Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

GRV virus?


  • Please log in to reply
20 replies to this topic

#1 GDent

GDent

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:04:21 PM

Posted 03 September 2012 - 11:52 PM

Hi, my computer's been on the fritz since about early August when I got a virus. I've run Malwarebytes a few times, MS Security Essentials scan, rkill. Tried to run TDSS Killer and couldn't make it work. It seems to have started as one of those viruses that hides all your folders and I managed to shake that one, but it continues to redirect from Google and do other weird stuff.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:21 PM

Posted 04 September 2012 - 12:11 AM

Download

FIXTDSS

Launch it ,It may ask for restart,reboot the PC

On reboot ,click on REPAIR


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here


Download Listparts from here

For 32 bit

List parts 32

Launch it,click on SCAN,post the log

Edited by narenxp, 04 September 2012 - 01:28 AM.


#3 GDent

GDent
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:04:21 PM

Posted 04 September 2012 - 10:44 PM

Thank you. I've tried to run FIXTDSS but it won't launch. Downloaded again and tried with same result tonight. I also tried running aswMBR tonight with no luck.

I was able to download and run List Parts 32. Below is the log.


ListParts by Farbar Version: 10-08-2012
Ran by (administrator) on 04-09-2012 at 21:42:06
Windows XP (X86)
Running From: C:\Documents and Settings\ \My Documents\Downloads
Language: 0409
************************************************************

========================= Memory info ======================

Percentage of memory in use: 69%
Total physical RAM: 1014.37 MB
Available physical RAM: 314.07 MB
Total Pagefile: 2440.79 MB
Available Pagefile: 1630.08 MB
Total Virtual: 2047.88 MB
Available Virtual: 2000.96 MB

======================= Partitions =========================

1 Drive c: () (Fixed) (Total:74.47 GB) (Free:7.01 GB) NTFS ==>[Drive with boot components (Windows XP)]

Disk ### Status Size Free Dyn Gpt
-------- ---------- ------- ------- --- ---
Disk 0 Online 75 GB 0 B

Partitions of Disk 0:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 OEM 47 MB 32 KB
Partition 2 Primary 74 GB 47 MB
Partition 3 Unknown 10 MB 75 GB
======================================================================================================

Disk: 0
Partition 1
Type : DE
Hidden: Yes
Active: No

There is no volume associated with this partition.
======================================================================================================

Disk: 0
Partition 2
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 1 C NTFS Partition 74 GB Healthy Boot
======================================================================================================

Disk: 0
Partition 3
Type : 17 (Suspicious Type)
Hidden: Yes
Active: Yes

There is no volume associated with this partition.
======================================================================================================

****** End Of Log ******

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:21 PM

Posted 04 September 2012 - 11:21 PM

run TDSSkiller.It should detect rootkit.Remove it and post the log

Edited by narenxp, 05 September 2012 - 11:50 PM.


#5 GDent

GDent
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:04:21 PM

Posted 05 September 2012 - 11:41 PM

All that worked very nicely. TDSSKiller found a rootkit and I cured it and rebooted. Now I can't find the log. The Google redirect seems to be gone, for now at least.

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:21 PM

Posted 05 September 2012 - 11:50 PM

It should be in your C drive

C:\TDSSkiller...txt

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

Edited by narenxp, 05 September 2012 - 11:52 PM.


#7 GDent

GDent
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:04:21 PM

Posted 06 September 2012 - 10:32 PM

Here is the aswMBR log.


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-06 20:33:20
-----------------------------
20:33:20.343 OS Version: Windows 5.1.2600 Service Pack 3
20:33:20.343 Number of processors: 2 586 0xF02
20:33:20.343 ComputerName: GREGORIO UserName:
20:33:21.265 Initialize success
20:46:45.531 AVAST engine defs: 12090601
20:50:56.328 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
20:50:56.343 Disk 0 Vendor: SAMSUNG_HM080HI AB100-12 Size: 76319MB BusType: 3
20:50:56.359 Disk 0 MBR read successfully
20:50:56.359 Disk 0 MBR scan
20:50:56.593 Disk 0 Windows XP default MBR code
20:50:56.593 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 47 MB offset 63
20:50:56.875 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 76261 MB offset 96390
20:50:56.921 Disk 0 scanning sectors +156280320
20:50:57.015 Disk 0 scanning C:\WINDOWS\system32\drivers
20:51:27.796 Service scanning
20:51:32.140 Service BVRPMPR5 D:\INSTAL~E\Core\BVRPMPR5.SYS **LOCKED** 21
20:51:45.093 Service MpKsl1a79289c c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{E91B893B-B335-4D41-B159-970DDC0DAF66}\MpKsl1a79289c.sys **LOCKED** 32
20:52:02.796 Modules scanning
20:52:09.640 Disk 0 trace - called modules:
20:52:09.687 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS
20:52:09.687 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8735fab8]
20:52:09.687 3 CLASSPNP.SYS[f767dfd7] -> nt!IofCallDriver -> \Device\00000080[0x87360f18]
20:52:09.687 5 ACPI.sys[f7514620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x872fad98]
20:52:10.890 AVAST engine scan C:\WINDOWS
20:53:04.484 AVAST engine scan C:\WINDOWS\system32
20:53:11.203 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\ \My Documents\MBR.dat"
20:53:11.265 The log file has been saved successfully to "C:\Documents and Settings\ \My Documents\aswMBR.txt"


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-06 20:33:20
-----------------------------
20:33:20.343 OS Version: Windows 5.1.2600 Service Pack 3
20:33:20.343 Number of processors: 2 586 0xF02
20:33:20.343 ComputerName: GREGORIO UserName:
20:33:21.265 Initialize success
20:46:45.531 AVAST engine defs: 12090601
20:50:56.328 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
20:50:56.343 Disk 0 Vendor: SAMSUNG_HM080HI AB100-12 Size: 76319MB BusType: 3
20:50:56.359 Disk 0 MBR read successfully
20:50:56.359 Disk 0 MBR scan
20:50:56.593 Disk 0 Windows XP default MBR code
20:50:56.593 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 47 MB offset 63
20:50:56.875 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 76261 MB offset 96390
20:50:56.921 Disk 0 scanning sectors +156280320
20:50:57.015 Disk 0 scanning C:\WINDOWS\system32\drivers
20:51:27.796 Service scanning
20:51:32.140 Service BVRPMPR5 D:\INSTAL~E\Core\BVRPMPR5.SYS **LOCKED** 21
20:51:45.093 Service MpKsl1a79289c c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{E91B893B-B335-4D41-B159-970DDC0DAF66}\MpKsl1a79289c.sys **LOCKED** 32
20:52:02.796 Modules scanning
20:52:09.640 Disk 0 trace - called modules:
20:52:09.687 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS
20:52:09.687 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8735fab8]
20:52:09.687 3 CLASSPNP.SYS[f767dfd7] -> nt!IofCallDriver -> \Device\00000080[0x87360f18]
20:52:09.687 5 ACPI.sys[f7514620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x872fad98]
20:52:10.890 AVAST engine scan C:\WINDOWS
20:53:04.484 AVAST engine scan C:\WINDOWS\system32
20:53:11.203 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\ \My Documents\MBR.dat"
20:53:11.265 The log file has been saved successfully to "C:\Documents and Settings\ \My Documents\aswMBR.txt"
20:59:34.359 AVAST engine scan C:\WINDOWS\system32\drivers
21:00:04.062 AVAST engine scan C:\Documents and Settings\
21:27:52.281 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\ \My Documents\MBR.dat"
21:27:52.375 The log file has been saved successfully to "C:\Documents and Settings\ \My Documents\aswMBR.txt"

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:21 PM

Posted 06 September 2012 - 10:39 PM

You have posted ASWMBR log twice.

Run TDSSkiller again and let me know if it comes out clean

ESET scanner log is needed.

#9 GDent

GDent
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:04:21 PM

Posted 06 September 2012 - 10:42 PM

OK here's the TDSSKiller log.

