Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Rogers Online Protection Viruses


  • Please log in to reply
9 replies to this topic

#1 EQUANOX

EQUANOX

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:07:24 AM

Posted 24 July 2012 - 08:51 PM

Hi, I have 5 viruses on my laptop computer detected from Rogers Online Protection (ROP). I use Rogers as my internet provider and Rogers offer Rogers Online Protection for free. ROP found 5 viruses on my Inspiron 6400 windows XP computer:
1. Trojan.Generic.KDV.668683
2. Gen:Variant.Graftor.36912
3. Trojan.JS.Iframe.BQF
4. Trojan.JS.Iframe.BQF
5. Trojan.JS.Iframe.BQF.
I would like to now how to delete theese viruses from the computer. Thank you.

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,569 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:24 AM

Posted 24 July 2012 - 08:59 PM

Hello and welcme. I moved you to the Am I Infected forum.

Please run these next...

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.





Run RKill....


Download and Run RKill
  • Please download RKill by Grinler from one of the 4 links below and save it to your desktop.

    Link 1
    Link 2
    Link 3
    Link 4

  • Before we begin, you should disable your anti-malware softwares you have installed so they do not interfere RKill running as some anti-malware softwares detect RKill as malicious. Please refer to this page if you are not sure how.
  • Double-click on Rkill on your desktop to run it. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • If nothing happens or if the tool does not run, please let me know in your next reply

Do not reboot your computer after running rkill as the malware programs will start again. Or if rebooting is required run it again.


If you continue having problems running rkill.com, you can download iExplore.exe or eXplorer.exe, which are renamed copies of rkill.com, and try them instead.



Next run Superantisypware (SAS):

Download and scan with SUPERAntiSpyware Free for Home Users
  • Double-click SUPERAntiSpyware.exe and use the default settings for installation.
  • An icon will be created on your desktop. Double-click that icon to launch the program.
  • If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download them from here. Double-click on the hyperlink for Download Installer and save SASDEFINITIONS.EXE to your desktop. Then double-click on SASDEFINITIONS.EXE to install the definitions.)
  • In the Main Menu, click the Preferences... button.
  • Click the Scanning Control tab.
  • Under Scanner Options make sure the following are checked (leave all others unchecked):
    • Close browsers before scanning.
    • Scan for tracking cookies.
    • Terminate memory threats before quarantining.
  • Click the "Close" button to leave the control center screen.
  • Back on the main screen, under "Scan for Harmful Software" click Scan your computer.
  • On the left, make sure you check C:\Fixed Drive.
  • On the right, under "Complete Scan", choose Perform Complete Scan.
  • Click "Next" to start the scan. Please be patient while it scans your computer.
  • After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "OK".
  • Make sure everything has a checkmark next to it and click "Next".
  • A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
  • If asked if you want to reboot, click "Yes".
  • To retrieve the removal information after reboot, launch SUPERAntispyware again.
    • Click Preferences, then click the Statistics/Logs tab.
    • Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.
    • If there are several logs, click the current dated log and press View log. A text file will open in your default text editor.
    • Please copy and paste the Scan Log results in your next reply.
  • Click Close to exit the program.
If you have a problem downloading, installing or getting SAS to run, try downloading and using the SUPERAntiSpyware Portable Scanner instead. Save the randomly named file (i.e. SAS_1710895.COM) to a usb drive or CD and transfer to the infected computer. Then double-click on it to launch and scan. The file is randomly named to help keep malware from blocking the scanner.


Now reboot to Normal and run MBAM (MalwareBytes):

Please download Malwarebytes Anti-Malware Posted Image and save it to your desktop.
  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.
Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you cannot update Malwarebytes or use the Internet to download any files to the infected computer, manually update the database by following the instructions in FAQ Section A: 4. Issues.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.
Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.

-- Some types of malware will target Malwarebytes and other security tools to keep them from running properly. If that's the case, go to Start > All Programs > Malwarebytes Anti-Malware folder > Tools > click on Malwarebytes Chameleon and follow the onscreen instructions. The Chameleon folder can be accessed by opening the program folder for Malwarebytes Anti-Malware (normally C:\Program Files\Malwarebytes' Anti-Malware or C:\Program Files (x86)\Malwarebytes' Anti-Malware).

Please ask any needed questions,post logs and Let us know how the PC is running now.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 EQUANOX

EQUANOX
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:07:24 AM

Posted 29 July 2012 - 09:42 PM

Hi boopme,

Below I have the results for MiniToolBox, rkill and Malwarebytes. When SuperAntispyware completed it's scan there were 12 problems. I accidentaly clicked on clean files and it cleaned all 12 problems and then I rebooted.

MiniToolBox by Farbar Version: 23-07-2012
Ran by Sean (administrator) on 29-07-2012 at 20:17:09
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Could not flush the DNS Resolver Cache: Function failed during execution.




========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================


127.0.0.1 localhost

========================= IP Configuration: ================================

Broadcom 440x 10/100 Integrated Controller = Local Area Connection (Connected)
1394 Net Adapter = 1394 Connection (Connected)
Intel® PRO/Wireless 3945ABG Network Connection = Wireless Network Connection (Media disconnected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp

# Interface IP Configuration for "Wireless Network Connection"

set address name="Wireless Network Connection" source=dhcp
set dns name="Wireless Network Connection" source=dhcp register=PRIMARY
set wins name="Wireless Network Connection" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : DELL2

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Hybrid

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No



Ethernet adapter Local Area Connection:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Broadcom 440x 10/100 Integrated Controller

Physical Address. . . . . . . . . : 00-15-C5-03-73-C0

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 192.168.1.105

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.1.1

DHCP Server . . . . . . . . . . . : 192.168.1.1

DNS Servers . . . . . . . . . . . : 64.71.255.198

64.71.255.198

Lease Obtained. . . . . . . . . . : Sunday, July 29, 2012 1:31:10 PM

Lease Expires . . . . . . . . . . : Monday, July 30, 2012 1:31:10 PM



Ethernet adapter Wireless Network Connection:



Media State . . . . . . . . . . . : Media disconnected

Description . . . . . . . . . . . : Intel® PRO/Wireless 3945ABG Network Connection

Physical Address. . . . . . . . . : 00-13-02-10-50-7D

Server: dns.rnc.net.cable.rogers.com
Address: 64.71.255.198

Name: google.com
Addresses: 74.125.226.70, 74.125.226.66, 74.125.226.64, 74.125.226.72
74.125.226.73, 74.125.226.67, 74.125.226.68, 74.125.226.71, 74.125.226.65
74.125.226.69, 74.125.226.78



Pinging google.com [74.125.226.68] with 32 bytes of data:



Reply from 74.125.226.68: bytes=32 time=9ms TTL=56

Reply from 74.125.226.68: bytes=32 time=13ms TTL=56



Ping statistics for 74.125.226.68:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 9ms, Maximum = 13ms, Average = 11ms

Server: dns.rnc.net.cable.rogers.com
Address: 64.71.255.198

Name: yahoo.com
Addresses: 209.191.122.70, 98.139.183.24, 72.30.38.140



Pinging yahoo.com [209.191.122.70] with 32 bytes of data:



Reply from 209.191.122.70: bytes=32 time=52ms TTL=53

Reply from 209.191.122.70: bytes=32 time=65ms TTL=53



Ping statistics for 209.191.122.70:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 52ms, Maximum = 65ms, Average = 58ms

Server: dns.rnc.net.cable.rogers.com
Address: 64.71.255.198

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:



Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=64

Reply from 127.0.0.1: bytes=32 time<1ms TTL=64



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 15 c5 03 73 c0 ...... Broadcom 440x 10/100 Integrated Controller - Radialpoint Miniport (x86)
0x3 ...00 13 02 10 50 7d ...... Intel® PRO/Wireless 3945ABG Network Connection - Radialpoint Miniport (x86)
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.105 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
192.168.1.0 255.255.255.0 192.168.1.105 192.168.1.105 20
192.168.1.105 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.1.255 255.255.255.255 192.168.1.105 192.168.1.105 20
224.0.0.0 240.0.0.0 192.168.1.105 192.168.1.105 20
255.255.255.255 255.255.255.255 192.168.1.105 192.168.1.105 1
255.255.255.255 255.255.255.255 192.168.1.105 3 1
Default Gateway: 192.168.1.1
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/29/2012 07:10:21 PM) (Source: WmiAdapter) (User: DELL2)DELL2
Description: Open of service failed.

Error: (07/29/2012 07:10:17 PM) (Source: PerfNet) (User: )
Description: Unable to open the Server service. Server performance data
will not be returned. Error code returned is in data DWORD 0.

Error: (07/29/2012 01:33:35 PM) (Source: crypt32) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This network connection does not exist.

Error: (07/29/2012 01:33:34 PM) (Source: crypt32) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This network connection does not exist.

Error: (07/29/2012 01:33:33 PM) (Source: crypt32) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: The server name or address could not be resolved

Error: (07/29/2012 01:31:37 PM) (Source: COM+) (User: )
Description: A condition has occurred that indicates this COM+ application is in an unstable state or is not functioning correctly. Assertion Failure: SUCCEEDED(hr)

Server Application ID: {02D4B3F1-FD88-11D1-960D-00805FC79235}
Server Application Instance ID:
{600D4A7A-E4F2-4C78-AA0D-09148BBA2356}
Server Application Name: System Application
The serious nature of this error has caused the process to terminate.
Error Code = 0x8000ffff : Catastrophic failure
COM+ Services Internals Information:
File: f:\xpsp3\com\com1x\src\comsvcs\tracker\trksvr\trksvrimpl.cpp, Line: 3000
Comsvcs.dll file version: ENU 2001.12.4414.702 shp

Error: (07/29/2012 01:31:37 PM) (Source: EventSystem) (User: )
Description: The COM+ Event System detected a bad return code during its internal processing. HRESULT was 80070422 from line 44 of d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp. Please contact Microsoft Product Support Services to report this error.

