Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows Vista Home Premium - Virus Detects


  • Please log in to reply
18 replies to this topic

#1 Dave W7

Dave W7

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:03:27 AM

Posted 27 August 2012 - 05:50 PM

Hello,

When I use Google.com, I get re-directs nearly every time I click on a link. Additionally, Avast Antivirus detects a virus in Firefox.EXE nearly constantly. Even when I am not in Firefox, Avast finds numerous viruses. I ran Malwarebytes and think I may have deleted some important registry keys because, 75% of the time windows freezes during startup. It works all the time in Safe mode (and no virus detects....), and 25% of the time in regular mode but nearly CONSTANT virus detection. Please help! I am more interested in solving the VIRUS problem before going on to the 2nd problem of the boot failures (I cannot locate windows install discs to repair...but like i said, right now I am loaded perfectly fine into regular Windows, no safe mode etc)

Please let me know which logs to provide so we can proceed. Thanks so much!

Edited by Budapest, 27 August 2012 - 06:00 PM.
Moved from Vista ~Budapest


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,026 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:27 AM

Posted 27 August 2012 - 08:36 PM

Hello, can you post that MBAM (Malwarebytes)log??
The log is automatically saved and can be viewed by clicking the Logs tab.
Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.


Reboot into Safe Mode with Networking
How to enter safe mode(XP/Vista)
Using the F8 Method
Restart your computer.
When the machine first starts again it will generally list some equipment that is installed in your machine, amount of memory, hard drives installed etc. At this point you should gently tap the F8 key repeatedly until you are presented with a Windows XP Advanced Options menu.
Select the option for Safe Mode with Networking using the arrow keys.
Then press enter on your keyboard to boot into Safe Mode
.


>>>> Download this file and doubleclick on it to run it. Allow the information to be merged with the registry.

Run RKill....


Download and Run RKill
  • Please download RKill by Grinler from one of the 4 links below and save it to your desktop.

    Link 1
    Link 2
    Link 3
    Link 4

  • Before we begin, you should disable your anti-malware softwares you have installed so they do not interfere RKill running as some anti-malware softwares detect RKill as malicious. Please refer to this page if you are not sure how.
  • Double-click on Rkill on your desktop to run it. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • If nothing happens or if the tool does not run, please let me know in your next reply

Do not reboot your computer after running rkill as the malware programs will start again. Or if rebooting is required run it again.


If you continue having problems running rkill.com, you can download iExplore.exe or eXplorer.exe, which are renamed copies of rkill.com, and try them instead.


>>>>

Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click on Change Parameters
  • Put a check in the box of Detect TDLFS file system
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log has a name like: TDSSKiller.Version_Date_Time_log.txt.



Next run Superantisypware (SAS):

Please download and scan with SUPERAntiSpyware Free
  • Double-click SUPERAntiSypware.exe and use the default settings for installation.
    For instructions with screenshots, please refer to the How to use SUPERAntiSpyware to scan and remove malware from your computer Guide.
  • An icon will be created on your desktop. Double-click that icon to launch the program.
  • If it will not start, go to Start > All Prgrams > SUPERAntiSpyware and click on Alternate Start.
  • If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download them from here. Double-click on the hyperlink for Download Installer and save SASDEFINITIONS.EXE to your desktop. Then double-click on SASDEFINITIONS.EXE to install the definitions.)
  • In the Main Menu, click the Preferences... button.
  • Click the "General and Startup" tab, and under Start-up Options, make sure "Start SUPERAntiSpyware when Windows starts" box is unchecked.
  • Click the "Scanning Control" tab, and under Scanner Options, make sure the following are checked (leave all other options as they are set):
    • Close browsers before scanning.
    • Scan for tracking cookies.
    • Terminate memory threats before quarantining.
  • Click the "Close" button to leave the Control Center screen.
  • Back on the main screen, under "Select Scan Type" check the box for Complete Scan.
  • If your computer is badly infected, be sure to check the box next to Enable Rescue Scan (Highly Infected Systems ONLY).
  • Click the Scan your computer... button.
  • After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "OK".
  • Make sure everything has a checkmark next to it and click "Next".
  • A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
  • If asked if you want to reboot, click "Yes" and reboot normally.

To retrieve the scan log after reboot, launch SUPERAntiSpyware again.
  • Click the View Scan Logs button at the bottom.
  • This will open the Scanner Logs Window.
  • Click on the log to highlight it and then click on View Selected Log to open it.
  • Copy and paste the scan log results in your next reply.
-- Some types of malware will disable security tools. If SUPERAntiSpyware will not install, please refer to these instructions for using the SUPERAntiSpyware Installer. If SUPERAntiSpyware is already installed but will not run, then follow the instructions for using RUNSAS.EXE to launch the program.




Rerun MBAM (MalwareBytes) like this:

Open MBAM in normal mode and click Update tab, select Check for Updates,when done
click Scanner tab,select Quick scan and scan (normal mode).
After scan click Remove Selected, Post new scan log and Reboot into normal mode.

Please ask any needed questions,post logs and Let us know how the PC is running now.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Dave W7

Dave W7
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:03:27 AM

Posted 27 August 2012 - 10:12 PM

Here is the initial MBAM log:

Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.27.06

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 7.0.6002.18005
Dave :: THE-Q [administrator]

8/27/2012 6:56:27 PM
mbam-log-2012-08-27 (18-56-27).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 241734
Time elapsed: 18 minute(s), 11 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)



Then ran RKILL


Then ran TDSSKiller with no threats found. Report here:

