Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Received and Opened Infected email


  • Please log in to reply
9 replies to this topic

#1 woolybugger

woolybugger

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:09:20 AM

Posted 04 September 2012 - 02:19 PM

Hello,
I was delighted to receive an email this morning from my dear niece, which had a link (www.wagnershredder.at/blankbath/markmoreSL/). I clicked on it without thinking twice, and it was a bad site. Well, not really sure what the site was, because I hit control-alt-delete too quick to know. When I pulled mozilla back up it still had the same site on, which I saw long enough to see a message saying I've been infected and need to try some sort of product to remove it, but I got out just as quickly. I proceeded to run a battery of antivirus and such software (Auslogics, CCleaner, Glary Utilities, Malwarebytes, Spyware Blaster, SuperAntiSpyware Free, Spybot, gmer, and Hijack This. The scans revealed very little Super Anti showed tracking cookies, Glary had Infected Registry Cleaner (159 problems) and Temp File Cleaner (8.87 problem), and that was about it. I can tell my computer is running slower, and if I'm typing an email on my yahoo, every now and then I can type and it takes a minute for the words to show up. This has happened in a previous infection. Other than than I have no problems, but I'm trying to make sure I'm not missing anything. I'm grateful for whatever you may be able to lend.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:20 AM

Posted 04 September 2012 - 02:50 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 woolybugger