22:23:02.0703 2228 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
22:23:03.0375 2228 ============================================================
22:23:03.0375 2228 Current date / time: 2012/09/05 22:23:03.0375
22:23:03.0375 2228 SystemInfo:
22:23:03.0375 2228
22:23:03.0375 2228 OS Version: 5.1.2600 ServicePack: 3.0
22:23:03.0375 2228 Product type: Workstation
22:23:03.0375 2228 ComputerName: GREGORIO
22:23:03.0375 2228 UserName:
22:23:03.0375 2228 Windows directory: C:\WINDOWS
22:23:03.0375 2228 System windows directory: C:\WINDOWS
22:23:03.0375 2228 Processor architecture: Intel x86
22:23:03.0375 2228 Number of processors: 2
22:23:03.0375 2228 Page size: 0x1000
22:23:03.0375 2228 Boot type: Normal boot
22:23:03.0375 2228 ============================================================
22:23:08.0515 2228 Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
22:23:08.0578 2228 ============================================================
22:23:08.0578 2228 \Device\Harddisk0\DR0:
22:23:08.0578 2228 MBR partitions:
22:23:08.0578 2228 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x17886, BlocksNum 0x94F2D7A
22:23:08.0578 2228 ============================================================
22:23:08.0671 2228 C: <-> \Device\Harddisk0\DR0\Partition1
22:23:08.0734 2228 ============================================================
22:23:08.0734 2228 Initialize success
22:23:08.0734 2228 ============================================================
22:23:52.0375 2332 ============================================================
22:23:52.0375 2332 Scan started
22:23:52.0375 2332 Mode: Manual;
22:23:52.0375 2332 ============================================================
22:23:53.0609 2332 ================ Scan system memory ========================
22:23:53.0625 2332 System memory - ok
22:23:53.0625 2332 ================ Scan services =============================
22:23:53.0953 2332 Abiosdsk - ok
22:23:54.0000 2332 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
22:23:54.0015 2332 abp480n5 - ok
22:23:54.0062 2332 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
22:23:54.0078 2332 ACPI - ok
22:23:54.0125 2332 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
22:23:54.0125 2332 ACPIEC - ok
22:23:54.0234 2332 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
22:23:54.0234 2332 AdobeFlashPlayerUpdateSvc - ok
22:23:54.0265 2332 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
22:23:54.0265 2332 adpu160m - ok
22:23:54.0328 2332 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
22:23:54.0328 2332 aec - ok
22:23:54.0406 2332 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
22:23:54.0406 2332 AFD - ok
22:23:54.0468 2332 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
22:23:54.0468 2332 agp440 - ok
22:23:54.0500 2332 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
22:23:54.0500 2332 agpCPQ - ok
22:23:54.0546 2332 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
22:23:54.0546 2332 Aha154x - ok
22:23:54.0593 2332 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
22:23:54.0609 2332 aic78u2 - ok
22:23:54.0656 2332 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
22:23:54.0671 2332 aic78xx - ok
22:23:54.0750 2332 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
22:23:54.0750 2332 Alerter - ok
22:23:54.0781 2332 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
22:23:54.0781 2332 ALG - ok
22:23:54.0828 2332 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
22:23:54.0828 2332 AliIde - ok
22:23:54.0843 2332 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
22:23:54.0843 2332 alim1541 - ok
22:23:54.0875 2332 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
22:23:54.0875 2332 amdagp - ok
22:23:54.0937 2332 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
22:23:54.0937 2332 amsint - ok
22:23:54.0984 2332 [ 090880E9BF20F928BC341F96D27C019E ] ApfiltrService C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
22:23:54.0984 2332 ApfiltrService - ok
22:23:55.0062 2332 [ EC94E05B76D033B74394E7B2175103CF ] APPDRV C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS
22:23:55.0062 2332 APPDRV - ok
22:23:55.0218 2332 [ 3DEBBECF665DCDDE3A95D9B902010817 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:23:55.0218 2332 Apple Mobile Device - ok
22:23:55.0390 2332 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
22:23:55.0406 2332 AppMgmt - ok
22:23:55.0437 2332 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
22:23:55.0453 2332 Arp1394 - ok
22:23:55.0515 2332 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
22:23:55.0515 2332 asc - ok
22:23:55.0593 2332 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
22:23:55.0609 2332 asc3350p - ok
22:23:55.0656 2332 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
22:23:55.0656 2332 asc3550 - ok
22:23:55.0796 2332 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
22:23:55.0890 2332 aspnet_state - ok
22:23:55.0906 2332 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
22:23:55.0906 2332 AsyncMac - ok
22:23:55.0937 2332 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
22:23:55.0937 2332 atapi - ok
22:23:55.0937 2332 Atdisk - ok
22:23:55.0968 2332 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
22:23:55.0968 2332 Atmarpc - ok
22:23:56.0046 2332 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
22:23:56.0046 2332 AudioSrv - ok
22:23:56.0062 2332 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
22:23:56.0062 2332 audstub - ok
22:23:56.0156 2332 [ 2ED050291BC1D7F9E322E328DB3AAECF ] BBSvc C:\Program Files\Microsoft\BingBar\BBSvc.EXE
22:23:56.0171 2332 BBSvc - ok
22:23:56.0281 2332 [ 785DE7ABDA13309D6065305542829E76 ] BBUpdate C:\Program Files\Microsoft\BingBar\SeaPort.EXE
22:23:56.0281 2332 BBUpdate - ok
22:23:56.0375 2332 [ 6489310D11971F6BA6C7F49BE0BAF6E0 ] bcm4sbxp C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys
22:23:56.0375 2332 bcm4sbxp - ok
22:23:56.0406 2332 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
22:23:56.0406 2332 Beep - ok
22:23:56.0500 2332 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
22:23:56.0500 2332 BITS - ok
22:23:56.0609 2332 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
22:23:56.0609 2332 Bonjour Service - ok
22:23:56.0640 2332 [ A06CE3399D16DB864F55FAEB1F1927A9 ] Browser C:\WINDOWS\System32\browser.dll
22:23:56.0656 2332 Browser - ok
22:23:56.0656 2332 BVRPMPR5 - ok
22:23:56.0703 2332 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
22:23:56.0703 2332 cbidf - ok
22:23:56.0734 2332 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
22:23:56.0734 2332 cbidf2k - ok
22:23:56.0812 2332 [ 20F89E232173985A455BC9A5F70D1166 ] CCALib8 C:\Program Files\Canon\CAL\CALMAIN.exe
22:23:56.0812 2332 CCALib8 - ok
22:23:56.0859 2332 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
22:23:56.0859 2332 CCDECODE - ok
22:23:56.0890 2332 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
22:23:56.0890 2332 cd20xrnt - ok
22:23:56.0921 2332 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
22:23:56.0921 2332 Cdaudio - ok
22:23:56.0953 2332 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
22:23:56.0968 2332 Cdfs - ok
22:23:57.0000 2332 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
22:23:57.0015 2332 Cdrom - ok
22:23:57.0015 2332 Changer - ok
22:23:57.0046 2332 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
22:23:57.0046 2332 CiSvc - ok
22:23:57.0062 2332 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
22:23:57.0062 2332 ClipSrv - ok
22:23:57.0156 2332 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:23:57.0312 2332 clr_optimization_v2.0.50727_32 - ok
22:23:57.0406 2332 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:23:57.0421 2332 clr_optimization_v4.0.30319_32 - ok
22:23:57.0468 2332 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
22:23:57.0468 2332 CmBatt - ok
22:23:57.0546 2332 [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
22:23:57.0546 2332 CmdIde - ok
22:23:57.0593 2332 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
22:23:57.0593 2332 Compbatt - ok
22:23:57.0593 2332 COMSysApp - ok
22:23:57.0625 2332 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
22:23:57.0625 2332 Cpqarray - ok
22:23:57.0671 2332 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
22:23:57.0671 2332 CryptSvc - ok
22:23:57.0750 2332 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
22:23:57.0750 2332 dac2w2k - ok
22:23:57.0796 2332 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
22:23:57.0796 2332 dac960nt - ok
22:23:57.0875 2332 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
22:23:57.0875 2332 DcomLaunch - ok
22:23:57.0937 2332 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
22:23:57.0937 2332 Dhcp - ok
22:23:57.0953 2332 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
22:23:57.0953 2332 Disk - ok
22:23:57.0968 2332 dmadmin - ok
22:23:58.0062 2332 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
22:23:58.0078 2332 dmboot - ok
22:23:58.0109 2332 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
22:23:58.0109 2332 dmio - ok
22:23:58.0156 2332 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
22:23:58.0171 2332 dmload - ok
22:23:58.0250 2332 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
22:23:58.0250 2332 dmserver - ok
22:23:58.0296 2332 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
22:23:58.0296 2332 DMusic - ok
22:23:58.0359 2332 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
22:23:58.0359 2332 Dnscache - ok
22:23:58.0453 2332 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
22:23:58.0468 2332 Dot3svc - ok
22:23:58.0515 2332 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
22:23:58.0515 2332 dpti2o - ok
22:23:58.0562 2332 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
22:23:58.0562 2332 drmkaud - ok
22:23:58.0687 2332 [ 2AC2372FFAD9ADC85672CC8E8AE14BE9 ] DSproct C:\Program Files\Dell Support\GTAction\triggers\DSproct.sys
22:23:58.0687 2332 DSproct - ok
22:23:58.0734 2332 [ 3FCA03CBCA11269F973B70FA483C88EF ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
22:23:58.0734 2332 E100B - ok
22:23:58.0796 2332 [ C4E93A2E20C678853C61184D93768742 ] Eacfilt C:\WINDOWS\system32\DRIVERS\eacfilt.sys
22:23:58.0812 2332 Eacfilt - ok
22:23:58.0859 2332 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
22:23:58.0859 2332 EapHost - ok
22:23:58.0890 2332 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
22:23:58.0890 2332 ERSvc - ok
22:23:58.0937 2332 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
22:23:58.0937 2332 Eventlog - ok
22:23:59.0078 2332 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
22:23:59.0125 2332 EventSystem - ok
22:23:59.0171 2332 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
22:23:59.0171 2332 Fastfat - ok
22:23:59.0265 2332 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
22:23:59.0265 2332 FastUserSwitchingCompatibility - ok
22:23:59.0328 2332 [ E97D6A8684466DF94FF3BC24FB787A07 ] Fax C:\WINDOWS\system32\fxssvc.exe
22:23:59.0343 2332 Fax - ok
22:23:59.0375 2332 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
22:23:59.0375 2332 Fdc - ok
22:23:59.0406 2332 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
22:23:59.0406 2332 Fips - ok
22:23:59.0515 2332 [ 869BDE240B7FE9C7B25BD80DF85641C8 ] FlipShare Service C:\Program Files\Flip Video\FlipShare\FlipShareService.exe
22:23:59.0515 2332 FlipShare Service - ok
22:23:59.0640 2332 [ 9C330B7DDEE9492373041E75DA01F80C ] FlipShareServer C:\Program Files\Flip Video\FlipShareServer\FlipShareServer.exe
22:23:59.0656 2332 FlipShareServer - ok
22:23:59.0718 2332 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
22:23:59.0718 2332 Flpydisk - ok
22:23:59.0828 2332 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
22:23:59.0843 2332 FltMgr - ok
22:23:59.0906 2332 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
22:23:59.0906 2332 FontCache3.0.0.0 - ok
22:23:59.0937 2332 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
22:23:59.0937 2332 Fs_Rec - ok
22:23:59.0984 2332 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
22:23:59.0984 2332 Ftdisk - ok
22:24:00.0031 2332 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
22:24:00.0031 2332 GEARAspiWDM - ok
22:24:00.0468 2332 [ 6DFE6B4D2FC37433AEC0F82D2EF0B509 ] GoogleDesktopManager C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
22:24:00.0562 2332 GoogleDesktopManager - ok
22:24:00.0625 2332 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
22:24:00.0625 2332 Gpc - ok
22:24:00.0734 2332 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
22:24:00.0734 2332 gupdate - ok
22:24:00.0750 2332 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
22:24:00.0750 2332 gupdatem - ok
22:24:00.0859 2332 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
22:24:00.0859 2332 gusvc - ok
22:24:00.0906 2332 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
22:24:00.0921 2332 HDAudBus - ok
22:24:01.0109 2332 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
22:24:01.0109 2332 helpsvc - ok
22:24:01.0125 2332 HidServ - ok
22:24:01.0171 2332 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
22:24:01.0171 2332 hkmsvc - ok
22:24:01.0218 2332 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
22:24:01.0218 2332 hpn - ok
22:24:01.0421 2332 [ 5EAACBB733C8C360247239F6874B14B4 ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
22:24:01.0421 2332 hpqcxs08 - ok
22:24:01.0468 2332 [ 8FE93079A7C053DAFE9A0E5753E3D698 ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
22:24:01.0468 2332 hpqddsvc - ok
22:24:01.0640 2332 [ E8EC1767EA315A39A0DD8989952CA0E9 ] HSF_DPV C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys
22:24:01.0718 2332 HSF_DPV - ok
22:24:01.0765 2332 [ 61478FA42EE04562E7F11F4DCA87E9C8 ] HSXHWAZL C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys
22:24:01.0781 2332 HSXHWAZL - ok
22:24:01.0859 2332 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
22:24:01.0859 2332 HTTP - ok
22:24:01.0890 2332 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
22:24:01.0906 2332 HTTPFilter - ok
22:24:01.0921 2332 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
22:24:01.0921 2332 i2omgmt - ok
22:24:01.0984 2332 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
22:24:01.0984 2332 i2omp - ok
22:24:02.0015 2332 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
22:24:02.0015 2332 i8042prt - ok
22:24:02.0187 2332 [ CC449157474D5E43DAEA7E20F52C635A ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
22:24:02.0328 2332 ialm - ok
22:24:02.0421 2332 [ 05C0A75BA2F910F69A643EE4F9767ACF ] ICDSPTSV C:\WINDOWS\system32\IcdSptSv.exe
22:24:02.0421 2332 ICDSPTSV - ok
22:24:02.0562 2332 [ 60B044A221CF76CC6077B0C3E9136CFF ] ICDUSB2 C:\WINDOWS\system32\Drivers\ICDUSB2.sys
22:24:02.0562 2332 ICDUSB2 - ok
22:24:02.0781 2332 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:24:02.0796 2332 idsvc - ok
22:24:02.0828 2332 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
22:24:02.0828 2332 Imapi - ok
22:24:02.0875 2332 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
22:24:02.0906 2332 ImapiService - ok
22:24:02.0937 2332 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
22:24:02.0937 2332 ini910u - ok
22:24:03.0000 2332 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
22:24:03.0000 2332 IntelIde - ok
22:24:03.0078 2332 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
22:24:03.0078 2332 intelppm - ok
22:24:03.0218 2332 [ 3DC635B66DD7412E1C9C3A77B8D78F25 ] IntuitUpdateService C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
22:24:03.0234 2332 IntuitUpdateService - ok
22:24:03.0312 2332 [ 1663A135865F0BA6E853353E98E67F2A ] IntuitUpdateServiceV4 C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
22:24:03.0312 2332 IntuitUpdateServiceV4 - ok
22:24:03.0359 2332 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
22:24:03.0359 2332 Ip6Fw - ok
22:24:03.0453 2332 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
22:24:03.0453 2332 IpFilterDriver - ok
22:24:03.0515 2332 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
22:24:03.0515 2332 IpInIp - ok
22:24:03.0562 2332 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
22:24:03.0593 2332 IpNat - ok
22:24:03.0734 2332 [ 178FE38B7740F598391EB2F51AE4CCAC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
22:24:03.0843 2332 iPod Service - ok
22:24:03.0875 2332 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
22:24:03.0875 2332 IPSec - ok
22:24:03.0984 2332 [ 4904D7E701CAA114BA65D1E08318ADF0 ] IPSECEXT C:\WINDOWS\system32\DRIVERS\ipsecw2k.sys
22:24:04.0000 2332 IPSECEXT - ok
22:24:04.0031 2332 [ 4904D7E701CAA114BA65D1E08318ADF0 ] IPSECSHM C:\WINDOWS\system32\DRIVERS\ipsecw2k.sys
22:24:04.0031 2332 IPSECSHM - ok
22:24:04.0062 2332 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
22:24:04.0062 2332 IRENUM - ok
22:24:04.0125 2332 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
22:24:04.0125 2332 isapnp - ok
22:24:04.0296 2332 [ DE5D05FD449798EF88CC34AD4B1E7F85 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
22:24:04.0343 2332 JavaQuickStarterService - ok
22:24:04.0375 2332 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
22:24:04.0375 2332 Kbdclass - ok
22:24:04.0406 2332 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
22:24:04.0406 2332 kmixer - ok
22:24:04.0484 2332 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
22:24:04.0515 2332 KSecDD - ok
22:24:04.0546 2332 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
22:24:04.0562 2332 lanmanserver - ok
22:24:04.0625 2332 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
22:24:04.0640 2332 lanmanworkstation - ok
22:24:04.0640 2332 lbrtfdc - ok
22:24:04.0671 2332 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
22:24:04.0687 2332 LmHosts - ok
22:24:04.0687 2332 lxdw_device - ok
22:24:04.0734 2332 [ 0DB7527DB188C7D967A37BB51BBF3963 ] MBAMSwissArmy C:\WINDOWS\system32\drivers\mbamswissarmy.sys
22:24:04.0765 2332 MBAMSwissArmy - ok
22:24:04.0859 2332 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
22:24:04.0859 2332 MDM - ok
22:24:04.0921 2332 [ E246A32C445056996074A397DA56E815 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
22:24:04.0921 2332 mdmxsdk - ok
22:24:04.0968 2332 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
22:24:05.0000 2332 Messenger - ok
22:24:05.0031 2332 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
22:24:05.0031 2332 mnmdd - ok
22:24:05.0093 2332 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
22:24:05.0093 2332 mnmsrvc - ok
22:24:05.0156 2332 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
22:24:05.0156 2332 Modem - ok
22:24:05.0281 2332 [ 36AC4DECEAE4226A5B5DD038C49658E1 ] MotoHelper C:\Program Files\Motorola\MotoHelper\MotoHelperService.exe
22:24:05.0281 2332 MotoHelper - ok
22:24:05.0328 2332 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
22:24:05.0328 2332 Mouclass - ok
22:24:05.0390 2332 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
22:24:05.0390 2332 MountMgr - ok
22:24:05.0453 2332 [ 15D5398EED42C2504BB3D4FC875C15D1 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
22:24:05.0468 2332 MozillaMaintenance - ok
22:24:05.0515 2332 [ D993BEA500E7382DC4E760BF4F35EFCB ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys
22:24:05.0515 2332 MpFilter - ok
22:24:05.0625 2332 [ A69630D039C38018689190234F866D77 ] MpKsl6a92ce8b C:\WINDOWS\system32\MpEngineStore\MpKsl6a92ce8b.sys
22:24:05.0625 2332 MpKsl6a92ce8b - ok
22:24:05.0703 2332 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
22:24:05.0703 2332 mraid35x - ok
22:24:05.0765 2332 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
22:24:05.0765 2332 MRxDAV - ok
22:24:05.0859 2332 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
22:24:05.0906 2332 MRxSmb - ok
22:24:05.0937 2332 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
22:24:05.0937 2332 MSDTC - ok
22:24:05.0984 2332 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
22:24:05.0984 2332 Msfs - ok
22:24:05.0984 2332 MSIServer - ok
22:24:06.0015 2332 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
22:24:06.0015 2332 MSKSSRV - ok
22:24:06.0156 2332 [ 24516BF4E12A46CB67302E2CDCB8CDDF ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
22:24:06.0156 2332 MsMpSvc - ok
22:24:06.0187 2332 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
22:24:06.0187 2332 MSPCLOCK - ok
22:24:06.0234 2332 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
22:24:06.0234 2332 MSPQM - ok
22:24:06.0296 2332 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
22:24:06.0296 2332 mssmbios - ok
22:24:06.0390 2332 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
22:24:06.0390 2332 MSTEE - ok
22:24:06.0484 2332 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
22:24:06.0484 2332 Mup - ok
