Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer acts strange on restart, avast shields get disabled


  • Please log in to reply
3 replies to this topic

#1 Thelonius

Thelonius

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:05:15 AM

Posted 04 August 2012 - 06:48 AM

Well, I'm not entirely sure I'm infected, but my laptop acts strange whenever I restart or turn on the computer. I've usually had to just put it on hibernate. Sometimes my anti-virus program shields can't be enabled, sometimes I can't connect to the internet, and other strange behavior. Once I had to restart the computer in the last good configuration, which temporarily solved the problem, but it's starting to act up like this again. In the past I did get a BSOD, but that was a while ago, and I don't have the screen shot saved anymore. I've also run a full anti-virus scan and it turned up with no infected files, but I know something is off about the way my laptop is operating. It's a Dell Latitude D620 with Windows XP Professional. Thanks for your help.

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:15 AM

Posted 11 August 2012 - 09:51 PM

Hello, well lets take look.

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.




Run RKill....


Download and Run RKill
  • Please download RKill by Grinler from one of the 4 links below and save it to your desktop.

    Link 1
    Link 2
    Link 3
    Link 4

  • Before we begin, you should disable your anti-malware softwares you have installed so they do not interfere RKill running as some anti-malware softwares detect RKill as malicious. Please refer to this page if you are not sure how.
  • Double-click on Rkill on your desktop to run it. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • If nothing happens or if the tool does not run, please let me know in your next reply

Do not reboot your computer after running rkill as the malware programs will start again. Or if rebooting is required run it again.


If you continue having problems running rkill.com, you can download iExplore.exe or eXplorer.exe, which are renamed copies of rkill.com, and try them instead.


Next run MBAM (MalwareBytes):

Please download Malwarebytes Anti-Malware Posted Image and save it to your desktop.
  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.
Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you cannot update Malwarebytes or use the Internet to download any files to the infected computer, manually update the database by following the instructions in FAQ Section A: 4. Issues.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.
Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.

-- Some types of malware will target Malwarebytes and other security tools to keep them from running properly. If that's the case, go to Start > All Programs > Malwarebytes Anti-Malware folder > Tools > click on Malwarebytes Chameleon and follow the onscreen instructions. The Chameleon folder can be accessed by opening the program folder for Malwarebytes Anti-Malware (normally C:\Program Files\Malwarebytes' Anti-Malware or C:\Program Files (x86)\Malwarebytes' Anti-Malware).




Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click on Change Parameters
  • Put a check in the box of Detect TDLFS file system
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log has a name like: TDSSKiller.Version_Date_Time_log.txt.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Thelonius

Thelonius
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:05:15 AM

Posted 26 August 2012 - 07:57 AM

Sorry I took so long. Work was so hectic for me the past 2 weeks. I appreciate the help.

MiniToolBox by Farbar Version: 23-07-2012
Ran by ADMIN (administrator) on 26-08-2012 at 08:30:56
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


127.0.0.1 localhost

========================= IP Configuration: ================================

Intel® PRO/Wireless 3945ABG Network Connection = Wireless Network Connection (Connected)
Broadcom NetXtreme 57xx Gigabit Controller = Local Area Connection (Media disconnected)
Bluetooth Personal Area Network from TOSHIBA = Local Area Connection 2 (Media disconnected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp

# Interface IP Configuration for "Wireless Network Connection"

set address name="Wireless Network Connection" source=dhcp
set dns name="Wireless Network Connection" source=dhcp register=PRIMARY
set wins name="Wireless Network Connection" source=dhcp

# Interface IP Configuration for "Local Area Connection 2"

set address name="Local Area Connection 2" source=dhcp
set dns name="Local Area Connection 2" source=dhcp register=PRIMARY
set wins name="Local Area Connection 2" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : DJLuchini2

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Broadcast

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No

DNS Suffix Search List. . . . . . : gateway.2wire.net



Ethernet adapter Local Area Connection:



Media State . . . . . . . . . . . : Media disconnected

Description . . . . . . . . . . . : Broadcom NetXtreme 57xx Gigabit Controller

Physical Address. . . . . . . . . : 00-15-C5-4E-A1-DD



Ethernet adapter Wireless Network Connection:



Connection-specific DNS Suffix . : gateway.2wire.net

Description . . . . . . . . . . . : Intel® PRO/Wireless 3945ABG Network Connection

Physical Address. . . . . . . . . : 00-18-DE-69-C6-08

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 192.168.1.66

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.1.254

DHCP Server . . . . . . . . . . . : 192.168.1.254

DNS Servers . . . . . . . . . . . : 192.168.1.254

Lease Obtained. . . . . . . . . . : Sunday, August 26, 2012 8:13:50 AM

Lease Expires . . . . . . . . . . : Monday, August 27, 2012 8:13:50 AM



Ethernet adapter Local Area Connection 2:



Media State . . . . . . . . . . . : Media disconnected

Description . . . . . . . . . . . : Bluetooth Personal Area Network from TOSHIBA

Physical Address. . . . . . . . . : 00-16-41-8B-68-B4

Server: home
Address: 192.168.1.254

Name: google.com
Addresses: 74.125.225.66, 74.125.225.67, 74.125.225.68, 74.125.225.69
74.125.225.70, 74.125.225.71, 74.125.225.72, 74.125.225.73, 74.125.225.78
74.125.225.64, 74.125.225.65



Pinging google.com [74.125.225.71] with 32 bytes of data:



Reply from 74.125.225.71: bytes=32 time=31ms TTL=55

Reply from 74.125.225.71: bytes=32 time=32ms TTL=55



Ping statistics for 74.125.225.71:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 31ms, Maximum = 32ms, Average = 31ms

Server: home
Address: 192.168.1.254

Name: yahoo.com
Addresses: 72.30.38.140, 98.138.253.109, 98.139.183.24



Pinging yahoo.com [72.30.38.140] with 32 bytes of data:



Reply from 72.30.38.140: bytes=32 time=589ms TTL=49

Reply from 72.30.38.140: bytes=32 time=910ms TTL=49



Ping statistics for 72.30.38.140:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 589ms, Maximum = 910ms, Average = 749ms

Server: home
Address: 192.168.1.254

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:



Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 15 c5 4e a1 dd ...... Broadcom NetXtreme 57xx Gigabit Controller - Packet Scheduler Miniport
0x3 ...00 18 de 69 c6 08 ...... Intel® PRO/Wireless 3945ABG Network Connection - Packet Scheduler Miniport
0x10005 ...00 16 41 8b 68 b4 ...... Bluetooth Personal Area Network from TOSHIBA - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.66 25
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
169.254.0.0 255.255.0.0 192.168.1.66 192.168.1.66 20
192.168.1.0 255.255.255.0 192.168.1.66 192.168.1.66 25
192.168.1.66 255.255.255.255 127.0.0.1 127.0.0.1 25
192.168.1.255 255.255.255.255 192.168.1.66 192.168.1.66 25
224.0.0.0 240.0.0.0 192.168.1.66 192.168.1.66 25
255.255.255.255 255.255.255.255 192.168.1.66 192.168.1.66 1
255.255.255.255 255.255.255.255 192.168.1.66 2 1
255.255.255.255 255.255.255.255 192.168.1.66 10005 1
Default Gateway: 192.168.1.254
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\wshbth.dll [108032] (Microsoft Corporation)
Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/25/2012 10:17:44 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15609