woolybugger
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:09:20 AM

Posted 05 September 2012 - 11:35 AM

Here's the log for TDSSKILLER:
08:21:28.0858 3268 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
08:21:29.0217 3268 ============================================================
08:21:29.0217 3268 Current date / time: 2012/09/05 08:21:29.0217
08:21:29.0217 3268 SystemInfo:
08:21:29.0217 3268
08:21:29.0217 3268 OS Version: 5.1.2600 ServicePack: 3.0
08:21:29.0217 3268 Product type: Workstation
08:21:29.0217 3268 ComputerName: RAMSEY
08:21:29.0217 3268 UserName: Hunter
08:21:29.0217 3268 Windows directory: C:\WINDOWS
08:21:29.0217 3268 System windows directory: C:\WINDOWS
08:21:29.0217 3268 Processor architecture: Intel x86
08:21:29.0217 3268 Number of processors: 2
08:21:29.0217 3268 Page size: 0x1000
08:21:29.0217 3268 Boot type: Normal boot
08:21:29.0217 3268 ============================================================
08:21:32.0295 3268 Drive \Device\Harddisk0\DR0 - Size: 0x1BF08EB000 (111.76 Gb), SectorSize: 0x200, Cylinders: 0x38FD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
08:21:32.0295 3268 ============================================================
08:21:32.0295 3268 \Device\Harddisk0\DR0:
08:21:32.0295 3268 MBR partitions:
08:21:32.0295 3268 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0xDF702F8
08:21:32.0295 3268 ============================================================
08:21:32.0311 3268 C: <-> \Device\Harddisk0\DR0\Partition1
08:21:32.0311 3268 ============================================================
08:21:32.0311 3268 Initialize success
08:21:32.0311 3268 ============================================================
08:21:57.0889 1952 ============================================================
08:21:57.0889 1952 Scan started
08:21:57.0889 1952 Mode: Manual; TDLFS;
08:21:57.0889 1952 ============================================================
08:21:58.0123 1952 ================ Scan system memory ========================
08:21:58.0123 1952 System memory - ok
08:21:58.0123 1952 ================ Scan services =============================
08:21:58.0233 1952 [ C0393EB99A6C72C6BEF9BFC4A72B33A6 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
08:21:58.0233 1952 !SASCORE - ok
08:21:58.0326 1952 [ B33CF4DE909A5B30F526D82053A63C8E ] ABBYY.Licensing.FineReader.Sprint.9.0 C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
08:21:58.0326 1952 ABBYY.Licensing.FineReader.Sprint.9.0 - ok
08:21:58.0436 1952 Abiosdsk - ok
08:21:58.0451 1952 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\System32\DRIVERS\ABP480N5.SYS
08:21:58.0467 1952 abp480n5 - ok
08:21:58.0514 1952 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
08:21:58.0514 1952 ACPI - ok
08:21:58.0545 1952 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
08:21:58.0545 1952 ACPIEC - ok
08:21:58.0608 1952 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
08:21:58.0623 1952 AdobeFlashPlayerUpdateSvc - ok
08:21:58.0639 1952 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\System32\DRIVERS\adpu160m.sys
08:21:58.0654 1952 adpu160m - ok
08:21:58.0686 1952 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
08:21:58.0686 1952 aec - ok
08:21:58.0733 1952 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
08:21:58.0733 1952 AFD - ok
08:21:58.0764 1952 [ 0EBB674888CBDEFD5773341C16DD6A07 ] AFS2K C:\WINDOWS\system32\drivers\AFS2K.sys
08:21:58.0764 1952 AFS2K - ok
08:21:58.0779 1952 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
08:21:58.0795 1952 agp440 - ok
08:21:58.0811 1952 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\System32\DRIVERS\agpCPQ.sys
08:21:58.0826 1952 agpCPQ - ok
08:21:58.0842 1952 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\System32\DRIVERS\aha154x.sys
08:21:58.0842 1952 Aha154x - ok
08:21:58.0873 1952 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\System32\DRIVERS\aic78u2.sys
08:21:58.0873 1952 aic78u2 - ok
08:21:58.0889 1952 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\System32\DRIVERS\aic78xx.sys
08:21:58.0889 1952 aic78xx - ok
08:21:58.0920 1952 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
08:21:58.0951 1952 Alerter - ok
08:21:58.0967 1952 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
08:21:58.0967 1952 ALG - ok
08:21:58.0998 1952 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\System32\DRIVERS\aliide.sys
08:21:58.0998 1952 AliIde - ok
08:21:59.0029 1952 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\System32\DRIVERS\alim1541.sys
08:21:59.0029 1952 alim1541 - ok
08:21:59.0045 1952 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\System32\DRIVERS\amdagp.sys
08:21:59.0045 1952 amdagp - ok
08:21:59.0061 1952 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\System32\DRIVERS\amsint.sys
08:21:59.0061 1952 amsint - ok
08:21:59.0201 1952 [ 73D675514F148B1E69429E1D95E22ADC ] AOL ACS C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
08:21:59.0248 1952 AOL ACS - ok
08:21:59.0311 1952 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
08:21:59.0311 1952 Apple Mobile Device - ok
08:21:59.0326 1952 AppMgmt - ok
08:21:59.0358 1952 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\System32\DRIVERS\asc.sys
08:21:59.0358 1952 asc - ok
08:21:59.0389 1952 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\System32\DRIVERS\asc3350p.sys
08:21:59.0389 1952 asc3350p - ok
08:21:59.0404 1952 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\System32\DRIVERS\asc3550.sys
08:21:59.0404 1952 asc3550 - ok
08:21:59.0529 1952 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
08:21:59.0592 1952 aspnet_state - ok
08:21:59.0639 1952 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
08:21:59.0639 1952 AsyncMac - ok
08:21:59.0686 1952 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
08:21:59.0686 1952 atapi - ok
08:21:59.0701 1952 Atdisk - ok
08:21:59.0717 1952 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
08:21:59.0717 1952 Atmarpc - ok
08:21:59.0748 1952 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
08:21:59.0748 1952 AudioSrv - ok
08:21:59.0795 1952 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
08:21:59.0795 1952 audstub - ok
08:21:59.0811 1952 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
08:21:59.0811 1952 Beep - ok
08:21:59.0858 1952 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
08:21:59.0889 1952 BITS - ok
08:21:59.0967 1952 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
08:21:59.0983 1952 Bonjour Service - ok
08:22:00.0014 1952 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
08:22:00.0014 1952 Browser - ok
08:22:00.0029 1952 bvrp_pci - ok
08:22:00.0061 1952 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\System32\DRIVERS\cbidf2k.sys
08:22:00.0061 1952 cbidf - ok
08:22:00.0061 1952 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
08:22:00.0061 1952 cbidf2k - ok
08:22:00.0092 1952 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\System32\DRIVERS\cd20xrnt.sys
08:22:00.0092 1952 cd20xrnt - ok
08:22:00.0108 1952 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
08:22:00.0108 1952 Cdaudio - ok
08:22:00.0139 1952 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
08:22:00.0139 1952 Cdfs - ok
08:22:00.0186 1952 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
08:22:00.0186 1952 Cdrom - ok
08:22:00.0186 1952 cerc6 - ok
08:22:00.0201 1952 Changer - ok
08:22:00.0217 1952 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
08:22:00.0217 1952 CiSvc - ok
08:22:00.0248 1952 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
08:22:00.0248 1952 ClipSrv - ok
08:22:00.0295 1952 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:22:00.0420 1952 clr_optimization_v2.0.50727_32 - ok
08:22:00.0451 1952 [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde C:\WINDOWS\System32\DRIVERS\cmdide.sys
08:22:00.0451 1952 CmdIde - ok
08:22:00.0467 1952 COMSysApp - ok
08:22:00.0483 1952 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\System32\DRIVERS\cpqarray.sys
08:22:00.0498 1952 Cpqarray - ok
08:22:00.0529 1952 [ 3C8B6609712F4FF78E521F6DCFC4032B ] Creative Service for CDROM Access C:\WINDOWS\System32\CTsvcCDA.exe
08:22:00.0529 1952 Creative Service for CDROM Access - ok
08:22:00.0576 1952 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
08:22:00.0576 1952 CryptSvc - ok
08:22:00.0608 1952 [ B459AE4AFCA570088ADDDBE55EABBC92 ] ctsfm2k C:\WINDOWS\system32\DRIVERS\ctsfm2k.sys
08:22:00.0608 1952 ctsfm2k - ok
08:22:00.0639 1952 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\System32\DRIVERS\dac2w2k.sys
08:22:00.0654 1952 dac2w2k - ok
08:22:00.0670 1952 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\System32\DRIVERS\dac960nt.sys
08:22:00.0670 1952 dac960nt - ok
08:22:00.0733 1952 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
08:22:00.0733 1952 DcomLaunch - ok
08:22:00.0764 1952 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
08:22:00.0779 1952 Dhcp - ok
08:22:00.0811 1952 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
08:22:00.0811 1952 Disk - ok
08:22:00.0826 1952 dmadmin - ok
08:22:00.0889 1952 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
08:22:00.0920 1952 dmboot - ok
08:22:00.0936 1952 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
08:22:00.0936 1952 dmio - ok
08:22:00.0967 1952 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
08:22:00.0967 1952 dmload - ok
08:22:00.0998 1952 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
08:22:00.0998 1952 dmserver - ok
08:22:01.0029 1952 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
08:22:01.0029 1952 DMusic - ok
08:22:01.0076 1952 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
08:22:01.0076 1952 Dnscache - ok
08:22:01.0123 1952 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
08:22:01.0123 1952 Dot3svc - ok
08:22:01.0170 1952 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\System32\DRIVERS\dpti2o.sys
08:22:01.0170 1952 dpti2o - ok
08:22:01.0186 1952 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
08:22:01.0201 1952 drmkaud - ok
08:22:01.0233 1952 [ 7F056A52BCBA3102D2D37A4A2646C807 ] drvmcdb C:\WINDOWS\system32\drivers\drvmcdb.sys
08:22:01.0264 1952 drvmcdb - ok
08:22:01.0279 1952 [ D3C1E501ED42E77574B3095309DD4075 ] drvnddm C:\WINDOWS\system32\drivers\drvnddm.sys
08:22:03.0233 1952 drvnddm - ok
08:22:03.0295 1952 [ FE80901578E7E3DA70299A5AEB2B7FBD ] DSBrokerService C:\Program Files\DellSupport\brkrsvc.exe
08:22:03.0295 1952 DSBrokerService - ok
08:22:03.0326 1952 [ 413F2D5F9D802688242C23B38F767ECB ] DSproct C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys
08:22:03.0342 1952 DSproct - ok
08:22:03.0373 1952 [ DFEABB7CFFFADEA4A912AB95BDC3177A ] dsunidrv C:\WINDOWS\system32\DRIVERS\dsunidrv.sys
08:22:03.0373 1952 dsunidrv - ok
08:22:03.0404 1952 [ D57A8FC800B501AC05B10D00F66D127A ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
08:22:03.0420 1952 E100B - ok
08:22:03.0467 1952 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
08:22:03.0467 1952 EapHost - ok
08:22:03.0498 1952 [ 6E883BF518296A40959131C2304AF714 ] EL90XBC C:\WINDOWS\system32\DRIVERS\el90xbc5.sys
08:22:03.0514 1952 EL90XBC - ok
08:22:03.0545 1952 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
08:22:03.0545 1952 ERSvc - ok
08:22:03.0576 1952 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
08:22:03.0592 1952 Eventlog - ok
08:22:03.0639 1952 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
08:22:03.0654 1952 EventSystem - ok
08:22:03.0686 1952 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
08:22:03.0686 1952 Fastfat - ok
08:22:03.0733 1952 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
08:22:03.0733 1952 FastUserSwitchingCompatibility - ok
08:22:03.0748 1952 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
08:22:03.0748 1952 Fdc - ok
08:22:03.0779 1952 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
08:22:03.0779 1952 Fips - ok
08:22:03.0795 1952 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
08:22:03.0795 1952 Flpydisk - ok
08:22:03.0826 1952 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
08:22:03.0826 1952 FltMgr - ok
08:22:03.0904 1952 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
08:22:03.0904 1952 FontCache3.0.0.0 - ok
08:22:03.0920 1952 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
08:22:03.0920 1952 Fs_Rec - ok
08:22:03.0936 1952 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
08:22:03.0936 1952 Ftdisk - ok
08:22:03.0951 1952 [ 065639773D8B03F33577F6CDAEA21063 ] gameenum C:\WINDOWS\system32\DRIVERS\gameenum.sys
08:22:03.0951 1952 gameenum - ok
08:22:03.0998 1952 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
08:22:03.0998 1952 GEARAspiWDM - ok
08:22:04.0045 1952 [ 0879DC7444A201DF84E69C5DD5083D61 ] getPlusHelper C:\Program Files\NOS\bin\getPlus_Helper.dll
08:22:04.0061 1952 getPlusHelper - ok
08:22:04.0154 1952 [ F0187E45268E86AAAA932CBD9087BEA8 ] GoogleDesktopManager-110309-193829 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
08:22:04.0154 1952 GoogleDesktopManager-110309-193829 - ok
08:22:04.0201 1952 [ 3D81D33D079917E6FB0DA72B4CC14964 ] GoToAssist C:\Program Files\Citrix\GoToAssist\508\g2aservice.exe
08:22:04.0201 1952 GoToAssist - ok
08:22:04.0233 1952 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
08:22:04.0233 1952 Gpc - ok
08:22:04.0264 1952 [ 626A24ED1228580B9518C01930936DF9 ] gupdate1c98c5df6491766 C:\Program Files\Google\Update\GoogleUpdate.exe
08:22:04.0279 1952 gupdate1c98c5df6491766 - ok
08:22:04.0279 1952 [ 626A24ED1228580B9518C01930936DF9 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
08:22:04.0279 1952 gupdatem - ok
08:22:04.0326 1952 [ 408DDD80EEDE47175F6844817B90213E ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
08:22:04.0342 1952 gusvc - ok
08:22:04.0389 1952 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
08:22:04.0389 1952 helpsvc - ok
08:22:04.0420 1952 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
08:22:04.0420 1952 HidServ - ok
08:22:04.0451 1952 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
08:22:04.0467 1952 HidUsb - ok
08:22:04.0514 1952 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
08:22:04.0514 1952 hkmsvc - ok
08:22:04.0561 1952 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\System32\DRIVERS\hpn.sys
08:22:04.0561 1952 hpn - ok
08:22:04.0592 1952 [ 863CC3A82C63C9F60ACF2E85D5310620 ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
08:22:04.0592 1952 HPZid412 - ok
08:22:04.0608 1952 [ 08CB72E95DD75B61F2966B311D0E4366 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
08:22:04.0608 1952 HPZipr12 - ok
08:22:04.0623 1952 [ CA990306ED4EF732AF9695BFF24FC96F ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
08:22:04.0623 1952 HPZius12 - ok
08:22:04.0670 1952 [ 77E4FF0B73BC0AEAAF39BF0C8104231F ] HSFHWBS2 C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
08:22:04.0686 1952 HSFHWBS2 - ok
08:22:04.0733 1952 [ 60E1604729A15EF4A3B05F298427B3B1 ] HSF_DP C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
08:22:04.0764 1952 HSF_DP - ok
08:22:04.0811 1952 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
08:22:04.0811 1952 HTTP - ok
08:22:04.0842 1952 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
08:22:04.0873 1952 HTTPFilter - ok
08:22:04.0936 1952 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
08:22:04.0936 1952 i2omgmt - ok
08:22:04.0951 1952 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\System32\DRIVERS\i2omp.sys
08:22:04.0951 1952 i2omp - ok
08:22:04.0983 1952 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
08:22:04.0983 1952 i8042prt - ok
08:22:05.0014 1952 [ 06B7EF73BA5F302EECC294CDF7E19702 ] i81x C:\WINDOWS\system32\DRIVERS\i81xnt5.sys
08:22:05.0029 1952 i81x - ok
08:22:05.0045 1952 [ 7B5B44EFE5EB9DADFB8EE29700885D23 ] iAimFP0 C:\WINDOWS\system32\DRIVERS\wADV01nt.sys
08:22:05.0045 1952 iAimFP0 - ok
08:22:05.0061 1952 [ EB1F6BAB6C22EDE0BA551B527475F7E9 ] iAimFP1 C:\WINDOWS\system32\DRIVERS\wADV02NT.sys
08:22:05.0061 1952 iAimFP1 - ok
08:22:05.0076 1952 [ 03CE989D846C1AA81145CB22FCB86D06 ] iAimFP2 C:\WINDOWS\system32\DRIVERS\wADV05NT.sys
08:22:05.0076 1952 iAimFP2 - ok
08:22:05.0092 1952 [ 525849B4469DE021D5D61B4DB9BE3A9D ] iAimFP3 C:\WINDOWS\system32\DRIVERS\wSiINTxx.sys
08:22:05.0108 1952 iAimFP3 - ok
08:22:05.0108 1952 [ 589C2BCDB5BD602BF7B63D210407EF8C ] iAimFP4 C:\WINDOWS\system32\DRIVERS\wVchNTxx.sys
08:22:05.0108 1952 iAimFP4 - ok
08:22:05.0123 1952 [ D83BDD5C059667A2F647A6BE5703A4D2 ] iAimTV0 C:\WINDOWS\system32\DRIVERS\wATV01nt.sys
08:22:05.0123 1952 iAimTV0 - ok
08:22:05.0139 1952 [ ED968D23354DAA0D7C621580C012A1F6 ] iAimTV1 C:\WINDOWS\system32\DRIVERS\wATV02NT.sys
08:22:05.0139 1952 iAimTV1 - ok
08:22:05.0154 1952 iAimTV2 - ok
08:22:05.0186 1952 [ D738273F218A224C1DDAC04203F27A84 ] iAimTV3 C:\WINDOWS\system32\DRIVERS\wATV04nt.sys
08:22:05.0186 1952 iAimTV3 - ok
08:22:05.0201 1952 [ 0052D118995CBAB152DAABE6106D1442 ] iAimTV4 C:\WINDOWS\system32\DRIVERS\wCh7xxNT.sys
08:22:05.0201 1952 iAimTV4 - ok
08:22:05.0264 1952 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
08:22:05.0264 1952 IDriverT - ok
08:22:05.0358 1952 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
08:22:05.0373 1952 idsvc - ok
08:22:05.0420 1952 [ DEAD59A2BFBF5CC08693584C608006C5 ] IKFileSec C:\WINDOWS\system32\drivers\ikfilesec.sys
08:22:05.0420 1952 IKFileSec - ok
08:22:05.0436 1952 [ 457813FD0B3C6C52B2583B0997A8096A ] IKSysFlt C:\WINDOWS\system32\drivers\iksysflt.sys
08:22:05.0436 1952 IKSysFlt - ok
08:22:05.0451 1952 [ D7C6C835C4818D5C4A853F474FB5A9FC ] IKSysSec C:\WINDOWS\system32\drivers\iksyssec.sys
08:22:05.0451 1952 IKSysSec - ok
08:22:05.0483 1952 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
08:22:05.0483 1952 Imapi - ok
08:22:05.0514 1952 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
08:22:05.0529 1952 ImapiService - ok
08:22:05.0561 1952 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\System32\DRIVERS\ini910u.sys
08:22:05.0561 1952 ini910u - ok
08:22:05.0592 1952 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\System32\DRIVERS\intelide.sys
08:22:05.0592 1952 IntelIde - ok
08:22:05.0623 1952 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
08:22:05.0623 1952 intelppm - ok
08:22:05.0670 1952 [ 3BB22519A194418D5FEC05D800A19AD0 ] ip6fw C:\WINDOWS\system32\drivers\ip6fw.sys
08:22:05.0670 1952 ip6fw - ok
08:22:05.0701 1952 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
08:22:05.0701 1952 IpFilterDriver - ok
08:22:05.0733 1952 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
08:22:05.0748 1952 IpInIp - ok
08:22:05.0779 1952 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
08:22:05.0779 1952 IpNat - ok
08:22:05.0842 1952 [ 57EDB35EA2FECA88F8B17C0C095C9A56 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
08:22:05.0858 1952 iPod Service - ok
08:22:05.0889 1952 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
08:22:05.0904 1952 IPSec - ok
08:22:05.0936 1952 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
08:22:05.0936 1952 IRENUM - ok
08:22:05.0967 1952 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
08:22:05.0967 1952 isapnp - ok
08:22:06.0061 1952 [ 1834C96FB1F9280BCF6DDFA6DE8338BF ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
08:22:06.0061 1952 JavaQuickStarterService - ok
08:22:06.0076 1952 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
08:22:06.0076 1952 Kbdclass - ok
08:22:06.0108 1952 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
08:22:06.0108 1952 kbdhid - ok
08:22:06.0123 1952 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
08:22:06.0123 1952 kmixer - ok
08:22:06.0139 1952 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
08:22:06.0139 1952 KSecDD - ok
08:22:06.0186 1952 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
08:22:06.0186 1952 lanmanserver - ok
08:22:06.0248 1952 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
08:22:06.0264 1952 lanmanworkstation - ok
08:22:06.0264 1952 lbrtfdc - ok
08:22:06.0326 1952 [ E19C8550B4C6C67FABFFD998EACF440A ] LexBceS C:\WINDOWS\system32\LEXBCES.EXE
08:22:06.0373 1952 LexBceS - ok
08:22:06.0420 1952 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
08:22:06.0420 1952 LmHosts - ok
08:22:06.0436 1952 [ 6DFE7F2E8E8A337263AA5C92A215F161 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
08:22:06.0436 1952 MBAMProtector - ok
08:22:06.0514 1952 [ 43683E970F008C93C9429EF428147A54 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
08:22:06.0545 1952 MBAMService - ok
08:22:06.0608 1952 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
08:22:06.0623 1952 MDM - ok
08:22:06.0639 1952 [ EEAEA6514BA7C9D273B5E87C4E1AAB30 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
08:22:06.0639 1952 mdmxsdk - ok
08:22:06.0670 1952 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
08:22:06.0670 1952 Messenger - ok
08:22:06.0717 1952 [ BAFDD5E28BAEA99D7F4772AF2F5EC7EE ] mfeavfk C:\WINDOWS\system32\drivers\mfeavfk.sys
08:22:06.0717 1952 mfeavfk - ok
08:22:06.0733 1952 [ 1D003E3056A43D881597D6763E83B943 ] mfebopk C:\WINDOWS\system32\drivers\mfebopk.sys
08:22:06.0733 1952 mfebopk - ok
08:22:06.0795 1952 [ 3F138A1C8A0659F329F242D1E389B2CF ] mfehidk C:\WINDOWS\system32\drivers\mfehidk.sys
08:22:06.0795 1952 mfehidk - ok
08:22:06.0842 1952 [ 41FE2F288E05A6C8AB85DD56770FFBAD ] mferkdk C:\WINDOWS\system32\drivers\mferkdk.sys
08:22:06.0842 1952 mferkdk - ok
08:22:06.0873 1952 [ 096B52EA918AA909BA5903D79E129005 ] mfesmfk C:\WINDOWS\system32\drivers\mfesmfk.sys
08:22:06.0873 1952 mfesmfk - ok
08:22:06.0904 1952 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
08:22:06.0904 1952 mnmdd - ok
