Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Live Security Platinum


  • Please log in to reply
10 replies to this topic

#1 weber2012

weber2012

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:04:23 PM

Posted 02 August 2012 - 10:13 PM

I have read the previous post on this Live Security Platinum but can not get rid of it completely. It has shut down microsoft security essentials and malwarebytes anti malware won't seem to fix it either. All the desktop icons were hidden, I did manage to unhide them, and can not boot the computer into safe mode, or boot it to do a complete recovery. Need some serious help!

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:23 PM

Posted 02 August 2012 - 10:49 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 weber2012

weber2012
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:04:23 PM

Posted 05 August 2012 - 02:36 PM

Here is the TDSSkiller log


14:42:07.0734 0728 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
14:42:08.0562 0728 ============================================================
14:42:08.0562 0728 Current date / time: 2012/08/05 14:42:08.0562
14:42:08.0562 0728 SystemInfo:
14:42:08.0562 0728
14:42:08.0562 0728 OS Version: 5.1.2600 ServicePack: 3.0
14:42:08.0562 0728 Product type: Workstation
14:42:08.0562 0728 ComputerName: OWNER-83C6EB6AB
14:42:08.0562 0728 UserName: Owner
14:42:08.0562 0728 Windows directory: C:\WINDOWS
14:42:08.0562 0728 System windows directory: C:\WINDOWS
14:42:08.0562 0728 Processor architecture: Intel x86
14:42:08.0562 0728 Number of processors: 4
14:42:08.0562 0728 Page size: 0x1000
14:42:08.0562 0728 Boot type: Normal boot
14:42:08.0562 0728 ============================================================
14:42:09.0968 0728 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0CADE00 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
14:42:09.0984 0728 ============================================================
14:42:09.0984 0728 \Device\Harddisk0\DR0:
14:42:09.0984 0728 MBR partitions:
14:42:09.0984 0728 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x74701AC1
14:42:09.0984 0728 ============================================================
14:42:10.0000 0728 C: <-> \Device\Harddisk0\DR0\Partition0
14:42:10.0000 0728 ============================================================
14:42:10.0000 0728 Initialize success
14:42:10.0000 0728 ============================================================
14:43:24.0718 3468 ============================================================
14:43:24.0718 3468 Scan started
14:43:24.0718 3468 Mode: Manual; TDLFS;
14:43:24.0718 3468 ============================================================
14:43:25.0328 3468 Abiosdsk - ok
14:43:25.0328 3468 abp480n5 - ok
14:43:25.0375 3468 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
14:43:25.0375 3468 ACPI - ok
14:43:25.0406 3468 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
14:43:25.0406 3468 ACPIEC - ok
14:43:25.0421 3468 ADM8511 (b05f2367f62552a2de7e3c352b7b9885) C:\WINDOWS\system32\DRIVERS\ADM8511.SYS
14:43:25.0421 3468 ADM8511 - ok
14:43:25.0421 3468 adpu160m - ok
14:43:25.0453 3468 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
14:43:25.0453 3468 aec - ok
14:43:25.0500 3468 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
14:43:25.0500 3468 AFD - ok
14:43:25.0500 3468 Aha154x - ok
14:43:25.0500 3468 aic78u2 - ok
14:43:25.0515 3468 aic78xx - ok
14:43:25.0546 3468 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
14:43:25.0546 3468 Alerter - ok
14:43:25.0562 3468 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
14:43:25.0562 3468 ALG - ok
14:43:25.0562 3468 AliIde - ok
14:43:25.0656 3468 Ambfilt (267fc636801edc5ab28e14036349e3be) C:\WINDOWS\system32\drivers\Ambfilt.sys
14:43:25.0671 3468 Ambfilt - ok
14:43:25.0687 3468 amsint - ok
14:43:25.0687 3468 AppMgmt - ok
14:43:25.0703 3468 asc - ok
14:43:25.0703 3468 asc3350p - ok
14:43:25.0718 3468 asc3550 - ok
14:43:25.0765 3468 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
14:43:25.0765 3468 aspnet_state - ok
14:43:25.0765 3468 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
14:43:25.0765 3468 AsyncMac - ok
14:43:25.0765 3468 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
14:43:25.0765 3468 atapi - ok
14:43:25.0781 3468 Atdisk - ok
14:43:25.0796 3468 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
14:43:25.0796 3468 Atmarpc - ok
14:43:25.0843 3468 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
14:43:25.0843 3468 AudioSrv - ok
14:43:25.0875 3468 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
14:43:25.0875 3468 audstub - ok
14:43:25.0921 3468 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
14:43:25.0921 3468 Beep - ok
14:43:25.0953 3468 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
14:43:25.0953 3468 Browser - ok
14:43:25.0984 3468 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
14:43:25.0984 3468 cbidf2k - ok
14:43:25.0984 3468 cd20xrnt - ok
14:43:26.0031 3468 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
14:43:26.0031 3468 Cdaudio - ok
14:43:26.0031 3468 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
14:43:26.0031 3468 Cdfs - ok
14:43:26.0031 3468 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
14:43:26.0046 3468 Cdrom - ok
14:43:26.0046 3468 Changer - ok
14:43:26.0062 3468 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
14:43:26.0062 3468 CiSvc - ok
14:43:26.0078 3468 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
14:43:26.0078 3468 ClipSrv - ok
14:43:26.0109 3468 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:43:26.0109 3468 clr_optimization_v2.0.50727_32 - ok
14:43:26.0109 3468 CmdIde - ok
14:43:26.0109 3468 COMSysApp - ok
14:43:26.0125 3468 Cpqarray - ok
14:43:26.0156 3468 Creative Service for CDROM Access (3c8b6609712f4ff78e521f6dcfc4032b) C:\WINDOWS\system32\CTsvcCDA.exe
14:43:26.0156 3468 Creative Service for CDROM Access - ok
14:43:26.0171 3468 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
14:43:26.0171 3468 CryptSvc - ok
14:43:26.0203 3468 ctsfm2k (8db84de3aab34a8b4c2f644eff41cd76) C:\WINDOWS\system32\DRIVERS\ctsfm2k.sys
14:43:26.0203 3468 ctsfm2k - ok
14:43:26.0203 3468 dac2w2k - ok
14:43:26.0203 3468 dac960nt - ok
14:43:26.0265 3468 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
14:43:26.0265 3468 DcomLaunch - ok
14:43:26.0281 3468 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
14:43:26.0281 3468 Dhcp - ok
14:43:26.0281 3468 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
14:43:26.0296 3468 Disk - ok
14:43:26.0296 3468 dmadmin - ok
14:43:26.0343 3468 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
14:43:26.0343 3468 dmboot - ok
14:43:26.0359 3468 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
14:43:26.0359 3468 dmio - ok
14:43:26.0375 3468 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
14:43:26.0375 3468 dmload - ok
14:43:26.0390 3468 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
14:43:26.0390 3468 dmserver - ok
14:43:26.0421 3468 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
14:43:26.0421 3468 DMusic - ok
14:43:26.0437 3468 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
14:43:26.0437 3468 Dnscache - ok
14:43:26.0468 3468 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
14:43:26.0468 3468 Dot3svc - ok
14:43:26.0468 3468 dpti2o - ok
14:43:26.0468 3468 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
14:43:26.0468 3468 drmkaud - ok
14:43:26.0500 3468 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
14:43:26.0500 3468 EapHost - ok
14:43:26.0515 3468 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
14:43:26.0515 3468 ERSvc - ok
14:43:26.0546 3468 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
14:43:26.0546 3468 Eventlog - ok
14:43:26.0578 3468 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\system32\es.dll
14:43:26.0578 3468 EventSystem - ok
14:43:26.0578 3468 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
14:43:26.0578 3468 Fastfat - ok
14:43:26.0609 3468 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
14:43:26.0609 3468 FastUserSwitchingCompatibility - ok
14:43:26.0625 3468 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
14:43:26.0625 3468 Fdc - ok
14:43:26.0640 3468 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
14:43:26.0640 3468 Fips - ok
14:43:26.0640 3468 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
14:43:26.0640 3468 Flpydisk - ok
14:43:26.0656 3468 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
14:43:26.0656 3468 FltMgr - ok
14:43:26.0750 3468 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
14:43:26.0750 3468 FontCache3.0.0.0 - ok
14:43:26.0781 3468 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
14:43:26.0781 3468 Fs_Rec - ok
14:43:26.0781 3468 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
14:43:26.0796 3468 Ftdisk - ok
14:43:26.0796 3468 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
14:43:26.0796 3468 Gpc - ok
14:43:26.0812 3468 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
14:43:26.0812 3468 HDAudBus - ok
14:43:26.0875 3468 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
14:43:26.0875 3468 helpsvc - ok
14:43:26.0890 3468 HidServ (deb04da35cc871b6d309b77e1443c796) C:\WINDOWS\System32\hidserv.dll
14:43:26.0890 3468 HidServ - ok
14:43:26.0890 3468 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
14:43:26.0890 3468 hidusb - ok
14:43:26.0906 3468 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
14:43:26.0906 3468 hkmsvc - ok
14:43:26.0906 3468 hpn - ok
14:43:27.0046 3468 hpqcxs08 (f50f7984fdd151edd8a70a8dbd9e2a44) C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
14:43:27.0046 3468 hpqcxs08 - ok
14:43:27.0062 3468 hpqddsvc (df446ba625cc441617843e87798ce048) C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
14:43:27.0062 3468 hpqddsvc - ok
14:43:27.0093 3468 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
14:43:27.0093 3468 HPZid412 - ok
14:43:27.0109 3468 HPZipr12 (89f41658929393487b6b7d13c8528ce3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
14:43:27.0109 3468 HPZipr12 - ok
14:43:27.0125 3468 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
14:43:27.0125 3468 HPZius12 - ok
14:43:27.0156 3468 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
14:43:27.0156 3468 HTTP - ok
14:43:27.0187 3468 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
14:43:27.0187 3468 HTTPFilter - ok
14:43:27.0187 3468 i2omgmt - ok
14:43:27.0187 3468 i2omp - ok
14:43:27.0203 3468 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
14:43:27.0203 3468 i8042prt - ok
14:43:27.0406 3468 ialm (3b743262b6456167888d15f1121b3bf7) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
14:43:27.0437 3468 ialm - ok
14:43:27.0562 3468 idsvc (c01ac32dc5c03076cfb852cb5da5229c) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
14:43:27.0562 3468 idsvc - ok
14:43:27.0609 3468 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
14:43:27.0609 3468 Imapi - ok
14:43:27.0656 3468 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe
14:43:27.0656 3468 ImapiService - ok
14:43:27.0656 3468 ini910u - ok
14:43:27.0875 3468 IntcAzAudAddService (3af5d5cfd4dafa5dca3705813fd19b4b) C:\WINDOWS\system32\drivers\RtkHDAud.sys
14:43:27.0921 3468 IntcAzAudAddService - ok
14:43:27.0937 3468 IntelIde - ok
14:43:27.0953 3468 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
14:43:27.0953 3468 intelppm - ok
14:43:27.0968 3468 ip100xp (bb62c1d687488c8e24d827f1c5c3f435) C:\WINDOWS\system32\DRIVERS\ipfnd51.sys
14:43:27.0968 3468 ip100xp - ok
14:43:27.0968 3468 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
14:43:27.0968 3468 Ip6Fw - ok
14:43:28.0000 3468 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
14:43:28.0000 3468 IpFilterDriver - ok
14:43:28.0000 3468 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
14:43:28.0000 3468 IpInIp - ok
14:43:28.0000 3468 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
14:43:28.0000 3468 IpNat - ok
14:43:28.0015 3468 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
14:43:28.0015 3468 IPSec - ok
14:43:28.0015 3468 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
14:43:28.0015 3468 IRENUM - ok
14:43:28.0046 3468 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
14:43:28.0046 3468 isapnp - ok
14:43:28.0046 3468 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
14:43:28.0046 3468 Kbdclass - ok
14:43:28.0062 3468 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
14:43:28.0062 3468 kbdhid - ok
14:43:28.0078 3468 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
14:43:28.0078 3468 kmixer - ok
14:43:28.0078 3468 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
14:43:28.0078 3468 KSecDD - ok
14:43:28.0109 3468 lanmanserver (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
14:43:28.0109 3468 lanmanserver - ok
14:43:28.0125 3468 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
14:43:28.0125 3468 lanmanworkstation - ok
14:43:28.0125 3468 lbrtfdc - ok
14:43:28.0187 3468 LightScribeService (71c6a95a5f0ccc87298c4dd0f2c3635a) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
14:43:28.0187 3468 LightScribeService - ok
14:43:28.0218 3468 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
14:43:28.0218 3468 LmHosts - ok
14:43:28.0234 3468 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
14:43:28.0234 3468 Messenger - ok
14:43:28.0234 3468 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
14:43:28.0234 3468 mnmdd - ok
14:43:28.0265 3468 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe
14:43:28.0265 3468 mnmsrvc - ok
14:43:28.0265 3468 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
14:43:28.0265 3468 Modem - ok
14:43:28.0312 3468 Monfilt (c7d9f9717916b34c1b00dd4834af485c) C:\WINDOWS\system32\drivers\Monfilt.sys
14:43:28.0328 3468 Monfilt - ok
14:43:28.0328 3468 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
14:43:28.0328 3468 Mouclass - ok
14:43:28.0343 3468 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
14:43:28.0343 3468 mouhid - ok
14:43:28.0343 3468 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
14:43:28.0343 3468 MountMgr - ok
14:43:28.0375 3468 MpFilter (d993bea500e7382dc4e760bf4f35efcb) C:\WINDOWS\system32\DRIVERS\MpFilter.sys
14:43:28.0375 3468 MpFilter - ok
14:43:28.0375 3468 mraid35x - ok
14:43:28.0406 3468 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
14:43:28.0406 3468 MRxDAV - ok
14:43:28.0437 3468 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
14:43:28.0453 3468 MRxSmb - ok
14:43:28.0468 3468 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe
14:43:28.0468 3468 MSDTC - ok