22:24:06.0531 2332 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
22:24:06.0546 2332 NABTSFEC - ok
22:24:06.0609 2332 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
22:24:06.0640 2332 napagent - ok
22:24:06.0687 2332 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
22:24:06.0703 2332 NDIS - ok
22:24:06.0750 2332 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
22:24:06.0750 2332 NdisIP - ok
22:24:06.0796 2332 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
22:24:06.0796 2332 NdisTapi - ok
22:24:06.0812 2332 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
22:24:06.0812 2332 Ndisuio - ok
22:24:06.0828 2332 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
22:24:06.0828 2332 NdisWan - ok
22:24:06.0859 2332 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
22:24:06.0859 2332 NDProxy - ok
22:24:06.0890 2332 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
22:24:06.0890 2332 NetBIOS - ok
22:24:06.0937 2332 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
22:24:06.0937 2332 NetBT - ok
22:24:06.0984 2332 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
22:24:07.0000 2332 NetDDE - ok
22:24:07.0015 2332 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
22:24:07.0015 2332 NetDDEdsdm - ok
22:24:07.0046 2332 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
22:24:07.0046 2332 Netlogon - ok
22:24:07.0078 2332 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
22:24:07.0078 2332 Netman - ok
22:24:07.0156 2332 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:24:07.0156 2332 NetTcpPortSharing - ok
22:24:07.0578 2332 [ 71371ED9086A3D65F43967C89634E9A9 ] NETw3x32 C:\WINDOWS\system32\DRIVERS\NETw3x32.sys
22:24:07.0734 2332 NETw3x32 - ok
22:24:08.0203 2332 [ 91F027C242D3FF6E5C09F92A0518297F ] NETw5x32 C:\WINDOWS\system32\DRIVERS\NETw5x32.sys
22:24:08.0390 2332 NETw5x32 - ok
22:24:08.0437 2332 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
22:24:08.0437 2332 NIC1394 - ok
22:24:08.0468 2332 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
22:24:08.0468 2332 Nla - ok
22:24:08.0484 2332 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
22:24:08.0500 2332 Npfs - ok
22:24:08.0609 2332 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
22:24:08.0609 2332 Ntfs - ok
22:24:08.0625 2332 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
22:24:08.0625 2332 NtLmSsp - ok
22:24:08.0812 2332 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
22:24:08.0812 2332 NtmsSvc - ok
22:24:08.0828 2332 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
22:24:08.0828 2332 Null - ok
22:24:09.0312 2332 [ 2B298519EDBFCF451D43E0F1E8F1006D ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
22:24:09.0437 2332 nv - ok
22:24:09.0500 2332 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
22:24:09.0500 2332 NwlnkFlt - ok
22:24:09.0515 2332 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
22:24:09.0515 2332 NwlnkFwd - ok
22:24:09.0562 2332 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
22:24:09.0562 2332 ohci1394 - ok
22:24:09.0609 2332 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:24:09.0625 2332 ose - ok
22:24:09.0671 2332 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
22:24:09.0671 2332 Parport - ok
22:24:09.0718 2332 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
22:24:09.0718 2332 PartMgr - ok
22:24:09.0765 2332 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
22:24:09.0765 2332 ParVdm - ok
22:24:09.0796 2332 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
22:24:09.0796 2332 PCI - ok
22:24:09.0796 2332 PCIDump - ok
22:24:09.0859 2332 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
22:24:09.0859 2332 PCIIde - ok
22:24:09.0890 2332 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\DRIVERS\pcmcia.sys
22:24:09.0890 2332 Pcmcia - ok
22:24:09.0906 2332 PDCOMP - ok
22:24:09.0906 2332 PDFRAME - ok
22:24:09.0906 2332 PDRELI - ok
22:24:09.0921 2332 PDRFRAME - ok
22:24:09.0953 2332 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
22:24:09.0953 2332 perc2 - ok
22:24:09.0968 2332 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
22:24:09.0968 2332 perc2hib - ok
22:24:10.0015 2332 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
22:24:10.0015 2332 PlugPlay - ok
22:24:10.0046 2332 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
22:24:10.0046 2332 PolicyAgent - ok
22:24:10.0062 2332 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
22:24:10.0062 2332 PptpMiniport - ok
22:24:10.0062 2332 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
22:24:10.0062 2332 ProtectedStorage - ok
22:24:10.0109 2332 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
22:24:10.0109 2332 PSched - ok
22:24:10.0156 2332 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
22:24:10.0156 2332 Ptilink - ok
22:24:10.0171 2332 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
22:24:10.0171 2332 ql1080 - ok
22:24:10.0171 2332 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
22:24:10.0171 2332 Ql10wnt - ok
22:24:10.0218 2332 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
22:24:10.0218 2332 ql12160 - ok
22:24:10.0218 2332 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
22:24:10.0218 2332 ql1240 - ok
22:24:10.0281 2332 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
22:24:10.0281 2332 ql1280 - ok
22:24:10.0375 2332 [ AAA1D93A7A3996EF195DCFA3DED43A09 ] QPCopyEngine C:\Program Files\Iomega\QuikProtect\QpMonitor.exe
22:24:10.0375 2332 QPCopyEngine - ok
22:24:10.0421 2332 [ BBDBD6C03615D7521E0298990C00F30A ] QsFsFltr C:\WINDOWS\system32\DRIVERS\QsFsFltr.sys
22:24:10.0421 2332 QsFsFltr - ok
22:24:10.0437 2332 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
22:24:10.0437 2332 RasAcd - ok
22:24:10.0500 2332 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
22:24:10.0500 2332 RasAuto - ok
22:24:10.0531 2332 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
22:24:10.0546 2332 Rasl2tp - ok
22:24:10.0578 2332 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
22:24:10.0593 2332 RasMan - ok
22:24:10.0625 2332 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
22:24:10.0625 2332 RasPppoe - ok
22:24:10.0671 2332 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
22:24:10.0671 2332 Raspti - ok
22:24:10.0687 2332 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
22:24:10.0687 2332 Rdbss - ok
22:24:10.0718 2332 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
22:24:10.0718 2332 RDPCDD - ok
22:24:10.0781 2332 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
22:24:10.0781 2332 rdpdr - ok
22:24:10.0828 2332 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
22:24:10.0828 2332 RDPWD - ok
22:24:10.0875 2332 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
22:24:10.0875 2332 RDSessMgr - ok
22:24:10.0921 2332 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
22:24:10.0921 2332 redbook - ok
22:24:11.0078 2332 [ C96980CCCF84329824623B0B50383703 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
22:24:11.0078 2332 RegSrvc - ok
22:24:11.0171 2332 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
22:24:11.0171 2332 RemoteAccess - ok
22:24:11.0234 2332 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
22:24:11.0234 2332 RemoteRegistry - ok
22:24:11.0234 2332 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
22:24:11.0234 2332 RpcLocator - ok
22:24:11.0296 2332 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\system32\rpcss.dll
22:24:11.0296 2332 RpcSs - ok
22:24:11.0343 2332 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
22:24:11.0343 2332 RSVP - ok
22:24:11.0453 2332 [ 0FCB7EEB0E81A777735A5AF185F56C2B ] S24EventMonitor C:\Program Files\Intel\WiFi\bin\S24EvMon.exe
22:24:11.0468 2332 S24EventMonitor - ok
22:24:11.0546 2332 [ 96B4494D4734970F47C566E098C4F527 ] s24trans C:\WINDOWS\system32\DRIVERS\s24trans.sys
22:24:11.0546 2332 s24trans - ok
22:24:11.0593 2332 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
22:24:11.0593 2332 SamSs - ok
22:24:11.0625 2332 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
22:24:11.0625 2332 SCardSvr - ok
22:24:11.0671 2332 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
22:24:11.0671 2332 Schedule - ok
22:24:11.0734 2332 [ 8EDD7B9E4A4B4C16E2DAB9188CAA861B ] SDDMI2 C:\WINDOWS\system32\DDMI2.sys
22:24:11.0734 2332 SDDMI2 - ok
22:24:11.0812 2332 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
22:24:11.0812 2332 Secdrv - ok
22:24:11.0859 2332 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
22:24:11.0859 2332 seclogon - ok
22:24:11.0906 2332 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
22:24:11.0906 2332 SENS - ok
22:24:11.0937 2332 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
22:24:11.0937 2332 serenum - ok
22:24:11.0953 2332 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
22:24:11.0953 2332 Serial - ok
22:24:12.0000 2332 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
22:24:12.0000 2332 Sfloppy - ok
22:24:12.0078 2332 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
22:24:12.0078 2332 SharedAccess - ok
22:24:12.0109 2332 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
22:24:12.0109 2332 ShellHWDetection - ok
22:24:12.0109 2332 Simbad - ok
22:24:12.0156 2332 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
22:24:12.0156 2332 sisagp - ok
22:24:12.0250 2332 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
22:24:12.0250 2332 SLIP - ok
22:24:12.0312 2332 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
22:24:12.0312 2332 Sparrow - ok
22:24:12.0343 2332 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
22:24:12.0343 2332 splitter - ok
22:24:12.0406 2332 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
22:24:12.0406 2332 Spooler - ok
22:24:12.0656 2332 sprtlisten - ok
22:24:12.0718 2332 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
22:24:12.0718 2332 sr - ok
22:24:12.0843 2332 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
22:24:12.0906 2332 srservice - ok
22:24:12.0984 2332 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
22:24:13.0015 2332 Srv - ok
22:24:13.0046 2332 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
22:24:13.0046 2332 SSDPSRV - ok
22:24:13.0234 2332 [ 3AD78E22210D3FBD9F76DE84A8DF19B5 ] STHDA C:\WINDOWS\system32\drivers\sthda.sys
22:24:13.0265 2332 STHDA - ok
22:24:13.0312 2332 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
22:24:13.0312 2332 stisvc - ok
22:24:13.0406 2332 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
22:24:13.0406 2332 streamip - ok
22:24:13.0625 2332 [ 9A97B7024E2CA4D42046BF272997E14C ] SupportSoft RemoteAssist C:\Program Files\Common Files\SupportSoft\bin\ssrc.exe
22:24:13.0656 2332 SupportSoft RemoteAssist - ok
22:24:13.0687 2332 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
22:24:13.0687 2332 swenum - ok
22:24:13.0718 2332 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
22:24:13.0718 2332 swmidi - ok
22:24:13.0718 2332 SwPrv - ok
22:24:13.0750 2332 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
22:24:13.0750 2332 symc810 - ok
22:24:13.0781 2332 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
22:24:13.0781 2332 symc8xx - ok
22:24:13.0796 2332 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
22:24:13.0796 2332 sym_hi - ok
22:24:13.0812 2332 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
22:24:13.0812 2332 sym_u3 - ok
22:24:13.0875 2332 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
22:24:13.0875 2332 sysaudio - ok
22:24:13.0937 2332 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
22:24:13.0937 2332 SysmonLog - ok
22:24:14.0000 2332 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
22:24:14.0015 2332 TapiSrv - ok
22:24:14.0093 2332 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
22:24:14.0093 2332 Tcpip - ok
22:24:14.0125 2332 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
22:24:14.0125 2332 TDPIPE - ok
22:24:14.0171 2332 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
22:24:14.0171 2332 TDTCP - ok
22:24:14.0203 2332 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
22:24:14.0203 2332 TermDD - ok
22:24:14.0250 2332 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
22:24:14.0265 2332 TermService - ok
22:24:14.0281 2332 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
22:24:14.0281 2332 Themes - ok
22:24:14.0343 2332 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
22:24:14.0343 2332 TlntSvr - ok
22:24:14.0406 2332 [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
22:24:14.0406 2332 TosIde - ok
22:24:14.0453 2332 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
22:24:14.0453 2332 TrkWks - ok
22:24:14.0500 2332 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
22:24:14.0500 2332 Udfs - ok
22:24:14.0546 2332 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
22:24:14.0546 2332 ultra - ok
22:24:14.0640 2332 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
22:24:14.0671 2332 Update - ok
22:24:14.0718 2332 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
22:24:14.0718 2332 upnphost - ok
22:24:14.0750 2332 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
22:24:14.0765 2332 UPS - ok
22:24:14.0812 2332 [ 83CAFCB53201BBAC04D822F32438E244 ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
22:24:14.0812 2332 USBAAPL - ok
22:24:14.0906 2332 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
22:24:14.0906 2332 usbaudio - ok
22:24:14.0953 2332 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
22:24:14.0953 2332 usbccgp - ok
22:24:14.0984 2332 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
22:24:14.0984 2332 usbehci - ok
22:24:15.0031 2332 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
22:24:15.0031 2332 usbhub - ok
22:24:15.0078 2332 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
22:24:15.0078 2332 usbprint - ok
22:24:15.0156 2332 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
22:24:15.0156 2332 usbscan - ok
22:24:15.0187 2332 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
22:24:15.0187 2332 USBSTOR - ok
22:24:15.0234 2332 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
22:24:15.0234 2332 usbuhci - ok
22:24:15.0281 2332 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
22:24:15.0281 2332 usbvideo - ok
22:24:15.0312 2332 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
22:24:15.0312 2332 VgaSave - ok
22:24:15.0390 2332 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
22:24:15.0390 2332 viaagp - ok
22:24:15.0421 2332 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
22:24:15.0421 2332 ViaIde - ok
22:24:15.0468 2332 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
22:24:15.0468 2332 VolSnap - ok
22:24:15.0546 2332 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
22:24:15.0546 2332 VSS - ok
22:24:15.0609 2332 [ 54AF4B1D5459500EF0937F6D33B1914F ] w32time C:\WINDOWS\system32\w32time.dll
22:24:15.0609 2332 w32time - ok
22:24:15.0640 2332 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
22:24:15.0640 2332 Wanarp - ok
22:24:15.0656 2332 WDICA - ok
22:24:15.0687 2332 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
22:24:15.0687 2332 wdmaud - ok
22:24:15.0750 2332 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
22:24:15.0750 2332 WebClient - ok
22:24:15.0812 2332 [ BA6B6FB242A6BA4068C8B763063BEB63 ] winachsf C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
22:24:15.0843 2332 winachsf - ok
22:24:15.0984 2332 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
22:24:15.0984 2332 winmgmt - ok
22:24:16.0218 2332 [ C9B9942EECA0B82E35D60627E365510A ] WLANKEEPER C:\Program Files\Intel\WiFi\bin\WLKeeper.exe
22:24:16.0218 2332 WLANKEEPER - ok
22:24:16.0312 2332 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
22:24:16.0312 2332 WmdmPmSN - ok
22:24:16.0453 2332 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi C:\WINDOWS\System32\advapi32.dll
22:24:16.0453 2332 Wmi - ok
22:24:16.0468 2332 [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
22:24:16.0468 2332 WmiAcpi - ok
22:24:16.0500 2332 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
22:24:16.0500 2332 WmiApSrv - ok
22:24:16.0734 2332 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
22:24:16.0812 2332 WMPNetworkSvc - ok
22:24:16.0937 2332 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
22:24:16.0953 2332 WPFFontCache_v0400 - ok
22:24:17.0015 2332 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
22:24:17.0015 2332 WS2IFSL - ok
22:24:17.0078 2332 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
22:24:17.0078 2332 wscsvc - ok
22:24:17.0125 2332 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
22:24:17.0125 2332 WSTCODEC - ok
22:24:17.0156 2332 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
22:24:17.0156 2332 wuauserv - ok
22:24:17.0218 2332 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
22:24:17.0218 2332 WudfPf - ok
22:24:17.0234 2332 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
22:24:17.0234 2332 WudfRd - ok
22:24:17.0265 2332 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
22:24:17.0265 2332 WudfSvc - ok
22:24:17.0328 2332 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
22:24:17.0343 2332 WZCSVC - ok
22:24:17.0375 2332 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
22:24:17.0375 2332 xmlprov - ok
22:24:17.0406 2332 ================ Scan global ===============================
22:24:17.0468 2332 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
22:24:17.0531 2332 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
22:24:17.0546 2332 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
22:24:17.0562 2332 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
22:24:17.0562 2332 [Global] - ok
22:24:17.0562 2332 ================ Scan MBR ==================================
22:24:17.0593 2332 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
22:24:17.0593 2332 Suspicious mbr (Forged): \Device\Harddisk0\DR0
22:24:17.0640 2332 \Device\Harddisk0\DR0 ( Rootkit.Boot.SST.b ) - infected
22:24:17.0640 2332 \Device\Harddisk0\DR0 - detected Rootkit.Boot.SST.b (0)
22:24:17.0640 2332 ================ Scan VBR ==================================
22:24:17.0687 2332 [ 5E64D19020EE74B580DCB8580E2A1139 ] \Device\Harddisk0\DR0\Partition1
22:24:17.0734 2332 \Device\Harddisk0\DR0\Partition1 - ok
22:24:17.0734 2332 ============================================================
22:24:17.0734 2332 Scan finished
22:24:17.0734 2332 ============================================================
22:24:17.0734 2932 Detected object count: 1
22:24:17.0734 2932 Actual detected object count: 1
22:24:37.0578 2932 \Device\Harddisk0\DR0\# - copied to quarantine
22:24:37.0625 2932 \Device\Harddisk0\DR0 - copied to quarantine
22:24:37.0796 2932 \Device\Harddisk0\DR0\TDLFS\mbr - copied to quarantine
22:24:37.0812 2932 \Device\Harddisk0\DR0\TDLFS\vbr - copied to quarantine
22:24:37.0968 2932 \Device\Harddisk0\DR0\TDLFS\bid - copied to quarantine
22:24:37.0968 2932 \Device\Harddisk0\DR0\TDLFS\affid - copied to quarantine
22:24:37.0968 2932 \Device\Harddisk0\DR0\TDLFS\boot - copied to quarantine
22:24:38.0187 2932 \Device\Harddisk0\DR0\TDLFS\cmd32 - copied to quarantine
22:24:38.0531 2932 \Device\Harddisk0\DR0\TDLFS\cmd64 - copied to quarantine
22:24:38.0921 2932 \Device\Harddisk0\DR0\TDLFS\dbg32 - copied to quarantine
22:24:38.0937 2932 \Device\Harddisk0\DR0\TDLFS\dbg64 - copied to quarantine
22:24:39.0171 2932 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
22:24:39.0531 2932 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
22:24:39.0593 2932 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
22:24:39.0656 2932 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
22:24:39.0734 2932 \Device\Harddisk0\DR0\TDLFS\subid - copied to quarantine
22:24:39.0750 2932 \Device\Harddisk0\DR0\TDLFS\tdi32 - copied to quarantine
22:24:39.0875 2932 \Device\Harddisk0\DR0\TDLFS\tdi64 - copied to quarantine
22:24:40.0078 2932 \Device\Harddisk0\DR0\TDLFS\info - copied to quarantine
22:24:40.0125 2932 \Device\Harddisk0\DR0\TDLFS\main - copied to quarantine
22:24:40.0218 2932 \Device\Harddisk0\DR0\TDLFS\mainfb.script - copied to quarantine
22:24:40.0796 2932 \Device\Harddisk0\DR0\TDLFS\com32 - copied to quarantine
22:24:41.0265 2932 \Device\Harddisk0\DR0\TDLFS\bbr232 - copied to quarantine
22:24:42.0046 2932 \Device\Harddisk0\DR0\TDLFS\serf332 - copied to quarantine
22:24:42.0421 2932 \Device\Harddisk0\DR0\TDLFS\serf_conf - copied to quarantine
22:24:43.0468 2932 \Device\Harddisk0\DR0\TDLFS\bbr_conf - copied to quarantine
22:24:43.0781 2932 \Device\Harddisk0\DR0 ( Rootkit.Boot.SST.b ) - will be cured on reboot
22:24:43.0812 2932 \Device\Harddisk0\DR0 - ok
22:24:43.0812 2932 \Device\Harddisk0\DR0 ( Rootkit.Boot.SST.b ) - User select action: Cure
22:25:02.0875 1696 Deinitialize success

