Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Won't start up in normal mode - blue screens and reboots


  • Please log in to reply
49 replies to this topic

#1 geegollygirl

geegollygirl

  • Members
  • 60 posts
  • OFFLINE
  •  
  • Local time:05:21 AM

Posted 15 August 2012 - 08:42 AM

Hello,

I am trying to help a friend with their PC and am trying to avoid a complete reinstall. They first gave it to me and said it wasn't starting up at all (as in thought hard-drive had gone out) but I never experienced that so I ran the normal "clean it up" scans and then when I went to return it, it started this stuff... As the title says, it will get all the way to showing the desktop when booting up, but then flashes a blue screen and instantly reboots. I can select safe mode and it'll let me all the way in without blue screens. Any ideas what might be causing this? I do not know of any windows updates that installed but am not 100% sure about that.

Thanks!!

Edited by hamluis, 16 August 2012 - 06:09 AM.
Moved from Vista to Am I infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 Allan

Allan

  • BC Advisor
  • 8,562 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New Jersey
  • Local time:05:21 AM

Posted 15 August 2012 - 09:25 AM

Download BlueScreenView:
http://www.nirsoft.net/utils/blue_screen_view.html
unzip downloaded file and double click on BlueScreenView.exe to run the program.
when scanning is done, go to EDIT - Select All
Go to FILE - SAVE Selected Items, and save the report as BSOD.txt
Open BSOD.txt in Notepad, copy all of the content, and paste it into your next reply

#3 geegollygirl

geegollygirl
  • Topic Starter

  • Members
  • 60 posts
  • OFFLINE
  •  
  • Local time:05:21 AM

Posted 15 August 2012 - 06:01 PM

I am not having much luck with this application, I saved it and put it on the PC with issues, and it opens but I don't see any indication it is scanning and it just has 0 crashes at the bottom of the window. Then I thought maybe I had to have it crash once the program is installed and it would log something but still am not having any luck. Any idea what I could be missing?

Edited by geegollygirl, 15 August 2012 - 06:01 PM.


#4 AustrAlien

AustrAlien

    Inquisitor


  • BC Advisor
  • 6,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cowra NSW Australia
  • Local time:07:21 PM

Posted 15 August 2012 - 10:02 PM

No minidumps are being saved in the default location, so BlueScreenView has nothing to report.

Re: "... but then flashes a blue screen and instantly reboots"
Let's get a look at the message on that BSOD when you attempt to load Windows normally.

Please do the following:
(the screenshots are from Windows XP, but things will be essentially the same in Vista)

Get a look at the error message presented by the BSOD (blue screen of death) ....
  • Start tapping the F8 key after you press the ON button, and continue tapping until you are presented with the "Advanced Boot Options" menu screen.

    Posted Image
  • Use the UP/DOWN arrow keys to select "Disable automatic restart on system failure" and press the <ENTER> key.
  • Your system will attempt to restart normally, but when it crashes, it will not re-start: Instead, you will see a BSOD with error message.

    Posted Image
  • Record the error message details (contained in the areas outlined in red, in the above example image), and post in your reply.

AustrAlien
Google is my friend. Make Google your friend too.

Posted Image

#5 geegollygirl

geegollygirl
  • Topic Starter

  • Members
  • 60 posts
  • OFFLINE
  •  
  • Local time:05:21 AM

Posted 15 August 2012 - 10:14 PM

The top section (page fault in your example) does not exist, it goes straight from the top sentence to the "if this is the first..." sentence. The technical information is

*** STOP: 0x0000008E (0xC0000005, 0x8246A1A7, 0x9BF5C91C, 0x00000000)

Thanks!

Edited by geegollygirl, 15 August 2012 - 10:14 PM.


#6 AustrAlien

AustrAlien

    Inquisitor


  • BC Advisor
  • 6,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cowra NSW Australia
  • Local time:07:21 PM

Posted 15 August 2012 - 10:26 PM

*** STOP: 0x0000008E (0xC0000005, , , )

You wrote in your first post: "... I ran the normal "clean it up" scans ..."
Are you perchance referring to anti-malware scans???
  • Was the system infected with malware?
The above posted STOP: 0x0000008E (0xC0000005, , , ) is quite likely due to malware on the system.
AustrAlien
Google is my friend. Make Google your friend too.

Posted Image

#7 geegollygirl

geegollygirl
  • Topic Starter

  • Members
  • 60 posts
  • OFFLINE
  •  
  • Local time:05:21 AM

Posted 15 August 2012 - 10:54 PM

I don't remember which ones I ran, but she has Malwarebytes and Spybot installed. I know I ran a full MS Security Essentials scan and also went online and ran an ESET scan. There is also a Norton folder on the PC but I did not open or run anything from it. Is there a way to identify the probable Malware with something online? Would you suggest un-installing any/all of the programs listed above?

#8 AustrAlien

AustrAlien

    Inquisitor


  • BC Advisor
  • 6,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cowra NSW Australia
  • Local time:07:21 PM

Posted 15 August 2012 - 11:00 PM

On the basis that there is reason to suspect malware on the system, I will request that this topic be moved to the Am I infected? What do I do? forum and you will receive assistance there to scan for malware.

It is quite possible, even likely that a rootkit still exists on the system.
AustrAlien
Google is my friend. Make Google your friend too.

Posted Image

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:21 AM

Posted 16 August 2012 - 06:51 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#10 geegollygirl

geegollygirl
  • Topic Starter

  • Members
  • 60 posts
  • OFFLINE
  •  
  • Local time:05:21 AM

Posted 17 August 2012 - 09:37 AM

aswMBR scan results

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-16 22:38:39
-----------------------------
22:38:39.465 OS Version: Windows 6.0.6002 Service Pack 2
22:38:39.465 Number of processors: 1 586 0x301
22:38:39.465 ComputerName: KAYLA-PC UserName: Kayla
22:39:12.927 Initialize success
22:39:42.770 AVAST engine defs: 12081601
22:42:12.327 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP3T0L0-6
22:42:12.327 Disk 0 Vendor: WDC_WD1600BEVT-60ZCT1 13.01A13 Size: 152627MB BusType: 3
22:42:12.889 Disk 0 MBR read successfully
22:42:12.889 Disk 0 MBR scan
22:42:13.357 Disk 0 unknown MBR code
22:42:13.825 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 142017 MB offset 2048
22:42:14.199 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 10606 MB offset 290852864
22:42:14.605 Disk 0 scanning sectors +312573952
22:42:15.073 Disk 0 scanning C:\Windows\system32\drivers
22:42:46.881 Service scanning
22:43:50.046 Modules scanning
22:44:05.084 Disk 0 trace - called modules:
22:44:05.115 ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll ataport.SYS pciide.sys PCIIDEX.SYS atapi.sys
22:44:08.110 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85a68030]
22:44:08.110 3 CLASSPNP.SYS[807a78b3] -> nt!IofCallDriver -> [0x84fbe918]
22:44:08.126 5 acpi.sys[806146bc] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP3T0L0-6[0x85946b98]
22:44:09.124 AVAST engine scan C:\Windows
22:44:13.180 AVAST engine scan C:\Windows\system32
22:51:35.456 AVAST engine scan C:\Windows\system32\drivers
22:52:32.100 AVAST engine scan C:\Users\Kayla
22:54:06.948 AVAST engine scan C:\ProgramData
22:56:46.224 Scan finished successfully
23:34:36.616 Disk 0 MBR has been saved successfully to "C:\Users\Kayla\Documents\MBR.dat"
23:34:36.616 The log file has been saved successfully to "C:\Users\Kayla\Documents\aswMBR.txt"



Minibox Results...

MiniToolBox by Farbar Version: 23-07-2012
Ran by Kayla (administrator) on 17-08-2012 at 00:20:24
Microsoft® Windows Vista™ Home Basic Service Pack 2 (X86)
Boot Mode: Network
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

::1 localhost

Thanks so much for your help!

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:21 AM

Posted 17 August 2012 - 09:43 AM

TDSSkiller log?

Mini toolbox log is incomplete

Edited by narenxp, 17 August 2012 - 09:43 AM.


#12 geegollygirl

geegollygirl
  • Topic Starter

  • Members
  • 60 posts
  • OFFLINE
  •  
  • Local time:05:21 AM

Posted 17 August 2012 - 05:36 PM

Sorry about that, I didn't realize it was longer...


MiniToolBox by Farbar Version: 23-07-2012
Ran by Kayla (administrator) on 17-08-2012 at 17:29:35
Microsoft® Windows Vista™ Home Basic Service Pack 2 (X86)
Boot Mode: Network
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

::1 localhost








































































































































































































216.240.133.193 www.google-analytics.com.
216.240.133.193 ad-emea.doubleclick.net.
216.240.133.193 www.statcounter.com.
69.72.252.254 www.google-analytics.com.
69.72.252.254 ad-emea.doubleclick.net.
69.72.252.254 www.statcounter.com.

127.0.0.1 localhost

========================= IP Configuration: ================================

Atheros AR5007 802.11b/g WiFi Adapter = Wireless Network Connection (Connected)
NVIDIA nForce Networking Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Kayla-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : insightbb.com

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : NVIDIA nForce 10/100/1000 Mbps Networking Controller
Physical Address. . . . . . . . . : 00-1F-16-D4-39-EE
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : insightbb.com
Description . . . . . . . . . . . : Atheros AR5007 802.11b/g WiFi Adapter
Physical Address. . . . . . . . . : 00-24-2C-89-18-CC
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::85f6:589e:1ca4:7907%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.101(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, August 16, 2012 10:37:50 PM
Lease Expires . . . . . . . . . . : Saturday, August 18, 2012 10:37:50 AM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 218113068
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-11-AE-CC-9F-00-24-2C-89-18-CC
DNS Servers . . . . . . . . . . . : 74.128.17.114
74.128.19.102
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.insightbb.com
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 6TO4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 13:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Tun Miniport Adapter #2
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 14:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{537CE1EC-5ACE-4166-9DC2-C03D61A63F50}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: cache1.insightbb.com
Address: 74.128.17.114

Name: google.com
Addresses: 2607:f8b0:4009:802::1004
74.125.225.78
74.125.225.64
74.125.225.65
74.125.225.66
74.125.225.67
74.125.225.68
74.125.225.69
74.125.225.70
74.125.225.71
74.125.225.72
74.125.225.73



Pinging google.com [74.125.225.73] with 32 bytes of data:

Reply from 74.125.225.73: bytes=32 time=26ms TTL=55

Reply from 74.125.225.73: bytes=32 time=20ms TTL=55



Ping statistics for 74.125.225.73:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 20ms, Maximum = 26ms, Average = 23ms

Server: cache1.insightbb.com
Address: 74.128.17.114

Name: yahoo.com
Addresses: 98.139.183.24
72.30.38.140
98.138.253.109



Pinging yahoo.com [72.30.38.140] with 32 bytes of data:

Reply from 72.30.38.140: bytes=32 time=77ms TTL=48

Reply from 72.30.38.140: bytes=32 time=75ms TTL=48



Ping statistics for 72.30.38.140:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 75ms, Maximum = 77ms, Average = 76ms