Error: (08/25/2012 10:17:44 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15609

Error: (08/25/2012 10:17:44 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/24/2012 11:03:21 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 10340125

Error: (08/24/2012 11:03:21 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 10340125

Error: (08/24/2012 11:03:21 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/23/2012 00:14:35 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15656

Error: (08/23/2012 00:14:35 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15656

Error: (08/23/2012 00:14:35 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/20/2012 03:39:09 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15594


System errors:
=============
Error: (08/26/2012 08:28:49 AM) (Source: SideBySide) (User: )
Description: Generate Activation Context failed for C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_39049d00\MFC80U.DLL.
Reference error message: The operation completed successfully.
.

Error: (08/26/2012 08:28:49 AM) (Source: SideBySide) (User: )
Description: Resolve Partial Assembly failed for Microsoft.VC80.MFCLOC.
Reference error message: The referenced assembly is not installed on your system.
.

Error: (08/26/2012 08:28:49 AM) (Source: SideBySide) (User: )
Description: Dependent Assembly Microsoft.VC80.MFCLOC could not be found and Last Error was The referenced assembly is not installed on your system.

Error: (08/26/2012 08:28:49 AM) (Source: SideBySide) (User: )
Description: Generate Activation Context failed for C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_39049d00\MFC80U.DLL.
Reference error message: The operation completed successfully.
.

Error: (08/26/2012 08:28:49 AM) (Source: SideBySide) (User: )
Description: Resolve Partial Assembly failed for Microsoft.VC80.MFCLOC.
Reference error message: The referenced assembly is not installed on your system.
.

Error: (08/26/2012 08:28:49 AM) (Source: SideBySide) (User: )
Description: Dependent Assembly Microsoft.VC80.MFCLOC could not be found and Last Error was The referenced assembly is not installed on your system.

Error: (08/23/2012 11:16:02 PM) (Source: SideBySide) (User: )
Description: Generate Activation Context failed for C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_39049d00\MFC80U.DLL.
Reference error message: The operation completed successfully.
.

Error: (08/23/2012 11:16:02 PM) (Source: SideBySide) (User: )
Description: Resolve Partial Assembly failed for Microsoft.VC80.MFCLOC.
Reference error message: The referenced assembly is not installed on your system.
.

Error: (08/23/2012 11:16:02 PM) (Source: SideBySide) (User: )
Description: Dependent Assembly Microsoft.VC80.MFCLOC could not be found and Last Error was The referenced assembly is not installed on your system.

Error: (08/23/2012 11:16:02 PM) (Source: SideBySide) (User: )
Description: Generate Activation Context failed for C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_39049d00\MFC80U.DLL.
Reference error message: The operation completed successfully.
.


Microsoft Office Sessions:
=========================
Error: (08/25/2012 10:17:44 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15609

Error: (08/25/2012 10:17:44 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15609

Error: (08/25/2012 10:17:44 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/24/2012 11:03:21 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 10340125

Error: (08/24/2012 11:03:21 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 10340125

Error: (08/24/2012 11:03:21 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/23/2012 00:14:35 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15656

Error: (08/23/2012 00:14:35 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15656

Error: (08/23/2012 00:14:35 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/20/2012 03:39:09 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15594


=========================== Installed Programs ============================

ABBYY FineReader 5.0 Sprint (Version: 5.0.482.3421)
AC3Filter (remove only)
Adobe Acrobat 8 Professional - English, Français, Deutsch (Version: 8.0.0)
Adobe Flash Player 10 ActiveX (Version: 10.2.153.1)
Adobe Flash Player 11 Plugin (Version: 11.2.202.235)
Adobe Reader 9.5.1 (Version: 9.5.1)
AIM 7
ALPS Touch Pad Driver
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
avast! Free Antivirus (Version: 7.0.1456.0)
Bluetooth Stack for Windows by Toshiba (Version: v4.00.22(D))
Bonjour (Version: 3.0.0.10)
Broadcom Gigabit Integrated Controller (Version: 8.22.11)
Conexant HDA D110 MDC V.92 Modem
Dell AIO Printer A920
DiscJuggler (Version: 4.00)
DivX Setup (Version: 1.0.2.23)
Download Updater (AOL LLC)
FaxTools (Version: 5.10)
GIMP 2.6.11 (Version: 2.6.11)
Google Chrome (Version: 21.0.1180.83)
Google Earth Plug-in (Version: 6.2.2.6613)
Google Update Helper (Version: 1.3.21.115)
High Definition Audio Driver Package - KB835221 (Version: 20040219.000000)
HijackThis 2.0.2 (Version: 2.0.2)
ID3-TagIT 3 (Version: 3)
Intel® Graphics Media Accelerator Driver
Intel® PROSet/Wireless Software (Version: 10.5.1.0)
iTunes (Version: 10.6.3.25)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 33 (Version: 6.0.330)
Logitech QuickCam (Version: 11.80.1065)
Logitech QuickCam Driver Package
Logitech Updater (Version: 1.70)
mCore (Version: 7.20.0000)
mDriver (Version: 7.20.0000)
mDrWiFi (Version: 7.20.0000)
mHlpDell (Version: 7.20.0000)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft IntelliPoint 6.3 (Version: 6.31.258.0)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Silverlight (Version: 4.1.10111.0)
Microsoft Software Update for Web Folders (English) 14 (Version: 14.0.4734.1000)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Windows XP Video Decoder Checkup Utility
mIRC
mIWA (Version: 7.20.0000)
mLogView (Version: 7.20.0000)
mMHouse (Version: 7.20.0000)
Mozilla Firefox 14.0.1 (x86 en-US) (Version: 14.0.1)
Mozilla Maintenance Service (Version: 14.0.1)
mPfMgr (Version: 7.20.0000)
mPfWiz (Version: 7.20.0000)
mProSafe (Version: 7.20.0000)
mSSO (Version: 7.20.0000)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MuseScore 0.9.6 MuseScore score typesetter (Version: 0.9.6)
Musicmatch® Jukebox (Version: 10.00.4015)
mWlsSafe (Version: 7.20.0000)
mWMI (Version: 7.20.0000)
mXML (Version: 7.20.0000)
mZConfig (Version: 7.20.0000)
Nokia Connectivity Cable Driver (Version: 7.0.2.0)
OZ776 SCR CardBus Windows Driver (Version: 0.0.0.1)
PC Connectivity Solution (Version: 8.22.7.0)
PeerGuardian 2.0 (Version: 2.0.6.5)
PowerDVD
QuickSet (Version: 7.1.12)
QuickTime (Version: 7.66.71.0)
SecureW2 Enterprise Client 3.5.0
Skype Toolbars (Version: 5.0.4137)
Skype™ 5.1 (Version: 5.1.112)
Sony Sound Forge 7.0 (Version: 7.0.214)
Spotify (Version: 0.8.3.222.g317ab79d)
SpywareBlaster 4.6 (Version: 4.6.0)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Windows Internet Explorer 8 (KB975364) (Version: 1)
Update for Windows Internet Explorer 8 (KB976662) (Version: 1)
Update for Windows Internet Explorer 8 (KB980182) (Version: 1)
Update for Windows XP (KB2141007) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2607712) (Version: 1)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB898461) (Version: 1)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0)
Veetle TV 0.9.18 (Version: 0.9.18)
Vuze (Version: 4.7)
WebFldrs XP (Version: 9.50.7523)
Windows Driver Package - Nokia pccsmcfd (08/22/2008 7.0.0.0) (Version: 08/22/2008 7.0.0.0)
Windows Genuine Advantage Notifications (KB905474) (Version: 1.9.0040.0)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Media Format 11 runtime
Windows Media Player 11
WinRAR archiver
Xvid 1.2.2 final uninstall (Version: 1.2)

