.0562 4988 CmdIde - ok
07:47:44.0703 4988 COMSysApp - ok
07:47:44.0937 4988 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
07:47:45.0390 4988 Cpqarray - ok
07:47:45.0718 4988 cpuz135 - ok
07:47:45.0812 4988 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
07:47:46.0171 4988 CryptSvc - ok
07:47:46.0562 4988 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
07:47:46.0578 4988 dac2w2k - ok
07:47:46.0640 4988 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
07:47:46.0734 4988 dac960nt - ok
07:47:46.0796 4988 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
07:47:46.0796 4988 DcomLaunch - ok
07:47:46.0937 4988 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
07:47:46.0937 4988 Dhcp - ok
07:47:47.0062 4988 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
07:47:47.0062 4988 Disk - ok
07:47:47.0171 4988 DLABOIOM (e2d0de31442390c35e3163c87cb6a9eb) C:\WINDOWS\system32\DLA\DLABOIOM.SYS
07:47:47.0171 4988 DLABOIOM - ok
07:47:47.0234 4988 DLACDBHM (d979bebcf7edcc9c9ee1857d1a68c67b) C:\WINDOWS\system32\Drivers\DLACDBHM.SYS
07:47:47.0234 4988 DLACDBHM - ok
07:47:47.0281 4988 DLADResN (83545593e297f50a8e2524b4c071a153) C:\WINDOWS\system32\DLA\DLADResN.SYS
07:47:47.0343 4988 DLADResN - ok
07:47:47.0390 4988 DLAIFS_M (96e01d901cdc98c7817155cc057001bf) C:\WINDOWS\system32\DLA\DLAIFS_M.SYS
07:47:47.0437 4988 DLAIFS_M - ok
07:47:47.0500 4988 DLAOPIOM (0a60a39cc5e767980a31ca5d7238dfa9) C:\WINDOWS\system32\DLA\DLAOPIOM.SYS
07:47:47.0593 4988 DLAOPIOM - ok
07:47:47.0625 4988 DLAPoolM (9fe2b72558fc808357f427fd83314375) C:\WINDOWS\system32\DLA\DLAPoolM.SYS
07:47:47.0734 4988 DLAPoolM - ok
07:47:47.0859 4988 DLARTL_N (7ee0852ae8907689df25049dcd2342e8) C:\WINDOWS\system32\Drivers\DLARTL_N.SYS
07:47:47.0937 4988 DLARTL_N - ok
07:47:48.0031 4988 DLAUDFAM (f08e1dafac457893399e03430a6a1397) C:\WINDOWS\system32\DLA\DLAUDFAM.SYS
07:47:48.0093 4988 DLAUDFAM - ok
07:47:48.0187 4988 DLAUDF_M (e7d105ed1e694449d444a9933df8e060) C:\WINDOWS\system32\DLA\DLAUDF_M.SYS
07:47:48.0312 4988 DLAUDF_M - ok
07:47:48.0468 4988 dmadmin - ok
07:47:48.0734 4988 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
07:47:48.0937 4988 dmboot - ok
07:47:49.0734 4988 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
07:47:50.0062 4988 dmio - ok
07:47:50.0234 4988 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
07:47:50.0734 4988 dmload - ok
07:47:50.0796 4988 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
07:47:50.0796 4988 dmserver - ok
07:47:50.0859 4988 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
07:47:50.0859 4988 DMusic - ok
07:47:50.0953 4988 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
07:47:50.0953 4988 Dnscache - ok
07:47:51.0031 4988 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
07:47:51.0062 4988 Dot3svc - ok
07:47:51.0125 4988 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
07:47:51.0171 4988 dpti2o - ok
07:47:51.0343 4988 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
07:47:51.0421 4988 drmkaud - ok
07:47:51.0828 4988 DRVMCDB (fd0f95981fef9073659d8ec58e40aa3c) C:\WINDOWS\system32\Drivers\DRVMCDB.SYS
07:47:52.0015 4988 DRVMCDB - ok
07:47:52.0265 4988 DRVNDDM (b4869d320428cdc5ec4d7f5e808e99b5) C:\WINDOWS\system32\Drivers\DRVNDDM.SYS
07:47:52.0343 4988 DRVNDDM - ok
07:47:53.0734 4988 E100B (95974e66d3de4951d29e28e8bc0b644c) C:\WINDOWS\system32\DRIVERS\e100b325.sys
07:47:53.0906 4988 E100B - ok
07:47:54.0031 4988 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
07:47:54.0046 4988 EapHost - ok
07:47:54.0125 4988 ehRecvr (5d1347aa5ae6e2f77d7f4f8372d95ac9) C:\WINDOWS\eHome\ehRecvr.exe
07:47:54.0140 4988 ehRecvr - ok
07:47:54.0250 4988 ehSched (a53243709439ac2a4c216b817f8d7411) C:\WINDOWS\eHome\ehSched.exe
07:47:54.0343 4988 ehSched - ok
07:47:54.0453 4988 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
07:47:54.0453 4988 ERSvc - ok
07:47:54.0531 4988 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
07:47:54.0546 4988 Eventlog - ok
07:47:54.0609 4988 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\system32\es.dll
07:47:54.0609 4988 EventSystem - ok
07:47:54.0765 4988 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
07:47:54.0765 4988 Fastfat - ok
07:47:54.0843 4988 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
07:47:54.0859 4988 FastUserSwitchingCompatibility - ok
07:47:55.0015 4988 Fax (e97d6a8684466df94ff3bc24fb787a07) C:\WINDOWS\system32\fxssvc.exe
07:47:55.0015 4988 Fax - ok
07:47:55.0156 4988 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
07:47:55.0171 4988 Fdc - ok
07:47:55.0312 4988 FileZilla Server (ac2263e3431fa9df4e48cd5f1da9a722) c:\server\xampp\FileZillaFTP\FileZillaServer.exe
07:47:55.0984 4988 FileZilla Server - ok
07:47:57.0218 4988 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
07:47:57.0359 4988 Fips - ok
07:47:57.0531 4988 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
07:47:57.0625 4988 Flpydisk - ok
07:47:57.0750 4988 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
07:47:57.0781 4988 FltMgr - ok
07:47:58.0078 4988 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
07:47:58.0078 4988 FontCache3.0.0.0 - ok
07:47:58.0937 4988 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
07:47:59.0000 4988 Fs_Rec - ok
07:47:59.0375 4988 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
07:47:59.0375 4988 Ftdisk - ok
07:47:59.0531 4988 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
07:47:59.0625 4988 GEARAspiWDM - ok
07:47:59.0859 4988 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
07:47:59.0890 4988 Gpc - ok
07:48:00.0296 4988 gupdate (899cdb72abb2a6fbcfa66dc2f0a58d43) C:\Program Files\Google\Update\GoogleUpdate.exe
07:48:00.0296 4988 gupdate - ok
07:48:00.0328 4988 gupdatem (899cdb72abb2a6fbcfa66dc2f0a58d43) C:\Program Files\Google\Update\GoogleUpdate.exe
07:48:00.0343 4988 gupdatem - ok
07:48:01.0562 4988 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
07:48:01.0593 4988 HDAudBus - ok
07:48:02.0406 4988 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
07:48:02.0406 4988 helpsvc - ok
07:48:03.0250 4988 HidServ - ok
07:48:03.0406 4988 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
07:48:03.0421 4988 HidUsb - ok
07:48:03.0984 4988 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
07:48:04.0000 4988 hkmsvc - ok
07:48:04.0093 4988 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
07:48:04.0187 4988 hpn - ok
07:48:04.0328 4988 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
07:48:04.0546 4988 HPZid412 - ok
07:48:04.0781 4988 HPZipr12 (89f41658929393487b6b7d13c8528ce3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
07:48:04.0843 4988 HPZipr12 - ok
07:48:04.0906 4988 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
07:48:05.0234 4988 HPZius12 - ok
07:48:05.0296 4988 HSFHWBS2 (77e4ff0b73bc0aeaaf39bf0c8104231f) C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
07:48:05.0406 4988 HSFHWBS2 - ok
07:48:05.0531 4988 HSF_DP (60e1604729a15ef4a3b05f298427b3b1) C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
07:48:05.0937 4988 HSF_DP - ok
07:48:06.0125 4988 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
07:48:06.0156 4988 HTTP - ok
07:48:06.0234 4988 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
07:48:06.0234 4988 HTTPFilter - ok
07:48:06.0359 4988 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
07:48:06.0359 4988 i2omgmt - ok
07:48:06.0437 4988 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
07:48:06.0453 4988 i2omp - ok
07:48:06.0500 4988 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
07:48:06.0515 4988 i8042prt - ok
07:48:06.0593 4988 ialm (5a8e05f1d5c36abd58cffa111eb325ea) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
07:48:06.0859 4988 ialm - ok
07:48:07.0000 4988 IDriverT (6f95324909b502e2651442c1548ab12f) C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
07:48:07.0015 4988 IDriverT - ok
07:48:07.0203 4988 idsvc (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
07:48:07.0328 4988 idsvc - ok
07:48:07.0484 4988 IISADMIN (db3c22745c0da4666f3be31f1af36b2f) C:\WINDOWS\system32\inetsrv\inetinfo.exe
07:48:07.0484 4988 IISADMIN - ok
07:48:07.0593 4988 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
07:48:07.0609 4988 Imapi - ok
07:48:07.0734 4988 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe
07:48:07.0734 4988 ImapiService - ok
07:48:07.0875 4988 InCDfs (1da147acb525a4822228be06154c7cbb) C:\WINDOWS\system32\drivers\InCDFs.sys
07:48:08.0031 4988 InCDfs - ok
07:48:08.0062 4988 InCDPass (2ec469a401ae6fe7a67d80effd3091b1) C:\WINDOWS\system32\drivers\InCDPass.sys
07:48:08.0218 4988 InCDPass - ok
07:48:08.0812 4988 InCDRec (544498d06b8ca187a5960b4f3b4bd63e) C:\WINDOWS\system32\drivers\InCDRec.sys
07:48:08.0984 4988 InCDRec - ok
07:48:09.0156 4988 incdrm (2863a00b0f64d937f0cd9561c53b5a37) C:\WINDOWS\system32\drivers\InCDRm.sys
07:48:09.0312 4988 incdrm - ok
07:48:09.0515 4988 InCDsrv (59833f87ebf6b4641b278ea723f77a02) C:\Program Files\Nero\Nero8\InCD\InCDsrv.exe
07:48:09.0562 4988 InCDsrv - ok
07:48:09.0718 4988 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
07:48:09.0828 4988 ini910u - ok
07:48:09.0921 4988 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\system32\DRIVERS\intelide.sys
07:48:09.0937 4988 IntelIde - ok
07:48:10.0062 4988 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
07:48:10.0062 4988 intelppm - ok
07:48:10.0203 4988 IntuitUpdateService (12a5ef620ab047dadc9bb580034437f7) C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
07:48:10.0250 4988 IntuitUpdateService - ok
07:48:10.0328 4988 IntuitUpdateServiceV4 (1663a135865f0ba6e853353e98e67f2a) C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
07:48:10.0328 4988 IntuitUpdateServiceV4 - ok
07:48:10.0468 4988 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
07:48:10.0515 4988 Ip6Fw - ok
07:48:10.0578 4988 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
07:48:10.0609 4988 IpFilterDriver - ok
07:48:10.0812 4988 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
07:48:10.0812 4988 IpInIp - ok
07:48:10.0875 4988 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
07:48:10.0875 4988 IpNat - ok
07:48:11.0015 4988 iPod Service (ce004777b92dea56fe14ec900d20baa4) C:\Program Files\iPod\bin\iPodService.exe
07:48:11.0171 4988 iPod Service - ok
07:48:11.0187 4988 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
07:48:11.0203 4988 IPSec - ok
07:48:11.0218 4988 IPSECSHM - ok
07:48:11.0265 4988 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
07:48:11.0281 4988 IRENUM - ok
07:48:11.0406 4988 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
07:48:11.0656 4988 isapnp - ok
07:48:11.0906 4988 JavaQuickStarterService - ok
07:48:12.0156 4988 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
07:48:12.0281 4988 Kbdclass - ok
07:48:12.0531 4988 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
07:48:12.0578 4988 kbdhid - ok
07:48:12.0750 4988 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
07:48:12.0750 4988 kmixer - ok
07:48:12.0859 4988 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
07:48:12.0875 4988 KSecDD - ok
07:48:12.0921 4988 lanmanserver (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
07:48:12.0937 4988 lanmanserver - ok
07:48:12.0984 4988 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
07:48:12.0984 4988 lanmanworkstation - ok
07:48:13.0125 4988 Lavasoft Ad-Aware Service (193146149076b331c008c1c0af6fa5b9) C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
07:48:13.0140 4988 Lavasoft Ad-Aware Service - ok
07:48:13.0218 4988 Lbd (419590ebe7855215bb157ea0cf0d0531) C:\WINDOWS\system32\DRIVERS\Lbd.sys
07:48:13.0671 4988 Lbd - ok
07:48:13.0718 4988 lbrtfdc - ok
07:48:13.0734 4988 LHidUsbK - ok
07:48:14.0125 4988 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
07:48:14.0125 4988 LmHosts - ok
07:48:14.0281 4988 MBAMSwissArmy (0db7527db188c7d967a37bb51bbf3963) C:\WINDOWS\system32\drivers\mbamswissarmy.sys
07:48:14.0359 4988 MBAMSwissArmy - ok
07:48:14.0578 4988 McAfee SiteAdvisor Service (6f2fffaca99e41ae0e3692bc9750d2d9) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
07:48:14.0609 4988 McAfee SiteAdvisor Service - ok
07:48:14.0656 4988 McMPFSvc (6f2fffaca99e41ae0e3692bc9750d2d9) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
07:48:14.0656 4988 McMPFSvc - ok
07:48:14.0703 4988 mcmscsvc (6f2fffaca99e41ae0e3692bc9750d2d9) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
07:48:14.0703 4988 mcmscsvc - ok
07:48:14.0781 4988 McNaiAnn (6f2fffaca99e41ae0e3692bc9750d2d9) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
07:48:14.0781 4988 McNaiAnn - ok
07:48:14.0875 4988 McNASvc (6f2fffaca99e41ae0e3692bc9750d2d9) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
07:48:14.0875 4988 McNASvc - ok
07:48:15.0031 4988 McODS (5379a996f953da65f40cc4e848dc7590) C:\Program Files\McAfee\VirusScan\mcods.exe
07:48:15.0046 4988 McODS - ok
07:48:15.0093 4988 McProxy (6f2fffaca99e41ae0e3692bc9750d2d9) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
07:48:15.0093 4988 McProxy - ok
07:48:15.0312 4988 McrdSvc (df0a511f38f16016bf658fca0090cb87) C:\WINDOWS\ehome\mcrdsvc.exe
07:48:15.0312 4988 McrdSvc - ok
07:48:15.0453 4988 McShield (16767b4cb7ae8f388e091717db34ff6c) C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
07:48:15.0453 4988 McShield - ok
07:48:15.0625 4988 mdmxsdk (eeaea6514ba7c9d273b5e87c4e1aab30) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
07:48:15.0718 4988 mdmxsdk - ok
07:48:15.0828 4988 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
07:48:15.0843 4988 Messenger - ok
07:48:15.0906 4988 mfeapfk (36b47b1e9c537f8f2b4481084b8f7d22) C:\WINDOWS\system32\drivers\mfeapfk.sys
07:48:15.0984 4988 mfeapfk - ok
07:48:16.0156 4988 mfeavfk (cde41293db871a75cd99eb0ce781356b) C:\WINDOWS\system32\drivers\mfeavfk.sys
07:48:16.0250 4988 mfeavfk - ok
07:48:16.0265 4988 mfeavfk01 - ok
07:48:16.0343 4988 mfebopk (e22385f64bdf0ad81157479496e33c4a) C:\WINDOWS\system32\drivers\mfebopk.sys
07:48:16.0437 4988 mfebopk - ok
07:48:16.0484 4988 mfefire (3f17534b8867854113df2b45fff3acf5) C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
07:48:16.0484 4988 mfefire - ok
07:48:16.0546 4988 mfefirek (215666a8a85023ef019b510cbb67f678) C:\WINDOWS\system32\drivers\mfefirek.sys
07:48:16.0640 4988 mfefirek - ok
07:48:16.0796 4988 mfehidk (56d330981866a72f061dd16cc5004513) C:\WINDOWS\system32\drivers\mfehidk.sys
07:48:16.0968 4988 mfehidk - ok
07:48:17.0125 4988 mfendisk (62acda4e958e2a392557ba3c6c754a58) C:\WINDOWS\system32\DRIVERS\mfendisk.sys
07:48:17.0296 4988 mfendisk - ok
07:48:17.0296 4988 mfendiskmp (62acda4e958e2a392557ba3c6c754a58) C:\WINDOWS\system32\DRIVERS\mfendisk.sys
07:48:17.0343 4988 mfendiskmp - ok
07:48:17.0593 4988 mferkdet (89b564d63c53fc0c6782ab07eea63acf) C:\WINDOWS\system32\drivers\mferkdet.sys
07:48:18.0453 4988 mferkdet - ok
07:48:19.0203 4988 mferkdk (41fe2f288e05a6c8ab85dd56770ffbad) C:\WINDOWS\system32\drivers\mferkdk.sys
07:48:19.0312 4988 mferkdk - ok
07:48:20.0062 4988 mfesmfk (096b52ea918aa909ba5903d79e129005) C:\WINDOWS\system32\drivers\mfesmfk.sys
07:48:20.0171 4988 mfesmfk - ok
07:48:20.0421 4988 mfetdi2k (922e64ca38e38106498fb3435a8e399d) C:\WINDOWS\system32\drivers\mfetdi2k.sys
07:48:20.0687 4988 mfetdi2k - ok
07:48:20.0921 4988 mfevtp (ad52269897626d614b31e153f5c5d65c) C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
07:48:20.0953 4988 mfevtp - ok
07:48:21.0218 4988 MHN (b7521f69c0a9b29d356157229376fb21) C:\WINDOWS\System32\mhn.dll
07:48:21.0375 4988 MHN - ok
07:48:22.0203 4988 MHNDRV (7f2f1d2815a6449d346fcccbc569fbd6) C:\WINDOWS\system32\DRIVERS\mhndrv.sys
07:48:22.0359 4988 MHNDRV - ok
07:48:22.0593 4988 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
07:48:22.0625 4988 mnmdd - ok
07:48:22.0812 4988 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe
07:48:23.0250 4988 mnmsrvc - ok
07:48:23.0484 4988 MOBKbackup (35176fa09a0fc58db630991a81a0ba39) C:\Program Files\McAfee Online Backup\MOBKbackup.exe
07:48:23.0562 4988 MOBKbackup - ok
07:48:23.0750 4988 MOBKFilter (e896775837a8bce436348df460522394) C:\WINDOWS\system32\DRIVERS\MOBK.sys
07:48:23.0906 4988 MOBKFilter - ok
07:48:24.0031 4988 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
07:48:24.0046 4988 Modem - ok
07:48:24.0187 4988 MODEMCSA (1992e0d143b09653ab0f9c5e04b0fd65) C:\WINDOWS\system32\drivers\MODEMCSA.sys
07:48:24.0281 4988 MODEMCSA - ok
07:48:24.0421 4988 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
07:48:24.0437 4988 Mouclass - ok
07:48:24.0562 4988 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
07:48:24.0578 4988 mouhid - ok
07:48:25.0171 4988 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
07:48:25.0218 4988 MountMgr - ok
07:48:25.0750 4988 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
07:48:25.0859 4988 mraid35x - ok
07:48:26.0593 4988 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
07:48:26.0625 4988 MRxDAV - ok
07:48:26.0828 4988 MRxSmb (0ea4d8ed179b75f8afa7998ba22285ca) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
07:48:27.0046 4988 MRxSmb - ok
07:48:27.0234 4988 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe
07:48:27.0250 4988 MSDTC - ok
07:48:27.0484 4988 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
07:48:27.0484 4988 Msfs - ok
07:48:27.0531 4988 MSIServer - ok
07:48:27.0765 4988 MSK80Service (6f2fffaca99e41ae0e3692bc9750d2d9) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
07:48:27.0765 4988 MSK80Service - ok
07:48:28.0109 4988 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
07:48:28.0203 4988 MSKSSRV - ok
07:48:28.0406 4988 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
07:48:28.0625 4988 MSPCLOCK - ok
07:48:28.0859 4988 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
07:48:28.0906 4988 MSPQM - ok
07:48:29.0031 4988 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
07:48:29.0109 4988 mssmbios - ok