Error: (07/29/2012 01:31:37 PM) (Source: EventSystem) (User: )
Description: The COM+ Event System detected a bad return code during its internal processing. HRESULT was 80070422 from line 44 of d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp. Please contact Microsoft Product Support Services to report this error.

Error: (07/29/2012 01:31:37 PM) (Source: EventSystem) (User: )
Description: The COM+ Event System detected a bad return code during its internal processing. HRESULT was 80070422 from line 44 of d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp. Please contact Microsoft Product Support Services to report this error.

Error: (07/29/2012 01:31:37 PM) (Source: COM+) (User: )
Description: The run-time environment has detected an inconsistency in its internal state. This indicates a potential instability in the process that could be caused by the custom components running in the COM+ application, the components they make use of, or other factors. Error in f:\xpsp3\com\com1x\src\comsvcs\events\lcedisp.cpp(131), hr = 80040206: Failed to CoCreate EventSystem object.


System errors:
=============
Error: (07/29/2012 07:40:56 PM) (Source: DCOM) (User: DELL2)
Description: DCOM got error "%%1058" attempting to start the service YahooAUService with arguments ""
in order to run the server:
{90AFF435-B544-4F94-A0C2-CC020EACA4E3}

Error: (07/29/2012 07:40:56 PM) (Source: DCOM) (User: DELL2)
Description: DCOM got error "%%1058" attempting to start the service YahooAUService with arguments ""
in order to run the server:
{90AFF435-B544-4F94-A0C2-CC020EACA4E3}

Error: (07/29/2012 07:40:56 PM) (Source: DCOM) (User: DELL2)
Description: DCOM got error "%%1058" attempting to start the service YahooAUService with arguments ""
in order to run the server:
{90AFF435-B544-4F94-A0C2-CC020EACA4E3}

Error: (07/29/2012 07:07:44 PM) (Source: DCOM) (User: DELL2)
Description: DCOM got error "%%1058" attempting to start the service YahooAUService with arguments ""
in order to run the server:
{90AFF435-B544-4F94-A0C2-CC020EACA4E3}

Error: (07/29/2012 07:07:44 PM) (Source: DCOM) (User: DELL2)
Description: DCOM got error "%%1058" attempting to start the service YahooAUService with arguments ""
in order to run the server:
{90AFF435-B544-4F94-A0C2-CC020EACA4E3}

Error: (07/29/2012 07:07:44 PM) (Source: DCOM) (User: DELL2)
Description: DCOM got error "%%1058" attempting to start the service YahooAUService with arguments ""
in order to run the server:
{90AFF435-B544-4F94-A0C2-CC020EACA4E3}

Error: (07/29/2012 07:04:31 PM) (Source: DCOM) (User: DELL2)
Description: DCOM got error "%%1058" attempting to start the service YahooAUService with arguments ""
in order to run the server:
{3D369E3A-9EDF-46C4-B4BC-47BF3304BF7C}

Error: (07/29/2012 07:04:31 PM) (Source: DCOM) (User: DELL2)
Description: DCOM got error "%%1058" attempting to start the service YahooAUService with arguments ""
in order to run the server:
{90AFF435-B544-4F94-A0C2-CC020EACA4E3}

Error: (07/29/2012 07:04:31 PM) (Source: DCOM) (User: DELL2)
Description: DCOM got error "%%1058" attempting to start the service YahooAUService with arguments ""
in order to run the server:
{90AFF435-B544-4F94-A0C2-CC020EACA4E3}

Error: (07/29/2012 07:04:31 PM) (Source: DCOM) (User: DELL2)
Description: DCOM got error "%%1058" attempting to start the service YahooAUService with arguments ""
in order to run the server:
{3D369E3A-9EDF-46C4-B4BC-47BF3304BF7C}


Microsoft Office Sessions:
=========================
Error: (07/29/2012 07:10:21 PM) (Source: WmiAdapter)(User: DELL2)DELL2
Description:

Error: (07/29/2012 07:10:17 PM) (Source: PerfNet)(User: )
Description:

Error: (07/29/2012 01:33:35 PM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txtThis network connection does not exist.

Error: (07/29/2012 01:33:34 PM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txtThis network connection does not exist.

Error: (07/29/2012 01:33:33 PM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txtThe server name or address could not be resolved

Error: (07/29/2012 01:31:37 PM) (Source: COM+)(User: )
Description: SUCCEEDED(hr)

Server Application ID: {02D4B3F1-FD88-11D1-960D-00805FC79235}
Server Application Instance ID:
{600D4A7A-E4F2-4C78-AA0D-09148BBA2356}
Server Application Name: System Application
The serious nature of this error has caused the process to terminate.
Error Code = 0x8000ffff : Catastrophic failure
COM+ Services Internals Information:
File: f:\xpsp3\com\com1x\src\comsvcs\tracker\trksvr\trksvrimpl.cpp, Line: 3000
Comsvcs.dll file version: ENU 2001.12.4414.702 shp

Error: (07/29/2012 01:31:37 PM) (Source: EventSystem)(User: )
Description: d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp4480070422

Error: (07/29/2012 01:31:37 PM) (Source: EventSystem)(User: )
Description: d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp4480070422

Error: (07/29/2012 01:31:37 PM) (Source: EventSystem)(User: )
Description: d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp4480070422

Error: (07/29/2012 01:31:37 PM) (Source: COM+)(User: )
Description: Error in f:\xpsp3\com\com1x\src\comsvcs\events\lcedisp.cpp(131), hr = 80040206: Failed to CoCreate EventSystem object.