#10 GDent

GDent
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:04:21 PM

Posted 07 September 2012 - 07:57 AM

ESET log. Will run TDSSkiller again and send log

C:\Documents and Settings\ \Local Settings\Temp\ICReinstall\cnet_Pstory_msi.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
C:\Documents and Settings\ \Local Settings\Temp\ish1124488480\defaultOffer\offer_code.txt Win32/Toolbar.Facemoods application cleaned by deleting - quarantined
C:\Documents and Settings\ \Local Settings\Temp\ish1124488480\defaultOffer\offer_html.txt Win32/Toolbar.Facemoods application cleaned by deleting - quarantined
C:\Documents and Settings\ \Local Settings\Temp\ish1401806143\defaultOffer\offer_code.txt Win32/Toolbar.Facemoods application cleaned by deleting - quarantined
C:\Documents and Settings\ \Local Settings\Temp\ish1401806143\defaultOffer\offer_html.txt Win32/Toolbar.Facemoods application cleaned by deleting - quarantined
C:\Documents and Settings\ \My Documents\Downloads\cnet_Pstory_msi.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.09.2012_22.23.03\mbr0000\tdlfs0000\tsk0006.dta Win64/Olmasco.Y trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.09.2012_22.23.03\mbr0000\tdlfs0000\tsk0007.dta Win32/Olmasco.O trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.09.2012_22.23.03\mbr0000\tdlfs0000\tsk0010.dta Win64/Olmasco.R trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.09.2012_22.23.03\mbr0000\tdlfs0000\tsk0011.dta Win32/Olmasco.Q trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.09.2012_22.23.03\mbr0000\tdlfs0000\tsk0014.dta Win32/Olmasco.AA trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.09.2012_22.23.03\mbr0000\tdlfs0000\tsk0015.dta Win64/Olmasco.Z trojan cleaned by deleting - quarantined

#11 GDent

GDent
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:04:21 PM

Posted 07 September 2012 - 08:05 AM

Here's TDSSkiller again. Ran it just now and it said it found nothing.