07:48:29.0234 4988 MSSQL$AUTODESKVAULT - ok
07:48:29.0281 4988 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
07:48:29.0468 4988 Mup - ok
07:48:31.0937 4988 MySql (29d17fc0d96252692c6ce2f7a7c247c1) c:/server/xampp/mysql/bin/mysqld.exe
07:48:32.0000 4988 MySql - ok
07:48:32.0312 4988 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
07:48:32.0328 4988 napagent - ok
07:48:32.0765 4988 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
07:48:32.0765 4988 NDIS - ok
07:48:32.0937 4988 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
07:48:32.0937 4988 NdisTapi - ok
07:48:33.0093 4988 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
07:48:33.0093 4988 Ndisuio - ok
07:48:33.0187 4988 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
07:48:33.0281 4988 NdisWan - ok
07:48:34.0015 4988 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
07:48:34.0125 4988 NDProxy - ok
07:48:34.0359 4988 NeroRegInCDSrv (5140ec8b47d1bfa9ed563c31036a0019) C:\Program Files\Nero\Nero8\InCD\NBHRegInCDSrv.exe
07:48:34.0359 4988 NeroRegInCDSrv - ok
07:48:35.0062 4988 Net Driver HPZ12 (949941e4de88df1faf49a4b3cffb756f) C:\WINDOWS\system32\HPZinw12.dll
07:48:35.0218 4988 Net Driver HPZ12 - ok
07:48:35.0343 4988 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
07:48:35.0375 4988 NetBIOS - ok
07:48:35.0437 4988 NetBT (c789187d2165f66d5ffea968e6c5454d) C:\WINDOWS\system32\DRIVERS\netbt.sys
07:48:35.0703 4988 NetBT - ok
07:48:35.0828 4988 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
07:48:35.0859 4988 NetDDE - ok
07:48:35.0890 4988 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
07:48:35.0890 4988 NetDDEdsdm - ok
07:48:36.0359 4988 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
07:48:36.0375 4988 Netlogon - ok
07:48:36.0671 4988 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
07:48:36.0671 4988 Netman - ok
07:48:37.0890 4988 NetSvc (9da26b773bd04b867a8e9f427cd048fc) C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
07:48:38.0406 4988 NetSvc - ok
07:48:38.0859 4988 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
07:48:38.0875 4988 NetTcpPortSharing - ok
07:48:39.0375 4988 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
07:48:40.0125 4988 Nla - ok
07:48:41.0125 4988 NMIndexingService (79370aef171dd4efdc0aba09fbda81cc) C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
07:48:41.0125 4988 NMIndexingService - ok
07:48:42.0328 4988 NPF (b9730495e0cf674680121e34bd95a73b) C:\WINDOWS\system32\drivers\NPF.sys
07:48:42.0609 4988 NPF - ok
07:48:43.0031 4988 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
07:48:43.0078 4988 Npfs - ok
07:48:43.0500 4988 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
07:48:43.0562 4988 Ntfs - ok
07:48:44.0093 4988 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
07:48:44.0093 4988 NtLmSsp - ok
07:48:44.0343 4988 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
07:48:44.0546 4988 NtmsSvc - ok
07:48:45.0218 4988 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
07:48:45.0234 4988 Null - ok
07:48:46.0046 4988 nv (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
07:48:46.0890 4988 nv - ok
07:48:47.0296 4988 NVR0FLASHDev - ok
07:48:47.0625 4988 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
07:48:47.0640 4988 NwlnkFlt - ok
07:48:47.0968 4988 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
07:48:47.0984 4988 NwlnkFwd - ok
07:48:48.0218 4988 ose (7a56cf3e3f12e8af599963b16f50fb6a) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
07:48:49.0109 4988 ose - ok
07:48:50.0296 4988 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
07:48:50.0296 4988 Parport - ok
07:48:50.0390 4988 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
07:48:50.0406 4988 PartMgr - ok
07:48:50.0484 4988 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
07:48:50.0515 4988 ParVdm - ok
07:48:51.0359 4988 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
07:48:51.0375 4988 PCI - ok
07:48:51.0578 4988 PCIDump - ok
07:48:51.0671 4988 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
07:48:51.0671 4988 PCIIde - ok
07:48:51.0781 4988 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
07:48:51.0796 4988 Pcmcia - ok
07:48:51.0843 4988 PDCOMP - ok
07:48:51.0859 4988 PDFRAME - ok
07:48:51.0875 4988 PDRELI - ok
07:48:51.0890 4988 PDRFRAME - ok
07:48:51.0968 4988 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
07:48:52.0062 4988 perc2 - ok
07:48:52.0375 4988 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
07:48:52.0406 4988 perc2hib - ok
07:48:52.0687 4988 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
07:48:52.0687 4988 PlugPlay - ok
07:48:52.0859 4988 Pml Driver HPZ12 (2f4ca141a609caf5c98f6e4760ef1b9b) C:\WINDOWS\system32\HPZipm12.dll
07:48:52.0953 4988 Pml Driver HPZ12 - ok
07:48:53.0062 4988 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
07:48:53.0062 4988 PolicyAgent - ok
07:48:53.0234 4988 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
07:48:53.0281 4988 PptpMiniport - ok
07:48:53.0375 4988 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
07:48:53.0375 4988 ProtectedStorage - ok
07:48:53.0484 4988 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
07:48:53.0484 4988 PSched - ok
07:48:53.0703 4988 PSI (db2e4fc8afb22525d90818a30f53ec11) C:\WINDOWS\system32\DRIVERS\psi_mf.sys
07:48:53.0937 4988 PSI - ok
07:48:53.0984 4988 PSSdk23 - ok
07:48:54.0093 4988 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
07:48:54.0125 4988 Ptilink - ok
07:48:54.0281 4988 PxHelp20 (1962166e0ceb740704f30fa55ad3d509) C:\WINDOWS\system32\Drivers\PxHelp20.sys
07:48:54.0375 4988 PxHelp20 - ok
07:48:54.0781 4988 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
07:48:54.0812 4988 ql1080 - ok
07:48:55.0546 4988 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
07:48:55.0703 4988 Ql10wnt - ok
07:48:56.0375 4988 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
07:48:56.0390 4988 ql12160 - ok
07:48:56.0593 4988 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
07:48:56.0640 4988 ql1240 - ok
07:48:57.0015 4988 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
07:48:57.0281 4988 ql1280 - ok
07:48:57.0375 4988 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
07:48:57.0406 4988 RasAcd - ok
07:48:57.0500 4988 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
07:48:57.0531 4988 RasAuto - ok
07:48:57.0781 4988 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
07:48:57.0781 4988 Rasl2tp - ok
07:48:57.0953 4988 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
07:48:57.0953 4988 RasMan - ok
07:48:58.0468 4988 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
07:48:58.0531 4988 RasPppoe - ok
07:48:58.0921 4988 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
07:48:58.0937 4988 Raspti - ok
07:48:59.0046 4988 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
07:48:59.0093 4988 Rdbss - ok
07:48:59.0453 4988 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
07:48:59.0484 4988 RDPCDD - ok
07:49:00.0250 4988 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
07:49:00.0406 4988 rdpdr - ok
07:49:00.0671 4988 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
07:49:00.0750 4988 RDPWD - ok
07:49:01.0531 4988 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
07:49:01.0562 4988 RDSessMgr - ok
07:49:02.0125 4988 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
07:49:02.0171 4988 redbook - ok
07:49:02.0437 4988 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
07:49:02.0453 4988 RemoteAccess - ok
07:49:03.0000 4988 RemoteRegistry (5b19b557b0c188210a56a6b699d90b8f) C:\WINDOWS\system32\regsvc.dll
07:49:03.0000 4988 RemoteRegistry - ok
07:49:03.0281 4988 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe
07:49:03.0312 4988 RpcLocator - ok
07:49:04.0093 4988 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\System32\rpcss.dll
07:49:04.0093 4988 RpcSs - ok
07:49:04.0437 4988 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
07:49:04.0484 4988 RSVP - ok
07:49:06.0093 4988 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
07:49:06.0171 4988 SamSs - ok
07:49:09.0078 4988 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
07:49:09.0125 4988 SCardSvr - ok
07:49:11.0109 4988 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
07:49:11.0140 4988 Schedule - ok
07:49:11.0562 4988 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
07:49:11.0609 4988 Secdrv - ok
07:49:12.0328 4988 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
07:49:12.0328 4988 seclogon - ok
07:49:13.0015 4988 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
07:49:13.0031 4988 SENS - ok
07:49:13.0250 4988 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
07:49:13.0281 4988 serenum - ok
07:49:13.0500 4988 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
07:49:13.0609 4988 Serial - ok
07:49:14.0484 4988 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
07:49:14.0515 4988 Sfloppy - ok
07:49:15.0343 4988 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
07:49:15.0406 4988 SharedAccess - ok
07:49:15.0796 4988 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
07:49:15.0796 4988 ShellHWDetection - ok
07:49:16.0453 4988 Simbad - ok
07:49:16.0968 4988 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
07:49:17.0093 4988 sisagp - ok
07:49:17.0687 4988 SMTPSVC (db3c22745c0da4666f3be31f1af36b2f) C:\WINDOWS\system32\inetsrv\inetinfo.exe
07:49:17.0687 4988 SMTPSVC - ok
07:49:18.0265 4988 Soluto (ff35c2d01ac36b446a1b997f305f0fc2) C:\WINDOWS\system32\DRIVERS\Soluto.sys
07:49:18.0421 4988 Soluto - ok
07:49:18.0906 4988 SolutoService (3cf8b2b3cb3983db0eb990187d78a21b) C:\Program Files\Soluto\SolutoService.exe
07:49:18.0906 4988 SolutoService - ok
07:49:19.0171 4988 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
07:49:19.0250 4988 Sparrow - ok
07:49:19.0937 4988 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
07:49:20.0656 4988 splitter - ok
07:49:21.0187 4988 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
07:49:21.0281 4988 Spooler - ok
07:49:21.0578 4988 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
07:49:21.0578 4988 sr - ok
07:49:22.0062 4988 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll
07:49:22.0062 4988 srservice - ok
07:49:23.0156 4988 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
07:49:23.0484 4988 Srv - ok
07:49:24.0375 4988 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
07:49:24.0375 4988 SSDPSRV - ok
07:49:25.0671 4988 STHDA (2a2dc39623adef8ab3703ab9fac4b440) C:\WINDOWS\system32\drivers\sthda.sys
07:49:26.0578 4988 STHDA - ok
07:49:27.0546 4988 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
07:49:27.0718 4988 stisvc - ok
07:49:28.0734 4988 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
07:49:28.0859 4988 swenum - ok
07:49:30.0531 4988 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
07:49:30.0656 4988 swmidi - ok
07:49:31.0359 4988 SwPrv - ok
07:49:31.0453 4988 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
07:49:32.0125 4988 symc810 - ok
07:49:33.0609 4988 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
07:49:33.0718 4988 symc8xx - ok
07:49:34.0828 4988 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
07:49:34.0875 4988 sym_hi - ok
07:49:36.0171 4988 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
07:49:36.0312 4988 sym_u3 - ok
07:49:36.0750 4988 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
07:49:36.0750 4988 sysaudio - ok
07:49:37.0156 4988 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
07:49:37.0265 4988 SysmonLog - ok
07:49:37.0953 4988 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
07:49:37.0953 4988 TapiSrv - ok
07:49:39.0843 4988 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
07:49:40.0203 4988 Tcpip - ok
07:49:41.0031 4988 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
07:49:41.0078 4988 TDPIPE - ok
07:49:41.0312 4988 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
07:49:41.0328 4988 TDTCP - ok
07:49:41.0546 4988 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
07:49:41.0546 4988 TermDD - ok
07:49:41.0718 4988 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
07:49:41.0718 4988 TermService - ok
07:49:41.0859 4988 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
07:49:41.0859 4988 Themes - ok
07:49:42.0000 4988 TlntSvr (db7205804759ff62c34e3efd8a4cc76a) C:\WINDOWS\system32\tlntsvr.exe
07:49:42.0000 4988 TlntSvr - ok
07:49:43.0015 4988 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys
07:49:43.0265 4988 TosIde - ok
07:49:44.0250 4988 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
07:49:44.0375 4988 TrkWks - ok
07:49:44.0890 4988 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
07:49:45.0218 4988 Udfs - ok
07:49:45.0765 4988 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
07:49:45.0859 4988 ultra - ok
07:49:47.0343 4988 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
07:49:47.0468 4988 Update - ok
07:49:48.0406 4988 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
07:49:48.0468 4988 upnphost - ok
07:49:48.0625 4988 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
07:49:48.0640 4988 UPS - ok
07:49:48.0875 4988 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\WINDOWS\system32\Drivers\usbaapl.sys
07:49:49.0031 4988 USBAAPL - ok
07:49:49.0187 4988 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
07:49:49.0265 4988 usbccgp - ok
07:49:49.0718 4988 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
07:49:49.0781 4988 usbehci - ok
07:49:50.0312 4988 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
07:49:50.0328 4988 usbhub - ok
07:49:50.0406 4988 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
07:49:50.0406 4988 usbprint - ok
07:49:50.0968 4988 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
07:49:50.0984 4988 usbscan - ok
07:49:51.0078 4988 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
07:49:51.0078 4988 USBSTOR - ok
07:49:51.0156 4988 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
07:49:51.0171 4988 usbuhci - ok
07:49:51.0234 4988 usb_rndisx (b6cc50279d6cd28e090a5d33244adc9a) C:\WINDOWS\system32\DRIVERS\usb8023x.sys
07:49:51.0250 4988 usb_rndisx - ok
07:49:51.0281 4988 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
07:49:51.0281 4988 VgaSave - ok
07:49:51.0359 4988 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
07:49:51.0390 4988 viaagp - ok
07:49:51.0468 4988 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
07:49:51.0468 4988 ViaIde - ok
07:49:51.0531 4988 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
07:49:51.0546 4988 VolSnap - ok
07:49:52.0140 4988 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
07:49:52.0140 4988 VSS - ok
07:49:52.0437 4988 w32time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll
07:49:52.0437 4988 w32time - ok
07:49:52.0546 4988 W3SVC (db3c22745c0da4666f3be31f1af36b2f) C:\WINDOWS\system32\inetsrv\inetinfo.exe
07:49:52.0765 4988 W3SVC - ok
07:49:53.0000 4988 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
07:49:53.0046 4988 Wanarp - ok
07:49:53.0203 4988 wanatw - ok
07:49:53.0359 4988 wceusbsh (46a247f6617526afe38b6f12f5512120) C:\WINDOWS\system32\DRIVERS\wceusbsh.sys
07:49:53.0500 4988 wceusbsh - ok
07:49:53.0515 4988 WDICA - ok
07:49:53.0625 4988 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
07:49:53.0640 4988 wdmaud - ok
07:49:53.0750 4988 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
07:49:53.0796 4988 WebClient - ok
07:49:54.0921 4988 winachsf (f59ed5a43b988a18ef582bb07b2327a7) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
07:49:55.0062 4988 winachsf - ok
07:49:55.0703 4988 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
07:49:55.0703 4988 winmgmt - ok
07:49:56.0234 4988 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll
07:49:56.0312 4988 WmdmPmSN - ok
07:49:56.0593 4988 Wmi (e76f8807070ed04e7408a86d6d3a6137) C:\WINDOWS\System32\advapi32.dll
07:49:56.0593 4988 Wmi - ok
07:49:56.0828 4988 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe
07:49:56.0890 4988 WmiApSrv - ok
07:49:57.0593 4988 WMPNetworkSvc (f74e3d9a7fa9556c3bbb14d4e5e63d3b) C:\Program Files\Windows Media Player\WMPNetwk.exe
07:49:57.0671 4988 WMPNetworkSvc - ok
07:49:57.0968 4988 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
07:49:57.0984 4988 WpdUsb - ok
07:49:59.0187 4988 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
07:49:59.0859 4988 WPFFontCache_v0400 - ok
07:50:00.0625 4988 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
07:50:00.0640 4988 WS2IFSL - ok
07:50:01.0437 4988 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
07:50:01.0453 4988 WudfPf - ok
07:50:01.0687 4988 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
07:50:01.0687 4988 WudfRd - ok
07:50:01.0781 4988 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
07:50:01.0781 4988 WudfSvc - ok
07:50:01.0906 4988 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
07:50:01.0906 4988 WZCSVC - ok
07:50:02.0078 4988 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
07:50:02.0140 4988 xmlprov - ok
07:50:02.0187 4988 MBR (0x1B8) (5cb90281d1a59b251f6603134774eec3) \Device\Harddisk0\DR0
07:50:03.0281 4988 \Device\Harddisk0\DR0 - ok
07:50:03.0281 4988 MBR (0x1B8) (8ff255184f078c9c04e6a2ce66117c5c) \Device\Harddisk5\DR8
07:50:03.0453 4988 \Device\Harddisk5\DR8 - ok
07:50:03.0531 4988 Boot (0x1200) (6cd33e0a392fea1c99f403dd091e866d) \Device\Harddisk0\DR0\Partition0
07:50:03.0531 4988 \Device\Harddisk0\DR0\Partition0 - ok
07:50:03.0531 4988 Boot (0x1200) (1a3ebe101bd27b4c5ef426e61e2fa833) \Device\Harddisk5\DR8\Partition0
07:50:03.0531 4988 \Device\Harddisk5\DR8\Partition0 - ok
07:50:03.0531 4988 ============================================================
07:50:03.0531 4988 Scan finished
07:50:03.0531 4988 ============================================================
07:50:03.0546 4940 Detected object count: 0
07:50:03.0546 4940 Actual detected object count: 0