08:22:06.0967 1952 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\System32\mnmsrvc.exe
08:22:06.0967 1952 mnmsrvc - ok
08:22:06.0998 1952 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
08:22:06.0998 1952 Modem - ok
08:22:07.0014 1952 [ 1992E0D143B09653AB0F9C5E04B0FD65 ] MODEMCSA C:\WINDOWS\system32\drivers\MODEMCSA.sys
08:22:07.0014 1952 MODEMCSA - ok
08:22:07.0014 1952 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
08:22:07.0029 1952 Mouclass - ok
08:22:07.0061 1952 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
08:22:07.0061 1952 mouhid - ok
08:22:07.0092 1952 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
08:22:07.0092 1952 MountMgr - ok
08:22:07.0108 1952 [ D993BEA500E7382DC4E760BF4F35EFCB ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys
08:22:07.0123 1952 MpFilter - ok
08:22:07.0248 1952 [ A69630D039C38018689190234F866D77 ] MpKsld2abacaa c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{FF952E0D-5508-480A-97A3-CEF709F94341}\MpKsld2abacaa.sys
08:22:07.0248 1952 MpKsld2abacaa - ok
08:22:07.0279 1952 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\System32\DRIVERS\mraid35x.sys
08:22:07.0279 1952 mraid35x - ok
08:22:07.0326 1952 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
08:22:07.0326 1952 MRxDAV - ok
08:22:07.0389 1952 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
08:22:07.0404 1952 MRxSmb - ok
08:22:07.0451 1952 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\System32\msdtc.exe
08:22:07.0451 1952 MSDTC - ok
08:22:07.0514 1952 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
08:22:07.0514 1952 Msfs - ok
08:22:07.0529 1952 MSIServer - ok
08:22:07.0561 1952 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
08:22:07.0561 1952 MSKSSRV - ok
08:22:07.0639 1952 [ 24516BF4E12A46CB67302E2CDCB8CDDF ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
08:22:07.0639 1952 MsMpSvc - ok
08:22:07.0670 1952 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
08:22:07.0670 1952 MSPCLOCK - ok
08:22:07.0701 1952 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
08:22:07.0717 1952 MSPQM - ok
08:22:07.0748 1952 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
08:22:07.0764 1952 mssmbios - ok
08:22:07.0795 1952 MSSQL$MICROSOFTBCM - ok
08:22:07.0842 1952 [ CB7524C21727404BD3140DCA32DEB7DE ] MSSQLServerADHelper C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe
08:22:07.0842 1952 MSSQLServerADHelper - ok
08:22:07.0873 1952 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
08:22:07.0873 1952 Mup - ok
08:22:07.0951 1952 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
08:22:07.0967 1952 napagent - ok
08:22:07.0983 1952 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
08:22:07.0998 1952 NDIS - ok
08:22:08.0029 1952 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
08:22:08.0029 1952 NdisTapi - ok
08:22:08.0061 1952 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
08:22:08.0061 1952 Ndisuio - ok
08:22:08.0092 1952 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
08:22:08.0092 1952 NdisWan - ok
08:22:08.0123 1952 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
08:22:08.0139 1952 NDProxy - ok
08:22:08.0139 1952 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
08:22:08.0139 1952 NetBIOS - ok
08:22:08.0170 1952 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
08:22:08.0170 1952 NetBT - ok
08:22:08.0217 1952 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
08:22:08.0217 1952 NetDDE - ok
08:22:08.0217 1952 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
08:22:08.0233 1952 NetDDEdsdm - ok
08:22:08.0264 1952 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
08:22:08.0264 1952 Netlogon - ok
08:22:08.0295 1952 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
08:22:08.0311 1952 Netman - ok
08:22:08.0389 1952 [ 737351F39FEF765234037770ABDD72BD ] NetSvc C:\Program Files\Intel\NCS\Sync\NetSvc.exe
08:22:08.0389 1952 NetSvc - ok
08:22:08.0451 1952 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
08:22:08.0451 1952 NetTcpPortSharing - ok
08:22:08.0467 1952 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
08:22:08.0483 1952 Nla - ok
08:22:08.0514 1952 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
08:22:08.0514 1952 Npfs - ok
08:22:08.0576 1952 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
08:22:08.0623 1952 Ntfs - ok
08:22:08.0623 1952 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
08:22:08.0639 1952 NtLmSsp - ok
08:22:08.0670 1952 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
08:22:08.0733 1952 NtmsSvc - ok
08:22:08.0779 1952 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
08:22:08.0779 1952 Null - ok
08:22:08.0842 1952 [ 66C90AFBF0D10A93789F6544BE459E72 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
08:22:08.0858 1952 nv - ok
08:22:08.0920 1952 [ 557015B4919C4A688771221C1338EED0 ] NVSvc C:\WINDOWS\System32\nvsvc32.exe
08:22:08.0920 1952 NVSvc - ok
08:22:08.0967 1952 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
08:22:08.0967 1952 NwlnkFlt - ok
08:22:08.0998 1952 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
08:22:08.0998 1952 NwlnkFwd - ok
08:22:09.0061 1952 [ 53D5F1278D9EDB21689BBBCECC09108D ] omci C:\WINDOWS\system32\DRIVERS\omci.sys
08:22:09.0076 1952 omci - ok
08:22:09.0108 1952 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:22:09.0123 1952 ose - ok
08:22:09.0154 1952 [ C720C25B2D0C93DC425155F5B6A707F3 ] ossrv C:\WINDOWS\system32\DRIVERS\ctoss2k.sys
08:22:09.0170 1952 ossrv - ok
08:22:09.0233 1952 [ F051107FF80F132882E71E3A5D302EC1 ] P16X C:\WINDOWS\system32\drivers\P16X.sys
08:22:09.0233 1952 P16X - ok
08:22:09.0248 1952 [ C90018BAFDC7098619A4A95B046B30F3 ] P3 C:\WINDOWS\system32\DRIVERS\p3.sys
08:22:09.0248 1952 P3 - ok
08:22:09.0264 1952 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
08:22:09.0279 1952 Parport - ok
08:22:09.0295 1952 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
08:22:09.0295 1952 PartMgr - ok
08:22:09.0326 1952 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
08:22:09.0342 1952 ParVdm - ok
08:22:09.0358 1952 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
08:22:09.0358 1952 PCI - ok
08:22:09.0373 1952 PCIDump - ok
08:22:09.0373 1952 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
08:22:09.0373 1952 PCIIde - ok
08:22:09.0420 1952 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
08:22:09.0420 1952 Pcmcia - ok
08:22:09.0436 1952 PDCOMP - ok
08:22:09.0451 1952 PDFRAME - ok
08:22:09.0451 1952 PDRELI - ok
08:22:09.0467 1952 PDRFRAME - ok
08:22:09.0498 1952 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\System32\DRIVERS\perc2.sys
08:22:09.0498 1952 perc2 - ok
08:22:09.0529 1952 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\System32\DRIVERS\perc2hib.sys
08:22:09.0529 1952 perc2hib - ok
08:22:09.0576 1952 [ 2F5532F9B0F903B26847DA674B4F55B2 ] PfModNT C:\WINDOWS\System32\PfModNT.sys
08:22:09.0576 1952 PfModNT - ok
08:22:09.0608 1952 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
08:22:09.0608 1952 PlugPlay - ok
08:22:09.0639 1952 [ FB03F341FF5380394BF2EE52F1979925 ] Pml Driver HPZ12 C:\WINDOWS\System32\HPZipm12.exe
08:22:09.0639 1952 Pml Driver HPZ12 - ok
08:22:09.0639 1952 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
08:22:09.0654 1952 PolicyAgent - ok
08:22:09.0686 1952 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
08:22:09.0686 1952 PptpMiniport - ok
08:22:09.0733 1952 [ A32BEBAF723557681BFC6BD93E98BD26 ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
08:22:09.0733 1952 Processor - ok
08:22:09.0748 1952 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
08:22:09.0748 1952 ProtectedStorage - ok
08:22:09.0764 1952 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
08:22:09.0764 1952 PSched - ok
08:22:09.0795 1952 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
08:22:09.0795 1952 Ptilink - ok
08:22:09.0842 1952 [ 49452BFCEC22F36A7A9B9C2181BC3042 ] PxHelp20 C:\WINDOWS\system32\DRIVERS\PxHelp20.sys
08:22:09.0842 1952 PxHelp20 - ok
08:22:09.0889 1952 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\System32\DRIVERS\ql1080.sys
08:22:09.0889 1952 ql1080 - ok
08:22:09.0936 1952 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\System32\DRIVERS\ql10wnt.sys
08:22:09.0936 1952 Ql10wnt - ok
08:22:09.0951 1952 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\System32\DRIVERS\ql12160.sys
08:22:09.0951 1952 ql12160 - ok
08:22:09.0967 1952 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\System32\DRIVERS\ql1240.sys
08:22:09.0967 1952 ql1240 - ok
08:22:09.0998 1952 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\System32\DRIVERS\ql1280.sys
08:22:09.0998 1952 ql1280 - ok
08:22:10.0014 1952 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
08:22:10.0014 1952 RasAcd - ok
08:22:10.0045 1952 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
08:22:10.0061 1952 RasAuto - ok
08:22:10.0076 1952 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
08:22:10.0076 1952 Rasl2tp - ok
08:22:10.0123 1952 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
08:22:10.0123 1952 RasMan - ok
08:22:10.0139 1952 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
08:22:10.0139 1952 RasPppoe - ok
08:22:10.0154 1952 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
08:22:10.0154 1952 Raspti - ok
08:22:10.0170 1952 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
08:22:10.0186 1952 Rdbss - ok
08:22:10.0186 1952 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
08:22:10.0186 1952 RDPCDD - ok
08:22:10.0248 1952 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
08:22:10.0248 1952 rdpdr - ok
08:22:10.0311 1952 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
08:22:10.0311 1952 RDPWD - ok
08:22:10.0373 1952 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
08:22:10.0373 1952 RDSessMgr - ok
08:22:10.0404 1952 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
08:22:10.0404 1952 redbook - ok
08:22:10.0436 1952 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
08:22:10.0436 1952 RemoteAccess - ok
08:22:10.0483 1952 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
08:22:10.0483 1952 RpcLocator - ok
08:22:10.0529 1952 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\System32\rpcss.dll
08:22:10.0529 1952 RpcSs - ok
08:22:10.0592 1952 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
08:22:10.0592 1952 RSVP - ok
08:22:10.0623 1952 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
08:22:10.0623 1952 SamSs - ok
08:22:10.0701 1952 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
08:22:10.0701 1952 SASDIFSV - ok
08:22:10.0717 1952 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
08:22:10.0717 1952 SASKUTIL - ok
08:22:10.0779 1952 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
08:22:10.0795 1952 SCardSvr - ok
08:22:10.0842 1952 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
08:22:10.0858 1952 Schedule - ok
08:22:10.0904 1952 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
08:22:10.0904 1952 Secdrv - ok
08:22:10.0951 1952 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
08:22:10.0967 1952 seclogon - ok
08:22:10.0967 1952 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
08:22:10.0967 1952 SENS - ok
08:22:11.0029 1952 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
08:22:11.0029 1952 serenum - ok
08:22:11.0076 1952 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
08:22:11.0076 1952 Serial - ok
08:22:11.0108 1952 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
08:22:11.0108 1952 Sfloppy - ok
08:22:11.0154 1952 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
08:22:11.0170 1952 SharedAccess - ok
08:22:11.0186 1952 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
08:22:11.0186 1952 ShellHWDetection - ok
08:22:11.0201 1952 Simbad - ok
08:22:11.0248 1952 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\System32\DRIVERS\sisagp.sys
08:22:11.0248 1952 sisagp - ok
08:22:11.0279 1952 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\System32\DRIVERS\sparrow.sys
08:22:11.0279 1952 Sparrow - ok
08:22:11.0326 1952 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
08:22:11.0326 1952 splitter - ok
08:22:11.0373 1952 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
08:22:11.0373 1952 Spooler - ok
08:22:11.0373 1952 SQLAgent$MICROSOFTBCM - ok
08:22:11.0420 1952 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
08:22:11.0436 1952 sr - ok
08:22:11.0467 1952 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
08:22:11.0483 1952 srservice - ok
08:22:11.0529 1952 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
08:22:11.0545 1952 Srv - ok
08:22:11.0561 1952 [ 328E8BB94EC58480F60458FB4B8437A7 ] sscdbhk5 C:\WINDOWS\system32\drivers\sscdbhk5.sys
08:22:11.0576 1952 sscdbhk5 - ok
08:22:11.0623 1952 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
08:22:11.0639 1952 SSDPSRV - ok
08:22:11.0639 1952 [ 7EC8B427CEE5C0CDAC066320B93F1355 ] ssrtln C:\WINDOWS\system32\drivers\ssrtln.sys
08:22:11.0670 1952 ssrtln - ok
08:22:11.0717 1952 [ A9573045BAA16EAB9B1085205B82F1ED ] StillCam C:\WINDOWS\system32\DRIVERS\serscan.sys
08:22:11.0748 1952 StillCam - ok
08:22:11.0779 1952 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
08:22:11.0826 1952 stisvc - ok
08:22:11.0842 1952 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
08:22:11.0842 1952 swenum - ok
08:22:11.0873 1952 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
08:22:11.0873 1952 swmidi - ok
08:22:11.0889 1952 SwPrv - ok
08:22:11.0920 1952 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\System32\DRIVERS\symc810.sys
08:22:11.0920 1952 symc810 - ok
08:22:11.0951 1952 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\System32\DRIVERS\symc8xx.sys
08:22:11.0951 1952 symc8xx - ok
08:22:11.0967 1952 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\System32\DRIVERS\sym_hi.sys
08:22:11.0983 1952 sym_hi - ok
08:22:12.0014 1952 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\System32\DRIVERS\sym_u3.sys
08:22:12.0014 1952 sym_u3 - ok
08:22:12.0061 1952 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
08:22:12.0061 1952 sysaudio - ok
08:22:12.0076 1952 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
08:22:12.0092 1952 SysmonLog - ok
08:22:12.0123 1952 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
08:22:12.0139 1952 TapiSrv - ok
08:22:12.0186 1952 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
08:22:12.0201 1952 Tcpip - ok
08:22:12.0233 1952 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
08:22:12.0233 1952 TDPIPE - ok
08:22:12.0248 1952 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
08:22:12.0248 1952 TDTCP - ok
08:22:12.0295 1952 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
08:22:12.0295 1952 TermDD - ok
08:22:12.0342 1952 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
08:22:12.0342 1952 TermService - ok
08:22:12.0404 1952 [ C229BF90443BE8D3BD2B65D7F3AC0F35 ] tfsnboio C:\WINDOWS\system32\dla\tfsnboio.sys
08:22:12.0436 1952 tfsnboio - ok
08:22:12.0451 1952 [ 79EE9FCD7728E54AB8FBC30962F0416F ] tfsncofs C:\WINDOWS\system32\dla\tfsncofs.sys
08:22:12.0483 1952 tfsncofs - ok
08:22:12.0483 1952 [ 9EFB37E7DE17D783A059B653F7E8AFAD ] tfsndrct C:\WINDOWS\system32\dla\tfsndrct.sys
08:22:12.0498 1952 tfsndrct - ok
08:22:12.0545 1952 [ 130254995EBEDCB34D62E8D78EC9DBD0 ] tfsndres C:\WINDOWS\system32\dla\tfsndres.sys
08:22:12.0561 1952 tfsndres - ok
08:22:12.0576 1952 [ 9B40E1E4AEED849812A2E43A388A7E77 ] tfsnifs C:\WINDOWS\system32\dla\tfsnifs.sys
08:22:12.0639 1952 tfsnifs - ok
08:22:12.0639 1952 [ 818047AD850B312705AA17CA96B9427D ] tfsnopio C:\WINDOWS\system32\dla\tfsnopio.sys
08:22:12.0670 1952 tfsnopio - ok
08:22:12.0686 1952 [ 4603E813BCC6DD465CD8D2AFD37FA90D ] tfsnpool C:\WINDOWS\system32\dla\tfsnpool.sys
08:22:12.0701 1952 tfsnpool - ok
08:22:12.0701 1952 [ 6FC2CD904A9A55ACFDFC780A611A75ED ] tfsnudf C:\WINDOWS\system32\dla\tfsnudf.sys
08:22:12.0764 1952 tfsnudf - ok
08:22:12.0795 1952 [ D4AFA4D00F8DB3FD1C15B3FE49C3A96C ] tfsnudfa C:\WINDOWS\system32\dla\tfsnudfa.sys
08:22:12.0858 1952 tfsnudfa - ok
08:22:12.0873 1952 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
08:22:12.0873 1952 Themes - ok
08:22:12.0904 1952 [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde C:\WINDOWS\System32\DRIVERS\toside.sys
08:22:12.0904 1952 TosIde - ok
08:22:12.0936 1952 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
08:22:12.0951 1952 TrkWks - ok
08:22:12.0983 1952 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
08:22:12.0983 1952 Udfs - ok
08:22:13.0014 1952 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\System32\DRIVERS\ultra.sys
08:22:13.0014 1952 ultra - ok
08:22:13.0076 1952 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
08:22:13.0092 1952 Update - ok
08:22:13.0139 1952 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
08:22:13.0139 1952 upnphost - ok
08:22:13.0154 1952 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
08:22:13.0154 1952 UPS - ok
08:22:13.0201 1952 [ 026F7F224F088EE11E383BCA448FFF81 ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
08:22:13.0233 1952 USBAAPL - ok
08:22:13.0264 1952 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
08:22:13.0264 1952 usbccgp - ok
08:22:13.0295 1952 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
08:22:13.0295 1952 usbehci - ok
08:22:13.0295 1952 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
08:22:13.0311 1952 usbhub - ok
08:22:13.0326 1952 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
08:22:13.0326 1952 usbprint - ok
08:22:13.0342 1952 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
08:22:13.0358 1952 usbscan - ok
08:22:13.0389 1952 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
08:22:13.0389 1952 USBSTOR - ok
08:22:13.0420 1952 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
08:22:13.0420 1952 usbuhci - ok
08:22:13.0451 1952 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
08:22:13.0451 1952 VgaSave - ok
08:22:13.0451 1952 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\System32\DRIVERS\viaagp.sys
08:22:13.0451 1952 viaagp - ok
08:22:13.0483 1952 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\System32\DRIVERS\viaide.sys
08:22:13.0483 1952 ViaIde - ok
08:22:13.0514 1952 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
08:22:13.0514 1952 VolSnap - ok
08:22:13.0561 1952 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
08:22:13.0576 1952 VSS - ok
08:22:13.0608 1952 [ 54AF4B1D5459500EF0937F6D33B1914F ] w32time C:\WINDOWS\system32\w32time.dll
08:22:13.0623 1952 w32time - ok
08:22:13.0654 1952 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
08:22:13.0654 1952 Wanarp - ok
08:22:13.0717 1952 [ 0A716C08CB13C3A8F4F51E882DBF7416 ] wanatw C:\WINDOWS\system32\DRIVERS\wanatw4.sys
08:22:13.0717 1952 wanatw - ok
08:22:13.0764 1952 [ 909F2DC0DA7F57D229A05EE90647B2C3 ] WANMiniportService C:\WINDOWS\wanmpsvc.exe
08:22:16.0389 1952 WANMiniportService - ok
08:22:16.0389 1952 WDICA - ok
08:22:16.0451 1952 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
08:22:16.0451 1952 wdmaud - ok
08:22:16.0498 1952 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
08:22:16.0498 1952 WebClient - ok
08:22:16.0561 1952 [ F59ED5A43B988A18EF582BB07B2327A7 ] winachsf C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
08:22:16.0592 1952 winachsf - ok
08:22:16.0639 1952 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
08:22:16.0639 1952 winmgmt - ok
08:22:16.0717 1952 [ 18F347402DA544A780949B8FDF83351B ] WinRM C:\WINDOWS\system32\WsmSvc.dll
08:22:16.0795 1952 WinRM - ok
08:22:16.0858 1952 [ 581176F60885AEF8F78C6E38DCC3CDF9 ] WMDM PMSP Service C:\WINDOWS\System32\MsPMSPSv.exe
08:22:16.0858 1952 WMDM PMSP Service - ok
08:22:16.0904 1952 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
08:22:16.0904 1952 WmdmPmSN - ok
08:22:16.0936 1952 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
08:22:16.0951 1952 WmiApSrv - ok
08:22:17.0045 1952 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
08:22:17.0108 1952 WMPNetworkSvc - ok
08:22:17.0154 1952 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
08:22:17.0154 1952 WpdUsb - ok
08:22:17.0217 1952 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
08:22:17.0217 1952 wscsvc - ok
08:22:17.0248 1952 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
08:22:17.0264 1952 wuauserv - ok
08:22:17.0295 1952 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
08:22:17.0311 1952 WudfPf - ok
08:22:17.0342 1952 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
08:22:17.0342 1952 WudfRd - ok
08:22:17.0389 1952 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
08:22:17.0389 1952 WudfSvc - ok
08:22:17.0436 1952 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
08:22:17.0451 1952 WZCSVC - ok
08:22:17.0483 1952 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
08:22:17.0483 1952 xmlprov - ok
08:22:17.0498 1952 ================ Scan global ===============================
08:22:17.0561 1952 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
08:22:17.0592 1952 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
08:22:17.0639 1952 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
08:22:17.0686 1952 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
08:22:17.0686 1952 [Global] - ok
08:22:17.0686 1952 ================ Scan MBR ==================================
08:22:17.0733 1952 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
08:22:17.0983 1952 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
08:22:17.0983 1952 \Device\Harddisk0\DR0 - detected TDSS File System (1)