========================= Memory info: ===================================

Percentage of memory in use: 50%
Total physical RAM: 1014.05 MB
Available physical RAM: 500.68 MB
Total Pagefile: 2437.72 MB
Available Pagefile: 1998.6 MB
Total Virtual: 2047.88 MB
Available Virtual: 1972.27 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:55.89 GB) (Free:2.84 GB) NTFS

========================= Users: ========================================

User accounts for \\DJLUCHINI2

ADMIN Administrator Guest
HelpAssistant SUPPORT_388945a0


**** End of log ****


Rkill 2.0.3 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 08/26/2012 08:35:30 AM in x86 mode.
Windows Version: Windows XP

Checking for Windows services to stop.

* No malware services found to stop.

Checking for processes to terminate.

* C:\WINDOWS\stsystra.exe (PID: 2100) [WD-HEUR]

1 proccess terminated!

Checking Registry for malware related settings.

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks.

* No issues found.

Restarting Explorer.exe in order to apply changes.

Program finished at: 08/26/2012 08:35:46 AM
Execution time: 0 hours(s), 0 minute(s), and 16 seconds(s)



Malwarebytes Anti-Malware (Trial) 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.26.02

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
ADMIN :: DJLUCHINI2 [administrator]

Protection: Enabled

8/26/2012 8:40:02 AM
mbam-log-2012-08-26 (08-40-02).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 193058
Time elapsed: 10 minute(s), 1 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)