AswMBR.txt

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-04-07 20:02:40
-----------------------------
20:02:40.133 OS Version: Windows 5.1.2600 Service Pack 3
20:02:40.133 Number of processors: 2 586 0x407
20:02:40.133 ComputerName: MV UserName:
20:02:42.977 Initialize success
20:03:04.089 AVAST engine defs: 12040701
20:22:55.539 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-17
20:22:55.571 Disk 0 Vendor: WDC_WD1600JS-75NCB2 10.02E03 Size: 152587MB BusType: 3
20:22:55.586 Disk 0 MBR read successfully
20:22:55.586 Disk 0 MBR scan
20:22:56.165 Disk 0 unknown MBR code
20:22:56.165 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 47 MB offset 63
20:22:56.196 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 147683 MB offset 96390
20:22:56.227 Disk 0 Partition 3 00 DB CP/M / CTOS Dell 8.0 4855 MB offset 302552145
20:22:56.258 Disk 0 scanning sectors +312496380
20:22:56.461 Disk 0 scanning C:\WINDOWS\system32\drivers
20:23:31.356 File: C:\WINDOWS\system32\drivers\netbt.sys **INFECTED** Win32:Hosts-BM [Rtk]
20:23:45.060 Disk 0 trace - called modules:
20:23:45.123 ntkrnlpa.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0x89a44fd0]<<
20:23:45.123 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8a9daab8]
20:23:45.123 3 CLASSPNP.SYS[ba0e8fd7] -> nt!IofCallDriver -> [0x8a12a9b0]
20:23:45.123 \Driver\00001395[0x89c5fda0] -> IRP_MJ_CREATE -> 0x89a44fd0
20:23:47.873 AVAST engine scan C:\WINDOWS
20:24:41.613 AVAST engine scan C:\WINDOWS\system32
20:33:58.768 AVAST engine scan C:\WINDOWS\system32\drivers
20:34:16.707 File: C:\WINDOWS\system32\drivers\netbt.sys **INFECTED** Win32:Hosts-BM [Rtk]
20:34:37.694 AVAST engine scan C:\Documents and Settings\MVaughan
21:03:38.948 Disk 0 MBR has been saved successfully to "C:\adu\computer_help_downloads\MBR.dat"
21:03:38.995 The log file has been saved successfully to "C:\adu\computer_help_downloads\aswMBR2.txt"


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-04-07 21:05:20
-----------------------------
21:05:20.034 OS Version: Windows 5.1.2600 Service Pack 3
21:05:20.034 Number of processors: 2 586 0x407
21:05:20.034 ComputerName: MV UserName:
21:05:22.081 Initialize success
21:07:44.153 AVAST engine defs: 12040701
21:13:31.831 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-17
21:13:31.831 Disk 0 Vendor: WDC_WD1600JS-75NCB2 10.02E03 Size: 152587MB BusType: 3
21:13:31.878 Disk 0 MBR read successfully
21:13:31.878 Disk 0 MBR scan
21:13:31.925 Disk 0 unknown MBR code
21:13:31.925 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 47 MB offset 63
21:13:31.972 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 147683 MB offset 96390
21:13:32.003 Disk 0 Partition 3 00 DB CP/M / CTOS Dell 8.0 4855 MB offset 302552145
21:13:32.019 Disk 0 scanning sectors +312496380
21:13:32.159 Disk 0 scanning C:\WINDOWS\system32\drivers
21:13:52.207 File: C:\WINDOWS\system32\drivers\netbt.sys **INFECTED** Win32:Hosts-BM [Rtk]
21:14:04.239 Disk 0 trace - called modules:
21:14:04.255 ntkrnlpa.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0x89a44fd0]<<
21:14:04.255 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8a9daab8]
21:14:04.255 3 CLASSPNP.SYS[ba0e8fd7] -> nt!IofCallDriver -> [0x8a12a9b0]
21:14:04.255 \Driver\00001395[0x89c5fda0] -> IRP_MJ_CREATE -> 0x89a44fd0
21:14:05.333 AVAST engine scan C:\WINDOWS
21:14:55.851 AVAST engine scan C:\WINDOWS\system32
21:23:23.943 AVAST engine scan C:\WINDOWS\system32\drivers
21:23:49.632 File: C:\WINDOWS\system32\drivers\netbt.sys **INFECTED** Win32:Hosts-BM [Rtk]
21:24:21.431 AVAST engine scan C:\Documents and Settings\MVaughan
22:42:12.108 Disk 0 MBR has been saved successfully to "C:\adu\computer_help_downloads\MBR.dat"
22:42:12.108 The log file has been saved successfully to "C:\adu\computer_help_downloads\aswMBR2.txt"

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:32 PM

Posted 07 April 2012 - 11:23 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log


Download

http://www.symantec.com/content/en/us/global/removal_tool/threat_writeups/FixZeroAccess.exe

Launch it and allow it to restart the PC ,on reboot let me know what it finds

Now run TDSSkiller ,after making sure that MBAM has come out clean.Lets see if it detects zero access rootkit now

good luck

#5 Verve

Verve
  • Topic Starter

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Local time:06:32 PM

Posted 08 April 2012 - 09:48 PM

I ran Malwarebytes and removed all infections that it found. Re-ran it and nothing came up. I ran the FixZeroAccess utility and it came up with about 20 files that it repaired. TDSSkiller found two items that it corrected. I tried using Google and it seems to work properly now. I hope that this has gotten rid of the problems I was having.

Here is TDSSkiller log.