08:22:17.0983 1952 ================ Scan VBR ==================================
08:22:17.0983 1952 [ 1A0159DCAB1C3BFB526EBAE177DE9F9F ] \Device\Harddisk0\DR0\Partition1
08:22:17.0998 1952 \Device\Harddisk0\DR0\Partition1 - ok
08:22:17.0998 1952 ============================================================
08:22:17.0998 1952 Scan finished
08:22:17.0998 1952 ============================================================
08:22:18.0014 3316 Detected object count: 1
08:22:18.0014 3316 Actual detected object count: 1
08:22:45.0373 3316 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
08:22:45.0404 3316 \Device\Harddisk0\DR0\TDLFS\tdl - copied to quarantine
08:22:45.0420 3316 \Device\Harddisk0\DR0\TDLFS\rsrc.dat - copied to quarantine
08:22:45.0420 3316 \Device\Harddisk0\DR0\TDLFS\bckfg.tmp - copied to quarantine
08:22:45.0467 3316 \Device\Harddisk0\DR0\TDLFS\tdlcmd.dll - copied to quarantine
08:22:45.0592 3316 \Device\Harddisk0\DR0\TDLFS\keywords - copied to quarantine
08:22:45.0592 3316 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Quarantine
08:22:55.0936 3000 ============================================================
08:22:55.0936 3000 Scan started
08:22:55.0936 3000 Mode: Manual; TDLFS;
08:22:55.0936 3000 ============================================================
08:22:56.0420 3000 ================ Scan system memory ========================
08:22:56.0436 3000 System memory - ok
08:22:56.0436 3000 ================ Scan services =============================
08:22:56.0529 3000 [ C0393EB99A6C72C6BEF9BFC4A72B33A6 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
08:22:56.0529 3000 !SASCORE - ok
08:22:56.0623 3000 [ B33CF4DE909A5B30F526D82053A63C8E ] ABBYY.Licensing.FineReader.Sprint.9.0 C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
08:22:56.0639 3000 ABBYY.Licensing.FineReader.Sprint.9.0 - ok
08:22:56.0748 3000 Abiosdsk - ok
08:22:56.0764 3000 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\System32\DRIVERS\ABP480N5.SYS
08:22:56.0764 3000 abp480n5 - ok
08:22:56.0811 3000 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
08:22:56.0811 3000 ACPI - ok
08:22:56.0842 3000 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
08:22:56.0842 3000 ACPIEC - ok
08:22:56.0889 3000 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
08:22:56.0904 3000 AdobeFlashPlayerUpdateSvc - ok
08:22:56.0920 3000 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\System32\DRIVERS\adpu160m.sys
08:22:56.0920 3000 adpu160m - ok
08:22:56.0951 3000 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
08:22:56.0951 3000 aec - ok
08:22:56.0998 3000 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
08:22:56.0998 3000 AFD - ok
08:22:57.0029 3000 [ 0EBB674888CBDEFD5773341C16DD6A07 ] AFS2K C:\WINDOWS\system32\drivers\AFS2K.sys
08:22:57.0029 3000 AFS2K - ok
08:22:57.0045 3000 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
08:22:57.0045 3000 agp440 - ok
08:22:57.0076 3000 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\System32\DRIVERS\agpCPQ.sys
08:22:57.0076 3000 agpCPQ - ok
08:22:57.0108 3000 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\System32\DRIVERS\aha154x.sys
08:22:57.0108 3000 Aha154x - ok
08:22:57.0123 3000 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\System32\DRIVERS\aic78u2.sys
08:22:57.0123 3000 aic78u2 - ok
08:22:57.0154 3000 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\System32\DRIVERS\aic78xx.sys
08:22:57.0154 3000 aic78xx - ok
08:22:57.0186 3000 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
08:22:57.0186 3000 Alerter - ok
08:22:57.0217 3000 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
08:22:57.0217 3000 ALG - ok
08:22:57.0233 3000 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\System32\DRIVERS\aliide.sys
08:22:57.0233 3000 AliIde - ok
08:22:57.0264 3000 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\System32\DRIVERS\alim1541.sys
08:22:57.0264 3000 alim1541 - ok
08:22:57.0279 3000 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\System32\DRIVERS\amdagp.sys
08:22:57.0279 3000 amdagp - ok
08:22:57.0295 3000 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\System32\DRIVERS\amsint.sys
08:22:57.0295 3000 amsint - ok
08:22:57.0420 3000 [ 73D675514F148B1E69429E1D95E22ADC ] AOL ACS C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
08:22:57.0436 3000 AOL ACS - ok
08:22:57.0514 3000 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
08:22:57.0514 3000 Apple Mobile Device - ok
08:22:57.0529 3000 AppMgmt - ok
08:22:57.0561 3000 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\System32\DRIVERS\asc.sys
08:22:57.0561 3000 asc - ok
08:22:57.0576 3000 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\System32\DRIVERS\asc3350p.sys
08:22:57.0576 3000 asc3350p - ok
08:22:57.0592 3000 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\System32\DRIVERS\asc3550.sys
08:22:57.0592 3000 asc3550 - ok
08:22:57.0733 3000 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
08:22:57.0733 3000 aspnet_state - ok
08:22:57.0764 3000 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
08:22:57.0764 3000 AsyncMac - ok
08:22:57.0811 3000 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
08:22:57.0811 3000 atapi - ok
08:22:57.0826 3000 Atdisk - ok
08:22:57.0858 3000 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
08:22:57.0858 3000 Atmarpc - ok
08:22:57.0873 3000 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
08:22:57.0873 3000 AudioSrv - ok
08:22:57.0889 3000 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
08:22:57.0889 3000 audstub - ok
08:22:57.0904 3000 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
08:22:57.0904 3000 Beep - ok
08:22:57.0951 3000 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
08:22:57.0951 3000 BITS - ok
08:22:58.0029 3000 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
08:22:58.0029 3000 Bonjour Service - ok
08:22:58.0076 3000 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
08:22:58.0076 3000 Browser - ok
08:22:58.0076 3000 bvrp_pci - ok
08:22:58.0108 3000 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\System32\DRIVERS\cbidf2k.sys
08:22:58.0108 3000 cbidf - ok
08:22:58.0123 3000 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
08:22:58.0123 3000 cbidf2k - ok
08:22:58.0154 3000 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\System32\DRIVERS\cd20xrnt.sys
08:22:58.0154 3000 cd20xrnt - ok
08:22:58.0170 3000 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
08:22:58.0170 3000 Cdaudio - ok
08:22:58.0217 3000 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
08:22:58.0217 3000 Cdfs - ok
08:22:58.0248 3000 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
08:22:58.0248 3000 Cdrom - ok
08:22:58.0264 3000 cerc6 - ok
08:22:58.0264 3000 Changer - ok
08:22:58.0311 3000 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
08:22:58.0311 3000 CiSvc - ok
08:22:58.0373 3000 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
08:22:58.0373 3000 ClipSrv - ok
08:22:58.0420 3000 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:22:58.0420 3000 clr_optimization_v2.0.50727_32 - ok
08:22:58.0451 3000 [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde C:\WINDOWS\System32\DRIVERS\cmdide.sys
08:22:58.0451 3000 CmdIde - ok
08:22:58.0467 3000 COMSysApp - ok
08:22:58.0498 3000 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\System32\DRIVERS\cpqarray.sys
08:22:58.0498 3000 Cpqarray - ok
08:22:58.0545 3000 [ 3C8B6609712F4FF78E521F6DCFC4032B ] Creative Service for CDROM Access C:\WINDOWS\System32\CTsvcCDA.exe
08:22:58.0545 3000 Creative Service for CDROM Access - ok
08:22:58.0592 3000 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
08:22:58.0592 3000 CryptSvc - ok
08:22:58.0623 3000 [ B459AE4AFCA570088ADDDBE55EABBC92 ] ctsfm2k C:\WINDOWS\system32\DRIVERS\ctsfm2k.sys
08:22:58.0623 3000 ctsfm2k - ok
08:22:58.0654 3000 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\System32\DRIVERS\dac2w2k.sys
08:22:58.0654 3000 dac2w2k - ok
08:22:58.0686 3000 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\System32\DRIVERS\dac960nt.sys
08:22:58.0686 3000 dac960nt - ok
08:22:58.0748 3000 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
08:22:58.0748 3000 DcomLaunch - ok
08:22:58.0779 3000 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
08:22:58.0779 3000 Dhcp - ok
08:22:58.0826 3000 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
08:22:58.0826 3000 Disk - ok
08:22:58.0842 3000 dmadmin - ok
08:22:58.0889 3000 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
08:22:58.0889 3000 dmboot - ok
08:22:58.0904 3000 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
08:22:58.0920 3000 dmio - ok
08:22:58.0936 3000 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
08:22:58.0936 3000 dmload - ok
08:22:58.0967 3000 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
08:22:58.0967 3000 dmserver - ok
08:22:59.0014 3000 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
08:22:59.0014 3000 DMusic - ok
08:22:59.0045 3000 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
08:22:59.0045 3000 Dnscache - ok
08:22:59.0092 3000 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
08:22:59.0108 3000 Dot3svc - ok
08:22:59.0123 3000 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\System32\DRIVERS\dpti2o.sys
08:22:59.0123 3000 dpti2o - ok
08:22:59.0154 3000 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
08:22:59.0154 3000 drmkaud - ok
08:22:59.0186 3000 [ 7F056A52BCBA3102D2D37A4A2646C807 ] drvmcdb C:\WINDOWS\system32\drivers\drvmcdb.sys
08:22:59.0186 3000 drvmcdb - ok
08:22:59.0217 3000 [ D3C1E501ED42E77574B3095309DD4075 ] drvnddm C:\WINDOWS\system32\drivers\drvnddm.sys
08:22:59.0217 3000 drvnddm - ok
08:22:59.0264 3000 [ FE80901578E7E3DA70299A5AEB2B7FBD ] DSBrokerService C:\Program Files\DellSupport\brkrsvc.exe
08:22:59.0264 3000 DSBrokerService - ok
08:22:59.0311 3000 [ 413F2D5F9D802688242C23B38F767ECB ] DSproct C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys
08:22:59.0311 3000 DSproct - ok
08:22:59.0342 3000 [ DFEABB7CFFFADEA4A912AB95BDC3177A ] dsunidrv C:\WINDOWS\system32\DRIVERS\dsunidrv.sys
08:22:59.0342 3000 dsunidrv - ok
08:22:59.0373 3000 [ D57A8FC800B501AC05B10D00F66D127A ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
08:22:59.0373 3000 E100B - ok
08:22:59.0420 3000 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
08:22:59.0420 3000 EapHost - ok
08:22:59.0467 3000 [ 6E883BF518296A40959131C2304AF714 ] EL90XBC C:\WINDOWS\system32\DRIVERS\el90xbc5.sys
08:22:59.0467 3000 EL90XBC - ok
08:22:59.0498 3000 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
08:22:59.0498 3000 ERSvc - ok
08:22:59.0529 3000 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
08:22:59.0529 3000 Eventlog - ok
08:22:59.0576 3000 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
08:22:59.0576 3000 EventSystem - ok
08:22:59.0623 3000 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
08:22:59.0623 3000 Fastfat - ok
08:22:59.0670 3000 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
08:22:59.0686 3000 FastUserSwitchingCompatibility - ok
08:22:59.0701 3000 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
08:22:59.0701 3000 Fdc - ok
08:22:59.0717 3000 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
08:22:59.0733 3000 Fips - ok
08:22:59.0748 3000 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
08:22:59.0748 3000 Flpydisk - ok
08:22:59.0764 3000 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
08:22:59.0764 3000 FltMgr - ok
08:22:59.0842 3000 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
08:22:59.0842 3000 FontCache3.0.0.0 - ok
08:22:59.0858 3000 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
08:22:59.0858 3000 Fs_Rec - ok
08:22:59.0873 3000 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
08:22:59.0873 3000 Ftdisk - ok
08:22:59.0889 3000 [ 065639773D8B03F33577F6CDAEA21063 ] gameenum C:\WINDOWS\system32\DRIVERS\gameenum.sys
08:22:59.0889 3000 gameenum - ok
08:22:59.0936 3000 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
08:22:59.0936 3000 GEARAspiWDM - ok
08:22:59.0998 3000 [ 0879DC7444A201DF84E69C5DD5083D61 ] getPlusHelper C:\Program Files\NOS\bin\getPlus_Helper.dll
08:22:59.0998 3000 getPlusHelper - ok
08:23:00.0076 3000 [ F0187E45268E86AAAA932CBD9087BEA8 ] GoogleDesktopManager-110309-193829 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
08:23:00.0076 3000 GoogleDesktopManager-110309-193829 - ok
08:23:00.0123 3000 [ 3D81D33D079917E6FB0DA72B4CC14964 ] GoToAssist C:\Program Files\Citrix\GoToAssist\508\g2aservice.exe
08:23:00.0123 3000 GoToAssist - ok
08:23:00.0154 3000 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
08:23:00.0154 3000 Gpc - ok
08:23:00.0186 3000 [ 626A24ED1228580B9518C01930936DF9 ] gupdate1c98c5df6491766 C:\Program Files\Google\Update\GoogleUpdate.exe
08:23:00.0201 3000 gupdate1c98c5df6491766 - ok
08:23:00.0201 3000 [ 626A24ED1228580B9518C01930936DF9 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
08:23:00.0201 3000 gupdatem - ok
08:23:00.0264 3000 [ 408DDD80EEDE47175F6844817B90213E ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
08:23:00.0264 3000 gusvc - ok
08:23:00.0311 3000 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
08:23:00.0311 3000 helpsvc - ok
08:23:00.0342 3000 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
08:23:00.0342 3000 HidServ - ok
08:23:00.0373 3000 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
08:23:00.0373 3000 HidUsb - ok
08:23:00.0404 3000 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
08:23:00.0420 3000 hkmsvc - ok
08:23:00.0451 3000 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\System32\DRIVERS\hpn.sys
08:23:00.0451 3000 hpn - ok
08:23:00.0498 3000 [ 863CC3A82C63C9F60ACF2E85D5310620 ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
08:23:00.0498 3000 HPZid412 - ok
08:23:00.0498 3000 [ 08CB72E95DD75B61F2966B311D0E4366 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
08:23:00.0498 3000 HPZipr12 - ok
08:23:00.0529 3000 [ CA990306ED4EF732AF9695BFF24FC96F ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
08:23:00.0529 3000 HPZius12 - ok
08:23:00.0561 3000 [ 77E4FF0B73BC0AEAAF39BF0C8104231F ] HSFHWBS2 C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
08:23:00.0576 3000 HSFHWBS2 - ok
08:23:00.0623 3000 [ 60E1604729A15EF4A3B05F298427B3B1 ] HSF_DP C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
08:23:00.0623 3000 HSF_DP - ok
08:23:00.0686 3000 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
08:23:00.0686 3000 HTTP - ok
08:23:00.0717 3000 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
08:23:00.0717 3000 HTTPFilter - ok
08:23:00.0733 3000 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
08:23:00.0733 3000 i2omgmt - ok
08:23:00.0748 3000 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\System32\DRIVERS\i2omp.sys
08:23:00.0748 3000 i2omp - ok
08:23:00.0779 3000 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
08:23:00.0779 3000 i8042prt - ok
08:23:00.0826 3000 [ 06B7EF73BA5F302EECC294CDF7E19702 ] i81x C:\WINDOWS\system32\DRIVERS\i81xnt5.sys
08:23:00.0826 3000 i81x - ok
08:23:00.0842 3000 [ 7B5B44EFE5EB9DADFB8EE29700885D23 ] iAimFP0 C:\WINDOWS\system32\DRIVERS\wADV01nt.sys
08:23:00.0858 3000 iAimFP0 - ok
08:23:00.0858 3000 [ EB1F6BAB6C22EDE0BA551B527475F7E9 ] iAimFP1 C:\WINDOWS\system32\DRIVERS\wADV02NT.sys
08:23:00.0858 3000 iAimFP1 - ok
08:23:00.0873 3000 [ 03CE989D846C1AA81145CB22FCB86D06 ] iAimFP2 C:\WINDOWS\system32\DRIVERS\wADV05NT.sys
08:23:00.0873 3000 iAimFP2 - ok
08:23:00.0904 3000 [ 525849B4469DE021D5D61B4DB9BE3A9D ] iAimFP3 C:\WINDOWS\system32\DRIVERS\wSiINTxx.sys
08:23:00.0904 3000 iAimFP3 - ok
08:23:00.0920 3000 [ 589C2BCDB5BD602BF7B63D210407EF8C ] iAimFP4 C:\WINDOWS\system32\DRIVERS\wVchNTxx.sys
08:23:00.0920 3000 iAimFP4 - ok
08:23:00.0936 3000 [ D83BDD5C059667A2F647A6BE5703A4D2 ] iAimTV0 C:\WINDOWS\system32\DRIVERS\wATV01nt.sys
08:23:00.0936 3000 iAimTV0 - ok
08:23:00.0951 3000 [ ED968D23354DAA0D7C621580C012A1F6 ] iAimTV1 C:\WINDOWS\system32\DRIVERS\wATV02NT.sys
08:23:00.0951 3000 iAimTV1 - ok
08:23:00.0967 3000 iAimTV2 - ok
08:23:00.0998 3000 [ D738273F218A224C1DDAC04203F27A84 ] iAimTV3 C:\WINDOWS\system32\DRIVERS\wATV04nt.sys
08:23:00.0998 3000 iAimTV3 - ok
08:23:01.0014 3000 [ 0052D118995CBAB152DAABE6106D1442 ] iAimTV4 C:\WINDOWS\system32\DRIVERS\wCh7xxNT.sys
08:23:01.0014 3000 iAimTV4 - ok
08:23:01.0061 3000 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
08:23:01.0061 3000 IDriverT - ok
08:23:01.0139 3000 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
08:23:01.0154 3000 idsvc - ok
08:23:01.0186 3000 [ DEAD59A2BFBF5CC08693584C608006C5 ] IKFileSec C:\WINDOWS\system32\drivers\ikfilesec.sys
08:23:01.0186 3000 IKFileSec - ok
08:23:01.0201 3000 [ 457813FD0B3C6C52B2583B0997A8096A ] IKSysFlt C:\WINDOWS\system32\drivers\iksysflt.sys
08:23:01.0201 3000 IKSysFlt - ok
08:23:01.0217 3000 [ D7C6C835C4818D5C4A853F474FB5A9FC ] IKSysSec C:\WINDOWS\system32\drivers\iksyssec.sys
08:23:01.0217 3000 IKSysSec - ok
08:23:01.0248 3000 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
08:23:01.0248 3000 Imapi - ok
08:23:01.0264 3000 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
08:23:01.0279 3000 ImapiService - ok
08:23:01.0311 3000 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\System32\DRIVERS\ini910u.sys
08:23:01.0311 3000 ini910u - ok
08:23:01.0326 3000 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\System32\DRIVERS\intelide.sys
08:23:01.0326 3000 IntelIde - ok
08:23:01.0358 3000 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
08:23:01.0358 3000 intelppm - ok
08:23:01.0389 3000 [ 3BB22519A194418D5FEC05D800A19AD0 ] ip6fw C:\WINDOWS\system32\drivers\ip6fw.sys
08:23:01.0389 3000 ip6fw - ok
08:23:01.0420 3000 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
08:23:01.0420 3000 IpFilterDriver - ok
08:23:01.0467 3000 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
08:23:01.0467 3000 IpInIp - ok
08:23:01.0498 3000 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
08:23:01.0498 3000 IpNat - ok
08:23:01.0561 3000 [ 57EDB35EA2FECA88F8B17C0C095C9A56 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
08:23:01.0576 3000 iPod Service - ok
08:23:01.0608 3000 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
08:23:01.0608 3000 IPSec - ok
08:23:01.0639 3000 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
08:23:01.0639 3000 IRENUM - ok
08:23:01.0670 3000 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
08:23:01.0670 3000 isapnp - ok
08:23:01.0764 3000 [ 1834C96FB1F9280BCF6DDFA6DE8338BF ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
08:23:01.0779 3000 JavaQuickStarterService - ok
08:23:01.0811 3000 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
08:23:01.0811 3000 Kbdclass - ok
08:23:01.0842 3000 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
08:23:01.0842 3000 kbdhid - ok
08:23:01.0858 3000 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
08:23:01.0873 3000 kmixer - ok
08:23:01.0889 3000 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
08:23:01.0889 3000 KSecDD - ok
08:23:01.0936 3000 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
08:23:01.0936 3000 lanmanserver - ok
08:23:01.0967 3000 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
08:23:01.0967 3000 lanmanworkstation - ok
08:23:01.0983 3000 lbrtfdc - ok
08:23:02.0029 3000 [ E19C8550B4C6C67FABFFD998EACF440A ] LexBceS C:\WINDOWS\system32\LEXBCES.EXE
08:23:02.0029 3000 LexBceS - ok
08:23:02.0076 3000 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
08:23:02.0076 3000 LmHosts - ok
08:23:02.0123 3000 [ 6DFE7F2E8E8A337263AA5C92A215F161 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
08:23:02.0123 3000 MBAMProtector - ok
08:23:02.0264 3000 [ 43683E970F008C93C9429EF428147A54 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
08:23:02.0279 3000 MBAMService - ok
08:23:02.0342 3000 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
08:23:02.0342 3000 MDM - ok
08:23:02.0373 3000 [ EEAEA6514BA7C9D273B5E87C4E1AAB30 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
08:23:02.0373 3000 mdmxsdk - ok
08:23:02.0467 3000 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
08:23:02.0483 3000 Messenger - ok
08:23:02.0545 3000 [ BAFDD5E28BAEA99D7F4772AF2F5EC7EE ] mfeavfk C:\WINDOWS\system32\drivers\mfeavfk.sys
08:23:02.0545 3000 mfeavfk - ok
08:23:02.0576 3000 [ 1D003E3056A43D881597D6763E83B943 ] mfebopk C:\WINDOWS\system32\drivers\mfebopk.sys
08:23:02.0576 3000 mfebopk - ok
08:23:02.0639 3000 [ 3F138A1C8A0659F329F242D1E389B2CF ] mfehidk C:\WINDOWS\system32\drivers\mfehidk.sys
08:23:02.0639 3000 mfehidk - ok
08:23:02.0686 3000 [ 41FE2F288E05A6C8AB85DD56770FFBAD ] mferkdk C:\WINDOWS\system32\drivers\mferkdk.sys
08:23:02.0686 3000 mferkdk - ok
08:23:02.0717 3000 [ 096B52EA918AA909BA5903D79E129005 ] mfesmfk C:\WINDOWS\system32\drivers\mfesmfk.sys
08:23:02.0717 3000 mfesmfk - ok
08:23:02.0764 3000 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
08:23:02.0764 3000 mnmdd - ok
08:23:02.0811 3000 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\System32\mnmsrvc.exe
08:23:02.0811 3000 mnmsrvc - ok
08:23:02.0826 3000 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
08:23:02.0842 3000 Modem - ok
08:23:02.0873 3000 [ 1992E0D143B09653AB0F9C5E04B0FD65 ] MODEMCSA C:\WINDOWS\system32\drivers\MODEMCSA.sys
08:23:02.0873 3000 MODEMCSA - ok
08:23:02.0889 3000 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
08:23:02.0889 3000 Mouclass - ok
08:23:02.0951 3000 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
08:23:02.0951 3000 mouhid - ok
08:23:02.0967 3000 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