Server: cache1.insightbb.com
Address: 74.128.17.114

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
11 ...00 1f 16 d4 39 ee ...... NVIDIA nForce 10/100/1000 Mbps Networking Controller
10 ...00 24 2c 89 18 cc ...... Atheros AR5007 802.11b/g WiFi Adapter
1 ........................... Software Loopback Interface 1
15 ...00 00 00 00 00 00 00 e0 isatap.insightbb.com
12 ...00 00 00 00 00 00 00 e0 6TO4 Adapter
13 ...02 00 54 55 4e 01 ...... Microsoft Tun Miniport Adapter #2
14 ...00 00 00 00 00 00 00 e0 isatap.{537CE1EC-5ACE-4166-9DC2-C03D61A63F50}
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.101 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.101 281
192.168.1.101 255.255.255.255 On-link 192.168.1.101 281
192.168.1.255 255.255.255.255 On-link 192.168.1.101 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.101 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.101 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
10 281 fe80::/64 On-link
10 281 fe80::85f6:589e:1ca4:7907/128
On-link
1 306 ff00::/8 On-link
10 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 06 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 07 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================

System errors:
=============

Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
32 Bit HP CIO Components Installer (Version: 6.1.2)
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.1.377)
Activation Assistant for the 2007 Microsoft Office suites
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0)
ActiveCheck component for HP Active Support Library (Version: 1.1.18.0)
Adobe AIR (Version: 1.0.4990)
Adobe AIR (Version: 1.0.8.4990)
Adobe Flash Player 10 ActiveX (Version: 10.3.181.34)
Adobe Reader 9.4.7 (Version: 9.4.7)
Adobe Shockwave Player (Version: 11.0)
Apple Application Support (Version: 2.0.1)
Apple Mobile Device Support (Version: 3.4.1.2)
Apple Software Update (Version: 2.1.3.127)
Atheros Driver Installation Program (Version: 5.2)
Auslogics Disk Defrag (Version: version 3.3)
Auslogics Registry Cleaner (Version: version 2.2)
B209a-m (Version: 140.0.690.000)
Bonjour (Version: 3.0.0.2)
BufferChm (Version: 140.0.212.000)
Choice Guard (Version: 1.2.87.0)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Conexant HD Audio (Version: 4.58.0.0)
Coupon Printer for Windows (Version: 5.0.0.0)
CyberLink DVD Suite (Version: 6.0.2203)
Destinations (Version: 140.0.77.000)
DeviceDiscovery (Version: 140.0.212.000)
ESU for Microsoft Vista (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.3.2710.138)
Google Update Helper (Version: 1.3.21.115)
GPBaseService2 (Version: 140.0.211.000)
HDAUDIO Soft Data Fax Modem with SmartCP
HP Active Support Library (Version: 3.1.9.1)
HP Customer Experience Enhancements (Version: 5.7.0.2664)
HP Customer Participation Program 14.0 (Version: 14.0)
HP Doc Viewer (Version: 1.03.0001)
HP DVD Play 3.7 (Version: 3.7.0.5723)
HP Help and Support (Version: 2.1.1.0)
HP Imaging Device Functions 14.0 (Version: 14.0)
HP Photo Creations (Version: 1.0.0.2024)
HP Photosmart Plus B209a-m All-in-One Driver Software 14.0 Rel. 6 (Version: 14.0)
HP Quick Launch Buttons 6.40 H2 (Version: 6.40 H2)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Solution Center 14.0 (Version: 14.0)
HP Total Care Advisor (Version: 2.4.4941.2798)
HP Total Care Setup (Version: 1.1.1983.2818)
HP Update (Version: 5.002.002.002)
HP User Guides 0118 (Version: 1.01.0000)
HP Wireless Assistant (Version: 3.00 K2)
HPAsset component for HP Active Support Library (Version: 2.0.64.3)
HPNetworkAssistant (Version: 1.1.70)
HPPhotoGadget (Version: 140.0.524.000)
HPProductAssistant (Version: 140.0.212.000)
HPSSupply (Version: 140.0.211.000)
iTunes (Version: 10.4.1.10)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 30 (Version: 6.0.300)
Java™ 6 Update 7 (Version: 1.6.0.70)
Juno Preloader (Version: 1.0.0)
LabelPrint (Version: 2.5.0926)
Malwarebytes Anti-Malware version 1.60.0.1800 (Version: 1.60.0.1800)
MarketResearch (Version: 140.0.212.000)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Live Search Toolbar (Version: 3.0.541.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Works (Version: 9.7.0621)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
muvee Reveal (Version: 7.0.35.6951)
My HP Games (Version: 1.0.0.62)
NetWaiting (Version: 2.5.52)
Network (Version: 140.0.215.000)
NetZero Preloader (Version: 1.0.0)
NVIDIA Drivers (Version: 1.5)
Power2Go (Version: 6.0.2202)
PowerDirector (Version: 7.0.2201)
PS_AIO_06_B209a-m_SW_Min (Version: 140.0.690.000)
QuickTime (Version: 7.70.80.34)
QuickTransfer (Version: 140.0.98.000)
Scan (Version: 140.0.80.000)
Shop for HP Supplies (Version: 14.0)
SmartWebPrinting (Version: 140.0.186.000)
SolutionCenter (Version: 140.0.213.000)
Spelling Dictionaries Support For Adobe Reader 9 (Version: 9.0.0)
SPORE Creature Creator Trial Edition (Version: 1.00.0000)
Spybot - Search & Destroy (Version: 1.6.2)
Status (Version: 140.0.212.000)
Synaptics Pointing Device Driver (Version: 11.1.3.0)
Toolbox (Version: 140.0.428.000)
Total Security
TrayApp (Version: 140.0.212.000)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2596598) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687310) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Visual C++ 2008 x86 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
VLC media player 1.0.5 (Version: 1.0.5)
WebReg (Version: 140.0.212.017)
Windows Live Call (Version: 14.0.8064.0206)
Windows Live Communications Platform (Version: 14.0.8064.206)
Windows Live Essentials (Version: 14.0.8064.0206)
Windows Live Essentials (Version: 14.0.8064.206)
Windows Live Messenger (Version: 14.0.8064.0206)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Yahoo! Toolbar

========================= Memory info: ===================================

Percentage of memory in use: 23%
Total physical RAM: 2813.69 MB
Available physical RAM: 2164.89 MB
Total Pagefile: 2959.18 MB
Available Pagefile: 2528.72 MB
Total Virtual: 2047.88 MB
Available Virtual: 1965.81 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:138.69 GB) (Free:83.48 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:10.36 GB) (Free:1.78 GB) NTFS