14:43:28.0468 3468 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
14:43:28.0468 3468 Msfs - ok
14:43:28.0468 3468 MSIServer - ok
14:43:28.0484 3468 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
14:43:28.0484 3468 MSKSSRV - ok
14:43:28.0484 3468 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
14:43:28.0484 3468 MSPCLOCK - ok
14:43:28.0500 3468 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
14:43:28.0500 3468 MSPQM - ok
14:43:28.0515 3468 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
14:43:28.0515 3468 mssmbios - ok
14:43:28.0531 3468 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
14:43:28.0531 3468 Mup - ok
14:43:28.0562 3468 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
14:43:28.0562 3468 napagent - ok
14:43:28.0578 3468 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
14:43:28.0578 3468 NDIS - ok
14:43:28.0593 3468 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
14:43:28.0593 3468 NdisTapi - ok
14:43:28.0609 3468 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
14:43:28.0609 3468 Ndisuio - ok
14:43:28.0609 3468 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
14:43:28.0609 3468 NdisWan - ok
14:43:28.0640 3468 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
14:43:28.0640 3468 NDProxy - ok
14:43:28.0671 3468 Net Driver HPZ12 (a081cb6fb9a12668f233eb5414be3a0e) C:\WINDOWS\system32\HPZinw12.dll
14:43:28.0671 3468 Net Driver HPZ12 - ok
14:43:28.0687 3468 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
14:43:28.0687 3468 NetBIOS - ok
14:43:28.0687 3468 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
14:43:28.0687 3468 NetBT - ok
14:43:28.0703 3468 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
14:43:28.0718 3468 NetDDE - ok
14:43:28.0718 3468 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
14:43:28.0718 3468 NetDDEdsdm - ok
14:43:28.0750 3468 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
14:43:28.0750 3468 Netlogon - ok
14:43:28.0796 3468 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
14:43:28.0796 3468 Netman - ok
14:43:28.0890 3468 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:43:28.0890 3468 NetTcpPortSharing - ok
14:43:28.0921 3468 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
14:43:28.0937 3468 Nla - ok
14:43:28.0937 3468 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
14:43:28.0937 3468 Npfs - ok
14:43:28.0968 3468 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
14:43:28.0968 3468 Ntfs - ok
14:43:28.0968 3468 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
14:43:28.0968 3468 NtLmSsp - ok
14:43:29.0015 3468 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
14:43:29.0015 3468 NtmsSvc - ok
14:43:29.0031 3468 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
14:43:29.0031 3468 Null - ok
14:43:29.0421 3468 nv (0dc79b60cedc3a8854c27b3c6e4b3414) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
14:43:29.0500 3468 nv - ok
14:43:29.0640 3468 NVHDA (8eb410a64c86d51007687ee00bc2f912) C:\WINDOWS\system32\drivers\nvhda32.sys
14:43:29.0640 3468 NVHDA - ok
14:43:29.0671 3468 NVSvc (971b4344aba9b79ed0e9d0bb2a5283c1) C:\WINDOWS\system32\nvsvc32.exe
14:43:29.0671 3468 NVSvc - ok
14:43:29.0843 3468 nvUpdatusService (4cde6d8e0a07dce9e568f58a5dc8086c) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
14:43:29.0859 3468 nvUpdatusService - ok
14:43:29.0906 3468 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
14:43:29.0906 3468 NwlnkFlt - ok
14:43:29.0921 3468 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
14:43:29.0921 3468 NwlnkFwd - ok
14:43:29.0937 3468 ossrv (103a9b117a7d9903111955cdafe65ac6) C:\WINDOWS\system32\DRIVERS\ctoss2k.sys
14:43:29.0937 3468 ossrv - ok
14:43:29.0968 3468 P17 (df886ffed69aead0cf608b89b18c3f6f) C:\WINDOWS\system32\drivers\P17.sys
14:43:29.0984 3468 P17 - ok
14:43:30.0000 3468 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
14:43:30.0000 3468 Parport - ok
14:43:30.0000 3468 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
14:43:30.0000 3468 PartMgr - ok
14:43:30.0015 3468 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
14:43:30.0015 3468 ParVdm - ok
14:43:30.0015 3468 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
14:43:30.0015 3468 PCI - ok
14:43:30.0031 3468 PCIDump - ok
14:43:30.0046 3468 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
14:43:30.0046 3468 PCIIde - ok
14:43:30.0078 3468 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
14:43:30.0078 3468 Pcmcia - ok
14:43:30.0078 3468 PDCOMP - ok
14:43:30.0078 3468 PDFRAME - ok
14:43:30.0093 3468 PDRELI - ok
14:43:30.0093 3468 PDRFRAME - ok
14:43:30.0109 3468 perc2 - ok
14:43:30.0109 3468 perc2hib - ok
14:43:30.0187 3468 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
14:43:30.0187 3468 PlugPlay - ok
14:43:30.0218 3468 Pml Driver HPZ12 (65bc271f337637731d3c71455ae1f476) C:\WINDOWS\system32\HPZipm12.dll
14:43:30.0218 3468 Pml Driver HPZ12 - ok
14:43:30.0234 3468 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
14:43:30.0234 3468 PolicyAgent - ok
14:43:30.0250 3468 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
14:43:30.0250 3468 PptpMiniport - ok
14:43:30.0250 3468 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
14:43:30.0250 3468 ProtectedStorage - ok
14:43:30.0265 3468 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
14:43:30.0265 3468 PSched - ok
14:43:30.0281 3468 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
14:43:30.0281 3468 Ptilink - ok
14:43:30.0281 3468 ql1080 - ok
14:43:30.0281 3468 Ql10wnt - ok
14:43:30.0296 3468 ql12160 - ok
14:43:30.0296 3468 ql1240 - ok
14:43:30.0312 3468 ql1280 - ok
14:43:30.0343 3468 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
14:43:30.0343 3468 RasAcd - ok
14:43:30.0375 3468 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
14:43:30.0375 3468 RasAuto - ok
14:43:30.0375 3468 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
14:43:30.0375 3468 Rasl2tp - ok
14:43:30.0406 3468 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
14:43:30.0406 3468 RasMan - ok
14:43:30.0406 3468 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
14:43:30.0406 3468 RasPppoe - ok
14:43:30.0406 3468 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
14:43:30.0421 3468 Raspti - ok
14:43:30.0437 3468 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
14:43:30.0437 3468 Rdbss - ok
14:43:30.0437 3468 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
14:43:30.0437 3468 RDPCDD - ok
14:43:30.0468 3468 RDPWD (6589db6e5969f8eee594cf71171c5028) C:\WINDOWS\system32\drivers\RDPWD.sys
14:43:30.0468 3468 RDPWD - ok
14:43:30.0500 3468 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
14:43:30.0500 3468 RDSessMgr - ok
14:43:30.0515 3468 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
14:43:30.0515 3468 RemoteAccess - ok
14:43:30.0515 3468 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe
14:43:30.0531 3468 RpcLocator - ok
14:43:30.0546 3468 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
14:43:30.0562 3468 RpcSs - ok
14:43:30.0578 3468 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
14:43:30.0578 3468 RSVP - ok
14:43:30.0609 3468 RTLE8023xp (41fa2d39c227073a448aa7000b636280) C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
14:43:30.0609 3468 RTLE8023xp - ok
14:43:30.0609 3468 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
14:43:30.0609 3468 SamSs - ok
14:43:30.0625 3468 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
14:43:30.0640 3468 SCardSvr - ok
14:43:30.0640 3468 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
14:43:30.0656 3468 Schedule - ok
14:43:30.0671 3468 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
14:43:30.0671 3468 Secdrv - ok
14:43:30.0671 3468 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
14:43:30.0671 3468 seclogon - ok
14:43:30.0671 3468 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
14:43:30.0687 3468 SENS - ok
14:43:30.0687 3468 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
14:43:30.0687 3468 serenum - ok
14:43:30.0687 3468 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
14:43:30.0687 3468 Serial - ok
14:43:30.0734 3468 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
14:43:30.0734 3468 Sfloppy - ok
14:43:30.0781 3468 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
14:43:30.0781 3468 ShellHWDetection - ok
14:43:30.0781 3468 Simbad - ok
14:43:30.0781 3468 Sparrow - ok
14:43:30.0796 3468 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
14:43:30.0796 3468 splitter - ok
14:43:30.0812 3468 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
14:43:30.0812 3468 Spooler - ok
14:43:30.0843 3468 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
14:43:30.0843 3468 sr - ok
14:43:30.0843 3468 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll
14:43:30.0859 3468 srservice - ok
14:43:30.0890 3468 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
14:43:30.0890 3468 Srv - ok
14:43:30.0906 3468 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
14:43:30.0906 3468 SSDPSRV - ok
14:43:30.0921 3468 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
14:43:30.0937 3468 stisvc - ok
14:43:30.0937 3468 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
14:43:30.0937 3468 swenum - ok
14:43:31.0015 3468 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
14:43:31.0015 3468 SwitchBoard - ok
14:43:31.0015 3468 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
14:43:31.0015 3468 swmidi - ok
14:43:31.0015 3468 SwPrv - ok
14:43:31.0015 3468 symc810 - ok
14:43:31.0015 3468 symc8xx - ok
14:43:31.0031 3468 sym_hi - ok
14:43:31.0031 3468 sym_u3 - ok
14:43:31.0031 3468 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
14:43:31.0031 3468 sysaudio - ok
14:43:31.0046 3468 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
14:43:31.0046 3468 SysmonLog - ok
14:43:31.0062 3468 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
14:43:31.0062 3468 TapiSrv - ok
14:43:31.0109 3468 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
14:43:31.0109 3468 Tcpip - ok
14:43:31.0125 3468 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
14:43:31.0125 3468 TDPIPE - ok
14:43:31.0125 3468 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
14:43:31.0125 3468 TDTCP - ok
14:43:31.0140 3468 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
14:43:31.0140 3468 TermDD - ok
14:43:31.0156 3468 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
14:43:31.0156 3468 TermService - ok
14:43:31.0171 3468 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
14:43:31.0171 3468 Themes - ok
14:43:31.0171 3468 TosIde - ok
14:43:31.0171 3468 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
14:43:31.0171 3468 TrkWks - ok
14:43:31.0187 3468 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
14:43:31.0187 3468 Udfs - ok
14:43:31.0187 3468 ultra - ok
14:43:31.0203 3468 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
14:43:31.0218 3468 Update - ok
14:43:31.0234 3468 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
14:43:31.0234 3468 upnphost - ok
14:43:31.0234 3468 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
14:43:31.0234 3468 UPS - ok
14:43:31.0250 3468 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
14:43:31.0250 3468 usbccgp - ok
14:43:31.0265 3468 USBCCID (6b5e4d5e6e5ecd6acd14aed59768ce5c) C:\WINDOWS\system32\DRIVERS\usbccid.sys
14:43:31.0265 3468 USBCCID - ok
14:43:31.0281 3468 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
14:43:31.0281 3468 usbehci - ok
14:43:31.0312 3468 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
14:43:31.0312 3468 usbhub - ok
14:43:31.0328 3468 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
14:43:31.0328 3468 usbprint - ok
14:43:31.0359 3468 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
14:43:31.0359 3468 usbscan - ok
14:43:31.0359 3468 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
14:43:31.0359 3468 USBSTOR - ok
14:43:31.0406 3468 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
14:43:31.0406 3468 usbuhci - ok
14:43:31.0406 3468 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
14:43:31.0406 3468 VgaSave - ok
14:43:31.0421 3468 ViaIde - ok
14:43:31.0421 3468 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
14:43:31.0421 3468 VolSnap - ok
14:43:31.0453 3468 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
14:43:31.0453 3468 VSS - ok
14:43:31.0484 3468 W32Time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll
14:43:31.0484 3468 W32Time - ok
14:43:31.0500 3468 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
14:43:31.0500 3468 Wanarp - ok
14:43:31.0500 3468 WDICA - ok
14:43:31.0531 3468 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
14:43:31.0531 3468 wdmaud - ok
14:43:31.0546 3468 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
14:43:31.0546 3468 WebClient - ok
14:43:31.0625 3468 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
14:43:31.0625 3468 winmgmt - ok
14:43:31.0703 3468 WinRM (18f347402da544a780949b8fdf83351b) C:\WINDOWS\system32\WsmSvc.dll
14:43:31.0718 3468 WinRM - ok
14:43:31.0750 3468 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll
14:43:31.0750 3468 WmdmPmSN - ok
14:43:31.0765 3468 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe
14:43:31.0765 3468 WmiApSrv - ok
14:43:31.0875 3468 WMPNetworkSvc (f74e3d9a7fa9556c3bbb14d4e5e63d3b) C:\Program Files\Windows Media Player\WMPNetwk.exe
14:43:31.0875 3468 WMPNetworkSvc - ok
14:43:31.0890 3468 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
14:43:31.0890 3468 WpdUsb - ok
14:43:31.0906 3468 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
14:43:31.0906 3468 WudfPf - ok
14:43:31.0906 3468 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
14:43:31.0906 3468 WudfRd - ok
14:43:31.0921 3468 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
14:43:31.0921 3468 WudfSvc - ok
14:43:31.0953 3468 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
14:43:31.0953 3468 WZCSVC - ok
14:43:32.0000 3468 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
14:43:32.0000 3468 xmlprov - ok
14:43:32.0015 3468 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
14:43:32.0343 3468 \Device\Harddisk0\DR0 - ok
14:43:32.0343 3468 Boot (0x1200) (a51bf071b7bffc1d33651d6bb232a53a) \Device\Harddisk0\DR0\Partition0
14:43:32.0343 3468 \Device\Harddisk0\DR0\Partition0 - ok
14:43:32.0343 3468 ============================================================
14:43:32.0343 3468 Scan finished
14:43:32.0343 3468 ============================================================
14:43:32.0343 3460 Detected object count: 0
14:43:32.0343 3460 Actual detected object count: 0