08:23:02.0967 3000 MountMgr - ok
08:23:02.0998 3000 [ D993BEA500E7382DC4E760BF4F35EFCB ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys
08:23:02.0998 3000 MpFilter - ok
08:23:03.0139 3000 [ A69630D039C38018689190234F866D77 ] MpKsld2abacaa c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{FF952E0D-5508-480A-97A3-CEF709F94341}\MpKsld2abacaa.sys
08:23:03.0139 3000 MpKsld2abacaa - ok
08:23:03.0170 3000 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\System32\DRIVERS\mraid35x.sys
08:23:03.0170 3000 mraid35x - ok
08:23:03.0217 3000 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
08:23:03.0217 3000 MRxDAV - ok
08:23:03.0311 3000 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
08:23:03.0311 3000 MRxSmb - ok
08:23:03.0358 3000 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\System32\msdtc.exe
08:23:03.0358 3000 MSDTC - ok
08:23:03.0389 3000 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
08:23:03.0389 3000 Msfs - ok
08:23:03.0404 3000 MSIServer - ok
08:23:03.0436 3000 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
08:23:03.0436 3000 MSKSSRV - ok
08:23:03.0529 3000 [ 24516BF4E12A46CB67302E2CDCB8CDDF ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
08:23:03.0529 3000 MsMpSvc - ok
08:23:03.0561 3000 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
08:23:03.0561 3000 MSPCLOCK - ok
08:23:03.0608 3000 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
08:23:03.0608 3000 MSPQM - ok
08:23:03.0701 3000 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
08:23:03.0701 3000 mssmbios - ok
08:23:03.0748 3000 MSSQL$MICROSOFTBCM - ok
08:23:03.0811 3000 [ CB7524C21727404BD3140DCA32DEB7DE ] MSSQLServerADHelper C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe
08:23:03.0811 3000 MSSQLServerADHelper - ok
08:23:03.0889 3000 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
08:23:03.0889 3000 Mup - ok
08:23:03.0936 3000 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
08:23:03.0936 3000 napagent - ok
08:23:03.0983 3000 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
08:23:03.0998 3000 NDIS - ok
08:23:04.0045 3000 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
08:23:04.0045 3000 NdisTapi - ok
08:23:04.0092 3000 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
08:23:04.0092 3000 Ndisuio - ok
08:23:04.0123 3000 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
08:23:04.0123 3000 NdisWan - ok
08:23:04.0170 3000 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
08:23:04.0170 3000 NDProxy - ok
08:23:04.0217 3000 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
08:23:04.0217 3000 NetBIOS - ok
08:23:04.0248 3000 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
08:23:04.0248 3000 NetBT - ok
08:23:04.0279 3000 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
08:23:04.0295 3000 NetDDE - ok
08:23:04.0295 3000 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
08:23:04.0311 3000 NetDDEdsdm - ok
08:23:04.0342 3000 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
08:23:04.0342 3000 Netlogon - ok
08:23:04.0389 3000 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
08:23:04.0389 3000 Netman - ok
08:23:04.0483 3000 [ 737351F39FEF765234037770ABDD72BD ] NetSvc C:\Program Files\Intel\NCS\Sync\NetSvc.exe
08:23:04.0483 3000 NetSvc - ok
08:23:04.0529 3000 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
08:23:04.0529 3000 NetTcpPortSharing - ok
08:23:04.0904 3000 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
08:23:04.0904 3000 Nla - ok
08:23:04.0967 3000 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
08:23:04.0967 3000 Npfs - ok
08:23:05.0029 3000 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
08:23:05.0029 3000 Ntfs - ok
08:23:05.0045 3000 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
08:23:05.0045 3000 NtLmSsp - ok
08:23:05.0092 3000 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
08:23:05.0108 3000 NtmsSvc - ok
08:23:05.0123 3000 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
08:23:05.0123 3000 Null - ok
08:23:05.0186 3000 [ 66C90AFBF0D10A93789F6544BE459E72 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
08:23:05.0201 3000 nv - ok
08:23:05.0248 3000 [ 557015B4919C4A688771221C1338EED0 ] NVSvc C:\WINDOWS\System32\nvsvc32.exe
08:23:05.0248 3000 NVSvc - ok
08:23:05.0279 3000 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
08:23:05.0279 3000 NwlnkFlt - ok
08:23:05.0311 3000 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
08:23:05.0311 3000 NwlnkFwd - ok
08:23:05.0358 3000 [ 53D5F1278D9EDB21689BBBCECC09108D ] omci C:\WINDOWS\system32\DRIVERS\omci.sys
08:23:05.0358 3000 omci - ok
08:23:05.0389 3000 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:23:05.0389 3000 ose - ok
08:23:05.0436 3000 [ C720C25B2D0C93DC425155F5B6A707F3 ] ossrv C:\WINDOWS\system32\DRIVERS\ctoss2k.sys
08:23:05.0436 3000 ossrv - ok
08:23:05.0514 3000 [ F051107FF80F132882E71E3A5D302EC1 ] P16X C:\WINDOWS\system32\drivers\P16X.sys
08:23:05.0529 3000 P16X - ok
08:23:05.0545 3000 [ C90018BAFDC7098619A4A95B046B30F3 ] P3 C:\WINDOWS\system32\DRIVERS\p3.sys
08:23:05.0545 3000 P3 - ok
08:23:05.0561 3000 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
08:23:05.0561 3000 Parport - ok
08:23:05.0576 3000 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
08:23:05.0576 3000 PartMgr - ok
08:23:05.0623 3000 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
08:23:05.0623 3000 ParVdm - ok
08:23:05.0654 3000 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
08:23:05.0654 3000 PCI - ok
08:23:05.0654 3000 PCIDump - ok
08:23:05.0670 3000 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
08:23:05.0670 3000 PCIIde - ok
08:23:05.0733 3000 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
08:23:05.0733 3000 Pcmcia - ok
08:23:05.0748 3000 PDCOMP - ok
08:23:05.0764 3000 PDFRAME - ok
08:23:05.0764 3000 PDRELI - ok
08:23:05.0779 3000 PDRFRAME - ok
08:23:05.0811 3000 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\System32\DRIVERS\perc2.sys
08:23:05.0811 3000 perc2 - ok
08:23:05.0842 3000 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\System32\DRIVERS\perc2hib.sys
08:23:05.0842 3000 perc2hib - ok
08:23:05.0889 3000 [ 2F5532F9B0F903B26847DA674B4F55B2 ] PfModNT C:\WINDOWS\System32\PfModNT.sys
08:23:05.0889 3000 PfModNT - ok
08:23:05.0904 3000 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
08:23:05.0904 3000 PlugPlay - ok
08:23:05.0936 3000 [ FB03F341FF5380394BF2EE52F1979925 ] Pml Driver HPZ12 C:\WINDOWS\System32\HPZipm12.exe
08:23:05.0936 3000 Pml Driver HPZ12 - ok
08:23:05.0951 3000 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
08:23:05.0951 3000 PolicyAgent - ok
08:23:05.0983 3000 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
08:23:05.0983 3000 PptpMiniport - ok
08:23:06.0014 3000 [ A32BEBAF723557681BFC6BD93E98BD26 ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
08:23:06.0014 3000 Processor - ok
08:23:06.0029 3000 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
08:23:06.0029 3000 ProtectedStorage - ok
08:23:06.0045 3000 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
08:23:06.0045 3000 PSched - ok
08:23:06.0061 3000 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
08:23:06.0061 3000 Ptilink - ok
08:23:06.0108 3000 [ 49452BFCEC22F36A7A9B9C2181BC3042 ] PxHelp20 C:\WINDOWS\system32\DRIVERS\PxHelp20.sys
08:23:06.0123 3000 PxHelp20 - ok
08:23:06.0154 3000 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\System32\DRIVERS\ql1080.sys
08:23:06.0154 3000 ql1080 - ok
08:23:06.0170 3000 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\System32\DRIVERS\ql10wnt.sys
08:23:06.0170 3000 Ql10wnt - ok
08:23:06.0186 3000 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\System32\DRIVERS\ql12160.sys
08:23:06.0186 3000 ql12160 - ok
08:23:06.0201 3000 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\System32\DRIVERS\ql1240.sys
08:23:06.0201 3000 ql1240 - ok
08:23:06.0233 3000 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\System32\DRIVERS\ql1280.sys
08:23:06.0233 3000 ql1280 - ok
08:23:06.0248 3000 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
08:23:06.0248 3000 RasAcd - ok
08:23:06.0279 3000 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
08:23:06.0295 3000 RasAuto - ok
08:23:06.0311 3000 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
08:23:06.0311 3000 Rasl2tp - ok
08:23:06.0342 3000 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
08:23:06.0342 3000 RasMan - ok
08:23:06.0358 3000 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
08:23:06.0358 3000 RasPppoe - ok
08:23:06.0373 3000 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
08:23:06.0373 3000 Raspti - ok
08:23:06.0389 3000 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
08:23:06.0404 3000 Rdbss - ok
08:23:06.0404 3000 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
08:23:06.0404 3000 RDPCDD - ok
08:23:06.0467 3000 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
08:23:06.0467 3000 rdpdr - ok
08:23:06.0529 3000 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
08:23:06.0529 3000 RDPWD - ok
08:23:06.0592 3000 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
08:23:06.0592 3000 RDSessMgr - ok
08:23:06.0623 3000 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
08:23:06.0623 3000 redbook - ok
08:23:06.0670 3000 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
08:23:06.0686 3000 RemoteAccess - ok
08:23:06.0717 3000 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
08:23:06.0717 3000 RpcLocator - ok
08:23:06.0764 3000 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\System32\rpcss.dll
08:23:06.0764 3000 RpcSs - ok
08:23:06.0826 3000 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
08:23:06.0826 3000 RSVP - ok
08:23:06.0858 3000 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
08:23:06.0858 3000 SamSs - ok
08:23:06.0936 3000 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
08:23:06.0951 3000 SASDIFSV - ok
08:23:06.0967 3000 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
08:23:06.0967 3000 SASKUTIL - ok
08:23:07.0014 3000 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
08:23:07.0029 3000 SCardSvr - ok
08:23:07.0076 3000 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
08:23:07.0076 3000 Schedule - ok
08:23:07.0139 3000 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
08:23:07.0139 3000 Secdrv - ok
08:23:07.0186 3000 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
08:23:07.0186 3000 seclogon - ok
08:23:07.0217 3000 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
08:23:07.0233 3000 SENS - ok
08:23:07.0264 3000 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
08:23:07.0264 3000 serenum - ok
08:23:07.0295 3000 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
08:23:07.0295 3000 Serial - ok
08:23:07.0342 3000 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
08:23:07.0342 3000 Sfloppy - ok
08:23:07.0451 3000 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
08:23:07.0451 3000 SharedAccess - ok
08:23:07.0483 3000 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
08:23:07.0483 3000 ShellHWDetection - ok
08:23:07.0483 3000 Simbad - ok
08:23:07.0529 3000 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\System32\DRIVERS\sisagp.sys
08:23:07.0529 3000 sisagp - ok
08:23:07.0561 3000 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\System32\DRIVERS\sparrow.sys
08:23:07.0576 3000 Sparrow - ok
08:23:07.0623 3000 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
08:23:07.0623 3000 splitter - ok
08:23:07.0654 3000 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
08:23:07.0670 3000 Spooler - ok
08:23:07.0670 3000 SQLAgent$MICROSOFTBCM - ok
08:23:07.0717 3000 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
08:23:07.0717 3000 sr - ok
08:23:07.0764 3000 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
08:23:07.0764 3000 srservice - ok
08:23:07.0811 3000 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
08:23:07.0811 3000 Srv - ok
08:23:07.0826 3000 [ 328E8BB94EC58480F60458FB4B8437A7 ] sscdbhk5 C:\WINDOWS\system32\drivers\sscdbhk5.sys
08:23:07.0826 3000 sscdbhk5 - ok
08:23:07.0873 3000 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
08:23:07.0873 3000 SSDPSRV - ok
08:23:07.0889 3000 [ 7EC8B427CEE5C0CDAC066320B93F1355 ] ssrtln C:\WINDOWS\system32\drivers\ssrtln.sys
08:23:07.0889 3000 ssrtln - ok
08:23:07.0920 3000 [ A9573045BAA16EAB9B1085205B82F1ED ] StillCam C:\WINDOWS\system32\DRIVERS\serscan.sys
08:23:07.0920 3000 StillCam - ok
08:23:07.0967 3000 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
08:23:07.0967 3000 stisvc - ok
08:23:07.0983 3000 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
08:23:07.0983 3000 swenum - ok
08:23:08.0014 3000 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
08:23:08.0029 3000 swmidi - ok
08:23:08.0029 3000 SwPrv - ok
08:23:08.0076 3000 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\System32\DRIVERS\symc810.sys
08:23:08.0076 3000 symc810 - ok
08:23:08.0108 3000 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\System32\DRIVERS\symc8xx.sys
08:23:08.0108 3000 symc8xx - ok
08:23:08.0123 3000 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\System32\DRIVERS\sym_hi.sys
08:23:08.0123 3000 sym_hi - ok
08:23:08.0154 3000 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\System32\DRIVERS\sym_u3.sys
08:23:08.0154 3000 sym_u3 - ok
08:23:08.0201 3000 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
08:23:08.0201 3000 sysaudio - ok
08:23:08.0233 3000 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
08:23:08.0233 3000 SysmonLog - ok
08:23:08.0279 3000 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
08:23:08.0279 3000 TapiSrv - ok
08:23:08.0326 3000 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
08:23:08.0342 3000 Tcpip - ok
08:23:08.0373 3000 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
08:23:08.0389 3000 TDPIPE - ok
08:23:08.0404 3000 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
08:23:08.0404 3000 TDTCP - ok
08:23:08.0467 3000 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
08:23:08.0467 3000 TermDD - ok
08:23:08.0529 3000 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
08:23:08.0529 3000 TermService - ok
08:23:08.0608 3000 [ C229BF90443BE8D3BD2B65D7F3AC0F35 ] tfsnboio C:\WINDOWS\system32\dla\tfsnboio.sys
08:23:08.0608 3000 tfsnboio - ok
08:23:08.0623 3000 [ 79EE9FCD7728E54AB8FBC30962F0416F ] tfsncofs C:\WINDOWS\system32\dla\tfsncofs.sys
08:23:08.0623 3000 tfsncofs - ok
08:23:08.0639 3000 [ 9EFB37E7DE17D783A059B653F7E8AFAD ] tfsndrct C:\WINDOWS\system32\dla\tfsndrct.sys
08:23:08.0639 3000 tfsndrct - ok
08:23:08.0686 3000 [ 130254995EBEDCB34D62E8D78EC9DBD0 ] tfsndres C:\WINDOWS\system32\dla\tfsndres.sys
08:23:08.0686 3000 tfsndres - ok
08:23:08.0701 3000 [ 9B40E1E4AEED849812A2E43A388A7E77 ] tfsnifs C:\WINDOWS\system32\dla\tfsnifs.sys
08:23:08.0701 3000 tfsnifs - ok
08:23:08.0717 3000 [ 818047AD850B312705AA17CA96B9427D ] tfsnopio C:\WINDOWS\system32\dla\tfsnopio.sys
08:23:08.0717 3000 tfsnopio - ok
08:23:08.0733 3000 [ 4603E813BCC6DD465CD8D2AFD37FA90D ] tfsnpool C:\WINDOWS\system32\dla\tfsnpool.sys
08:23:08.0733 3000 tfsnpool - ok
08:23:08.0748 3000 [ 6FC2CD904A9A55ACFDFC780A611A75ED ] tfsnudf C:\WINDOWS\system32\dla\tfsnudf.sys
08:23:08.0748 3000 tfsnudf - ok
08:23:08.0795 3000 [ D4AFA4D00F8DB3FD1C15B3FE49C3A96C ] tfsnudfa C:\WINDOWS\system32\dla\tfsnudfa.sys
08:23:08.0795 3000 tfsnudfa - ok
08:23:08.0811 3000 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
08:23:08.0811 3000 Themes - ok
08:23:08.0858 3000 [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde C:\WINDOWS\System32\DRIVERS\toside.sys
08:23:08.0858 3000 TosIde - ok
08:23:08.0889 3000 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
08:23:08.0904 3000 TrkWks - ok
08:23:08.0936 3000 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
08:23:08.0936 3000 Udfs - ok
08:23:08.0967 3000 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\System32\DRIVERS\ultra.sys
08:23:08.0967 3000 ultra - ok
08:23:09.0014 3000 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
08:23:09.0029 3000 Update - ok
08:23:09.0061 3000 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
08:23:09.0076 3000 upnphost - ok
08:23:09.0076 3000 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
08:23:09.0092 3000 UPS - ok
08:23:09.0123 3000 [ 026F7F224F088EE11E383BCA448FFF81 ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
08:23:09.0123 3000 USBAAPL - ok
08:23:09.0154 3000 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
08:23:09.0154 3000 usbccgp - ok
08:23:09.0186 3000 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
08:23:09.0186 3000 usbehci - ok
08:23:09.0186 3000 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
08:23:09.0186 3000 usbhub - ok
08:23:09.0217 3000 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
08:23:09.0217 3000 usbprint - ok
08:23:09.0233 3000 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
08:23:09.0233 3000 usbscan - ok
08:23:09.0264 3000 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
08:23:09.0264 3000 USBSTOR - ok
08:23:09.0295 3000 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
08:23:09.0295 3000 usbuhci - ok
08:23:09.0311 3000 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
08:23:09.0326 3000 VgaSave - ok
08:23:09.0326 3000 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\System32\DRIVERS\viaagp.sys
08:23:09.0326 3000 viaagp - ok
08:23:09.0358 3000 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\System32\DRIVERS\viaide.sys
08:23:09.0358 3000 ViaIde - ok
08:23:09.0389 3000 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
08:23:09.0389 3000 VolSnap - ok
08:23:09.0420 3000 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
08:23:09.0420 3000 VSS - ok
08:23:09.0467 3000 [ 54AF4B1D5459500EF0937F6D33B1914F ] w32time C:\WINDOWS\system32\w32time.dll
08:23:09.0467 3000 w32time - ok
08:23:09.0498 3000 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
08:23:09.0498 3000 Wanarp - ok
08:23:09.0529 3000 [ 0A716C08CB13C3A8F4F51E882DBF7416 ] wanatw C:\WINDOWS\system32\DRIVERS\wanatw4.sys
08:23:09.0545 3000 wanatw - ok
08:23:09.0561 3000 [ 909F2DC0DA7F57D229A05EE90647B2C3 ] WANMiniportService C:\WINDOWS\wanmpsvc.exe
08:23:09.0561 3000 WANMiniportService - ok
08:23:09.0576 3000 WDICA - ok
08:23:09.0608 3000 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
08:23:09.0623 3000 wdmaud - ok
08:23:09.0639 3000 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
08:23:09.0639 3000 WebClient - ok
08:23:09.0701 3000 [ F59ED5A43B988A18EF582BB07B2327A7 ] winachsf C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
08:23:09.0717 3000 winachsf - ok
08:23:09.0779 3000 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
08:23:09.0779 3000 winmgmt - ok
08:23:09.0873 3000 [ 18F347402DA544A780949B8FDF83351B ] WinRM C:\WINDOWS\system32\WsmSvc.dll
08:23:09.0889 3000 WinRM - ok
08:23:09.0951 3000 [ 581176F60885AEF8F78C6E38DCC3CDF9 ] WMDM PMSP Service C:\WINDOWS\System32\MsPMSPSv.exe
08:23:09.0951 3000 WMDM PMSP Service - ok
08:23:09.0998 3000 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
08:23:09.0998 3000 WmdmPmSN - ok
08:23:10.0029 3000 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
08:23:10.0029 3000 WmiApSrv - ok
08:23:10.0139 3000 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
08:23:10.0139 3000 WMPNetworkSvc - ok
08:23:10.0170 3000 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
08:23:10.0170 3000 WpdUsb - ok
08:23:10.0217 3000 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
08:23:10.0217 3000 wscsvc - ok
08:23:10.0248 3000 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
08:23:10.0264 3000 wuauserv - ok
08:23:10.0295 3000 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
08:23:10.0311 3000 WudfPf - ok
08:23:10.0342 3000 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
08:23:10.0342 3000 WudfRd - ok
08:23:10.0389 3000 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
08:23:10.0389 3000 WudfSvc - ok
08:23:10.0436 3000 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
08:23:10.0451 3000 WZCSVC - ok
08:23:10.0498 3000 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
08:23:10.0498 3000 xmlprov - ok
08:23:10.0514 3000 ================ Scan global ===============================
08:23:10.0561 3000 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
08:23:10.0576 3000 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
08:23:10.0608 3000 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
08:23:10.0639 3000 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
08:23:10.0639 3000 [Global] - ok
08:23:10.0639 3000 ================ Scan MBR ==================================
08:23:10.0654 3000 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
08:23:10.0951 3000 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
08:23:10.0951 3000 \Device\Harddisk0\DR0 - detected TDSS File System (1)
08:23:10.0951 3000 ================ Scan VBR ==================================
08:23:10.0951 3000 [ 1A0159DCAB1C3BFB526EBAE177DE9F9F ] \Device\Harddisk0\DR0\Partition1
08:23:10.0967 3000 \Device\Harddisk0\DR0\Partition1 - ok
08:23:10.0967 3000 ============================================================
08:23:10.0967 3000 Scan finished
08:23:10.0967 3000 ============================================================
08:23:10.0983 2732 Detected object count: 1
08:23:10.0983 2732 Actual detected object count: 1
08:23:17.0608 2732 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
08:23:17.0608 2732 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
08:23:23.0623 2716 Deinitialize success