========================= Users: ========================================

User accounts for \\KAYLA-PC

Administrator Guest Kayla


**** End of log ****


TDS Killer Report

22:01:55.0092 2036 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05
22:01:55.0092 2036 ============================================================
22:01:55.0092 2036 Current date / time: 2012/08/16 22:01:55.0092
22:01:55.0092 2036 SystemInfo:
22:01:55.0092 2036
22:01:55.0092 2036 OS Version: 6.0.6002 ServicePack: 2.0
22:01:55.0092 2036 Product type: Workstation
22:01:55.0092 2036 ComputerName: KAYLA-PC
22:01:55.0092 2036 UserName: Kayla
22:01:55.0092 2036 Windows directory: C:\Windows
22:01:55.0092 2036 System windows directory: C:\Windows
22:01:55.0092 2036 Processor architecture: Intel x86
22:01:55.0092 2036 Number of processors: 1
22:01:55.0092 2036 Page size: 0x1000
22:01:55.0092 2036 Boot type: Safe boot
22:01:55.0092 2036 ============================================================
22:01:55.0544 2036 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
22:01:55.0544 2036 Drive \Device\Harddisk1\DR1 - Size: 0x3D700000 (0.96 Gb), SectorSize: 0x200, Cylinders: 0x7D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
22:01:55.0544 2036 ============================================================
22:01:55.0544 2036 \Device\Harddisk0\DR0:
22:01:55.0544 2036 MBR partitions:
22:01:55.0544 2036 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x11560800
22:01:55.0544 2036 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x11561000, BlocksNum 0x14B7000
22:01:55.0544 2036 \Device\Harddisk1\DR1:
22:01:55.0544 2036 MBR partitions:
22:01:55.0544 2036 \Device\Harddisk1\DR1\Partition1: MBR, Type 0xE, StartLBA 0x20, BlocksNum 0x1EB7E0
22:01:55.0544 2036 ============================================================
22:01:55.0560 2036 C: <-> \Device\Harddisk0\DR0\Partition1
22:01:55.0622 2036 D: <-> \Device\Harddisk0\DR0\Partition2
22:01:55.0622 2036 ============================================================
22:01:55.0622 2036 Initialize success
22:01:55.0622 2036 ============================================================
22:02:35.0496 0808 ============================================================
22:02:35.0496 0808 Scan started
22:02:35.0496 0808 Mode: Manual; TDLFS;
22:02:35.0496 0808 ============================================================
22:02:35.0948 0808 ================ Scan services =============================
22:02:36.0525 0808 [ 82b296ae1892fe3dbee00c9cf92f8ac7 ] ACPI C:\Windows\system32\drivers\acpi.sys
22:02:36.0525 0808 ACPI - ok
22:02:36.0744 0808 [ 04f0fcac69c7c71a3ac4eb97fafc8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
22:02:36.0744 0808 adp94xx - ok
22:02:37.0009 0808 [ 60505e0041f7751bdbb80f88bf45c2ce ] adpahci C:\Windows\system32\drivers\adpahci.sys
22:02:37.0009 0808 adpahci - ok
22:02:37.0305 0808 [ 8a42779b02aec986eab64ecfc98f8bd7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
22:02:37.0305 0808 adpu160m - ok
22:02:37.0586 0808 [ 241c9e37f8ce45ef51c3de27515ca4e5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
22:02:37.0586 0808 adpu320 - ok
22:02:38.0163 0808 [ 9d1fda9e086ba64e3c93c9de32461bcf ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:02:38.0163 0808 AeLookupSvc - ok
22:02:38.0741 0808 [ 3911b972b55fea0478476b2e777b29fa ] AFD C:\Windows\system32\drivers\afd.sys
22:02:38.0741 0808 AFD - ok
22:02:39.0287 0808 [ 13f9e33747e6b41a3ff305c37db0d360 ] agp440 C:\Windows\system32\drivers\agp440.sys
22:02:39.0302 0808 agp440 - ok
22:02:39.0567 0808 [ ae1fdf7bf7bb6c6a70f67699d880592a ] aic78xx C:\Windows\system32\drivers\djsvs.sys
22:02:39.0567 0808 aic78xx - ok
22:02:39.0864 0808 [ a1545b731579895d8cc44fc0481c1192 ] ALG C:\Windows\System32\alg.exe
22:02:39.0864 0808 ALG - ok
22:02:40.0145 0808 [ 3d76fda1a10acc3dc84728f55c29b6d4 ] aliide C:\Windows\system32\drivers\aliide.sys
22:02:40.0145 0808 aliide - ok
22:02:40.0706 0808 [ c47344bc706e5f0b9dce369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
22:02:40.0706 0808 amdagp - ok
22:02:40.0987 0808 [ 5b92e7839f5a1fbc1b39de67758ad6f8 ] amdide C:\Windows\system32\drivers\amdide.sys
22:02:40.0987 0808 amdide - ok
22:02:41.0549 0808 [ 18f29b49ad23ecee3d2a826c725c8d48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
22:02:41.0564 0808 AmdK7 - ok
22:02:41.0829 0808 [ 93ae7f7dd54ab986a6f1a1b37be7442d ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
22:02:41.0829 0808 AmdK8 - ok
22:02:42.0422 0808 [ c6d704c7f0434dc791aac37cac4b6e14 ] Appinfo C:\Windows\System32\appinfo.dll
22:02:42.0422 0808 Appinfo - ok
22:02:43.0077 0808 [ 20f6f19fe9e753f2780dc2fa083ad597 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:02:43.0077 0808 Apple Mobile Device - ok
22:02:43.0561 0808 [ 5d2888182fb46632511acee92fdad522 ] arc C:\Windows\system32\drivers\arc.sys
22:02:43.0561 0808 arc - ok
22:02:43.0842 0808 [ 5e2a321bd7c8b3624e41fdec3e244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
22:02:43.0842 0808 arcsas - ok
22:02:44.0403 0808 [ 53b202abee6455406254444303e87be1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:02:44.0403 0808 AsyncMac - ok
22:02:44.0715 0808 [ 1f05b78ab91c9075565a9d8a4b880bc4 ] atapi C:\Windows\system32\drivers\atapi.sys
22:02:44.0715 0808 atapi - ok
22:02:45.0277 0808 [ 02d34ac487df3da4e3f01874e61eb619 ] athr C:\Windows\system32\DRIVERS\athr.sys
22:02:45.0308 0808 athr - ok
22:02:45.0839 0808 [ 68e2a1a0407a66cf50da0300852424ab ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:02:45.0839 0808 AudioEndpointBuilder - ok
22:02:46.0135 0808 [ 68e2a1a0407a66cf50da0300852424ab ] Audiosrv C:\Windows\System32\Audiosrv.dll
22:02:46.0135 0808 Audiosrv - ok
22:02:46.0962 0808 [ 67e506b75bd5326a3ec7b70bd014dfb6 ] Beep C:\Windows\system32\drivers\Beep.sys
22:02:46.0962 0808 Beep - ok
22:02:47.0539 0808 [ c789af0f724fda5852fb9a7d3a432381 ] BFE C:\Windows\System32\bfe.dll
22:02:47.0555 0808 BFE - ok
22:02:48.0116 0808 [ 93952506c6d67330367f7e7934b6a02f ] BITS C:\Windows\System32\qmgr.dll
22:02:48.0163 0808 BITS - ok
22:02:48.0397 0808 [ d4df28447741fd3d953526e33a617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
22:02:48.0397 0808 blbdrive - ok
22:02:48.0740 0808 [ 1c87705ccb2f60172b0fc86b5d82f00d ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
22:02:48.0740 0808 Bonjour Service - ok
22:02:48.0974 0808 [ 35f376253f687bde63976ccb3f2108ca ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:02:48.0974 0808 bowser - ok
22:02:49.0536 0808 [ 9f9acc7f7ccde8a15c282d3f88b43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
22:02:49.0536 0808 BrFiltLo - ok
22:02:49.0801 0808 [ 56801ad62213a41f6497f96dee83755a ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
22:02:49.0817 0808 BrFiltUp - ok
22:02:50.0113 0808 [ a3629a0c4226f9e9c72faaeebc3ad33c ] Browser C:\Windows\System32\browser.dll
22:02:50.0113 0808 Browser - ok
22:02:50.0394 0808 [ b304e75cff293029eddf094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
22:02:50.0394 0808 Brserid - ok
22:02:50.0675 0808 [ 203f0b1e73adadbbb7b7b1fabd901f6b ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
22:02:50.0675 0808 BrSerWdm - ok
22:02:50.0955 0808 [ bd456606156ba17e60a04e18016ae54b ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
22:02:50.0955 0808 BrUsbMdm - ok
22:02:51.0236 0808 [ af72ed54503f717a43268b3cc5faec2e ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
22:02:51.0236 0808 BrUsbSer - ok
22:02:51.0533 0808 [ ad07c1ec6665b8b35741ab91200c6b68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
22:02:51.0533 0808 BTHMODEM - ok
22:02:52.0063 0808 [ 7add03e75beb9e6dd102c3081d29840a ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:02:52.0063 0808 cdfs - ok
22:02:52.0687 0808 [ 6b4bffb9becd728097024276430db314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
22:02:52.0687 0808 cdrom - ok
22:02:53.0233 0808 [ 312ec3e37a0a1f2006534913e37b4423 ] CertPropSvc C:\Windows\System32\certprop.dll
22:02:53.0233 0808 CertPropSvc - ok
22:02:53.0514 0808 [ e5d4133f37219dbcfe102bc61072589d ] circlass C:\Windows\system32\drivers\circlass.sys
22:02:53.0514 0808 circlass - ok
22:02:53.0810 0808 [ d7659d3b5b92c31e84e53c1431f35132 ] CLFS C:\Windows\system32\CLFS.sys
22:02:53.0810 0808 CLFS - ok
22:02:54.0122 0808 [ 8ee772032e2fe80a924f3b8dd5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:02:54.0122 0808 clr_optimization_v2.0.50727_32 - ok
22:02:54.0699 0808 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:02:54.0746 0808 clr_optimization_v4.0.30319_32 - ok
22:02:55.0183 0808 [ 99afc3795b58cc478fbbbcdc658fcb56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
22:02:55.0183 0808 CmBatt - ok
22:02:55.0464 0808 [ d36372a6ea6805efbe8884d10772313f ] cmdide C:\Windows\system32\drivers\cmdide.sys
22:02:55.0464 0808 cmdide - ok
22:02:56.0041 0808 [ 1adf6f4852e7d7e2e8ac481bdb970586 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT32.sys
22:02:56.0041 0808 CnxtHdAudService - ok
22:02:56.0618 0808 [ 7795f8cebc284a426b53f541e538695f ] Com4QLBEx C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
22:02:56.0634 0808 Com4QLBEx - ok
22:02:56.0868 0808 [ 6afef0b60fa25de07c0968983ee4f60a ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
22:02:56.0868 0808 Compbatt - ok
22:02:57.0149 0808 COMSysApp - ok
22:02:57.0164 0808 [ 741e9dff4f42d2d8477d0fc1dc0df871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
22:02:57.0164 0808 crcdisk - ok
22:02:57.0461 0808 [ 1f07becdca750766a96cda811ba86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
22:02:57.0461 0808 Crusoe - ok
22:02:58.0053 0808 [ 75c6a297e364014840b48eccd7525e30 ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:02:58.0053 0808 CryptSvc - ok
22:02:58.0646 0808 [ 3b5b4d53fec14f7476ca29a20cc31ac9 ] DcomLaunch C:\Windows\system32\rpcss.dll
22:02:58.0662 0808 DcomLaunch - ok
22:02:58.0896 0808 [ 622c41a07ca7e6dd91770f50d532cb6c ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:02:58.0896 0808 DfsC - ok
22:02:59.0520 0808 [ 2cc3dcfb533a1035b13dcab6160ab38b ] DFSR C:\Windows\system32\DFSR.exe
22:02:59.0582 0808 DFSR - ok
22:03:00.0081 0808 [ 9028559c132146fb75eb7acf384b086a ] Dhcp C:\Windows\System32\dhcpcsvc.dll
22:03:00.0081 0808 Dhcp - ok
22:03:00.0347 0808 [ 5d4aefc3386920236a548271f8f1af6a ] disk C:\Windows\system32\drivers\disk.sys
22:03:00.0347 0808 disk - ok
22:03:00.0924 0808 [ 57d762f6f5974af0da2be88a3349baaa ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:03:00.0924 0808 Dnscache - ok
22:03:01.0220 0808 [ 324fd74686b1ef5e7c19a8af49e748f6 ] dot3svc C:\Windows\System32\dot3svc.dll
22:03:01.0220 0808 dot3svc - ok
22:03:01.0766 0808 [ 4f59c172c094e1a1d46463a8dc061cbd ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
22:03:01.0782 0808 Dot4 - ok
22:03:02.0312 0808 [ 80bf3ba09f6f2523c8f6b7cc6dbf7bd5 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
22:03:02.0312 0808 Dot4Print - ok
22:03:02.0593 0808 [ c55004ca6b419b6695970dfe849b122f ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
22:03:02.0593 0808 dot4usb - ok
22:03:03.0170 0808 [ a622e888f8aa2f6b49e9bc466f0e5def ] DPS C:\Windows\system32\dps.dll
22:03:03.0170 0808 DPS - ok
22:03:03.0716 0808 [ 97fef831ab90bee128c9af390e243f80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:03:03.0732 0808 drmkaud - ok
22:03:04.0044 0808 [ c68ac676b0ef30cfbb1080adce49eb1f ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:03:04.0059 0808 DXGKrnl - ok
22:03:04.0574 0808 [ 5425f74ac0c1dbd96a1e04f17d63f94c ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
22:03:04.0574 0808 E1G60 - ok