23:06:11.0497 1940 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
23:06:11.0746 1940 ============================================================
23:06:11.0746 1940 Current date / time: 2012/08/27 23:06:11.0746
23:06:11.0746 1940 SystemInfo:
23:06:11.0746 1940
23:06:11.0746 1940 OS Version: 6.0.6002 ServicePack: 2.0
23:06:11.0746 1940 Product type: Workstation
23:06:11.0746 1940 ComputerName: THE-Q
23:06:11.0747 1940 UserName: Dave
23:06:11.0747 1940 Windows directory: C:\Windows
23:06:11.0747 1940 System windows directory: C:\Windows
23:06:11.0747 1940 Processor architecture: Intel x86
23:06:11.0747 1940 Number of processors: 4
23:06:11.0747 1940 Page size: 0x1000
23:06:11.0747 1940 Boot type: Safe boot with network
23:06:11.0747 1940 ============================================================
23:06:12.0638 1940 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
23:06:12.0639 1940 ============================================================
23:06:12.0639 1940 \Device\Harddisk0\DR0:
23:06:12.0639 1940 MBR partitions:
23:06:12.0639 1940 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xC350000
23:06:12.0639 1940 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xC350800, BlocksNum 0x1996800
23:06:12.0639 1940 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xDCE7000, BlocksNum 0x124F8000
23:06:12.0639 1940 \Device\Harddisk0\DR0\Partition4: MBR, Type 0x6, StartLBA 0x201DF000, BlocksNum 0x2AF8000
23:06:12.0639 1940 ============================================================
23:06:12.0664 1940 C: <-> \Device\Harddisk0\DR0\Partition1
23:06:12.0695 1940 D: <-> \Device\Harddisk0\DR0\Partition2
23:06:12.0726 1940 E: <-> \Device\Harddisk0\DR0\Partition3
23:06:12.0743 1940 ============================================================
23:06:12.0743 1940 Initialize success
23:06:12.0743 1940 ============================================================
23:06:25.0562 1288 ============================================================
23:06:25.0562 1288 Scan started
23:06:25.0562 1288 Mode: Manual; TDLFS;
23:06:25.0562 1288 ============================================================
23:06:25.0957 1288 ================ Scan system memory ========================
23:06:25.0957 1288 System memory - ok
23:06:25.0958 1288 ================ Scan services =============================
23:06:26.0065 1288 [ 25F8546FD40E40EC5A2A23AECAE4FDCA ] aawservice C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
23:06:26.0074 1288 aawservice - ok
23:06:26.0189 1288 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
23:06:26.0190 1288 ACPI - ok
23:06:26.0232 1288 [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
23:06:26.0238 1288 adp94xx - ok
23:06:26.0267 1288 [ B84088CA3CDCA97DA44A984C6CE1CCAD ] adpahci C:\Windows\system32\drivers\adpahci.sys
23:06:26.0271 1288 adpahci - ok
23:06:26.0292 1288 [ 7880C67BCCC27C86FD05AA2AFB5EA469 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
23:06:26.0293 1288 adpu160m - ok
23:06:26.0310 1288 [ 9AE713F8E30EFC2ABCCD84904333DF4D ] adpu320 C:\Windows\system32\drivers\adpu320.sys
23:06:26.0313 1288 adpu320 - ok
23:06:26.0360 1288 [ 91F3DF93F40A74D222CD166FE95DB633 ] AegisP C:\Windows\system32\DRIVERS\AegisP.sys
23:06:26.0361 1288 AegisP - ok
23:06:26.0382 1288 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
23:06:26.0387 1288 AeLookupSvc - ok
23:06:26.0438 1288 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
23:06:26.0439 1288 AFD - ok
23:06:26.0467 1288 [ EF23439CDD587F64C2C1B8825CEAD7D8 ] agp440 C:\Windows\system32\drivers\agp440.sys
23:06:26.0467 1288 agp440 - ok
23:06:26.0491 1288 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
23:06:26.0493 1288 aic78xx - ok
23:06:26.0521 1288 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
23:06:26.0523 1288 ALG - ok
23:06:26.0539 1288 [ 90395B64600EBB4552E26E178C94B2E4 ] aliide C:\Windows\system32\drivers\aliide.sys
23:06:26.0540 1288 aliide - ok
23:06:26.0554 1288 [ 2B13E304C9DFDFA5EB582F6A149FA2C7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
23:06:26.0556 1288 amdagp - ok
23:06:26.0567 1288 [ 0577DF1D323FE75A739C787893D300EA ] amdide C:\Windows\system32\drivers\amdide.sys
23:06:26.0567 1288 amdide - ok
23:06:26.0580 1288 [ DC487885BCEF9F28EECE6FAC0E5DDFC5 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
23:06:26.0580 1288 AmdK7 - ok
23:06:26.0603 1288 [ 0CA0071DA4315B00FC1328CA86B425DA ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
23:06:26.0604 1288 AmdK8 - ok
23:06:26.0638 1288 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
23:06:26.0639 1288 Appinfo - ok
23:06:26.0702 1288 [ 3A4982DF893F198A2DFBCCD4CE10F93A ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
23:06:26.0705 1288 Apple Mobile Device - ok
23:06:26.0728 1288 [ 5F673180268BB1FDB69C99B6619FE379 ] arc C:\Windows\system32\drivers\arc.sys
23:06:26.0730 1288 arc - ok
23:06:26.0757 1288 [ 957F7540B5E7F602E44648C7DE5A1C05 ] arcsas C:\Windows\system32\drivers\arcsas.sys
23:06:26.0758 1288 arcsas - ok
23:06:26.0802 1288 [ 663F2FB92608073824EE3106886120F3 ] AsIO C:\Windows\system32\drivers\AsIO.sys
23:06:26.0803 1288 AsIO - ok
23:06:26.0841 1288 [ 054DF24C92B55427E0757CFFF160E4F2 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
23:06:26.0842 1288 aswFsBlk - ok
23:06:26.0858 1288 [ 258143605E77E4008F1758481D6A977D ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
23:06:26.0859 1288 aswMonFlt - ok
23:06:26.0890 1288 [ 352D5A48EBAB35A7693B048679304831 ] aswRdr C:\Windows\system32\drivers\aswRdr.sys
23:06:26.0890 1288 aswRdr - ok
23:06:26.0937 1288 [ 8D34D2B24297E27D93E847319ABFDEC4 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
23:06:26.0943 1288 aswSnx - ok
23:06:26.0986 1288 [ 010012597333DA1F46C3243F33F8409E ] aswSP C:\Windows\system32\drivers\aswSP.sys
23:06:26.0991 1288 aswSP - ok
23:06:27.0021 1288 [ F9F84364416658E9786235904D448D37 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
23:06:27.0021 1288 aswTdi - ok
23:06:27.0053 1288 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
23:06:27.0053 1288 AsyncMac - ok
23:06:27.0084 1288 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
23:06:27.0084 1288 atapi - ok
23:06:27.0114 1288 [ BF8E0694001107BCC82670CCB500921E ] AtcL001 C:\Windows\system32\DRIVERS\l160x86.sys
23:06:27.0115 1288 AtcL001 - ok
23:06:27.0151 1288 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:06:27.0156 1288 AudioEndpointBuilder - ok
23:06:27.0162 1288 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
23:06:27.0164 1288 Audiosrv - ok
23:06:27.0225 1288 [ 996E6D052438E8D8DFD501F31560B2E0 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
23:06:27.0226 1288 avast! Antivirus - ok
23:06:27.0270 1288 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
23:06:27.0270 1288 Beep - ok
23:06:27.0276 1288 blbdrive - ok
23:06:27.0338 1288 [ 7719A5227C5489B90F06663A3B7F5BD1 ] BlueSoleilCS C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
23:06:27.0350 1288 BlueSoleilCS - ok
23:06:27.0374 1288 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
23:06:27.0375 1288 bowser - ok
23:06:27.0400 1288 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
23:06:27.0401 1288 BrFiltLo - ok
23:06:27.0416 1288 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
23:06:27.0417 1288 BrFiltUp - ok
23:06:27.0444 1288 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
23:06:27.0444 1288 Browser - ok
23:06:27.0459 1288 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
23:06:27.0477 1288 Brserid - ok
23:06:27.0494 1288 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
23:06:27.0495 1288 BrSerWdm - ok
23:06:27.0508 1288 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
23:06:27.0508 1288 BrUsbMdm - ok
23:06:27.0520 1288 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
23:06:27.0521 1288 BrUsbSer - ok
23:06:27.0539 1288 [ 265B16369D377752B7ECAD650782CB3A ] BsHelpCS C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
23:06:27.0541 1288 BsHelpCS - ok
23:06:27.0561 1288 [ BC22B2E349EBA428AE65E58E20731A98 ] BsMobileCS C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe
23:06:27.0564 1288 BsMobileCS - ok
23:06:27.0576 1288 [ D9C3FC79FAB279E69EF38021D892B651 ] BT C:\Windows\system32\DRIVERS\btnetdrv.sys
23:06:27.0577 1288 BT - ok
23:06:27.0606 1288 [ 4DFB38AD75D54DBE987D6040A578B42D ] Btcsrusb C:\Windows\system32\Drivers\btcusb.sys
23:06:27.0608 1288 Btcsrusb - ok
23:06:27.0640 1288 [ 6D39C954799B63BA866910234CF7D726 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
23:06:27.0641 1288 BthEnum - ok
23:06:27.0684 1288 [ 69511655F2563B3719E0290065369F08 ] BtHidBus C:\Windows\system32\Drivers\BtHidBus.sys
23:06:27.0685 1288 BtHidBus - ok
23:06:27.0716 1288 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
23:06:27.0717 1288 BTHMODEM - ok
23:06:27.0745 1288 [ 5904EFA25F829BF84EA6FB045134A1D8 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
23:06:27.0747 1288 BthPan - ok
23:06:27.0771 1288 [ 4A74BBB2B6761789F42A6613479BDB1D ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
23:06:27.0773 1288 BTHPORT - ok
23:06:27.0812 1288 [ A4C8377FA4A994E07075107DBE2E3DCE ] BthServ C:\Windows\System32\bthserv.dll
23:06:27.0813 1288 BthServ - ok
23:06:27.0817 1288 [ 1A407F9B707A06F55AA150F9AA072B09 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
23:06:27.0818 1288 BTHUSB - ok
23:06:27.0845 1288 [ FE06BB193DDF733A4BBAF4756EF34A0B ] btnetBUs C:\Windows\system32\Drivers\btnetBus.sys
23:06:27.0846 1288 btnetBUs - ok
23:06:27.0877 1288 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
23:06:27.0878 1288 cdfs - ok
23:06:27.0911 1288 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
23:06:27.0911 1288 cdrom - ok
23:06:27.0946 1288 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
23:06:27.0947 1288 CertPropSvc - ok
23:06:27.0975 1288 [ DA8E0AFC7BAA226C538EF53AC2F90897 ] circlass C:\Windows\system32\drivers\circlass.sys
23:06:27.0976 1288 circlass - ok
23:06:28.0008 1288 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
23:06:28.0012 1288 CLFS - ok
23:06:28.0068 1288 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:06:28.0128 1288 clr_optimization_v2.0.50727_32 - ok
23:06:28.0196 1288 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:06:28.0200 1288 clr_optimization_v4.0.30319_32 - ok
23:06:28.0229 1288 [ 45201046C776FFDAF3FC8A0029C581C8 ] cmdide C:\Windows\system32\drivers\cmdide.sys
23:06:28.0230 1288 cmdide - ok
23:06:28.0241 1288 [ 82B8C91D327CFECF76CB58716F7D4997 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
23:06:28.0241 1288 Compbatt - ok
23:06:28.0253 1288 COMSysApp - ok
23:06:28.0267 1288 [ 2A213AE086BBEC5E937553C7D9A2B22C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
23:06:28.0268 1288 crcdisk - ok
23:06:28.0280 1288 [ 22A7F883508176489F559EE745B5BF5D ] Crusoe C:\Windows\system32\drivers\crusoe.sys
23:06:28.0281 1288 Crusoe - ok
23:06:28.0323 1288 [ 75C6A297E364014840B48ECCD7525E30 ] CryptSvc C:\Windows\system32\cryptsvc.dll
23:06:28.0324 1288 CryptSvc - ok
23:06:28.0369 1288 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
23:06:28.0426 1288 DcomLaunch - ok
23:06:28.0461 1288 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
23:06:28.0463 1288 DfsC - ok
23:06:28.0536 1288 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
23:06:28.0586 1288 DFSR - ok
23:06:28.0622 1288 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
23:06:28.0625 1288 Dhcp - ok
23:06:28.0653 1288 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
23:06:28.0653 1288 disk - ok
23:06:28.0689 1288 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
23:06:28.0691 1288 Dnscache - ok
23:06:28.0726 1288 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
23:06:28.0729 1288 dot3svc - ok
23:06:28.0764 1288 [ 4F59C172C094E1A1D46463A8DC061CBD ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
23:06:28.0767 1288 Dot4 - ok
23:06:28.0791 1288 [ 80BF3BA09F6F2523C8F6B7CC6DBF7BD5 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
23:06:28.0792 1288 Dot4Print - ok
23:06:28.0808 1288 [ C55004CA6B419B6695970DFE849B122F ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
23:06:28.0809 1288 dot4usb - ok
23:06:28.0832 1288 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
23:06:28.0835 1288 DPS - ok
23:06:28.0859 1288 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
23:06:28.0859 1288 drmkaud - ok
23:06:28.0899 1288 [ FB85F7F69E9B109820409243F578CC4D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
23:06:28.0909 1288 DXGKrnl - ok
23:06:28.0949 1288 [ F88FB26547FD2CE6D0A5AF2985892C48 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
23:06:28.0951 1288 E1G60 - ok
23:06:28.0994 1288 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
23:06:28.0995 1288 EapHost - ok
23:06:29.0033 1288 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
23:06:29.0036 1288 Ecache - ok
23:06:29.0059 1288 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
23:06:29.0064 1288 ehRecvr - ok
23:06:29.0103 1288 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
23:06:29.0105 1288 ehSched - ok
23:06:29.0120 1288 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
23:06:29.0121 1288 ehstart - ok
23:06:29.0172 1288 [ E8F3F21A71720C84BCF423B80028359F ] elxstor C:\Windows\system32\drivers\elxstor.sys
23:06:29.0177 1288 elxstor - ok
23:06:29.0228 1288 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
23:06:29.0236 1288 EMDMgmt - ok
23:06:29.0273 1288 [ FD9FC82F134B1C91004FFC76A5AE494B ] ENTECH C:\Windows\system32\DRIVERS\ENTECH.sys
23:06:29.0274 1288 ENTECH - ok
23:06:29.0311 1288 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
23:06:29.0313 1288 EventSystem - ok
23:06:29.0352 1288 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
23:06:29.0355 1288 exfat - ok
23:06:29.0382 1288 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
23:06:29.0383 1288 fastfat - ok
23:06:29.0425 1288 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
23:06:29.0425 1288 fdc - ok
23:06:29.0441 1288 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
23:06:29.0442 1288 fdPHost - ok
23:06:29.0471 1288 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
23:06:29.0473 1288 FDResPub - ok
23:06:29.0511 1288 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
23:06:29.0513 1288 FileInfo - ok
23:06:29.0539 1288 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
23:06:29.0540 1288 Filetrace - ok
23:06:29.0544 1288 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
23:06:29.0545 1288 flpydisk - ok
23:06:29.0579 1288 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
23:06:29.0580 1288 FltMgr - ok
23:06:29.0648 1288 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
23:06:29.0650 1288 FontCache3.0.0.0 - ok
23:06:29.0674 1288 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
23:06:29.0674 1288 Fs_Rec - ok
23:06:29.0696 1288 [ 4E1CD0A45C50A8882616CAE5BF82F3C5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
23:06:29.0698 1288 gagp30kx - ok
23:06:29.0758 1288 [ 4AC51459805264AFFD5F6FDFB9D9235F ] GEARAspiWDM C:\Windows\system32\Drivers\GEARAspiWDM.sys
23:06:29.0758 1288 GEARAspiWDM - ok
23:06:29.0786 1288 [ 77EBF3E9386DAA51551AF429052D88D0 ] giveio C:\Windows\system32\giveio.sys
23:06:29.0787 1288 giveio - ok
23:06:29.0825 1288 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
23:06:29.0834 1288 gpsvc - ok
23:06:29.0874 1288 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
23:06:29.0878 1288 HdAudAddService - ok
23:06:29.0946 1288 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
23:06:29.0963 1288 HDAudBus - ok
23:06:29.0977 1288 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
23:06:29.0978 1288 HidBth - ok
23:06:29.0990 1288 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
23:06:29.0991 1288 HidIr - ok
23:06:30.0018 1288 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\system32\hidserv.dll
23:06:30.0020 1288 hidserv - ok
23:06:30.0033 1288 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
23:06:30.0033 1288 HidUsb - ok
23:06:30.0059 1288 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
23:06:30.0061 1288 hkmsvc - ok
23:06:30.0076 1288 [ DF353B401001246853763C4B7AAA6F50 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
23:06:30.0077 1288 HpCISSs - ok
23:06:30.0163 1288 [ CE0FCEC4D4D860F36D972759B11EAF0F ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
23:06:30.0168 1288 hpqcxs08 - ok
23:06:30.0195 1288 [ 7DA3211AC63EDD90B8ECA1CA1ABFD43B ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
23:06:30.0198 1288 hpqddsvc - ok
23:06:30.0247 1288 [ 14229263AA19C704E0D6D2E7404A8455 ] HPSLPSVC C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
23:06:30.0257 1288 HPSLPSVC - ok
23:06:30.0301 1288 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
23:06:30.0303 1288 HTTP - ok
23:06:30.0315 1288 [ 324C2152FF2C61ABAE92D09F3CCA4D63 ] i2omp C:\Windows\system32\drivers\i2omp.sys
23:06:30.0316 1288 i2omp - ok
23:06:30.0362 1288 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
23:06:30.0362 1288 i8042prt - ok
23:06:30.0380 1288 [ C957BF4B5D80B46C5017BF0101E6C906 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
23:06:30.0384 1288 iaStorV - ok
23:06:30.0455 1288 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
23:06:30.0496 1288 idsvc - ok
23:06:30.0525 1288 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
23:06:30.0526 1288 iirsp - ok
23:06:30.0571 1288 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
23:06:30.0578 1288 IKEEXT - ok
23:06:30.0656 1288 [ 2BD6633DB50A98534AA3262E0F9F5A14 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
23:06:30.0689 1288 IntcAzAudAddService - ok