aswMBR:
aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-05 08:28:40
-----------------------------
08:28:40.623 OS Version: Windows 5.1.2600 Service Pack 3
08:28:40.623 Number of processors: 2 586 0x209
08:28:40.623 ComputerName: RAMSEY UserName: Hunter
08:28:41.545 Initialize success
08:43:48.092 AVAST engine defs: 12090501
08:46:09.373 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-e
08:46:09.373 Disk 0 Vendor: ST3120026AS 8.05 Size: 114440MB BusType: 3
08:46:09.389 Disk 0 MBR read successfully
08:46:09.389 Disk 0 MBR scan
08:46:09.420 Disk 0 Windows XP default MBR code
08:46:09.420 Disk 0 Partition 1 00 DE Dell Utility Dell 4.1 39 MB offset 63
08:46:09.467 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 114400 MB offset 80325
08:46:09.498 Disk 0 scanning sectors +234372285
08:46:09.592 Disk 0 scanning C:\WINDOWS\system32\drivers
08:46:49.233 Service scanning
08:47:15.998 Service MpKsld2abacaa c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{FF952E0D-5508-480A-97A3-CEF709F94341}\MpKsld2abacaa.sys **LOCKED** 32
08:47:38.654 Modules scanning
08:48:04.936 Disk 0 trace - called modules:
08:48:04.967 ntoskrnl.exe CLASSPNP.SYS disk.sys atapi.sys hal.dll pciide.sys PCIIDEX.SYS
08:48:04.967 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8a856ab8]
08:48:04.983 3 CLASSPNP.SYS[f7637fd7] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP1T0L0-e[0x8a860b00]
08:48:06.483 AVAST engine scan C:\WINDOWS
08:48:25.233 AVAST engine scan C:\WINDOWS\system32
08:54:18.670 AVAST engine scan C:\WINDOWS\system32\drivers
08:54:57.858 AVAST engine scan C:\Documents and Settings\Hunter
09:04:36.748 AVAST engine scan C:\Documents and Settings\All Users
09:08:29.717 Scan finished successfully
09:09:47.451 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Hunter\Desktop\MBR.dat"
09:09:47.483 The log file has been saved successfully to "C:\Documents and Settings\Hunter\Desktop\aswMBR.txt"