22:03:04.0871 0808 [ c0b95e40d85cd807d614e264248a45b9 ] EapHost C:\Windows\System32\eapsvc.dll
22:03:04.0871 0808 EapHost - ok
22:03:05.0167 0808 [ 7f64ea048dcfac7acf8b4d7b4e6fe371 ] Ecache C:\Windows\system32\drivers\ecache.sys
22:03:05.0183 0808 Ecache - ok
22:03:05.0713 0808 [ 23b62471681a124889978f6295b3f4c6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
22:03:05.0729 0808 elxstor - ok
22:03:06.0041 0808 [ 4e6b23dfc917ea39306b529b773950f4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
22:03:06.0056 0808 EMDMgmt - ok
22:03:06.0555 0808 [ 3db974f3935483555d7148663f726c61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
22:03:06.0555 0808 ErrDev - ok
22:03:06.0633 0808 [ 67058c46504bc12d821f38cf99b7b28f ] EventSystem C:\Windows\system32\es.dll
22:03:06.0649 0808 EventSystem - ok
22:03:06.0899 0808 [ 22b408651f9123527bcee54b4f6c5cae ] exfat C:\Windows\system32\drivers\exfat.sys
22:03:06.0899 0808 exfat - ok
22:03:07.0211 0808 [ 1e9b9a70d332103c52995e957dc09ef8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:03:07.0226 0808 fastfat - ok
22:03:07.0491 0808 [ afe1e8b9782a0dd7fb46bbd88e43f89a ] fdc C:\Windows\system32\DRIVERS\fdc.sys
22:03:07.0491 0808 fdc - ok
22:03:07.0772 0808 [ 6629b5f0e98151f4afdd87567ea32ba3 ] fdPHost C:\Windows\system32\fdPHost.dll
22:03:07.0772 0808 fdPHost - ok
22:03:08.0053 0808 [ 89ed56dce8e47af40892778a5bd31fd2 ] FDResPub C:\Windows\system32\fdrespub.dll
22:03:08.0053 0808 FDResPub - ok
22:03:08.0318 0808 [ a8c0139a884861e3aae9cfe73b208a9f ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:03:08.0334 0808 FileInfo - ok
22:03:08.0334 0808 [ 0ae429a696aecbc5970e3cf2c62635ae ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:03:08.0349 0808 Filetrace - ok
22:03:08.0630 0808 [ 85b7cf99d532820495d68d747fda9ebd ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
22:03:08.0630 0808 flpydisk - ok
22:03:08.0942 0808 [ 01334f9ea68e6877c4ef05d3ea8abb05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:03:08.0942 0808 FltMgr - ok
22:03:09.0519 0808 [ 8ce364388c8eca59b14b539179276d44 ] FontCache C:\Windows\system32\FntCache.dll
22:03:09.0535 0808 FontCache - ok
22:03:09.0831 0808 [ c7fbdd1ed42f82bfa35167a5c9803ea3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
22:03:09.0847 0808 FontCache3.0.0.0 - ok
22:03:10.0081 0808 [ b972a66758577e0bfd1de0f91aaa27b5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:03:10.0081 0808 Fs_Rec - ok
22:03:10.0346 0808 [ 34582a6e6573d54a07ece5fe24a126b5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
22:03:10.0346 0808 gagp30kx - ok
22:03:10.0658 0808 [ 617dc2877015270914ca3c03873560d5 ] GameConsoleService C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe
22:03:10.0658 0808 GameConsoleService - ok
22:03:11.0204 0808 [ 8182ff89c65e4d38b2de4bb0fb18564e ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:03:11.0204 0808 GEARAspiWDM - ok
22:03:11.0516 0808 [ cd5d0aeee35dfd4e986a5aa1500a6e66 ] gpsvc C:\Windows\System32\gpsvc.dll
22:03:11.0547 0808 gpsvc - ok
22:03:12.0140 0808 [ 8f0de4fef8201e306f9938b0905ac96a ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
22:03:12.0140 0808 gupdate - ok
22:03:12.0608 0808 [ 8f0de4fef8201e306f9938b0905ac96a ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
22:03:12.0624 0808 gupdatem - ok
22:03:13.0185 0808 [ cc839e8d766cc31a7710c9f38cf3e375 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
22:03:13.0185 0808 gusvc - ok
22:03:13.0763 0808 [ cb04c744be0a61b1d648faed182c3b59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:03:13.0763 0808 HdAudAddService - ok
22:03:14.0059 0808 [ 062452b7ffd68c8c042a6261fe8dff4a ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
22:03:14.0075 0808 HDAudBus - ok
22:03:14.0324 0808 [ 1338520e78d90154ed6be8f84de5fceb ] HidBth C:\Windows\system32\drivers\hidbth.sys
22:03:14.0324 0808 HidBth - ok
22:03:14.0605 0808 [ ff3160c3a2445128c5a6d9b076da519e ] HidIr C:\Windows\system32\drivers\hidir.sys
22:03:14.0605 0808 HidIr - ok
22:03:14.0933 0808 [ 84067081f3318162797385e11a8f0582 ] hidserv C:\Windows\system32\hidserv.dll
22:03:14.0933 0808 hidserv - ok
22:03:15.0198 0808 [ cca4b519b17e23a00b826c55716809cc ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
22:03:15.0198 0808 HidUsb - ok
22:03:15.0494 0808 [ d8ad255b37da92434c26e4876db7d418 ] hkmsvc C:\Windows\system32\kmsvc.dll
22:03:15.0494 0808 hkmsvc - ok
22:03:16.0087 0808 [ a19b0bb5a7eb6df2dd4a0711d36955ee ] HP Health Check Service c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
22:03:16.0087 0808 HP Health Check Service - ok
22:03:16.0321 0808 [ 16ee7b23a009e00d835cdb79574a91a6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
22:03:16.0321 0808 HpCISSs - ok
22:03:16.0976 0808 [ 5da42d24712e00728cea2342a65009b2 ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
22:03:16.0976 0808 hpqcxs08 - ok
22:03:17.0163 0808 [ d86a39bf100069444d026d22d9a6e555 ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
22:03:17.0179 0808 hpqddsvc - ok
22:03:17.0460 0808 [ 35956140e686d53bf676cf0c778880fc ] HpqKbFiltr C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
22:03:17.0460 0808 HpqKbFiltr - ok
22:03:17.0756 0808 [ 1665c7121a026df10c903db9bc5e9d43 ] hpqwmiex C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
22:03:17.0756 0808 hpqwmiex - ok
22:03:18.0037 0808 [ a04f4ac48895774a2cf9d1c9eaaacef0 ] HPSLPSVC C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
22:03:18.0068 0808 HPSLPSVC - ok
22:03:18.0614 0808 [ cc267848cb3508e72762be65734e764d ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys
22:03:18.0661 0808 HSF_DPV - ok
22:03:18.0895 0808 [ a2882945cc4b6e3e4e9e825590438888 ] HSXHWAZL C:\Windows\system32\DRIVERS\HSXHWAZL.sys
22:03:18.0911 0808 HSXHWAZL - ok
22:03:19.0223 0808 [ 0eeeca26c8d4bde2a4664db058a81937 ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:03:19.0238 0808 HTTP - ok
22:03:19.0488 0808 [ c6b032d69650985468160fc9937cf5b4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
22:03:19.0488 0808 i2omp - ok
22:03:20.0049 0808 [ 22d56c8184586b7a1f6fa60be5f5a2bd ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
22:03:20.0049 0808 i8042prt - ok
22:03:20.0330 0808 [ 54155ea1b0df185878e0fc9ec3ac3a14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
22:03:20.0346 0808 iaStorV - ok
22:03:20.0377 0808 [ 6f95324909b502e2651442c1548ab12f ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
22:03:20.0377 0808 IDriverT - ok
22:03:20.0705 0808 [ 98477b08e61945f974ed9fdc4cb6bdab ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:03:20.0736 0808 idsvc - ok
22:03:20.0939 0808 [ 2d077bf86e843f901d8db709c95b49a5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
22:03:20.0954 0808 iirsp - ok
22:03:21.0266 0808 [ 9908d8a397b76cd8d31d0d383c5773c9 ] IKEEXT C:\Windows\System32\ikeext.dll
22:03:21.0282 0808 IKEEXT - ok
22:03:21.0531 0808 [ dd512a049bd7b4bce8a83554c5eff2c1 ] intelide C:\Windows\system32\drivers\intelide.sys
22:03:21.0531 0808 intelide - ok
22:03:21.0812 0808 [ 224191001e78c89dfa78924c3ea595ff ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
22:03:21.0812 0808 intelppm - ok
22:03:22.0124 0808 [ 9ac218c6e6105477484c6fdbe7d409a4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:03:22.0124 0808 IPBusEnum - ok
22:03:22.0389 0808 [ 62c265c38769b864cb25b4bcf62df6c3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:03:22.0389 0808 IpFilterDriver - ok
22:03:22.0701 0808 [ 1998bd97f950680bb55f55a7244679c2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
22:03:22.0717 0808 iphlpsvc - ok
22:03:22.0951 0808 IpInIp - ok
22:03:22.0982 0808 [ b25aaf203552b7b3491139d582b39ad1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
22:03:22.0982 0808 IPMIDRV - ok
22:03:23.0263 0808 [ 8793643a67b42cec66490b2a0cf92d68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
22:03:23.0279 0808 IPNAT - ok
22:03:23.0856 0808 [ f62c69376a95795fe7cdb1c778edaca4 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
22:03:23.0871 0808 iPod Service - ok
22:03:24.0121 0808 [ 109c0dfb82c3632fbd11949b73aeeac9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:03:24.0121 0808 IRENUM - ok
22:03:24.0417 0808 [ 6c70698a3e5c4376c6ab5c7c17fb0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
22:03:24.0417 0808 isapnp - ok
22:03:24.0698 0808 [ 232fa340531d940aac623b121a595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
22:03:24.0714 0808 iScsiPrt - ok
22:03:24.0979 0808 [ bced60d16156e428f8df8cf27b0df150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
22:03:24.0995 0808 iteatapi - ok
22:03:25.0260 0808 [ 06fa654504a498c30adca8bec4e87e7e ] iteraid C:\Windows\system32\drivers\iteraid.sys
22:03:25.0260 0808 iteraid - ok
22:03:25.0291 0808 [ 37605e0a8cf00cbba538e753e4344c6e ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
22:03:25.0291 0808 kbdclass - ok
22:03:25.0853 0808 [ ede59ec70e25c24581add1fbec7325f7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
22:03:25.0853 0808 kbdhid - ok
22:03:26.0165 0808 [ a3e186b4b935905b829219502557314e ] KeyIso C:\Windows\system32\lsass.exe
22:03:26.0165 0808 KeyIso - ok
22:03:26.0445 0808 [ 4a1445efa932a3baf5bdb02d7131ee20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:03:26.0461 0808 KSecDD - ok
22:03:27.0007 0808 [ 8078f8f8f7a79e2e6b494523a828c585 ] KtmRm C:\Windows\system32\msdtckrm.dll
22:03:27.0007 0808 KtmRm - ok
22:03:27.0303 0808 [ 1bf5eebfd518dd7298434d8c862f825d ] LanmanServer C:\Windows\system32\srvsvc.dll
22:03:27.0303 0808 LanmanServer - ok
22:03:27.0584 0808 [ 1db69705b695b987082c8baec0c6b34f ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:03:27.0584 0808 LanmanWorkstation - ok
22:03:28.0115 0808 Lavasoft Kernexplorer - ok
22:03:28.0161 0808 [ d1c5883087a0c3f1344d9d55a44901f6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:03:28.0161 0808 lltdio - ok
22:03:28.0442 0808 [ 2d5a428872f1442631d0959a34abff63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:03:28.0442 0808 lltdsvc - ok
22:03:28.0707 0808 [ 35d40113e4a5b961b6ce5c5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
22:03:28.0723 0808 lmhosts - ok
22:03:29.0004 0808 [ c7e15e82879bf3235b559563d4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
22:03:29.0019 0808 LSI_FC - ok
22:03:29.0285 0808 [ ee01ebae8c9bf0fa072e0ff68718920a ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
22:03:29.0285 0808 LSI_SAS - ok
22:03:29.0581 0808 [ 912a04696e9ca30146a62afa1463dd5c ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
22:03:29.0581 0808 LSI_SCSI - ok
22:03:29.0862 0808 [ 8f5c7426567798e62a3b3614965d62cc ] luafv C:\Windows\system32\drivers\luafv.sys
22:03:29.0862 0808 luafv - ok
22:03:30.0439 0808 [ 0db7527db188c7d967a37bb51bbf3963 ] MBAMSwissArmy C:\Windows\system32\drivers\mbamswissarmy.sys
22:03:30.0439 0808 MBAMSwissArmy - ok
22:03:30.0720 0808 [ 0cea2d0d3fa284b85ed5b68365114f76 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
22:03:30.0720 0808 mdmxsdk - ok
22:03:31.0001 0808 [ 0001ce609d66632fa17b84705f658879 ] megasas C:\Windows\system32\drivers\megasas.sys
22:03:31.0001 0808 megasas - ok
22:03:31.0297 0808 [ c252f32cd9a49dbfc25ecf26ebd51a99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
22:03:31.0313 0808 MegaSR - ok
22:03:31.0921 0808 [ 123271bd5237ab991dc5c21fdf8835eb ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
22:03:31.0921 0808 Microsoft Office Groove Audit Service - ok
22:03:32.0155 0808 [ 1076ffcffaae8385fd62dfcb25ac4708 ] MMCSS C:\Windows\system32\mmcss.dll
22:03:32.0155 0808 MMCSS - ok
22:03:32.0420 0808 [ e13b5ea0f51ba5b1512ec671393d09ba ] Modem C:\Windows\system32\drivers\modem.sys
22:03:32.0420 0808 Modem - ok