08:51:49.0640 3632 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
08:51:50.0421 3632 ============================================================
08:51:50.0421 3632 Current date / time: 2012/08/26 08:51:50.0421
08:51:50.0421 3632 SystemInfo:
08:51:50.0421 3632
08:51:50.0421 3632 OS Version: 5.1.2600 ServicePack: 3.0
08:51:50.0421 3632 Product type: Workstation
08:51:50.0421 3632 ComputerName: DJLUCHINI2
08:51:50.0421 3632 UserName: ADMIN
08:51:50.0421 3632 Windows directory: C:\WINDOWS
08:51:50.0421 3632 System windows directory: C:\WINDOWS
08:51:50.0421 3632 Processor architecture: Intel x86
08:51:50.0421 3632 Number of processors: 2
08:51:50.0421 3632 Page size: 0x1000
08:51:50.0421 3632 Boot type: Normal boot
08:51:50.0421 3632 ============================================================
08:51:52.0625 3632 Drive \Device\Harddisk0\DR0 - Size: 0xDF8F90000 (55.89 Gb), SectorSize: 0x200, Cylinders: 0x1C80, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
08:51:52.0625 3632 ============================================================
08:51:52.0625 3632 \Device\Harddisk0\DR0:
08:51:52.0625 3632 MBR partitions:
08:51:52.0625 3632 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x6FC6800
08:51:52.0625 3632 ============================================================
08:51:52.0656 3632 C: <-> \Device\Harddisk0\DR0\Partition1
08:51:52.0656 3632 ============================================================
08:51:52.0656 3632 Initialize success
08:51:52.0656 3632 ============================================================
08:52:30.0609 6116 ============================================================
08:52:30.0609 6116 Scan started
08:52:30.0609 6116 Mode: Manual; TDLFS;
08:52:30.0609 6116 ============================================================
08:52:31.0984 6116 ================ Scan system memory ========================
08:52:32.0859 6116 System memory - ok
08:52:32.0859 6116 ================ Scan services =============================
08:52:33.0046 6116 [ 0B27AE82C113D3687024D18459440426 ] Aavmker4 C:\WINDOWS\system32\drivers\Aavmker4.sys
08:52:33.0062 6116 Aavmker4 - ok
08:52:33.0062 6116 Abiosdsk - ok
08:52:33.0062 6116 abp480n5 - ok
08:52:33.0109 6116 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
08:52:33.0125 6116 ACPI - ok
08:52:33.0140 6116 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
08:52:33.0140 6116 ACPIEC - ok
08:52:33.0156 6116 adpu160m - ok
08:52:33.0203 6116 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
08:52:33.0203 6116 aec - ok
08:52:33.0250 6116 [ 375EB0B97E3950ADEF3633C27A82438B ] AegisP C:\WINDOWS\system32\DRIVERS\AegisP.sys
08:52:33.0265 6116 AegisP - ok
08:52:33.0312 6116 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
08:52:33.0312 6116 AFD - ok
08:52:33.0328 6116 Aha154x - ok
08:52:33.0328 6116 aic78u2 - ok
08:52:33.0343 6116 aic78xx - ok
08:52:33.0375 6116 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
08:52:33.0375 6116 Alerter - ok
08:52:33.0390 6116 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
08:52:33.0390 6116 ALG - ok
08:52:33.0406 6116 AliIde - ok
08:52:33.0406 6116 amsint - ok
08:52:33.0437 6116 [ 090880E9BF20F928BC341F96D27C019E ] ApfiltrService C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
08:52:33.0437 6116 ApfiltrService - ok
08:52:33.0453 6116 [ EC94E05B76D033B74394E7B2175103CF ] APPDRV C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS
08:52:33.0453 6116 APPDRV - ok
08:52:33.0562 6116 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
08:52:33.0578 6116 Apple Mobile Device - ok
08:52:33.0609 6116 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
08:52:33.0609 6116 AppMgmt - ok
08:52:33.0625 6116 asc - ok
08:52:33.0625 6116 asc3350p - ok
08:52:33.0625 6116 asc3550 - ok
08:52:33.0734 6116 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
08:52:33.0734 6116 aspnet_state - ok
08:52:33.0781 6116 [ 1C1F3D6DDDC046C920C493A779649F66 ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
08:52:33.0781 6116 aswFsBlk - ok
08:52:33.0796 6116 [ 9E912FE7B41650701EF2B227ACA440F3 ] aswMon2 C:\WINDOWS\system32\drivers\aswMon2.sys
08:52:33.0796 6116 aswMon2 - ok
08:52:33.0828 6116 [ 982E275D1C5801042FE94209FB0160FB ] aswRdr C:\WINDOWS\system32\drivers\aswRdr.sys
08:52:33.0828 6116 aswRdr - ok
08:52:33.0906 6116 [ 73DBCF808E00580F2A47F93DD9B03876 ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
08:52:33.0921 6116 aswSnx - ok
08:52:33.0984 6116 [ 6CBD7D3A33F498D09C831CDD732DA2E0 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
08:52:34.0000 6116 aswSP - ok
08:52:34.0015 6116 [ 7109A9AA551F37CD168C02368465957E ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
08:52:34.0031 6116 aswTdi - ok
08:52:34.0078 6116 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
08:52:34.0078 6116 AsyncMac - ok
08:52:34.0109 6116 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
08:52:34.0109 6116 atapi - ok
08:52:34.0109 6116 Atdisk - ok
08:52:34.0140 6116 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
08:52:34.0140 6116 Atmarpc - ok
08:52:34.0203 6116 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
08:52:34.0203 6116 AudioSrv - ok
08:52:34.0218 6116 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
08:52:34.0218 6116 audstub - ok
08:52:34.0296 6116 [ 2F7C0F3E39C45E0127FB78B2F18A41F3 ] avast! Antivirus C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
08:52:34.0296 6116 avast! Antivirus - ok
08:52:34.0343 6116 [ C0ACD392ECE55784884CC208AAFA06CE ] b57w2k C:\WINDOWS\system32\DRIVERS\b57xp32.sys
08:52:34.0359 6116 b57w2k - ok
08:52:34.0375 6116 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
08:52:34.0375 6116 Beep - ok
08:52:34.0437 6116 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
08:52:34.0468 6116 BITS - ok
08:52:34.0562 6116 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
08:52:34.0578 6116 Bonjour Service - ok
08:52:34.0625 6116 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
08:52:34.0625 6116 Browser - ok
08:52:34.0625 6116 BT - ok
08:52:34.0640 6116 Btcsrusb - ok
08:52:34.0703 6116 [ B279426E3C0C344893ED78A613A73BDE ] BthEnum C:\WINDOWS\system32\DRIVERS\BthEnum.sys
08:52:34.0703 6116 BthEnum - ok
08:52:34.0750 6116 [ 00D4EE3EA6F2713B2314A000BA3232DC ] BtHidBus C:\WINDOWS\system32\Drivers\BtHidBus.sys
08:52:34.0750 6116 BtHidBus - ok
08:52:34.0796 6116 [ 662BFD909447DD9CC15B1A1C366583B4 ] BTHPORT C:\WINDOWS\system32\Drivers\BTHport.sys
08:52:34.0812 6116 BTHPORT - ok
08:52:34.0859 6116 [ F4C43C66471B87996D95DB7A3A664A37 ] BthServ C:\WINDOWS\System32\bthserv.dll
08:52:34.0859 6116 BthServ - ok
08:52:34.0890 6116 [ 61364CD71EF63B0F038B7E9DF00F1EFA ] BTHUSB C:\WINDOWS\system32\Drivers\BTHUSB.sys
08:52:34.0890 6116 BTHUSB - ok
08:52:34.0921 6116 [ 1930D0CBC8B019CDFE53C949B33C77AD ] btnetBUs C:\WINDOWS\system32\Drivers\btnetBus.sys
08:52:34.0921 6116 btnetBUs - ok
08:52:34.0968 6116 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
08:52:34.0968 6116 cbidf2k - ok
08:52:35.0000 6116 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
08:52:35.0000 6116 CCDECODE - ok
08:52:35.0015 6116 cd20xrnt - ok
08:52:35.0031 6116 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
08:52:35.0031 6116 Cdaudio - ok
08:52:35.0046 6116 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
08:52:35.0046 6116 Cdfs - ok
08:52:35.0078 6116 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
08:52:35.0093 6116 Cdrom - ok
08:52:35.0093 6116 cerc6 - ok
08:52:35.0093 6116 Changer - ok
08:52:35.0140 6116 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
08:52:35.0140 6116 CiSvc - ok