07:02:47.0203 1184 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
07:02:47.0890 1184 ============================================================
07:02:47.0890 1184 Current date / time: 2012/09/07 07:02:47.0890
07:02:47.0890 1184 SystemInfo:
07:02:47.0890 1184
07:02:47.0890 1184 OS Version: 5.1.2600 ServicePack: 3.0
07:02:47.0890 1184 Product type: Workstation
07:02:47.0890 1184 ComputerName: GREGORIO
07:02:47.0890 1184 UserName:
07:02:47.0890 1184 Windows directory: C:\WINDOWS
07:02:47.0890 1184 System windows directory: C:\WINDOWS
07:02:47.0890 1184 Processor architecture: Intel x86
07:02:47.0890 1184 Number of processors: 2
07:02:47.0890 1184 Page size: 0x1000
07:02:47.0890 1184 Boot type: Normal boot
07:02:47.0890 1184 ============================================================
07:02:58.0781 1184 Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
07:02:58.0859 1184 ============================================================
07:02:58.0859 1184 \Device\Harddisk0\DR0:
07:02:58.0890 1184 MBR partitions:
07:02:58.0890 1184 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x17886, BlocksNum 0x94F2D7A
07:02:58.0890 1184 ============================================================
07:02:59.0578 1184 C: <-> \Device\Harddisk0\DR0\Partition1
07:02:59.0578 1184 ============================================================
07:02:59.0578 1184 Initialize success
07:02:59.0578 1184 ============================================================
07:03:07.0437 2108 ============================================================
07:03:07.0437 2108 Scan started
07:03:07.0437 2108 Mode: Manual;
07:03:07.0437 2108 ============================================================
07:03:08.0156 2108 ================ Scan system memory ========================
07:03:08.0156 2108 System memory - ok
07:03:08.0156 2108 ================ Scan services =============================
07:03:08.0390 2108 Abiosdsk - ok
07:03:08.0453 2108 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
07:03:08.0515 2108 abp480n5 - ok
07:03:08.0593 2108 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
07:03:08.0703 2108 ACPI - ok
07:03:08.0796 2108 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
07:03:08.0828 2108 ACPIEC - ok
07:03:09.0015 2108 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
07:03:09.0015 2108 AdobeFlashPlayerUpdateSvc - ok
07:03:09.0046 2108 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
07:03:09.0203 2108 adpu160m - ok
07:03:09.0265 2108 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
07:03:09.0343 2108 aec - ok
07:03:09.0500 2108 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
07:03:09.0562 2108 AFD - ok
07:03:09.0781 2108 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
07:03:09.0843 2108 agp440 - ok
07:03:09.0937 2108 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
07:03:10.0046 2108 agpCPQ - ok
07:03:10.0109 2108 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
07:03:10.0125 2108 Aha154x - ok
07:03:10.0218 2108 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
07:03:10.0250 2108 aic78u2 - ok
07:03:10.0375 2108 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
07:03:10.0437 2108 aic78xx - ok
07:03:10.0515 2108 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
07:03:10.0546 2108 Alerter - ok
07:03:10.0593 2108 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
07:03:10.0718 2108 ALG - ok
07:03:10.0781 2108 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
07:03:10.0796 2108 AliIde - ok
07:03:10.0812 2108 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
07:03:10.0875 2108 alim1541 - ok
07:03:10.0906 2108 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
07:03:10.0984 2108 amdagp - ok
07:03:11.0015 2108 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
07:03:11.0062 2108 amsint - ok
07:03:11.0093 2108 [ 090880E9BF20F928BC341F96D27C019E ] ApfiltrService C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
07:03:11.0156 2108 ApfiltrService - ok
07:03:11.0328 2108 [ EC94E05B76D033B74394E7B2175103CF ] APPDRV C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS
07:03:11.0343 2108 APPDRV - ok
07:03:11.0484 2108 [ 3DEBBECF665DCDDE3A95D9B902010817 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
07:03:11.0500 2108 Apple Mobile Device - ok
07:03:11.0609 2108 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
07:03:11.0687 2108 AppMgmt - ok
07:03:11.0734 2108 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
07:03:11.0828 2108 Arp1394 - ok
07:03:11.0937 2108 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
07:03:11.0968 2108 asc - ok
07:03:12.0015 2108 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
07:03:12.0031 2108 asc3350p - ok
07:03:12.0046 2108 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
07:03:12.0062 2108 asc3550 - ok
07:03:12.0281 2108 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
07:03:12.0296 2108 aspnet_state - ok
07:03:12.0312 2108 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
07:03:12.0328 2108 AsyncMac - ok
07:03:12.0375 2108 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
07:03:12.0390 2108 atapi - ok
07:03:12.0390 2108 Atdisk - ok
07:03:12.0437 2108 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
07:03:12.0484 2108 Atmarpc - ok
07:03:12.0546 2108 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
07:03:12.0578 2108 AudioSrv - ok
07:03:12.0703 2108 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
07:03:12.0718 2108 audstub - ok
07:03:12.0859 2108 [ 2ED050291BC1D7F9E322E328DB3AAECF ] BBSvc C:\Program Files\Microsoft\BingBar\BBSvc.EXE
07:03:12.0984 2108 BBSvc - ok
07:03:13.0125 2108 [ 785DE7ABDA13309D6065305542829E76 ] BBUpdate C:\Program Files\Microsoft\BingBar\SeaPort.EXE
07:03:13.0203 2108 BBUpdate - ok
07:03:13.0312 2108 [ 6489310D11971F6BA6C7F49BE0BAF6E0 ] bcm4sbxp C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys
07:03:13.0343 2108 bcm4sbxp - ok
07:03:13.0359 2108 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
07:03:13.0406 2108 Beep - ok
07:03:13.0750 2108 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
07:03:13.0796 2108 BITS - ok
07:03:13.0906 2108 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
07:03:13.0921 2108 Bonjour Service - ok
07:03:13.0968 2108 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
07:03:14.0000 2108 Browser - ok
07:03:14.0015 2108 BVRPMPR5 - ok
07:03:14.0046 2108 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
07:03:14.0062 2108 cbidf - ok
07:03:14.0078 2108 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
07:03:14.0078 2108 cbidf2k - ok
07:03:14.0140 2108 [ 20F89E232173985A455BC9A5F70D1166 ] CCALib8 C:\Program Files\Canon\CAL\CALMAIN.exe
07:03:14.0187 2108 CCALib8 - ok
07:03:14.0250 2108 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
07:03:14.0312 2108 CCDECODE - ok
07:03:14.0343 2108 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
07:03:14.0390 2108 cd20xrnt - ok
07:03:14.0437 2108 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
07:03:14.0500 2108 Cdaudio - ok
07:03:14.0562 2108 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
07:03:14.0593 2108 Cdfs - ok
07:03:14.0625 2108 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
07:03:14.0687 2108 Cdrom - ok
07:03:14.0687 2108 Changer - ok
07:03:14.0781 2108 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
07:03:14.0828 2108 CiSvc - ok
07:03:14.0859 2108 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
07:03:14.0921 2108 ClipSrv - ok
07:03:15.0000 2108 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
07:03:15.0109 2108 clr_optimization_v2.0.50727_32 - ok
07:03:15.0484 2108 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
07:03:15.0484 2108 clr_optimization_v4.0.30319_32 - ok
07:03:15.0515 2108 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
07:03:15.0531 2108 CmBatt - ok
07:03:15.0609 2108 [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
07:03:15.0671 2108 CmdIde - ok
07:03:15.0718 2108 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
07:03:15.0750 2108 Compbatt - ok
07:03:15.0765 2108 COMSysApp - ok
07:03:15.0859 2108 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
07:03:15.0921 2108 Cpqarray - ok
07:03:16.0000 2108 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
07:03:16.0015 2108 CryptSvc - ok
07:03:16.0078 2108 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
07:03:16.0187 2108 dac2w2k - ok
07:03:16.0234 2108 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
07:03:16.0281 2108 dac960nt - ok
07:03:16.0343 2108 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
07:03:16.0343 2108 DcomLaunch - ok
07:03:16.0406 2108 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
07:03:16.0437 2108 Dhcp - ok
07:03:16.0484 2108 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
07:03:16.0500 2108 Disk - ok
07:03:16.0515 2108 dmadmin - ok
07:03:16.0750 2108 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
07:03:16.0859 2108 dmboot - ok
07:03:16.0906 2108 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
07:03:16.0921 2108 dmio - ok
07:03:16.0968 2108 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
07:03:16.0984 2108 dmload - ok
07:03:17.0062 2108 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
07:03:17.0156 2108 dmserver - ok
07:03:17.0187 2108 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
07:03:17.0281 2108 DMusic - ok
07:03:17.0328 2108 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
07:03:17.0328 2108 Dnscache - ok
07:03:17.0390 2108 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
07:03:17.0468 2108 Dot3svc - ok
07:03:17.0515 2108 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
07:03:17.0531 2108 dpti2o - ok
07:03:17.0578 2108 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
07:03:17.0625 2108 drmkaud - ok
07:03:17.0812 2108 [ 2AC2372FFAD9ADC85672CC8E8AE14BE9 ] DSproct C:\Program Files\Dell Support\GTAction\triggers\DSproct.sys
07:03:17.0828 2108 DSproct - ok
07:03:17.0890 2108 [ 3FCA03CBCA11269F973B70FA483C88EF ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
07:03:18.0062 2108 E100B - ok
07:03:18.0140 2108 [ C4E93A2E20C678853C61184D93768742 ] Eacfilt C:\WINDOWS\system32\DRIVERS\eacfilt.sys
07:03:18.0171 2108 Eacfilt - ok
07:03:18.0250 2108 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
07:03:18.0359 2108 EapHost - ok
07:03:18.0390 2108 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
07:03:18.0406 2108 ERSvc - ok
07:03:18.0500 2108 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
07:03:18.0593 2108 Eventlog - ok
07:03:18.0687 2108 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
07:03:18.0781 2108 EventSystem - ok
07:03:18.0875 2108 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
07:03:18.0937 2108 Fastfat - ok
07:03:19.0109 2108 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
07:03:19.0140 2108 FastUserSwitchingCompatibility - ok
07:03:19.0234 2108 [ E97D6A8684466DF94FF3BC24FB787A07 ] Fax C:\WINDOWS\system32\fxssvc.exe
07:03:19.0359 2108 Fax - ok
07:03:19.0453 2108 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
07:03:19.0484 2108 Fdc - ok
07:03:19.0500 2108 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
07:03:19.0531 2108 Fips - ok
07:03:19.0671 2108 [ 869BDE240B7FE9C7B25BD80DF85641C8 ] FlipShare Service C:\Program Files\Flip Video\FlipShare\FlipShareService.exe
07:03:19.0687 2108 FlipShare Service - ok
07:03:19.0812 2108 [ 9C330B7DDEE9492373041E75DA01F80C ] FlipShareServer C:\Program Files\Flip Video\FlipShareServer\FlipShareServer.exe
07:03:20.0750 2108 FlipShareServer - ok
07:03:20.0968 2108 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
07:03:21.0078 2108 Flpydisk - ok
07:03:21.0250 2108 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
07:03:21.0343 2108 FltMgr - ok
07:03:21.0625 2108 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
07:03:21.0640 2108 FontCache3.0.0.0 - ok
07:03:21.0687 2108 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
07:03:21.0718 2108 Fs_Rec - ok
07:03:21.0843 2108 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
07:03:21.0953 2108 Ftdisk - ok
07:03:22.0125 2108 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
07:03:22.0187 2108 GEARAspiWDM - ok
07:03:22.0859 2108 [ 6DFE6B4D2FC37433AEC0F82D2EF0B509 ] GoogleDesktopManager C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
07:03:23.0468 2108 GoogleDesktopManager - ok
07:03:23.0515 2108 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
07:03:23.0578 2108 Gpc - ok
07:03:23.0718 2108 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
07:03:23.0718 2108 gupdate - ok
07:03:23.0734 2108 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
07:03:23.0750 2108 gupdatem - ok
07:03:23.0906 2108 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
07:03:23.0921 2108 gusvc - ok
07:03:23.0968 2108 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
07:03:24.0078 2108 HDAudBus - ok
07:03:24.0265 2108 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
07:03:24.0281 2108 helpsvc - ok
07:03:24.0296 2108 HidServ - ok
07:03:24.0343 2108 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
07:03:24.0390 2108 HidUsb - ok
07:03:24.0453 2108 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
07:03:24.0625 2108 hkmsvc - ok
07:03:24.0671 2108 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
07:03:24.0703 2108 hpn - ok
07:03:25.0218 2108 [ 5EAACBB733C8C360247239F6874B14B4 ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
07:03:25.0531 2108 hpqcxs08 - ok
07:03:25.0625 2108 [ 8FE93079A7C053DAFE9A0E5753E3D698 ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
07:03:25.0781 2108 hpqddsvc - ok
07:03:26.0031 2108 [ E8EC1767EA315A39A0DD8989952CA0E9 ] HSF_DPV C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys
07:03:26.0218 2108 HSF_DPV - ok
07:03:26.0296 2108 [ 61478FA42EE04562E7F11F4DCA87E9C8 ] HSXHWAZL C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys
07:03:26.0359 2108 HSXHWAZL - ok
07:03:26.0421 2108 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
07:03:26.0421 2108 HTTP - ok
07:03:26.0468 2108 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
07:03:26.0500 2108 HTTPFilter - ok
07:03:26.0531 2108 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
07:03:26.0562 2108 i2omgmt - ok
07:03:26.0609 2108 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
07:03:26.0671 2108 i2omp - ok
07:03:26.0703 2108 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
07:03:26.0734 2108 i8042prt - ok
07:03:26.0984 2108 [ CC449157474D5E43DAEA7E20F52C635A ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
07:03:27.0062 2108 ialm - ok
07:03:27.0156 2108 [ 05C0A75BA2F910F69A643EE4F9767ACF ] ICDSPTSV C:\WINDOWS\system32\IcdSptSv.exe
07:03:27.0218 2108 ICDSPTSV - ok
07:03:27.0281 2108 [ 60B044A221CF76CC6077B0C3E9136CFF ] ICDUSB2 C:\WINDOWS\system32\Drivers\ICDUSB2.sys
07:03:27.0312 2108 ICDUSB2 - ok
07:03:27.0546 2108 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
07:03:27.0593 2108 idsvc - ok
07:03:27.0625 2108 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
07:03:27.0671 2108 Imapi - ok
07:03:27.0734 2108 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
07:03:27.0828 2108 ImapiService - ok
07:03:27.0859 2108 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
07:03:27.0875 2108 ini910u - ok
07:03:27.0921 2108 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
07:03:27.0968 2108 IntelIde - ok
07:03:28.0015 2108 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
07:03:28.0046 2108 intelppm - ok
07:03:28.0281 2108 [ 3DC635B66DD7412E1C9C3A77B8D78F25 ] IntuitUpdateService C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
07:03:28.0281 2108 IntuitUpdateService - ok
07:03:28.0328 2108 [ 1663A135865F0BA6E853353E98E67F2A ] IntuitUpdateServiceV4 C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
07:03:28.0328 2108 IntuitUpdateServiceV4 - ok
07:03:28.0375 2108 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
07:03:28.0468 2108 Ip6Fw - ok
07:03:28.0531 2108 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
07:03:28.0562 2108 IpFilterDriver - ok
07:03:28.0609 2108 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
07:03:28.0703 2108 IpInIp - ok
07:03:28.0781 2108 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
07:03:28.0890 2108 IpNat - ok
07:03:29.0156 2108 [ 178FE38B7740F598391EB2F51AE4CCAC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
07:03:29.0218 2108 iPod Service - ok
07:03:29.0250 2108 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
07:03:29.0343 2108 IPSec - ok
07:03:29.0421 2108 [ 4904D7E701CAA114BA65D1E08318ADF0 ] IPSECEXT C:\WINDOWS\system32\DRIVERS\ipsecw2k.sys
07:03:29.0531 2108 IPSECEXT - ok
07:03:29.0546 2108 [ 4904D7E701CAA114BA65D1E08318ADF0 ] IPSECSHM C:\WINDOWS\system32\DRIVERS\ipsecw2k.sys
07:03:29.0546 2108 IPSECSHM - ok
07:03:29.0578 2108 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
07:03:29.0609 2108 IRENUM - ok
07:03:29.0687 2108 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
07:03:29.0750 2108 isapnp - ok
07:03:30.0015 2108 [ DE5D05FD449798EF88CC34AD4B1E7F85 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
07:03:30.0015 2108 JavaQuickStarterService - ok
07:03:30.0093 2108 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
07:03:30.0125 2108 Kbdclass - ok
07:03:30.0171 2108 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
07:03:30.0171 2108 kmixer - ok
07:03:30.0234 2108 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
07:03:30.0343 2108 KSecDD - ok
07:03:30.0468 2108 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
07:03:30.0515 2108 lanmanserver - ok
07:03:30.0718 2108 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
07:03:30.0750 2108 lanmanworkstation - ok
07:03:30.0750 2108 lbrtfdc - ok
07:03:30.0812 2108 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
07:03:30.0828 2108 LmHosts - ok
07:03:30.0828 2108 lxdw_device - ok
07:03:30.0890 2108 [ 0DB7527DB188C7D967A37BB51BBF3963 ] MBAMSwissArmy C:\WINDOWS\system32\drivers\mbamswissarmy.sys
07:03:30.0906 2108 MBAMSwissArmy - ok
07:03:31.0062 2108 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
07:03:31.0078 2108 MDM - ok
07:03:31.0156 2108 [ E246A32C445056996074A397DA56E815 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
07:03:31.0250 2108 mdmxsdk - ok
07:03:31.0312 2108 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
07:03:31.0421 2108 Messenger - ok
07:03:31.0468 2108 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
07:03:31.0484 2108 mnmdd - ok
07:03:31.0562 2108 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
07:03:31.0625 2108 mnmsrvc - ok
07:03:31.0656 2108 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
07:03:31.0703 2108 Modem - ok
07:03:31.0859 2108 [ 36AC4DECEAE4226A5B5DD038C49658E1 ] MotoHelper C:\Program Files\Motorola\MotoHelper\MotoHelperService.exe
07:03:31.0890 2108 MotoHelper - ok
07:03:31.0921 2108 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
07:03:31.0953 2108 Mouclass - ok
07:03:32.0015 2108 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
07:03:32.0062 2108 mouhid - ok
07:03:32.0109 2108 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
07:03:32.0171 2108 MountMgr - ok
07:03:32.0359 2108 [ 15D5398EED42C2504BB3D4FC875C15D1 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
07:03:32.0375 2108 MozillaMaintenance - ok
07:03:32.0500 2108 [ D993BEA500E7382DC4E760BF4F35EFCB ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys
07:03:32.0515 2108 MpFilter - ok
07:03:32.0625 2108 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
07:03:32.0671 2108 mraid35x - ok