=========================== Installed Programs ============================

23_24_2500Tour (Version: 5.31.1.27)
2400 (Version: 5.31.1.27)
2400_2500Help (Version: 5.31.1.27)
2400_2500trb (Version: 5.31.1.27)
Acrobat.com (Version: 1.7.186)
Adobe AIR (Version: 1.5.1.8210)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.265)
Adobe Reader 9.5.1 (Version: 9.5.1)
Adobe Shockwave Player (Version: 10.1.4.20)
Advanced SystemCare 5 (Version: 5.3.0)
AiO_Scan (Version: 5.31.1.27)
AIOMinimal (Version: 5.31.1.27)
AiOSoftware (Version: 5.31.1.27)
AOL (Choose which version to remove)
AOL Connectivity Services
AOL You've Got Pictures Screensaver
Belarc Advisor 8.1
Broadcom 440x 10/100 Integrated Controller (Version: 10.04.01)
Broadcom Management Programs (Version: 10.15.03)
CCleaner (Version: 3.07)
CDBurnerXP (Version: 4.4.1.3184)
Conexant HDA D110 MDC V.92 Modem
Copy (Version: 5.31.0.150)
CreativeProjects (Version: 5.31.0.150)
Critical Update for Windows Media Player 11 (KB959772)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dell Support Center (Version: 3.1.5907.39)
Dell System Restore (Version: 2.00.0000)
DellSupport (Version: 6.0.3062)
Digital Line Detect (Version: 1.15)
Director (Version: 5.31.0.154)
DocProc (Version: 3.1.0.0)
ESPNMotion (Version: 2.1.6.0011)
Fax (Version: 5.31.1.27)
GdiplusUpgrade (Version: 1.00.01)
GemMaster Mystic
High Definition Audio Driver Package - KB835221 (Version: 20040219.000000)
HP Photo & Imaging 3.1 (Version: 3.1)
HP PSC & OfficeJet 3.0 (Version: 3.0)
HP Software Update (Version: 1.0.18.20030625)
HP Unload DLL Patch (Version: 1.00.0000)
hpmdtab (Version: 2.0.470.1598)
HPSystemDiagnostics (Version: 1.5.0.0)
InstantShare (Version: 3.1.0.13)
Intel PROSet Wireless (Version: 10.5.1.0)
Intel® Graphics Media Accelerator Driver (Version: 6.14.10.4446)
Intel® PROSet/Wireless WiFi Software (Version: 12.04.3000)
Internal Network Card Power Management (Version: 1.7.2)
J2SE Runtime Environment 5.0 Update 11 (Version: 1.5.0.110)
J2SE Runtime Environment 5.0 Update 6 (Version: 1.5.0.60)
J2SE Runtime Environment 5.0 Update 9 (Version: 1.5.0.90)
Java 2 Runtime Environment, SE v1.4.2_03 (Version: 1.4.2_03)
Java Auto Updater (Version: 2.0.2.1)
Java™ 6 Update 20 (Version: 6.0.200)
Java™ 6 Update 5 (Version: 1.6.0.50)
Java™ 6 Update 7 (Version: 1.6.0.70)
Java™ SE Runtime Environment 6 Update 1 (Version: 1.6.0.10)
Learn2 Player (Uninstall Only)
MCU (Version: 1.00.0000)
Memories Disc Creator 2.0 (Version: 2.0.470.1598)
Microsoft .NET Framework 1.0 Hotfix (KB2572066)
Microsoft .NET Framework 1.0 Hotfix (KB2604042)
Microsoft .NET Framework 1.0 Hotfix (KB2656378)
Microsoft .NET Framework 1.0 Hotfix (KB953295)
Microsoft .NET Framework 1.0 Hotfix (KB979904)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Digital Image Library 9 - Blocker (Version: 9.00.0000)
Microsoft Digital Image Standard 2006 (Version: 11.0.0422)
Microsoft Digital Image Standard 2006 Editor (Version: 11.0.0422)
Microsoft Digital Image Standard 2006 Library (Version: 11.0.0422)
Microsoft Encarta Encyclopedia Standard 2006 (Version: 2006)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Money 2006 (Version: 15)
Microsoft National Language Support Downlevel APIs
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Plus! Digital Media Edition Installer (Version: 1.1.0.3514)
Microsoft Plus! Photo Story 2 LE (Version: 1.1.0.3463)
Microsoft Software Update for Web Folders (English) 14 (Version: 14.0.6029.1000)
Microsoft Streets & Trips 2006 (Version: 13.00.09.0200)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Works (Version: 08.05.0818)
Microsoft Works Suite 2006 Setup Launcher
Microsoft Works Suite Add-in for Microsoft Word (Version: 8.0.0.0000)
Modem Helper (Version: 3.01)
mProSafe (Version: 7.20.0000)
MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Musicmatch for Windows Media Player (Version: 0.00.000)
mWlsSafe (Version: 7.20.0000)
NetWaiting (Version: 2.5.23)
OpenOffice.org Installer 1.0 (Version: 1.0.9221)
Otto
Overland (Version: 1.76.0)
overland (Version: 2.1.5)
PerfectDisk 10 Professional (Version: 10.0.110)
PhotoGallery (Version: 5.31.0.158)
PowerDVD 5.9
PrintScreen (Version: 5.31.0.147)
QFolder (Version: 1.00.0000)
QuickProjects (Version: 5.31.0.147)
QuickSet (Version: 7.0.9)
QuickTime
Readme (Version: 5.31.1.27)
RealPlayer Basic
Revo Uninstaller 1.92 (Version: 1.92)
Rogers Online Protection (Version: 9.0.49)
Rogers Servicepoint Agent 3.7.44 (Version: 3.7.44)
Rogers Yahoo! Applications
RPS CRT (Version: 7.0.28)
RPS CRT (Version: 8.0.32)
RPS CRT (Version: 9.0.49)
RPS PerfectDiskStub (Version: 9.0.49)
RPS RpsCore (Version: 9.0.49)
Scan (Version: 3.1.0.0)
SkinsHP1 (Version: 5.31.0.147)
SkinsHP2 (Version: 5.31.0.147)
Sonic Audio module (Version: 2.0.0.1)
Sonic DLA (Version: 4.98)
Sonic Encoders (Version: 1.00)
Sonic MyDVD LE (Version: 6.1.1)
Sonic RecordNow Copy (Version: 2.0.0.1)
Sonic RecordNow Data (Version: 2.0.0.1)
Sonic Update Manager (Version: 3.0.0)
Synaptics Pointing Device Driver (Version: 8.2.4.3)
System Requirements Lab
TrayApp (Version: 5.31.0.147)
Unload (Version: 3.1.0)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update for Windows Internet Explorer 8 (KB976662) (Version: 1)
Update for Windows Internet Explorer 8 (KB980182) (Version: 1)
Update for Windows Internet Explorer 8 (KB982632) (Version: 1)
Update for Windows Media Player 10 (KB910393)
Update for Windows Media Player 10 (KB913800)
Update for Windows Media Player 10 (KB926251)
Update for Windows XP (KB2141007) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB951072-v2) (Version: 2)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB955839) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
Update Rollup 2 for Windows XP Media Center Edition 2005
Viewpoint Media Player
WebCyberCoach 3.2 Dell
WebFldrs XP (Version: 9.50.7523)
WebReg (Version: 5.31.0.147)
Windows Driver Package - Ricoh Company (rimsptsk) hdc (11/14/2006 6.00.01.04) (Version: 11/14/2006 6.00.01.04)
Windows Genuine Advantage Notifications (KB905474) (Version: 1.7.0017.0)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Installer 3.1 (KB893803)
Windows Internet Explorer 7 (Version: 20061107.210142)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Media Format 11 runtime
Windows Media Player 10 (Version: 9.00.3636)
Windows Media Player 10 Hotfix [See EmeraldQFE2 for more information]
Windows XP Media Center Edition 2005 KB2502898
Windows XP Media Center Edition 2005 KB2619340
Windows XP Media Center Edition 2005 KB2628259
Windows XP Media Center Edition 2005 KB908246
Windows XP Media Center Edition 2005 KB925766
Windows XP Media Center Edition 2005 KB973768
Windows XP Service Pack 3 (Version: 20080414.031525)
Works Upgrade (Version: 8.0.0.0000)
Yahoo! Search Protection
Yahoo! Software Update

========================= Memory info: ===================================

Percentage of memory in use: 75%
Total physical RAM: 1014.37 MB
Available physical RAM: 252.88 MB
Total Pagefile: 2440.43 MB
Available Pagefile: 1584.07 MB
Total Virtual: 2047.88 MB
Available Virtual: 1969.84 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:68.44 GB) (Free:42.61 GB) NTFS

========================= Users: ========================================

User accounts for \\DELL2

Administrator ASPNET Guest
HelpAssistant Sean SUPPORT_388945a0
Winsom


**** End of log ****


This log file is located at C:\rkill.log.
Please post this only if requested to by the person helping you.
Otherwise you can close this log when you wish.

Rkill was run on 07/29/2012 at 20:28:40.
Operating System: Microsoft Windows XP


Processes terminated by Rkill or while it was running:



Rkill completed on 07/29/2012 at 20:28:48.



SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 07/29/2012 at 09:09 PM

Application Version : 5.5.1012

Core Rules Database Version : 8977
Trace Rules Database Version: 6789

Scan type : Quick Scan
Total Scan Time : 00:13:29

Operating System Information
Windows XP Professional 32-bit, Service Pack 3 (Build 5.01.2600)
Administrator

Memory items scanned : 649
Memory threats detected : 0
Registry items scanned : 30540
Registry threats detected : 2
File items scanned : 9896
File threats detected : 17

Disabled.SecurityCenterOption
HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER#ANTIVIRUSDISABLENOTIFY
HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER#FIREWALLDISABLENOTIFY

Adware.Tracking Cookie
C:\Documents and Settings\Sean\Cookies\KB87GXND.txt [ /solvemedia.com ]
C:\Documents and Settings\Sean\Cookies\ELDUO8WC.txt [ /ad.360yield.com ]
C:\Documents and Settings\Sean\Cookies\4RZU3B4I.txt [ /invitemedia.com ]
C:\Documents and Settings\Sean\Cookies\3GBVTHCL.txt [ /rogersmedia.com ]
C:\Documents and Settings\Sean\Cookies\XYEGDOOX.txt [ /ad.yieldmanager.com ]
C:\Documents and Settings\Sean\Cookies\LMBTSZU6.txt [ /mass2onemedia.com ]
C:\DOCUMENTS AND SETTINGS\WINSOM\Cookies\RF0TQ68O.txt [ Cookie:winsom@doubleclick.net/ ]
C:\DOCUMENTS AND SETTINGS\WINSOM\Cookies\MKCJWJX5.txt [ Cookie:winsom@lucidmedia.com/ ]
C:\DOCUMENTS AND SETTINGS\WINSOM\Cookies\EBV363FL.txt [ Cookie:winsom@zedo.com/ ]
C:\DOCUMENTS AND SETTINGS\WINSOM\Cookies\FZEECB4O.txt [ Cookie:winsom@tribalfusion.com/ ]
C:\DOCUMENTS AND SETTINGS\WINSOM\Cookies\775WUBAH.txt [ Cookie:winsom@stats.optijob.com/ ]
C:\DOCUMENTS AND SETTINGS\WINSOM\Cookies\SJMPKV1X.txt [ Cookie:winsom@adserver.adtechus.com/ ]
C:\DOCUMENTS AND SETTINGS\WINSOM\Cookies\32Y34AA6.txt [ Cookie:winsom@serving-sys.com/ ]
C:\DOCUMENTS AND SETTINGS\WINSOM\Cookies\0AUGJ3VQ.txt [ Cookie:winsom@atdmt.com/ ]
C:\DOCUMENTS AND SETTINGS\WINSOM\Cookies\MS5I1LWD.txt [ Cookie:winsom@ru4.com/ ]
C:\DOCUMENTS AND SETTINGS\WINSOM\Cookies\2SIN63V8.txt [ Cookie:winsom@ad.yieldmanager.com/ ]
C:\DOCUMENTS AND SETTINGS\WINSOM\Cookies\ED2GB7FL.txt [ Cookie:winsom@mm.chitika.net/ ]



Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.07.29.09

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Sean :: DELL2 [administrator]

7/29/2012 9:59:53 PM
mbam-log-2012-07-29 (21-59-53).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 234512
Time elapsed: 16 minute(s), 36 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,569 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:24 AM

Posted 30 July 2012 - 06:14 PM

Please run one more scan,it may take a couple hours.

I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Under scan settings, check Posted Image and check Remove found threats
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


NOTE: In some instances if no malware is found there will be no log produced.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 EQUANOX

EQUANOX
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:07:24 AM

Posted 03 August 2012 - 04:03 PM

Hi Boopme,


Below is the scan from ESET.

C:\Documents and Settings\Sean\My Documents\cdbxp_setup_4.4.1.3184.exe Win32/OpenCandy application cleaned by deleting - quarantined
C:\Documents and Settings\Sean\My Documents\Downloaded Program Updates\asc-setupv3.7.3.exe a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\System Volume Information\_restore{129201FA-B0AC-49B3-96B2-DEB8B91E727B}\RP187\A0037865.exe Win32/OpenCandy application cleaned by deleting - quarantined


Thank you,

#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,569 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:24 AM

Posted 03 August 2012 - 04:11 PM

Hello,it looks good now..