08:52:35.0156 6116 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
08:52:35.0156 6116 ClipSrv - ok
08:52:35.0187 6116 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:52:35.0203 6116 clr_optimization_v2.0.50727_32 - ok
08:52:35.0218 6116 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
08:52:35.0218 6116 CmBatt - ok
08:52:35.0218 6116 CmdIde - ok
08:52:35.0234 6116 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
08:52:35.0234 6116 Compbatt - ok
08:52:35.0250 6116 COMSysApp - ok
08:52:35.0265 6116 Cpqarray - ok
08:52:35.0281 6116 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
08:52:35.0281 6116 CryptSvc - ok
08:52:35.0281 6116 dac2w2k - ok
08:52:35.0296 6116 dac960nt - ok
08:52:35.0359 6116 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
08:52:35.0375 6116 DcomLaunch - ok
08:52:35.0437 6116 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
08:52:35.0437 6116 Dhcp - ok
08:52:35.0453 6116 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
08:52:35.0453 6116 Disk - ok
08:52:35.0468 6116 dmadmin - ok
08:52:35.0531 6116 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
08:52:35.0562 6116 dmboot - ok
08:52:35.0562 6116 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
08:52:35.0578 6116 dmio - ok
08:52:35.0578 6116 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
08:52:35.0578 6116 dmload - ok
08:52:35.0609 6116 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
08:52:35.0609 6116 dmserver - ok
08:52:35.0640 6116 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
08:52:35.0640 6116 DMusic - ok
08:52:35.0703 6116 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
08:52:35.0703 6116 Dnscache - ok
08:52:35.0734 6116 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
08:52:35.0750 6116 Dot3svc - ok
08:52:35.0750 6116 dpti2o - ok
08:52:35.0765 6116 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
08:52:35.0765 6116 drmkaud - ok
08:52:35.0781 6116 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
08:52:35.0796 6116 EapHost - ok
08:52:35.0812 6116 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
08:52:35.0828 6116 ERSvc - ok
08:52:35.0875 6116 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
08:52:35.0890 6116 Eventlog - ok
08:52:35.0937 6116 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
08:52:35.0953 6116 EventSystem - ok
08:52:36.0046 6116 [ 788C72B145C75A7EE5F5D6A32542D912 ] EvtEng C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
08:52:36.0062 6116 EvtEng - ok
08:52:36.0109 6116 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
08:52:36.0109 6116 Fastfat - ok
08:52:36.0156 6116 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
08:52:36.0171 6116 FastUserSwitchingCompatibility - ok
08:52:36.0203 6116 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
08:52:36.0203 6116 Fdc - ok
08:52:36.0234 6116 [ 50104C5F1EE1E295781CAF9521CA2E56 ] FilterService C:\WINDOWS\system32\DRIVERS\lvuvcflt.sys
08:52:36.0234 6116 FilterService - ok
08:52:36.0250 6116 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
08:52:36.0265 6116 Fips - ok
08:52:36.0328 6116 [ 227846995AFEEFA70D328BF5334A86A5 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
08:52:36.0343 6116 FLEXnet Licensing Service - ok
08:52:36.0375 6116 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
08:52:36.0375 6116 Flpydisk - ok
08:52:36.0390 6116 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
08:52:36.0406 6116 FltMgr - ok
08:52:36.0484 6116 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
08:52:36.0484 6116 FontCache3.0.0.0 - ok
08:52:36.0531 6116 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
08:52:36.0531 6116 Fs_Rec - ok
08:52:36.0578 6116 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
08:52:36.0578 6116 Ftdisk - ok
08:52:36.0625 6116 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
08:52:36.0625 6116 GEARAspiWDM - ok
08:52:36.0671 6116 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
08:52:36.0671 6116 Gpc - ok
08:52:36.0765 6116 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
08:52:36.0781 6116 gupdate - ok
08:52:36.0781 6116 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
08:52:36.0781 6116 gupdatem - ok
08:52:36.0812 6116 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
08:52:36.0812 6116 HDAudBus - ok
08:52:36.0890 6116 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
08:52:36.0890 6116 helpsvc - ok
08:52:36.0937 6116 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
08:52:36.0937 6116 HidServ - ok
08:52:36.0968 6116 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
08:52:36.0968 6116 HidUsb - ok
08:52:37.0015 6116 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
08:52:37.0031 6116 hkmsvc - ok
08:52:37.0031 6116 hpn - ok
08:52:37.0125 6116 [ E8EC1767EA315A39A0DD8989952CA0E9 ] HSF_DPV C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys
08:52:37.0156 6116 HSF_DPV - ok
08:52:37.0171 6116 [ 61478FA42EE04562E7F11F4DCA87E9C8 ] HSXHWAZL C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys
08:52:37.0171 6116 HSXHWAZL - ok
08:52:37.0234 6116 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
08:52:37.0250 6116 HTTP - ok
08:52:37.0281 6116 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
08:52:37.0296 6116 HTTPFilter - ok
08:52:37.0312 6116 i2omgmt - ok
08:52:37.0312 6116 i2omp - ok
08:52:37.0359 6116 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
08:52:37.0359 6116 i8042prt - ok
08:52:37.0671 6116 [ 2AAE7BE67911F4AEC9AD28E9CFB9096F ] ialm C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
08:52:37.0921 6116 ialm - ok
08:52:37.0984 6116 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
08:52:37.0984 6116 IDriverT - ok
08:52:38.0078 6116 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
08:52:38.0109 6116 idsvc - ok
08:52:38.0140 6116 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
08:52:38.0140 6116 Imapi - ok
08:52:38.0187 6116 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
08:52:38.0203 6116 ImapiService - ok
08:52:38.0203 6116 ini910u - ok
08:52:38.0218 6116 IntelIde - ok
08:52:38.0234 6116 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
08:52:38.0234 6116 intelppm - ok
08:52:38.0250 6116 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
08:52:38.0265 6116 Ip6Fw - ok
08:52:38.0281 6116 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
08:52:38.0296 6116 IpFilterDriver - ok
08:52:38.0296 6116 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
08:52:38.0296 6116 IpInIp - ok
08:52:38.0312 6116 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
08:52:38.0328 6116 IpNat - ok
08:52:38.0406 6116 [ E6BE7A41A28D8F2DB174957454D32448 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
08:52:38.0421 6116 iPod Service - ok
08:52:38.0453 6116 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
08:52:38.0453 6116 IPSec - ok
08:52:38.0484 6116 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
08:52:38.0484 6116 IRENUM - ok
08:52:38.0515 6116 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
08:52:38.0515 6116 isapnp - ok
08:52:38.0562 6116 [ 01CBB39001AFDA1152F3FCE15AB646EA ] IvtBtBUs C:\WINDOWS\system32\Drivers\IvtBtBus.sys
08:52:38.0562 6116 IvtBtBUs - ok
08:52:38.0671 6116 [ DE5D05FD449798EF88CC34AD4B1E7F85 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
08:52:38.0687 6116 JavaQuickStarterService - ok
08:52:38.0703 6116 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
08:52:38.0703 6116 Kbdclass - ok
08:52:38.0718 6116 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
08:52:38.0718 6116 kbdhid - ok
08:52:38.0750 6116 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