23:06:30.0726 1288 [ 97469037714070E45194ED318D636401 ] intelide C:\Windows\system32\drivers\intelide.sys
23:06:30.0727 1288 intelide - ok
23:06:30.0750 1288 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
23:06:30.0751 1288 intelppm - ok
23:06:30.0812 1288 [ 3DC635B66DD7412E1C9C3A77B8D78F25 ] IntuitUpdateService C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
23:06:30.0814 1288 IntuitUpdateService - ok
23:06:30.0860 1288 [ 1663A135865F0BA6E853353E98E67F2A ] IntuitUpdateServiceV4 C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
23:06:30.0862 1288 IntuitUpdateServiceV4 - ok
23:06:30.0893 1288 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
23:06:30.0895 1288 IPBusEnum - ok
23:06:30.0918 1288 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:06:30.0919 1288 IpFilterDriver - ok
23:06:30.0922 1288 IpInIp - ok
23:06:30.0935 1288 [ 40F34F8ABA2A015D780E4B09138B6C17 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
23:06:30.0937 1288 IPMIDRV - ok
23:06:30.0966 1288 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
23:06:30.0966 1288 IPNAT - ok
23:06:31.0013 1288 [ 1E9ED06A30FB0410CE94892F1BA6984B ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
23:06:31.0020 1288 iPod Service - ok
23:06:31.0045 1288 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
23:06:31.0045 1288 IRENUM - ok
23:06:31.0068 1288 [ 350FCA7E73CF65BCEF43FAE1E4E91293 ] isapnp C:\Windows\system32\drivers\isapnp.sys
23:06:31.0068 1288 isapnp - ok
23:06:31.0108 1288 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
23:06:31.0109 1288 iScsiPrt - ok
23:06:31.0122 1288 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
23:06:31.0123 1288 iteatapi - ok
23:06:31.0141 1288 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
23:06:31.0143 1288 iteraid - ok
23:06:31.0177 1288 [ 71E1FC547CC488D5CD7BF0860C96F5AF ] IvtBtBUs C:\Windows\system32\Drivers\IvtBtBus.sys
23:06:31.0178 1288 IvtBtBUs - ok
23:06:31.0198 1288 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
23:06:31.0199 1288 kbdclass - ok
23:06:31.0212 1288 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
23:06:31.0213 1288 kbdhid - ok
23:06:31.0241 1288 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
23:06:31.0243 1288 KeyIso - ok
23:06:31.0283 1288 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
23:06:31.0285 1288 KSecDD - ok
23:06:31.0335 1288 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
23:06:31.0341 1288 KtmRm - ok
23:06:31.0355 1288 kxrblv - ok
23:06:31.0369 1288 [ D88846F9F4F27AE9BE584A6E5B6B8753 ] L8042Kbd C:\Windows\system32\DRIVERS\L8042Kbd.sys
23:06:31.0369 1288 L8042Kbd - ok
23:06:31.0403 1288 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\system32\srvsvc.dll
23:06:31.0424 1288 LanmanServer - ok
23:06:31.0458 1288 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:06:31.0490 1288 LanmanWorkstation - ok
23:06:31.0502 1288 [ 3FA98339E8D9E007726BE62F231E2015 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
23:06:31.0502 1288 LHidFilt - ok
23:06:31.0553 1288 [ 559C9B7800FAC92FC515CD0003D7C631 ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
23:06:31.0555 1288 LightScribeService - ok
23:06:31.0579 1288 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
23:06:31.0580 1288 lltdio - ok
23:06:31.0610 1288 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
23:06:31.0613 1288 lltdsvc - ok
23:06:31.0634 1288 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
23:06:31.0635 1288 lmhosts - ok
23:06:31.0651 1288 [ F259F758E04D8FB8D48C6CDBE45223E8 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
23:06:31.0651 1288 LMouFilt - ok
23:06:31.0690 1288 [ A2262FB9F28935E862B4DB46438C80D2 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
23:06:31.0692 1288 LSI_FC - ok
23:06:31.0700 1288 [ 30D73327D390F72A62F32C103DAF1D6D ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
23:06:31.0701 1288 LSI_SAS - ok
23:06:31.0718 1288 [ E1E36FEFD45849A95F1AB81DE0159FE3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
23:06:31.0719 1288 LSI_SCSI - ok
23:06:31.0753 1288 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
23:06:31.0755 1288 luafv - ok
23:06:31.0778 1288 [ CA26E46EC8891058C9E10363DF4E4650 ] LUsbFilt C:\Windows\system32\Drivers\LUsbFilt.Sys
23:06:31.0780 1288 LUsbFilt - ok
23:06:31.0783 1288 MagicTune - ok
23:06:31.0859 1288 [ F453D1E6D881E8F8717E20CCD4199E85 ] McComponentHostService C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
23:06:31.0863 1288 McComponentHostService - ok
23:06:31.0904 1288 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
23:06:31.0906 1288 Mcx2Svc - ok
23:06:31.0978 1288 [ 85FC865E62A76D8C70F944368B829429 ] MDM C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
23:06:31.0982 1288 MDM - ok
23:06:32.0023 1288 [ D153B14FC6598EAE8422A2037553ADCE ] megasas C:\Windows\system32\drivers\megasas.sys
23:06:32.0025 1288 megasas - ok
23:06:32.0041 1288 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
23:06:32.0043 1288 MMCSS - ok
23:06:32.0073 1288 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
23:06:32.0074 1288 Modem - ok
23:06:32.0114 1288 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
23:06:32.0115 1288 monitor - ok
23:06:32.0139 1288 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
23:06:32.0140 1288 mouclass - ok
23:06:32.0153 1288 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
23:06:32.0154 1288 mouhid - ok
23:06:32.0169 1288 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
23:06:32.0169 1288 MountMgr - ok
23:06:32.0224 1288 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
23:06:32.0227 1288 MozillaMaintenance - ok
23:06:32.0261 1288 [ 583A41F26278D9E0EA548163D6139397 ] mpio C:\Windows\system32\drivers\mpio.sys
23:06:32.0263 1288 mpio - ok
23:06:32.0297 1288 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
23:06:32.0299 1288 mpsdrv - ok
23:06:32.0317 1288 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
23:06:32.0318 1288 Mraid35x - ok
23:06:32.0353 1288 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
23:06:32.0354 1288 MRxDAV - ok
23:06:32.0374 1288 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
23:06:32.0375 1288 mrxsmb - ok
23:06:32.0410 1288 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:06:32.0413 1288 mrxsmb10 - ok
23:06:32.0429 1288 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:06:32.0430 1288 mrxsmb20 - ok
23:06:32.0446 1288 [ 742AED7939E734C36B7E8D6228CE26B7 ] msahci C:\Windows\system32\drivers\msahci.sys
23:06:32.0447 1288 msahci - ok
23:06:32.0465 1288 [ 3FC82A2AE4CC149165A94699183D3028 ] msdsm C:\Windows\system32\drivers\msdsm.sys
23:06:32.0467 1288 msdsm - ok
23:06:32.0489 1288 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
23:06:32.0492 1288 MSDTC - ok
23:06:32.0518 1288 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
23:06:32.0519 1288 Msfs - ok
23:06:32.0553 1288 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
23:06:32.0554 1288 msisadrv - ok
23:06:32.0587 1288 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
23:06:32.0590 1288 MSiSCSI - ok
23:06:32.0593 1288 msiserver - ok
23:06:32.0618 1288 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
23:06:32.0619 1288 MSKSSRV - ok
23:06:32.0630 1288 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
23:06:32.0631 1288 MSPCLOCK - ok
23:06:32.0648 1288 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
23:06:32.0648 1288 MSPQM - ok
23:06:32.0685 1288 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
23:06:32.0688 1288 MsRPC - ok
23:06:32.0703 1288 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
23:06:32.0703 1288 mssmbios - ok
23:06:32.0744 1288 MSSQL$SQLEXPRESS - ok
23:06:32.0788 1288 [ 1D89EB4E2A99CABD4E81225F4F4C4B25 ] MSSQLServerADHelper C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
23:06:32.0789 1288 MSSQLServerADHelper - ok
23:06:32.0804 1288 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
23:06:32.0806 1288 MSTEE - ok
23:06:32.0830 1288 [ DCDAAB8697A47894A554050CE18D0B56 ] MTsensor C:\Windows\system32\DRIVERS\ASACPI.sys
23:06:32.0830 1288 MTsensor - ok
23:06:32.0859 1288 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
23:06:32.0860 1288 Mup - ok
23:06:32.0888 1288 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
23:06:32.0894 1288 napagent - ok
23:06:32.0931 1288 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
23:06:32.0934 1288 NativeWifiP - ok
23:06:32.0957 1288 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
23:06:32.0961 1288 NDIS - ok
23:06:32.0992 1288 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
23:06:32.0992 1288 NdisTapi - ok
23:06:33.0022 1288 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
23:06:33.0023 1288 Ndisuio - ok
23:06:33.0055 1288 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
23:06:33.0056 1288 NdisWan - ok
23:06:33.0082 1288 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
23:06:33.0083 1288 NDProxy - ok
23:06:33.0125 1288 [ 2969D26EEE289BE7422AA46FC55F4E38 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
23:06:33.0127 1288 Net Driver HPZ12 - ok
23:06:33.0140 1288 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
23:06:33.0140 1288 NetBIOS - ok
23:06:33.0175 1288 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
23:06:33.0176 1288 netbt - ok
23:06:33.0182 1288 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
23:06:33.0183 1288 Netlogon - ok
23:06:33.0212 1288 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
23:06:33.0214 1288 Netman - ok
23:06:33.0242 1288 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
23:06:33.0246 1288 netprofm - ok
23:06:33.0283 1288 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
23:06:33.0285 1288 NetTcpPortSharing - ok
23:06:33.0314 1288 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
23:06:33.0316 1288 nfrd960 - ok
23:06:33.0343 1288 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
23:06:33.0347 1288 NlaSvc - ok
23:06:33.0424 1288 [ C4EBBBD7165BE535F0BFD06B80601D91 ] NMIndexingService C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
23:06:33.0430 1288 NMIndexingService - ok
23:06:33.0453 1288 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
23:06:33.0453 1288 Npfs - ok
23:06:33.0477 1288 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
23:06:33.0478 1288 nsi - ok
23:06:33.0502 1288 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
23:06:33.0503 1288 nsiproxy - ok
23:06:33.0569 1288 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
23:06:33.0577 1288 Ntfs - ok
23:06:33.0591 1288 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
23:06:33.0593 1288 ntrigdigi - ok
23:06:33.0616 1288 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
23:06:33.0617 1288 Null - ok
23:06:33.0787 1288 [ B40539857021CB65C640FA18B9E40BB0 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
23:06:33.0942 1288 nvlddmkm - ok
23:06:33.0965 1288 [ E69E946F80C1C31C53003BFBF50CBB7C ] nvraid C:\Windows\system32\drivers\nvraid.sys
23:06:33.0967 1288 nvraid - ok
23:06:33.0976 1288 [ 9E0BA19A28C498A6D323D065DB76DFFC ] nvstor C:\Windows\system32\drivers\nvstor.sys
23:06:33.0978 1288 nvstor - ok
23:06:34.0014 1288 [ E0A2DC5D912DD50F9190A6B38110A513 ] nvsvc C:\Windows\system32\nvvsvc.exe
23:06:34.0018 1288 nvsvc - ok
23:06:34.0036 1288 [ 07C186427EB8FCC3D8D7927187F260F7 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
23:06:34.0038 1288 nv_agp - ok
23:06:34.0041 1288 NwlnkFlt - ok
23:06:34.0045 1288 NwlnkFwd - ok
23:06:34.0078 1288 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
23:06:34.0080 1288 ohci1394 - ok
23:06:34.0134 1288 [ 00B510DCB3F01A6BE78FF8CD912B8B0D ] OmniTV C:\Windows\system32\DRIVERS\OmniTV.sys
23:06:34.0138 1288 OmniTV - ok
23:06:34.0167 1288 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:06:34.0170 1288 ose - ok
23:06:34.0211 1288 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
23:06:34.0221 1288 p2pimsvc - ok
23:06:34.0236 1288 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
23:06:34.0240 1288 p2psvc - ok
23:06:34.0272 1288 [ EB0F54FBCB622957051CF507885BF66F ] PAC207 C:\Windows\system32\DRIVERS\PFC027.SYS
23:06:34.0280 1288 PAC207 - ok
23:06:34.0300 1288 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
23:06:34.0301 1288 Parport - ok
23:06:34.0331 1288 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
23:06:34.0331 1288 partmgr - ok
23:06:34.0342 1288 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
23:06:34.0343 1288 Parvdm - ok
23:06:34.0364 1288 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
23:06:34.0366 1288 PcaSvc - ok
23:06:34.0396 1288 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
23:06:34.0397 1288 pci - ok
23:06:34.0427 1288 [ 1636D43F10416AEB483BC6001097B26C ] pciide C:\Windows\system32\drivers\pciide.sys
23:06:34.0428 1288 pciide - ok
23:06:34.0458 1288 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
23:06:34.0460 1288 pcmcia - ok
23:06:34.0486 1288 [ 5B6C11DE7E839C05248CED8825470FEF ] pcouffin C:\Windows\system32\Drivers\pcouffin.sys
23:06:34.0487 1288 pcouffin - ok
23:06:34.0516 1288 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
23:06:34.0550 1288 PEAUTH - ok
23:06:34.0654 1288 [ ACC93675D78D1C07DAD09D7837F2397A ] pgsql-8.3 C:\Program Files\PostgreSQL\8.3\bin\pg_ctl.exe
23:06:34.0656 1288 pgsql-8.3 - ok
23:06:34.0716 1288 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
23:06:34.0766 1288 pla - ok
23:06:34.0801 1288 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
23:06:34.0805 1288 PlugPlay - ok
23:06:34.0815 1288 [ BAFC9706BDF425A02B66468AB2605C59 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
23:06:34.0817 1288 Pml Driver HPZ12 - ok
23:06:34.0848 1288 [ 831883B107684301F48ACE752C963984 ] PnkBstrA C:\Windows\system32\PnkBstrA.exe
23:06:34.0851 1288 PnkBstrA - ok
23:06:34.0877 1288 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
23:06:34.0882 1288 PNRPAutoReg - ok
23:06:34.0902 1288 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
23:06:34.0906 1288 PNRPsvc - ok
23:06:34.0922 1288 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
23:06:34.0924 1288 PolicyAgent - ok
23:06:34.0956 1288 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
23:06:34.0957 1288 PptpMiniport - ok
23:06:34.0979 1288 [ 0E3CEF5D28B40CF273281D620C50700A ] Processor C:\Windows\system32\drivers\processr.sys
23:06:34.0980 1288 Processor - ok
23:06:35.0010 1288 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
23:06:35.0013 1288 ProfSvc - ok
23:06:35.0023 1288 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
23:06:35.0024 1288 ProtectedStorage - ok
23:06:35.0058 1288 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
23:06:35.0060 1288 PSched - ok
23:06:35.0097 1288 [ CCDAC889326317792480C0A67156A1EC ] ql2300 C:\Windows\system32\drivers\ql2300.sys
23:06:35.0122 1288 ql2300 - ok
23:06:35.0137 1288 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
23:06:35.0139 1288 ql40xx - ok
23:06:35.0162 1288 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
23:06:35.0166 1288 QWAVE - ok
23:06:35.0193 1288 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
23:06:35.0194 1288 QWAVEdrv - ok
23:06:35.0215 1288 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
23:06:35.0215 1288 RasAcd - ok
23:06:35.0242 1288 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
23:06:35.0245 1288 RasAuto - ok
23:06:35.0260 1288 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
23:06:35.0261 1288 Rasl2tp - ok
23:06:35.0284 1288 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
23:06:35.0289 1288 RasMan - ok
23:06:35.0313 1288 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
23:06:35.0314 1288 RasPppoe - ok
23:06:35.0350 1288 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
23:06:35.0351 1288 RasSstp - ok
23:06:35.0381 1288 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
23:06:35.0382 1288 rdbss - ok
23:06:35.0407 1288 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
23:06:35.0408 1288 RDPCDD - ok
23:06:35.0424 1288 [ E8BD98D46F2ED77132BA927FCCB47D8B ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
23:06:35.0426 1288 rdpdr - ok
23:06:35.0430 1288 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
23:06:35.0431 1288 RDPENCDD - ok
23:06:35.0454 1288 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
23:06:35.0455 1288 RDPWD - ok
23:06:35.0486 1288 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
23:06:35.0488 1288 RemoteAccess - ok
23:06:35.0522 1288 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
23:06:35.0524 1288 RemoteRegistry - ok
23:06:35.0557 1288 [ 6482707F9F4DA0ECBAB43B2E0398A101 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
23:06:35.0560 1288 RFCOMM - ok
23:06:35.0604 1288 [ 75E8A6BFA7374ABA833AE92BF41AE4E6 ] ROOTMODEM C:\Windows\system32\Drivers\RootMdm.sys
23:06:35.0605 1288 ROOTMODEM - ok
23:06:35.0628 1288 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
23:06:35.0629 1288 RpcLocator - ok
23:06:35.0666 1288 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
23:06:35.0670 1288 RpcSs - ok
23:06:35.0697 1288 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
23:06:35.0698 1288 rspndr - ok
23:06:35.0715 1288 RT61 - ok
23:06:35.0754 1288 [ 295B2964CD74A171352819CC40CE64A9 ] rt61x86 C:\Windows\system32\DRIVERS\netr61.sys
23:06:35.0759 1288 rt61x86 - ok
23:06:35.0794 1288 [ 3E322976D9414490DF552D63A0DBE288 ] RTL8192su C:\Windows\system32\DRIVERS\RTL8192su.sys
23:06:35.0797 1288 RTL8192su - ok
23:06:35.0801 1288 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
23:06:35.0802 1288 SamSs - ok
23:06:35.0855 1288 [ FC0D4B29FCFBABF10E91CFAA1EDA8DE7 ] SandraDataSrv C:\Program Files\SiSoftware\SiSoftware Sandra Lite XIIc\Win32\RpcDataSrv.exe