Your version of Java and Adobe Reader are out of date. Older versions have vulnerabilities that malicious sites can use to exploit and infect your system.Please follow these steps to remove older version Java components and update:
  • Download the latest version of Java Runtime Environment (JRE) Version 7 and save it to your desktop.
  • Look for "Java Platform, Standard Edition".
  • Click the "Download JRE" button to the right.
  • Read the License Agreement, and then check the box that says: "Accept License Agreement".
  • From the list, select your OS and Platform (32-bit or 64-bit).
    64-bit OS users, should read: Which Java download should I choose for my 64-bit Windows operating system?
  • If a download for an Offline Installation is available, it is recommended to choose that and save the file to your desktop.
  • Close any programs you may have running - especially your web browser.
Go to Posted Image > Control Panel, double-click on Add/Remove Programs or Programs and Features in Vista/Windows 7 and remove all older versions of Java.
  • Check (highlight) any item with Java Runtime Environment (JRE or J2SE) in the name.
  • Click the Remove or Change/Remove button and follow the onscreen instructions for the Java uninstaller.
  • Repeat as many times as necessary to remove each Java versions.
  • Reboot your computer once all Java components are removed.
  • Then from your desktop double-click on jre-7u5-windows-i586.exe (or jre-7u5-windows-x64.exe for 64-bit) to install the newest version.
  • If using Windows 7 or Vista and the installer refuses to launch due to insufficient user permissions, then Run As Administrator.
  • When the Java Setup - Welcome window opens, click the Install > button.
  • If offered any unwanted software or toolbars during installation, just uncheck the box before continuing unless you want it.
  • The McAfee Security Scan Plus tool is installed by default unless you uncheck the McAfee installation box when updating Java.
Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications but it's not necessary.
To disable the JQS service if you don't want to use it:
  • Go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter.
  • Click Ok and reboot your computer.


Similarly Update to Adobe Reader X (10.1.0)
Note UN check the box so you do not install the toolbar,unless you really want it..

Free! Google Toolbar search Google from any web page, block pop-ups

Yes, install Google Toolbar - optional

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 EQUANOX

EQUANOX
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:07:24 AM

Posted 11 August 2012 - 07:34 PM

Thank you Boopme for your help, all I have to do is run Rogers Online Protection to see if it will find any viruses. I would like to know if I should keep SuperAntiSypware, Malwarebytes,Rkill, ESET and MiniToolBox runing on my computer or delete them?

I have another problem on my desktop computer. I don't know if I should report it to this post if not please put it in the proper forum. The desktop computer is a Dimension 4700 runing Win XP MCE. The problem is I had to perform a few earlier System Restore Points to get Rogers Online Protection Off the computer. Apperenly it has reported that my security,Rogers Online Protection(ROP)system is not working. ROP has reported that my firewall and antispyware is shut off for some reason. It has happened 3 or 4 times before and have repaired it my performing a System Restore before ROP was effected. Ounce that is done I will install ROP again and my firewall and antispyware will be running fine. Now when I put on the computer I can log in myself but now I can't see my icons, all there is a blank page, not even my START or task bar shows up. I don't have a resotre disk which did not come with the computer. I would like to know if there is anything you can do or I have to send it to a computer store to be repaired.


Thanks again,

#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,569 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:24 AM

Posted 11 August 2012 - 09:42 PM

You're welcome.. we may not be out of the woods yet.
Rkill, ESET and MiniToolBox need to be downloaded new for each use to get them with the latest updates.

SuperAntiSypware, Malwarebytes (SAS and MBAM) ..I run these weekly as a supplement to my AV. They need to be updared before a scan,,, so the choice with these is yours.

Lets look a some rootkit logs and see if that is the latest issue.

Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click on Change Parameters
  • Put a check in the box of Detect TDLFS file system
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log has a name like: TDSSKiller.Version_Date_Time_log.txt.




Please download aswMBR ( 511KB ) to your desktop.
  • Double click the aswMBR.exe icon to run it
  • Click the Scan button to start the scan
  • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 EQUANOX

EQUANOX
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:07:24 AM

Posted 21 August 2012 - 08:10 PM

Hi Boopme,

I have downloaded tdskiller and below is the report. I did not have to reboot tdskiller or the computer.