08:52:38.0750 6116 kmixer - ok
08:52:38.0781 6116 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
08:52:38.0781 6116 KSecDD - ok
08:52:38.0828 6116 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] LanmanServer C:\WINDOWS\System32\srvsvc.dll
08:52:38.0843 6116 LanmanServer - ok
08:52:38.0875 6116 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
08:52:38.0890 6116 lanmanworkstation - ok
08:52:38.0906 6116 lbrtfdc - ok
08:52:38.0953 6116 [ D83658E21A184515CCAD79EEC6EEB05B ] LexBceS C:\WINDOWS\system32\LEXBCES.EXE
08:52:38.0968 6116 LexBceS - ok
08:52:39.0015 6116 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
08:52:39.0015 6116 LmHosts - ok
08:52:39.0093 6116 [ 38440FE1A65B1FE3D246C5C4CAD22F53 ] LVCOMSer C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
08:52:39.0109 6116 LVCOMSer - ok
08:52:39.0140 6116 [ A6919138F29AE45E90E99FA94737E04C ] LVPr2Mon C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys
08:52:39.0140 6116 LVPr2Mon - ok
08:52:39.0187 6116 [ 28BD0E4B6C050B591B8CB35B9AD284E6 ] LVPrcSrv C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
08:52:39.0187 6116 LVPrcSrv - ok
08:52:39.0265 6116 [ B895839B8743E400D7C7DAE156F74E7E ] LVRS C:\WINDOWS\system32\DRIVERS\lvrs.sys
08:52:39.0281 6116 LVRS - ok
08:52:39.0296 6116 [ 23F8EF78BB9553E465A476F3CEE5CA18 ] LVUSBSta C:\WINDOWS\system32\drivers\LVUSBSta.sys
08:52:39.0296 6116 LVUSBSta - ok
08:52:39.0609 6116 [ 8BC0D5F6E3898F465A94C6D03AFB5A20 ] LVUVC C:\WINDOWS\system32\DRIVERS\lvuvc.sys
08:52:39.0890 6116 LVUVC - ok
08:52:39.0921 6116 [ 6DFE7F2E8E8A337263AA5C92A215F161 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
08:52:39.0921 6116 MBAMProtector - ok
08:52:40.0015 6116 [ 43683E970F008C93C9429EF428147A54 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
08:52:40.0031 6116 MBAMService - ok
08:52:40.0078 6116 [ E246A32C445056996074A397DA56E815 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
08:52:40.0078 6116 mdmxsdk - ok
08:52:40.0125 6116 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
08:52:40.0125 6116 Messenger - ok
08:52:40.0156 6116 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
08:52:40.0156 6116 mnmdd - ok
08:52:40.0203 6116 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
08:52:40.0218 6116 mnmsrvc - ok
08:52:40.0265 6116 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
08:52:40.0265 6116 Modem - ok
08:52:40.0265 6116 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
08:52:40.0281 6116 Mouclass - ok
08:52:40.0328 6116 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
08:52:40.0328 6116 mouhid - ok
08:52:40.0343 6116 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
08:52:40.0343 6116 MountMgr - ok
08:52:40.0421 6116 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
08:52:40.0437 6116 MozillaMaintenance - ok
08:52:40.0437 6116 mraid35x - ok
08:52:40.0453 6116 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
08:52:40.0453 6116 MRxDAV - ok
08:52:40.0515 6116 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
08:52:40.0515 6116 MRxSmb - ok
08:52:40.0546 6116 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
08:52:40.0562 6116 MSDTC - ok
08:52:40.0562 6116 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
08:52:40.0562 6116 Msfs - ok
08:52:40.0578 6116 MSIServer - ok
08:52:40.0609 6116 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
08:52:40.0609 6116 MSKSSRV - ok
08:52:40.0625 6116 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
08:52:40.0625 6116 MSPCLOCK - ok
08:52:40.0640 6116 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
08:52:40.0640 6116 MSPQM - ok
08:52:40.0671 6116 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
08:52:40.0687 6116 mssmbios - ok
08:52:40.0703 6116 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
08:52:40.0718 6116 MSTEE - ok
08:52:40.0765 6116 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
08:52:40.0765 6116 Mup - ok
08:52:40.0781 6116 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
08:52:40.0796 6116 NABTSFEC - ok
08:52:40.0843 6116 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
08:52:40.0859 6116 napagent - ok
08:52:40.0906 6116 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
08:52:40.0921 6116 NDIS - ok
08:52:40.0937 6116 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
08:52:40.0937 6116 NdisIP - ok
08:52:40.0984 6116 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
08:52:40.0984 6116 NdisTapi - ok
08:52:41.0000 6116 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
08:52:41.0000 6116 Ndisuio - ok
08:52:41.0015 6116 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
08:52:41.0031 6116 NdisWan - ok
08:52:41.0046 6116 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
08:52:41.0062 6116 NDProxy - ok
08:52:41.0062 6116 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
08:52:41.0062 6116 NetBIOS - ok
08:52:41.0093 6116 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
08:52:41.0093 6116 NetBT - ok
08:52:41.0140 6116 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
08:52:41.0156 6116 NetDDE - ok
08:52:41.0156 6116 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
08:52:41.0171 6116 NetDDEdsdm - ok
08:52:41.0203 6116 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
08:52:41.0218 6116 Netlogon - ok
08:52:41.0265 6116 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
08:52:41.0281 6116 Netman - ok
08:52:41.0312 6116 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
08:52:41.0312 6116 NetTcpPortSharing - ok
08:52:41.0437 6116 [ 71371ED9086A3D65F43967C89634E9A9 ] NETw3x32 C:\WINDOWS\system32\DRIVERS\NETw3x32.sys
08:52:41.0484 6116 NETw3x32 - ok
08:52:41.0531 6116 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
08:52:41.0546 6116 Nla - ok
08:52:41.0593 6116 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
08:52:41.0593 6116 Npfs - ok
08:52:41.0640 6116 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
08:52:41.0656 6116 Ntfs - ok
08:52:41.0687 6116 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
08:52:41.0687 6116 NtLmSsp - ok
08:52:41.0750 6116 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
08:52:41.0781 6116 NtmsSvc - ok
08:52:41.0812 6116 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
08:52:41.0812 6116 Null - ok
08:52:41.0843 6116 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
08:52:41.0843 6116 NwlnkFlt - ok
08:52:41.0859 6116 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
08:52:41.0859 6116 NwlnkFwd - ok
08:52:41.0953 6116 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:52:41.0953 6116 ose - ok
08:52:42.0234 6116 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
08:52:42.0500 6116 osppsvc - ok
08:52:42.0546 6116 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\drivers\Parport.sys
08:52:42.0546 6116 Parport - ok
08:52:42.0593 6116 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
08:52:42.0593 6116 PartMgr - ok
08:52:42.0609 6116 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
08:52:42.0609 6116 ParVdm - ok
08:52:42.0656 6116 [ FD2041E9BA03DB7764B2248F02475079 ] pccsmcfd C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
08:52:42.0656 6116 pccsmcfd - ok
08:52:42.0656 6116 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
08:52:42.0671 6116 PCI - ok
08:52:42.0671 6116 PCIDump - ok
08:52:42.0703 6116 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
08:52:42.0703 6116 PCIIde - ok
08:52:42.0734 6116 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\DRIVERS\pcmcia.sys
08:52:42.0734 6116 Pcmcia - ok
08:52:42.0750 6116 PDCOMP - ok
08:52:42.0750 6116 PDFRAME - ok
08:52:42.0750 6116 PDRELI - ok