23:06:35.0858 1288 SandraDataSrv - ok
23:06:35.0889 1288 [ F3C014E68B4F0CA87A2D101BD45124F3 ] SandraTheSrv C:\Program Files\SiSoftware\SiSoftware Sandra Lite XIIc\RpcSandraSrv.exe
23:06:35.0914 1288 SandraTheSrv - ok
23:06:35.0936 1288 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
23:06:35.0937 1288 sbp2port - ok
23:06:36.0007 1288 [ E057E4B90B5E69E9BC0F779BE27E5A54 ] SBSDWSCService C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
23:06:36.0016 1288 SBSDWSCService - ok
23:06:36.0051 1288 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
23:06:36.0054 1288 SCardSvr - ok
23:06:36.0089 1288 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
23:06:36.0093 1288 Schedule - ok
23:06:36.0103 1288 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
23:06:36.0104 1288 SCPolicySvc - ok
23:06:36.0135 1288 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
23:06:36.0138 1288 SDRSVC - ok
23:06:36.0150 1288 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
23:06:36.0152 1288 secdrv - ok
23:06:36.0177 1288 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
23:06:36.0179 1288 seclogon - ok
23:06:36.0203 1288 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
23:06:36.0206 1288 SENS - ok
23:06:36.0225 1288 [ CE9EC966638EF0B10B864DDEDF62A099 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
23:06:36.0225 1288 Serenum - ok
23:06:36.0253 1288 [ 6D663022DB3E7058907784AE14B69898 ] Serial C:\Windows\system32\DRIVERS\serial.sys
23:06:36.0254 1288 Serial - ok
23:06:36.0280 1288 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
23:06:36.0281 1288 sermouse - ok
23:06:36.0311 1288 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
23:06:36.0314 1288 SessionEnv - ok
23:06:36.0326 1288 [ 103B79418DA647736EE95645F305F68A ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
23:06:36.0327 1288 sffdisk - ok
23:06:36.0340 1288 [ 8FD08A310645FE872EEEC6E08C6BF3EE ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
23:06:36.0341 1288 sffp_mmc - ok
23:06:36.0349 1288 [ 9CFA05FCFCB7124E69CFC812B72F9614 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
23:06:36.0350 1288 sffp_sd - ok
23:06:36.0359 1288 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
23:06:36.0359 1288 sfloppy - ok
23:06:36.0393 1288 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:06:36.0396 1288 ShellHWDetection - ok
23:06:36.0417 1288 [ D2A595D6EEBEEAF4334F8E50EFBC9931 ] sisagp C:\Windows\system32\drivers\sisagp.sys
23:06:36.0418 1288 sisagp - ok
23:06:36.0436 1288 [ CEDD6F4E7D84E9F98B34B3FE988373AA ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
23:06:36.0437 1288 SiSRaid2 - ok
23:06:36.0476 1288 [ DF843C528C4F69D12CE41CE462E973A7 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
23:06:36.0478 1288 SiSRaid4 - ok
23:06:36.0564 1288 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
23:06:36.0646 1288 slsvc - ok
23:06:36.0679 1288 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
23:06:36.0681 1288 SLUINotify - ok
23:06:36.0709 1288 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
23:06:36.0710 1288 Smb - ok
23:06:36.0757 1288 [ 3E44AC015742401A685A4CF5D98EBD3E ] SndTAudio C:\Windows\system32\drivers\SndTAudio.sys
23:06:36.0758 1288 SndTAudio - ok
23:06:36.0790 1288 [ F719ED6223B50E2D115821572339F0B8 ] SndTVideo C:\Windows\system32\DRIVERS\SndTVideo.sys
23:06:36.0791 1288 SndTVideo - ok
23:06:36.0819 1288 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
23:06:36.0821 1288 SNMPTRAP - ok
23:06:36.0869 1288 [ BBE1769FECCF844C4ACFD86929B61F6E ] SoundMovieServer C:\Windows\system32\snmvtsvc.exe
23:06:36.0874 1288 SoundMovieServer - ok
23:06:36.0907 1288 [ 5D6401DB90EC81B71F8E2C5C8F0FEF23 ] speedfan C:\Windows\system32\speedfan.sys
23:06:36.0909 1288 speedfan - ok
23:06:36.0936 1288 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
23:06:36.0937 1288 spldr - ok
23:06:36.0971 1288 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
23:06:36.0973 1288 Spooler - ok
23:06:37.0013 1288 [ 86EBD8B1F23E743AAD21F4D5B4D40985 ] SQLBrowser C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
23:06:37.0017 1288 SQLBrowser - ok
23:06:37.0050 1288 [ D89083C4EB02DACA8F944B0E05E57F9D ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
23:06:37.0051 1288 SQLWriter - ok
23:06:37.0091 1288 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
23:06:37.0093 1288 srv - ok
23:06:37.0120 1288 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
23:06:37.0123 1288 srv2 - ok
23:06:37.0140 1288 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
23:06:37.0142 1288 srvnet - ok
23:06:37.0171 1288 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
23:06:37.0173 1288 SSDPSRV - ok
23:06:37.0215 1288 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
23:06:37.0219 1288 SstpSvc - ok
23:06:37.0242 1288 [ EF70B3D22B4BFFDA6EA851ECB063EFAA ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
23:06:37.0243 1288 StillCam - ok
23:06:37.0295 1288 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
23:06:37.0299 1288 stisvc - ok
23:06:37.0305 1288 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
23:06:37.0306 1288 swenum - ok
23:06:37.0340 1288 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
23:06:37.0346 1288 swprv - ok
23:06:37.0371 1288 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
23:06:37.0372 1288 Symc8xx - ok
23:06:37.0394 1288 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
23:06:37.0395 1288 Sym_hi - ok
23:06:37.0409 1288 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
23:06:37.0410 1288 Sym_u3 - ok
23:06:37.0445 1288 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
23:06:37.0454 1288 SysMain - ok
23:06:37.0488 1288 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:06:37.0490 1288 TabletInputService - ok
23:06:37.0501 1288 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
23:06:37.0504 1288 TapiSrv - ok
23:06:37.0527 1288 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
23:06:37.0530 1288 TBS - ok
23:06:37.0577 1288 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
23:06:37.0582 1288 Tcpip - ok
23:06:37.0610 1288 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
23:06:37.0615 1288 Tcpip6 - ok
23:06:37.0639 1288 [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
23:06:37.0640 1288 tcpipreg - ok
23:06:37.0664 1288 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
23:06:37.0665 1288 TDPIPE - ok
23:06:37.0686 1288 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
23:06:37.0687 1288 TDTCP - ok
23:06:37.0725 1288 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
23:06:37.0726 1288 tdx - ok
23:06:37.0758 1288 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
23:06:37.0758 1288 TermDD - ok
23:06:37.0800 1288 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
23:06:37.0803 1288 TermService - ok
23:06:37.0817 1288 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
23:06:37.0820 1288 Themes - ok
23:06:37.0824 1288 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
23:06:37.0825 1288 THREADORDER - ok
23:06:37.0899 1288 [ 87843B2DA99051BC66E2D6C211E3D6A4 ] TOSHIBA Bluetooth Service C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
23:06:37.0902 1288 TOSHIBA Bluetooth Service - ok
23:06:37.0935 1288 [ 8D624D3BD1F2D78BD1C01A2D4E954B4E ] tosporte C:\Windows\system32\DRIVERS\tosporte.sys
23:06:37.0936 1288 tosporte - ok
23:06:37.0952 1288 [ 266DF087A8C24DA34FF40CF3DF86CCFB ] tosrfbd C:\Windows\system32\DRIVERS\tosrfbd.sys
23:06:37.0954 1288 tosrfbd - ok
23:06:37.0970 1288 [ 90C8525BC578AAFFE87C2D0ED4379E9E ] tosrfbnp C:\Windows\system32\Drivers\tosrfbnp.sys
23:06:37.0971 1288 tosrfbnp - ok
23:06:37.0988 1288 [ 5BA1CA3B3CDDB1DDC67DF473F05D1EC2 ] Tosrfcom C:\Windows\system32\Drivers\tosrfcom.sys
23:06:37.0990 1288 Tosrfcom - ok
23:06:38.0009 1288 [ 7C807BA9660E2995CC0217A14A24094C ] Tosrfhid C:\Windows\system32\DRIVERS\Tosrfhid.sys
23:06:38.0011 1288 Tosrfhid - ok
23:06:38.0027 1288 [ C52FD27B9ADF3A1F22CB90E6BCF9B0CB ] tosrfnds C:\Windows\system32\DRIVERS\tosrfnds.sys
23:06:38.0028 1288 tosrfnds - ok
23:06:38.0055 1288 [ A4CE9572BC4AC8D329455059B43C5BEA ] TosRfSnd C:\Windows\system32\drivers\tosrfsnd.sys
23:06:38.0056 1288 TosRfSnd - ok
23:06:38.0079 1288 [ 602818649C84EB774D6971DA65F79CC8 ] Tosrfusb C:\Windows\system32\DRIVERS\tosrfusb.sys
23:06:38.0081 1288 Tosrfusb - ok
23:06:38.0118 1288 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
23:06:38.0121 1288 TrkWks - ok
23:06:38.0181 1288 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:06:38.0182 1288 TrustedInstaller - ok
23:06:38.0212 1288 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
23:06:38.0213 1288 tssecsrv - ok
23:06:38.0251 1288 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
23:06:38.0252 1288 tunmp - ok
23:06:38.0286 1288 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
23:06:38.0287 1288 tunnel - ok
23:06:38.0314 1288 [ C3ADE15414120033A36C0F293D4A4121 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
23:06:38.0315 1288 uagp35 - ok
23:06:38.0344 1288 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
23:06:38.0345 1288 udfs - ok
23:06:38.0372 1288 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
23:06:38.0375 1288 UI0Detect - ok
23:06:38.0393 1288 [ 75E6890EBFCE0841D3291B02E7A8BDB0 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
23:06:38.0395 1288 uliagpkx - ok
23:06:38.0413 1288 [ 3CD4EA35A6221B85DCC25DAA46313F8D ] uliahci C:\Windows\system32\drivers\uliahci.sys
23:06:38.0417 1288 uliahci - ok
23:06:38.0435 1288 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
23:06:38.0437 1288 UlSata - ok
23:06:38.0460 1288 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
23:06:38.0462 1288 ulsata2 - ok
23:06:38.0497 1288 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
23:06:38.0498 1288 umbus - ok
23:06:38.0535 1288 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
23:06:38.0537 1288 upnphost - ok
23:06:38.0565 1288 [ 32DB9517628FF0D070682AAB61E688F0 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
23:06:38.0567 1288 usbaudio - ok
23:06:38.0596 1288 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
23:06:38.0597 1288 usbccgp - ok
23:06:38.0612 1288 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
23:06:38.0614 1288 usbcir - ok
23:06:38.0653 1288 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
23:06:38.0654 1288 usbehci - ok
23:06:38.0682 1288 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
23:06:38.0683 1288 usbhub - ok
23:06:38.0714 1288 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys
23:06:38.0715 1288 usbohci - ok
23:06:38.0724 1288 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
23:06:38.0725 1288 usbprint - ok
23:06:38.0760 1288 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
23:06:38.0761 1288 usbscan - ok
23:06:38.0796 1288 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:06:38.0797 1288 USBSTOR - ok
23:06:38.0822 1288 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
23:06:38.0823 1288 usbuhci - ok
23:06:38.0854 1288 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
23:06:38.0856 1288 UxSms - ok
23:06:38.0887 1288 [ 0955553090E0A88614E5B8A02AF9324C ] VComm C:\Windows\system32\DRIVERS\VComm.sys
23:06:38.0888 1288 VComm - ok
23:06:38.0905 1288 [ D773FD957514550FE72BA8EB6AF8C7B6 ] VcommMgr C:\Windows\system32\Drivers\VcommMgr.sys
23:06:38.0906 1288 VcommMgr - ok
23:06:38.0938 1288 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
23:06:38.0945 1288 vds - ok
23:06:38.0969 1288 [ 7D92BE0028ECDEDEC74617009084B5EF ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
23:06:38.0970 1288 vga - ok
23:06:38.0991 1288 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
23:06:38.0992 1288 VgaSave - ok
23:06:39.0006 1288 [ 045D9961E591CF0674A920B6BA3BA5CB ] viaagp C:\Windows\system32\drivers\viaagp.sys
23:06:39.0008 1288 viaagp - ok
23:06:39.0016 1288 [ 56A4DE5F02F2E88182B0981119B4DD98 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
23:06:39.0017 1288 ViaC7 - ok
23:06:39.0026 1288 [ FD2E3175FCADA350C7AB4521DCA187EC ] viaide C:\Windows\system32\drivers\viaide.sys
23:06:39.0027 1288 viaide - ok
23:06:39.0080 1288 [ 5F974FDE801C73952770736BECDE11E7 ] Viewpoint Manager Service C:\Program Files\Viewpoint\Common\ViewpointService.exe
23:06:39.0082 1288 Viewpoint Manager Service - ok
23:06:39.0096 1288 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
23:06:39.0097 1288 volmgr - ok
23:06:39.0133 1288 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
23:06:39.0137 1288 volmgrx - ok
23:06:39.0172 1288 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
23:06:39.0174 1288 volsnap - ok
23:06:39.0195 1288 [ D984439746D42B30FC65A4C3546C6829 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
23:06:39.0198 1288 vsmraid - ok
23:06:39.0243 1288 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
23:06:39.0268 1288 VSS - ok
23:06:39.0286 1288 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
23:06:39.0289 1288 W32Time - ok
23:06:39.0304 1288 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
23:06:39.0305 1288 WacomPen - ok
23:06:39.0340 1288 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
23:06:39.0340 1288 Wanarp - ok
23:06:39.0343 1288 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
23:06:39.0344 1288 Wanarpv6 - ok
23:06:39.0371 1288 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
23:06:39.0378 1288 wcncsvc - ok
23:06:39.0403 1288 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:06:39.0405 1288 WcsPlugInService - ok
23:06:39.0421 1288 [ AFC5AD65B991C1E205CF25CFDBF7A6F4 ] Wd C:\Windows\system32\drivers\wd.sys
23:06:39.0422 1288 Wd - ok
23:06:39.0456 1288 [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
23:06:39.0464 1288 Wdf01000 - ok
23:06:39.0497 1288 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
23:06:39.0500 1288 WdiServiceHost - ok
23:06:39.0504 1288 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
23:06:39.0506 1288 WdiSystemHost - ok
23:06:39.0541 1288 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
23:06:39.0545 1288 WebClient - ok
23:06:39.0576 1288 [ 905214925A88311FCE52F66153DE7610 ] Wecsvc C:\Windows\system32\wecsvc.dll
23:06:39.0580 1288 Wecsvc - ok
23:06:39.0606 1288 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
23:06:39.0609 1288 wercplsupport - ok
23:06:39.0642 1288 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
23:06:39.0646 1288 WerSvc - ok
23:06:39.0649 1288 WinHttpAutoProxySvc - ok
23:06:39.0678 1288 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
23:06:39.0681 1288 Winmgmt - ok
23:06:39.0712 1288 [ 01874D4689C212460FBABF0ECD7CB7F7 ] WinRM C:\Windows\system32\WsmSvc.dll
23:06:39.0729 1288 WinRM - ok
23:06:39.0773 1288 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
23:06:39.0782 1288 Wlansvc - ok
23:06:39.0791 1288 [ 701A9F884A294327E9141D73746EE279 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
23:06:39.0792 1288 WmiAcpi - ok
23:06:39.0826 1288 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
23:06:39.0828 1288 wmiApSrv - ok
23:06:39.0891 1288 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
23:06:39.0907 1288 WMPNetworkSvc - ok
23:06:39.0935 1288 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
23:06:39.0938 1288 WPCSvc - ok
23:06:39.0964 1288 [ 396D406292B0CD26E3504FFE82784702 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
23:06:39.0967 1288 WPDBusEnum - ok
23:06:40.0000 1288 [ 0CEC23084B51B8288099EB710224E955 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
23:06:40.0001 1288 WpdUsb - ok
23:06:40.0076 1288 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
23:06:40.0087 1288 WPFFontCache_v0400 - ok
23:06:40.0119 1288 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
23:06:40.0119 1288 ws2ifsl - ok
23:06:40.0128 1288 WSearch - ok
23:06:40.0155 1288 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
23:06:40.0157 1288 WUDFRd - ok
23:06:40.0170 1288 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
23:06:40.0224 1288 wudfsvc - ok
23:06:40.0237 1288 ================ Scan global ===============================
23:06:40.0267 1288 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
23:06:40.0303 1288 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
23:06:40.0320 1288 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
23:06:40.0349 1288 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
23:06:40.0351 1288 [Global] - ok
23:06:40.0352 1288 ================ Scan MBR ==================================
23:06:40.0366 1288 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
23:06:40.0538 1288 \Device\Harddisk0\DR0 - ok
23:06:40.0538 1288 ================ Scan VBR ==================================
23:06:40.0570 1288 [ B42B93680B8032B9605ABE8DDB7F47E7 ] \Device\Harddisk0\DR0\Partition1
23:06:40.0572 1288 \Device\Harddisk0\DR0\Partition1 - ok
23:06:40.0583 1288 [ 44CA6E93493AC7DA41BC4FA856EEF6C8 ] \Device\Harddisk0\DR0\Partition2
23:06:40.0585 1288 \Device\Harddisk0\DR0\Partition2 - ok
23:06:40.0593 1288 [ 5D1FD74487562C0DB3F88DC2774F0A27 ] \Device\Harddisk0\DR0\Partition3
23:06:40.0595 1288 \Device\Harddisk0\DR0\Partition3 - ok
23:06:40.0614 1288 [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition4
23:06:40.0614 1288 \Device\Harddisk0\DR0\Partition4 - ok
23:06:40.0614 1288 ============================================================
23:06:40.0614 1288 Scan finished
23:06:40.0614 1288 ============================================================
23:06:40.0628 1608 Detected object count: 0
23:06:40.0628 1608 Actual detected object count: 0