here is the aswMBR log
14:42:07.0734 0728 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
14:42:08.0562 0728 ============================================================
14:42:08.0562 0728 Current date / time: 2012/08/05 14:42:08.0562
14:42:08.0562 0728 SystemInfo:
14:42:08.0562 0728
14:42:08.0562 0728 OS Version: 5.1.2600 ServicePack: 3.0
14:42:08.0562 0728 Product type: Workstation
14:42:08.0562 0728 ComputerName: OWNER-83C6EB6AB
14:42:08.0562 0728 UserName: Owner
14:42:08.0562 0728 Windows directory: C:\WINDOWS
14:42:08.0562 0728 System windows directory: C:\WINDOWS
14:42:08.0562 0728 Processor architecture: Intel x86
14:42:08.0562 0728 Number of processors: 4
14:42:08.0562 0728 Page size: 0x1000
14:42:08.0562 0728 Boot type: Normal boot
14:42:08.0562 0728 ============================================================
14:42:09.0968 0728 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0CADE00 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
14:42:09.0984 0728 ============================================================
14:42:09.0984 0728 \Device\Harddisk0\DR0:
14:42:09.0984 0728 MBR partitions:
14:42:09.0984 0728 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x74701AC1
14:42:09.0984 0728 ============================================================
14:42:10.0000 0728 C: <-> \Device\Harddisk0\DR0\Partition0
14:42:10.0000 0728 ============================================================
14:42:10.0000 0728 Initialize success
14:42:10.0000 0728 ============================================================
14:43:24.0718 3468 ============================================================
14:43:24.0718 3468 Scan started
14:43:24.0718 3468 Mode: Manual; TDLFS;
14:43:24.0718 3468 ============================================================
14:43:25.0328 3468 Abiosdsk - ok
14:43:25.0328 3468 abp480n5 - ok
14:43:25.0375 3468 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
14:43:25.0375 3468 ACPI - ok
14:43:25.0406 3468 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
14:43:25.0406 3468 ACPIEC - ok
14:43:25.0421 3468 ADM8511 (b05f2367f62552a2de7e3c352b7b9885) C:\WINDOWS\system32\DRIVERS\ADM8511.SYS
14:43:25.0421 3468 ADM8511 - ok
14:43:25.0421 3468 adpu160m - ok
14:43:25.0453 3468 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
14:43:25.0453 3468 aec - ok
14:43:25.0500 3468 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
14:43:25.0500 3468 AFD - ok
14:43:25.0500 3468 Aha154x - ok
14:43:25.0500 3468 aic78u2 - ok
14:43:25.0515 3468 aic78xx - ok
14:43:25.0546 3468 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
14:43:25.0546 3468 Alerter - ok
14:43:25.0562 3468 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
14:43:25.0562 3468 ALG - ok
14:43:25.0562 3468 AliIde - ok
14:43:25.0656 3468 Ambfilt (267fc636801edc5ab28e14036349e3be) C:\WINDOWS\system32\drivers\Ambfilt.sys
14:43:25.0671 3468 Ambfilt - ok
14:43:25.0687 3468 amsint - ok
14:43:25.0687 3468 AppMgmt - ok
14:43:25.0703 3468 asc - ok
14:43:25.0703 3468 asc3350p - ok
14:43:25.0718 3468 asc3550 - ok
14:43:25.0765 3468 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
14:43:25.0765 3468 aspnet_state - ok
14:43:25.0765 3468 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
14:43:25.0765 3468 AsyncMac - ok
14:43:25.0765 3468 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
14:43:25.0765 3468 atapi - ok
14:43:25.0781 3468 Atdisk - ok
14:43:25.0796 3468 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
14:43:25.0796 3468 Atmarpc - ok
14:43:25.0843 3468 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
14:43:25.0843 3468 AudioSrv - ok
14:43:25.0875 3468 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
14:43:25.0875 3468 audstub - ok
14:43:25.0921 3468 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
14:43:25.0921 3468 Beep - ok
14:43:25.0953 3468 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
14:43:25.0953 3468 Browser - ok
14:43:25.0984 3468 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
14:43:25.0984 3468 cbidf2k - ok
14:43:25.0984 3468 cd20xrnt - ok
14:43:26.0031 3468 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
14:43:26.0031 3468 Cdaudio - ok
14:43:26.0031 3468 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
14:43:26.0031 3468 Cdfs - ok
14:43:26.0031 3468 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
14:43:26.0046 3468 Cdrom - ok
14:43:26.0046 3468 Changer - ok
14:43:26.0062 3468 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
14:43:26.0062 3468 CiSvc - ok
14:43:26.0078 3468 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
14:43:26.0078 3468 ClipSrv - ok
14:43:26.0109 3468 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:43:26.0109 3468 clr_optimization_v2.0.50727_32 - ok
14:43:26.0109 3468 CmdIde - ok
14:43:26.0109 3468 COMSysApp - ok
14:43:26.0125 3468 Cpqarray - ok
14:43:26.0156 3468 Creative Service for CDROM Access (3c8b6609712f4ff78e521f6dcfc4032b) C:\WINDOWS\system32\CTsvcCDA.exe
14:43:26.0156 3468 Creative Service for CDROM Access - ok
14:43:26.0171 3468 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
14:43:26.0171 3468 CryptSvc - ok
14:43:26.0203 3468 ctsfm2k (8db84de3aab34a8b4c2f644eff41cd76) C:\WINDOWS\system32\DRIVERS\ctsfm2k.sys
14:43:26.0203 3468 ctsfm2k - ok
14:43:26.0203 3468 dac2w2k - ok
14:43:26.0203 3468 dac960nt - ok
14:43:26.0265 3468 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
14:43:26.0265 3468 DcomLaunch - ok
14:43:26.0281 3468 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
14:43:26.0281 3468 Dhcp - ok
14:43:26.0281 3468 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
14:43:26.0296 3468 Disk - ok
14:43:26.0296 3468 dmadmin - ok
14:43:26.0343 3468 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
14:43:26.0343 3468 dmboot - ok
14:43:26.0359 3468 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
14:43:26.0359 3468 dmio - ok
14:43:26.0375 3468 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
14:43:26.0375 3468 dmload - ok
14:43:26.0390 3468 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
14:43:26.0390 3468 dmserver - ok
14:43:26.0421 3468 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
14:43:26.0421 3468 DMusic - ok
14:43:26.0437 3468 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
14:43:26.0437 3468 Dnscache - ok
14:43:26.0468 3468 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
14:43:26.0468 3468 Dot3svc - ok
14:43:26.0468 3468 dpti2o - ok
14:43:26.0468 3468 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
14:43:26.0468 3468 drmkaud - ok
14:43:26.0500 3468 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
14:43:26.0500 3468 EapHost - ok
14:43:26.0515 3468 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
14:43:26.0515 3468 ERSvc - ok
14:43:26.0546 3468 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
14:43:26.0546 3468 Eventlog - ok
14:43:26.0578 3468 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\system32\es.dll
14:43:26.0578 3468 EventSystem - ok
14:43:26.0578 3468 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
14:43:26.0578 3468 Fastfat - ok
14:43:26.0609 3468 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
14:43:26.0609 3468 FastUserSwitchingCompatibility - ok
14:43:26.0625 3468 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
14:43:26.0625 3468 Fdc - ok
14:43:26.0640 3468 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
14:43:26.0640 3468 Fips - ok
14:43:26.0640 3468 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
14:43:26.0640 3468 Flpydisk - ok
14:43:26.0656 3468 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
14:43:26.0656 3468 FltMgr - ok
14:43:26.0750 3468 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
14:43:26.0750 3468 FontCache3.0.0.0 - ok
14:43:26.0781 3468 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
14:43:26.0781 3468 Fs_Rec - ok
14:43:26.0781 3468 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
14:43:26.0796 3468 Ftdisk - ok
14:43:26.0796 3468 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
14:43:26.0796 3468 Gpc - ok
14:43:26.0812 3468 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
14:43:26.0812 3468 HDAudBus - ok
14:43:26.0875 3468 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
14:43:26.0875 3468 helpsvc - ok
14:43:26.0890 3468 HidServ (deb04da35cc871b6d309b77e1443c796) C:\WINDOWS\System32\hidserv.dll
14:43:26.0890 3468 HidServ - ok
14:43:26.0890 3468 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
14:43:26.0890 3468 hidusb - ok
14:43:26.0906 3468 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
14:43:26.0906 3468 hkmsvc - ok
14:43:26.0906 3468 hpn - ok
14:43:27.0046 3468 hpqcxs08 (f50f7984fdd151edd8a70a8dbd9e2a44) C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
14:43:27.0046 3468 hpqcxs08 - ok
14:43:27.0062 3468 hpqddsvc (df446ba625cc441617843e87798ce048) C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
14:43:27.0062 3468 hpqddsvc - ok
14:43:27.0093 3468 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
14:43:27.0093 3468 HPZid412 - ok
14:43:27.0109 3468 HPZipr12 (89f41658929393487b6b7d13c8528ce3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
14:43:27.0109 3468 HPZipr12 - ok
14:43:27.0125 3468 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
14:43:27.0125 3468 HPZius12 - ok
14:43:27.0156 3468 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
14:43:27.0156 3468 HTTP - ok
14:43:27.0187 3468 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
14:43:27.0187 3468 HTTPFilter - ok
14:43:27.0187 3468 i2omgmt - ok
14:43:27.0187 3468 i2omp - ok
14:43:27.0203 3468 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
14:43:27.0203 3468 i8042prt - ok
14:43:27.0406 3468 ialm (3b743262b6456167888d15f1121b3bf7) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
14:43:27.0437 3468 ialm - ok
14:43:27.0562 3468 idsvc (c01ac32dc5c03076cfb852cb5da5229c) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
14:43:27.0562 3468 idsvc - ok
14:43:27.0609 3468 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
14:43:27.0609 3468 Imapi - ok
14:43:27.0656 3468 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe
14:43:27.0656 3468 ImapiService - ok
14:43:27.0656 3468 ini910u - ok
14:43:27.0875 3468 IntcAzAudAddService (3af5d5cfd4dafa5dca3705813fd19b4b) C:\WINDOWS\system32\drivers\RtkHDAud.sys
14:43:27.0921 3468 IntcAzAudAddService - ok
14:43:27.0937 3468 IntelIde - ok
14:43:27.0953 3468 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
14:43:27.0953 3468 intelppm - ok
14:43:27.0968 3468 ip100xp (bb62c1d687488c8e24d827f1c5c3f435) C:\WINDOWS\system32\DRIVERS\ipfnd51.sys
14:43:27.0968 3468 ip100xp - ok
14:43:27.0968 3468 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
14:43:27.0968 3468 Ip6Fw - ok
14:43:28.0000 3468 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
14:43:28.0000 3468 IpFilterDriver - ok
14:43:28.0000 3468 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
14:43:28.0000 3468 IpInIp - ok
14:43:28.0000 3468 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
14:43:28.0000 3468 IpNat - ok
14:43:28.0015 3468 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
14:43:28.0015 3468 IPSec - ok
14:43:28.0015 3468 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
14:43:28.0015 3468 IRENUM - ok
14:43:28.0046 3468 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
14:43:28.0046 3468 isapnp - ok
14:43:28.0046 3468 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
14:43:28.0046 3468 Kbdclass - ok
14:43:28.0062 3468 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
14:43:28.0062 3468 kbdhid - ok
14:43:28.0078 3468 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
14:43:28.0078 3468 kmixer - ok
14:43:28.0078 3468 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
14:43:28.0078 3468 KSecDD - ok
14:43:28.0109 3468 lanmanserver (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
14:43:28.0109 3468 lanmanserver - ok
14:43:28.0125 3468 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
14:43:28.0125 3468 lanmanworkstation - ok
14:43:28.0125 3468 lbrtfdc - ok
14:43:28.0187 3468 LightScribeService (71c6a95a5f0ccc87298c4dd0f2c3635a) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
14:43:28.0187 3468 LightScribeService - ok
14:43:28.0218 3468 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
14:43:28.0218 3468 LmHosts - ok
14:43:28.0234 3468 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
14:43:28.0234 3468 Messenger - ok
14:43:28.0234 3468 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
14:43:28.0234 3468 mnmdd - ok
14:43:28.0265 3468 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe
14:43:28.0265 3468 mnmsrvc - ok
14:43:28.0265 3468 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
14:43:28.0265 3468 Modem - ok
14:43:28.0312 3468 Monfilt (c7d9f9717916b34c1b00dd4834af485c) C:\WINDOWS\system32\drivers\Monfilt.sys
14:43:28.0328 3468 Monfilt - ok
14:43:28.0328 3468 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
14:43:28.0328 3468 Mouclass - ok
14:43:28.0343 3468 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
14:43:28.0343 3468 mouhid - ok
14:43:28.0343 3468 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
14:43:28.0343 3468 MountMgr - ok
14:43:28.0375 3468 MpFilter (d993bea500e7382dc4e760bf4f35efcb) C:\WINDOWS\system32\DRIVERS\MpFilter.sys
14:43:28.0375 3468 MpFilter - ok
14:43:28.0375 3468 mraid35x - ok
14:43:28.0406 3468 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
14:43:28.0406 3468 MRxDAV - ok
14:43:28.0437 3468 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
14:43:28.0453 3468 MRxSmb - ok
14:43:28.0468 3468 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe
14:43:28.0468 3468 MSDTC - ok
14:43:28.0468 3468 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
14:43:28.0468 3468 Msfs - ok
14:43:28.0468 3468 MSIServer - ok
14:43:28.0484 3468 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
14:43:28.0484 3468 MSKSSRV - ok
14:43:28.0484 3468 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
14:43:28.0484 3468 MSPCLOCK - ok
14:43:28.0500 3468 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
14:43:28.0500 3468 MSPQM - ok