21:06:08.0000 0532 TDSS rootkit removing tool 2.8.7.0 Aug 20 2012 17:30:03
21:06:08.0406 0532 ============================================================
21:06:08.0406 0532 Current date / time: 2012/08/21 21:06:08.0406
21:06:08.0406 0532 SystemInfo:
21:06:08.0406 0532
21:06:08.0406 0532 OS Version: 5.1.2600 ServicePack: 3.0
21:06:08.0406 0532 Product type: Workstation
21:06:08.0406 0532 ComputerName: DELL2
21:06:08.0406 0532 UserName: Sean
21:06:08.0406 0532 Windows directory: C:\WINDOWS
21:06:08.0406 0532 System windows directory: C:\WINDOWS
21:06:08.0406 0532 Processor architecture: Intel x86
21:06:08.0406 0532 Number of processors: 2
21:06:08.0406 0532 Page size: 0x1000
21:06:08.0406 0532 Boot type: Normal boot
21:06:08.0406 0532 ============================================================
21:06:10.0078 0532 Drive \Device\Harddisk0\DR0 - Size: 0x1248119400 (73.13 Gb), SectorSize: 0x200, Cylinders: 0x254A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
21:06:10.0078 0532 ============================================================
21:06:10.0078 0532 \Device\Harddisk0\DR0:
21:06:10.0078 0532 MBR partitions:
21:06:10.0078 0532 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x88E0366
21:06:10.0078 0532 ============================================================
21:06:10.0093 0532 C: <-> \Device\Harddisk0\DR0\Partition1
21:06:10.0093 0532 ============================================================
21:06:10.0093 0532 Initialize success
21:06:10.0093 0532 ============================================================
21:06:34.0312 2244 ============================================================
21:06:34.0312 2244 Scan started
21:06:34.0312 2244 Mode: Manual; TDLFS;
21:06:34.0312 2244 ============================================================
21:06:34.0515 2244 ================ Scan system memory ========================
21:06:34.0515 2244 System memory - ok
21:06:34.0515 2244 ================ Scan services =============================
21:06:34.0609 2244 [ C0393EB99A6C72C6BEF9BFC4A72B33A6 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
21:06:34.0609 2244 !SASCORE - ok
21:06:34.0781 2244 Abiosdsk - ok
21:06:34.0812 2244 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
21:06:34.0828 2244 abp480n5 - ok
21:06:34.0890 2244 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:06:34.0890 2244 ACPI - ok
21:06:34.0921 2244 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
21:06:34.0937 2244 ACPIEC - ok
21:06:34.0937 2244 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
21:06:34.0937 2244 adpu160m - ok
21:06:35.0156 2244 [ 96D6CDD0B32846E8CFBE592F4F32E608 ] AdvancedSystemCareService5 C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe
21:06:35.0171 2244 AdvancedSystemCareService5 - ok
21:06:35.0203 2244 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
21:06:35.0203 2244 aec - ok
21:06:35.0265 2244 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
21:06:35.0265 2244 AFD - ok
21:06:35.0312 2244 [ 0EBB674888CBDEFD5773341C16DD6A07 ] AFS2K C:\WINDOWS\system32\drivers\AFS2K.sys
21:06:35.0312 2244 AFS2K - ok
21:06:35.0359 2244 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
21:06:35.0359 2244 agp440 - ok
21:06:35.0375 2244 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
21:06:35.0375 2244 agpCPQ - ok
21:06:35.0390 2244 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
21:06:35.0390 2244 Aha154x - ok
21:06:35.0437 2244 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
21:06:35.0437 2244 aic78u2 - ok
21:06:35.0437 2244 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
21:06:35.0453 2244 aic78xx - ok
21:06:35.0484 2244 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
21:06:35.0484 2244 Alerter - ok
21:06:35.0515 2244 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
21:06:35.0515 2244 ALG - ok
21:06:35.0515 2244 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
21:06:35.0515 2244 AliIde - ok
21:06:35.0531 2244 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
21:06:35.0531 2244 alim1541 - ok
21:06:35.0546 2244 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
21:06:35.0546 2244 amdagp - ok
21:06:35.0562 2244 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
21:06:35.0578 2244 amsint - ok
21:06:35.0812 2244 [ AA4F1FA8B75FB5F54FAD0B24AE848330 ] AOL ACS C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
21:06:35.0828 2244 AOL ACS - ok
21:06:35.0875 2244 [ EC94E05B76D033B74394E7B2175103CF ] APPDRV C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS
21:06:35.0875 2244 APPDRV - ok
21:06:35.0921 2244 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
21:06:35.0921 2244 AppMgmt - ok
21:06:35.0953 2244 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:06:35.0953 2244 Arp1394 - ok
21:06:35.0968 2244 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
21:06:35.0968 2244 asc - ok
21:06:35.0968 2244 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
21:06:35.0968 2244 asc3350p - ok
21:06:35.0984 2244 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
21:06:35.0984 2244 asc3550 - ok
21:06:36.0046 2244 [ D880831279ED91F9A4190A2DB9539EA9 ] ASCTRM C:\WINDOWS\system32\drivers\ASCTRM.sys
21:06:36.0046 2244 ASCTRM - ok
21:06:36.0234 2244 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
21:06:36.0234 2244 aspnet_state - ok
21:06:36.0265 2244 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:06:36.0265 2244 AsyncMac - ok
21:06:36.0312 2244 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
21:06:36.0312 2244 atapi - ok
21:06:36.0328 2244 Atdisk - ok
21:06:36.0343 2244 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:06:36.0343 2244 Atmarpc - ok
21:06:36.0390 2244 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
21:06:36.0390 2244 AudioSrv - ok
21:06:36.0437 2244 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
21:06:36.0437 2244 audstub - ok
21:06:36.0515 2244 [ 5D7BE7B19E827125E016325334E58FF1 ] BANTExt C:\WINDOWS\System32\Drivers\BANTExt.sys
21:06:36.0515 2244 BANTExt - ok
21:06:36.0578 2244 [ CD4646067CC7DCBA1907FA0ACF7E3966 ] bcm4sbxp C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys
21:06:36.0593 2244 bcm4sbxp - ok
21:06:36.0656 2244 [ 9B281F5F673CBC5B9EC886D59E0B4F26 ] bdfsfltr C:\WINDOWS\system32\drivers\bdfsfltr.sys
21:06:36.0656 2244 bdfsfltr - ok
21:06:36.0703 2244 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
21:06:36.0703 2244 Beep - ok
21:06:36.0750 2244 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
21:06:36.0750 2244 BITS - ok
21:06:36.0796 2244 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
21:06:36.0812 2244 Browser - ok
21:06:36.0812 2244 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
21:06:36.0812 2244 cbidf - ok
21:06:36.0828 2244 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
21:06:36.0828 2244 cbidf2k - ok
21:06:36.0843 2244 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
21:06:36.0843 2244 cd20xrnt - ok
21:06:36.0843 2244 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
21:06:36.0859 2244 Cdaudio - ok
21:06:36.0859 2244 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
21:06:36.0859 2244 Cdfs - ok
21:06:36.0906 2244 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:06:36.0906 2244 Cdrom - ok
21:06:36.0921 2244 Changer - ok
21:06:36.0937 2244 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
21:06:36.0937 2244 CiSvc - ok
21:06:36.0953 2244 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
21:06:36.0953 2244 ClipSrv - ok
21:06:37.0031 2244 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:06:37.0031 2244 clr_optimization_v2.0.50727_32 - ok
21:06:37.0093 2244 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
21:06:37.0140 2244 CmBatt - ok
21:06:37.0203 2244 [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
21:06:37.0203 2244 CmdIde - ok
21:06:37.0218 2244 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
21:06:37.0218 2244 Compbatt - ok
21:06:37.0234 2244 COMSysApp - ok
21:06:37.0250 2244 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
21:06:37.0250 2244 Cpqarray - ok
21:06:37.0312 2244 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
21:06:37.0312 2244 CryptSvc - ok
21:06:37.0328 2244 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
21:06:37.0328 2244 dac2w2k - ok
21:06:37.0328 2244 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
21:06:37.0328 2244 dac960nt - ok
21:06:37.0406 2244 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
21:06:37.0421 2244 DcomLaunch - ok
21:06:37.0484 2244 [ 65C7122D1115A4E1DB3E8C11DF919A40 ] DefragFS C:\WINDOWS\system32\drivers\DefragFS.sys
21:06:37.0484 2244 DefragFS - ok
21:06:37.0515 2244 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
21:06:37.0515 2244 Dhcp - ok
21:06:37.0531 2244 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
21:06:37.0531 2244 Disk - ok
21:06:37.0531 2244 dmadmin - ok
21:06:37.0593 2244 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
21:06:37.0593 2244 dmboot - ok
21:06:37.0640 2244 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
21:06:37.0640 2244 dmio - ok
21:06:37.0656 2244 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
21:06:37.0656 2244 dmload - ok
21:06:37.0687 2244 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
21:06:37.0687 2244 dmserver - ok
21:06:37.0718 2244 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
21:06:37.0718 2244 DMusic - ok
21:06:37.0781 2244 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
21:06:37.0781 2244 Dnscache - ok
21:06:37.0828 2244 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
21:06:37.0843 2244 Dot3svc - ok
21:06:37.0859 2244 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
21:06:37.0859 2244 dpti2o - ok
21:06:37.0906 2244 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
21:06:37.0906 2244 drmkaud - ok
21:06:37.0937 2244 [ 96BC8F872F0270C10EDC3931F1C03776 ] drvmcdb C:\WINDOWS\system32\drivers\drvmcdb.sys
21:06:37.0953 2244 drvmcdb - ok
21:06:37.0968 2244 [ 5AFBEC7A6AC61B211633DFDB1D9E0C89 ] drvnddm C:\WINDOWS\system32\drivers\drvnddm.sys
21:06:37.0968 2244 drvnddm - ok
21:06:38.0062 2244 [ FE80901578E7E3DA70299A5AEB2B7FBD ] DSBrokerService C:\Program Files\DellSupport\brkrsvc.exe
21:06:38.0062 2244 DSBrokerService - ok
21:06:38.0171 2244 [ 413F2D5F9D802688242C23B38F767ECB ] DSproct C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys
21:06:38.0171 2244 DSproct - ok
21:06:38.0234 2244 [ DFEABB7CFFFADEA4A912AB95BDC3177A ] dsunidrv C:\WINDOWS\system32\DRIVERS\dsunidrv.sys
21:06:38.0250 2244 dsunidrv - ok
21:06:38.0250 2244 [ 3FCA03CBCA11269F973B70FA483C88EF ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
21:06:38.0250 2244 E100B - ok
21:06:38.0281 2244 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
21:06:38.0281 2244 EapHost - ok
21:06:38.0406 2244 [ 5D1347AA5AE6E2F77D7F4F8372D95AC9 ] ehRecvr C:\WINDOWS\eHome\ehRecvr.exe
21:06:38.0406 2244 ehRecvr - ok