Running SuperAntiSpyware Now

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,026 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:27 AM

Posted 28 August 2012 - 01:32 PM

Ok, we will await that..

I ran Malwarebytes and think I may have deleted some important registry keys

The Log above shows NO removal,or anything found for that matter..
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 Dave W7

Dave W7
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:03:27 AM

Posted 28 August 2012 - 05:28 PM

Ok, we will await that..

I ran Malwarebytes and think I may have deleted some important registry keys

The Log above shows NO removal,or anything found for that matter..



That's correct. I believe the other issues (the frequent-but-not-100%-of-the-time hang-ups during windows start-up when not in safe mode) MAY be caused by the anti-virus attempts I've made over the last 6 weeks before it got overwhelmingly bad and I came here for advice. I am now doing this in a systemized fashion and following your steps. I probably ran MBAM 20 times in the last few weeks.


Here is the Super Anti Spyware Log after reboot:


SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 08/28/2012 at 00:07 AM

Application Version : 5.5.1012

Core Rules Database Version : 9133
Trace Rules Database Version: 6945

Scan type : Complete Scan
Total Scan Time : 00:56:20

Operating System Information
Windows Vista Home Premium 32-bit, Service Pack 2 (Build 6.00.6002)
UAC Off - Administrator

Memory items scanned : 382
Memory threats detected : 0
Registry items scanned : 36638
Registry threats detected : 0
File items scanned : 69445
File threats detected : 74