14:43:28.0515 3468 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
14:43:28.0515 3468 mssmbios - ok
14:43:28.0531 3468 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
14:43:28.0531 3468 Mup - ok
14:43:28.0562 3468 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
14:43:28.0562 3468 napagent - ok
14:43:28.0578 3468 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
14:43:28.0578 3468 NDIS - ok
14:43:28.0593 3468 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
14:43:28.0593 3468 NdisTapi - ok
14:43:28.0609 3468 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
14:43:28.0609 3468 Ndisuio - ok
14:43:28.0609 3468 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
14:43:28.0609 3468 NdisWan - ok
14:43:28.0640 3468 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
14:43:28.0640 3468 NDProxy - ok
14:43:28.0671 3468 Net Driver HPZ12 (a081cb6fb9a12668f233eb5414be3a0e) C:\WINDOWS\system32\HPZinw12.dll
14:43:28.0671 3468 Net Driver HPZ12 - ok
14:43:28.0687 3468 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
14:43:28.0687 3468 NetBIOS - ok
14:43:28.0687 3468 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
14:43:28.0687 3468 NetBT - ok
14:43:28.0703 3468 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
14:43:28.0718 3468 NetDDE - ok
14:43:28.0718 3468 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
14:43:28.0718 3468 NetDDEdsdm - ok
14:43:28.0750 3468 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
14:43:28.0750 3468 Netlogon - ok
14:43:28.0796 3468 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
14:43:28.0796 3468 Netman - ok
14:43:28.0890 3468 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:43:28.0890 3468 NetTcpPortSharing - ok
14:43:28.0921 3468 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
14:43:28.0937 3468 Nla - ok
14:43:28.0937 3468 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
14:43:28.0937 3468 Npfs - ok
14:43:28.0968 3468 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
14:43:28.0968 3468 Ntfs - ok
14:43:28.0968 3468 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
14:43:28.0968 3468 NtLmSsp - ok
14:43:29.0015 3468 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
14:43:29.0015 3468 NtmsSvc - ok
14:43:29.0031 3468 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
14:43:29.0031 3468 Null - ok
14:43:29.0421 3468 nv (0dc79b60cedc3a8854c27b3c6e4b3414) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
14:43:29.0500 3468 nv - ok
14:43:29.0640 3468 NVHDA (8eb410a64c86d51007687ee00bc2f912) C:\WINDOWS\system32\drivers\nvhda32.sys
14:43:29.0640 3468 NVHDA - ok
14:43:29.0671 3468 NVSvc (971b4344aba9b79ed0e9d0bb2a5283c1) C:\WINDOWS\system32\nvsvc32.exe
14:43:29.0671 3468 NVSvc - ok
14:43:29.0843 3468 nvUpdatusService (4cde6d8e0a07dce9e568f58a5dc8086c) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
14:43:29.0859 3468 nvUpdatusService - ok
14:43:29.0906 3468 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
14:43:29.0906 3468 NwlnkFlt - ok
14:43:29.0921 3468 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
14:43:29.0921 3468 NwlnkFwd - ok
14:43:29.0937 3468 ossrv (103a9b117a7d9903111955cdafe65ac6) C:\WINDOWS\system32\DRIVERS\ctoss2k.sys
14:43:29.0937 3468 ossrv - ok
14:43:29.0968 3468 P17 (df886ffed69aead0cf608b89b18c3f6f) C:\WINDOWS\system32\drivers\P17.sys
14:43:29.0984 3468 P17 - ok
14:43:30.0000 3468 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
14:43:30.0000 3468 Parport - ok
14:43:30.0000 3468 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
14:43:30.0000 3468 PartMgr - ok
14:43:30.0015 3468 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
14:43:30.0015 3468 ParVdm - ok
14:43:30.0015 3468 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
14:43:30.0015 3468 PCI - ok
14:43:30.0031 3468 PCIDump - ok
14:43:30.0046 3468 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
14:43:30.0046 3468 PCIIde - ok
14:43:30.0078 3468 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
14:43:30.0078 3468 Pcmcia - ok
14:43:30.0078 3468 PDCOMP - ok
14:43:30.0078 3468 PDFRAME - ok
14:43:30.0093 3468 PDRELI - ok
14:43:30.0093 3468 PDRFRAME - ok
14:43:30.0109 3468 perc2 - ok
14:43:30.0109 3468 perc2hib - ok
14:43:30.0187 3468 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
14:43:30.0187 3468 PlugPlay - ok
14:43:30.0218 3468 Pml Driver HPZ12 (65bc271f337637731d3c71455ae1f476) C:\WINDOWS\system32\HPZipm12.dll
14:43:30.0218 3468 Pml Driver HPZ12 - ok
14:43:30.0234 3468 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
14:43:30.0234 3468 PolicyAgent - ok
14:43:30.0250 3468 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
14:43:30.0250 3468 PptpMiniport - ok
14:43:30.0250 3468 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
14:43:30.0250 3468 ProtectedStorage - ok
14:43:30.0265 3468 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
14:43:30.0265 3468 PSched - ok
14:43:30.0281 3468 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
14:43:30.0281 3468 Ptilink - ok
14:43:30.0281 3468 ql1080 - ok
14:43:30.0281 3468 Ql10wnt - ok
14:43:30.0296 3468 ql12160 - ok
14:43:30.0296 3468 ql1240 - ok
14:43:30.0312 3468 ql1280 - ok
14:43:30.0343 3468 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
14:43:30.0343 3468 RasAcd - ok
14:43:30.0375 3468 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
14:43:30.0375 3468 RasAuto - ok
14:43:30.0375 3468 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
14:43:30.0375 3468 Rasl2tp - ok
14:43:30.0406 3468 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
14:43:30.0406 3468 RasMan - ok
14:43:30.0406 3468 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
14:43:30.0406 3468 RasPppoe - ok
14:43:30.0406 3468 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
14:43:30.0421 3468 Raspti - ok
14:43:30.0437 3468 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
14:43:30.0437 3468 Rdbss - ok
14:43:30.0437 3468 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
14:43:30.0437 3468 RDPCDD - ok
14:43:30.0468 3468 RDPWD (6589db6e5969f8eee594cf71171c5028) C:\WINDOWS\system32\drivers\RDPWD.sys
14:43:30.0468 3468 RDPWD - ok
14:43:30.0500 3468 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
14:43:30.0500 3468 RDSessMgr - ok
14:43:30.0515 3468 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
14:43:30.0515 3468 RemoteAccess - ok
14:43:30.0515 3468 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe
14:43:30.0531 3468 RpcLocator - ok
14:43:30.0546 3468 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
14:43:30.0562 3468 RpcSs - ok
14:43:30.0578 3468 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
14:43:30.0578 3468 RSVP - ok
14:43:30.0609 3468 RTLE8023xp (41fa2d39c227073a448aa7000b636280) C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
14:43:30.0609 3468 RTLE8023xp - ok
14:43:30.0609 3468 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
14:43:30.0609 3468 SamSs - ok
14:43:30.0625 3468 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
14:43:30.0640 3468 SCardSvr - ok
14:43:30.0640 3468 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
14:43:30.0656 3468 Schedule - ok
14:43:30.0671 3468 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
14:43:30.0671 3468 Secdrv - ok
14:43:30.0671 3468 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
14:43:30.0671 3468 seclogon - ok
14:43:30.0671 3468 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
14:43:30.0687 3468 SENS - ok
14:43:30.0687 3468 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
14:43:30.0687 3468 serenum - ok
14:43:30.0687 3468 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
14:43:30.0687 3468 Serial - ok
14:43:30.0734 3468 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
14:43:30.0734 3468 Sfloppy - ok
14:43:30.0781 3468 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
14:43:30.0781 3468 ShellHWDetection - ok
14:43:30.0781 3468 Simbad - ok
14:43:30.0781 3468 Sparrow - ok
14:43:30.0796 3468 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
14:43:30.0796 3468 splitter - ok
14:43:30.0812 3468 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
14:43:30.0812 3468 Spooler - ok
14:43:30.0843 3468 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
14:43:30.0843 3468 sr - ok
14:43:30.0843 3468 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll
14:43:30.0859 3468 srservice - ok
14:43:30.0890 3468 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
14:43:30.0890 3468 Srv - ok
14:43:30.0906 3468 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
14:43:30.0906 3468 SSDPSRV - ok
14:43:30.0921 3468 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
14:43:30.0937 3468 stisvc - ok
14:43:30.0937 3468 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
14:43:30.0937 3468 swenum - ok
14:43:31.0015 3468 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
14:43:31.0015 3468 SwitchBoard - ok
14:43:31.0015 3468 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
14:43:31.0015 3468 swmidi - ok
14:43:31.0015 3468 SwPrv - ok
14:43:31.0015 3468 symc810 - ok
14:43:31.0015 3468 symc8xx - ok
14:43:31.0031 3468 sym_hi - ok
14:43:31.0031 3468 sym_u3 - ok
14:43:31.0031 3468 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
14:43:31.0031 3468 sysaudio - ok
14:43:31.0046 3468 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
14:43:31.0046 3468 SysmonLog - ok
14:43:31.0062 3468 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
14:43:31.0062 3468 TapiSrv - ok
14:43:31.0109 3468 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
14:43:31.0109 3468 Tcpip - ok
14:43:31.0125 3468 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
14:43:31.0125 3468 TDPIPE - ok
14:43:31.0125 3468 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
14:43:31.0125 3468 TDTCP - ok
14:43:31.0140 3468 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
14:43:31.0140 3468 TermDD - ok
14:43:31.0156 3468 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
14:43:31.0156 3468 TermService - ok
14:43:31.0171 3468 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
14:43:31.0171 3468 Themes - ok
14:43:31.0171 3468 TosIde - ok
14:43:31.0171 3468 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
14:43:31.0171 3468 TrkWks - ok
14:43:31.0187 3468 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
14:43:31.0187 3468 Udfs - ok
14:43:31.0187 3468 ultra - ok
14:43:31.0203 3468 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
14:43:31.0218 3468 Update - ok
14:43:31.0234 3468 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
14:43:31.0234 3468 upnphost - ok
14:43:31.0234 3468 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
14:43:31.0234 3468 UPS - ok
14:43:31.0250 3468 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
14:43:31.0250 3468 usbccgp - ok
14:43:31.0265 3468 USBCCID (6b5e4d5e6e5ecd6acd14aed59768ce5c) C:\WINDOWS\system32\DRIVERS\usbccid.sys
14:43:31.0265 3468 USBCCID - ok
14:43:31.0281 3468 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
14:43:31.0281 3468 usbehci - ok
14:43:31.0312 3468 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
14:43:31.0312 3468 usbhub - ok
14:43:31.0328 3468 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
14:43:31.0328 3468 usbprint - ok
14:43:31.0359 3468 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
14:43:31.0359 3468 usbscan - ok
14:43:31.0359 3468 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
14:43:31.0359 3468 USBSTOR - ok
14:43:31.0406 3468 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
14:43:31.0406 3468 usbuhci - ok
14:43:31.0406 3468 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
14:43:31.0406 3468 VgaSave - ok
14:43:31.0421 3468 ViaIde - ok
14:43:31.0421 3468 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
14:43:31.0421 3468 VolSnap - ok
14:43:31.0453 3468 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
14:43:31.0453 3468 VSS - ok
14:43:31.0484 3468 W32Time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll
14:43:31.0484 3468 W32Time - ok
14:43:31.0500 3468 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
14:43:31.0500 3468 Wanarp - ok
14:43:31.0500 3468 WDICA - ok
14:43:31.0531 3468 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
14:43:31.0531 3468 wdmaud - ok
14:43:31.0546 3468 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
14:43:31.0546 3468 WebClient - ok
14:43:31.0625 3468 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
14:43:31.0625 3468 winmgmt - ok
14:43:31.0703 3468 WinRM (18f347402da544a780949b8fdf83351b) C:\WINDOWS\system32\WsmSvc.dll
14:43:31.0718 3468 WinRM - ok
14:43:31.0750 3468 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll
14:43:31.0750 3468 WmdmPmSN - ok
14:43:31.0765 3468 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe
14:43:31.0765 3468 WmiApSrv - ok
14:43:31.0875 3468 WMPNetworkSvc (f74e3d9a7fa9556c3bbb14d4e5e63d3b) C:\Program Files\Windows Media Player\WMPNetwk.exe
14:43:31.0875 3468 WMPNetworkSvc - ok
14:43:31.0890 3468 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
14:43:31.0890 3468 WpdUsb - ok
14:43:31.0906 3468 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
14:43:31.0906 3468 WudfPf - ok
14:43:31.0906 3468 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
14:43:31.0906 3468 WudfRd - ok
14:43:31.0921 3468 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
14:43:31.0921 3468 WudfSvc - ok
14:43:31.0953 3468 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
14:43:31.0953 3468 WZCSVC - ok
14:43:32.0000 3468 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
14:43:32.0000 3468 xmlprov - ok
14:43:32.0015 3468 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
14:43:32.0343 3468 \Device\Harddisk0\DR0 - ok
14:43:32.0343 3468 Boot (0x1200) (a51bf071b7bffc1d33651d6bb232a53a) \Device\Harddisk0\DR0\Partition0
14:43:32.0343 3468 \Device\Harddisk0\DR0\Partition0 - ok
14:43:32.0343 3468 ============================================================
14:43:32.0343 3468 Scan finished
14:43:32.0343 3468 ============================================================
14:43:32.0343 3460 Detected object count: 0
14:43:32.0343 3460 Actual detected object count: 0