22:03:32.0732 0808 [ 0a9bb33b56e294f686abb7c1e4e2d8a8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:03:32.0732 0808 monitor - ok
22:03:32.0997 0808 [ 5bf6a1326a335c5298477754a506d263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
22:03:32.0997 0808 mouclass - ok
22:03:33.0294 0808 [ 93b8d4869e12cfbe663915502900876f ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
22:03:33.0294 0808 mouhid - ok
22:03:33.0559 0808 [ bdafc88aa6b92f7842416ea6a48e1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
22:03:33.0575 0808 MountMgr - ok
22:03:34.0152 0808 [ d993bea500e7382dc4e760bf4f35efcb ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
22:03:34.0152 0808 MpFilter - ok
22:03:34.0417 0808 [ 511d011289755dd9f9a7579fb0b064e6 ] mpio C:\Windows\system32\drivers\mpio.sys
22:03:34.0417 0808 mpio - ok
22:03:34.0745 0808 MpKsla8b48fe9 - ok
22:03:34.0994 0808 [ 22241feba9b2defa669c8cb0a8dd7d2e ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:03:34.0994 0808 mpsdrv - ok
22:03:35.0322 0808 [ 5de62c6e9108f14f6794060a9bdecaec ] MpsSvc C:\Windows\system32\mpssvc.dll
22:03:35.0337 0808 MpsSvc - ok
22:03:35.0571 0808 [ 4fbbb70d30fd20ec51f80061703b001e ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
22:03:35.0587 0808 Mraid35x - ok
22:03:35.0899 0808 [ 82cea0395524aacfeb58ba1448e8325c ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:03:35.0899 0808 MRxDAV - ok
22:03:36.0164 0808 [ 1e94971c4b446ab2290deb71d01cf0c2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:03:36.0164 0808 mrxsmb - ok
22:03:36.0773 0808 [ 4fccb34d793b116423209c0f8b7a3b03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:03:36.0773 0808 mrxsmb10 - ok
22:03:37.0007 0808 [ c3cb1b40ad4a0124d617a1199b0b9d7c ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:03:37.0007 0808 mrxsmb20 - ok
22:03:37.0303 0808 [ aa305cff241da187bd5077de4a2a043d ] msahci C:\Windows\system32\drivers\msahci.sys
22:03:37.0303 0808 msahci - ok
22:03:37.0599 0808 [ 4468b0f385a86ecddaf8d3ca662ec0e7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
22:03:37.0599 0808 msdsm - ok
22:03:37.0896 0808 [ fd7520cc3a80c5fc8c48852bb24c6ded ] MSDTC C:\Windows\System32\msdtc.exe
22:03:37.0896 0808 MSDTC - ok
22:03:38.0177 0808 [ a9927f4a46b816c92f461acb90cf8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:03:38.0177 0808 Msfs - ok
22:03:38.0738 0808 [ 0f400e306f385c56317357d6dea56f62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
22:03:38.0738 0808 msisadrv - ok
22:03:39.0035 0808 [ 85466c0757a23d9a9aecdc0755203cb2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:03:39.0035 0808 MSiSCSI - ok
22:03:39.0300 0808 msiserver - ok
22:03:39.0612 0808 [ d8c63d34d9c9e56c059e24ec7185cc07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:03:39.0612 0808 MSKSSRV - ok
22:03:40.0173 0808 [ 24516bf4e12a46cb67302e2cdcb8cddf ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
22:03:40.0173 0808 MsMpSvc - ok
22:03:40.0719 0808 [ 1d373c90d62ddb641d50e55b9e78d65e ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:03:40.0719 0808 MSPCLOCK - ok
22:03:41.0000 0808 [ b572da05bf4e098d4bba3a4734fb505b ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:03:41.0000 0808 MSPQM - ok
22:03:41.0312 0808 [ b49456d70555de905c311bcda6ec6adb ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:03:41.0328 0808 MsRPC - ok
22:03:41.0577 0808 [ e384487cb84be41d09711c30ca79646c ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
22:03:41.0577 0808 mssmbios - ok
22:03:41.0843 0808 [ 7199c1eec1e4993caf96b8c0a26bd58a ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:03:41.0843 0808 MSTEE - ok
22:03:41.0905 0808 [ 6a57b5733d4cb702c8ea4542e836b96c ] Mup C:\Windows\system32\Drivers\mup.sys
22:03:41.0905 0808 Mup - ok
22:03:42.0201 0808 [ e4eaf0c5c1b41b5c83386cf212ca9584 ] napagent C:\Windows\system32\qagentRT.dll
22:03:42.0201 0808 napagent - ok
22:03:42.0482 0808 [ 85c44fdff9cf7e72a40dcb7ec06a4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:03:42.0482 0808 NativeWifiP - ok
22:03:43.0059 0808 [ 1357274d1883f68300aeadd15d7bbb42 ] NDIS C:\Windows\system32\drivers\ndis.sys
22:03:43.0075 0808 NDIS - ok
22:03:43.0293 0808 [ 0e186e90404980569fb449ba7519ae61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:03:43.0309 0808 NdisTapi - ok
22:03:43.0605 0808 [ d6973aa34c4d5d76c0430b181c3cd389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:03:43.0605 0808 Ndisuio - ok
22:03:43.0902 0808 [ 818f648618ae34f729fdb47ec68345c3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:03:43.0902 0808 NdisWan - ok
22:03:44.0167 0808 [ 71dab552b41936358f3b541ae5997fb3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:03:44.0167 0808 NDProxy - ok
22:03:44.0479 0808 [ 69c503c004f49aee8b8e3067cc047ba7 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
22:03:44.0479 0808 Net Driver HPZ12 - ok
22:03:44.0729 0808 [ bcd093a5a6777cf626434568dc7dba78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:03:44.0729 0808 NetBIOS - ok
22:03:44.0775 0808 [ ecd64230a59cbd93c85f1cd1cab9f3f6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
22:03:44.0791 0808 netbt - ok
22:03:45.0041 0808 [ a3e186b4b935905b829219502557314e ] Netlogon C:\Windows\system32\lsass.exe
22:03:45.0041 0808 Netlogon - ok
22:03:45.0353 0808 [ c8052711daecc48b982434c5116ca401 ] Netman C:\Windows\System32\netman.dll
22:03:45.0353 0808 Netman - ok
22:03:45.0633 0808 [ 2ef3bbe22e5a5acd1428ee387a0d0172 ] netprofm C:\Windows\System32\netprofm.dll
22:03:45.0633 0808 netprofm - ok
22:03:45.0930 0808 [ d6c4e4a39a36029ac0813d476fbd0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:03:45.0930 0808 NetTcpPortSharing - ok
22:03:46.0523 0808 [ 35d5458d9a1b26b2005abffbf4c1c5e7 ] NETw3v32 C:\Windows\system32\DRIVERS\NETw3v32.sys
22:03:46.0585 0808 NETw3v32 - ok
22:03:47.0069 0808 [ 2e7fb731d4790a1bc6270accefacb36e ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
22:03:47.0069 0808 nfrd960 - ok
22:03:47.0365 0808 [ b52f26bade7d7e4a79706e3fd91834cd ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
22:03:47.0365 0808 NisDrv - ok
22:03:47.0677 0808 [ 290c0d4c4889398797f8df3be00b9698 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
22:03:47.0677 0808 NisSrv - ok
22:03:47.0942 0808 [ 2997b15415f9bbe05b5a4c1c85e0c6a2 ] NlaSvc C:\Windows\System32\nlasvc.dll
22:03:47.0958 0808 NlaSvc - ok
22:03:48.0254 0808 [ d36f239d7cce1931598e8fb90a0dbc26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:03:48.0254 0808 Npfs - ok
22:03:48.0504 0808 [ 8bb86f0c7eea2bded6fe095d0b4ca9bd ] nsi C:\Windows\system32\nsisvc.dll
22:03:48.0504 0808 nsi - ok
22:03:48.0785 0808 [ 609773e344a97410ce4ebf74a8914fcf ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:03:48.0785 0808 nsiproxy - ok
22:03:49.0143 0808 [ 6a4a98cee84cf9e99564510dda4baa47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:03:49.0175 0808 Ntfs - ok
22:03:49.0393 0808 [ e875c093aec0c978a90f30c9e0dfbb72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
22:03:49.0393 0808 ntrigdigi - ok
22:03:49.0674 0808 [ c5dbbcda07d780bda9b685df333bb41e ] Null C:\Windows\system32\drivers\Null.sys
22:03:49.0674 0808 Null - ok
22:03:49.0986 0808 [ ae78a7285df03a277415fc62f8ce8f24 ] NVENETFD C:\Windows\system32\DRIVERS\nvmfdx32.sys
22:03:50.0017 0808 NVENETFD - ok
22:03:50.0267 0808 [ b0dd52428bf564f5fc5ee331060be2a6 ] NVHDA C:\Windows\system32\drivers\nvhda32v.sys
22:03:50.0267 0808 NVHDA - ok
22:03:51.0078 0808 [ 9dac05d828e56801fd6ce5fdfced64af ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
22:03:51.0296 0808 nvlddmkm - ok
22:03:51.0374 0808 [ 2edf9e7751554b42cbb60116de727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:03:51.0421 0808 nvraid - ok
22:03:52.0232 0808 [ 0fb6bf3ab170fc5bd403d25e134eafde ] nvsmu C:\Windows\system32\DRIVERS\nvsmu.sys
22:03:52.0232 0808 nvsmu - ok
22:03:52.0794 0808 [ abed0c09758d1d97db0042dbb2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
22:03:52.0794 0808 nvstor - ok
22:03:53.0106 0808 [ a91e66d964e5beb4792ec8bac8ed926a ] nvsvc C:\Windows\system32\nvvsvc.exe
22:03:53.0106 0808 nvsvc - ok
22:03:53.0402 0808 [ 18bbdf913916b71bd54575bdb6eeac0b ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
22:03:53.0402 0808 nv_agp - ok
22:03:53.0699 0808 NwlnkFlt - ok
22:03:53.0699 0808 NwlnkFwd - ok
22:03:54.0588 0808 [ 785f487a64950f3cb8e9f16253ba3b7b ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
22:03:54.0884 0808 odserv - ok
22:03:55.0165 0808 [ 790e27c3db53410b40ff9ef2fd10a1d9 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
22:03:55.0165 0808 ohci1394 - ok
22:03:55.0461 0808 [ 5a432a042dae460abe7199b758e8606c ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:03:55.0477 0808 ose - ok
22:03:56.0366 0808 [ 0c8e8e61ad1eb0b250b846712c917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
22:03:56.0366 0808 p2pimsvc - ok
22:04:01.0421 0808 [ 0c8e8e61ad1eb0b250b846712c917506 ] p2psvc C:\Windows\system32\p2psvc.dll
22:04:01.0421 0808 p2psvc - ok
22:04:21.0903 0808 [ 0fa9b5055484649d63c303fe404e5f4d ] Parport C:\Windows\system32\drivers\parport.sys
22:04:21.0903 0808 Parport - ok
22:04:32.0059 0808 [ b9c2b89f08670e159f7181891e449cd9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:04:32.0059 0808 partmgr - ok
22:04:32.0324 0808 [ 4f9a6a8a31413180d0fcb279ad5d8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
22:04:32.0324 0808 Parvdm - ok
22:04:32.0621 0808 [ c6276ad11f4bb49b58aa1ed88537f14a ] PcaSvc C:\Windows\System32\pcasvc.dll
22:04:32.0621 0808 PcaSvc - ok
22:04:32.0917 0808 [ 941dc1d19e7e8620f40bbc206981efdb ] pci C:\Windows\system32\drivers\pci.sys
22:04:32.0948 0808 pci - ok
22:04:33.0479 0808 [ 1636d43f10416aeb483bc6001097b26c ] pciide C:\Windows\system32\drivers\pciide.sys
22:04:33.0479 0808 pciide - ok
22:04:33.0759 0808 [ e6f3fb1b86aa519e7698ad05e58b04e5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
22:04:33.0759 0808 pcmcia - ok
22:04:34.0337 0808 [ 6349f6ed9c623b44b52ea3c63c831a92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:04:34.0352 0808 PEAUTH - ok
22:04:34.0664 0808 [ b1689df169143f57053f795390c99db3 ] pla C:\Windows\system32\pla.dll
22:04:34.0945 0808 pla - ok
22:04:35.0070 0808 [ c5e7f8a996ec0a82d508fd9064a5569e ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:04:35.0070 0808 PlugPlay - ok
22:04:35.0663 0808 [ 12b4549d515cb26bb8d375038017ca65 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
22:04:35.0663 0808 Pml Driver HPZ12 - ok
22:04:36.0240 0808 [ 0c8e8e61ad1eb0b250b846712c917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
22:04:36.0240 0808 PNRPAutoReg - ok
22:04:36.0708 0808 [ 0c8e8e61ad1eb0b250b846712c917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
22:04:36.0723 0808 PNRPsvc - ok
22:04:36.0833 0808 [ d0494460421a03cd5225cca0059aa146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:04:36.0848 0808 PolicyAgent - ok
22:04:37.0379 0808 [ ecfffaec0c1ecd8dbc77f39070ea1db1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:04:37.0425 0808 PptpMiniport - ok
22:04:38.0003 0808 [ 2027293619dd0f047c584cf2e7df4ffd ] Processor C:\Windows\system32\DRIVERS\processr.sys
22:04:38.0003 0808 Processor - ok
22:04:38.0580 0808 [ 0508faa222d28835310b7bfca7a77346 ] ProfSvc C:\Windows\system32\profsvc.dll
22:04:38.0580 0808 ProfSvc - ok
22:04:39.0110 0808 [ a3e186b4b935905b829219502557314e ] ProtectedStorage C:\Windows\system32\lsass.exe
22:04:44.0165 0808 ProtectedStorage - ok
22:05:01.0637 0808 [ 99514faa8df93d34b5589187db3aa0ba ] PSched C:\Windows\system32\DRIVERS\pacer.sys
22:05:01.0637 0808 PSched - ok
22:05:23.0055 0808 [ 0a6db55afb7820c99aa1f3a1d270f4f6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