22:38:17.0984 3068 TDSS rootkit removing tool 2.7.26.0 Apr 4 2012 19:52:02
22:38:18.0484 3068 ============================================================
22:38:18.0484 3068 Current date / time: 2012/04/08 22:38:18.0484
22:38:18.0484 3068 SystemInfo:
22:38:18.0484 3068
22:38:18.0484 3068 OS Version: 5.1.2600 ServicePack: 3.0
22:38:18.0484 3068 Product type: Workstation
22:38:18.0484 3068 ComputerName: MV
22:38:18.0484 3068 UserName: MVaughan
22:38:18.0484 3068 Windows directory: C:\WINDOWS
22:38:18.0484 3068 System windows directory: C:\WINDOWS
22:38:18.0484 3068 Processor architecture: Intel x86
22:38:18.0484 3068 Number of processors: 2
22:38:18.0484 3068 Page size: 0x1000
22:38:18.0484 3068 Boot type: Normal boot
22:38:18.0484 3068 ============================================================
22:38:20.0968 3068 Drive \Device\Harddisk0\DR0 - Size: 0x2540BE4000 (149.01 Gb), SectorSize: 0x200, Cylinders: 0x4BFC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
22:38:21.0031 3068 Drive \Device\Harddisk5\DR8 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
22:38:21.0046 3068 \Device\Harddisk0\DR0:
22:38:21.0046 3068 MBR used
22:38:21.0046 3068 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x17886, BlocksNum 0x12071BCB
22:38:21.0046 3068 \Device\Harddisk5\DR8:
22:38:21.0046 3068 MBR used
22:38:21.0046 3068 \Device\Harddisk5\DR8\Partition0: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0x2542D682
22:38:21.0171 3068 Initialize success
22:38:21.0171 3068 ============================================================
22:38:24.0125 2672 ============================================================
22:38:24.0125 2672 Scan started
22:38:24.0125 2672 Mode: Manual;
22:38:24.0125 2672 ============================================================
22:38:25.0390 2672 Abiosdsk - ok
22:38:25.0468 2672 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
22:38:25.0734 2672 abp480n5 - ok
22:38:25.0843 2672 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
22:38:25.0859 2672 ACPI - ok
22:38:26.0031 2672 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
22:38:26.0046 2672 ACPIEC - ok
22:38:26.0187 2672 AdobeFlashPlayerUpdateSvc (0d4c486a24a711a45fd83acdf4d18506) C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
22:38:26.0281 2672 AdobeFlashPlayerUpdateSvc - ok
22:38:26.0406 2672 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
22:38:26.0484 2672 adpu160m - ok
22:38:26.0609 2672 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
22:38:26.0625 2672 aec - ok
22:38:26.0765 2672 AFD (7618d5218f2a614672ec61a80d854a37) C:\WINDOWS\System32\drivers\afd.sys
22:38:26.0859 2672 AFD - ok
22:38:26.0906 2672 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
22:38:26.0937 2672 agp440 - ok
22:38:26.0984 2672 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
22:38:27.0000 2672 agpCPQ - ok
22:38:27.0015 2672 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
22:38:27.0093 2672 Aha154x - ok
22:38:27.0156 2672 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
22:38:27.0234 2672 aic78u2 - ok
22:38:27.0250 2672 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
22:38:27.0328 2672 aic78xx - ok
22:38:27.0390 2672 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
22:38:27.0421 2672 Alerter - ok
22:38:27.0453 2672 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
22:38:27.0453 2672 ALG - ok
22:38:27.0484 2672 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
22:38:27.0562 2672 AliIde - ok
22:38:27.0687 2672 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
22:38:27.0687 2672 alim1541 - ok
22:38:27.0718 2672 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
22:38:27.0734 2672 amdagp - ok
22:38:27.0750 2672 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
22:38:27.0828 2672 amsint - ok
22:38:27.0953 2672 Apache2.2 (e157e4cdacf524d1fc68b5fdd19b0e6c) c:\server\xampp\apache\bin\apache.exe
22:38:28.0046 2672 Apache2.2 - ok
22:38:28.0187 2672 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:38:28.0265 2672 Apple Mobile Device - ok
22:38:28.0312 2672 AppMgmt (d8849f77c0b66226335a59d26cb4edc6) C:\WINDOWS\System32\appmgmts.dll
22:38:28.0328 2672 AppMgmt - ok
22:38:28.0421 2672 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
22:38:28.0515 2672 asc - ok
22:38:28.0671 2672 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
22:38:28.0750 2672 asc3350p - ok
22:38:28.0781 2672 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
22:38:28.0859 2672 asc3550 - ok
22:38:28.0890 2672 ASPI32 - ok
22:38:29.0015 2672 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
22:38:29.0203 2672 aspnet_state - ok
22:38:29.0343 2672 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
22:38:29.0343 2672 AsyncMac - ok
22:38:29.0437 2672 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
22:38:29.0437 2672 atapi - ok
22:38:29.0484 2672 Atdisk - ok
22:38:29.0562 2672 Ati HotKey Poller (51f5ec4a4e68c56a0304c47a0cd70ddb) C:\WINDOWS\system32\Ati2evxx.exe
22:38:29.0703 2672 Ati HotKey Poller - ok
22:38:29.0796 2672 ati2mtag (03621f7f968ff63713943405deb777f9) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
22:38:29.0890 2672 ati2mtag - ok
22:38:29.0906 2672 atitunep - ok
22:38:29.0921 2672 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
22:38:29.0937 2672 Atmarpc - ok
22:38:30.0015 2672 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
22:38:30.0015 2672 AudioSrv - ok
22:38:30.0140 2672 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
22:38:30.0156 2672 audstub - ok
22:38:30.0218 2672 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
22:38:30.0218 2672 Beep - ok
22:38:30.0281 2672 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
22:38:30.0390 2672 BITS - ok
22:38:30.0531 2672 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
22:38:30.0640 2672 Bonjour Service - ok
22:38:30.0703 2672 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
22:38:30.0703 2672 Browser - ok
22:38:30.0765 2672 btaudio (ca141a70ad8604c6d97ab9b3084ab954) C:\WINDOWS\system32\drivers\btaudio.sys
22:38:30.0890 2672 btaudio - ok
22:38:30.0937 2672 BTDriver (d307cb113bad063d4d56058f69b02d7a) C:\WINDOWS\system32\DRIVERS\btport.sys
22:38:31.0015 2672 BTDriver - ok
22:38:31.0109 2672 BTKRNL (0627ed35e6c287a924c3b685815db8d8) C:\WINDOWS\system32\DRIVERS\btkrnl.sys
22:38:31.0203 2672 BTKRNL - ok
22:38:31.0250 2672 BTSERIAL (e490c0b632e9e2cc551ca82a42a68d60) C:\WINDOWS\system32\drivers\btserial.sys
22:38:31.0343 2672 BTSERIAL - ok
22:38:31.0375 2672 BTSLBCSP (5abc4b88ea25d81b34bd00b7abe9553d) C:\WINDOWS\system32\drivers\btslbcsp.sys
22:38:31.0453 2672 BTSLBCSP - ok
22:38:31.0546 2672 btwdins (e2a600aaf666b03cadcf488a666487b9) C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
22:38:31.0656 2672 btwdins - ok
22:38:31.0812 2672 BTWDNDIS (5f69dd42413a09e0b501bbf4237454a6) C:\WINDOWS\system32\DRIVERS\btwdndis.sys
22:38:31.0890 2672 BTWDNDIS - ok
22:38:31.0968 2672 BTWUSB (540e6832d01e0b35a0e341fc0c3f5a4c) C:\WINDOWS\system32\Drivers\btwusb.sys
22:38:32.0046 2672 BTWUSB - ok
22:38:32.0062 2672 bvrp_pci - ok
22:38:32.0125 2672 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
22:38:32.0125 2672 cbidf - ok
22:38:32.0140 2672 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
22:38:32.0140 2672 cbidf2k - ok
22:38:32.0156 2672 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
22:38:32.0234 2672 cd20xrnt - ok
22:38:32.0296 2672 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
22:38:32.0296 2672 Cdaudio - ok
22:38:32.0343 2672 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
22:38:32.0359 2672 Cdfs - ok
22:38:32.0406 2672 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
22:38:32.0421 2672 Cdrom - ok
22:38:32.0468 2672 cfwids (1dcb5209601a70e36c70fe8d197d62cb) C:\WINDOWS\system32\drivers\cfwids.sys
22:38:32.0468 2672 cfwids - ok
22:38:32.0484 2672 cfwids01 - ok
22:38:32.0484 2672 cfwids03 - ok
22:38:32.0484 2672 cfwids07 - ok
22:38:32.0500 2672 cfwids08 - ok
22:38:32.0515 2672 cfwids10 - ok
22:38:32.0546 2672 Changer - ok
22:38:32.0625 2672 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
22:38:32.0625 2672 CiSvc - ok
22:38:32.0703 2672 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
22:38:32.0734 2672 ClipSrv - ok
22:38:32.0875 2672 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:38:33.0171 2672 clr_optimization_v2.0.50727_32 - ok
22:38:33.0375 2672 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:38:33.0453 2672 clr_optimization_v4.0.30319_32 - ok
22:38:33.0562 2672 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys
22:38:33.0578 2672 CmdIde - ok
22:38:33.0640 2672 COMSysApp - ok
22:38:33.0703 2672 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
22:38:33.0718 2672 Cpqarray - ok
22:38:33.0828 2672 cpuz135 - ok
22:38:33.0890 2672 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
22:38:33.0890 2672 CryptSvc - ok
22:38:33.0921 2672 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
22:38:33.0921 2672 dac2w2k - ok
22:38:33.0953 2672 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
22:38:34.0015 2672 dac960nt - ok
22:38:34.0078 2672 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
22:38:34.0093 2672 DcomLaunch - ok
22:38:34.0093 2672 dcstor32 - ok
22:38:34.0156 2672 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
22:38:34.0156 2672 Dhcp - ok
22:38:34.0218 2672 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
22:38:34.0234 2672 Disk - ok
22:38:34.0328 2672 DLABOIOM (e2d0de31442390c35e3163c87cb6a9eb) C:\WINDOWS\system32\DLA\DLABOIOM.SYS
22:38:34.0328 2672 DLABOIOM - ok
22:38:34.0406 2672 DLACDBHM (d979bebcf7edcc9c9ee1857d1a68c67b) C:\WINDOWS\system32\Drivers\DLACDBHM.SYS
22:38:34.0406 2672 DLACDBHM - ok
22:38:34.0437 2672 DLADResN (83545593e297f50a8e2524b4c071a153) C:\WINDOWS\system32\DLA\DLADResN.SYS
22:38:34.0500 2672 DLADResN - ok
22:38:34.0562 2672 DLAIFS_M (96e01d901cdc98c7817155cc057001bf) C:\WINDOWS\system32\DLA\DLAIFS_M.SYS
22:38:34.0578 2672 DLAIFS_M - ok
22:38:34.0625 2672 DLAOPIOM (0a60a39cc5e767980a31ca5d7238dfa9) C:\WINDOWS\system32\DLA\DLAOPIOM.SYS
22:38:34.0703 2672 DLAOPIOM - ok
22:38:34.0718 2672 DLAPoolM (9fe2b72558fc808357f427fd83314375) C:\WINDOWS\system32\DLA\DLAPoolM.SYS
22:38:34.0796 2672 DLAPoolM - ok
22:38:34.0843 2672 DLARTL_N (7ee0852ae8907689df25049dcd2342e8) C:\WINDOWS\system32\Drivers\DLARTL_N.SYS
22:38:34.0921 2672 DLARTL_N - ok
22:38:34.0984 2672 DLAUDFAM (f08e1dafac457893399e03430a6a1397) C:\WINDOWS\system32\DLA\DLAUDFAM.SYS
22:38:35.0000 2672 DLAUDFAM - ok
22:38:35.0015 2672 DLAUDF_M (e7d105ed1e694449d444a9933df8e060) C:\WINDOWS\system32\DLA\DLAUDF_M.SYS
22:38:35.0109 2672 DLAUDF_M - ok
22:38:35.0125 2672 dmadmin - ok
22:38:35.0312 2672 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
22:38:35.0343 2672 dmboot - ok
22:38:35.0390 2672 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
22:38:35.0390 2672 dmio - ok
22:38:35.0406 2672 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
22:38:35.0421 2672 dmload - ok
22:38:35.0453 2672 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
22:38:35.0468 2672 dmserver - ok
22:38:35.0468 2672 DMUSBUSBDCam - ok
22:38:35.0500 2672 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
22:38:35.0515 2672 DMusic - ok
22:38:35.0578 2672 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
22:38:35.0640 2672 Dnscache - ok
22:38:35.0703 2672 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
22:38:35.0703 2672 Dot3svc - ok
22:38:35.0828 2672 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
22:38:35.0859 2672 dpti2o - ok
22:38:36.0000 2672 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
22:38:36.0015 2672 drmkaud - ok
22:38:36.0078 2672 DRVMCDB (fd0f95981fef9073659d8ec58e40aa3c) C:\WINDOWS\system32\Drivers\DRVMCDB.SYS
22:38:36.0171 2672 DRVMCDB - ok
22:38:36.0203 2672 DRVNDDM (b4869d320428cdc5ec4d7f5e808e99b5) C:\WINDOWS\system32\Drivers\DRVNDDM.SYS
22:38:36.0296 2672 DRVNDDM - ok
22:38:36.0296 2672 E100B (95974e66d3de4951d29e28e8bc0b644c) C:\WINDOWS\system32\DRIVERS\e100b325.sys
22:38:36.0312 2672 E100B - ok
22:38:36.0359 2672 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
22:38:36.0390 2672 EapHost - ok
22:38:36.0453 2672 ehRecvr (5d1347aa5ae6e2f77d7f4f8372d95ac9) C:\WINDOWS\eHome\ehRecvr.exe
22:38:36.0468 2672 ehRecvr - ok
22:38:36.0531 2672 ehSched (a53243709439ac2a4c216b817f8d7411) C:\WINDOWS\eHome\ehSched.exe
22:38:36.0625 2672 ehSched - ok
22:38:36.0687 2672 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
22:38:36.0687 2672 ERSvc - ok
22:38:36.0750 2672 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
22:38:36.0781 2672 Eventlog - ok
22:38:36.0875 2672 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\system32\es.dll
22:38:36.0890 2672 EventSystem - ok
22:38:36.0968 2672 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
22:38:36.0968 2672 Fastfat - ok
22:38:37.0031 2672 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
22:38:37.0125 2672 FastUserSwitchingCompatibility - ok
22:38:37.0234 2672 Fax (e97d6a8684466df94ff3bc24fb787a07) C:\WINDOWS\system32\fxssvc.exe
22:38:37.0234 2672 Fax - ok
22:38:37.0343 2672 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
22:38:37.0359 2672 Fdc - ok
22:38:37.0500 2672 FileZilla Server (ac2263e3431fa9df4e48cd5f1da9a722) c:\server\xampp\FileZillaFTP\FileZillaServer.exe
22:38:37.0625 2672 FileZilla Server - ok
22:38:37.0687 2672 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
22:38:37.0687 2672 Fips - ok
22:38:37.0734 2672 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
22:38:37.0750 2672 Flpydisk - ok
22:38:37.0812 2672 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
22:38:37.0828 2672 FltMgr - ok
22:38:37.0968 2672 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
22:38:37.0984 2672 FontCache3.0.0.0 - ok
22:38:38.0000 2672 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
22:38:38.0000 2672 Fs_Rec - ok
22:38:38.0046 2672 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
22:38:38.0062 2672 Ftdisk - ok
22:38:38.0187 2672 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
22:38:38.0296 2672 GEARAspiWDM - ok
22:38:38.0812 2672 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
22:38:38.0828 2672 Gpc - ok
22:38:39.0156 2672 gupdate (899cdb72abb2a6fbcfa66dc2f0a58d43) C:\Program Files\Google\Update\GoogleUpdate.exe
22:38:39.0250 2672 gupdate - ok
22:38:39.0328 2672 gupdatem (899cdb72abb2a6fbcfa66dc2f0a58d43) C:\Program Files\Google\Update\GoogleUpdate.exe
22:38:39.0328 2672 gupdatem - ok
22:38:39.0671 2672 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
22:38:39.0671 2672 HDAudBus - ok
22:38:39.0968 2672 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
22:38:40.0000 2672 helpsvc - ok
22:38:40.0078 2672 HidServ - ok
22:38:40.0406 2672 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
22:38:40.0437 2672 HidUsb - ok