ESEST SCANNER DID NOT FIND ANY THREATS TO POST

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:23 PM

Posted 05 August 2012 - 02:48 PM

ASWMBR log?

#5 weber2012

weber2012
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:04:23 PM

Posted 10 August 2012 - 01:27 PM

It was posted in my previous post but here it is again.



here is the aswMBR log
14:42:07.0734 0728 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
14:42:08.0562 0728 ============================================================
14:42:08.0562 0728 Current date / time: 2012/08/05 14:42:08.0562
14:42:08.0562 0728 SystemInfo:
14:42:08.0562 0728
14:42:08.0562 0728 OS Version: 5.1.2600 ServicePack: 3.0
14:42:08.0562 0728 Product type: Workstation
14:42:08.0562 0728 ComputerName: OWNER-83C6EB6AB
14:42:08.0562 0728 UserName: Owner
14:42:08.0562 0728 Windows directory: C:\WINDOWS
14:42:08.0562 0728 System windows directory: C:\WINDOWS
14:42:08.0562 0728 Processor architecture: Intel x86
14:42:08.0562 0728 Number of processors: 4
14:42:08.0562 0728 Page size: 0x1000
14:42:08.0562 0728 Boot type: Normal boot
14:42:08.0562 0728 ============================================================
14:42:09.0968 0728 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0CADE00 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
14:42:09.0984 0728 ============================================================
14:42:09.0984 0728 \Device\Harddisk0\DR0:
14:42:09.0984 0728 MBR partitions:
14:42:09.0984 0728 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x74701AC1
14:42:09.0984 0728 ============================================================
14:42:10.0000 0728 C: <-> \Device\Harddisk0\DR0\Partition0
14:42:10.0000 0728 ============================================================
14:42:10.0000 0728 Initialize success
14:42:10.0000 0728 ============================================================
14:43:24.0718 3468 ============================================================
14:43:24.0718 3468 Scan started
14:43:24.0718 3468 Mode: Manual; TDLFS;
14:43:24.0718 3468 ============================================================
14:43:25.0328 3468 Abiosdsk - ok
14:43:25.0328 3468 abp480n5 - ok
14:43:25.0375 3468 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
14:43:25.0375 3468 ACPI - ok
14:43:25.0406 3468 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
14:43:25.0406 3468 ACPIEC - ok
14:43:25.0421 3468 ADM8511 (b05f2367f62552a2de7e3c352b7b9885) C:\WINDOWS\system32\DRIVERS\ADM8511.SYS
14:43:25.0421 3468 ADM8511 - ok
14:43:25.0421 3468 adpu160m - ok
14:43:25.0453 3468 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
14:43:25.0453 3468 aec - ok
14:43:25.0500 3468 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
14:43:25.0500 3468 AFD - ok
14:43:25.0500 3468 Aha154x - ok
14:43:25.0500 3468 aic78u2 - ok
14:43:25.0515 3468 aic78xx - ok
14:43:25.0546 3468 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
14:43:25.0546 3468 Alerter - ok
14:43:25.0562 3468 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
14:43:25.0562 3468 ALG - ok
14:43:25.0562 3468 AliIde - ok
14:43:25.0656 3468 Ambfilt (267fc636801edc5ab28e14036349e3be) C:\WINDOWS\system32\drivers\Ambfilt.sys
14:43:25.0671 3468 Ambfilt - ok
14:43:25.0687 3468 amsint - ok
14:43:25.0687 3468 AppMgmt - ok
14:43:25.0703 3468 asc - ok
14:43:25.0703 3468 asc3350p - ok
14:43:25.0718 3468 asc3550 - ok
14:43:25.0765 3468 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
14:43:25.0765 3468 aspnet_state - ok
14:43:25.0765 3468 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
14:43:25.0765 3468 AsyncMac - ok
14:43:25.0765 3468 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
14:43:25.0765 3468 atapi - ok
14:43:25.0781 3468 Atdisk - ok
14:43:25.0796 3468 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
14:43:25.0796 3468 Atmarpc - ok
14:43:25.0843 3468 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
14:43:25.0843 3468 AudioSrv - ok
14:43:25.0875 3468 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
14:43:25.0875 3468 audstub - ok
14:43:25.0921 3468 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
14:43:25.0921 3468 Beep - ok
14:43:25.0953 3468 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
14:43:25.0953 3468 Browser - ok
14:43:25.0984 3468 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
14:43:25.0984 3468 cbidf2k - ok
14:43:25.0984 3468 cd20xrnt - ok
14:43:26.0031 3468 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
14:43:26.0031 3468 Cdaudio - ok
14:43:26.0031 3468 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
14:43:26.0031 3468 Cdfs - ok
14:43:26.0031 3468 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
14:43:26.0046 3468 Cdrom - ok
14:43:26.0046 3468 Changer - ok
14:43:26.0062 3468 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
14:43:26.0062 3468 CiSvc - ok
14:43:26.0078 3468 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
14:43:26.0078 3468 ClipSrv - ok
14:43:26.0109 3468 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:43:26.0109 3468 clr_optimization_v2.0.50727_32 - ok
14:43:26.0109 3468 CmdIde - ok
14:43:26.0109 3468 COMSysApp - ok
14:43:26.0125 3468 Cpqarray - ok
14:43:26.0156 3468 Creative Service for CDROM Access (3c8b6609712f4ff78e521f6dcfc4032b) C:\WINDOWS\system32\CTsvcCDA.exe
14:43:26.0156 3468 Creative Service for CDROM Access - ok
14:43:26.0171 3468 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
14:43:26.0171 3468 CryptSvc - ok
14:43:26.0203 3468 ctsfm2k (8db84de3aab34a8b4c2f644eff41cd76) C:\WINDOWS\system32\DRIVERS\ctsfm2k.sys
14:43:26.0203 3468 ctsfm2k - ok
14:43:26.0203 3468 dac2w2k - ok
14:43:26.0203 3468 dac960nt - ok
14:43:26.0265 3468 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
14:43:26.0265 3468 DcomLaunch - ok
14:43:26.0281 3468 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
14:43:26.0281 3468 Dhcp - ok
14:43:26.0281 3468 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
14:43:26.0296 3468 Disk - ok
14:43:26.0296 3468 dmadmin - ok
14:43:26.0343 3468 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
14:43:26.0343 3468 dmboot - ok
14:43:26.0359 3468 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
14:43:26.0359 3468 dmio - ok
14:43:26.0375 3468 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
14:43:26.0375 3468 dmload - ok
14:43:26.0390 3468 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
14:43:26.0390 3468 dmserver - ok
14:43:26.0421 3468 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
14:43:26.0421 3468 DMusic - ok
14:43:26.0437 3468 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
14:43:26.0437 3468 Dnscache - ok
14:43:26.0468 3468 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
14:43:26.0468 3468 Dot3svc - ok
14:43:26.0468 3468 dpti2o - ok
14:43:26.0468 3468 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
14:43:26.0468 3468 drmkaud - ok
14:43:26.0500 3468 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
14:43:26.0500 3468 EapHost - ok
14:43:26.0515 3468 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
14:43:26.0515 3468 ERSvc - ok
14:43:26.0546 3468 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
14:43:26.0546 3468 Eventlog - ok
14:43:26.0578 3468 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\system32\es.dll
14:43:26.0578 3468 EventSystem - ok
14:43:26.0578 3468 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
14:43:26.0578 3468 Fastfat - ok
14:43:26.0609 3468 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
14:43:26.0609 3468 FastUserSwitchingCompatibility - ok
14:43:26.0625 3468 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
14:43:26.0625 3468 Fdc - ok
14:43:26.0640 3468 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
14:43:26.0640 3468 Fips - ok
14:43:26.0640 3468 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
14:43:26.0640 3468 Flpydisk - ok
14:43:26.0656 3468 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
14:43:26.0656 3468 FltMgr - ok
14:43:26.0750 3468 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
14:43:26.0750 3468 FontCache3.0.0.0 - ok
14:43:26.0781 3468 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
14:43:26.0781 3468 Fs_Rec - ok
14:43:26.0781 3468 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
14:43:26.0796 3468 Ftdisk - ok
14:43:26.0796 3468 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
14:43:26.0796 3468 Gpc - ok
14:43:26.0812 3468 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
14:43:26.0812 3468 HDAudBus - ok
14:43:26.0875 3468 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
14:43:26.0875 3468 helpsvc - ok
14:43:26.0890 3468 HidServ (deb04da35cc871b6d309b77e1443c796) C:\WINDOWS\System32\hidserv.dll
14:43:26.0890 3468 HidServ - ok
14:43:26.0890 3468 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
14:43:26.0890 3468 hidusb - ok
14:43:26.0906 3468 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
14:43:26.0906 3468 hkmsvc - ok
14:43:26.0906 3468 hpn - ok
14:43:27.0046 3468 hpqcxs08 (f50f7984fdd151edd8a70a8dbd9e2a44) C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
14:43:27.0046 3468 hpqcxs08 - ok
14:43:27.0062 3468 hpqddsvc (df446ba625cc441617843e87798ce048) C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
14:43:27.0062 3468 hpqddsvc - ok
14:43:27.0093 3468 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
14:43:27.0093 3468 HPZid412 - ok
14:43:27.0109 3468 HPZipr12 (89f41658929393487b6b7d13c8528ce3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
14:43:27.0109 3468 HPZipr12 - ok
14:43:27.0125 3468 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
14:43:27.0125 3468 HPZius12 - ok
14:43:27.0156 3468 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
14:43:27.0156 3468 HTTP - ok
14:43:27.0187 3468 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
14:43:27.0187 3468 HTTPFilter - ok
14:43:27.0187 3468 i2omgmt - ok
14:43:27.0187 3468 i2omp - ok
14:43:27.0203 3468 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
14:43:27.0203 3468 i8042prt - ok
14:43:27.0406 3468 ialm (3b743262b6456167888d15f1121b3bf7) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
14:43:27.0437 3468 ialm - ok
14:43:27.0562 3468 idsvc (c01ac32dc5c03076cfb852cb5da5229c) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
14:43:27.0562 3468 idsvc - ok
14:43:27.0609 3468 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
14:43:27.0609 3468 Imapi - ok
14:43:27.0656 3468 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe
14:43:27.0656 3468 ImapiService - ok
14:43:27.0656 3468 ini910u - ok
14:43:27.0875 3468 IntcAzAudAddService (3af5d5cfd4dafa5dca3705813fd19b4b) C:\WINDOWS\system32\drivers\RtkHDAud.sys
14:43:27.0921 3468 IntcAzAudAddService - ok
14:43:27.0937 3468 IntelIde - ok
14:43:27.0953 3468 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
14:43:27.0953 3468 intelppm - ok
14:43:27.0968 3468 ip100xp (bb62c1d687488c8e24d827f1c5c3f435) C:\WINDOWS\system32\DRIVERS\ipfnd51.sys
14:43:27.0968 3468 ip100xp - ok
14:43:27.0968 3468 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
14:43:27.0968 3468 Ip6Fw - ok
14:43:28.0000 3468 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
14:43:28.0000 3468 IpFilterDriver - ok
14:43:28.0000 3468 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
14:43:28.0000 3468 IpInIp - ok
14:43:28.0000 3468 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
14:43:28.0000 3468 IpNat - ok
14:43:28.0015 3468 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
14:43:28.0015 3468 IPSec - ok
14:43:28.0015 3468 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
14:43:28.0015 3468 IRENUM - ok
14:43:28.0046 3468 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
14:43:28.0046 3468 isapnp - ok
14:43:28.0046 3468 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
14:43:28.0046 3468 Kbdclass - ok
14:43:28.0062 3468 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
14:43:28.0062 3468 kbdhid - ok
14:43:28.0078 3468 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
14:43:28.0078 3468 kmixer - ok
14:43:28.0078 3468 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
14:43:28.0078 3468 KSecDD - ok
14:43:28.0109 3468 lanmanserver (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
14:43:28.0109 3468 lanmanserver - ok
14:43:28.0125 3468 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
14:43:28.0125 3468 lanmanworkstation - ok
14:43:28.0125 3468 lbrtfdc - ok
14:43:28.0187 3468 LightScribeService (71c6a95a5f0ccc87298c4dd0f2c3635a) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
14:43:28.0187 3468 LightScribeService - ok
14:43:28.0218 3468 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
14:43:28.0218 3468 LmHosts - ok
14:43:28.0234 3468 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
14:43:28.0234 3468 Messenger - ok
14:43:28.0234 3468 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
14:43:28.0234 3468 mnmdd - ok
14:43:28.0265 3468 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe
14:43:28.0265 3468 mnmsrvc - ok
14:43:28.0265 3468 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
14:43:28.0265 3468 Modem - ok
14:43:28.0312 3468 Monfilt (c7d9f9717916b34c1b00dd4834af485c) C:\WINDOWS\system32\drivers\Monfilt.sys
14:43:28.0328 3468 Monfilt - ok
14:43:28.0328 3468 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
14:43:28.0328 3468 Mouclass - ok
14:43:28.0343 3468 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
14:43:28.0343 3468 mouhid - ok
14:43:28.0343 3468 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
14:43:28.0343 3468 MountMgr - ok
14:43:28.0375 3468 MpFilter (d993bea500e7382dc4e760bf4f35efcb) C:\WINDOWS\system32\DRIVERS\MpFilter.sys
14:43:28.0375 3468 MpFilter - ok
14:43:28.0375 3468 mraid35x - ok
14:43:28.0406 3468 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
14:43:28.0406 3468 MRxDAV - ok
14:43:28.0437 3468 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
14:43:28.0453 3468 MRxSmb - ok
14:43:28.0468 3468 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe
14:43:28.0468 3468 MSDTC - ok
14:43:28.0468 3468 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
14:43:28.0468 3468 Msfs - ok
14:43:28.0468 3468 MSIServer - ok
14:43:28.0484 3468 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
14:43:28.0484 3468 MSKSSRV - ok
14:43:28.0484 3468 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