08:52:42.0765 6116 PDRFRAME - ok
08:52:42.0765 6116 perc2 - ok
08:52:42.0781 6116 perc2hib - ok
08:52:42.0843 6116 [ F2B3785D7282BAC66D4B644FC88749F0 ] pfc C:\WINDOWS\system32\drivers\pfc.sys
08:52:42.0843 6116 pfc - ok
08:52:42.0890 6116 [ 2EE7F9A01FAC4D7C5516A5C3CE130FD7 ] pgfilter C:\Program Files\PeerGuardian2\pgfilter.sys
08:52:42.0890 6116 pgfilter - ok
08:52:42.0921 6116 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
08:52:42.0937 6116 PlugPlay - ok
08:52:42.0953 6116 [ E552D6598670B1E7655CB73D562E0CD9 ] Point32 C:\WINDOWS\system32\DRIVERS\point32.sys
08:52:42.0953 6116 Point32 - ok
08:52:42.0984 6116 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
08:52:42.0984 6116 PolicyAgent - ok
08:52:43.0031 6116 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
08:52:43.0046 6116 PptpMiniport - ok
08:52:43.0046 6116 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
08:52:43.0046 6116 ProtectedStorage - ok
08:52:43.0093 6116 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
08:52:43.0093 6116 PSched - ok
08:52:43.0109 6116 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
08:52:43.0109 6116 Ptilink - ok
08:52:43.0125 6116 [ DB3B30C3A4CDCF07E164C14584D9D0F2 ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
08:52:43.0140 6116 PxHelp20 - ok
08:52:43.0140 6116 ql1080 - ok
08:52:43.0140 6116 Ql10wnt - ok
08:52:43.0156 6116 ql12160 - ok
08:52:43.0156 6116 ql1240 - ok
08:52:43.0171 6116 ql1280 - ok
08:52:43.0203 6116 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
08:52:43.0203 6116 RasAcd - ok
08:52:43.0250 6116 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
08:52:43.0250 6116 RasAuto - ok
08:52:43.0281 6116 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
08:52:43.0296 6116 Rasl2tp - ok
08:52:43.0312 6116 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
08:52:43.0343 6116 RasMan - ok
08:52:43.0359 6116 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
08:52:43.0375 6116 RasPppoe - ok
08:52:43.0375 6116 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
08:52:43.0375 6116 Raspti - ok
08:52:43.0406 6116 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
08:52:43.0406 6116 Rdbss - ok
08:52:43.0406 6116 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
08:52:43.0421 6116 RDPCDD - ok
08:52:43.0468 6116 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
08:52:43.0468 6116 rdpdr - ok
08:52:43.0531 6116 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
08:52:43.0531 6116 RDPWD - ok
08:52:43.0578 6116 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
08:52:43.0593 6116 RDSessMgr - ok
08:52:43.0609 6116 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
08:52:43.0609 6116 redbook - ok
08:52:43.0671 6116 [ D8894ACEFE1A607DE7D0E628285BFFF4 ] RegSrvc C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
08:52:43.0687 6116 RegSrvc - ok
08:52:43.0718 6116 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
08:52:43.0718 6116 RemoteAccess - ok
08:52:43.0765 6116 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
08:52:43.0765 6116 RemoteRegistry - ok
08:52:43.0812 6116 [ 851C30DF2807FCFA21E4C681A7D6440E ] RFCOMM C:\WINDOWS\system32\DRIVERS\rfcomm.sys
08:52:43.0812 6116 RFCOMM - ok
08:52:43.0875 6116 [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] ROOTMODEM C:\WINDOWS\system32\Drivers\RootMdm.sys
08:52:43.0875 6116 ROOTMODEM - ok
08:52:43.0921 6116 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
08:52:43.0937 6116 RpcLocator - ok
08:52:43.0984 6116 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\system32\rpcss.dll
08:52:44.0000 6116 RpcSs - ok
08:52:44.0015 6116 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
08:52:44.0031 6116 RSVP - ok
08:52:44.0140 6116 [ C17C3A529CE14012F9731A6E264C1911 ] S24EventMonitor C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
08:52:44.0156 6116 S24EventMonitor - ok
08:52:44.0187 6116 [ DAEF68FC328342D219DE928C8EE610B2 ] s24trans C:\WINDOWS\system32\DRIVERS\s24trans.sys
08:52:44.0187 6116 s24trans - ok
08:52:44.0203 6116 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
08:52:44.0218 6116 SamSs - ok
08:52:44.0250 6116 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
08:52:44.0265 6116 SCardSvr - ok
08:52:44.0296 6116 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
08:52:44.0312 6116 Schedule - ok
08:52:44.0328 6116 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
08:52:44.0343 6116 Secdrv - ok
08:52:44.0359 6116 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
08:52:44.0375 6116 seclogon - ok
08:52:44.0406 6116 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
08:52:44.0421 6116 SENS - ok
08:52:44.0437 6116 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] Serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
08:52:44.0437 6116 Serenum - ok
08:52:44.0468 6116 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
08:52:44.0468 6116 Serial - ok
08:52:44.0546 6116 [ 3334DE016FDCDE5C98E30A405A72DD8D ] ServiceLayer C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
08:52:44.0562 6116 ServiceLayer - ok
08:52:44.0593 6116 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
08:52:44.0593 6116 Sfloppy - ok
08:52:44.0656 6116 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
08:52:44.0671 6116 SharedAccess - ok
08:52:44.0703 6116 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
08:52:44.0703 6116 ShellHWDetection - ok
08:52:44.0718 6116 Simbad - ok
08:52:44.0718 6116 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
08:52:44.0734 6116 SLIP - ok
08:52:44.0734 6116 Sparrow - ok
08:52:44.0781 6116 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
08:52:44.0781 6116 splitter - ok
08:52:44.0828 6116 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
08:52:44.0843 6116 Spooler - ok
08:52:44.0875 6116 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
08:52:44.0875 6116 sr - ok
08:52:44.0937 6116 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
08:52:44.0953 6116 srservice - ok
08:52:45.0015 6116 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
08:52:45.0031 6116 Srv - ok
08:52:45.0046 6116 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
08:52:45.0062 6116 SSDPSRV - ok
08:52:45.0156 6116 [ 3AD78E22210D3FBD9F76DE84A8DF19B5 ] STHDA C:\WINDOWS\system32\drivers\sthda.sys
08:52:45.0187 6116 STHDA - ok
08:52:45.0234 6116 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
08:52:45.0265 6116 stisvc - ok
08:52:45.0296 6116 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
08:52:45.0296 6116 streamip - ok
08:52:45.0328 6116 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
08:52:45.0328 6116 swenum - ok
08:52:45.0343 6116 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
08:52:45.0343 6116 swmidi - ok
08:52:45.0359 6116 SwPrv - ok
08:52:45.0359 6116 symc810 - ok
08:52:45.0375 6116 symc8xx - ok
08:52:45.0375 6116 sym_hi - ok
08:52:45.0390 6116 sym_u3 - ok
08:52:45.0406 6116 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
08:52:45.0406 6116 sysaudio - ok
08:52:45.0453 6116 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
08:52:45.0468 6116 SysmonLog - ok
08:52:45.0515 6116 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
08:52:45.0531 6116 TapiSrv - ok
08:52:45.0593 6116 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
08:52:45.0593 6116 Tcpip - ok
08:52:45.0656 6116 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
08:52:45.0656 6116 TDPIPE - ok
08:52:45.0671 6116 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
08:52:45.0671 6116 TDTCP - ok
08:52:45.0703 6116 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