22:38:40.0531 2672 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
22:38:40.0562 2672 hkmsvc - ok
22:38:40.0734 2672 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
22:38:40.0828 2672 hpn - ok
22:38:42.0218 2672 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
22:38:42.0343 2672 HPZid412 - ok
22:38:42.0734 2672 HPZipr12 (89f41658929393487b6b7d13c8528ce3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
22:38:42.0796 2672 HPZipr12 - ok
22:38:43.0015 2672 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
22:38:43.0156 2672 HPZius12 - ok
22:38:43.0250 2672 HSFHWBS2 (77e4ff0b73bc0aeaaf39bf0c8104231f) C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
22:38:43.0343 2672 HSFHWBS2 - ok
22:38:43.0406 2672 HSF_DP (60e1604729a15ef4a3b05f298427b3b1) C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
22:38:43.0562 2672 HSF_DP - ok
22:38:43.0781 2672 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
22:38:43.0781 2672 HTTP - ok
22:38:43.0875 2672 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
22:38:43.0921 2672 HTTPFilter - ok
22:38:44.0031 2672 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
22:38:44.0031 2672 i2omgmt - ok
22:38:44.0078 2672 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
22:38:44.0078 2672 i2omp - ok
22:38:44.0125 2672 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
22:38:44.0125 2672 i8042prt - ok
22:38:44.0250 2672 ialm (5a8e05f1d5c36abd58cffa111eb325ea) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
22:38:44.0640 2672 ialm - ok
22:38:44.0687 2672 iap - ok
22:38:44.0875 2672 IDriverT (6f95324909b502e2651442c1548ab12f) C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
22:38:44.0906 2672 IDriverT - ok
22:38:45.0109 2672 idsvc (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:38:45.0234 2672 idsvc - ok
22:38:45.0375 2672 IISADMIN (db3c22745c0da4666f3be31f1af36b2f) C:\WINDOWS\system32\inetsrv\inetinfo.exe
22:38:45.0375 2672 IISADMIN - ok
22:38:45.0421 2672 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
22:38:45.0421 2672 Imapi - ok
22:38:45.0468 2672 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe
22:38:45.0484 2672 ImapiService - ok
22:38:45.0531 2672 InCDfs (1da147acb525a4822228be06154c7cbb) C:\WINDOWS\system32\drivers\InCDFs.sys
22:38:45.0671 2672 InCDfs - ok
22:38:45.0718 2672 InCDPass (2ec469a401ae6fe7a67d80effd3091b1) C:\WINDOWS\system32\drivers\InCDPass.sys
22:38:45.0875 2672 InCDPass - ok
22:38:45.0890 2672 InCDRec (544498d06b8ca187a5960b4f3b4bd63e) C:\WINDOWS\system32\drivers\InCDRec.sys
22:38:46.0031 2672 InCDRec - ok
22:38:46.0062 2672 incdrm (2863a00b0f64d937f0cd9561c53b5a37) C:\WINDOWS\system32\drivers\InCDRm.sys
22:38:46.0203 2672 incdrm - ok
22:38:46.0328 2672 InCDsrv (59833f87ebf6b4641b278ea723f77a02) C:\Program Files\Nero\Nero8\InCD\InCDsrv.exe
22:38:46.0437 2672 InCDsrv - ok
22:38:46.0468 2672 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
22:38:46.0546 2672 ini910u - ok
22:38:46.0656 2672 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\system32\DRIVERS\intelide.sys
22:38:46.0656 2672 IntelIde - ok
22:38:46.0687 2672 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
22:38:46.0703 2672 intelppm - ok
22:38:46.0828 2672 IntuitUpdateService (12a5ef620ab047dadc9bb580034437f7) C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
22:38:46.0906 2672 IntuitUpdateService - ok
22:38:46.0984 2672 IntuitUpdateServiceV4 (1663a135865f0ba6e853353e98e67f2a) C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
22:38:47.0062 2672 IntuitUpdateServiceV4 - ok
22:38:47.0093 2672 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
22:38:47.0093 2672 Ip6Fw - ok
22:38:47.0187 2672 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
22:38:47.0187 2672 IpFilterDriver - ok
22:38:47.0234 2672 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
22:38:47.0234 2672 IpInIp - ok
22:38:47.0281 2672 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
22:38:47.0281 2672 IpNat - ok
22:38:47.0359 2672 iPod Service (ce004777b92dea56fe14ec900d20baa4) C:\Program Files\iPod\bin\iPodService.exe
22:38:48.0015 2672 iPod Service - ok
22:38:48.0140 2672 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
22:38:48.0156 2672 IPSec - ok
22:38:48.0187 2672 IPSECSHM - ok
22:38:48.0234 2672 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
22:38:48.0234 2672 IRENUM - ok
22:38:48.0281 2672 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
22:38:48.0296 2672 isapnp - ok
22:38:48.0375 2672 JavaQuickStarterService - ok
22:38:48.0437 2672 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
22:38:48.0453 2672 Kbdclass - ok
22:38:48.0500 2672 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
22:38:48.0515 2672 kbdhid - ok
22:38:48.0593 2672 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
22:38:48.0609 2672 kmixer - ok
22:38:48.0656 2672 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
22:38:48.0671 2672 KSecDD - ok
22:38:48.0687 2672 kservice - ok
22:38:48.0750 2672 lanmanserver (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
22:38:48.0812 2672 lanmanserver - ok
22:38:48.0875 2672 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
22:38:48.0875 2672 lanmanworkstation - ok
22:38:49.0109 2672 Lavasoft Ad-Aware Service (193146149076b331c008c1c0af6fa5b9) C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
22:38:49.0265 2672 Lavasoft Ad-Aware Service - ok
22:38:49.0343 2672 Lbd (419590ebe7855215bb157ea0cf0d0531) C:\WINDOWS\system32\DRIVERS\Lbd.sys
22:38:49.0359 2672 Lbd - ok
22:38:49.0375 2672 lbrtfdc - ok
22:38:49.0390 2672 LHidUsbK - ok
22:38:49.0437 2672 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
22:38:49.0437 2672 LmHosts - ok
22:38:49.0453 2672 lvckap - ok
22:38:49.0578 2672 McAfee SiteAdvisor Service (6f2fffaca99e41ae0e3692bc9750d2d9) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
22:38:49.0671 2672 McAfee SiteAdvisor Service - ok
22:38:49.0687 2672 McMPFSvc (6f2fffaca99e41ae0e3692bc9750d2d9) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
22:38:49.0687 2672 McMPFSvc - ok
22:38:49.0703 2672 mcmscsvc (6f2fffaca99e41ae0e3692bc9750d2d9) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
22:38:49.0703 2672 mcmscsvc - ok
22:38:49.0703 2672 McNaiAnn (6f2fffaca99e41ae0e3692bc9750d2d9) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
22:38:49.0703 2672 McNaiAnn - ok
22:38:49.0718 2672 McNASvc (6f2fffaca99e41ae0e3692bc9750d2d9) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
22:38:49.0718 2672 McNASvc - ok
22:38:49.0890 2672 McODS (5379a996f953da65f40cc4e848dc7590) C:\Program Files\McAfee\VirusScan\mcods.exe
22:38:49.0984 2672 McODS - ok
22:38:49.0984 2672 McProxy (6f2fffaca99e41ae0e3692bc9750d2d9) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
22:38:50.0000 2672 McProxy - ok
22:38:50.0140 2672 McrdSvc (df0a511f38f16016bf658fca0090cb87) C:\WINDOWS\ehome\mcrdsvc.exe
22:38:50.0234 2672 McrdSvc - ok
22:38:50.0328 2672 McShield (16767b4cb7ae8f388e091717db34ff6c) C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
22:38:50.0406 2672 McShield - ok
22:38:50.0468 2672 mdmxsdk (eeaea6514ba7c9d273b5e87c4e1aab30) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
22:38:50.0546 2672 mdmxsdk - ok
22:38:50.0562 2672 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
22:38:50.0578 2672 Messenger - ok
22:38:50.0750 2672 mfeapfk (36b47b1e9c537f8f2b4481084b8f7d22) C:\WINDOWS\system32\drivers\mfeapfk.sys
22:38:50.0828 2672 mfeapfk - ok
22:38:50.0921 2672 mfeavfk (cde41293db871a75cd99eb0ce781356b) C:\WINDOWS\system32\drivers\mfeavfk.sys
22:38:51.0015 2672 mfeavfk - ok
22:38:51.0093 2672 mfeavfk01 - ok
22:38:51.0109 2672 mfebopk (e22385f64bdf0ad81157479496e33c4a) C:\WINDOWS\system32\drivers\mfebopk.sys
22:38:51.0187 2672 mfebopk - ok
22:38:51.0312 2672 mfefire (3f17534b8867854113df2b45fff3acf5) C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
22:38:51.0406 2672 mfefire - ok
22:38:51.0468 2672 mfefirek (215666a8a85023ef019b510cbb67f678) C:\WINDOWS\system32\drivers\mfefirek.sys
22:38:51.0562 2672 mfefirek - ok
22:38:51.0765 2672 mfehidk (56d330981866a72f061dd16cc5004513) C:\WINDOWS\system32\drivers\mfehidk.sys
22:38:51.0937 2672 mfehidk - ok
22:38:51.0953 2672 mfendisk (62acda4e958e2a392557ba3c6c754a58) C:\WINDOWS\system32\DRIVERS\mfendisk.sys
22:38:52.0046 2672 mfendisk - ok
22:38:52.0046 2672 mfendiskmp (62acda4e958e2a392557ba3c6c754a58) C:\WINDOWS\system32\DRIVERS\mfendisk.sys
22:38:52.0046 2672 mfendiskmp - ok
22:38:52.0093 2672 mferkdet (89b564d63c53fc0c6782ab07eea63acf) C:\WINDOWS\system32\drivers\mferkdet.sys
22:38:52.0187 2672 mferkdet - ok
22:38:52.0234 2672 mferkdk (41fe2f288e05a6c8ab85dd56770ffbad) C:\WINDOWS\system32\drivers\mferkdk.sys
22:38:52.0312 2672 mferkdk - ok
22:38:52.0359 2672 mfesmfk (096b52ea918aa909ba5903d79e129005) C:\WINDOWS\system32\drivers\mfesmfk.sys
22:38:52.0453 2672 mfesmfk - ok
22:38:52.0500 2672 mfetdi2k (922e64ca38e38106498fb3435a8e399d) C:\WINDOWS\system32\drivers\mfetdi2k.sys
22:38:52.0593 2672 mfetdi2k - ok
22:38:52.0812 2672 mfevtp (ad52269897626d614b31e153f5c5d65c) C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
22:38:52.0890 2672 mfevtp - ok
22:38:52.0984 2672 MHN (b7521f69c0a9b29d356157229376fb21) C:\WINDOWS\System32\mhn.dll
22:38:53.0046 2672 MHN - ok
22:38:53.0187 2672 MHNDRV (7f2f1d2815a6449d346fcccbc569fbd6) C:\WINDOWS\system32\DRIVERS\mhndrv.sys
22:38:53.0390 2672 MHNDRV - ok
22:38:53.0656 2672 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
22:38:53.0656 2672 mnmdd - ok
22:38:53.0750 2672 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe
22:38:53.0750 2672 mnmsrvc - ok
22:38:53.0843 2672 MOBKbackup (35176fa09a0fc58db630991a81a0ba39) C:\Program Files\McAfee Online Backup\MOBKbackup.exe
22:38:53.0921 2672 MOBKbackup - ok
22:38:53.0984 2672 MOBKFilter (e896775837a8bce436348df460522394) C:\WINDOWS\system32\DRIVERS\MOBK.sys
22:38:54.0125 2672 MOBKFilter - ok
22:38:54.0203 2672 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
22:38:54.0203 2672 Modem - ok
22:38:54.0250 2672 MODEMCSA (1992e0d143b09653ab0f9c5e04b0fd65) C:\WINDOWS\system32\drivers\MODEMCSA.sys
22:38:54.0343 2672 MODEMCSA - ok
22:38:54.0562 2672 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
22:38:54.0578 2672 Mouclass - ok
22:38:54.0750 2672 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
22:38:54.0750 2672 mouhid - ok
22:38:54.0828 2672 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
22:38:54.0843 2672 MountMgr - ok
22:38:54.0875 2672 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
22:38:54.0953 2672 mraid35x - ok
22:38:55.0000 2672 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
22:38:55.0015 2672 MRxDAV - ok
22:38:55.0078 2672 MRxSmb (0ea4d8ed179b75f8afa7998ba22285ca) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
22:38:55.0250 2672 MRxSmb - ok
22:38:55.0296 2672 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe
22:38:55.0312 2672 MSDTC - ok
22:38:55.0343 2672 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
22:38:55.0343 2672 Msfs - ok
22:38:55.0359 2672 MSIServer - ok
22:38:55.0515 2672 MSK80Service (6f2fffaca99e41ae0e3692bc9750d2d9) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
22:38:55.0531 2672 MSK80Service - ok
22:38:55.0750 2672 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
22:38:55.0750 2672 MSKSSRV - ok
22:38:55.0843 2672 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
22:38:55.0843 2672 MSPCLOCK - ok
22:38:55.0875 2672 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
22:38:55.0875 2672 MSPQM - ok
22:38:55.0937 2672 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
22:38:55.0937 2672 mssmbios - ok
22:38:55.0953 2672 MSSQL$AUTODESKVAULT - ok
22:38:56.0015 2672 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
22:38:56.0015 2672 Mup - ok
22:38:56.0328 2672 MySql (29d17fc0d96252692c6ce2f7a7c247c1) c:/server/xampp/mysql/bin/mysqld.exe
22:38:56.0593 2672 MySql - ok
22:38:56.0734 2672 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
22:38:56.0750 2672 napagent - ok
22:38:56.0812 2672 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
22:38:56.0828 2672 NDIS - ok
22:38:56.0875 2672 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
22:38:56.0875 2672 NdisTapi - ok
22:38:56.0890 2672 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
22:38:56.0906 2672 Ndisuio - ok
22:38:56.0953 2672 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
22:38:56.0968 2672 NdisWan - ok
22:38:57.0000 2672 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
22:38:57.0078 2672 NDProxy - ok
22:38:57.0187 2672 NeroRegInCDSrv (5140ec8b47d1bfa9ed563c31036a0019) C:\Program Files\Nero\Nero8\InCD\NBHRegInCDSrv.exe
22:38:57.0265 2672 NeroRegInCDSrv - ok
22:38:57.0359 2672 Net Driver HPZ12 (949941e4de88df1faf49a4b3cffb756f) C:\WINDOWS\system32\HPZinw12.dll
22:38:57.0421 2672 Net Driver HPZ12 - ok
22:38:57.0515 2672 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
22:38:57.0546 2672 NetBIOS - ok
22:38:57.0625 2672 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
22:38:57.0625 2672 NetBT - ok
22:38:57.0703 2672 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
22:38:57.0718 2672 NetDDE - ok
22:38:57.0718 2672 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
22:38:57.0718 2672 NetDDEdsdm - ok
22:38:57.0781 2672 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
22:38:57.0781 2672 Netlogon - ok
22:38:57.0828 2672 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
22:38:57.0843 2672 Netman - ok
22:38:57.0984 2672 NetSvc (9da26b773bd04b867a8e9f427cd048fc) C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
22:38:58.0078 2672 NetSvc - ok
22:38:58.0234 2672 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:38:58.0250 2672 NetTcpPortSharing - ok
22:38:58.0312 2672 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
22:38:58.0312 2672 Nla - ok
22:38:58.0453 2672 NMIndexingService (79370aef171dd4efdc0aba09fbda81cc) C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
22:38:58.0562 2672 NMIndexingService - ok
22:38:58.0703 2672 NPF (b9730495e0cf674680121e34bd95a73b) C:\WINDOWS\system32\drivers\NPF.sys
22:38:58.0843 2672 NPF - ok
22:38:58.0859 2672 npfmntor - ok
22:38:58.0921 2672 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
22:38:58.0921 2672 Npfs - ok
22:38:58.0953 2672 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
22:38:58.0984 2672 Ntfs - ok
22:38:59.0000 2672 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
22:38:59.0000 2672 NtLmSsp - ok
22:38:59.0062 2672 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
22:38:59.0078 2672 NtmsSvc - ok
22:38:59.0109 2672 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
22:38:59.0125 2672 Null - ok
22:38:59.0234 2672 nv (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
22:38:59.0328 2672 nv - ok
22:38:59.0390 2672 NVR0FLASHDev - ok