Adware.Tracking Cookie
C:\Users\Dave\AppData\Roaming\Microsoft\Windows\Cookies\Z62OYYS9.txt [ /imrworldwide.com ]
C:\Users\Dave\AppData\Roaming\Microsoft\Windows\Cookies\BVFJWJ80.txt [ /media6degrees.com ]
C:\Users\Dave\AppData\Roaming\Microsoft\Windows\Cookies\PSKT1V30.txt [ /advertising.com ]
C:\Users\Dave\AppData\Roaming\Microsoft\Windows\Cookies\P4VG7EM3.txt [ /doubleclick.net ]
C:\Users\Dave\AppData\Roaming\Microsoft\Windows\Cookies\DRBU3TTG.txt [ /mediaplex.com ]
C:\Users\Dave\AppData\Roaming\Microsoft\Windows\Cookies\1BGFCPDE.txt [ /apmebf.com ]
C:\Users\Dave\AppData\Roaming\Microsoft\Windows\Cookies\C8QU69GE.txt [ /collective-media.net ]
C:\Users\Dave\AppData\Roaming\Microsoft\Windows\Cookies\FK1Q0ULD.txt [ /2o7.net ]
C:\Users\Dave\AppData\Roaming\Microsoft\Windows\Cookies\TY8U7G2T.txt [ /ru4.com ]
C:\Users\Dave\AppData\Roaming\Microsoft\Windows\Cookies\B44E6M7L.txt [ /legolas-media.com ]
C:\Users\Dave\AppData\Roaming\Microsoft\Windows\Cookies\9KCDZ04O.txt [ /invitemedia.com ]
C:\Users\Dave\AppData\Roaming\Microsoft\Windows\Cookies\NE418BA2.txt [ /amazon-adsystem.com ]
C:\USERS\DAVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\FTPK0T1V.txt [ Cookie:dave@casalemedia.com/ ]
C:\USERS\DAVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\R7PVE42T.txt [ Cookie:dave@accounts.google.com/ ]
C:\USERS\DAVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\6SABE9RW.txt [ Cookie:dave@atdmt.com/ ]
C:\USERS\DAVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\5HU43OZD.txt [ Cookie:dave@fastclick.net/ ]
C:\USERS\DAVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\Q08SRIBM.txt [ Cookie:dave@zedo.com/ ]
C:\USERS\DAVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\VLSFTR1R.txt [ Cookie:dave@advertising.com/ ]
C:\USERS\DAVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\EQDPSBWU.txt [ Cookie:dave@pro-market.net/ ]
C:\USERS\DAVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\YN68K5LY.txt [ Cookie:dave@doubleclick.net/ ]
C:\USERS\DAVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\H370N9VW.txt [ Cookie:dave@yieldmanager.net/ ]
C:\USERS\DAVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\U2Y8EFSZ.txt [ Cookie:dave@statcounter.com/ ]
C:\USERS\DAVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\90WYOXU7.txt [ Cookie:dave@ads.pointroll.com/ ]
C:\USERS\DAVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\1O0QY2TF.txt [ Cookie:dave@akamai.interclickproxy.com/ ]
C:\USERS\DAVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\7T434HBJ.txt [ Cookie:dave@questionmarket.com/ ]
C:\USERS\DAVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\LNMTYWUN.txt [ Cookie:dave@tribalfusion.com/ ]
C:\USERS\DAVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\4KH24QEV.txt [ Cookie:dave@2o7.net/ ]
C:\USERS\DAVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\D9VAPZG8.txt [ Cookie:dave@pointroll.com/ ]
C:\USERS\DAVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\7E0RSB0D.txt [ Cookie:dave@r1-ads.ace.advertising.com/ ]
C:\USERS\DAVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\WTVOHR4J.txt [ Cookie:dave@interclick.com/ ]
C:\USERS\DAVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\P8VM7B81.txt [ Cookie:dave@at.atwola.com/ ]
C:\USERS\DAVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\K05QPHLG.txt [ Cookie:dave@statse.webtrendslive.com/ ]
C:\USERS\DAVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\4FN7YBQC.txt [ Cookie:dave@legolas-media.com/ ]
C:\USERS\DAVE\AppData\Roaming\Microsoft\Windows\Cookies\Low\QAK7NBQZ.txt [ Cookie:dave@invitemedia.com/ ]
C:\USERS\DAVE\Cookies\BVFJWJ80.txt [ Cookie:dave@media6degrees.com/ ]
C:\USERS\DAVE\Cookies\PSKT1V30.txt [ Cookie:dave@advertising.com/ ]
C:\USERS\DAVE\Cookies\P4VG7EM3.txt [ Cookie:dave@doubleclick.net/ ]
C:\USERS\DAVE\Cookies\FK1Q0ULD.txt [ Cookie:dave@2o7.net/ ]
C:\USERS\DAVE\Cookies\TY8U7G2T.txt [ Cookie:dave@ru4.com/ ]
C:\USERS\DAVE\Cookies\B44E6M7L.txt [ Cookie:dave@legolas-media.com/ ]
C:\USERS\DAVE\Cookies\9KCDZ04O.txt [ Cookie:dave@invitemedia.com/ ]
C:\USERS\DAVE\Cookies\NE418BA2.txt [ Cookie:dave@amazon-adsystem.com/ ]
macromedia.com [ C:\USERS\DAVE\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\VIRTUALIZED\C\USERS\DAVE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LFVZ7GNJ ]
C:\USERS\DAVE\APPDATA\LOCAL\TEMP\LOW\COOKIES\DAVE@DIVX.ADBUREAU[1].TXT [ /DIVX.ADBUREAU ]
C:\USERS\DAVE\APPDATA\LOCAL\TEMP\LOW\COOKIES\DAVE@DOUBLECLICK[1].TXT [ /DOUBLECLICK ]
core.insightexpressai.com [ C:\USERS\DAVE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LFVZ7GNJ ]
www.adultswim.com [ C:\USERS\DAVE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LFVZ7GNJ ]
www.freshteen.biz [ C:\USERS\DAVE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LFVZ7GNJ ]
www.bleeptube.com [ C:\USERS\DAVE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LFVZ7GNJ ]
www.mofosex.com [ C:\USERS\DAVE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LFVZ7GNJ ]
www.naiadsystems.com [ C:\USERS\DAVE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LFVZ7GNJ ]
www.nakedjuice.com [ C:\USERS\DAVE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LFVZ7GNJ ]
www.pornhub.com [ C:\USERS\DAVE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LFVZ7GNJ ]
www.soundclick.com [ C:\USERS\DAVE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LFVZ7GNJ ]
zdmedia.ziffdavis.com [ C:\USERS\DAVE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LFVZ7GNJ ]
C:\USERS\DAVE\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\DAVE@WWW.PORNHUB[1].TXT [ /WWW.PORNHUB ]
art.aim4media.com [ C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\RQWH6DJB ]
cdn.tremormedia.com [ C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\RQWH6DJB ]
cdn2.baronsmedia.com [ C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\RQWH6DJB ]
core.insightexpressai.com [ C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\RQWH6DJB ]
core.saymedia.com [ C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\RQWH6DJB ]
elitetv.elitedaily.com [ C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\RQWH6DJB ]
media.scanscout.com [ C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\RQWH6DJB ]
media3.onsugar.com [ C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\RQWH6DJB ]
media4.onsugar.com [ C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\RQWH6DJB ]
msnbcmedia.msn.com [ C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\RQWH6DJB ]
objects.tremormedia.com [ C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\RQWH6DJB ]
video-vcdn.fastclick.net [ C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\RQWH6DJB ]
videocdn.pgoamedia.com [ C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\RQWH6DJB ]

Trojan.Agent/Gen-Startpage
C:\PROGRAM FILES\GRIFFIN TECHNOLOGY\RADIOSHARK\UNINSTALL.EXE
C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\GRIFFIN TECHNOLOGY\RADIO SHARK\UNINSTALL RADIO SHARK.LNK

Trojan.Agent/Gen-RogueAS
C:\USERS\DAVE\APPDATA\LOCAL\TEMP\JAR_CACHE3628768026789283922.TMP

Trojan.Agent/Gen-FakeAlert[Local]
C:\USERS\DAVE\APPDATA\LOCAL\TEMP\_UNPS.EXE

Trojan.Agent/Gen-HackTool
E:\TORRENT DOWNLOADS\SWITCH SOUND FILE CONVERTER PLUS V2.03+KEY\KEYGEN.EXE



Here is the new MBAM log after doing the steps above:

Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.28.07

Windows Vista Service Pack 2 x86 NTFS (Safe Mode/Networking)
Internet Explorer 7.0.6002.18005
Dave :: THE-Q [administrator]

8/28/2012 6:17:17 PM
mbam-log-2012-08-28 (18-17-17).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 239965
Time elapsed: 10 minute(s), 4 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#6 Dave W7

Dave W7
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:03:27 AM

Posted 28 August 2012 - 05:37 PM

Upon reboot into normal mode, Avast still finds threats (URL:MAL INFECTION) when I use Google search in Firefox and Internet Explorer.

No such occurrence happens with Google Chrome...


edit - also happens with yahoo search

Edited by Dave W7, 28 August 2012 - 05:50 PM.


#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,026 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:27 AM

Posted 28 August 2012 - 07:36 PM

OK, thanks.. lets do a bit more..

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.


<<<<<

Please download GooredFix from one of the locations below and save it to your Desktop
Download Mirror #1
Download Mirror #2
  • Ensure all Firefox windows are closed.
  • To run the tool, double-click it (XP), or right-click and select Run As Administrator (Vista).
  • When prompted to run the scan, click Yes.
  • GooredFix will check for infections, and then a log will appear. Please post the contents of that log in your next reply (it can also be found on your desktop, called GooredFix.txt).

>>>>>
This may take a few hours....

I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Under scan settings, check Posted Image and check Remove found threats
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


NOTE: In some instances if no malware is found there will be no log produced.


Finally a rootkit check,,,
Please download aswMBR ( 511KB ) to your desktop.
  • Double click the aswMBR.exe icon to run it
  • Click the Scan button to start the scan
  • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 Dave W7

Dave W7
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:03:27 AM

Posted 28 August 2012 - 09:24 PM

OK! I will need to put this on hold as I am leaving for vacation until next Tuesday. I will reply with updates! Thank you!

#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,026 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:27 AM

Posted 28 August 2012 - 10:12 PM

That's fine.. If I lose you PM, Personal Messages,me.
http://www.bleepingcomputer.com/forums/topic33018.html
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 Dave W7

Dave W7
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:03:27 AM

Posted 03 September 2012 - 04:13 PM

Here are the MiniToolBox results...running GooRed next.

MiniToolBox by Farbar Version: 23-07-2012
Ran by Dave (administrator) on 03-09-2012 at 17:10:42
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Network
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


127.0.0.1 localhost

========================= IP Configuration: ================================

Bluetooth PAN Network Adapter = Local Area Connection 3 (Disconnected)
Belkin USB Wireless Adaptor = Wireless Network Connection 3 (Connected)
Atheros L1 Gigabit Ethernet 10/100/1000Base-T Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : The-Q
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 3:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Belkin USB Wireless Adaptor
Physical Address. . . . . . . . . : 00-E0-4C-81-92-10
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::14b5:729c:57c8:ab%25(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.113(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Monday, September 03, 2012 5:06:10 PM
Lease Expires . . . . . . . . . . : Tuesday, September 04, 2012 5:06:10 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 503875131
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-0E-8D-D2-D1-00-1B-FC-F6-23-0F
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros L1 Gigabit Ethernet 10/100/1000Base-T Controller
Physical Address. . . . . . . . . : 00-1B-FC-F6-23-0F
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{DEBFFAFB-3748-4F5D-AA1D-787015DA8433}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 10:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 14:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 15:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 6TO4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 16:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{64E3682F-052B-4547-A52A-B76FF987F58C}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: DD-WRT
Address: 192.168.1.1

Name: google.com
Addresses: 2607:f8b0:4006:802::1001
74.125.226.228
74.125.226.238
74.125.226.227
74.125.226.230
74.125.226.233
74.125.226.225
74.125.226.224
74.125.226.231
74.125.226.232
74.125.226.229
74.125.226.226



Pinging google.com [74.125.226.226] with 32 bytes of data:

Reply from 74.125.226.226: bytes=32 time=15ms TTL=55

Reply from 74.125.226.226: bytes=32 time=15ms TTL=55



Ping statistics for 74.125.226.226:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 15ms, Maximum = 15ms, Average = 15ms

Server: DD-WRT
Address: 192.168.1.1

Name: yahoo.com
Addresses: 98.139.183.24
72.30.38.140
98.138.253.109



Pinging yahoo.com [98.138.253.109] with 32 bytes of data:

Reply from 98.138.253.109: bytes=32 time=50ms TTL=50

Reply from 98.138.253.109: bytes=32 time=70ms TTL=50



Ping statistics for 98.138.253.109:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 50ms, Maximum = 70ms, Average = 60ms