14:43:28.0484 3468 MSPCLOCK - ok
14:43:28.0500 3468 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
14:43:28.0500 3468 MSPQM - ok
14:43:28.0515 3468 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
14:43:28.0515 3468 mssmbios - ok
14:43:28.0531 3468 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
14:43:28.0531 3468 Mup - ok
14:43:28.0562 3468 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
14:43:28.0562 3468 napagent - ok
14:43:28.0578 3468 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
14:43:28.0578 3468 NDIS - ok
14:43:28.0593 3468 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
14:43:28.0593 3468 NdisTapi - ok
14:43:28.0609 3468 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
14:43:28.0609 3468 Ndisuio - ok
14:43:28.0609 3468 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
14:43:28.0609 3468 NdisWan - ok
14:43:28.0640 3468 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
14:43:28.0640 3468 NDProxy - ok
14:43:28.0671 3468 Net Driver HPZ12 (a081cb6fb9a12668f233eb5414be3a0e) C:\WINDOWS\system32\HPZinw12.dll
14:43:28.0671 3468 Net Driver HPZ12 - ok
14:43:28.0687 3468 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
14:43:28.0687 3468 NetBIOS - ok
14:43:28.0687 3468 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
14:43:28.0687 3468 NetBT - ok
14:43:28.0703 3468 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
14:43:28.0718 3468 NetDDE - ok
14:43:28.0718 3468 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
14:43:28.0718 3468 NetDDEdsdm - ok
14:43:28.0750 3468 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
14:43:28.0750 3468 Netlogon - ok
14:43:28.0796 3468 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
14:43:28.0796 3468 Netman - ok
14:43:28.0890 3468 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:43:28.0890 3468 NetTcpPortSharing - ok
14:43:28.0921 3468 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
14:43:28.0937 3468 Nla - ok
14:43:28.0937 3468 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
14:43:28.0937 3468 Npfs - ok
14:43:28.0968 3468 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
14:43:28.0968 3468 Ntfs - ok
14:43:28.0968 3468 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
14:43:28.0968 3468 NtLmSsp - ok
14:43:29.0015 3468 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
14:43:29.0015 3468 NtmsSvc - ok
14:43:29.0031 3468 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
14:43:29.0031 3468 Null - ok
14:43:29.0421 3468 nv (0dc79b60cedc3a8854c27b3c6e4b3414) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
14:43:29.0500 3468 nv - ok
14:43:29.0640 3468 NVHDA (8eb410a64c86d51007687ee00bc2f912) C:\WINDOWS\system32\drivers\nvhda32.sys
14:43:29.0640 3468 NVHDA - ok
14:43:29.0671 3468 NVSvc (971b4344aba9b79ed0e9d0bb2a5283c1) C:\WINDOWS\system32\nvsvc32.exe
14:43:29.0671 3468 NVSvc - ok
14:43:29.0843 3468 nvUpdatusService (4cde6d8e0a07dce9e568f58a5dc8086c) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
14:43:29.0859 3468 nvUpdatusService - ok
14:43:29.0906 3468 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
14:43:29.0906 3468 NwlnkFlt - ok
14:43:29.0921 3468 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
14:43:29.0921 3468 NwlnkFwd - ok
14:43:29.0937 3468 ossrv (103a9b117a7d9903111955cdafe65ac6) C:\WINDOWS\system32\DRIVERS\ctoss2k.sys
14:43:29.0937 3468 ossrv - ok
14:43:29.0968 3468 P17 (df886ffed69aead0cf608b89b18c3f6f) C:\WINDOWS\system32\drivers\P17.sys
14:43:29.0984 3468 P17 - ok
14:43:30.0000 3468 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
14:43:30.0000 3468 Parport - ok
14:43:30.0000 3468 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
14:43:30.0000 3468 PartMgr - ok
14:43:30.0015 3468 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
14:43:30.0015 3468 ParVdm - ok
14:43:30.0015 3468 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
14:43:30.0015 3468 PCI - ok
14:43:30.0031 3468 PCIDump - ok
14:43:30.0046 3468 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
14:43:30.0046 3468 PCIIde - ok
14:43:30.0078 3468 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
14:43:30.0078 3468 Pcmcia - ok
14:43:30.0078 3468 PDCOMP - ok
14:43:30.0078 3468 PDFRAME - ok
14:43:30.0093 3468 PDRELI - ok
14:43:30.0093 3468 PDRFRAME - ok
14:43:30.0109 3468 perc2 - ok
14:43:30.0109 3468 perc2hib - ok
14:43:30.0187 3468 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
14:43:30.0187 3468 PlugPlay - ok
14:43:30.0218 3468 Pml Driver HPZ12 (65bc271f337637731d3c71455ae1f476) C:\WINDOWS\system32\HPZipm12.dll
14:43:30.0218 3468 Pml Driver HPZ12 - ok
14:43:30.0234 3468 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
14:43:30.0234 3468 PolicyAgent - ok
14:43:30.0250 3468 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
14:43:30.0250 3468 PptpMiniport - ok
14:43:30.0250 3468 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
14:43:30.0250 3468 ProtectedStorage - ok
14:43:30.0265 3468 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
14:43:30.0265 3468 PSched - ok
14:43:30.0281 3468 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
14:43:30.0281 3468 Ptilink - ok
14:43:30.0281 3468 ql1080 - ok
14:43:30.0281 3468 Ql10wnt - ok
14:43:30.0296 3468 ql12160 - ok
14:43:30.0296 3468 ql1240 - ok
14:43:30.0312 3468 ql1280 - ok
14:43:30.0343 3468 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
14:43:30.0343 3468 RasAcd - ok
14:43:30.0375 3468 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
14:43:30.0375 3468 RasAuto - ok
14:43:30.0375 3468 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
14:43:30.0375 3468 Rasl2tp - ok
14:43:30.0406 3468 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
14:43:30.0406 3468 RasMan - ok
14:43:30.0406 3468 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
14:43:30.0406 3468 RasPppoe - ok
14:43:30.0406 3468 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
14:43:30.0421 3468 Raspti - ok
14:43:30.0437 3468 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
14:43:30.0437 3468 Rdbss - ok
14:43:30.0437 3468 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
14:43:30.0437 3468 RDPCDD - ok
14:43:30.0468 3468 RDPWD (6589db6e5969f8eee594cf71171c5028) C:\WINDOWS\system32\drivers\RDPWD.sys
14:43:30.0468 3468 RDPWD - ok
14:43:30.0500 3468 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
14:43:30.0500 3468 RDSessMgr - ok
14:43:30.0515 3468 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
14:43:30.0515 3468 RemoteAccess - ok
14:43:30.0515 3468 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe
14:43:30.0531 3468 RpcLocator - ok
14:43:30.0546 3468 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
14:43:30.0562 3468 RpcSs - ok
14:43:30.0578 3468 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
14:43:30.0578 3468 RSVP - ok
14:43:30.0609 3468 RTLE8023xp (41fa2d39c227073a448aa7000b636280) C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
14:43:30.0609 3468 RTLE8023xp - ok
14:43:30.0609 3468 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
14:43:30.0609 3468 SamSs - ok
14:43:30.0625 3468 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
14:43:30.0640 3468 SCardSvr - ok
14:43:30.0640 3468 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
14:43:30.0656 3468 Schedule - ok
14:43:30.0671 3468 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
14:43:30.0671 3468 Secdrv - ok
14:43:30.0671 3468 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
14:43:30.0671 3468 seclogon - ok
14:43:30.0671 3468 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
14:43:30.0687 3468 SENS - ok
14:43:30.0687 3468 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
14:43:30.0687 3468 serenum - ok
14:43:30.0687 3468 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
14:43:30.0687 3468 Serial - ok
14:43:30.0734 3468 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
14:43:30.0734 3468 Sfloppy - ok
14:43:30.0781 3468 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
14:43:30.0781 3468 ShellHWDetection - ok
14:43:30.0781 3468 Simbad - ok
14:43:30.0781 3468 Sparrow - ok
14:43:30.0796 3468 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
14:43:30.0796 3468 splitter - ok
14:43:30.0812 3468 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
14:43:30.0812 3468 Spooler - ok
14:43:30.0843 3468 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
14:43:30.0843 3468 sr - ok
14:43:30.0843 3468 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll
14:43:30.0859 3468 srservice - ok
14:43:30.0890 3468 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
14:43:30.0890 3468 Srv - ok
14:43:30.0906 3468 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
14:43:30.0906 3468 SSDPSRV - ok
14:43:30.0921 3468 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
14:43:30.0937 3468 stisvc - ok
14:43:30.0937 3468 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
14:43:30.0937 3468 swenum - ok
14:43:31.0015 3468 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
14:43:31.0015 3468 SwitchBoard - ok
14:43:31.0015 3468 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
14:43:31.0015 3468 swmidi - ok
14:43:31.0015 3468 SwPrv - ok
14:43:31.0015 3468 symc810 - ok
14:43:31.0015 3468 symc8xx - ok
14:43:31.0031 3468 sym_hi - ok
14:43:31.0031 3468 sym_u3 - ok
14:43:31.0031 3468 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
14:43:31.0031 3468 sysaudio - ok
14:43:31.0046 3468 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
14:43:31.0046 3468 SysmonLog - ok
14:43:31.0062 3468 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
14:43:31.0062 3468 TapiSrv - ok
14:43:31.0109 3468 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
14:43:31.0109 3468 Tcpip - ok
14:43:31.0125 3468 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
14:43:31.0125 3468 TDPIPE - ok
14:43:31.0125 3468 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
14:43:31.0125 3468 TDTCP - ok
14:43:31.0140 3468 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
14:43:31.0140 3468 TermDD - ok
14:43:31.0156 3468 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
14:43:31.0156 3468 TermService - ok
14:43:31.0171 3468 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
14:43:31.0171 3468 Themes - ok
14:43:31.0171 3468 TosIde - ok
14:43:31.0171 3468 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
14:43:31.0171 3468 TrkWks - ok
14:43:31.0187 3468 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
14:43:31.0187 3468 Udfs - ok
14:43:31.0187 3468 ultra - ok
14:43:31.0203 3468 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
14:43:31.0218 3468 Update - ok
14:43:31.0234 3468 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
14:43:31.0234 3468 upnphost - ok
14:43:31.0234 3468 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
14:43:31.0234 3468 UPS - ok
14:43:31.0250 3468 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
14:43:31.0250 3468 usbccgp - ok
14:43:31.0265 3468 USBCCID (6b5e4d5e6e5ecd6acd14aed59768ce5c) C:\WINDOWS\system32\DRIVERS\usbccid.sys
14:43:31.0265 3468 USBCCID - ok
14:43:31.0281 3468 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
14:43:31.0281 3468 usbehci - ok
14:43:31.0312 3468 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
14:43:31.0312 3468 usbhub - ok
14:43:31.0328 3468 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
14:43:31.0328 3468 usbprint - ok
14:43:31.0359 3468 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
14:43:31.0359 3468 usbscan - ok
14:43:31.0359 3468 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
14:43:31.0359 3468 USBSTOR - ok
14:43:31.0406 3468 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
14:43:31.0406 3468 usbuhci - ok
14:43:31.0406 3468 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
14:43:31.0406 3468 VgaSave - ok
14:43:31.0421 3468 ViaIde - ok
14:43:31.0421 3468 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
14:43:31.0421 3468 VolSnap - ok
14:43:31.0453 3468 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
14:43:31.0453 3468 VSS - ok
14:43:31.0484 3468 W32Time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll
14:43:31.0484 3468 W32Time - ok
14:43:31.0500 3468 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
14:43:31.0500 3468 Wanarp - ok
14:43:31.0500 3468 WDICA - ok
14:43:31.0531 3468 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
14:43:31.0531 3468 wdmaud - ok
14:43:31.0546 3468 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
14:43:31.0546 3468 WebClient - ok
14:43:31.0625 3468 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
14:43:31.0625 3468 winmgmt - ok
14:43:31.0703 3468 WinRM (18f347402da544a780949b8fdf83351b) C:\WINDOWS\system32\WsmSvc.dll
14:43:31.0718 3468 WinRM - ok
14:43:31.0750 3468 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll
14:43:31.0750 3468 WmdmPmSN - ok
14:43:31.0765 3468 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe
14:43:31.0765 3468 WmiApSrv - ok
14:43:31.0875 3468 WMPNetworkSvc (f74e3d9a7fa9556c3bbb14d4e5e63d3b) C:\Program Files\Windows Media Player\WMPNetwk.exe
14:43:31.0875 3468 WMPNetworkSvc - ok
14:43:31.0890 3468 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
14:43:31.0890 3468 WpdUsb - ok
14:43:31.0906 3468 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
14:43:31.0906 3468 WudfPf - ok
14:43:31.0906 3468 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
14:43:31.0906 3468 WudfRd - ok
14:43:31.0921 3468 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
14:43:31.0921 3468 WudfSvc - ok
14:43:31.0953 3468 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
14:43:31.0953 3468 WZCSVC - ok
14:43:32.0000 3468 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
14:43:32.0000 3468 xmlprov - ok
14:43:32.0015 3468 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
14:43:32.0343 3468 \Device\Harddisk0\DR0 - ok
14:43:32.0343 3468 Boot (0x1200) (a51bf071b7bffc1d33651d6bb232a53a) \Device\Harddisk0\DR0\Partition0
14:43:32.0343 3468 \Device\Harddisk0\DR0\Partition0 - ok
14:43:32.0343 3468 ============================================================
14:43:32.0343 3468 Scan finished
14:43:32.0343 3468 ============================================================
14:43:32.0343 3460 Detected object count: 0
14:43:32.0343 3460 Actual detected object count: 0