22:05:23.0087 0808 ql2300 - ok
22:05:43.0991 0808 [ 81a7e5c076e59995d54bc1ed3a16e60b ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
22:05:43.0991 0808 ql40xx - ok
22:06:01.0790 0808 [ e9ecae663f47e6cb43962d18ab18890f ] QWAVE C:\Windows\system32\qwave.dll
22:06:01.0790 0808 QWAVE - ok
22:06:01.0806 0808 [ 9f5e0e1926014d17486901c88eca2db7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:06:01.0806 0808 QWAVEdrv - ok
22:06:12.0414 0808 [ 147d7f9c556d259924351feb0de606c3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:06:12.0414 0808 RasAcd - ok
22:06:29.0948 0808 [ f6a452eb4ceadbb51c9e0ee6b3ecef0f ] RasAuto C:\Windows\System32\rasauto.dll
22:06:29.0948 0808 RasAuto - ok
22:06:30.0525 0808 [ a214adbaf4cb47dd2728859ef31f26b0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:06:30.0541 0808 Rasl2tp - ok
22:06:31.0118 0808 [ 75d47445d70ca6f9f894b032fbc64fcf ] RasMan C:\Windows\System32\rasmans.dll
22:06:31.0134 0808 RasMan - ok
22:06:31.0711 0808 [ 509a98dd18af4375e1fc40bc175f1def ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:06:31.0711 0808 RasPppoe - ok
22:06:32.0007 0808 [ 2005f4a1e05fa09389ac85840f0a9e4d ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:06:32.0023 0808 RasSstp - ok
22:06:32.0304 0808 [ b14c9d5b9add2f84f70570bbbfaa7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:06:32.0319 0808 rdbss - ok
22:06:32.0897 0808 [ 89e59be9a564262a3fb6c4f4f1cd9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:06:32.0897 0808 RDPCDD - ok
22:06:33.0193 0808 [ fbc0bacd9c3d7f6956853f64a66e252d ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
22:06:33.0209 0808 rdpdr - ok
22:06:33.0209 0808 [ 9d91fe5286f748862ecffa05f8a0710c ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:06:33.0209 0808 RDPENCDD - ok
22:06:34.0082 0808 [ c127ebd5afab31524662c48dfceb773a ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:06:34.0098 0808 RDPWD - ok
22:06:34.0971 0808 [ 0d362785bef9bdf5a6e1f4628d06716d ] Recovery Service for Windows C:\Program Files\SMINST\BLService.exe
22:06:34.0987 0808 Recovery Service for Windows - ok
22:06:35.0876 0808 [ bcdd6b4804d06b1f7ebf29e53a57ece9 ] RemoteAccess C:\Windows\System32\mprdim.dll
22:06:35.0876 0808 RemoteAccess - ok
22:06:36.0469 0808 [ 9e6894ea18daff37b63e1005f83ae4ab ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:06:36.0485 0808 RemoteRegistry - ok
22:06:37.0982 0808 [ 805ae1f90c64758d19aaa001cf8cba12 ] RichVideo C:\Program Files\CyberLink\Shared files\RichVideo.exe
22:06:37.0982 0808 RichVideo - ok
22:06:38.0856 0808 [ 5123f83cbc4349d065534eeb6bbdc42b ] RpcLocator C:\Windows\system32\locator.exe
22:06:38.0856 0808 RpcLocator - ok
22:06:39.0168 0808 [ 3b5b4d53fec14f7476ca29a20cc31ac9 ] RpcSs C:\Windows\system32\rpcss.dll
22:06:39.0168 0808 RpcSs - ok
22:06:40.0041 0808 [ 9c508f4074a39e8b4b31d27198146fad ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:06:40.0041 0808 rspndr - ok
22:06:40.0338 0808 [ a3e186b4b935905b829219502557314e ] SamSs C:\Windows\system32\lsass.exe
22:06:40.0338 0808 SamSs - ok
22:06:40.0634 0808 [ 3ce8f073a557e172b330109436984e30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
22:06:40.0650 0808 sbp2port - ok
22:06:42.0428 0808 [ 794d4b48dfb6e999537c7c3947863463 ] SBSDWSCService C:\Program Files\Spybot\SDWinSec.exe
22:06:42.0709 0808 SBSDWSCService - ok
22:06:43.0302 0808 [ 77b7a11a0c3d78d3386398fbbea1b632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:06:43.0317 0808 SCardSvr - ok
22:06:43.0910 0808 [ 1a58069db21d05eb2ab58ee5753ebe8d ] Schedule C:\Windows\system32\schedsvc.dll
22:06:43.0910 0808 Schedule - ok
22:07:02.0349 0808 [ 312ec3e37a0a1f2006534913e37b4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
22:07:02.0349 0808 SCPolicySvc - ok
22:07:23.0409 0808 [ 126ea89bcc413ee45e3004fb0764888f ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
22:07:23.0409 0808 sdbus - ok
22:07:23.0441 0808 [ 716313d9f6b0529d03f726d5aaf6f191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:07:23.0456 0808 SDRSVC - ok
22:07:23.0753 0808 [ 90a3935d05b494a5a39d37e71f09a677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:07:23.0753 0808 secdrv - ok
22:07:24.0033 0808 [ fd5199d4d8a521005e4b5ee7fe00fa9b ] seclogon C:\Windows\system32\seclogon.dll
22:07:24.0049 0808 seclogon - ok
22:07:24.0330 0808 [ a9bbab5759771e523f55563d6cbe140f ] SENS C:\Windows\System32\sens.dll
22:07:24.0330 0808 SENS - ok
22:07:24.0611 0808 [ 68e44e331d46f0fb38f0863a84cd1a31 ] Serenum C:\Windows\system32\drivers\serenum.sys
22:07:24.0611 0808 Serenum - ok
22:07:24.0891 0808 [ c70d69a918b178d3c3b06339b40c2e1b ] Serial C:\Windows\system32\drivers\serial.sys
22:07:24.0907 0808 Serial - ok
22:07:25.0188 0808 [ 8af3d28a879bf75db53a0ee7a4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
22:07:25.0188 0808 sermouse - ok
22:07:25.0484 0808 [ d2193326f729b163125610dbf3e17d57 ] SessionEnv C:\Windows\system32\sessenv.dll
22:07:25.0484 0808 SessionEnv - ok
22:07:25.0765 0808 [ 3efa810bdca87f6ecc24f9832243fe86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
22:07:25.0781 0808 sffdisk - ok
22:07:26.0061 0808 [ e95d451f7ea3e583aec75f3b3ee42dc5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
22:07:26.0061 0808 sffp_mmc - ok
22:07:26.0342 0808 [ 3d0ea348784b7ac9ea9bd9f317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
22:07:26.0342 0808 sffp_sd - ok
22:07:26.0623 0808 [ 46ed8e91793b2e6f848015445a0ac188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
22:07:26.0623 0808 sfloppy - ok
22:07:26.0935 0808 [ e1499bd0ff76b1b2fbbf1af339d91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
22:07:26.0935 0808 SharedAccess - ok
22:07:27.0216 0808 [ c7230fbee14437716701c15be02c27b8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:07:27.0231 0808 ShellHWDetection - ok
22:07:27.0497 0808 [ 1d76624a09a054f682d746b924e2dbc3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
22:07:27.0497 0808 sisagp - ok
22:07:27.0777 0808 [ 43cb7aa756c7db280d01da9b676cfde2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
22:07:27.0777 0808 SiSRaid2 - ok
22:07:28.0074 0808 [ a99c6c8b0baa970d8aa59ddc50b57f94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
22:07:28.0089 0808 SiSRaid4 - ok
22:07:28.0620 0808 [ 862bb4cbc05d80c5b45be430e5ef872f ] slsvc C:\Windows\system32\SLsvc.exe
22:07:28.0745 0808 slsvc - ok
22:07:28.0869 0808 [ 6edc422215cd78aa8a9cde6b30abbd35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
22:07:28.0885 0808 SLUINotify - ok
22:07:29.0431 0808 [ 7b75299a4d201d6a6533603d6914ab04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:07:29.0431 0808 Smb - ok
22:07:30.0008 0808 [ 2a146a055b4401c16ee62d18b8e2a032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:07:30.0008 0808 SNMPTRAP - ok
22:07:30.0539 0808 [ 7aebdeef071fe28b0eef2cdd69102bff ] spldr C:\Windows\system32\drivers\spldr.sys
22:07:30.0585 0808 spldr - ok
22:07:31.0163 0808 [ 8554097e5136c3bf9f69fe578a1b35f4 ] Spooler C:\Windows\System32\spoolsv.exe
22:07:31.0163 0808 Spooler - ok
22:07:31.0740 0808 [ 41987f9fc0e61adf54f581e15029ad91 ] srv C:\Windows\system32\DRIVERS\srv.sys
22:07:31.0740 0808 srv - ok
22:07:32.0317 0808 [ ff33aff99564b1aa534f58868cbe41ef ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:07:32.0317 0808 srv2 - ok
22:07:32.0894 0808 [ 7605c0e1d01a08f3ecd743f38b834a44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:07:32.0910 0808 srvnet - ok
22:07:33.0471 0808 [ 03d50b37234967433a5ea5ba72bc0b62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:07:33.0471 0808 SSDPSRV - ok
22:07:34.0251 0808 [ 6f1a32e7b7b30f004d9a20afadb14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:07:34.0267 0808 SstpSvc - ok
22:07:34.0860 0808 [ ef70b3d22b4bffda6ea851ecb063efaa ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
22:07:34.0860 0808 StillCam - ok
22:07:35.0749 0808 [ 5de7d67e49b88f5f07f3e53c4b92a352 ] stisvc C:\Windows\System32\wiaservc.dll
22:07:35.0749 0808 stisvc - ok
22:07:36.0326 0808 [ 7ba58ecf0c0a9a69d44b3dca62becf56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
22:07:36.0326 0808 swenum - ok
22:07:36.0919 0808 [ f21fd248040681cca1fb6c9a03aaa93d ] swprv C:\Windows\System32\swprv.dll
22:07:36.0935 0808 swprv - ok
22:07:46.0731 0808 [ 192aa3ac01df071b541094f251deed10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
22:07:46.0731 0808 Symc8xx - ok
22:07:50.0085 0808 [ 8c8eb8c76736ebaf3b13b633b2e64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
22:07:50.0132 0808 Sym_hi - ok
22:07:50.0663 0808 [ 8072af52b5fd103bbba387a1e49f62cb ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
22:07:50.0709 0808 Sym_u3 - ok
22:07:52.0082 0808 [ 00b19f27858f56181edb58b71a7c67a0 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
22:07:52.0098 0808 SynTP - ok
22:07:52.0691 0808 [ 9a51b04e9886aa4ee90093586b0ba88d ] SysMain C:\Windows\system32\sysmain.dll
22:07:52.0691 0808 SysMain - ok
22:08:02.0207 0808 [ 2dca225eae15f42c0933e998ee0231c3 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:08:02.0207 0808 TabletInputService - ok
22:08:23.0547 0808 [ d7673e4b38ce21ee54c59eeeb65e2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
22:08:23.0547 0808 TapiSrv - ok
22:08:44.0514 0808 [ cb05822cd9cc6c688168e113c603dbe7 ] TBS C:\Windows\System32\tbssvc.dll
22:08:44.0529 0808 TBS - ok
22:09:02.0423 0808 [ ee7e10bed85c312c1d5d30c435bdda9f ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:09:02.0454 0808 Tcpip - ok
22:09:23.0061 0808 [ ee7e10bed85c312c1d5d30c435bdda9f ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
22:09:23.0077 0808 Tcpip6 - ok
22:09:43.0341 0808 [ 2c2d4cff5e09c73908f9b5af49a51365 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:09:43.0341 0808 tcpipreg - ok
22:09:43.0388 0808 [ 5dcf5e267be67a1ae926f2df77fbcc56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:09:43.0388 0808 TDPIPE - ok
22:09:43.0700 0808 [ 389c63e32b3cefed425b61ed92d3f021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:09:43.0700 0808 TDTCP - ok
22:09:43.0997 0808 [ 76b06eb8a01fc8624d699e7045303e54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:09:43.0997 0808 tdx - ok
22:09:44.0277 0808 [ 3cad38910468eab9a6479e2f01db43c7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
22:09:44.0277 0808 TermDD - ok
22:09:44.0574 0808 [ bb95da09bef6e7a131bff3ba5032090d ] TermService C:\Windows\System32\termsrv.dll
22:09:44.0589 0808 TermService - ok
22:09:44.0870 0808 [ c7230fbee14437716701c15be02c27b8 ] Themes C:\Windows\system32\shsvcs.dll
22:09:44.0870 0808 Themes - ok
22:09:45.0151 0808 [ 1076ffcffaae8385fd62dfcb25ac4708 ] THREADORDER C:\Windows\system32\mmcss.dll
22:09:45.0151 0808 THREADORDER - ok
22:09:45.0447 0808 [ ec74e77d0eb004bd3a809b5f8fb8c2ce ] TrkWks C:\Windows\System32\trkwks.dll
22:09:45.0447 0808 TrkWks - ok
22:09:45.0775 0808 [ 97d9d6a04e3ad9b6c626b9931db78dba ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:09:45.0775 0808 TrustedInstaller - ok
22:09:46.0025 0808 [ dcf0f056a2e4f52287264f5ab29cf206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:09:46.0025 0808 tssecsrv - ok
22:09:46.0586 0808 [ caecc0120ac49e3d2f758b9169872d38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
22:09:46.0586 0808 tunmp - ok
22:09:46.0883 0808 [ 300db877ac094feab0be7688c3454a9c ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:09:46.0883 0808 tunnel - ok
22:09:47.0148 0808 [ 7d33c4db2ce363c8518d2dfcf533941f ] uagp35 C:\Windows\system32\drivers\uagp35.sys
22:09:47.0148 0808 uagp35 - ok
22:09:47.0460 0808 [ d9728af68c4c7693cb100b8441cbdec6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:09:47.0475 0808 udfs - ok