07:03:32.0734 2108 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
07:03:32.0750 2108 MRxDAV - ok
07:03:32.0812 2108 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
07:03:32.0828 2108 MRxSmb - ok
07:03:32.0875 2108 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
07:03:32.0890 2108 MSDTC - ok
07:03:32.0937 2108 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
07:03:33.0015 2108 Msfs - ok
07:03:33.0015 2108 MSIServer - ok
07:03:33.0062 2108 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
07:03:33.0109 2108 MSKSSRV - ok
07:03:33.0234 2108 [ 24516BF4E12A46CB67302E2CDCB8CDDF ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
07:03:33.0234 2108 MsMpSvc - ok
07:03:33.0281 2108 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
07:03:33.0296 2108 MSPCLOCK - ok
07:03:33.0312 2108 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
07:03:33.0328 2108 MSPQM - ok
07:03:33.0390 2108 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
07:03:33.0406 2108 mssmbios - ok
07:03:33.0468 2108 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
07:03:33.0531 2108 MSTEE - ok
07:03:33.0593 2108 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
07:03:33.0671 2108 Mup - ok
07:03:33.0703 2108 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
07:03:33.0765 2108 NABTSFEC - ok
07:03:33.0828 2108 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
07:03:33.0875 2108 napagent - ok
07:03:33.0953 2108 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
07:03:34.0031 2108 NDIS - ok
07:03:34.0062 2108 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
07:03:34.0125 2108 NdisIP - ok
07:03:34.0187 2108 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
07:03:34.0218 2108 NdisTapi - ok
07:03:34.0250 2108 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
07:03:34.0265 2108 Ndisuio - ok
07:03:34.0328 2108 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
07:03:34.0406 2108 NdisWan - ok
07:03:34.0515 2108 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
07:03:34.0515 2108 NDProxy - ok
07:03:34.0562 2108 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
07:03:34.0593 2108 NetBIOS - ok
07:03:34.0703 2108 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
07:03:34.0765 2108 NetBT - ok
07:03:34.0812 2108 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
07:03:34.0921 2108 NetDDE - ok
07:03:34.0921 2108 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
07:03:34.0937 2108 NetDDEdsdm - ok
07:03:35.0031 2108 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
07:03:35.0031 2108 Netlogon - ok
07:03:35.0187 2108 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
07:03:35.0218 2108 Netman - ok
07:03:35.0312 2108 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
07:03:35.0343 2108 NetTcpPortSharing - ok
07:03:35.0718 2108 [ 71371ED9086A3D65F43967C89634E9A9 ] NETw3x32 C:\WINDOWS\system32\DRIVERS\NETw3x32.sys
07:03:35.0968 2108 NETw3x32 - ok
07:03:36.0468 2108 [ 91F027C242D3FF6E5C09F92A0518297F ] NETw5x32 C:\WINDOWS\system32\DRIVERS\NETw5x32.sys
07:03:37.0093 2108 NETw5x32 - ok
07:03:37.0156 2108 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
07:03:37.0203 2108 NIC1394 - ok
07:03:37.0265 2108 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
07:03:37.0265 2108 Nla - ok
07:03:37.0296 2108 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
07:03:37.0343 2108 Npfs - ok
07:03:37.0390 2108 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
07:03:37.0421 2108 Ntfs - ok
07:03:37.0484 2108 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
07:03:37.0484 2108 NtLmSsp - ok
07:03:37.0718 2108 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
07:03:37.0843 2108 NtmsSvc - ok
07:03:37.0843 2108 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
07:03:37.0859 2108 Null - ok
07:03:38.0453 2108 [ 2B298519EDBFCF451D43E0F1E8F1006D ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
07:03:38.0640 2108 nv - ok
07:03:38.0796 2108 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
07:03:38.0843 2108 NwlnkFlt - ok
07:03:38.0875 2108 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
07:03:38.0921 2108 NwlnkFwd - ok
07:03:39.0015 2108 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
07:03:39.0046 2108 ohci1394 - ok
07:03:39.0109 2108 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
07:03:39.0125 2108 ose - ok
07:03:39.0171 2108 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
07:03:39.0234 2108 Parport - ok
07:03:39.0265 2108 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
07:03:39.0296 2108 PartMgr - ok
07:03:39.0343 2108 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
07:03:39.0390 2108 ParVdm - ok
07:03:39.0406 2108 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
07:03:39.0484 2108 PCI - ok
07:03:39.0500 2108 PCIDump - ok
07:03:39.0562 2108 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
07:03:39.0578 2108 PCIIde - ok
07:03:39.0625 2108 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\DRIVERS\pcmcia.sys
07:03:39.0687 2108 Pcmcia - ok
07:03:39.0687 2108 PDCOMP - ok
07:03:39.0687 2108 PDFRAME - ok
07:03:39.0703 2108 PDRELI - ok
07:03:39.0703 2108 PDRFRAME - ok
07:03:39.0750 2108 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
07:03:39.0765 2108 perc2 - ok
07:03:39.0781 2108 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
07:03:39.0812 2108 perc2hib - ok
07:03:39.0859 2108 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
07:03:39.0859 2108 PlugPlay - ok
07:03:39.0906 2108 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
07:03:39.0906 2108 PolicyAgent - ok
07:03:39.0968 2108 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
07:03:40.0015 2108 PptpMiniport - ok
07:03:40.0015 2108 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
07:03:40.0015 2108 ProtectedStorage - ok
07:03:40.0062 2108 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
07:03:40.0093 2108 PSched - ok
07:03:40.0171 2108 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
07:03:40.0203 2108 Ptilink - ok
07:03:40.0218 2108 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
07:03:40.0234 2108 ql1080 - ok
07:03:40.0250 2108 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
07:03:40.0281 2108 Ql10wnt - ok
07:03:40.0328 2108 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
07:03:40.0343 2108 ql12160 - ok
07:03:40.0359 2108 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
07:03:40.0421 2108 ql1240 - ok
07:03:40.0453 2108 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
07:03:40.0515 2108 ql1280 - ok
07:03:40.0593 2108 [ AAA1D93A7A3996EF195DCFA3DED43A09 ] QPCopyEngine C:\Program Files\Iomega\QuikProtect\QpMonitor.exe
07:03:40.0703 2108 QPCopyEngine - ok
07:03:40.0812 2108 [ BBDBD6C03615D7521E0298990C00F30A ] QsFsFltr C:\WINDOWS\system32\DRIVERS\QsFsFltr.sys
07:03:40.0906 2108 QsFsFltr - ok
07:03:40.0937 2108 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
07:03:40.0937 2108 RasAcd - ok
07:03:41.0000 2108 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
07:03:41.0046 2108 RasAuto - ok
07:03:41.0109 2108 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
07:03:41.0156 2108 Rasl2tp - ok
07:03:41.0234 2108 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
07:03:41.0265 2108 RasMan - ok
07:03:41.0296 2108 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
07:03:41.0328 2108 RasPppoe - ok
07:03:41.0359 2108 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
07:03:41.0390 2108 Raspti - ok
07:03:41.0406 2108 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
07:03:41.0406 2108 Rdbss - ok
07:03:41.0437 2108 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
07:03:41.0468 2108 RDPCDD - ok
07:03:41.0515 2108 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
07:03:41.0515 2108 rdpdr - ok
07:03:41.0593 2108 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
07:03:41.0593 2108 RDPWD - ok
07:03:41.0671 2108 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
07:03:41.0781 2108 RDSessMgr - ok
07:03:41.0875 2108 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
07:03:41.0937 2108 redbook - ok
07:03:42.0109 2108 [ C96980CCCF84329824623B0B50383703 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
07:03:42.0140 2108 RegSrvc - ok
07:03:42.0234 2108 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
07:03:42.0296 2108 RemoteAccess - ok
07:03:42.0343 2108 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
07:03:42.0375 2108 RemoteRegistry - ok
07:03:42.0390 2108 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
07:03:42.0437 2108 RpcLocator - ok
07:03:42.0484 2108 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\system32\rpcss.dll
07:03:42.0484 2108 RpcSs - ok
07:03:42.0546 2108 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
07:03:42.0593 2108 RSVP - ok
07:03:42.0859 2108 [ 0FCB7EEB0E81A777735A5AF185F56C2B ] S24EventMonitor C:\Program Files\Intel\WiFi\bin\S24EvMon.exe
07:03:43.0296 2108 S24EventMonitor - ok
07:03:43.0359 2108 [ 96B4494D4734970F47C566E098C4F527 ] s24trans C:\WINDOWS\system32\DRIVERS\s24trans.sys
07:03:43.0375 2108 s24trans - ok
07:03:43.0421 2108 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
07:03:43.0421 2108 SamSs - ok
07:03:43.0500 2108 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
07:03:43.0546 2108 SCardSvr - ok
07:03:43.0640 2108 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
07:03:43.0703 2108 Schedule - ok
07:03:43.0750 2108 [ 8EDD7B9E4A4B4C16E2DAB9188CAA861B ] SDDMI2 C:\WINDOWS\system32\DDMI2.sys
07:03:43.0781 2108 SDDMI2 - ok
07:03:43.0859 2108 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
07:03:43.0890 2108 Secdrv - ok
07:03:43.0921 2108 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
07:03:43.0937 2108 seclogon - ok
07:03:43.0984 2108 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
07:03:44.0000 2108 SENS - ok
07:03:44.0015 2108 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
07:03:44.0031 2108 serenum - ok
07:03:44.0125 2108 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
07:03:44.0187 2108 Serial - ok
07:03:44.0234 2108 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
07:03:44.0250 2108 Sfloppy - ok
07:03:44.0484 2108 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
07:03:44.0593 2108 SharedAccess - ok
07:03:44.0687 2108 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
07:03:44.0687 2108 ShellHWDetection - ok
07:03:44.0703 2108 Simbad - ok
07:03:44.0812 2108 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
07:03:44.0843 2108 sisagp - ok
07:03:44.0890 2108 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
07:03:44.0906 2108 SLIP - ok
07:03:45.0062 2108 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
07:03:45.0078 2108 Sparrow - ok
07:03:45.0109 2108 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
07:03:45.0125 2108 splitter - ok
07:03:45.0359 2108 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
07:03:45.0359 2108 Spooler - ok
07:03:45.0500 2108 sprtlisten - ok
07:03:45.0515 2108 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
07:03:45.0562 2108 sr - ok
07:03:45.0687 2108 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
07:03:45.0781 2108 srservice - ok
07:03:45.0921 2108 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
07:03:45.0937 2108 Srv - ok
07:03:46.0140 2108 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
07:03:46.0187 2108 SSDPSRV - ok
07:03:46.0656 2108 [ 3AD78E22210D3FBD9F76DE84A8DF19B5 ] STHDA C:\WINDOWS\system32\drivers\sthda.sys
07:03:47.0000 2108 STHDA - ok
07:03:47.0187 2108 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
07:03:47.0265 2108 stisvc - ok
07:03:47.0453 2108 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
07:03:47.0484 2108 streamip - ok
07:03:47.0640 2108 [ 9A97B7024E2CA4D42046BF272997E14C ] SupportSoft RemoteAssist C:\Program Files\Common Files\SupportSoft\bin\ssrc.exe
07:03:48.0093 2108 SupportSoft RemoteAssist - ok
07:03:48.0156 2108 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
07:03:48.0156 2108 swenum - ok
07:03:48.0203 2108 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
07:03:48.0234 2108 swmidi - ok
07:03:48.0234 2108 SwPrv - ok
07:03:48.0281 2108 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
07:03:48.0296 2108 symc810 - ok
07:03:48.0343 2108 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
07:03:48.0359 2108 symc8xx - ok
07:03:48.0390 2108 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
07:03:48.0406 2108 sym_hi - ok
07:03:48.0453 2108 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
07:03:48.0484 2108 sym_u3 - ok
07:03:48.0578 2108 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
07:03:48.0609 2108 sysaudio - ok
07:03:48.0671 2108 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
07:03:48.0843 2108 SysmonLog - ok
07:03:48.0984 2108 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
07:03:49.0046 2108 TapiSrv - ok
07:03:49.0171 2108 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
07:03:49.0218 2108 Tcpip - ok
07:03:49.0281 2108 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
07:03:49.0296 2108 TDPIPE - ok
07:03:49.0390 2108 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
07:03:49.0421 2108 TDTCP - ok
07:03:49.0453 2108 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
07:03:49.0453 2108 TermDD - ok
07:03:49.0687 2108 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
07:03:49.0734 2108 TermService - ok
07:03:49.0859 2108 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
07:03:49.0875 2108 Themes - ok
07:03:49.0953 2108 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
07:03:50.0031 2108 TlntSvr - ok
07:03:50.0171 2108 [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
07:03:50.0187 2108 TosIde - ok
07:03:50.0250 2108 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
07:03:50.0281 2108 TrkWks - ok
07:03:50.0312 2108 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
07:03:50.0359 2108 Udfs - ok
07:03:50.0406 2108 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
07:03:50.0421 2108 ultra - ok
07:03:50.0656 2108 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
07:03:50.0750 2108 Update - ok
07:03:50.0968 2108 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
07:03:51.0156 2108 upnphost - ok
07:03:51.0265 2108 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
07:03:51.0343 2108 UPS - ok
07:03:51.0390 2108 [ 83CAFCB53201BBAC04D822F32438E244 ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
07:03:51.0421 2108 USBAAPL - ok
07:03:51.0640 2108 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
07:03:51.0687 2108 usbaudio - ok
07:03:51.0734 2108 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
07:03:51.0750 2108 usbccgp - ok
07:03:51.0796 2108 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
07:03:51.0828 2108 usbehci - ok
07:03:51.0875 2108 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
07:03:51.0921 2108 usbhub - ok
07:03:52.0015 2108 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
07:03:52.0046 2108 usbprint - ok
07:03:52.0187 2108 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
07:03:52.0203 2108 usbscan - ok
07:03:52.0250 2108 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
07:03:52.0265 2108 USBSTOR - ok
07:03:52.0328 2108 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
07:03:52.0343 2108 usbuhci - ok
07:03:52.0437 2108 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
07:03:52.0484 2108 usbvideo - ok
07:03:52.0609 2108 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
07:03:52.0625 2108 VgaSave - ok
07:03:52.0671 2108 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
07:03:52.0703 2108 viaagp - ok
07:03:52.0734 2108 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
07:03:52.0750 2108 ViaIde - ok
07:03:52.0781 2108 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
07:03:52.0812 2108 VolSnap - ok
07:03:52.0921 2108 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
07:03:53.0109 2108 VSS - ok
07:03:53.0265 2108 [ 54AF4B1D5459500EF0937F6D33B1914F ] w32time C:\WINDOWS\system32\w32time.dll
07:03:53.0296 2108 w32time - ok
07:03:53.0390 2108 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
07:03:53.0421 2108 Wanarp - ok
07:03:53.0437 2108 WDICA - ok
07:03:53.0468 2108 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
07:03:53.0515 2108 wdmaud - ok
07:03:53.0578 2108 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
07:03:53.0625 2108 WebClient - ok
07:03:53.0875 2108 [ BA6B6FB242A6BA4068C8B763063BEB63 ] winachsf C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
07:03:54.0000 2108 winachsf - ok
07:03:54.0187 2108 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
07:03:54.0234 2108 winmgmt - ok
07:03:54.0656 2108 [ C9B9942EECA0B82E35D60627E365510A ] WLANKEEPER C:\Program Files\Intel\WiFi\bin\WLKeeper.exe
07:03:54.0906 2108 WLANKEEPER - ok
07:03:55.0031 2108 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
07:03:55.0078 2108 WmdmPmSN - ok
07:03:55.0531 2108 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi C:\WINDOWS\System32\advapi32.dll
07:03:55.0546 2108 Wmi - ok
07:03:55.0578 2108 [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
07:03:55.0593 2108 WmiAcpi - ok
07:03:55.0687 2108 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
07:03:55.0875 2108 WmiApSrv - ok
07:03:56.0484 2108 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
07:03:57.0109 2108 WMPNetworkSvc - ok
07:03:57.0296 2108 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
07:03:57.0515 2108 WPFFontCache_v0400 - ok
07:03:57.0609 2108 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
07:03:57.0625 2108 WS2IFSL - ok
07:03:57.0687 2108 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
07:03:57.0718 2108 wscsvc - ok
07:03:57.0750 2108 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
07:03:57.0781 2108 WSTCODEC - ok
07:03:57.0812 2108 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
07:03:57.0906 2108 wuauserv - ok
07:03:57.0984 2108 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
07:03:58.0031 2108 WudfPf - ok
07:03:58.0078 2108 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
07:03:58.0125 2108 WudfRd - ok
07:03:58.0187 2108 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
07:03:58.0265 2108 WudfSvc - ok
07:03:58.0406 2108 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
07:03:58.0468 2108 WZCSVC - ok
07:03:58.0546 2108 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
07:03:58.0656 2108 xmlprov - ok
07:03:58.0687 2108 ================ Scan global ===============================
07:03:58.0703 2108 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
07:03:58.0921 2108 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
07:03:59.0000 2108 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
07:03:59.0046 2108 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
07:03:59.0046 2108 [Global] - ok
07:03:59.0046 2108 ================ Scan MBR ==================================
07:03:59.0156 2108 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
07:04:02.0421 2108 \Device\Harddisk0\DR0 - ok
07:04:02.0421 2108 ================ Scan VBR ==================================
07:04:02.0468 2108 [ 5E64D19020EE74B580DCB8580E2A1139 ] \Device\Harddisk0\DR0\Partition1
07:04:02.0500 2108 \Device\Harddisk0\DR0\Partition1 - ok
07:04:02.0500 2108 ============================================================
07:04:02.0500 2108 Scan finished
07:04:02.0500 2108 ============================================================
07:04:02.0515 0788 Detected object count: 0
07:04:02.0515 0788 Actual detected object count: 0