ALSO, AN UPDATE - the virus seems to be gone, microsoft securtiy essentials is back running, however, the desktop shortcuts are still faded (from where I did the "show hidden files and folders" option....just need to figure out a way to get things back to normal. THANKS

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:23 PM

Posted 10 August 2012 - 02:04 PM

You're posting TDSSkiller log again.I need the ASWMBR log

Download

UNHIDE

Run the tool,this should unhide your files


Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#7 weber2012

weber2012
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:04:23 PM

Posted 15 August 2012 - 07:44 PM

Sorry about that - here is the aswMBR log

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-05 15:07:19
-----------------------------
15:07:19.609 OS Version: Windows 5.1.2600 Service Pack 3
15:07:19.609 Number of processors: 4 586 0x1707
15:07:19.609 ComputerName: OWNER-83C6EB6AB UserName: Owner
15:07:20.859 Initialize success
15:07:25.921 AVAST engine defs: 12080501
15:07:43.609 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
15:07:43.609 Disk 0 Vendor: WDC_WD10EADS-00M2B0 01.00A01 Size: 953868MB BusType: 3
15:07:43.625 Disk 0 MBR read successfully
15:07:43.625 Disk 0 MBR scan
15:07:43.656 Disk 0 Windows XP default MBR code
15:07:43.656 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 953859 MB offset 63
15:07:43.671 Disk 0 scanning sectors +1953504000
15:07:43.750 Disk 0 scanning C:\WINDOWS\system32\drivers
15:07:53.078 Service scanning
15:08:02.156 Modules scanning
15:08:11.328 Disk 0 trace - called modules:
15:08:11.359 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS
15:08:11.359 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8af38ab8]
15:08:11.359 3 CLASSPNP.SYS[b80e8fd7] -> nt!IofCallDriver -> \Device\0000005a[0x8afd51c0]
15:08:11.359 5 ACPI.sys[b7f7f620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x8af3a940]
15:08:13.015 AVAST engine scan C:\WINDOWS
15:08:37.937 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Owner\Desktop\pc fix\MBR.dat"
15:08:37.953 The log file has been saved successfully to "C:\Documents and Settings\Owner\Desktop\pc fix\aswMBR.txt"


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-15 20:09:16
-----------------------------
20:09:16.609 OS Version: Windows 5.1.2600 Service Pack 3
20:09:16.609 Number of processors: 4 586 0x1707
20:09:16.609 ComputerName: OWNER-83C6EB6AB UserName: Owner
20:09:18.765 Initialize success
20:10:39.421 AVAST engine defs: 12081503
20:11:22.515 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
20:11:22.515 Disk 0 Vendor: WDC_WD10EADS-00M2B0 01.00A01 Size: 953868MB BusType: 3
20:11:22.515 Disk 0 MBR read successfully
20:11:22.515 Disk 0 MBR scan
20:11:22.578 Disk 0 Windows XP default MBR code
20:11:22.578 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 953859 MB offset 63
20:11:22.593 Disk 0 scanning sectors +1953504000
20:11:22.671 Disk 0 scanning C:\WINDOWS\system32\drivers
20:11:32.359 Service scanning
20:11:39.750 Service MpKsl4252bd4b c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{939B2664-38DC-4451-9314-8C497DEEE93C}\MpKsl4252bd4b.sys **LOCKED** 32
20:11:49.312 Modules scanning
20:11:52.453 Disk 0 trace - called modules:
20:11:52.484 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS
20:11:52.484 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8afbbab8]
20:11:52.484 3 CLASSPNP.SYS[b80e8fd7] -> nt!IofCallDriver -> \Device\0000005a[0x8af7b828]
20:11:52.484 5 ACPI.sys[b7f7f620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x8afbc940]
20:11:53.921 AVAST engine scan C:\WINDOWS
20:12:02.734 AVAST engine scan C:\WINDOWS\system32
20:15:38.812 AVAST engine scan C:\WINDOWS\system32\drivers
20:16:18.218 AVAST engine scan C:\Documents and Settings\Owner
20:32:59.390 AVAST engine scan C:\Documents and Settings\All Users
20:34:50.078 Scan finished successfully
20:43:54.953 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Owner\Desktop\pc fix\MBR.dat"
20:43:54.953 The log file has been saved successfully to "C:\Documents and Settings\Owner\Desktop\pc fix\aswMBR.txt"

#8 weber2012

weber2012
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:04:23 PM

Posted 15 August 2012 - 09:30 PM

mini toolbox results

MiniToolBox by Farbar Version: 23-07-2012
Ran by Owner (administrator) on 15-08-2012 at 22:29:41
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================


127.0.0.1 localhost

========================= IP Configuration: ================================

IC Plus IP100 10/100 Fast Ethernet Adapter = Local Area Connection 4 (Connected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection 4"

set address name="Local Area Connection 4" source=dhcp
set dns name="Local Area Connection 4" source=dhcp register=PRIMARY
set wins name="Local Area Connection 4" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : owner-83c6eb6ab

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Unknown

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No



Ethernet adapter Local Area Connection 4:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : IC Plus IP100 10/100 Fast Ethernet Adapter #2

Physical Address. . . . . . . . . : 00-06-4F-6D-1F-0E

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 192.168.1.71

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.1.254

DHCP Server . . . . . . . . . . . : 192.168.1.254

DNS Servers . . . . . . . . . . . : 192.168.1.254

Lease Obtained. . . . . . . . . . : Wednesday, August 15, 2012 9:38:28 PM

Lease Expires . . . . . . . . . . : Thursday, August 16, 2012 9:38:28 PM

Server: Cisco.Home
Address: 192.168.1.254

Name: google.com
Addresses: 173.194.37.0, 173.194.37.1, 173.194.37.2, 173.194.37.3
173.194.37.4, 173.194.37.5, 173.194.37.6, 173.194.37.7, 173.194.37.8
173.194.37.9, 173.194.37.14



Pinging google.com [173.194.37.0] with 32 bytes of data:



Reply from 173.194.37.0: bytes=32 time=30ms TTL=51

Reply from 173.194.37.0: bytes=32 time=29ms TTL=51



Ping statistics for 173.194.37.0:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 29ms, Maximum = 30ms, Average = 29ms

Server: Cisco.Home
Address: 192.168.1.254

Name: yahoo.com
Addresses: 98.138.253.109, 98.139.183.24, 72.30.38.140



Pinging yahoo.com [98.138.253.109] with 32 bytes of data:



Reply from 98.138.253.109: bytes=32 time=102ms TTL=43

Reply from 98.138.253.109: bytes=32 time=107ms TTL=43



Ping statistics for 98.138.253.109:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 102ms, Maximum = 107ms, Average = 104ms

Server: Cisco.Home
Address: 192.168.1.254

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:



Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 06 4f 6d 1f 0e ...... IC Plus IP100 10/100 Fast Ethernet Adapter #2 - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.71 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
169.254.0.0 255.255.0.0 192.168.1.71 192.168.1.71 20
192.168.1.0 255.255.255.0 192.168.1.71 192.168.1.71 20
192.168.1.71 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.1.255 255.255.255.255 192.168.1.71 192.168.1.71 20
224.0.0.0 240.0.0.0 192.168.1.71 192.168.1.71 20
255.255.255.255 255.255.255.255 192.168.1.71 192.168.1.71 1
Default Gateway: 192.168.1.254
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
Catalog9 11 mswsock.dll [File Not found] ()
Catalog9 12 mswsock.dll [File Not found] ()
Catalog9 13 mswsock.dll [File Not found] ()
Catalog9 14 mswsock.dll [File Not found] ()
Catalog9 15 mswsock.dll [File Not found] ()
Catalog9 16 mswsock.dll [File Not found] ()
Catalog9 17 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/15/2012 09:39:51 PM) (Source: Application Error) (User: )
Description: Faulting application daemonu.exe, version 1.7.11.0, faulting module ntdll.dll, version 5.1.2600.6055, fault address 0x00011689.
Processing media-specific event for [daemonu.exe!ws!]

Error: (08/12/2012 04:48:31 PM) (Source: Application Error) (User: )
Description: Faulting application cod2mp_s.exe, version 0.0.0.0, faulting module cod2mp_s.exe, version 0.0.0.0, fault address 0x0014e658.
Processing media-specific event for [cod2mp_s.exe!ws!]

Error: (08/12/2012 03:02:37 PM) (Source: Application Hang) (User: )
Description: Hanging application iexplore.exe, version 8.0.6001.18702, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (08/11/2012 02:53:00 PM) (Source: Application Hang) (User: )
Description: Hanging application iexplore.exe, version 8.0.6001.18702, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (08/10/2012 00:56:00 AM) (Source: Application Hang) (User: )
Description: Hanging application iexplore.exe, version 8.0.6001.18702, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (08/07/2012 01:00:35 AM) (Source: Application Hang) (User: )
Description: Hanging application iexplore.exe, version 8.0.6001.18702, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (08/07/2012 00:59:17 AM) (Source: Application Hang) (User: )
Description: Hanging application iexplore.exe, version 8.0.6001.18702, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (08/05/2012 08:14:24 PM) (Source: MPSampleSubmission) (User: )
Description: EventType mptelemetry, P1 0x8050a003, P2 mpupdateengine, P3 am fe, P4 11.1.3927.0, P5 mpsigstub.exe, P6 4.0.1526.0, P7 microsoft security essentials, P8 NIL, P9 mptelemetry0, P10 mptelemetry1.

Error: (08/05/2012 08:11:57 PM) (Source: Microsoft Security Client) (User: )
Description: mssecurityclientsetup.exe4.0.1526.00x80070424morrobootstraper__cinstallflow__internalrun - getenablefirewallactionmorrobootstraper__cflow__processflowactionresult0security essentialsNILNILNIL

Error: (08/05/2012 08:11:53 PM) (Source: MPSampleSubmission) (User: )
Description: EventType mptelemetry, P1 0x80070003, P2 moac, P3 cachereset, P4 4.0.1526.0, P5 unspecified, P6 unspecified, P7 unspecified, P8 NIL, P9 mptelemetry0, P10 mptelemetry1.