22:09:47.0741 0808 [ ecef404f62863755951e09c802c94ad5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:09:47.0741 0808 UI0Detect - ok
22:09:48.0037 0808 [ b0acfdc9e4af279e9116c03e014b2b27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
22:09:48.0037 0808 uliagpkx - ok
22:09:48.0318 0808 [ 9224bb254f591de4ca8d572a5f0d635c ] uliahci C:\Windows\system32\drivers\uliahci.sys
22:09:48.0333 0808 uliahci - ok
22:10:02.0623 0808 [ 8514d0e5cd0534467c5fc61be94a569f ] UlSata C:\Windows\system32\drivers\ulsata.sys
22:10:02.0623 0808 UlSata - ok
22:10:07.0631 0808 [ 38c3c6e62b157a6bc46594fada45c62b ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
22:10:07.0631 0808 ulsata2 - ok
22:10:07.0677 0808 [ 32cff9f809ae9aed85464492bf3e32d2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
22:10:07.0677 0808 umbus - ok
22:10:07.0974 0808 [ 68308183f4ae0be7bf8ecd07cb297999 ] upnphost C:\Windows\System32\upnphost.dll
22:10:07.0989 0808 upnphost - ok
22:10:08.0286 0808 [ 83cafcb53201bbac04d822f32438e244 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
22:10:08.0286 0808 USBAAPL - ok
22:10:08.0567 0808 [ caf811ae4c147ffcd5b51750c7f09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
22:10:08.0567 0808 usbccgp - ok
22:10:08.0863 0808 [ e9476e6c486e76bc4898074768fb7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
22:10:08.0863 0808 usbcir - ok
22:10:09.0425 0808 [ 79e96c23a97ce7b8f14d310da2db0c9b ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
22:10:09.0425 0808 usbehci - ok
22:10:09.0721 0808 [ 4673bbcb006af60e7abddbe7a130ba42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
22:10:09.0721 0808 usbhub - ok
22:10:10.0002 0808 [ ce697fee0d479290d89bec80dfe793b7 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
22:10:10.0002 0808 usbohci - ok
22:10:10.0298 0808 [ e75c4b5269091d15a2e7dc0b6d35f2f5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
22:10:10.0314 0808 usbprint - ok
22:10:10.0860 0808 [ a508c9bd8724980512136b039bba65e9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
22:10:10.0860 0808 usbscan - ok
22:10:11.0141 0808 [ be3da31c191bc222d9ad503c5224f2ad ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:10:11.0141 0808 USBSTOR - ok
22:10:11.0421 0808 [ 814d653efc4d48be3b04a307eceff56f ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
22:10:11.0421 0808 usbuhci - ok
22:10:11.0733 0808 [ 1509e705f3ac1d474c92454a5c2dd81f ] UxSms C:\Windows\System32\uxsms.dll
22:10:11.0733 0808 UxSms - ok
22:10:12.0014 0808 [ cd88d1b7776dc17a119049742ec07eb4 ] vds C:\Windows\System32\vds.exe
22:10:12.0030 0808 vds - ok
22:10:12.0295 0808 [ 87b06e1f30b749a114f74622d013f8d4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:10:12.0295 0808 vga - ok
22:10:12.0591 0808 [ 2e93ac0a1d8c79d019db6c51f036636c ] VgaSave C:\Windows\System32\drivers\vga.sys
22:10:12.0591 0808 VgaSave - ok
22:10:33.0012 0808 [ 5d7159def58a800d5781ba3a879627bc ] viaagp C:\Windows\system32\drivers\viaagp.sys
22:10:33.0012 0808 viaagp - ok
22:10:33.0027 0808 [ c4f3a691b5bad343e6249bd8c2d45dee ] ViaC7 C:\Windows\system32\drivers\viac7.sys
22:10:33.0043 0808 ViaC7 - ok
22:10:53.0307 0808 [ ea1aa6e3abb3c194feba12a46de8cf2c ] viaide C:\Windows\system32\drivers\viaide.sys
22:10:53.0307 0808 viaide - ok
22:10:53.0323 0808 [ 69503668ac66c77c6cd7af86fbdf8c43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
22:10:53.0323 0808 volmgr - ok
22:10:53.0370 0808 [ 23e41b834759917bfd6b9a0d625d0c28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:10:53.0385 0808 volmgrx - ok
22:10:53.0682 0808 [ 147281c01fcb1df9252de2a10d5e7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:10:53.0682 0808 volsnap - ok
22:10:53.0963 0808 [ 587253e09325e6bf226b299774b728a9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
22:10:53.0963 0808 vsmraid - ok
22:10:54.0290 0808 [ db3d19f850c6eb32bdcb9bc0836acddb ] VSS C:\Windows\system32\vssvc.exe
22:10:54.0540 0808 VSS - ok
22:10:54.0852 0808 [ 96ea68b9eb310a69c25ebb0282b2b9de ] W32Time C:\Windows\system32\w32time.dll
22:10:54.0852 0808 W32Time - ok
22:10:55.0289 0808 [ 48dfee8f1af7c8235d4e626f0c4fe031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
22:10:55.0289 0808 WacomPen - ok
22:10:56.0193 0808 [ 55201897378cca7af8b5efd874374a26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
22:10:56.0209 0808 Wanarp - ok
22:10:56.0225 0808 [ 55201897378cca7af8b5efd874374a26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:10:56.0225 0808 Wanarpv6 - ok
22:11:02.0777 0808 [ a3cd60fd826381b49f03832590e069af ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:11:02.0792 0808 wcncsvc - ok
22:11:23.0727 0808 [ 11bcb7afcdd7aadacb5746f544d3a9c7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:11:23.0727 0808 WcsPlugInService - ok
22:11:44.0007 0808 [ 78fe9542363f297b18c027b2d7e7c07f ] Wd C:\Windows\system32\drivers\wd.sys
22:11:44.0007 0808 Wd - ok
22:12:02.0930 0808 [ b6f0a7ad6d4bd325fbcd8bac96cd8d96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:12:02.0946 0808 Wdf01000 - ok
22:12:18.0483 0808 [ abfc76b48bb6c96e3338d8943c5d93b5 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:12:18.0483 0808 WdiServiceHost - ok
22:12:18.0733 0808 [ abfc76b48bb6c96e3338d8943c5d93b5 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:12:18.0733 0808 WdiSystemHost - ok
22:12:18.0811 0808 [ 04c37d8107320312fbae09926103d5e2 ] WebClient C:\Windows\System32\webclnt.dll
22:12:18.0811 0808 WebClient - ok
22:12:19.0107 0808 [ ae3736e7e8892241c23e4ebbb7453b60 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:12:19.0107 0808 Wecsvc - ok
22:12:19.0373 0808 [ 670ff720071ed741206d69bd995ea453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:12:19.0388 0808 wercplsupport - ok
22:12:19.0685 0808 [ 32b88481d3b326da6deb07b1d03481e7 ] WerSvc C:\Windows\System32\WerSvc.dll
22:12:19.0685 0808 WerSvc - ok
22:12:19.0981 0808 [ 0acd399f5db3df1b58903cf4949ab5a8 ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys
22:12:20.0012 0808 winachsf - ok
22:12:20.0293 0808 [ 4575aa12561c5648483403541d0d7f2b ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
22:12:20.0309 0808 WinDefend - ok
22:12:20.0527 0808 WinHttpAutoProxySvc - ok
22:12:20.0636 0808 [ 6b2a1d0e80110e3d04e6863c6e62fd8a ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:12:20.0636 0808 Winmgmt - ok
22:12:20.0917 0808 [ 7cfe68bdc065e55aa5e8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
22:12:21.0135 0808 WinRM - ok
22:12:21.0260 0808 [ c008405e4feeb069e30da1d823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
22:12:21.0260 0808 Wlansvc - ok
22:12:21.0869 0808 [ 2e7255d172df0b8283cdfb7b433b864e ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
22:12:21.0869 0808 WmiAcpi - ok
22:12:22.0493 0808 [ 43be3875207dcb62a85c8c49970b66cc ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:12:22.0493 0808 wmiApSrv - ok
22:12:23.0163 0808 [ 3978704576a121a9204f8cc49a301a9b ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
22:12:23.0179 0808 WMPNetworkSvc - ok
22:12:23.0663 0808 [ cfc5a04558f5070cee3e3a7809f3ff52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:12:23.0678 0808 WPCSvc - ok
22:12:24.0255 0808 [ 801fbdb89d472b3c467eb112a0fc9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:12:24.0271 0808 WPDBusEnum - ok
22:12:24.0848 0808 [ de9d36f91a4df3d911626643debf11ea ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
22:12:24.0879 0808 WpdUsb - ok
22:12:25.0550 0808 [ dcf3e3edf5109ee8bc02fe6e1f045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
22:12:25.0581 0808 WPFFontCache_v0400 - ok
22:12:26.0049 0808 [ e3a3cb253c0ec2494d4a61f5e43a389c ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:12:26.0065 0808 ws2ifsl - ok
22:12:26.0595 0808 [ 1ca6c40261ddc0425987980d0cd2aaab ] wscsvc C:\Windows\System32\wscsvc.dll
22:12:26.0642 0808 wscsvc - ok
22:12:27.0110 0808 WSearch - ok
22:12:27.0344 0808 [ fc3ec24fce372c89423e015a2ac1a31e ] wuauserv C:\Windows\system32\wuaueng.dll
22:12:27.0391 0808 wuauserv - ok
22:12:28.0062 0808 [ ac13cb789d93412106b0fb6c7eb2bcb6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
22:12:28.0077 0808 WUDFRd - ok
22:12:28.0951 0808 [ 575a4190d989f64732119e4114045a4f ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:12:28.0967 0808 wudfsvc - ok
22:12:29.0840 0808 [ dab33cfa9dd24251aaa389ff36b64d4b ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys
22:12:29.0856 0808 XAudio - ok
22:12:30.0449 0808 [ cd5f291a1161f15896d1a4d63daff5df ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe
22:12:30.0449 0808 XAudioService - ok
22:12:31.0353 0808 [ 7d1f3b131d503ef43ee594b5a2b9b427 ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
22:12:31.0353 0808 yukonwlh - ok
22:12:31.0650 0808 ================ Scan global ===============================
22:12:32.0227 0808 (f31eebc1a1c81fd04005489cc3dcdfe7) C:\Windows\system32\basesrv.dll
22:12:32.0835 0808 (d2293b069e4b63dc17b2f08d45e71124) C:\Windows\system32\winsrv.dll
22:12:33.0132 0808 (d2293b069e4b63dc17b2f08d45e71124) C:\Windows\system32\winsrv.dll
22:12:34.0021 0808 (d4e6d91c1349b7bfb3599a6ada56851b) C:\Windows\system32\services.exe
22:12:34.0021 0808 [Global] - ok
22:12:34.0021 0808 ================ Scan MBR ==================================
22:12:40.0776 0808 MBR (0x1B8) (588ae8f0c685c02ba11f30d9cd7e61a0) \Device\Harddisk0\DR0
22:12:41.0150 0808 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
22:12:41.0166 0808 \Device\Harddisk0\DR0 - detected TDSS File System (1)
22:12:41.0509 0808 MBR (0x1B8) (671b81004fdd1588fa9ed1331c9ceca9) \Device\Harddisk1\DR1
22:14:40.0490 0808 \Device\Harddisk1\DR1 - ok
22:14:40.0490 0808 ================ Scan VBR ==================================
22:14:40.0849 0808 Boot (0x1200) (14326105b2484a4b5ba5ebfd20deb383) \Device\Harddisk0\DR0\Partition1
22:14:40.0849 0808 \Device\Harddisk0\DR0\Partition1 - ok
22:15:01.0706 0808 Boot (0x1200) (180e1996f4b4f3ea0cc58b912aad0de1) \Device\Harddisk0\DR0\Partition2
22:15:01.0706 0808 \Device\Harddisk0\DR0\Partition2 - ok
22:15:03.0173 0808 Boot (0x1200) (284ff7e494695478fbffc9a9acbb16f1) \Device\Harddisk1\DR1\Partition1
22:15:03.0173 0808 \Device\Harddisk1\DR1\Partition1 - ok
22:15:03.0797 0808 ============================================================
22:15:03.0797 0808 Scan finished
22:15:03.0797 0808 ============================================================
22:15:04.0124 0492 Detected object count: 1
22:15:04.0124 0492 Actual detected object count: 1
22:15:38.0663 0492 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
22:15:38.0678 0492 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
22:15:38.0741 0492 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
22:15:38.0741 0492 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
22:15:38.0741 0492 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
22:15:38.0756 0492 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
22:15:38.0787 0492 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
22:15:38.0803 0492 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
22:15:38.0803 0492 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
22:15:38.0803 0492 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
22:15:38.0803 0492 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
22:15:38.0803 0492 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
22:15:38.0803 0492 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
22:15:38.0803 0492 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
22:15:38.0803 0492 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Quarantine
22:15:43.0093 2032 Deinitialize success