21:06:38.0421 2244 [ A53243709439AC2A4C216B817F8D7411 ] ehSched C:\WINDOWS\eHome\ehSched.exe
21:06:38.0421 2244 ehSched - ok
21:06:38.0484 2244 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
21:06:38.0484 2244 ERSvc - ok
21:06:38.0546 2244 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
21:06:38.0546 2244 Eventlog - ok
21:06:38.0640 2244 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
21:06:38.0656 2244 EventSystem - ok
21:06:38.0781 2244 [ 791464A9E9ADE063327A29F1B3F1A86C ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
21:06:38.0796 2244 EvtEng - ok
21:06:38.0828 2244 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
21:06:38.0828 2244 Fastfat - ok
21:06:38.0906 2244 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
21:06:38.0906 2244 FastUserSwitchingCompatibility - ok
21:06:38.0937 2244 [ E97D6A8684466DF94FF3BC24FB787A07 ] Fax C:\WINDOWS\system32\fxssvc.exe
21:06:38.0937 2244 Fax - ok
21:06:39.0000 2244 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
21:06:39.0000 2244 Fdc - ok
21:06:39.0015 2244 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
21:06:39.0015 2244 Fips - ok
21:06:39.0031 2244 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:06:39.0031 2244 Flpydisk - ok
21:06:39.0046 2244 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
21:06:39.0046 2244 FltMgr - ok
21:06:39.0140 2244 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
21:06:39.0140 2244 FontCache3.0.0.0 - ok
21:06:39.0171 2244 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:06:39.0171 2244 Fs_Rec - ok
21:06:39.0203 2244 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:06:39.0203 2244 Ftdisk - ok
21:06:39.0234 2244 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:06:39.0234 2244 Gpc - ok
21:06:39.0265 2244 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
21:06:39.0265 2244 HDAudBus - ok
21:06:39.0390 2244 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
21:06:39.0390 2244 helpsvc - ok
21:06:39.0406 2244 HidServ - ok
21:06:39.0468 2244 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
21:06:39.0468 2244 hkmsvc - ok
21:06:39.0468 2244 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
21:06:39.0468 2244 hpn - ok
21:06:39.0515 2244 [ 5FABA4775D4C61E55EC669D643FFC71F ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
21:06:39.0515 2244 HPZid412 - ok
21:06:39.0546 2244 [ A3C43980EE1F1BEAC778B44EA65DBDD4 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
21:06:39.0546 2244 HPZipr12 - ok
21:06:39.0593 2244 [ 2906949BD4E206F2BB0DD1896CE9F66F ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
21:06:39.0593 2244 HPZius12 - ok
21:06:39.0640 2244 [ 1C8CAA80E91FB71864E9426F9EED048D ] HSFHWAZL C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
21:06:39.0640 2244 HSFHWAZL - ok
21:06:39.0718 2244 [ E8EC1767EA315A39A0DD8989952CA0E9 ] HSF_DPV C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys
21:06:39.0734 2244 HSF_DPV - ok
21:06:39.0765 2244 [ 61478FA42EE04562E7F11F4DCA87E9C8 ] HSXHWAZL C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys
21:06:39.0765 2244 HSXHWAZL - ok
21:06:39.0796 2244 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
21:06:39.0796 2244 HTTP - ok
21:06:39.0828 2244 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
21:06:39.0843 2244 HTTPFilter - ok
21:06:39.0890 2244 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
21:06:39.0890 2244 i2omgmt - ok
21:06:39.0890 2244 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
21:06:39.0906 2244 i2omp - ok
21:06:39.0921 2244 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:06:39.0921 2244 i8042prt - ok
21:06:40.0031 2244 [ CC449157474D5E43DAEA7E20F52C635A ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
21:06:40.0046 2244 ialm - ok
21:06:40.0203 2244 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:06:40.0203 2244 idsvc - ok
21:06:40.0234 2244 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
21:06:40.0234 2244 Imapi - ok
21:06:40.0296 2244 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
21:06:40.0296 2244 ImapiService - ok
21:06:40.0312 2244 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
21:06:40.0328 2244 ini910u - ok
21:06:40.0328 2244 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
21:06:40.0328 2244 IntelIde - ok
21:06:40.0375 2244 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
21:06:40.0375 2244 intelppm - ok
21:06:40.0375 2244 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
21:06:40.0375 2244 Ip6Fw - ok
21:06:40.0406 2244 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:06:40.0406 2244 IpFilterDriver - ok
21:06:40.0421 2244 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:06:40.0421 2244 IpInIp - ok
21:06:40.0453 2244 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:06:40.0453 2244 IpNat - ok
21:06:40.0468 2244 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:06:40.0468 2244 IPSec - ok
21:06:40.0500 2244 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
21:06:40.0500 2244 IRENUM - ok
21:06:40.0531 2244 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:06:40.0531 2244 isapnp - ok
21:06:40.0687 2244 [ BC0FEADA7A5A69787C70B03EBC51B582 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
21:06:40.0703 2244 JavaQuickStarterService - ok
21:06:40.0718 2244 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:06:40.0718 2244 Kbdclass - ok
21:06:40.0750 2244 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
21:06:40.0765 2244 kmixer - ok
21:06:40.0796 2244 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
21:06:40.0796 2244 KSecDD - ok
21:06:40.0812 2244 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
21:06:40.0828 2244 lanmanserver - ok
21:06:40.0875 2244 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
21:06:40.0875 2244 lanmanworkstation - ok
21:06:40.0890 2244 lbrtfdc - ok
21:06:40.0921 2244 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
21:06:40.0921 2244 LmHosts - ok
21:06:40.0968 2244 [ DF0A511F38F16016BF658FCA0090CB87 ] McrdSvc C:\WINDOWS\ehome\mcrdsvc.exe
21:06:40.0984 2244 McrdSvc - ok
21:06:41.0031 2244 [ E246A32C445056996074A397DA56E815 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
21:06:41.0031 2244 mdmxsdk - ok
21:06:41.0078 2244 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
21:06:41.0093 2244 Messenger - ok
21:06:41.0140 2244 [ B7521F69C0A9B29D356157229376FB21 ] MHN C:\WINDOWS\System32\mhn.dll
21:06:41.0140 2244 MHN - ok
21:06:41.0171 2244 [ 7F2F1D2815A6449D346FCCCBC569FBD6 ] MHNDRV C:\WINDOWS\system32\DRIVERS\mhndrv.sys
21:06:41.0171 2244 MHNDRV - ok
21:06:41.0468 2244 Microsoft SharePoint Workspace Audit Service - ok
21:06:41.0500 2244 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
21:06:41.0500 2244 mnmdd - ok
21:06:41.0546 2244 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
21:06:41.0562 2244 mnmsrvc - ok
21:06:41.0578 2244 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
21:06:41.0578 2244 Modem - ok
21:06:41.0640 2244 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:06:41.0640 2244 Mouclass - ok
21:06:41.0656 2244 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
21:06:41.0656 2244 MountMgr - ok
21:06:41.0703 2244 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
21:06:41.0703 2244 mraid35x - ok
21:06:41.0718 2244 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:06:41.0718 2244 MRxDAV - ok
21:06:41.0796 2244 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:06:41.0796 2244 MRxSmb - ok
21:06:41.0843 2244 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
21:06:41.0843 2244 MSDTC - ok
21:06:41.0875 2244 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
21:06:41.0875 2244 Msfs - ok
21:06:41.0890 2244 MSIServer - ok
21:06:41.0890 2244 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:06:41.0890 2244 MSKSSRV - ok
21:06:41.0906 2244 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:06:41.0906 2244 MSPCLOCK - ok
21:06:41.0921 2244 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
21:06:41.0921 2244 MSPQM - ok
21:06:41.0921 2244 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:06:41.0921 2244 mssmbios - ok
21:06:41.0968 2244 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
21:06:41.0968 2244 Mup - ok
21:06:42.0031 2244 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
21:06:42.0031 2244 napagent - ok
21:06:42.0062 2244 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
21:06:42.0062 2244 NDIS - ok
21:06:42.0109 2244 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:06:42.0125 2244 NdisTapi - ok
21:06:42.0156 2244 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:06:42.0156 2244 Ndisuio - ok
21:06:42.0171 2244 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:06:42.0171 2244 NdisWan - ok
21:06:42.0218 2244 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
21:06:42.0218 2244 NDProxy - ok
21:06:42.0218 2244 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
21:06:42.0218 2244 NetBIOS - ok
21:06:42.0265 2244 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
21:06:42.0281 2244 NetBT - ok
21:06:42.0328 2244 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
21:06:42.0328 2244 NetDDE - ok
21:06:42.0343 2244 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
21:06:42.0343 2244 NetDDEdsdm - ok
21:06:42.0359 2244 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
21:06:42.0359 2244 Netlogon - ok
21:06:42.0390 2244 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
21:06:42.0406 2244 Netman - ok
21:06:42.0468 2244 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:06:42.0468 2244 NetTcpPortSharing - ok
21:06:42.0593 2244 [ 71371ED9086A3D65F43967C89634E9A9 ] NETw3x32 C:\WINDOWS\system32\DRIVERS\NETw3x32.sys
21:06:42.0609 2244 NETw3x32 - ok
21:06:42.0843 2244 [ 90F7FAD201E62732CBE6625B07E4C8F1 ] NETw5x32 C:\WINDOWS\system32\DRIVERS\NETw5x32.sys
21:06:42.0906 2244 NETw5x32 - ok
21:06:42.0921 2244 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:06:42.0921 2244 NIC1394 - ok
21:06:43.0015 2244 [ 24D29A87A141B5CCDF34260D4890BE89 ] NICCONFIGSVC C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
21:06:43.0031 2244 NICCONFIGSVC - ok
21:06:43.0078 2244 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
21:06:43.0078 2244 Nla - ok
21:06:43.0156 2244 [ 7AEA4DF1CA68FD45DD4BBE1F0243CE7F ] NMSAccess C:\Program Files\CDBurnerXP\NMSAccessU.exe
21:06:43.0156 2244 NMSAccess - ok
21:06:43.0203 2244 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
21:06:43.0203 2244 Npfs - ok
21:06:43.0265 2244 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
21:06:43.0281 2244 Ntfs - ok
21:06:43.0296 2244 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
21:06:43.0296 2244 NtLmSsp - ok
21:06:43.0390 2244 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
21:06:43.0390 2244 NtmsSvc - ok
21:06:43.0406 2244 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