System errors:
=============
Error: (08/15/2012 09:48:44 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

New Signature Version:

Previous Signature Version: 1.131.1853.0

Update Source: %NT AUTHORITY59

Update Stage: 4.0.1526.00

Source Path: 4.0.1526.01

Signature Type: %NT AUTHORITY602

Update Type: %NT AUTHORITY604

User: NT AUTHORITY\SYSTEM

Current Engine Version: %NT AUTHORITY605

Previous Engine Version: %NT AUTHORITY606

Error code: %NT AUTHORITY607

Error description: %NT AUTHORITY608

Error: (08/15/2012 09:40:15 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service terminated unexpectedly. It has done this 1 time(s).

Error: (08/15/2012 09:40:10 PM) (Source: Service Control Manager) (User: )
Description: The HP CUE DeviceDiscovery Service service hung on starting.

Error: (08/15/2012 09:40:10 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service terminated with the following error:
%%1060

Error: (08/15/2012 08:14:11 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

New Signature Version:

Previous Signature Version: 1.131.1853.0

Update Source: %NT AUTHORITY59

Update Stage: 4.0.1526.00

Source Path: 4.0.1526.01

Signature Type: %NT AUTHORITY602

Update Type: %NT AUTHORITY604

User: NT AUTHORITY\SYSTEM

Current Engine Version: %NT AUTHORITY605

Previous Engine Version: %NT AUTHORITY606

Error code: %NT AUTHORITY607

Error description: %NT AUTHORITY608

Error: (08/15/2012 08:05:49 PM) (Source: Service Control Manager) (User: )
Description: The HP CUE DeviceDiscovery Service service hung on starting.

Error: (08/15/2012 08:05:49 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service terminated with the following error:
%%1060

Error: (08/15/2012 03:57:57 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

New Signature Version:

Previous Signature Version: 1.131.1853.0

Update Source: %NT AUTHORITY59

Update Stage: 4.0.1526.00

Source Path: 4.0.1526.01

Signature Type: %NT AUTHORITY602

Update Type: %NT AUTHORITY604

User: NT AUTHORITY\SYSTEM

Current Engine Version: %NT AUTHORITY605

Previous Engine Version: %NT AUTHORITY606

Error code: %NT AUTHORITY607

Error description: %NT AUTHORITY608

Error: (08/15/2012 03:49:41 PM) (Source: Service Control Manager) (User: )
Description: The HP CUE DeviceDiscovery Service service hung on starting.

Error: (08/15/2012 03:49:41 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service terminated with the following error:
%%1060


Microsoft Office Sessions:
=========================
Error: (08/15/2012 09:39:51 PM) (Source: Application Error)(User: )
Description: daemonu.exe1.7.11.0ntdll.dll5.1.2600.605500011689

Error: (08/12/2012 04:48:31 PM) (Source: Application Error)(User: )
Description: cod2mp_s.exe0.0.0.0cod2mp_s.exe0.0.0.00014e658

Error: (08/12/2012 03:02:37 PM) (Source: Application Hang)(User: )
Description: iexplore.exe8.0.6001.18702hungapp0.0.0.000000000

Error: (08/11/2012 02:53:00 PM) (Source: Application Hang)(User: )
Description: iexplore.exe8.0.6001.18702hungapp0.0.0.000000000

Error: (08/10/2012 00:56:00 AM) (Source: Application Hang)(User: )
Description: iexplore.exe8.0.6001.18702hungapp0.0.0.000000000

Error: (08/07/2012 01:00:35 AM) (Source: Application Hang)(User: )
Description: iexplore.exe8.0.6001.18702hungapp0.0.0.000000000

Error: (08/07/2012 00:59:17 AM) (Source: Application Hang)(User: )
Description: iexplore.exe8.0.6001.18702hungapp0.0.0.000000000

Error: (08/05/2012 08:14:24 PM) (Source: MPSampleSubmission)(User: )
Description: mptelemetry0x8050a003mpupdateengineam fe11.1.3927.0mpsigstub.exe4.0.1526.0microsoft security essentialsNILNILNIL

Error: (08/05/2012 08:11:57 PM) (Source: Microsoft Security Client)(User: )
Description: mssecurityclientsetup.exe4.0.1526.00x80070424morrobootstraper__cinstallflow__internalrun - getenablefirewallactionmorrobootstraper__cflow__processflowactionresult0security essentialsNILNILNIL

Error: (08/05/2012 08:11:53 PM) (Source: MPSampleSubmission)(User: )
Description: mptelemetry0x80070003moaccachereset4.0.1526.0unspecifiedunspecifiedunspecifiedNILNILNIL


=========================== Installed Programs ============================

32 Bit HP CIO Components Installer (Version: 7.1.8)
Acoustica CD/DVD Label Maker
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.1.377)
Adobe AIR (Version: 1.5.3.9120)
Adobe Community Help (Version: 3.0.0)
Adobe Community Help (Version: 3.0.0.400)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.268)
Adobe Photoshop CS5 (Version: 12.0)
Adobe Reader 9.5.2 (Version: 9.5.2)
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
AQUAZONE "Virtual Aquarium Collection"
Ashampoo Burning Studio 9.12 (Version: 9.1.2)
Battleground Europe
Bigasoft Total Video Converter 3.3.32.4184
Bonjour (Version: 3.0.0.10)
BufferChm (Version: 100.0.170.000)
Call of Duty® 2 (Version: 1.00.0000)
Call of Duty® 2 (Version: 1.3)
Call of Duty® 2 Patch 1.3 (Version: 1.3)
CCleaner (Version: 3.21)
ConvertXtoDVD 4.1.19.365 (Version: 4.1.19.365)
Copy (Version: 100.0.170.000)
Creative MediaSource 5 (Version: 5.00)
Creative Software AutoUpdate
Creative System Information
CyberLink LabelPrint (Version: 2.0.2908)
CyberLink Power2Go (Version: 6.0.1924)
Dead Island
Destination Component (Version: 100.0.0.0)
DeviceDiscovery (Version: 100.0.190.000)
DeviceManagementQFolder (Version: 1.00.0000)
DJ_AIO_03_F4200_ProductContext (Version: 100.0.215.000)
DJ_AIO_03_F4200_Software (Version: 100.0.206.000)
DJ_AIO_03_F4200_Software_Min (Version: 100.0.213.000)
ESET Online Scanner v3
eSupportQFolder (Version: 1.00.0000)
F4200 (Version: 100.0.206.000)
F4200_Help (Version: 100.0.206.000)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3203.136)
Google Update Helper (Version: 1.3.21.115)
GPBaseService (Version: 100.0.187.000)
Hewlett-Packard ACLM.NET v1.1.0.0 (Version: 1.00.0000)
High Definition Audio Driver Package - KB888111 (Version: 20040219.000000)
HP Deskjet F4200 All-In-One Driver Software 10.0 Rel .3 (Version: 10.0)
HP Imaging Device Functions 10.0 (Version: 10.0)
HP Photosmart Essential 2.5 (Version: 1.02.0000)
HP Photosmart Essential 2.5 (Version: 2.5)
HP Product Detection (Version: 11.14.0001)
HP Solution Center 10.0 (Version: 10.0)
HP Update (Version: 5.003.001.001)
HPDiagnosticAlert (Version: 1.00.0000)
HPProductAssistant (Version: 100.0.170.000)
Intel® Graphics Media Accelerator Driver
iTunes (Version: 10.6.3.25)
LightScribe Applications (Version: 1.18.15.1)
LightScribe Diagnostic Utility (Version: 1.18.24.1)
LightScribe System Software (Version: 1.18.24.1)
LightScribe Template Designs - Bonus Pack 1 (Version: 1.17.0.0)
LightScribe Template Designs - Fantasy Pack 1 (Version: 1.13.0.0)
LightScribe Template Designs - Mythology Pack 1 (Version: 1.15.0.0)
LightScribe Template Designs - Tattoo Pack 1 (Version: 1.13.0.0)
LightScribe Template Designs - Tribal Pack 1 (Version: 1.15.0.0)
LightScribe Template Labeler (Version: 1.18.24.1)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 08.05.0818)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Monopoly Tycoon
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 6 Service Pack 2 (KB973686) (Version: 6.20.2003.0)
NVIDIA Control Panel 295.73 (Version: 295.73)
NVIDIA Graphics Driver 295.73 (Version: 295.73)
NVIDIA HD Audio Driver 1.3.12.0 (Version: 1.3.12.0)
NVIDIA Install Application (Version: 2.1002.62.312)
NVIDIA nView 136.18 (Version: 136.18)
NVIDIA nView Desktop Manager (Version: 6.14.10.13594)
NVIDIA PhysX (Version: 9.12.0209)
NVIDIA PhysX System Software 9.12.0209 (Version: 9.12.0209)
NVIDIA Update 1.7.11 (Version: 1.7.11)
NVIDIA Update Components (Version: 1.7.11)
PDF Settings CS5 (Version: 10.0)
PowerDVD
PSSWCORE (Version: 2.02.0000)
RaidCall (Version: 5.2.8)
REALTEK GbE & FE Ethernet PCI-E NIC Driver (Version: 1.35.0000)
Realtek High Definition Audio Driver (Version: 5.10.0.6392)
Scan (Version: 10.0.0.0)
Sid Meier's Alpha Centauri
SolutionCenter (Version: 100.0.175.000)
Sound Blaster Audigy (Version: 1.0)
Status (Version: 100.0.175.000)
Supreme Ruler 2020
System Requirements Lab
TeamSpeak 3 Client
Toolbox (Version: 100.0.170.000)
TrayApp (Version: 100.0.170.000)
Unity Web Player (Version: )
UnloadSupport (Version: 10.0.0)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft Windows (KB971513)
Update for Windows Internet Explorer 8 (KB2447568) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2492386) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2607712) (Version: 1)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
VideoToolkit01 (Version: 100.0.128.000)
VLC media player 2.0.2 (Version: 2.0.2)
WebFldrs XP (Version: 9.50.7523)
WebReg (Version: 100.0.170.000)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Imaging Component (Version: 3.0.0.0)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Management Framework Core
Windows Media Format 11 runtime
Windows Media Player 11
Windows XP Service Pack 3 (Version: 20080414.031525)
WinRAR 4.01 (32-bit) (Version: 4.01.0)
Yahoo! Detect

========================= Memory info: ===================================

Percentage of memory in use: 31%
Total physical RAM: 3070.42 MB
Available physical RAM: 2091.5 MB
Total Pagefile: 6910.38 MB
Available Pagefile: 6029.32 MB
Total Virtual: 2047.88 MB
Available Virtual: 1974.98 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:931.5 GB) (Free:733.44 GB) NTFS
2 Drive d: (My DVD) (CDROM) (Total:0.17 GB) (Free:0 GB) UDF

========================= Users: ========================================

User accounts for \\OWNER-83C6EB6AB

Administrator ASPNET Guest
HelpAssistant Owner SUPPORT_388945a0
UpdatusUser


**** End of log ****

#9 weber2012

weber2012
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:04:23 PM

Posted 15 August 2012 - 09:32 PM

FSS LOG

Farbar Service Scanner Version: 06-08-2012
Ran by Owner (administrator) on 15-08-2012 at 22:32:00
Running from "C:\Documents and Settings\Owner\Desktop\pc fix"
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
sharedaccess Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to retrieve start type of sharedaccess. The value does not exist.
Checking ImagePath: ATTENTION!=====> Unable to retrieve ImagePath of sharedaccess. The value does not exist.
Unable to retrieve ServiceDll of sharedaccess. The value does not exist.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.

BITS Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.


Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
Gpc(3) IPSec(5) NetBT(6) PSched(7) Tcpip(4)
0x0700000005000000010000000200000003000000040000000600000007000000
IpSec Tag value is correct.

**** End of log ****

#10 weber2012

weber2012
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:04:23 PM

Posted 15 August 2012 - 09:40 PM

adware cleaner log

# AdwCleaner v1.801 - Logfile created 08/15/2012 at 22:34:24
# Updated 14/08/2012 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Owner - OWNER-83C6EB6AB
# Boot Mode : Normal
# Running from : C:\Documents and Settings\Owner\Desktop\pc fix\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Documents and Settings\All Users\Application Data\Ask
Folder Deleted : C:\Documents and Settings\All Users\Application Data\Tarma Installer

***** [Registry] *****

Key Deleted : HKLM\SOFTWARE\Freeze.com
Key Deleted : HKLM\SOFTWARE\Tarma Installer

***** [Registre - GUID] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E38FA08E-F56A-4169-ABF5-5C71E3C153A1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98279C38-DE4B-4BCF-93C9-8EC26069D6F4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E38FA08E-F56A-4169-ABF5-5C71E3C153A1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E8DAAA30-6CAA-4B58-9603-8E54238219E2}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{98279C38-DE4B-4BCF-93C9-8EC26069D6F4}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry is clean.

*************************

AdwCleaner[S1].txt - [2236 octets] - [15/08/2012 22:34:24]

########## EOF - C:\AdwCleaner[S1].txt - [2364 octets] ##########

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:23 PM

Posted 15 August 2012 - 09:50 PM

MBAM log?

Download

Sharedaccess
wscsvc
wuauserv
BITS

Launch it,click YES

Restart the PC,post the new FSS log




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users