22:38:59.0421 2672 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
22:38:59.0421 2672 NwlnkFlt - ok
22:38:59.0437 2672 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
22:38:59.0437 2672 NwlnkFwd - ok
22:38:59.0515 2672 ose (7a56cf3e3f12e8af599963b16f50fb6a) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:38:59.0531 2672 ose - ok
22:38:59.0593 2672 ossrv - ok
22:38:59.0718 2672 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
22:38:59.0734 2672 Parport - ok
22:38:59.0859 2672 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
22:38:59.0859 2672 PartMgr - ok
22:38:59.0906 2672 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
22:38:59.0906 2672 ParVdm - ok
22:38:59.0937 2672 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
22:38:59.0953 2672 PCI - ok
22:38:59.0953 2672 PCIDump - ok
22:38:59.0984 2672 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
22:39:00.0000 2672 PCIIde - ok
22:39:00.0062 2672 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
22:39:00.0078 2672 Pcmcia - ok
22:39:00.0078 2672 PDCOMP - ok
22:39:00.0093 2672 PDFRAME - ok
22:39:00.0109 2672 PDRELI - ok
22:39:00.0125 2672 PDRFRAME - ok
22:39:00.0156 2672 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
22:39:00.0234 2672 perc2 - ok
22:39:00.0265 2672 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
22:39:00.0265 2672 perc2hib - ok
22:39:00.0328 2672 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
22:39:00.0343 2672 PlugPlay - ok
22:39:00.0406 2672 Pml Driver HPZ12 (2f4ca141a609caf5c98f6e4760ef1b9b) C:\WINDOWS\system32\HPZipm12.dll
22:39:00.0468 2672 Pml Driver HPZ12 - ok
22:39:00.0578 2672 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
22:39:00.0578 2672 PolicyAgent - ok
22:39:00.0812 2672 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
22:39:00.0843 2672 PptpMiniport - ok
22:39:00.0953 2672 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
22:39:00.0953 2672 ProtectedStorage - ok
22:39:01.0218 2672 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
22:39:01.0234 2672 PSched - ok
22:39:01.0406 2672 PSI (db2e4fc8afb22525d90818a30f53ec11) C:\WINDOWS\system32\DRIVERS\psi_mf.sys
22:39:01.0500 2672 PSI - ok
22:39:01.0593 2672 PSSdk23 - ok
22:39:01.0796 2672 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
22:39:01.0812 2672 Ptilink - ok
22:39:01.0890 2672 PxHelp20 (1962166e0ceb740704f30fa55ad3d509) C:\WINDOWS\system32\Drivers\PxHelp20.sys
22:39:01.0984 2672 PxHelp20 - ok
22:39:02.0078 2672 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
22:39:02.0093 2672 ql1080 - ok
22:39:02.0109 2672 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
22:39:02.0125 2672 Ql10wnt - ok
22:39:02.0156 2672 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
22:39:02.0156 2672 ql12160 - ok
22:39:02.0187 2672 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
22:39:02.0203 2672 ql1240 - ok
22:39:02.0218 2672 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
22:39:02.0234 2672 ql1280 - ok
22:39:02.0328 2672 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
22:39:02.0328 2672 RasAcd - ok
22:39:02.0390 2672 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
22:39:02.0390 2672 RasAuto - ok
22:39:02.0468 2672 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
22:39:02.0484 2672 Rasl2tp - ok
22:39:02.0531 2672 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
22:39:02.0546 2672 RasMan - ok
22:39:02.0609 2672 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
22:39:02.0609 2672 RasPppoe - ok
22:39:02.0671 2672 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
22:39:02.0671 2672 Raspti - ok
22:39:02.0734 2672 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
22:39:02.0750 2672 Rdbss - ok
22:39:02.0796 2672 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
22:39:02.0796 2672 RDPCDD - ok
22:39:02.0875 2672 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
22:39:02.0875 2672 rdpdr - ok
22:39:02.0937 2672 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
22:39:02.0953 2672 RDPWD - ok
22:39:03.0000 2672 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
22:39:03.0015 2672 RDSessMgr - ok
22:39:03.0046 2672 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
22:39:03.0046 2672 redbook - ok
22:39:03.0093 2672 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
22:39:03.0109 2672 RemoteAccess - ok
22:39:03.0156 2672 RemoteRegistry (5b19b557b0c188210a56a6b699d90b8f) C:\WINDOWS\system32\regsvc.dll
22:39:03.0156 2672 RemoteRegistry - ok
22:39:03.0171 2672 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe
22:39:03.0187 2672 RpcLocator - ok
22:39:03.0234 2672 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\System32\rpcss.dll
22:39:03.0250 2672 RpcSs - ok
22:39:03.0359 2672 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
22:39:03.0359 2672 RSVP - ok
22:39:03.0390 2672 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
22:39:03.0390 2672 SamSs - ok
22:39:03.0406 2672 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
22:39:03.0421 2672 SCardSvr - ok
22:39:03.0484 2672 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
22:39:03.0484 2672 Schedule - ok
22:39:03.0593 2672 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
22:39:03.0875 2672 Secdrv - ok
22:39:04.0203 2672 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
22:39:04.0265 2672 seclogon - ok
22:39:04.0453 2672 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
22:39:04.0453 2672 SENS - ok
22:39:04.0546 2672 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
22:39:04.0562 2672 serenum - ok
22:39:04.0625 2672 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
22:39:04.0640 2672 Serial - ok
22:39:04.0671 2672 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
22:39:04.0687 2672 Sfloppy - ok
22:39:04.0734 2672 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
22:39:04.0765 2672 SharedAccess - ok
22:39:04.0812 2672 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
22:39:04.0828 2672 ShellHWDetection - ok
22:39:04.0828 2672 Simbad - ok
22:39:04.0890 2672 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
22:39:04.0890 2672 sisagp - ok
22:39:04.0984 2672 SMTPSVC (db3c22745c0da4666f3be31f1af36b2f) C:\WINDOWS\system32\inetsrv\inetinfo.exe
22:39:04.0984 2672 SMTPSVC - ok
22:39:05.0046 2672 Soluto (ff35c2d01ac36b446a1b997f305f0fc2) C:\WINDOWS\system32\DRIVERS\Soluto.sys
22:39:05.0125 2672 Soluto - ok
22:39:05.0234 2672 SolutoService (3cf8b2b3cb3983db0eb990187d78a21b) C:\Program Files\Soluto\SolutoService.exe
22:39:05.0328 2672 SolutoService - ok
22:39:05.0390 2672 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
22:39:05.0406 2672 Sparrow - ok
22:39:05.0453 2672 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
22:39:05.0453 2672 splitter - ok
22:39:05.0500 2672 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
22:39:05.0593 2672 Spooler - ok
22:39:05.0703 2672 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
22:39:05.0703 2672 sr - ok
22:39:05.0750 2672 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll
22:39:05.0765 2672 srservice - ok
22:39:05.0843 2672 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
22:39:05.0921 2672 Srv - ok
22:39:06.0000 2672 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
22:39:06.0015 2672 SSDPSRV - ok
22:39:06.0109 2672 STHDA (2a2dc39623adef8ab3703ab9fac4b440) C:\WINDOWS\system32\drivers\sthda.sys
22:39:06.0203 2672 STHDA - ok
22:39:06.0265 2672 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
22:39:06.0296 2672 stisvc - ok
22:39:06.0328 2672 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
22:39:06.0328 2672 swenum - ok
22:39:06.0375 2672 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
22:39:06.0390 2672 swmidi - ok
22:39:06.0390 2672 SwPrv - ok
22:39:06.0421 2672 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
22:39:06.0500 2672 symc810 - ok
22:39:06.0531 2672 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
22:39:06.0609 2672 symc8xx - ok
22:39:06.0656 2672 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
22:39:06.0671 2672 sym_hi - ok
22:39:06.0687 2672 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
22:39:06.0765 2672 sym_u3 - ok
22:39:06.0812 2672 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
22:39:06.0828 2672 sysaudio - ok
22:39:06.0859 2672 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
22:39:06.0859 2672 SysmonLog - ok
22:39:06.0875 2672 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
22:39:06.0890 2672 TapiSrv - ok
22:39:06.0953 2672 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
22:39:06.0984 2672 Tcpip - ok
22:39:07.0109 2672 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
22:39:07.0109 2672 TDPIPE - ok
22:39:07.0171 2672 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
22:39:07.0171 2672 TDTCP - ok
22:39:07.0218 2672 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
22:39:07.0234 2672 TermDD - ok
22:39:07.0265 2672 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
22:39:07.0265 2672 TermService - ok
22:39:07.0359 2672 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
22:39:07.0359 2672 Themes - ok
22:39:07.0406 2672 TlntSvr (db7205804759ff62c34e3efd8a4cc76a) C:\WINDOWS\system32\tlntsvr.exe
22:39:07.0437 2672 TlntSvr - ok
22:39:07.0515 2672 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys
22:39:07.0515 2672 TosIde - ok
22:39:07.0531 2672 tphkdrv - ok
22:39:07.0593 2672 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
22:39:07.0593 2672 TrkWks - ok
22:39:07.0687 2672 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
22:39:07.0703 2672 Udfs - ok
22:39:07.0750 2672 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
22:39:07.0828 2672 ultra - ok
22:39:07.0890 2672 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
22:39:07.0906 2672 Update - ok
22:39:07.0968 2672 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
22:39:07.0984 2672 upnphost - ok
22:39:08.0078 2672 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
22:39:08.0093 2672 UPS - ok
22:39:08.0171 2672 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\WINDOWS\system32\Drivers\usbaapl.sys
22:39:08.0328 2672 USBAAPL - ok
22:39:08.0359 2672 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
22:39:08.0375 2672 usbccgp - ok
22:39:08.0406 2672 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
22:39:08.0406 2672 usbehci - ok
22:39:08.0453 2672 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
22:39:08.0453 2672 usbhub - ok
22:39:08.0515 2672 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
22:39:08.0531 2672 usbprint - ok
22:39:08.0578 2672 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
22:39:08.0593 2672 usbscan - ok
22:39:08.0640 2672 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
22:39:08.0656 2672 USBSTOR - ok
22:39:08.0703 2672 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
22:39:08.0703 2672 usbuhci - ok
22:39:08.0734 2672 usb_rndisx (b6cc50279d6cd28e090a5d33244adc9a) C:\WINDOWS\system32\DRIVERS\usb8023x.sys
22:39:08.0734 2672 usb_rndisx - ok
22:39:08.0765 2672 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
22:39:08.0781 2672 VgaSave - ok
22:39:08.0828 2672 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
22:39:08.0828 2672 viaagp - ok
22:39:08.0890 2672 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
22:39:08.0890 2672 ViaIde - ok
22:39:08.0968 2672 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
22:39:08.0968 2672 VolSnap - ok
22:39:09.0046 2672 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
22:39:09.0062 2672 VSS - ok
22:39:09.0187 2672 w32time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll
22:39:09.0203 2672 w32time - ok
22:39:09.0328 2672 W3SVC (db3c22745c0da4666f3be31f1af36b2f) C:\WINDOWS\system32\inetsrv\inetinfo.exe
22:39:09.0328 2672 W3SVC - ok
22:39:09.0531 2672 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
22:39:09.0625 2672 Wanarp - ok
22:39:09.0875 2672 wanatw - ok
22:39:09.0937 2672 wceusbsh (46a247f6617526afe38b6f12f5512120) C:\WINDOWS\system32\DRIVERS\wceusbsh.sys
22:39:10.0015 2672 wceusbsh - ok
22:39:10.0031 2672 WDICA - ok
22:39:10.0078 2672 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
22:39:10.0093 2672 wdmaud - ok
22:39:10.0140 2672 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
22:39:10.0156 2672 WebClient - ok
22:39:10.0234 2672 winachsf (f59ed5a43b988a18ef582bb07b2327a7) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
22:39:10.0281 2672 winachsf - ok
22:39:10.0343 2672 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
22:39:10.0359 2672 winmgmt - ok
22:39:10.0421 2672 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll
22:39:10.0421 2672 WmdmPmSN - ok
22:39:10.0484 2672 Wmi (e76f8807070ed04e7408a86d6d3a6137) C:\WINDOWS\System32\advapi32.dll
22:39:10.0515 2672 Wmi - ok
22:39:10.0562 2672 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe
22:39:10.0578 2672 WmiApSrv - ok
22:39:10.0781 2672 WMPNetworkSvc (f74e3d9a7fa9556c3bbb14d4e5e63d3b) C:\Program Files\Windows Media Player\WMPNetwk.exe
22:39:10.0890 2672 WMPNetworkSvc - ok
22:39:11.0046 2672 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
22:39:11.0046 2672 WpdUsb - ok
22:39:11.0359 2672 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
22:39:11.0484 2672 WPFFontCache_v0400 - ok
22:39:11.0531 2672 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
22:39:11.0546 2672 WS2IFSL - ok
22:39:11.0593 2672 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
22:39:11.0593 2672 WudfPf - ok
22:39:11.0656 2672 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
22:39:11.0656 2672 WudfRd - ok
22:39:11.0703 2672 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
22:39:11.0703 2672 WudfSvc - ok
22:39:11.0859 2672 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
22:39:11.0875 2672 WZCSVC - ok
22:39:11.0921 2672 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
22:39:11.0937 2672 xmlprov - ok
22:39:12.0046 2672 Xyz777b - ok
22:39:12.0109 2672 MBR (0x1B8) (5cb90281d1a59b251f6603134774eec3) \Device\Harddisk0\DR0
22:39:12.0171 2672 \Device\Harddisk0\DR0 - ok
22:39:12.0187 2672 MBR (0x1B8) (8ff255184f078c9c04e6a2ce66117c5c) \Device\Harddisk5\DR8
22:39:12.0187 2672 \Device\Harddisk5\DR8 - ok
22:39:12.0234 2672 Boot (0x1200) (6cd33e0a392fea1c99f403dd091e866d) \Device\Harddisk0\DR0\Partition0
22:39:12.0234 2672 \Device\Harddisk0\DR0\Partition0 - ok
22:39:12.0234 2672 Boot (0x1200) (0e4de94ccc8b5b5b575502f180b50646) \Device\Harddisk5\DR8\Partition0
22:39:12.0234 2672 \Device\Harddisk5\DR8\Partition0 - ok
22:39:12.0234 2672 ============================================================
22:39:12.0234 2672 Scan finished
22:39:12.0234 2672 ============================================================
22:39:12.0250 0448 Detected object count: 0
22:39:12.0250 0448 Actual detected object count: 0