21:06:43.0421 2244 Null - ok
21:06:43.0531 2244 [ 2B298519EDBFCF451D43E0F1E8F1006D ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
21:06:43.0546 2244 nv - ok
21:06:43.0562 2244 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:06:43.0562 2244 NwlnkFlt - ok
21:06:43.0593 2244 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:06:43.0593 2244 NwlnkFwd - ok
21:06:43.0609 2244 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:06:43.0609 2244 ohci1394 - ok
21:06:43.0640 2244 [ B17228142CEC9B3C222239FD935A37CA ] omci C:\WINDOWS\system32\DRIVERS\omci.sys
21:06:43.0640 2244 omci - ok
21:06:43.0718 2244 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:06:43.0718 2244 ose - ok
21:06:44.0062 2244 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:06:44.0125 2244 osppsvc - ok
21:06:44.0156 2244 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
21:06:44.0156 2244 Parport - ok
21:06:44.0187 2244 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
21:06:44.0187 2244 PartMgr - ok
21:06:44.0218 2244 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
21:06:44.0218 2244 ParVdm - ok
21:06:44.0218 2244 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
21:06:44.0218 2244 PCI - ok
21:06:44.0234 2244 PCIDump - ok
21:06:44.0250 2244 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
21:06:44.0250 2244 PCIIde - ok
21:06:44.0265 2244 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
21:06:44.0265 2244 Pcmcia - ok
21:06:44.0437 2244 [ 82D8354DB7CE7131FB939E8482DDF511 ] PDAgent C:\Program Files\Raxco\PerfectDisk10\PDAgent.exe
21:06:44.0453 2244 PDAgent - ok
21:06:44.0453 2244 PDCOMP - ok
21:06:44.0625 2244 [ 3719DE4180E251AB91D8C183F2D949BF ] PDEngine C:\Program Files\Raxco\PerfectDisk10\PDEngine.exe
21:06:44.0640 2244 PDEngine - ok
21:06:44.0640 2244 PDFRAME - ok
21:06:44.0656 2244 PDRELI - ok
21:06:44.0656 2244 PDRFRAME - ok
21:06:44.0703 2244 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
21:06:44.0703 2244 perc2 - ok
21:06:44.0718 2244 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
21:06:44.0718 2244 perc2hib - ok
21:06:44.0750 2244 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
21:06:44.0765 2244 PlugPlay - ok
21:06:44.0812 2244 [ 901C43516504CBE582E4C4193E00876A ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
21:06:44.0812 2244 Pml Driver HPZ12 - ok
21:06:44.0843 2244 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
21:06:44.0843 2244 PolicyAgent - ok
21:06:44.0859 2244 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:06:44.0859 2244 PptpMiniport - ok
21:06:45.0109 2244 [ D90A33660D328A9F587580F0B38C85DE ] Profos C:\Program Files\Rogers Online Protection\Rogers Online Protection\BitDefender\profos.sys
21:06:45.0125 2244 Profos - ok
21:06:45.0125 2244 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
21:06:45.0125 2244 ProtectedStorage - ok
21:06:45.0140 2244 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
21:06:45.0140 2244 PSched - ok
21:06:45.0156 2244 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:06:45.0156 2244 Ptilink - ok
21:06:45.0203 2244 [ 7C81AE3C9B82BA2DA437ED4D31BC56CF ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
21:06:45.0218 2244 PxHelp20 - ok
21:06:45.0265 2244 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
21:06:45.0265 2244 ql1080 - ok
21:06:45.0265 2244 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
21:06:45.0265 2244 Ql10wnt - ok
21:06:45.0281 2244 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
21:06:45.0281 2244 ql12160 - ok
21:06:45.0296 2244 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
21:06:45.0296 2244 ql1240 - ok
21:06:45.0296 2244 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
21:06:45.0312 2244 ql1280 - ok
21:06:45.0390 2244 [ 6DCEFFAD9F0A9AB4FBFEFC044C2EA0ED ] Radialpoint Security Services C:\Program Files\Rogers Online Protection\Rogers Online Protection\RpsSecurityAwareR.exe
21:06:45.0390 2244 Radialpoint Security Services - ok
21:06:45.0734 2244 [ C4890ACE6384522E9B678F403AB5A145 ] RadialpointIDSAgent C:\Program Files\Rogers Online Protection\Rogers Online Protection\AVG\Identity Protection\agent\Bin\AVGIDSAgent.exe
21:06:45.0812 2244 RadialpointIDSAgent - ok
21:06:45.0843 2244 [ 9DC4B985729C8AE26B0FD607D2081048 ] RadialpointIDSDriver C:\Program Files\Rogers Online Protection\Rogers Online Protection\AVG\Identity Protection\agent\drivers\AVGIDSDriver.sys
21:06:45.0843 2244 RadialpointIDSDriver - ok
21:06:45.0875 2244 [ 2457250CA176E7FDE9C3D3B2C94341F0 ] RadialpointIDSEH C:\WINDOWS\system32\drivers\AVGIDSEH.sys
21:06:45.0875 2244 RadialpointIDSEH - ok
21:06:45.0890 2244 [ 0871AAD56C4960E311150FD724E106AE ] RadialpointIDSFilter C:\Program Files\Rogers Online Protection\Rogers Online Protection\AVG\Identity Protection\agent\drivers\AVGIDSFilter.sys
21:06:45.0890 2244 RadialpointIDSFilter - ok
21:06:45.0906 2244 [ 2B949205F1C53B6E4002A3C38327C9A2 ] RadialpointIDSShim C:\Program Files\Rogers Online Protection\Rogers Online Protection\AVG\Identity Protection\agent\drivers\AVGIDSShim.sys
21:06:45.0906 2244 RadialpointIDSShim - ok
21:06:45.0937 2244 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:06:45.0937 2244 RasAcd - ok
21:06:45.0984 2244 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
21:06:46.0000 2244 RasAuto - ok
21:06:46.0015 2244 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:06:46.0015 2244 Rasl2tp - ok
21:06:46.0078 2244 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
21:06:46.0078 2244 RasMan - ok
21:06:46.0093 2244 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:06:46.0093 2244 RasPppoe - ok
21:06:46.0109 2244 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
21:06:46.0109 2244 Raspti - ok
21:06:46.0156 2244 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:06:46.0171 2244 Rdbss - ok
21:06:46.0187 2244 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:06:46.0187 2244 RDPCDD - ok
21:06:46.0234 2244 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
21:06:46.0250 2244 rdpdr - ok
21:06:46.0296 2244 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
21:06:46.0312 2244 RDPWD - ok
21:06:46.0343 2244 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
21:06:46.0343 2244 RDSessMgr - ok
21:06:46.0390 2244 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
21:06:46.0406 2244 redbook - ok
21:06:46.0546 2244 [ 636AAFAD77BEABE192D01E7E74F4A45B ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
21:06:46.0562 2244 RegSrvc - ok
21:06:46.0609 2244 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
21:06:46.0609 2244 RemoteAccess - ok
21:06:46.0656 2244 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
21:06:46.0656 2244 RemoteRegistry - ok
21:06:46.0671 2244 [ D85E3FA9F5B1F29BB4ED185C450D1470 ] rimmptsk C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
21:06:46.0687 2244 rimmptsk - ok
21:06:46.0687 2244 [ DB8EB01C58C9FADA00C70B1775278AE0 ] rimsptsk C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
21:06:46.0687 2244 rimsptsk - ok
21:06:46.0703 2244 [ 6C1F93C0760C9F79A1869D07233DF39D ] rismxdp C:\WINDOWS\system32\DRIVERS\rixdptsk.sys
21:06:46.0703 2244 rismxdp - ok
21:06:46.0718 2244 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
21:06:46.0718 2244 RpcLocator - ok
21:06:46.0750 2244 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\system32\rpcss.dll
21:06:46.0765 2244 RpcSs - ok
21:06:46.0812 2244 [ B7E136986BB3DAC249A00E760281F0A9 ] RPPKT C:\WINDOWS\system32\DRIVERS\rp_pkt32.sys
21:06:46.0812 2244 RPPKT - ok
21:06:46.0828 2244 [ 750D83C39D60964B6BC2B8A75ED7A165 ] RPSKT C:\WINDOWS\system32\DRIVERS\rp_skt32.sys
21:06:46.0828 2244 RPSKT - ok
21:06:46.0937 2244 [ 3FC8401DF4EE3C257569CD50F2FF2F0D ] RP_FWS C:\Program Files\Rogers Online Protection\Rogers Online Protection\Fws.exe
21:06:46.0953 2244 RP_FWS - ok
21:06:47.0000 2244 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
21:06:47.0015 2244 RSVP - ok
21:06:47.0093 2244 [ 38B3B88728B3BA3CE726EB974AAFF772 ] S24EventMonitor C:\Program Files\Intel\WiFi\bin\S24EvMon.exe
21:06:47.0109 2244 S24EventMonitor - ok
21:06:47.0171 2244 [ 96B4494D4734970F47C566E098C4F527 ] s24trans C:\WINDOWS\system32\DRIVERS\s24trans.sys
21:06:47.0171 2244 s24trans - ok
21:06:47.0187 2244 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
21:06:47.0187 2244 SamSs - ok
21:06:47.0234 2244 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
21:06:47.0234 2244 SASDIFSV - ok
21:06:47.0265 2244 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
21:06:47.0265 2244 SASKUTIL - ok
21:06:47.0312 2244 [ 4BEA90F7D79143CC2135E2C5E85C9EB0 ] scan C:\Program Files\Rogers Online Protection\Rogers Online Protection\BitDefender\scan.dll
21:06:47.0328 2244 scan - ok
21:06:47.0343 2244 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
21:06:47.0343 2244 SCardSvr - ok
21:06:47.0406 2244 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
21:06:47.0421 2244 Schedule - ok
21:06:47.0437 2244 [ 8D04819A3CE51B9EB47E5689B44D43C4 ] sdbus C:\WINDOWS\system32\DRIVERS\sdbus.sys
21:06:47.0453 2244 sdbus - ok
21:06:47.0500 2244 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:06:47.0500 2244 Secdrv - ok
21:06:47.0515 2244 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
21:06:47.0531 2244 seclogon - ok
21:06:47.0546 2244 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
21:06:47.0562 2244 SENS - ok
21:06:47.0593 2244 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
21:06:47.0593 2244 serenum - ok
21:06:47.0625 2244 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
21:06:47.0625 2244 Serial - ok
21:06:47.0750 2244 [ 47C274B918DFA3DE8E25E902568CBEA6 ] ServicepointService C:\Program Files\Rogers Online Protection\Rogers Servicepoint Agent\ServicepointService.exe
21:06:47.0750 2244 ServicepointService - ok
21:06:47.0781 2244 [ 0FA803C64DF0914B41F807EA276BF2A6 ] sffdisk C:\WINDOWS\system32\DRIVERS\sffdisk.sys
21:06:47.0781 2244 sffdisk - ok
21:06:47.0796 2244 [ C17C331E435ED8737525C86A7557B3AC ] sffp_sd C:\WINDOWS\system32\DRIVERS\sffp_sd.sys
21:06:47.0796 2244 sffp_sd - ok
21:06:47.0828 2244 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
21:06:47.0828 2244 Sfloppy - ok
21:06:47.0890 2244 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
21:06:47.0890 2244 SharedAccess - ok
21:06:47.0921 2244 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
21:06:47.0921 2244 ShellHWDetection - ok
21:06:47.0937 2244 Simbad - ok
21:06:47.0968 2244 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
21:06:47.0968 2244 sisagp - ok
21:06:47.0984 2244 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
21:06:47.0984 2244 Sparrow - ok
21:06:48.0000 2244 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
21:06:48.0000 2244 splitter - ok
21:06:48.0062 2244 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
21:06:48.0062 2244 Spooler - ok
21:06:48.0468 2244 sprtsvc_dellsupportcenter - ok