Server: DD-WRT
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
25 ...00 e0 4c 81 92 10 ...... Belkin USB Wireless Adaptor
8 ...00 1b fc f6 23 0f ...... Atheros L1 Gigabit Ethernet 10/100/1000Base-T Controller
1 ........................... Software Loopback Interface 1
26 ...00 00 00 00 00 00 00 e0 isatap.{DEBFFAFB-3748-4F5D-AA1D-787015DA8433}
9 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
12 ...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
13 ...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
20 ...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
19 ...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
21 ...00 00 00 00 00 00 00 e0 6TO4 Adapter
27 ...00 00 00 00 00 00 00 e0 isatap.{64E3682F-052B-4547-A52A-B76FF987F58C}
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.113 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.113 281
192.168.1.113 255.255.255.255 On-link 192.168.1.113 281
192.168.1.255 255.255.255.255 On-link 192.168.1.113 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.113 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.113 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
25 281 fe80::/64 On-link
25 281 fe80::14b5:729c:57c8:ab/128
On-link
1 306 ff00::/8 On-link
25 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Windows\system32\wshbth.dll [34304] (Microsoft Corporation)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
Catalog9 11 mswsock.dll [File Not found] ()
Catalog9 12 mswsock.dll [File Not found] ()
Catalog9 13 mswsock.dll [File Not found] ()
Catalog9 14 mswsock.dll [File Not found] ()
Catalog9 15 mswsock.dll [File Not found] ()
Catalog9 16 mswsock.dll [File Not found] ()
Catalog9 17 mswsock.dll [File Not found] ()
Catalog9 18 mswsock.dll [File Not found] ()
Catalog9 19 mswsock.dll [File Not found] ()
Catalog9 20 mswsock.dll [File Not found] ()
Catalog9 21 mswsock.dll [File Not found] ()
Catalog9 22 mswsock.dll [File Not found] ()
Catalog9 23 mswsock.dll [File Not found] ()
Catalog9 24 mswsock.dll [File Not found] ()
Catalog9 25 mswsock.dll [File Not found] ()
Catalog9 26 mswsock.dll [File Not found] ()
Catalog9 27 mswsock.dll [File Not found] ()
Catalog9 28 mswsock.dll [File Not found] ()
Catalog9 29 mswsock.dll [File Not found] ()
Catalog9 30 mswsock.dll [File Not found] ()
Catalog9 31 mswsock.dll [File Not found] ()
Catalog9 32 mswsock.dll [File Not found] ()
Catalog9 33 mswsock.dll [File Not found] ()
Catalog9 34 mswsock.dll [File Not found] ()
Catalog9 35 mswsock.dll [File Not found] ()
Catalog9 36 mswsock.dll [File Not found] ()
Catalog9 37 mswsock.dll [File Not found] ()
Catalog9 38 mswsock.dll [File Not found] ()
Catalog9 39 mswsock.dll [File Not found] ()
Catalog9 40 mswsock.dll [File Not found] ()
Catalog9 41 mswsock.dll [File Not found] ()
Catalog9 42 mswsock.dll [File Not found] ()
Catalog9 43 mswsock.dll [File Not found] ()
Catalog9 44 mswsock.dll [File Not found] ()
Catalog9 45 mswsock.dll [File Not found] ()
Catalog9 46 mswsock.dll [File Not found] ()
Catalog9 47 mswsock.dll [File Not found] ()
Catalog9 48 mswsock.dll [File Not found] ()
Catalog9 49 mswsock.dll [File Not found] ()
Catalog9 50 mswsock.dll [File Not found] ()
Catalog9 51 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/03/2012 05:07:20 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (08/28/2012 06:36:49 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 7.0.6002.18005, time stamp 0x49e01e78, faulting module unknown, version 0.0.0.0, time stamp 0x00000000, exception code 0xc000001e, fault offset 0x03f90fb0,
process id 0x12f0, application start time 0xiexplore.exe0.

Error: (08/28/2012 06:09:06 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (08/27/2012 10:56:18 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (08/27/2012 05:47:30 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Details:
Could not query the status of the EventSystem service.

System Error:
A system shutdown is in progress.

Error: (08/27/2012 05:42:14 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (08/26/2012 08:18:21 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (08/21/2012 06:23:02 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (08/20/2012 05:48:11 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (08/19/2012 08:42:32 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c


System errors:
=============
Error: (09/03/2012 05:08:04 PM) (Source: DCOM) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}

Error: (09/03/2012 05:07:46 PM) (Source: Service Control Manager) (User: )
Description: AsIO
aswSnx
aswSP
aswTdi
kxrblv
SASDIFSV
SASKUTIL
spldr
Tosrfcom
Wanarpv6

Error: (09/03/2012 05:07:46 PM) (Source: Service Control Manager) (User: )
Description: IPsec Policy AgentBFE

Error: (09/03/2012 05:07:46 PM) (Source: Service Control Manager) (User: )
Description: IKE and AuthIP IPsec Keying ModulesBFE

Error: (09/03/2012 05:07:46 PM) (Source: Service Control Manager) (User: )
Description: Computer BrowserServer%%1068

Error: (09/03/2012 05:07:31 PM) (Source: DCOM) (User: )
Description: 1084MDM{0C0A3666-30C9-11D0-8F20-00805F2CD064}

Error: (09/03/2012 05:07:22 PM) (Source: DCOM) (User: )
Description: 1068fdPHost{145B4335-FE2A-4927-A040-7C35AD3180EF}

Error: (09/03/2012 05:07:20 PM) (Source: DCOM) (User: )
Description: 1084EventSystem{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (09/03/2012 05:07:13 PM) (Source: DCOM) (User: )
Description: 1084ShellHWDetection{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (08/28/2012 10:32:52 PM) (Source: Service Control Manager) (User: )
Description: kxrblv


Microsoft Office Sessions:
=========================
Error: (09/03/2012 05:07:20 PM) (Source: EventSystem)(User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (08/28/2012 06:36:49 PM) (Source: Application Error)(User: )
Description: iexplore.exe7.0.6002.1800549e01e78unknown0.0.0.000000000c000001e03f90fb012f001cd856d93e454bc

Error: (08/28/2012 06:09:06 PM) (Source: EventSystem)(User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (08/27/2012 10:56:18 PM) (Source: EventSystem)(User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (08/27/2012 05:47:30 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: Details:
Could not query the status of the EventSystem service.

System Error:
A system shutdown is in progress.

Error: (08/27/2012 05:42:14 PM) (Source: EventSystem)(User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (08/26/2012 08:18:21 PM) (Source: EventSystem)(User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (08/21/2012 06:23:02 PM) (Source: EventSystem)(User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (08/20/2012 05:48:11 PM) (Source: EventSystem)(User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (08/19/2012 08:42:32 PM) (Source: EventSystem)(User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c


=========================== Installed Programs ============================

32 Bit HP CIO Components Installer (Version: 3.1.1)
3DMark06 (Version: 1.1.0)
AC3Filter (remove only)
Ad-Aware 2007 (Version: 7.0.2.3)
Adobe AIR (Version: 2.6.0.19140)
Adobe Flash Player 10 ActiveX (Version: 10.0.32.18)
Adobe Flash Player 10 Plugin (Version: 10.3.183.11)
Adobe Reader 8.1.3 (Version: 8.1.3)
AGEIA PhysX v7.07.24 (Version: 7.07.24)
AIM 6
AIM Toolbar 5.0 (Version: 5.7.3.2)
Amazon MP3 Downloader 1.0.10
Apple Mobile Device Support (Version: 1.1.4.7)
Apple Software Update (Version: 2.0.2.92)
AquaMark3
Attansic L1 Gigabit Ethernet Driver
Audacity 1.2.6
AutoUpdate (Version: 1.1)
avast! Free Antivirus (Version: 7.0.1466.0)
AVS Audio Converter version 6.2
AVS Update Manager 1.0
AVS4YOU Software Navigator 1.4
Basic Webcam (Version: 1.0.4.3)
Belkin USB Wireless Adaptor (Version: 1.0.0.10)
BitLord 1.1 (Version: 1.1)
BitPim 1.0.3 (Version: 1.0.3)
Bluesoleil 6.4.237.0 (Version: 6.4.237.0)
Bluetooth Stack for Windows by Toshiba (Version: v5.10.08)
BovadaPoker (Version: )
BufferChm (Version: 120.0.194.000)
C6300 (Version: 120.0.235.000)
Call of Duty® - World at War™ (Version: 1.0)
Call of Duty® 4 - Modern Warfare™ (Version: 1.00.0000)
Call of Duty® 4 - Modern Warfare™ (Version: 1.3)
Call of Duty® 4 - Modern Warfare™ 1.2 Patch
Call of Duty® 4 - Modern Warfare™ 1.2 Patch (Version: 1.2)
Call of Duty® 4 - Modern Warfare™ 1.3 Patch
Call of Duty® 4 - Modern Warfare™ 1.3 Patch (Version: 1.3)
CDDRV_Installer (Version: 1.00.0000)
Comcast Universal Installer v1.2 (Version: 30)
ConvertXtoDVD 2.2.3.258 (Version: 2.2.3.258)
ConvertXtoDVD 3.1.0.26 (Version: 3.1.0.26)
Crysis® (Version: 1.00.0000)
Destination Component (Version: 110.0.0.0)
DeviceDiscovery (Version: 120.0.194.000)
DivX Codec (Version: 6.7.0)
DivX Player (Version: 6.6.0)
DivX Web Player (Version: 1.3.1)
Empire Earth III Public Demo (Version: 1.00.0000)
EVEREST Home Edition v2.20 (Version: 2.20)
F4100_doccd (Version: 90.0.200.000)
Facebook Plug-In
Festoon (Version: 1.00.0002)
FileZilla Client 3.2.8.1 (Version: 3.2.8.1)
FreeMind (Version: 0.8.1)
Full Tilt Poker (Version: 4.29.4.WIN.FullTilt.COM)
GameSpy Comrade (Version: 1.5.0.156)
Garmin USB Drivers (Version: 2.3.0.0)
Garmin WebUpdater (Version: 2.5.5)
GMATPrep™ (Version: 2.3.601.409)
Google Chrome (Version: 21.0.1180.83)
Google SketchUp 8 (Version: 3.0.4811)
Google Talk (remove only)
Google Update Helper (Version: 1.3.21.111)
GTK+ 2.10.13 runtime environment
HashCalc 2.01
HP Imaging Device Functions 12.0 (Version: 12.0)
HP Photosmart C6300 All-In-One Driver Software 12.0 Rel .4 (Version: 12.0)
HP Photosmart Essential 3.5 (Version: 3.5)
HP Smart Web Printing (Version: 4.05)
HP Update (Version: 4.000.006.002)
HPPhotoGadget (Version: 120.0.150.000)
HPPhotoSmartDiscLabelContent1 (Version: 2.04.0000)
HPPhotosmartEssential (Version: 2.04.0000)
HPSSupply (Version: 2.2.0.0000)
iTunes (Version: 7.6.1.9)
Java Auto Updater (Version: 2.0.2.1)
Java™ 6 Update 20 (Version: 6.0.200)
Java™ 6 Update 3 (Version: 1.6.0.30)
Java™ 6 Update 5 (Version: 1.6.0.50)
Java™ 6 Update 7 (Version: 1.6.0.70)
KhalInstallWrapper (Version: 4.00.121)
LightScribe 1.4.136.1 (Version: 1.4.136.1)
Logger Lite 1.3.2 (Version: 1.3.2)
Logitech Harmony Remote Software 7 (Version: 7.7.0.0)
Logitech SetPoint (Version: 4.00)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
McAfee Security Scan Plus (Version: 2.0.181.2)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Money Plus (Version: 17)
Microsoft Money Shared Libraries (Version: 17.0.0.724)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3)
Microsoft Office Visual Web Developer 2007 (Version: 12.0.4518.1048)
Microsoft Office Visual Web Developer MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office XP Media Content (Version: 10.0.2619.0)
Microsoft Office XP Professional (Version: 10.0.2627.01)
Microsoft Publisher 2002 (Version: 10.0.2627.01)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Express Edition (SQLEXPRESS) (Version: 9.4.5000.00)
Microsoft SQL Server 2005 Tools Express Edition (Version: 9.4.5000.00)
Microsoft SQL Server Compact 3.5 BETA ENU (Version: 3.5.5365.0)
Microsoft SQL Server Compact 3.5 Design Tools BETA ENU (Version: 3.5.5365.0)
Microsoft SQL Server Native Client (Version: 9.00.5000.00)
Microsoft SQL Server Setup Support Files (English) (Version: 9.00.5000.00)
Microsoft SQL Server VSS Writer (Version: 9.00.5000.00)
Microsoft VC9 runtime libraries (Version: 1.0.0)
Microsoft Visual Basic 2005 Express Edition - ENU
Microsoft Visual Basic 2005 Express Edition - ENU (Version: 8.0.50727.42)
Microsoft Visual C# 2008 Express Edition - ENU
Microsoft Visual C# 2008 Express Edition - ENU (Version: 9.0.20706)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Express Edition - ENU
Microsoft Visual C++ 2008 Express Edition Beta2 - ENU (Version: 9.0.20706)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual Studio Web Authoring Component (Version: 12.0.4518.1048)
Microsoft Visual Web Developer 2008 Express Edition - ENU
Microsoft Visual Web Developer 2008 Express Edition - ENU (Version: 9.0.20706)
Microsoft Windows Vista Client Headers and Libraries (6001.16533.121) (Version: 6.1.121.16533)
Move Networks Media Player for Internet Explorer
Mozilla Firefox 14.0.1 (x86 en-US) (Version: 14.0.1)
Mozilla Maintenance Service (Version: 14.0.1)
Mozilla Sunbird (0.5) (Version: 0.5 (en-US))
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB941833) (Version: 4.20.9849.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
Nero 7 Essentials (Version: 7.02.5017)
Netflix Movie Viewer (Version: 1.2.211)
Network (Version: 120.0.194.000)
NVIDIA Drivers
ooVoo (Version: 1.6.1.7)
OpenOffice.org Installer 1.0 (Version: 1.0.9221)
Pandora (Version: 2.0.2)
PC Probe II (Version: 1.04.19b)
Pinnacle TVCenter Pro
Poker Tracker Version 2.17.04m
PokerEV (Version: 0.80.75)
PokerStars
PokerStars.net
PokerStove version 1.24
PokerTracker 3 (remove only)
PostgreSQL 8.3 (Version: 8.3)
PS_AIO_04_C6300_Software_Min (Version: 120.0.235.000)
PunkBuster Services (Version: 0.986)
Quicken 2007 (Version: 16.1.1.27)
QuickTime (Version: 7.4.1.14)
radioSHARK 2.1 (Version: 2.1 214)
RealPlayer
Realtek High Definition Audio Driver (Version: 6.0.1.5391)
Remote Control USB Driver (Version: 2.3.2.317)
Rhapsody Player Engine (Version: 1.1.0)
Scan (Version: 12.0.0.0)
Screenshot Utility version 1.0
SiSoftware Sandra Lite XIIc (Version: 12.34.2008.1)
Skype™ 3.5 (Version: 3.5.239)
SmartWebPrinting (Version: 120.0.194.000)
Sony Player Plug-in for Windows Media Player
SoundTaxi 3.6.5
SpeedFan (remove only)
Spybot - Search & Destroy (Version: 1.5.1.15)
Status (Version: 120.0.194.000)
SUPERAntiSpyware (Version: 5.5.1012)
Switch Sound File Converter
The GIMP 2.2.17
Toolbox (Version: 120.0.194.000)
TrayApp (Version: 120.0.194.000)
TurboTax 2010
TurboTax 2010 WinPerFedFormset (Version: 010.000.4227)
TurboTax 2010 WinPerReleaseEngine (Version: 010.000.0483)
TurboTax 2010 WinPerTaxSupport (Version: 010.000.0214)
TurboTax 2010 wnjiper (Version: 010.000.1316)
TurboTax 2010 wrapper (Version: 010.000.0157)
TurboTax 2011
TurboTax 2011 WinPerFedFormset (Version: 011.000.2727)
TurboTax 2011 WinPerReleaseEngine (Version: 011.000.0436)
TurboTax 2011 WinPerTaxSupport (Version: 011.000.0210)
TurboTax 2011 wnjiper (Version: 011.000.1503)
TurboTax 2011 wrapper (Version: 011.000.0120)
UnloadSupport (Version: 11.0.0)
Update for 2007 Microsoft Office System (KB2284654)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft Office 2007 System (KB2539530)
VideoLAN VLC media player 0.8.6f (Version: 0.8.6f)
Viewpoint Media Player
WavePad Sound Editor
WebReg (Version: 120.0.194.000)
Winamp (Version: 5.5 )
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0) (Version: 06/03/2009 2.3.0.0)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
Windows SDK .Net Tools for Express (Version: 3.5.20706)
WinRAR archiver
World in Conflict (Version: 1.0.0.0)