#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:21 AM

Posted 17 August 2012 - 06:22 PM

Can you reboot and check?

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

Edited by narenxp, 17 August 2012 - 06:23 PM.


#14 geegollygirl

geegollygirl
  • Topic Starter

  • Members
  • 60 posts
  • OFFLINE
  •  
  • Local time:05:21 AM

Posted 17 August 2012 - 07:58 PM

Quick update, the blue screen still comes up at reboot. I am getting ready to run the ESet scan and will send you the results.

#15 geegollygirl

geegollygirl
  • Topic Starter

  • Members
  • 60 posts
  • OFFLINE
  •  
  • Local time:05:21 AM

Posted 18 August 2012 - 11:11 AM

ESet Threats...

C:\TDSSKiller_Quarantine\16.08.2012_22.01.55\tdlfs0000\tsk0001.dta Win32/Olmarik.AYI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\16.08.2012_22.01.55\tdlfs0000\tsk0002.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\16.08.2012_22.01.55\tdlfs0000\tsk0003.dta Win32/Olmarik.AYH trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\16.08.2012_22.01.55\tdlfs0000\tsk0004.dta Win64/Olmarik.AL trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\16.08.2012_22.01.55\tdlfs0000\tsk0005.dta a variant of Win32/Rootkit.Kryptik.NP trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\16.08.2012_22.01.55\tdlfs0000\tsk0006.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\16.08.2012_22.01.55\tdlfs0000\tsk0010.dta Win32/Olmarik.AFK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\16.08.2012_22.01.55\tdlfs0000\tsk0011.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users