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:32 PM

Posted 08 April 2012 - 09:49 PM

Run aswmbr again and post the new log

good luck

#7 Verve

Verve
  • Topic Starter

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Local time:06:32 PM

Posted 09 April 2012 - 06:31 PM

Here are the results of aswMBR.

The program seems to get hung up before it gives a successful scan message. Or should it run longer than 90 minutes?


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-04-09 17:51:56
-----------------------------
17:51:56.671 OS Version: Windows 5.1.2600 Service Pack 3
17:51:56.671 Number of processors: 2 586 0x407
17:51:56.671 ComputerName: MV UserName:
17:51:58.125 Initialize success
17:55:06.375 AVAST engine defs: 12040901
18:15:23.921 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-17
18:15:23.921 Disk 0 Vendor: WDC_WD1600JS-75NCB2 10.02E03 Size: 152587MB BusType: 3
18:15:23.953 Disk 0 MBR read successfully
18:15:23.953 Disk 0 MBR scan
18:15:24.000 Disk 0 unknown MBR code
18:15:24.015 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 47 MB offset 63
18:15:24.031 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 147683 MB offset 96390
18:15:24.062 Disk 0 Partition 3 00 DB CP/M / CTOS Dell 8.0 4855 MB offset 302552145
18:15:24.078 Disk 0 scanning sectors +312496380
18:15:24.156 Disk 0 scanning C:\WINDOWS\system32\drivers
18:15:48.593 Service scanning
18:16:19.468 Modules scanning
18:16:28.125 Module: C:\WINDOWS\System32\DLA\DLADResN.SYS **SUSPICIOUS**
18:16:29.203 Disk 0 trace - called modules:
18:16:29.234 ntkrnlpa.exe CLASSPNP.SYS disk.sys atapi.sys hal.dll pciide.sys PCIIDEX.SYS
18:16:29.250 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8aa92ab8]
18:16:29.250 3 CLASSPNP.SYS[ba0e8fd7] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP1T0L0-17[0x8aa57d98]
18:16:29.906 AVAST engine scan C:\WINDOWS
18:17:09.296 AVAST engine scan C:\WINDOWS\system32
18:24:38.078 AVAST engine scan C:\WINDOWS\system32\drivers
18:25:11.125 AVAST engine scan C:\Documents and Settings\MVaughan
19:28:10.937 Disk 0 MBR has been saved successfully to "C:\adu\computer_help_downloads\MBR.dat"
19:28:10.937 The log file has been saved successfully to "C:\adu\computer_help_downloads\aswMBR3.txt"

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:32 PM

Posted 11 April 2012 - 04:07 AM

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Are you still facing issues?



Click Go and post the result.

#9 Verve

Verve
  • Topic Starter

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Local time:06:32 PM

Posted 13 April 2012 - 12:23 AM

Here is the log from ESET scanner. I did not delete the quarantined files. Should I delete them? Below this listing is the log from the MiniToolBox scan. Everything seems to be running okay and my initial problem with the Google search is okay.

C:\Documents and Settings\MVaughan\Application Data\Mozilla\Firefox\Profiles\rhweggsn.default\extensions\{e7a1ac81-7d05-4728-af3f-b2a067e1d071}\chrome.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Documents and Settings\MVaughan\Local Settings\Application Data\Google\Chrome\User Data\Default\Default\jehlgoidhmnicikeaaofiblmloilpilg\contentscript.js Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\My Download Files\Miro_Installer.exe Win32/Toolbar.Zugo application deleted - quarantined
C:\Program Files\Search Toolbar\SearchToolbar.dll Win32/Toolbar.Zugo application cleaned by deleting - quarantined
C:\System Volume Information\_restore{129201FA-B0AC-49B3-96B2-DEB8B91E727B}\RP593\A0192177.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\System Volume Information\_restore{129201FA-B0AC-49B3-96B2-DEB8B91E727B}\RP593\A0192178.exe Win32/Toolbar.Zugo application deleted - quarantined
C:\System Volume Information\_restore{129201FA-B0AC-49B3-96B2-DEB8B91E727B}\RP593\A0192179.dll Win32/Toolbar.Zugo application cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\08.04.2012_22.30.11\rtkt0000\zafs0000\tsk0018.dta a variant of Win32/Rootkit.Agent.NVN trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\08.04.2012_22.30.11\rtkt0000\zafs0000\tsk0019.dta a variant of Win32/Sirefef.EN trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\08.04.2012_22.30.11\rtkt0000\zafs0000\tsk0020.dta a variant of Win32/Sirefef.CP trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\08.04.2012_22.30.11\rtkt0000\zafs0000\tsk0021.dta a variant of Win32/Sirefef.CP trojan cleaned by deleting - quarantined
J:\document and settings\Mozilla\Firefox\Profiles\rhweggsn.default\extensions\{e7a1ac81-7d05-4728-af3f-b2a067e1d071}\chrome.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined



MiniToolBox by Farbar Version: 18-01-2012
Ran by MVaughan (administrator) on 13-04-2012 at 01:07:06
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================

Intel® PRO/100 VE Network Connection = Local Area Connection (Connected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : MV

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Hybrid

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No

DNS Suffix Search List. . . . . . : hsd1.fl.comcast.net.



Ethernet adapter Local Area Connection:



Connection-specific DNS Suffix . : hsd1.fl.comcast.net.

Description . . . . . . . . . . . : Intel® PRO/100 VE Network Connection

Physical Address. . . . . . . . . : 00-13-72-CA-BE-6A

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 192.168.1.103

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.1.1

DHCP Server . . . . . . . . . . . : 192.168.1.1

DNS Servers . . . . . . . . . . . : 75.75.75.75

75.75.76.76

Lease Obtained. . . . . . . . . . : Thursday, April 12, 2012 11:31:31 PM

Lease Expires . . . . . . . . . . : Friday, April 13, 2012 11:31:31 PM

Server: cdns01.comcast.net
Address: 75.75.75.75

Name: google.com
Addresses: 74.125.45.138, 74.125.45.102, 74.125.45.113, 74.125.45.139
74.125.45.100, 74.125.45.101



Pinging google.com [74.125.159.100] with 32 bytes of data:



Reply from 74.125.159.100: bytes=32 time=33ms TTL=47

Reply from 74.125.159.100: bytes=32 time=33ms TTL=47



Ping statistics for 74.125.159.100:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 33ms, Maximum = 33ms, Average = 33ms

Server: cdns01.comcast.net
Address: 75.75.75.75

Name: yahoo.com
Addresses: 209.191.122.70, 72.30.38.140, 98.139.183.24



Pinging yahoo.com [209.191.122.70] with 32 bytes of data:



Reply from 209.191.122.70: bytes=32 time=34ms TTL=47

Reply from 209.191.122.70: bytes=32 time=32ms TTL=47



Ping statistics for 209.191.122.70:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 32ms, Maximum = 34ms, Average = 33ms

Server: cdns01.comcast.net
Address: 75.75.75.75

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:



Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x10003 ...00 13 72 ca be 6a ...... Intel® PRO/100 VE Network Connection - McAfee Core NDIS Intermediate Filter Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.103 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
192.168.1.0 255.255.255.0 192.168.1.103 192.168.1.103 20
192.168.1.103 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.1.255 255.255.255.255 192.168.1.103 192.168.1.103 20
224.0.0.0 240.0.0.0 192.168.1.103 192.168.1.103 20
255.255.255.255 255.255.255.255 192.168.1.103 192.168.1.103 1
Default Gateway: 192.168.1.1
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 mswsock.dll [File Not found] ()
Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
Catalog9 11 mswsock.dll [File Not found] ()
Catalog9 12 mswsock.dll [File Not found] ()
Catalog9 13 mswsock.dll [File Not found] ()
Catalog9 14 mswsock.dll [File Not found] ()
Catalog9 15 mswsock.dll [File Not found] ()
Catalog9 16 mswsock.dll [File Not found] ()
Catalog9 17 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (04/09/2012 08:01:41 PM) (Source: MsiInstaller) (User: MVaughan)MVaughan
Description: Product: TurboTax 2011 WinPerReleaseEngine -- Error 1704. An installation for Soluto is currently suspended. You must undo the changes made by that installation to continue. Do you want to undo those changes?

Error: (04/08/2012 08:20:08 PM) (Source: McLogEvent) (User: SYSTEM)SYSTEM
Description: Exception in McShield.Exe!

Exception details follow :

VSCORE.14.4.0.380
Exception Code : 0XC0000005
Exception Address : 0X1471ACEF
Exception Parameters : 2
Param 1 = 00000000
Param 2 = 0X0000987C

More information :

Error: (04/07/2012 05:13:50 PM) (Source: McLogEvent) (User: SYSTEM)SYSTEM
Description: Exception in McShield.Exe!

Exception details follow :

VSCORE.14.4.0.380
Exception Code : 0XC0000005
Exception Address : 0X147298A2
Exception Parameters : 2
Param 1 = 00000000
Param 2 = 0X00013410

More information :

Error: (04/07/2012 05:10:28 PM) (Source: McLogEvent) (User: SYSTEM)SYSTEM
Description: A thread in process C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe took longer than 90000 ms to complete a request.

The process will be terminated.
Thread id : 2272 (0x8e0)

Thread address : 0x7C90E514

Thread message :

Build VSCORE.14.4.0.380 / 5400.1158
Object being scanned = \Device\HarddiskVolume2\WINDOWS\system32\tng-doba.dll
by C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
4(0)(0)
4(0)(0)
7200(0)(0)
7595(0)(0)
7005(0)(0)
7004(0)(0)
5006(0)(0)
5004(0)(0)

Error: (04/07/2012 08:42:09 AM) (Source: McLogEvent) (User: SYSTEM)SYSTEM
Description: Exception in McShield.Exe!

Exception details follow :

VSCORE.14.4.0.380
Exception Code : 0XC0000005
Exception Address : 0X1471ACEF
Exception Parameters : 2
Param 1 = 00000000
Param 2 = 0X0000987C

More information :

Error: (04/07/2012 07:51:37 AM) (Source: McLogEvent) (User: SYSTEM)SYSTEM
Description: Exception in McShield.Exe!

Exception details follow :

VSCORE.14.4.0.380
Exception Code : 0XC0000005
Exception Address : 0X147298A2
Exception Parameters : 2
Param 1 = 00000000
Param 2 = 0X00013410

More information :

Error: (04/06/2012 08:15:08 PM) (Source: McLogEvent) (User: SYSTEM)SYSTEM
Description: Exception in McShield.Exe!

Exception details follow :

VSCORE.14.4.0.380
Exception Code : 0XC0000005
Exception Address : 0X147298A2
Exception Parameters : 2
Param 1 = 00000000
Param 2 = 0X00013410

More information :

Error: (04/05/2012 06:57:51 AM) (Source: McLogEvent) (User: SYSTEM)SYSTEM
Description: A thread in process C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe took longer than 90000 ms to complete a request.

The process will be terminated.
Thread id : 3512 (0xdb8)

Thread address : 0x7C90E514

Thread message :

Build VSCORE.14.4.0.380 / 5400.1158
Object being scanned = \Device\HarddiskVolume2\WINDOWS\system32\ntsyslog.dll
by C:\WINDOWS\System32\svchost.exe
4(0)(0)
4(0)(0)
7200(0)(0)
7595(0)(0)
7005(0)(0)
7004(0)(0)
5006(0)(0)
5004(0)(0)

Error: (04/05/2012 00:06:57 AM) (Source: McLogEvent) (User: SYSTEM)SYSTEM
Description: A thread in process C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe took longer than 90000 ms to complete a request.

The process will be terminated.
Thread id : 3968 (0xf80)

Thread address : 0x7C90E514

Thread message :

Build VSCORE.14.4.0.380 / 5400.1158
Object being scanned = \Device\HarddiskVolume2\WINDOWS\system32\DELL_A02.dll
by C:\WINDOWS\System32\svchost.exe
4(0)(0)
4(0)(0)
7200(0)(0)
7595(0)(0)
7005(0)(0)
7004(0)(0)
5006(0)(0)
5004(0)(0)

Error: (04/02/2012 01:31:32 PM) (Source: crypt32) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This operation returned because the timeout period expired.


System errors:
=============
Error: (04/09/2012 06:33:01 PM) (Source: Service Control Manager) (User: )
Description: The Soluto PCGenome Core Service service terminated unexpectedly. It has done this 1 time(s).