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:21 PM

Posted 07 September 2012 - 08:09 AM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#13 GDent

GDent
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:04:21 PM

Posted 08 September 2012 - 09:30 AM

Ran Malwarebytes. It found nothing. Logs for that and MiniToolBox are below:


Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.09.08.01

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
:: GREGORIO [administrator]

9/7/2012 9:38:30 PM
mbam-log-2012-09-07 (21-38-30).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 398348
Time elapsed: 2 hour(s), 10 minute(s), 35 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)




MiniToolBox log.

MiniToolBox by Farbar Version: 23-07-2012
Ran by (administrator) on 08-09-2012 at 08:25:02
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

172.24.109.111 hermdp 172.24.109.112 wiredp
127.0.0.1 localhost

========================= IP Configuration: ================================

Intel® PRO/Wireless 3945ABG Network Connection = Wireless Network Connection 3 (Connected)
1394 Net Adapter = 1394 Connection (Connected)
Broadcom 440x 10/100 Integrated Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp

# Interface IP Configuration for "{0D57204D-BF31-45FA-82F0-5FDA420655AB}"

set address name="{0D57204D-BF31-45FA-82F0-5FDA420655AB}" source=static addr=0.0.0.0 mask=0.0.0.0
set dns name="{0D57204D-BF31-45FA-82F0-5FDA420655AB}" source=static addr=none register=PRIMARY
set wins name="{0D57204D-BF31-45FA-82F0-5FDA420655AB}" source=static addr=none

# Interface IP Configuration for "Wireless Network Connection 3"

set address name="Wireless Network Connection 3" source=dhcp
set dns name="Wireless Network Connection 3" source=dhcp register=PRIMARY
set wins name="Wireless Network Connection 3" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : Gregorio

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Broadcast

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No

DNS Suffix Search List. . . . . . : domain.actdsltmp



Ethernet adapter Local Area Connection:



Media State . . . . . . . . . . . : Media disconnected

Description . . . . . . . . . . . : Broadcom 440x 10/100 Integrated Controller

Physical Address. . . . . . . . . : 00-19-B9-71-BE-8E



Ethernet adapter {0D57204D-BF31-45FA-82F0-5FDA420655AB}:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Nortel IPSECSHM Adapter - Packet Scheduler Miniport

Physical Address. . . . . . . . . : 44-45-53-54-42-00

Dhcp Enabled. . . . . . . . . . . : No

IP Address. . . . . . . . . . . . : 0.0.0.0

Subnet Mask . . . . . . . . . . . : 0.0.0.0

Default Gateway . . . . . . . . . :



Ethernet adapter Wireless Network Connection 3:



Connection-specific DNS Suffix . : domain.actdsltmp

Description . . . . . . . . . . . : Intel® PRO/Wireless 3945ABG Network Connection

Physical Address. . . . . . . . . : 00-1B-77-15-9E-75

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 192.168.0.2

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.0.1

DHCP Server . . . . . . . . . . . : 192.168.0.1

DNS Servers . . . . . . . . . . . : 192.168.0.1

205.171.3.25

Lease Obtained. . . . . . . . . . : Saturday, September 08, 2012 8:09:53 AM

Lease Expires . . . . . . . . . . : Saturday, September 15, 2012 8:09:53 AM

Server: qwestmodem.domain.actdsltmp
Address: 192.168.0.1

Name: google.com
Addresses: 74.125.225.70, 74.125.225.71, 74.125.225.72, 74.125.225.73
74.125.225.78, 74.125.225.64, 74.125.225.65, 74.125.225.66, 74.125.225.67
74.125.225.68, 74.125.225.69



Pinging google.com [74.125.225.71] with 32 bytes of data:



Reply from 74.125.225.71: bytes=32 time=64ms TTL=57

Reply from 74.125.225.71: bytes=32 time=64ms TTL=57



Ping statistics for 74.125.225.71:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 64ms, Maximum = 64ms, Average = 64ms

Server: qwestmodem.domain.actdsltmp
Address: 192.168.0.1

Name: yahoo.com
Addresses: 72.30.38.140, 98.138.253.109, 98.139.183.24



Pinging yahoo.com [98.138.253.109] with 32 bytes of data:



Reply from 98.138.253.109: bytes=32 time=140ms TTL=52

Reply from 98.138.253.109: bytes=32 time=93ms TTL=52



Ping statistics for 98.138.253.109:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 93ms, Maximum = 140ms, Average = 116ms

Server: qwestmodem.domain.actdsltmp
Address: 192.168.0.1

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:



Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 19 b9 71 be 8e ...... Broadcom 440x 10/100 Integrated Controller - Packet Scheduler Miniport
0x3 ...44 45 53 54 42 00 ...... Nortel IPSECSHM Adapter - Packet Scheduler Miniport
0x10005 ...00 1b 77 15 9e 75 ...... Intel® PRO/Wireless 3945ABG Network Connection - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.2 25
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
169.254.0.0 255.255.0.0 192.168.0.2 192.168.0.2 20
192.168.0.0 255.255.255.0 192.168.0.2 192.168.0.2 25
192.168.0.2 255.255.255.255 127.0.0.1 127.0.0.1 25
192.168.0.255 255.255.255.255 192.168.0.2 192.168.0.2 25
224.0.0.0 240.0.0.0 192.168.0.2 192.168.0.2 25
255.255.255.255 255.255.255.255 192.168.0.2 3 1
255.255.255.255 255.255.255.255 192.168.0.2 2 1
255.255.255.255 255.255.255.255 192.168.0.2 192.168.0.2 1
Default Gateway: 192.168.0.1
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/22/2012 09:12:11 PM) (Source: Application Hang) (User: )
Description: Hanging application iexplore.exe, version 8.0.6001.18702, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (08/07/2012 10:27:04 PM) (Source: ESENT) (User: )
Description: svchost (456) An attempt to open the file "C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb" for read / write access failed with system error 32 (0x00000020): "The process cannot access the file because it is being used by another process. ". The open file operation will fail with error -1032 (0xfffffbf8).

Error: (08/02/2012 11:39:31 PM) (Source: Microsoft Security Client) (User: )
Description: mssecurityclientsetup.exe4.0.1526.00x8004ff0acommon client setup outcomesetresultdatapoints0security essentialsNILNILNIL

Error: (08/02/2012 11:39:28 PM) (Source: Microsoft Security Client Setup) (User: )
Description: HRESULT:0x8004FF0A
Description:. 0x8004FF0A.

Error: (08/02/2012 10:11:21 PM) (Source: Application Error) (User: )
Description: Faulting application firefox.exe, version 13.0.1.4548, faulting module unknown, version 0.0.0.0, fault address 0x00f32bfd.
Processing media-specific event for [firefox.exe!ws!]

Error: (08/02/2012 10:07:28 PM) (Source: Application Error) (User: )
Description: Faulting application firefox.exe, version 13.0.1.4548, faulting module unknown, version 0.0.0.0, fault address 0x00f32bfd.
Processing media-specific event for [firefox.exe!ws!]

Error: (08/02/2012 09:58:56 PM) (Source: Application Error) (User: )
Description: Faulting application firefox.exe, version 13.0.1.4548, faulting module unknown, version 0.0.0.0, fault address 0x00f32bfd.
Processing media-specific event for [firefox.exe!ws!]

Error: (08/02/2012 09:56:56 PM) (Source: Application Error) (User: )
Description: Fault bucket -1196812026.
The Wep key exchange did not result in a secure connection setup after 802.1x authentication. The current setting has been marked as failed and the Wireless connection will be disconnected.

Error: (08/02/2012 09:55:13 PM) (Source: Application Error) (User: )
Description: Faulting application firefox.exe, version 13.0.1.4548, faulting module unknown, version 0.0.0.0, fault address 0x00f32bfd.
Processing media-specific event for [firefox.exe!ws!]

Error: (08/02/2012 09:47:23 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 23174313


System errors:
=============
Error: (09/08/2012 08:25:34 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{BA126AD1-2166-11D1-B1D0-00805FC1270E}
to the user NT AUTHORITY\NETWORK SERVICE SID (S-1-5-20). This security permission can be modified using the Component Services administrative tool.

Error: (09/07/2012 09:28:05 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID
{A4199E55-EBB9-49E5-AF1A-7A5408B2E206}
to the user NT AUTHORITY\NETWORK SERVICE SID (S-1-5-20). This security permission can be modified using the Component Services administrative tool.

Error: (09/07/2012 09:28:04 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID
{A4199E55-EBB9-49E5-AF1A-7A5408B2E206}
to the user NT AUTHORITY\NETWORK SERVICE SID (S-1-5-20). This security permission can be modified using the Component Services administrative tool.

Error: (09/07/2012 09:28:03 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID
{A4199E55-EBB9-49E5-AF1A-7A5408B2E206}
to the user NT AUTHORITY\NETWORK SERVICE SID (S-1-5-20). This security permission can be modified using the Component Services administrative tool.