21:06:48.0500 2244 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
21:06:48.0500 2244 sr - ok
21:06:48.0546 2244 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
21:06:48.0562 2244 srservice - ok
21:06:48.0625 2244 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
21:06:48.0625 2244 Srv - ok
21:06:48.0640 2244 [ 98625722AD52B40305E74AAA83C93086 ] sscdbhk5 C:\WINDOWS\system32\drivers\sscdbhk5.sys
21:06:48.0640 2244 sscdbhk5 - ok
21:06:48.0671 2244 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
21:06:48.0671 2244 SSDPSRV - ok
21:06:48.0671 2244 [ D79412E3942C8A257253487536D5A994 ] ssrtln C:\WINDOWS\system32\drivers\ssrtln.sys
21:06:48.0687 2244 ssrtln - ok
21:06:48.0718 2244 [ E57B778208C783D8DEBAB320C16A1B82 ] StarOpen C:\WINDOWS\system32\drivers\StarOpen.sys
21:06:48.0718 2244 StarOpen - ok
21:06:48.0812 2244 [ 2A2DC39623ADEF8AB3703AB9FAC4B440 ] STHDA C:\WINDOWS\system32\drivers\sthda.sys
21:06:48.0828 2244 STHDA - ok
21:06:48.0859 2244 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
21:06:48.0875 2244 stisvc - ok
21:06:48.0906 2244 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
21:06:48.0921 2244 swenum - ok
21:06:48.0937 2244 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
21:06:48.0937 2244 swmidi - ok
21:06:48.0953 2244 SwPrv - ok
21:06:48.0984 2244 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
21:06:48.0984 2244 symc810 - ok
21:06:48.0984 2244 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
21:06:48.0984 2244 symc8xx - ok
21:06:49.0062 2244 [ 06B95820DF51502099A8A15C93E87986 ] SymEvent C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
21:06:49.0062 2244 SymEvent - ok
21:06:49.0062 2244 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
21:06:49.0078 2244 sym_hi - ok
21:06:49.0078 2244 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
21:06:49.0078 2244 sym_u3 - ok
21:06:49.0156 2244 [ 35D5B3632E0BCEBE27B391157DE05996 ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
21:06:49.0156 2244 SynTP - ok
21:06:49.0187 2244 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
21:06:49.0187 2244 sysaudio - ok
21:06:49.0250 2244 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
21:06:49.0250 2244 SysmonLog - ok
21:06:49.0281 2244 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
21:06:49.0296 2244 TapiSrv - ok
21:06:49.0359 2244 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:06:49.0375 2244 Tcpip - ok
21:06:49.0421 2244 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
21:06:49.0421 2244 TDPIPE - ok
21:06:49.0453 2244 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
21:06:49.0453 2244 TDTCP - ok
21:06:49.0468 2244 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
21:06:49.0484 2244 TermDD - ok
21:06:49.0515 2244 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
21:06:49.0515 2244 TermService - ok
21:06:49.0625 2244 [ D0177776E11B0B3F272EEBD262A69661 ] tfsnboio C:\WINDOWS\system32\dla\tfsnboio.sys
21:06:49.0625 2244 tfsnboio - ok
21:06:49.0640 2244 [ 599804BC938B8305A5422319774DA871 ] tfsncofs C:\WINDOWS\system32\dla\tfsncofs.sys
21:06:49.0640 2244 tfsncofs - ok
21:06:49.0656 2244 [ A1902C00ADC11C4D83F8E3ED947A6A32 ] tfsndrct C:\WINDOWS\system32\dla\tfsndrct.sys
21:06:49.0656 2244 tfsndrct - ok
21:06:49.0671 2244 [ D8DDB3F2B1BEF15CFF6728D89C042C61 ] tfsndres C:\WINDOWS\system32\dla\tfsndres.sys
21:06:49.0671 2244 tfsndres - ok
21:06:49.0703 2244 [ C4F2DEA75300971CDAEE311007DE138D ] tfsnifs C:\WINDOWS\system32\dla\tfsnifs.sys
21:06:49.0703 2244 tfsnifs - ok
21:06:49.0718 2244 [ 272925BE0EA919F08286D2EE6F102B0F ] tfsnopio C:\WINDOWS\system32\dla\tfsnopio.sys
21:06:49.0718 2244 tfsnopio - ok
21:06:49.0734 2244 [ 7B7D955E5CEBC2FB88B03EF875D52A2F ] tfsnpool C:\WINDOWS\system32\dla\tfsnpool.sys
21:06:49.0734 2244 tfsnpool - ok
21:06:49.0750 2244 [ E3D01263109D800C1967C12C10A0B018 ] tfsnudf C:\WINDOWS\system32\dla\tfsnudf.sys
21:06:49.0750 2244 tfsnudf - ok
21:06:49.0765 2244 [ B9E9C377906E3A65BC74598FFF7F7458 ] tfsnudfa C:\WINDOWS\system32\dla\tfsnudfa.sys
21:06:49.0765 2244 tfsnudfa - ok
21:06:49.0796 2244 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
21:06:49.0812 2244 Themes - ok
21:06:49.0859 2244 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
21:06:49.0859 2244 TlntSvr - ok
21:06:49.0937 2244 [ E319535A8124F25C1C9C5288CACF3101 ] TomTomHOMEService C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
21:06:49.0953 2244 TomTomHOMEService - ok
21:06:49.0984 2244 [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
21:06:49.0984 2244 TosIde - ok
21:06:50.0031 2244 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
21:06:50.0046 2244 TrkWks - ok
21:06:50.0093 2244 [ B16D66A71DE03285E14E9F165B59EDA4 ] Trufos C:\Program Files\Rogers Online Protection\Rogers Online Protection\BitDefender\trufos.sys
21:06:50.0093 2244 Trufos - ok
21:06:50.0140 2244 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
21:06:50.0140 2244 Udfs - ok
21:06:50.0156 2244 UIUSys - ok
21:06:50.0171 2244 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
21:06:50.0171 2244 ultra - ok
21:06:50.0234 2244 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
21:06:50.0234 2244 Update - ok
21:06:50.0281 2244 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
21:06:50.0281 2244 upnphost - ok
21:06:50.0296 2244 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
21:06:50.0296 2244 UPS - ok
21:06:50.0343 2244 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:06:50.0359 2244 usbccgp - ok
21:06:50.0375 2244 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:06:50.0390 2244 usbehci - ok
21:06:50.0437 2244 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:06:50.0437 2244 usbhub - ok
21:06:50.0468 2244 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
21:06:50.0468 2244 usbprint - ok
21:06:50.0484 2244 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
21:06:50.0500 2244 usbscan - ok
21:06:50.0515 2244 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:06:50.0515 2244 USBSTOR - ok
21:06:50.0515 2244 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
21:06:50.0531 2244 usbuhci - ok
21:06:50.0703 2244 [ F56F0E24E35FD91F74A5319E7081A0DB ] VaultClientSRV C:\Program Files\Rogers Backup Manager\VaultClientSRV.exe
21:06:50.0718 2244 VaultClientSRV - ok
21:06:50.0796 2244 [ CF3B0AD3091B2997A1E5D4B6BE87EC07 ] VaultClientUpgrade C:\Program Files\Rogers Backup Manager\VaultClientUpgrade.exe
21:06:50.0796 2244 VaultClientUpgrade - ok
21:06:50.0812 2244 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
21:06:50.0812 2244 VgaSave - ok
21:06:50.0843 2244 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
21:06:50.0843 2244 viaagp - ok
21:06:50.0890 2244 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
21:06:50.0890 2244 ViaIde - ok
21:06:50.0921 2244 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
21:06:50.0921 2244 VolSnap - ok
21:06:50.0968 2244 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
21:06:50.0984 2244 VSS - ok
21:06:51.0000 2244 [ 54AF4B1D5459500EF0937F6D33B1914F ] w32time C:\WINDOWS\system32\w32time.dll
21:06:51.0015 2244 w32time - ok
21:06:51.0140 2244 [ B1F126E7E28877106D60E6FF3998D033 ] w39n51 C:\WINDOWS\system32\DRIVERS\w39n51.sys
21:06:51.0156 2244 w39n51 - ok
21:06:51.0187 2244 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:06:51.0187 2244 Wanarp - ok
21:06:51.0250 2244 [ 0A716C08CB13C3A8F4F51E882DBF7416 ] wanatw C:\WINDOWS\system32\DRIVERS\wanatw4.sys
21:06:51.0250 2244 wanatw - ok
21:06:51.0250 2244 WDICA - ok
21:06:51.0281 2244 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
21:06:51.0281 2244 wdmaud - ok
21:06:51.0296 2244 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
21:06:51.0296 2244 WebClient - ok
21:06:51.0406 2244 [ BA6B6FB242A6BA4068C8B763063BEB63 ] winachsf C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
21:06:51.0406 2244 winachsf - ok
21:06:51.0500 2244 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
21:06:51.0500 2244 winmgmt - ok
21:06:51.0562 2244 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
21:06:51.0562 2244 WmdmPmSN - ok
21:06:51.0640 2244 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi C:\WINDOWS\System32\advapi32.dll
21:06:51.0640 2244 Wmi - ok
21:06:51.0656 2244 [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
21:06:51.0656 2244 WmiAcpi - ok
21:06:51.0687 2244 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
21:06:51.0687 2244 WmiApSrv - ok
21:06:51.0796 2244 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
21:06:51.0796 2244 WMPNetworkSvc - ok
21:06:51.0828 2244 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
21:06:51.0828 2244 WS2IFSL - ok
21:06:51.0875 2244 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
21:06:51.0875 2244 wscsvc - ok
21:06:51.0890 2244 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
21:06:51.0890 2244 wuauserv - ok
21:06:51.0953 2244 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:06:51.0953 2244 WudfPf - ok
21:06:51.0968 2244 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:06:51.0968 2244 WudfRd - ok
21:06:51.0984 2244 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
21:06:52.0000 2244 WudfSvc - ok
21:06:52.0062 2244 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
21:06:52.0062 2244 WZCSVC - ok
21:06:52.0093 2244 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
21:06:52.0109 2244 xmlprov - ok
21:06:52.0187 2244 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
21:06:52.0203 2244 YahooAUService - ok
21:06:52.0218 2244 ================ Scan global ===============================
21:06:52.0265 2244 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
21:06:52.0328 2244 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
21:06:52.0359 2244 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
21:06:52.0390 2244 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
21:06:52.0390 2244 [Global] - ok
21:06:52.0390 2244 ================ Scan MBR ==================================
21:06:52.0421 2244 [ DEA9E81F0228B68C9ADAF84C9B0CF931 ] \Device\Harddisk0\DR0
21:06:52.0796 2244 \Device\Harddisk0\DR0 - ok
21:06:52.0796 2244 ================ Scan VBR ==================================
21:06:52.0796 2244 [ 1A4812A035D001849DAD316F81837AE1 ] \Device\Harddisk0\DR0\Partition1
21:06:52.0796 2244 \Device\Harddisk0\DR0\Partition1 - ok
21:06:52.0796 2244 ============================================================
21:06:52.0796 2244 Scan finished
21:06:52.0796 2244 ============================================================
21:06:52.0812 2548 Detected object count: 0
21:06:52.0812 2548 Actual detected object count: 0

Thank you,
EQUINOX

#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,569 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:24 AM

Posted 21 August 2012 - 08:25 PM

OK, hopefully aswMBR will be good to us.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users