ESET:
No threats found

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:20 AM

Posted 05 September 2012 - 12:45 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#5 woolybugger

woolybugger
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:09:20 AM

Posted 06 September 2012 - 08:55 AM

Malwarebytes:
No threats found on full scan

Minitoolbox:
MiniToolBox by Farbar Version: 23-07-2012
Ran by Hunter (administrator) on 06-09-2012 at 08:34:11
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.no_proxies_on", "localhost,127.0.0.1"

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com

There are 15082 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Intel® PRO/100 VE Network Connection = Local Area Connection 2 (Connected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection 2"

set address name="Local Area Connection 2" source=dhcp
set dns name="Local Area Connection 2" source=dhcp register=PRIMARY
set wins name="Local Area Connection 2" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : Ramsey

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Hybrid

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No



Ethernet adapter Local Area Connection 2:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Intel® PRO/100 VE Network Connection

Physical Address. . . . . . . . . : 00-11-11-02-79-EF

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 192.168.1.2

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.1.254

DHCP Server . . . . . . . . . . . : 192.168.1.254

DNS Servers . . . . . . . . . . . : 192.168.1.254

Lease Obtained. . . . . . . . . . : Thursday, September 06, 2012 8:13:56 AM

Lease Expires . . . . . . . . . . : Thursday, September 06, 2012 9:13:56 AM

DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 192.168.1.254

Name: google.com
Addresses: 74.125.139.138, 74.125.139.139, 74.125.139.100, 74.125.139.101
74.125.139.102, 74.125.139.113



Pinging google.com [74.125.134.100] with 32 bytes of data:



Reply from 74.125.134.100: bytes=32 time=58ms TTL=46

Reply from 74.125.134.100: bytes=32 time=55ms TTL=46



Ping statistics for 74.125.134.100:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 55ms, Maximum = 58ms, Average = 56ms

DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 192.168.1.254

Name: yahoo.com
Addresses: 98.138.253.109, 98.139.183.24, 72.30.38.140



Pinging yahoo.com [98.138.253.109] with 32 bytes of data:



Reply from 98.138.253.109: bytes=32 time=272ms TTL=46

Reply from 98.138.253.109: bytes=32 time=135ms TTL=47



Ping statistics for 98.138.253.109:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 135ms, Maximum = 272ms, Average = 203ms

DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 192.168.1.254

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:



Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 11 11 02 79 ef ...... Intel® PRO/100 VE Network Connection - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.2 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
169.254.0.0 255.255.0.0 192.168.1.2 192.168.1.2 20
192.168.1.0 255.255.255.0 192.168.1.2 192.168.1.2 20
192.168.1.2 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.1.255 255.255.255.255 192.168.1.2 192.168.1.2 20
224.0.0.0 240.0.0.0 192.168.1.2 192.168.1.2 20
255.255.255.255 255.255.255.255 192.168.1.2 192.168.1.2 1
Default Gateway: 192.168.1.254
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\nwprovau.dll [142336] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 04 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/05/2012 09:11:02 AM) (Source: crypt32) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This operation returned because the timeout period expired.

Error: (09/05/2012 09:10:47 AM) (Source: crypt32) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (09/05/2012 09:10:47 AM) (Source: crypt32) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (09/05/2012 08:21:20 AM) (Source: crypt32) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This operation returned because the timeout period expired.

Error: (09/05/2012 08:21:05 AM) (Source: crypt32) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (09/05/2012 08:21:05 AM) (Source: crypt32) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (07/05/2012 00:00:22 PM) (Source: crypt32) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This operation returned because the timeout period expired.

Error: (06/18/2012 09:10:08 AM) (Source: Application Hang) (User: )
Description: Hanging application iexplore.exe, version 8.0.6001.18702, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (06/06/2012 10:16:58 AM) (Source: Application Hang) (User: )
Description: Hanging application OUTLOOK.EXE, version 11.0.8326.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (05/03/2012 03:45:20 PM) (Source: Application Hang) (User: )
Description: Hanging application iexplore.exe, version 8.0.6001.18702, hang module hungapp, version 0.0.0.0, hang address 0x00000000.


System errors:
=============
Error: (08/14/2012 09:32:40 AM) (Source: Microsoft Antimalware) (User: )
Description: %Trojan:JS/Redirector.JW60 has encountered a critical error when taking action on malware or other potentially unwanted software.