Error: (09/07/2012 09:27:22 PM) (Source: Service Control Manager) (User: )
Description: The Intel® PROSet/Wireless SSO Service service depends on the following nonexistent service: EvtEng

Error: (09/07/2012 09:27:22 PM) (Source: Service Control Manager) (User: )
Description: The lxdw_device service failed to start due to the following error:
%%2

Error: (09/07/2012 05:53:24 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID
{A4199E55-EBB9-49E5-AF1A-7A5408B2E206}
to the user NT AUTHORITY\NETWORK SERVICE SID (S-1-5-20). This security permission can be modified using the Component Services administrative tool.

Error: (09/07/2012 05:53:22 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID
{A4199E55-EBB9-49E5-AF1A-7A5408B2E206}
to the user NT AUTHORITY\NETWORK SERVICE SID (S-1-5-20). This security permission can be modified using the Component Services administrative tool.

Error: (09/07/2012 05:53:22 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID
{A4199E55-EBB9-49E5-AF1A-7A5408B2E206}
to the user NT AUTHORITY\NETWORK SERVICE SID (S-1-5-20). This security permission can be modified using the Component Services administrative tool.

Error: (09/07/2012 05:51:50 PM) (Source: Service Control Manager) (User: )
Description: The Intel® PROSet/Wireless SSO Service service depends on the following nonexistent service: EvtEng


Microsoft Office Sessions:
=========================
Error: (08/22/2012 09:12:11 PM) (Source: Application Hang)(User: )
Description: iexplore.exe8.0.6001.18702hungapp0.0.0.000000000

Error: (08/07/2012 10:27:04 PM) (Source: ESENT)(User: )
Description: svchost456C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb-1032 (0xfffffbf8)32 (0x00000020)The process cannot access the file because it is being used by another process.

Error: (08/02/2012 11:39:31 PM) (Source: Microsoft Security Client)(User: )
Description: mssecurityclientsetup.exe4.0.1526.00x8004ff0acommon client setup outcomesetresultdatapoints0security essentialsNILNILNIL

Error: (08/02/2012 11:39:28 PM) (Source: Microsoft Security Client Setup)(User: )
Description: HRESULT:0x8004FF0A
Description:. 0x8004FF0A.

Error: (08/02/2012 10:11:21 PM) (Source: Application Error)(User: )
Description: firefox.exe13.0.1.4548unknown0.0.0.000f32bfd

Error: (08/02/2012 10:07:28 PM) (Source: Application Error)(User: )
Description: firefox.exe13.0.1.4548unknown0.0.0.000f32bfd

Error: (08/02/2012 09:58:56 PM) (Source: Application Error)(User: )
Description: firefox.exe13.0.1.4548unknown0.0.0.000f32bfd

Error: (08/02/2012 09:56:56 PM) (Source: Application Error)(User: )
Description: -1196812026

Error: (08/02/2012 09:55:13 PM) (Source: Application Error)(User: )
Description: firefox.exe13.0.1.4548unknown0.0.0.000f32bfd

Error: (08/02/2012 09:47:23 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 23174313


=========================== Installed Programs ============================

Actiontec Gateway
Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742) (Version: 8.1.2)
Adobe AIR (Version: 1.1.0.5790)
Adobe Flash Player 11 Plugin (Version: 11.3.300.271)
Adobe Flash Player 9 ActiveX (Version: 9.0.124.0)
Adobe Flash Player ActiveX (Version: 9.0.124.0)
Adobe Media Player (Version: 0.0.0)
Adobe Media Player (Version: 1.1)
Adobe Reader 8.1.2 (Version: 8.1.2)
Adobe Reader 8.1.2 Security Update 1 (KB403742)
Adobe Shockwave Player (Version: 10.2.0.23)
ALPS Touch Pad Driver
Apple Application Support (Version: 2.1.6)
Apple Mobile Device Support (Version: 4.0.0.97)
Apple Software Update (Version: 2.1.3.127)
Bing Bar (Version: 7.0.822.0)
Bonjour (Version: 3.0.0.10)
BufferChm (Version: 82.0.173.000)
Canon Camera Access Library (Version: 8.3.0.1)
Canon Camera Support Core Library (Version: 7.3.1.6)
Canon Camera Window DC_DV 5 for ZoomBrowser EX (Version: 5.4.5.17)
Canon Camera Window DC_DV 6 for ZoomBrowser EX (Version: 6.4.0.9)
Canon Camera Window MC 6 for ZoomBrowser EX (Version: 6.3.0.8)
Canon G.726 WMP-Decoder (Version: 1.1.0.4)
Canon MovieEdit Task for ZoomBrowser EX (Version: 2.4.0.14)
Canon RAW Image Task for ZoomBrowser EX (Version: 2.6.0.13)
Canon RemoteCapture Task for ZoomBrowser EX (Version: 1.7.0.8)
Canon Utilities EOS Utility (Version: 1.1.0.8)
Canon Utilities PhotoStitch (Version: 3.1.19.43)
Canon Utilities ZoomBrowser EX (Version: 5.8.0.74)
Choice Guard (Version: 1.2.87.0)
Cinderella's Dollhouse
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Conexant HDA D110 MDC V.92 Modem
Critical Update for Windows Media Player 11 (KB959772)
CustomerResearchQFolder (Version: 1.00.0000)
D2400 (Version: 82.0.201.000)
D2400_Help (Version: 82.0.201.000)
Dell Support 3.2.1 (Version: 5.5.2087)
DeviceManagementQFolder (Version: 1.00.0000)
Digimax Master (Version: 1.0.35)
Digital Line Detect (Version: 1.15)
dj_sf_ProductContext (Version: 82.0.201.000)
dj_sf_software (Version: 82.0.201.000)
dj_sf_software_req (Version: 82.0.201.000)
ESET Online Scanner v3
eSupportQFolder (Version: 1.00.0000)
Facebook Plug-In
FlipShare (Version: 5.10.25.0)
Google Desktop (Version: -)
Google Talk Plugin (Version: 3.5.1.8982)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3203.136)
Google Update Helper (Version: 1.3.21.115)
High Definition Audio Driver Package - KB835221 (Version: 20040219.000000)
HP Customer Participation Program 8.0 (Version: 8.0)
HP Deskjet 8.0 Software (Version: 8.0)
HP Imaging Device Functions 8.0 (Version: 8.0)
HP Photosmart Essential (Version: 1.12.0.46)
HP Solution Center 8.0 (Version: 8.0)
HP Update (Version: 4.000.005.006)
HPProductAssistant (Version: 82.0.173.000)
HPSSupply (Version: 2.1.3.0000)
Intel PROSet Wireless
Intel® Graphics Media Accelerator Driver (Version: 6.14.10.4446)
Intel® PROSet/Wireless WiFi Software (Version: 12.04.4000)
Iomega QuikProtect (Version: 1.0.2.54)
iSEEK AnswerWorks English Runtime (Version: 009.000.0002)
iTunes (Version: 10.5.2.11)
J2SE Runtime Environment 5.0 Update 6 (Version: 1.5.0.60)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 33 (Version: 6.0.330)
Java™ 6 Update 5 (Version: 1.6.0.50)
Java™ 6 Update 7 (Version: 1.6.0.70)
Java™ SE Runtime Environment 6 Update 1 (Version: 1.6.0.10)
Lexmark Printable Web (Version: 1.0.0.0)
LP Recorder
LP Ripper
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
MarketResearch (Version: 82.0.174.000)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Calculator Plus (Version: 1.0.0)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office Communicator 2005 (Version: 1.0.559.0)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft XML Parser (Version: 8.50.2162.6)
Modem Helper (Version: 3.02)
MotoHelper 2.0.24 Driver 4.7.1 (Version: 2.0.24)
MotoHelper MergeModules (Version: 1.0.0)
Motorola Mobile Drivers Installation 4.7.1 (Version: 4.7.1)
Move Media Player
Mozilla Firefox 13.0.1 (x86 en-US) (Version: 13.0.1)
Mozilla Maintenance Service (Version: 13.0.1)
mProSafe (Version: 7.20.0000)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Musicnotes Software Suite 1.5.5 (Version: 1.5.5)
mWlsSafe (Version: 7.20.0000)
Netflix Movie Viewer (Version: 1.2.211)
NetWaiting (Version: 2.5.23)
Nortel Networks Contivity VPN Client
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
OneCare Advisor (Windows Live Toolbar) (Version: 03.01.0159.04)
OverDrive Media Console (Version: 3.2.10)
Owl and Mouse U.S. Map Puzzle
Photo Story 3 for Windows (Version: 3.0.1115.11)
Popup Blocker (Windows Live Toolbar) (Version: 03.01.0130)
PowerDVD 5.7
QuickConnect (Version: 3.5)
QuickSet (Version: 8.1.10)
QuickTime (Version: 7.71.80.42)
Qwest QuickAssist Desktop Tools (Version: 23)
Qwest Quickcare 2.6 (Version: 2.6.0906.0212)
Qwest Windows Live Toolbar Buttons (Version: 2.0.0.0)
Safari (Version: 5.34.51.22)
Samsung USB Driver
Segoe UI (Version: 14.0.4327.805)
SolutionCenter (Version: 82.0.188.000)
Sony Digital Voice Editor 2
Status (Version: 82.0.173.000)
System Requirements Lab for Intel (Version: 4.1.51.0)
Toolbox (Version: 82.0.173.000)
TrayApp (Version: 82.0.188.000)
TurboTax 2009
TurboTax 2009 wcoiper (Version: 009.000.0687)
TurboTax 2009 WinPerFedFormset (Version: 009.000.2163)
TurboTax 2009 WinPerReleaseEngine (Version: 009.000.0328)
TurboTax 2009 WinPerTaxSupport (Version: 009.000.0238)
TurboTax 2009 wrapper (Version: 009.000.0145)
TurboTax 2010
TurboTax 2010 wcoiper (Version: 010.000.1335)
TurboTax 2010 WinPerFedFormset (Version: 010.000.4227)
TurboTax 2010 WinPerReleaseEngine (Version: 010.000.0483)
TurboTax 2010 WinPerTaxSupport (Version: 010.000.0214)
TurboTax 2010 wrapper (Version: 010.000.0157)
TurboTax 2011
TurboTax 2011 wcoiper (Version: 011.000.1608)
TurboTax 2011 WinPerFedFormset (Version: 011.000.2999)
TurboTax 2011 WinPerReleaseEngine (Version: 011.000.0495)
TurboTax 2011 WinPerTaxSupport (Version: 011.000.0214)
TurboTax 2011 wrapper (Version: 011.000.0121)
UnloadSupport (Version: 1.00.0000)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Windows Internet Explorer 8 (KB971180) (Version: 1)
Update for Windows Internet Explorer 8 (KB976662) (Version: 1)
Update for Windows Internet Explorer 8 (KB976749) (Version: 1)
Update for Windows Internet Explorer 8 (KB980182) (Version: 1)
Update for Windows XP (KB2141007) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2607712) (Version: 1)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB951072-v2) (Version: 2)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB955839) (Version: 1)
Update for Windows XP (KB961503) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
Vonage Easy Setup Guide
Wave Corrector DeClick version 1.1
WebFldrs XP (Version: 9.50.7523)
WebReg (Version: 82.0.173.000)
Windows Genuine Advantage Notifications (KB905474) (Version: 1.8.0031.9)
Windows Imaging Component (Version: 3.0.0.0)
Windows Installer 3.1 (KB893803)
Windows Internet Explorer 7 (Version: 20061107.210142)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Live Call (Version: 14.0.8064.0206)
Windows Live Communications Platform (Version: 14.0.8064.206)
Windows Live Essentials (Version: 14.0.8064.0206)
Windows Live Essentials (Version: 14.0.8064.206)
Windows Live Favorites for Windows Live Toolbar (Version: 03.01.0130)
Windows Live Messenger (Version: 14.0.8064.0206)
Windows Live Outlook Toolbar (Windows Live Toolbar) (Version: 03.01.0130)
Windows Live Photo Gallery (Version: 14.0.8064.206)
Windows Live Sign-in Assistant (Version: 5.000.818.6)
Windows Live Sync (Version: 14.0.8064.206)
Windows Live Toolbar (Version: 14.0.8064.206)
Windows Live Toolbar Extension (Windows Live Toolbar) (Version: 03.01.0130)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Media Format 11 runtime
Windows PowerShell™ 1.0 (Version: 2)
Windows XP Service Pack 3 (Version: 20080414.031525)
WLTB Custom Buttons (Version: 1.0.0)

========================= Memory info: ===================================

Percentage of memory in use: 54%
Total physical RAM: 1014.37 MB
Available physical RAM: 461.75 MB
Total Pagefile: 2440.79 MB
Available Pagefile: 1820.02 MB
Total Virtual: 2047.88 MB
Available Virtual: 1970.28 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:74.47 GB) (Free:6.22 GB) NTFS

========================= Users: ========================================

User accounts for \\GREGORIO




**** End of log ****

Edited by GDent, 08 September 2012 - 09:45 AM.


#14 GDent

GDent
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:04:21 PM

Posted 08 September 2012 - 09:44 AM

FSS log

Farbar Service Scanner Version: 06-08-2012
Ran by (administrator) on 08-09-2012 at 08:44:37
Running from "C:\Documents and Settings\ \My Documents\Downloads"
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
Eacfilt(13) Gpc(6) IPSec(4) IPSECEXT(11) IPSECSHM(12) NetBT(5) PSched(7) Tcpip(3)
0x0E0000000E0000000A0000000400000001000000020000000300000005000000060000000700000008000000090000000B0000000C0000000D000000


**** End of log ****

Edited by GDent, 08 September 2012 - 09:45 AM.


#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:21 PM

Posted 08 September 2012 - 09:56 AM

After posting adware cleaner log


download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users