Error: (04/06/2012 08:04:04 PM) (Source: Service Control Manager) (User: )
Description: The Network Location Awareness (NLA) service terminated with the following error:
%%127

Error: (04/06/2012 08:04:02 PM) (Source: Service Control Manager) (User: )
Description: The Network Location Awareness (NLA) service terminated with the following error:
%%127

Error: (04/06/2012 08:04:02 PM) (Source: Service Control Manager) (User: )
Description: The Network Location Awareness (NLA) service terminated with the following error:
%%127

Error: (04/06/2012 08:04:02 PM) (Source: Service Control Manager) (User: )
Description: The Network Location Awareness (NLA) service terminated with the following error:
%%127

Error: (04/06/2012 08:04:02 PM) (Source: Service Control Manager) (User: )
Description: The Network Location Awareness (NLA) service terminated with the following error:
%%127

Error: (04/06/2012 08:04:02 PM) (Source: Service Control Manager) (User: )
Description: The Network Location Awareness (NLA) service terminated with the following error:
%%127

Error: (04/06/2012 08:04:02 PM) (Source: Service Control Manager) (User: )
Description: The Network Location Awareness (NLA) service terminated with the following error:
%%127

Error: (04/06/2012 08:04:02 PM) (Source: Service Control Manager) (User: )
Description: The Network Location Awareness (NLA) service terminated with the following error:
%%127

Error: (04/06/2012 08:04:02 PM) (Source: Service Control Manager) (User: )
Description: The World Wide Web Publishing service terminated with the following error:
%%9851


Microsoft Office Sessions:
=========================
Error: (04/09/2012 08:01:41 PM) (Source: MsiInstaller)(User: MVaughan)MVaughan
Description: Product: TurboTax 2011 WinPerReleaseEngine -- Error 1704. An installation for Soluto is currently suspended. You must undo the changes made by that installation to continue. Do you want to undo those changes?(NULL)(NULL)(NULL)

Error: (04/08/2012 08:20:08 PM) (Source: McLogEvent)(User: SYSTEM)SYSTEM
Description: VSCORE.14.4.0.380
Exception Code : 0XC0000005
Exception Address : 0X1471ACEF
Exception Parameters : 2
Param 1 = 00000000
Param 2 = 0X0000987C

More information :

Error: (04/07/2012 05:13:50 PM) (Source: McLogEvent)(User: SYSTEM)SYSTEM
Description: VSCORE.14.4.0.380
Exception Code : 0XC0000005
Exception Address : 0X147298A2
Exception Parameters : 2
Param 1 = 00000000
Param 2 = 0X00013410

More information :

Error: (04/07/2012 05:10:28 PM) (Source: McLogEvent)(User: SYSTEM)SYSTEM
Description: C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe900002272 (0x8e0)0x7C90E514
Build VSCORE.14.4.0.380 / 5400.1158
Object being scanned = \Device\HarddiskVolume2\WINDOWS\system32\tng-doba.dll
by C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
4(0)(0)
4(0)(0)
7200(0)(0)
7595(0)(0)
7005(0)(0)
7004(0)(0)
5006(0)(0)
5004(0)(0)

Error: (04/07/2012 08:42:09 AM) (Source: McLogEvent)(User: SYSTEM)SYSTEM
Description: VSCORE.14.4.0.380
Exception Code : 0XC0000005
Exception Address : 0X1471ACEF
Exception Parameters : 2
Param 1 = 00000000
Param 2 = 0X0000987C

More information :

Error: (04/07/2012 07:51:37 AM) (Source: McLogEvent)(User: SYSTEM)SYSTEM
Description: VSCORE.14.4.0.380
Exception Code : 0XC0000005
Exception Address : 0X147298A2
Exception Parameters : 2
Param 1 = 00000000
Param 2 = 0X00013410

More information :

Error: (04/06/2012 08:15:08 PM) (Source: McLogEvent)(User: SYSTEM)SYSTEM
Description: VSCORE.14.4.0.380
Exception Code : 0XC0000005
Exception Address : 0X147298A2
Exception Parameters : 2
Param 1 = 00000000
Param 2 = 0X00013410

More information :

Error: (04/05/2012 06:57:51 AM) (Source: McLogEvent)(User: SYSTEM)SYSTEM
Description: C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe900003512 (0xdb8)0x7C90E514
Build VSCORE.14.4.0.380 / 5400.1158
Object being scanned = \Device\HarddiskVolume2\WINDOWS\system32\ntsyslog.dll
by C:\WINDOWS\System32\svchost.exe
4(0)(0)
4(0)(0)
7200(0)(0)
7595(0)(0)
7005(0)(0)
7004(0)(0)
5006(0)(0)
5004(0)(0)

Error: (04/05/2012 00:06:57 AM) (Source: McLogEvent)(User: SYSTEM)SYSTEM
Description: C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe900003968 (0xf80)0x7C90E514
Build VSCORE.14.4.0.380 / 5400.1158
Object being scanned = \Device\HarddiskVolume2\WINDOWS\system32\DELL_A02.dll
by C:\WINDOWS\System32\svchost.exe
4(0)(0)
4(0)(0)
7200(0)(0)
7595(0)(0)
7005(0)(0)
7004(0)(0)
5006(0)(0)
5004(0)(0)

Error: (04/02/2012 01:31:32 PM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txtThis operation returned because the timeout period expired.


=========================== Installed Programs ============================

100% Free Spades 7.18 (Version: 7.18)
32 Bit HP CIO Components Installer (Version: 2.1.4)
Acrobat.com (Version: 1.6.65)
Ad-Aware
Ad-Aware (Version: 8.0.0)
Adobe AIR (Version: 1.5.0.7220)
Adobe Flash Player 11 ActiveX (Version: 11.2.202.228)
Adobe Flash Player 11 Plugin (Version: 11.1.102.62)
Adobe Reader 9.1 (Version: 9.1.0)
AnswerWorks 4.0 Runtime - English (Version: 4.0.101)
AnswerWorks 5.0 English Runtime (Version: 008.000.0003)
AOL Uninstaller (Choose which Products to Remove)
AOLIcon (Version: 1.00.0000)
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
ATI Control Panel (Version: 6.14.10.5160)
ATI Display Driver (Version: 8.162-050803a2-025672C-Dell)
Audacity 1.2.6
AVI Joiner
BirthWrite
Bonjour (Version: 3.0.0.10)
Caere Scan Manager 5.0 (Version: 5.0)
calibre (Version: 0.8.38)
Comcast High-Speed Internet Install Wizard
Compatibility Pack for the 2007 Office system (Version: 12.0.6021.5000)
Conexant D850 56K V.9x DFVc Modem
CopyTrans Suite Remove Only (Version: 2.23)
Corel Photo Album 6 (Version: 6.33)
Critical Update for Windows Media Player 11 (KB959772)
CutePDF Writer 2.8
Dell CinePlayer (Version: 3.0)
Dell Digital Jukebox Driver
Dell Driver Reset Tool (Version: 1.02.0000)
Dell Game Console
Dell Support 3.1 (Version: 5.1.760)
Digital Content Portal (Version: 1.00.0000)
Digital Line Detect (Version: 1.10)
Documentation & Support Launcher (Version: 1.00.0000)
Easy Video Capture 1.30
ELIcon (Version: 1.00.0000)
ESET Online Scanner v3
ESPNMotion (Version: 2.1.6.0011)
FLV Player 1.3.3
FormatFactory 2.90 (Version: 2.90)
Games, Music, & Photos Launcher (Version: 1.00.0000)
Garmin Communicator Plugin (Version: 2.6.1)
Google Chrome (Version: 18.0.1025.152)
Google Earth (Version: 4.1.7087.5048)
Google Update Helper (Version: 1.3.21.111)
HHD Software Hex Editor Neo 4.64 (Version: 4.64.1.2023)
High Definition Audio Driver Package - KB835221 (Version: 20040219.000000)
HP Smart Web Printing (Version: 112.200.19110)
HP Update (Version: 4.000.009.002)
Intel® Graphics Media Accelerator Driver (Version: 6.14.10.4410)
Intel® PRO Network Connections Drivers
Intel® PROSet for Wired Connections (Version: 9.20.0000)
Internet Service Offers Launcher (Version: 1.00.0000)
iTunes (Version: 10.6.0.40)
Java Auto Updater (Version: 2.0.2.4)
Java™ 6 Update 23 (Version: 6.0.230)
JGsoft EditPad Lite 6.2.1 (Version: 6.2.1)
KONICA MINOLTA magicolor 2430DL
Malwarebytes Anti-Malware version 1.60.1.1000 (Version: 1.60.1.1000)
McAfee Internet Security (Version: 11.0.623)
McAfee Online Backup
McAfee Online Backup (Version: 1.16.4.0)
McAfee Uninstaller
MCU (Version: 1.00.0000)
Microsoft .NET Compact Framework 3.5 (Version: 3.5.7283)
Microsoft .NET Framework 1.0 Hotfix (KB953295)
Microsoft .NET Framework 1.0 Hotfix (KB979904)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2416447)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft ActiveSync (Version: 4.5.5096.0)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Digital Image Library 9 - Blocker (Version: 9.00.0000)
Microsoft Digital Image Standard 2006 (Version: 11.0.0422)
Microsoft Digital Image Standard 2006 Editor (Version: 11.0.0422)
Microsoft Digital Image Standard 2006 Library (Version: 11.0.0422)
Microsoft Encarta Encyclopedia Standard 2006 (Version: 2006)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Money 2006 (Version: 15)
Microsoft National Language Support Downlevel APIs
Microsoft Office Word Viewer 2003 (Version: 11.0.8173.0)
Microsoft Office XP Professional with FrontPage (Version: 10.0.2627.01)
Microsoft Outlook 2002 (Version: 10.0.2627.01)
Microsoft Plus! Digital Media Edition Installer (Version: 1.1.0.3514)
Microsoft Plus! Photo Story 2 LE (Version: 1.1.0.3463)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Word 2002 (Version: 10.0.2627.01)
Microsoft Works (Version: 08.05.0818)
Microsoft Works Suite 2006 Setup Launcher
Microsoft Works Suite Add-in for Microsoft Word (Version: 8.0.0.0000)
Miro (Version: 3.5)
MobileMe Control Panel (Version: 3.1.8.0)
Modem Helper (Version: 2.40)
Mozilla Firefox (3.6.4) (Version: 3.6.4 (en-US))
Mozilla Firefox 11.0 (x86 en-US) (Version: 11.0)
Mozilla Thunderbird 11.0.1 (x86 en-US) (Version: 11.0.1)
MSN
MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Musicmatch for Windows Media Player (Version: 0.00.000)
MyPublisher
Nero 8 Essentials (Version: 8.3.428)
neroxml (Version: 1.0.0)
NetWaiting (Version: 2.5.12)
oggcodecs 0.71.0946 (Version: 0.71.0946)
OLYMPUS CAMEDIA Master 4.0
OmniPage Pro 10.0 (Version: 10.0.0.0)
QuickTime (Version: 7.71.80.42)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealPlayer
RealUpgrade 1.1 (Version: 1.1.0)
Roxio DLA (Version: 5.2.0)
Roxio MyDVD LE (Version: 6.1.6)
Roxio RecordNow Audio (Version: 2.0.4)
Roxio RecordNow Copy (Version: 2.0.4)
Roxio RecordNow Data (Version: 2.0.4)
Safari (Version: 5.34.54.16)
Savings Bond Wizard
ScanWizard 5
SCRABBLE (Version: 09/20/2005 12:02 AM)
Search Assist (Version: 1.00.0000)
Secunia PSI
Serif PagePlus Starter Edition (Version: 2.0.2.009)
Sonic Activation Module (Version: 1.0)
Sonic Encoders (Version: 1.00)
Sonic Update Manager (Version: 3.0.0)
TBS WMP Plug-in (Version: 1.00.676)
The Handmark Scrabble Game
Total Commander (Remove or Repair) (Version: 7.57a)
Total Video Converter 3.10
TurboTax 2011
TurboTax 2011 waliper (Version: 011.000.1508)
TurboTax 2011 WinPerFedFormset (Version: 011.000.2999)
TurboTax 2011 WinPerReleaseEngine (Version: 011.000.0474)
TurboTax 2011 WinPerTaxSupport (Version: 011.000.0214)
TurboTax 2011 wrapper (Version: 011.000.0121)
Ulead GIF Animator 5 ESD
Ulead PhotoImpact 10 ESD (Version: 10.0)
Ulead PhotoImpact 6
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Windows Internet Explorer 7 (KB976749) (Version: 1)
Update for Windows Internet Explorer 7 (KB980182) (Version: 1)
Update for Windows Internet Explorer 8 (KB2447568) (Version: 1)
Update for Windows Internet Explorer 8 (KB976662) (Version: 1)
Update for Windows Media Player 10 (KB910393)
Update for Windows Media Player 10 (KB913800)
Update for Windows XP (KB2141007) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB951072-v2) (Version: 2)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB955839) (Version: 1)
Update for Windows XP (KB960763) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
Update Rollup 2 for Windows XP Media Center Edition 2005
URL Assistant
VCRedistSetup (Version: 1.0.0)
VersaCheck Silver 2007 (Version: 9.0.17.1)
Viewpoint Media Player
Virtual Earth 3D (Beta) (Version: 1.1.703.22001)
Visual C++ 2008 x86 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
VLC media player 1.0.5 (Version: 1.0.5)
vShare.tv plugin 1.3 (Version: 1.3)
WebFldrs XP (Version: 9.50.7523)
WexTech AnswerWorks (Version: 1.00.000)
WIDCOMM Bluetooth Software (Version: 4.0.1.2400)
WildTangent Web Driver
Windows Genuine Advantage Notifications (KB905474) (Version: 1.5.0540.0)
Windows Imaging Component (Version: 3.0.0.0)
Windows Installer 3.1 (KB893803)
Windows Internet Explorer 7 (Version: 20061107.210142)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Media Format 11 runtime
Windows Media Player 10 (Version: 9.00.3636)
Windows Media Player 10 Hotfix - KB895316
Windows Media Player 10 Hotfix [See EmeraldQFE2 for more information]
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
Windows PowerShell™ 1.0 (Version: 2)
Windows XP Media Center Edition 2005 KB2502898
Windows XP Media Center Edition 2005 KB908246
Windows XP Media Center Edition 2005 KB925766
Windows XP Media Center Edition 2005 KB973768
Windows XP Service Pack 3 (Version: 20080414.031525)
WinRAR archiver
Works Upgrade (Version: 8.0.0.0000)
XAMPP 1.7.0
Yahoo! Music Jukebox (Version: 2.2.2.058)

========================= Memory info: ===================================

Percentage of memory in use: 41%
Total physical RAM: 2046.07 MB
Available physical RAM: 1202.81 MB
Total Pagefile: 3448.4 MB
Available Pagefile: 2057.86 MB
Total Virtual: 2047.88 MB
Available Virtual: 1970.94 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:144.22 GB) (Free:29.1 GB) NTFS
8 Drive j: (My Book) (Fixed) (Total:298.02 GB) (Free:197.4 GB) FAT32

========================= Users: ========================================

User accounts for \\MV

Administrator ASPNET Guest
HelpAssistant IUSR_MV IWAM_MV
MVaughan SUPPORT_388945a0


**** End of log ****

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:32 PM

Posted 13 April 2012 - 01:37 AM

That looks good

Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://support.microsoft.com/kb/310405

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp


Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#11 Verve

Verve
  • Topic Starter

  • Members
  • 49 posts
  • OFFLINE
  •  
  • Local time:06:32 PM

Posted 13 April 2012 - 04:27 PM

Will run the programs and update java. I will try to be more vigilant about the links I click. Thanks for all your help.

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:32 PM

Posted 13 April 2012 - 06:41 PM

You're welcome :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users