For more information please see the following:
%Trojan:JS/Redirector.JW603

Name: Trojan:JS/Redirector.JW

ID: 2147658035

Severity: %Trojan:JS/Redirector.JW600

Category: %Trojan:JS/Redirector.JW602

Path: 4.0.1526.02

Detection Origin: 4.0.1526.04

Detection Type: 4.0.1526.08

Detection Source: %Trojan:JS/Redirector.JW608

User: {574A1084-EC47-40D1-8280-10354A40DDF4}9

Process Name: %Trojan:JS/Redirector.JW609

Action: {574A1084-EC47-40D1-8280-10354A40DDF4}1

Action Status: {574A1084-EC47-40D1-8280-10354A40DDF4}8

Error Code: {574A1084-EC47-40D1-8280-10354A40DDF4}3

Error description: {574A1084-EC47-40D1-8280-10354A40DDF4}4

Signature Version: 2012-08-14T14:31:53.328Z1

Engine Version: 2012-08-14T14:31:53.328Z2

Error: (07/25/2012 00:47:51 PM) (Source: Service Control Manager) (User: )
Description: The Application Management service terminated with the following error:
%%126

Error: (07/25/2012 00:47:51 PM) (Source: Service Control Manager) (User: )
Description: The Application Management service terminated with the following error:
%%126

Error: (07/25/2012 00:47:51 PM) (Source: Service Control Manager) (User: )
Description: The Application Management service terminated with the following error:
%%126

Error: (07/25/2012 00:47:51 PM) (Source: Service Control Manager) (User: )
Description: The Application Management service terminated with the following error:
%%126

Error: (07/25/2012 00:47:51 PM) (Source: Service Control Manager) (User: )
Description: The Application Management service terminated with the following error:
%%126

Error: (07/25/2012 00:47:51 PM) (Source: Service Control Manager) (User: )
Description: The Application Management service terminated with the following error:
%%126

Error: (07/25/2012 00:47:51 PM) (Source: Service Control Manager) (User: )
Description: The Application Management service terminated with the following error:
%%126

Error: (07/25/2012 00:47:51 PM) (Source: Service Control Manager) (User: )
Description: The Application Management service terminated with the following error:
%%126

Error: (07/25/2012 00:47:50 PM) (Source: Service Control Manager) (User: )
Description: The Application Management service terminated with the following error:
%%126


Microsoft Office Sessions:
=========================
Error: (09/05/2012 09:11:02 AM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txtThis operation returned because the timeout period expired.

Error: (09/05/2012 09:10:47 AM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (09/05/2012 09:10:47 AM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (09/05/2012 08:21:20 AM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txtThis operation returned because the timeout period expired.

Error: (09/05/2012 08:21:05 AM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (09/05/2012 08:21:05 AM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (07/05/2012 00:00:22 PM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txtThis operation returned because the timeout period expired.

Error: (06/18/2012 09:10:08 AM) (Source: Application Hang)(User: )
Description: iexplore.exe8.0.6001.18702hungapp0.0.0.000000000

Error: (06/06/2012 10:16:58 AM) (Source: Application Hang)(User: )
Description: OUTLOOK.EXE11.0.8326.0hungapp0.0.0.000000000

Error: (05/03/2012 03:45:20 PM) (Source: Application Hang)(User: )
Description: iexplore.exe8.0.6001.18702hungapp0.0.0.000000000


=========================== Installed Programs ============================

ABBYY FineReader 9.0 Sprint (Version: 9.01.513.58212)
Adobe Acrobat 5.0 (Version: 5.1)
Adobe AIR (Version: 3.0.0.4080)
Adobe Download Manager (Version: 1.6.2.63)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.271)
Adobe Flash Player 11 Plugin (Version: 11.3.300.271)
Adobe Reader X (10.1.4) (Version: 10.1.4)
Adobe Shockwave Player 11.6 (Version: 11.6.5.635)
America Online (Choose which version to remove)
AOL Coach Version 1.0(Build:20030807.3)
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
Aquatica Freeware
Auslogics Disk Defrag (Version: version 3.3)
Avalanche (remove only)
Avery Template (Version: 2.0.0.0)
Banctec Service Agreement (Version: 1.00.00)
Banctec Service Agreement (Version: 1.00.0004)
Bonjour (Version: 3.0.0.10)
Business Contact Manager for Outlook 2003 (Version: 1.0.2002.1)
CCleaner (Version: 3.12)
Cobian Backup 8
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Conexant D850 56K V.9x DFVc Modem
Dell Digital Jukebox Driver
Dell Media Experience
Dell Networking Guide (Version: 1.00.0001)
Dell Photo Printer 720
Dell Solution Center (Version: 1.00.0000)
DellSupport (Version: 6.0.3062)
Digital Line Detect (Version: 1.10)
DivX Codec (Version: 6.8.5)
DivX Converter (Version: 7.0.0)
DivX Player (Version: 7.1.0)
DivX Plus DirectShow Filters
DivX Web Player (Version: 1.4.3)
DRAW Pro Premier 1.5 (Version: 1.5.1)
ebgcInfra (Version: 1.1.0)
ebgcRes (Version: 1.0.0)
ebgcSDK (Version: 1.1)
Epson Download Navigator (Version: 1.0.1)
Epson Event Manager (Version: 2.50.0001)
Epson FAX Utility (Version: 1.20.00)
Epson PC-FAX Driver
ESET Online Scanner v3
FAS for Peachtree (Version: 2005.1)
FastAccess® DSL Help Center 4.1 (Version: 4.1.20)
FlySim 1.2
Free Internet Window Washer
Glary Utilities 2.39.0.1310 (Version: 2.39.0.1310)
Google Chrome (Version: 21.0.1180.89)
Google Desktop (Version: 5.9.0911.03589)
Google Earth (Version: 6.2.2.6613)
Google Toolbar for Internet Explorer
Google Toolbar for Internet Explorer (Version: 4.0.0.002)
Google Update Helper (Version: 1.3.21.115)
Google Updater (Version: 2.4.2432.1652)
GoToAssist 8.0.0.508
GoToMeeting 4.5.0.457
Help and Support Customization (Version: 1.00.0000)
Hewlett-Packard ACLM.NET v1.1.0.0 (Version: 1.00.0000)
HiJackThis (Version: 1.0.0)
HijackThis 2.0.2 (Version: 2.0.2)
HP FWUpdateEDO2 (Version: 1.2.0.0)
HP Memories Disc (Version: 1.0.4.805)
hp officejet 6100 series (Version: 1.10.0000)
HP Officejet Pro 8600 Basic Device Software (Version: 25.0.619.0)
HP Officejet Pro 8600 Help (Version: 140.0.2.2)
HP Officejet Pro 8600 Product Improvement Study (Version: 25.0.619.0)
HP Photo and Imaging 2.0 - All-in-One (Version: 1.10.0000)
HP Photo and Imaging 2.0 - All-in-One Drivers (Version: 1.10.0000)
HP Photo and Imaging 2.0 - hp officejet 6100 series
HP Product Detection (Version: 11.14.0001)
HP Update (Version: 5.003.001.001)
I.R.I.S. OCR (Version: 12.3.4.0)
Intel® PRO Network Connections Drivers
Intel® PROSet (Version: 6.05.2001)
Internet Explorer Default Page (Version: 1.00.03)
iTunes (Version: 10.6.1.7)
Jasc Paint Shop Photo Album (Version: 4.0.3)
Jasc Paint Shop Pro 8 Dell Edition (Version: 8.10.0000)
Java Auto Updater (Version: 2.0.2.1)
Java™ 6 Update 20 (Version: 6.0.200)
Learn2 Player (Uninstall Only)
LTCM Client
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Data Access Components KB870669
Microsoft Money 2004 (Version: 12.0.50)
Microsoft Money 2004 System Pack (Version: 12.0.80)
Microsoft Office 2003 Web Components (Version: 11.0.8173.0)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Small Business Edition 2003 (Version: 11.0.8173.0)
Microsoft Office XP Web Components (Version: 11.0.8173.0)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Modem Helper (Version: 2.25)
MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Musicmatch® Jukebox (Version: 9.00.5100)
NCR Label Formats for MS Word Setup
NetWaiting (Version: 2.5.12)
NVIDIA Windows 2000/XP Display Drivers
Peachtree Accounting 2007 (Version: 14.00.00)
Peachtree Complete Accounting 2007 (Version: 14.00.00)
Peachtree First Accounting 2004 (Version: 11.00.01)
PeachTree Signature Ready Forms (Version: 5.7.27)
Pervasive Software PSQL v9.1 Client
Pervasive System Analyzer v9.1
Picasa
Picasa 3 (Version: 3.8)
Privacy Guardian 4.1 (Version: 4.1)
QBFC3.0 (Version: 3.0.00131)
QuickTime (Version: 7.71.80.42)
RealArcade
RealPlayer
Riverfish Screen Saver
Safari (Version: 4.30.19.1)
Sage Software Integration Services (Version: 2.1.2103)
Showcase 5 (Version: 1.01)
Showcase 5 (Version: v1.01)
Sonic DLA (Version: 4.50)
Sonic RecordNow! (Version: 6.5.3)
Sonic Update Manager (Version: 2.9)
Sound Blaster Live!
Spybot - Search & Destroy (Version: 1.6.2)
SpywareBlaster 4.4 (Version: 4.4.0)
Stamps.com
SUPERAntiSpyware (Version: 5.0.1134)
SuperCool Window Washer 1.09 ( Build 4 )
swMSM (Version: 12.0.0.1)
Tax Forms Helper 2011 10.0
Unity Web Player (Version: 2.6.1f3_31223)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Windows Internet Explorer 8 (KB2598845) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2492386) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2616676-v2) (Version: 2)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
VC80CRTRedist - 8.0.50727.762 (Version: 1.0.0)
WebFldrs XP (Version: 9.50.6513)
Windows Genuine Advantage Notifications (KB905474) (Version: 1.7.0017.0)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Management Framework Core
Windows Media Format 11 runtime
Windows Media Player 11
WinPatrol (Version: 18.1.2010.0)
Worms 4 Mayhem Demo (Version: 1.00.0000)
Yahoo! Music Jukebox (Version: 2.2.2.058)

========================= Memory info: ===================================

Percentage of memory in use: 45%
Total physical RAM: 2559 MB
Available physical RAM: 1400.39 MB
Total Pagefile: 6498.4 MB
Available Pagefile: 5499.35 MB
Total Virtual: 2047.88 MB
Available Virtual: 1973.45 MB

========================= Partitions: =====================================

2 Drive c: () (Fixed) (Total:111.72 GB) (Free:69.32 GB) NTFS
4 Drive f: () (Removable) (Total:7.45 GB) (Free:7.35 GB) FAT32

========================= Users: ========================================

User accounts for \\RAMSEY

Administrator ASPNET Guest
HelpAssistant Hunter Rob
SUPPORT_388945a0 SUPPORT_3f151ab9


**** End of log ****


FSS:
Farbar Service Scanner Version: 06-08-2012
Ran by Hunter (administrator) on 06-09-2012 at 08:43:52
Running from "C:\Documents and Settings\Hunter\Local Settings\Temporary Internet Files\Content.IE5\WLPZAPGA"
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
Gpc(6) IPSec(10) NetBT(5) PSched(7) Tcpip(3)
0x0A0000000A000000040000000100000002000000030000000900000008000000050000000600000007000000


**** End of log ****

AdwCleaner:
# AdwCleaner v2.000 - Logfile created 09/06/2012 at 08:48:02
# Updated 30/08/2012 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Hunter - RAMSEY
# Boot Mode : Normal
# Running from : C:\Documents and Settings\Hunter\Local Settings\Temporary Internet Files\Content.IE5\ESHQ320P\adwcleaner[1].exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Documents and Settings\All Users\Application Data\Trymedia
Folder Deleted : C:\Documents and Settings\All Users\Application Data\Viewpoint
Folder Deleted : C:\Program Files\Trymedia
Folder Deleted : C:\Program Files\Viewpoint

***** [Registry] *****

Key Deleted : HKCU\Software\Viewpoint
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKLM\Software\Viewpoint

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

Restored : [HKCU\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]

-\\ Mozilla Firefox v [Unable to get version]

Profile name : default
File : C:\Documents and Settings\Hunter\Application Data\Mozilla\Firefox\Profiles\v78pj2si.default\prefs.js

Deleted : user_pref("browser.search.defaultenginename", "AVG Secure Search");
Deleted : user_pref("browser.search.selectedEngine", "AVG Secure Search");

-\\ Google Chrome v [Unable to get version]

File : C:\Documents and Settings\Hunter\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [2014 octets] - [06/09/2012 08:48:02]

########## EOF - C:\AdwCleaner[S1].txt - [2074 octets] ##########

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:20 AM

Posted 06 September 2012 - 09:11 AM

Any current issues?

download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here

#7 woolybugger

woolybugger
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:09:20 AM

Posted 06 September 2012 - 09:48 AM

I've noticed my computer is a LITTLE slow, and I have the delayed typing effect...It is only on yahoo mail.

Rkill 2.3.6 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 09/06/2012 09:45:58 AM in x86 mode.
Windows Version: Microsoft Windows XP Service Pack 3

Checking for Windows services to stop.

* No malware services found to stop.

Checking for processes to terminate.

* C:\WINDOWS\System32\CTsvcCDA.exe (PID: 128) [WD-HEUR]
* C:\WINDOWS\wanmpsvc.exe (PID: 1780) [WD-HEUR]
* C:\WINDOWS\System32\MsPMSPSv.exe (PID: 180) [WD-HEUR]
* C:\WINDOWS\system32\dla\tfswctrl.exe (PID: 2988) [WD-HEUR]

4 proccesses terminated!

Checking Registry for malware related settings.

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
* HKLM\Software\Classes\.com "@" has been changed to ComFile!
* HKLM\Software\Classes\.com "@"was reset to comfile!


Performing miscellaneous checks.

* No issues found.

Checking Windows Service Integrity:

* Background Intelligent Transfer Service (BITS) is not Running.
Startup Type set to: Manual

Searching for Missing Digital Signatures:

* No issues found.

Program finished at: 09/06/2012 09:47:22 AM
Execution time: 0 hours(s), 1 minute(s), and 24 seconds(s)

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:20 AM

Posted 06 September 2012 - 09:53 AM

Spybot,Superantispyware,spyware blaster

Uninstall two of them

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode

Let me know if that optimzies your browsing speed

#9 woolybugger

woolybugger
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:09:20 AM

Posted 10 September 2012 - 01:32 PM

It does not. It effects me most on my yahoo mail for some reason. When i am typing an email, the first few letters show up, then after that it takes a minute after typing for the other words to show up.

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:20 AM

Posted 10 September 2012 - 09:21 PM

Does it happen on a specific browser?

Can you try typing in safemode with networking?

Does that make a difference?




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users