08:52:45.0718 6116 TermDD - ok
08:52:45.0734 6116 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
08:52:45.0765 6116 TermService - ok
08:52:45.0781 6116 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
08:52:45.0796 6116 Themes - ok
08:52:45.0812 6116 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
08:52:45.0828 6116 TlntSvr - ok
08:52:45.0859 6116 [ E362D54FD394999C4178936396664E57 ] toshidpt C:\WINDOWS\system32\drivers\Toshidpt.sys
08:52:45.0875 6116 toshidpt - ok
08:52:45.0875 6116 TosIde - ok
08:52:45.0906 6116 [ 0470BF2D5F49FF98464AC2C838E6A080 ] tosporte C:\WINDOWS\system32\DRIVERS\tosporte.sys
08:52:45.0906 6116 tosporte - ok
08:52:45.0921 6116 [ 077869082A635E8FF2C205DC95C78775 ] Tosrfbd C:\WINDOWS\system32\Drivers\tosrfbd.sys
08:52:45.0937 6116 Tosrfbd - ok
08:52:45.0968 6116 [ 613E09572F4C5B92CA6BE8BDC4CC5B7D ] Tosrfbnp C:\WINDOWS\system32\Drivers\tosrfbnp.sys
08:52:45.0984 6116 Tosrfbnp - ok
08:52:46.0000 6116 [ 5BA1CA3B3CDDB1DDC67DF473F05D1EC2 ] Tosrfcom C:\WINDOWS\system32\Drivers\tosrfcom.sys
08:52:46.0000 6116 Tosrfcom - ok
08:52:46.0015 6116 [ F4E4795528D17FF8D1D6D98EBBB92655 ] Tosrfhid C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys
08:52:46.0015 6116 Tosrfhid - ok
08:52:46.0031 6116 [ C52FD27B9ADF3A1F22CB90E6BCF9B0CB ] tosrfnds C:\WINDOWS\system32\DRIVERS\tosrfnds.sys
08:52:46.0031 6116 tosrfnds - ok
08:52:46.0078 6116 [ B5518ADB2B0029FF95D22E8E7336F49F ] TosRfSnd C:\WINDOWS\system32\drivers\TosRfSnd.sys
08:52:46.0078 6116 TosRfSnd - ok
08:52:46.0093 6116 [ AC2123E788230C712D0919ED0FEC9DDD ] Tosrfusb C:\WINDOWS\system32\Drivers\tosrfusb.sys
08:52:46.0109 6116 Tosrfusb - ok
08:52:46.0140 6116 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
08:52:46.0156 6116 TrkWks - ok
08:52:46.0203 6116 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
08:52:46.0218 6116 Udfs - ok
08:52:46.0218 6116 ultra - ok
08:52:46.0265 6116 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
08:52:46.0281 6116 Update - ok
08:52:46.0328 6116 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
08:52:46.0343 6116 upnphost - ok
08:52:46.0375 6116 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
08:52:46.0390 6116 UPS - ok
08:52:46.0406 6116 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
08:52:46.0421 6116 usbaudio - ok
08:52:46.0453 6116 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
08:52:46.0468 6116 usbccgp - ok
08:52:46.0500 6116 [ 6B5E4D5E6E5ECD6ACD14AED59768CE5C ] USBCCID C:\WINDOWS\system32\DRIVERS\usbccid.sys
08:52:46.0515 6116 USBCCID - ok
08:52:46.0546 6116 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
08:52:46.0562 6116 usbehci - ok
08:52:46.0578 6116 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
08:52:46.0578 6116 usbhub - ok
08:52:46.0609 6116 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
08:52:46.0625 6116 usbprint - ok
08:52:46.0656 6116 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
08:52:46.0656 6116 usbscan - ok
08:52:46.0703 6116 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
08:52:46.0703 6116 USBSTOR - ok
08:52:46.0718 6116 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
08:52:46.0734 6116 usbuhci - ok
08:52:46.0734 6116 VComm - ok
08:52:46.0734 6116 VcommMgr - ok
08:52:46.0750 6116 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
08:52:46.0765 6116 VgaSave - ok
08:52:46.0765 6116 ViaIde - ok
08:52:46.0781 6116 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
08:52:46.0781 6116 VolSnap - ok
08:52:46.0843 6116 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
08:52:46.0859 6116 VSS - ok
08:52:46.0890 6116 [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time C:\WINDOWS\system32\w32time.dll
08:52:46.0921 6116 W32Time - ok
08:52:46.0937 6116 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
08:52:46.0937 6116 Wanarp - ok
08:52:46.0953 6116 WDICA - ok
08:52:47.0000 6116 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
08:52:47.0000 6116 wdmaud - ok
08:52:47.0046 6116 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
08:52:47.0062 6116 WebClient - ok
08:52:47.0125 6116 [ BA6B6FB242A6BA4068C8B763063BEB63 ] winachsf C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
08:52:47.0140 6116 winachsf - ok
08:52:47.0218 6116 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
08:52:47.0234 6116 winmgmt - ok
08:52:47.0281 6116 [ 22516ED8E0D89323D4E0D9CCC2848819 ] WLANKEEPER C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
08:52:47.0296 6116 WLANKEEPER - ok
08:52:47.0328 6116 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
08:52:47.0343 6116 WmdmPmSN - ok
08:52:47.0390 6116 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi C:\WINDOWS\System32\advapi32.dll
08:52:47.0406 6116 Wmi - ok
08:52:47.0437 6116 [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
08:52:47.0437 6116 WmiAcpi - ok
08:52:47.0453 6116 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
08:52:47.0453 6116 WmiApSrv - ok
08:52:47.0562 6116 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
08:52:47.0593 6116 WMPNetworkSvc - ok
08:52:47.0625 6116 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
08:52:47.0625 6116 WpdUsb - ok
08:52:47.0671 6116 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
08:52:47.0687 6116 wscsvc - ok
08:52:47.0703 6116 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
08:52:47.0703 6116 WSTCODEC - ok
08:52:47.0718 6116 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
08:52:47.0734 6116 wuauserv - ok
08:52:47.0781 6116 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
08:52:47.0781 6116 WudfPf - ok
08:52:47.0812 6116 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
08:52:47.0812 6116 WudfRd - ok
08:52:47.0843 6116 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
08:52:47.0859 6116 WudfSvc - ok
08:52:47.0937 6116 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
08:52:47.0968 6116 WZCSVC - ok
08:52:48.0000 6116 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
08:52:48.0015 6116 xmlprov - ok
08:52:48.0031 6116 ================ Scan global ===============================
08:52:48.0046 6116 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
08:52:48.0109 6116 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
08:52:48.0140 6116 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
08:52:48.0187 6116 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
08:52:48.0187 6116 [Global] - ok
08:52:48.0187 6116 ================ Scan MBR ==================================
08:52:48.0218 6116 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
08:52:48.0812 6116 \Device\Harddisk0\DR0 - ok
08:52:48.0812 6116 ================ Scan VBR ==================================
08:52:48.0812 6116 [ 966D9415FAFEBC8914D3329347525A5E ] \Device\Harddisk0\DR0\Partition1
08:52:48.0812 6116 \Device\Harddisk0\DR0\Partition1 - ok
08:52:48.0812 6116 ============================================================
08:52:48.0812 6116 Scan finished
08:52:48.0812 6116 ============================================================
08:52:48.0828 4632 Detected object count: 0
08:52:48.0828 4632 Actual detected object count: 0

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:15 AM

Posted 26 August 2012 - 08:04 PM

Hi,it's not showing here, We need you to repost to find it.
We need a deeper look. Please go here....Preparation Guide ,do steps 6-9.

Create a DDS log and post it in the new topic explained in step 9 which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.
If GMER won't run (it may not on a 64 bit system) skip it and move on.

Let me know if that went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users