========================= Memory info: ===================================

Percentage of memory in use: 22%
Total physical RAM: 2046.38 MB
Available physical RAM: 1577.32 MB
Total Pagefile: 4329.76 MB
Available Pagefile: 4024.21 MB
Total Virtual: 2047.88 MB
Available Virtual: 1962 MB

========================= Partitions: =====================================

2 Drive c: () (Fixed) (Total:97.66 GB) (Free:14.63 GB) NTFS
3 Drive d: () (Fixed) (Total:12.79 GB) (Free:10.4 GB) NTFS
4 Drive e: (Data) (Fixed) (Total:146.48 GB) (Free:84.23 GB) NTFS
6 Drive g: (COD4MW) (CDROM) (Total:6.32 GB) (Free:0 GB) UDF

========================= Users: ========================================

User accounts for \\THE-Q

Administrator ASPNET Dave
Guest postgres


**** End of log ****

#11 Dave W7

Dave W7
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:03:27 AM

Posted 03 September 2012 - 04:16 PM

Here is the GooRed file. Next is the ESET, underway next.

GooredFix by jpshortstuff (03.07.10.1)
Log created at 17:14 on 03/09/2012 (Dave)
Firefox version 14.0.1 (en-US)

========== GooredScan ==========


========== GooredLog ==========

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd} [02:14 28/09/2007]

C:\Users\Dave\Application Data\Mozilla\Firefox\Profiles\jg4ppuov.default\extensions\
moveplayer@movenetworks.com [23:50 16/03/2009]
{1a45a8a0-3278-11dd-bd11-0800200c9a66} [22:36 09/09/2008]
{20a82645-c095-46ed-80e3-08825760534b} [22:13 22/07/2010]
{3CE993BF-A3D9-4fd2-B3B6-768CBBC337F8} [19:13 22/05/2008]
{8e12f188-352c-4476-8198-e9b8f4a4353a} [22:39 07/10/2007]
{e001c731-5e37-4538-a5cb-8168736a2360} [23:20 27/06/2012]
{FDD8ECF0-451A-414D-8C8F-7B7F78B0ECD3} [22:16 19/10/2009]

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{20a82645-c095-46ed-80e3-08825760534b}"="C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\" [04:26 09/08/2009]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [19:59 15/01/2012]
"smartwebprinting@hp.com"="C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2" [18:56 12/02/2012]

-=E.O.F=-

#12 Dave W7

Dave W7
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:03:27 AM

Posted 03 September 2012 - 06:08 PM

Here is the ESET Scan Log

C:\TDSSKiller_Quarantine\27.08.2012_18.28.49\zasubsys0000\file0000\tsk0000.dta Win32/Sirefef.FB.Gen trojan deleted - quarantined
C:\Users\Dave\AppData\Local\Temp\jar_cache971648094892395339.tmp probably a variant of Win32/Agent.IQLWPKS trojan deleted - quarantined
C:\Users\Dave\AppData\Local\Temp\uipbsr.dll a variant of Win32/Medfos.J trojan cleaned by deleting - quarantined
C:\Users\Dave\AppData\Local\Temp\plugtmp-421\plugin-teCpcRW7ayF4Ok3J PDF/Exploit.CVE-2010-0188.AM trojan cleaned by deleting - quarantined
C:\Users\Dave\AppData\Local\{527B3E67-7959-11E1-826D-B8AC6F996F26}\chrome\content\browser.xul JS/Redirector.NIQ trojan cleaned by deleting - quarantined
C:\Users\Dave\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10\1fe3d8a-3df9c1c7 a variant of Java/TrojanDownloader.OpenConnection.DT trojan deleted - quarantined
C:\Users\Dave\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\27\3977af1b-7cd70cd0 Java/TrojanDownloader.Agent.NCA trojan deleted - quarantined
C:\Users\Dave\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\27\da2db5b-5719b3ea Java/TrojanDownloader.Agent.NCM trojan deleted - quarantined
C:\Users\Dave\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39\58ec35a7-1b4114a9 a variant of Java/Exploit.CVE-2010-4452.A trojan cleaned by deleting - quarantined
C:\Users\Dave\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\55\42176fb7-23631151 Java/Agent.AD trojan deleted - quarantined
C:\Users\Dave\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63\58cce93f-31ada1a6 Java/TrojanDownloader.OpenStream.NBW trojan deleted - quarantined

#13 Dave W7

Dave W7
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:03:27 AM

Posted 03 September 2012 - 07:05 PM

Here is the aswMBR log.

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-03 19:09:24
-----------------------------
19:09:24.122 OS Version: Windows 6.0.6002 Service Pack 2
19:09:24.122 Number of processors: 4 586 0xF0B
19:09:24.123 ComputerName: THE-Q UserName: Dave
19:10:00.370 Initialize success
19:10:01.431 AVAST engine defs: 12082803
19:10:05.869 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
19:10:05.871 Disk 0 Vendor: ST3320620NS 3.AEG Size: 305245MB BusType: 3
19:10:05.877 Disk 0 MBR read successfully
19:10:05.879 Disk 0 MBR scan
19:10:06.300 Disk 0 Windows VISTA default MBR code
19:10:06.306 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100000 MB offset 2048
19:10:06.636 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 13101 MB offset 204802048
19:10:06.662 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 150000 MB offset 231632896
19:10:06.682 Disk 0 Partition 4 00 06 FAT16 22000 MB offset 538832896
19:10:06.736 Disk 0 scanning sectors +583888896
19:10:07.045 Disk 0 scanning C:\Windows\system32\drivers
19:10:23.524 Service scanning
19:10:40.944 Modules scanning
19:10:44.112 Disk 0 trace - called modules:
19:10:44.150 ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll ataport.SYS pciide.sys PCIIDEX.SYS atapi.sys
19:10:44.162 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85aa5ac8]
19:10:44.167 3 CLASSPNP.SYS[88dad8b3] -> nt!IofCallDriver -> [0x85882898]
19:10:44.172 5 acpi.sys[8869a6bc] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x8588c820]
19:10:44.652 AVAST engine scan C:\Windows
19:10:46.889 AVAST engine scan C:\Windows\system32
19:12:53.635 AVAST engine scan C:\Windows\system32\drivers
19:13:06.385 AVAST engine scan C:\Users\Dave
19:43:03.027 AVAST engine scan C:\ProgramData
19:49:33.363 Scan finished successfully
20:04:37.912 Disk 0 MBR has been saved successfully to "C:\Users\Dave\Desktop\MBR.dat"
20:04:37.918 The log file has been saved successfully to "C:\Users\Dave\Desktop\aswMBR.txt"

#14 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,026 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:27 AM

Posted 03 September 2012 - 07:08 PM

That looks good, How is it running now?

Go to Start ... Run and type in cmd
A dos Window will appear.
Type in the dos window: netsh winsock reset
Click on the enter key.

Reboot your system to complete the process.
Rerun Mintoolbox with only the •List Winsock Entries checked.



Important Note: Your version of Java is out of date. Older versions have vulnerabilities that malicious sites can use to exploit and infect your system.Please follow these steps to remove older version Java components and update:
  • Download the latest version of Java Runtime Environment (JRE) Version 7 and save it to your desktop.
  • Look for "Java Platform, Standard Edition".
  • Click the "Download JRE" button to the right.
  • Read the License Agreement, and then check the box that says: "Accept License Agreement".
  • From the list, select your OS and Platform (32-bit or 64-bit).
    64-bit OS users, should read: Which Java download should I choose for my 64-bit Windows operating system?
  • If a download for an Offline Installation is available, it is recommended to choose that and save the file to your desktop.
  • Close any programs you may have running - especially your web browser.
Go to Posted Image > Control Panel, double-click on Add/Remove Programs or Programs and Features in Vista/Windows 7 and remove all older versions of Java.
  • Check (highlight) any item with Java Runtime Environment (JRE or J2SE) in the name.
  • Click the Remove or Change/Remove button and follow the onscreen instructions for the Java uninstaller.
  • Repeat as many times as necessary to remove each Java versions.
  • Reboot your computer once all Java components are removed.
  • Then from your desktop double-click on jre-7u7-windows-i586.exe (or jre-7u7-windows-x64.exe for 64-bit) to install the newest version.
  • If using Windows 7 or Vista and the installer refuses to launch due to insufficient user permissions, then Run As Administrator.
  • When the Java Setup - Welcome window opens, click the Install > button.
  • If offered any unwanted software or toolbars during installation, just uncheck the box before continuing unless you want it.
  • The McAfee Security Scan Plus tool is installed by default unless you uncheck the McAfee installation box when updating Java.
Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications but it's not necessary.
To disable the JQS service if you don't want to use it:
  • Go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter.
  • Click Ok and reboot your computer.


Similarly Update to Adobe Reader X (10.1.0)
AND
Flash Player 11.4
Note UN check the box so you do not install the toolbar,unless you really want it..

Free! Google Toolbar search Google from any web page, block pop-ups

Yes, install Google Toolbar - optional

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#15 Dave W7

Dave W7
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:03:27 AM

Posted 03 September 2012 - 07:51 PM

Here is the new MiniToolBox log. I am rebooting now, after having completed the Java, Adobe Reader, and Flash upgrades. Will update when I return. The last couple of reboots notified me of a missing .DLL, I will list that upon return.

MiniToolBox by Farbar Version: 23-07-2012
Ran by Dave (administrator) on 03-09-2012 at 20:50:26
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Windows\system32\wshbth.dll [34304] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 32 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 33 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 34 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 35 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 36 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 37 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 38 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 39 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 40 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 41 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 42 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 43 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 44 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 45 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 46 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 47 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 48 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 49 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 50 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 51 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

**** End of log ****




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users