Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer starts in Safe Mode


  • This topic is locked This topic is locked
13 replies to this topic

#1 Mr Darkwater

Mr Darkwater

  • Members
  • 70 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:40 AM

Posted 09 September 2012 - 04:56 PM

Hi all,


For some reason, my computer starts in what looks like safe mode.

I have ran MalewareBytes. Nothing found.


Any help would be greatly appreciated!




D

Edited by hamluis, 10 September 2012 - 10:50 AM.
Moved from XP to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 jhayz

jhayz

  • BC Advisor
  • 6,922 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:40 AM

Posted 10 September 2012 - 01:30 AM

What happens before this problem arose? Any changes to hardware or software, infections?

Tekken
 


#3 Mr Darkwater

Mr Darkwater
  • Topic Starter

  • Members
  • 70 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:40 AM

Posted 10 September 2012 - 01:55 AM

I did run Maleware again and it picked up 17 bugs. Deleted. Restarted. Same problem. :(

#4 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:02:40 AM

Posted 10 September 2012 - 04:12 AM

Hi -
Have you Updated your MBAM and rescanned yet ?? Also did you scan with SuperantiSpyware Free ??
If you did, were there still infections found ??

Thank You -

#5 Mr Darkwater

Mr Darkwater
  • Topic Starter

  • Members
  • 70 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:40 AM

Posted 10 September 2012 - 11:29 PM

MBAM Updated and rescanned. Found infections. deleted.

Super Updated and scanned. Found infections. deleted.

Avast updated and scanned. Found infections. deleted.



Still boots in what looks like safe mode.

#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:40 PM

Posted 12 September 2012 - 03:39 PM

Reboot into Safe Mode with Networking
How to enter safe mode(XP/Vista)
Using the F8 Method
Restart your computer.
When the machine first starts again it will generally list some equipment that is installed in your machine, amount of memory, hard drives installed etc. At this point you should gently tap the F8 key repeatedly until you are presented with a Windows XP Advanced Options menu.
Select the option for Safe Mode with Networking using the arrow keys.
Then press enter on your keyboard to boot into Safe Mode
.


>>>> Download this file and doubleclick on it to run it. Allow the information to be merged with the registry.

Run RKill....


Download and Run RKill
  • Please download RKill by Grinler from one of the 4 links below and save it to your desktop.

    Link 1
    Link 2
    Link 3
    Link 4

  • Before we begin, you should disable your anti-malware softwares you have installed so they do not interfere RKill running as some anti-malware softwares detect RKill as malicious. Please refer to this page if you are not sure how.
  • Double-click on Rkill on your desktop to run it. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • If nothing happens or if the tool does not run, please let me know in your next reply

Do not reboot your computer after running rkill as the malware programs will start again. Or if rebooting is required run it again.


If you continue having problems running rkill.com, you can download iExplore.exe or eXplorer.exe, which are renamed copies of rkill.com, and try them instead.


Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click on Change Parameters
  • Put a check in the box of Detect TDLFS file system
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log has a name like: TDSSKiller.Version_Date_Time_log.txt.



Rerun MBAM (MalwareBytes) like this:

Open MBAM in normal mode and click Update tab, select Check for Updates,when done
click Scanner tab,select Quick scan and scan (normal mode).
After scan click Remove Selected, Post new scan log and Reboot into normal mode.





If you can run this in Normal do so,if not use safe again..
Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices
  • List Users, Partitions and Memory size.
  • List Minidump Files
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 Mr Darkwater

Mr Darkwater
  • Topic Starter

  • Members
  • 70 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:40 AM

Posted 14 September 2012 - 06:39 PM

TDSSKiller



13:15:04.0046 0452 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
13:15:04.0656 0452 ============================================================
13:15:04.0656 0452 Current date / time: 2012/09/14 13:15:04.0656
13:15:04.0656 0452 SystemInfo:
13:15:04.0656 0452
13:15:04.0656 0452 OS Version: 5.1.2600 ServicePack: 3.0
13:15:04.0656 0452 Product type: Workstation
13:15:04.0656 0452 ComputerName: PAST-594BFF0499
13:15:04.0656 0452 UserName: Administrator
13:15:04.0656 0452 Windows directory: C:\WINDOWS
13:15:04.0656 0452 System windows directory: C:\WINDOWS
13:15:04.0656 0452 Processor architecture: Intel x86
13:15:04.0656 0452 Number of processors: 2
13:15:04.0656 0452 Page size: 0x1000
13:15:04.0656 0452 Boot type: Safe boot with network
13:15:04.0656 0452 ============================================================
13:15:05.0984 0452 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
13:15:05.0984 0452 Drive \Device\Harddisk1\DR2 - Size: 0x1D1C1115E00 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
13:15:05.0984 0452 Drive \Device\Harddisk2\DR3 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
13:15:06.0000 0452 ============================================================
13:15:06.0000 0452 \Device\Harddisk0\DR0:
13:15:06.0000 0452 MBR partitions:
13:15:06.0000 0452 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x254297C1
13:15:06.0000 0452 \Device\Harddisk1\DR2:
13:15:06.0000 0452 MBR partitions:
13:15:06.0000 0452 \Device\Harddisk1\DR2\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xE8E074C1
13:15:06.0000 0452 \Device\Harddisk2\DR3:
13:15:06.0000 0452 MBR partitions:
13:15:06.0000 0452 \Device\Harddisk2\DR3\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xDF93782
13:15:06.0000 0452 ============================================================
13:15:06.0031 0452 C: <-> \Device\Harddisk0\DR0\Partition1
13:15:06.0203 0452 F: <-> \Device\Harddisk2\DR3\Partition1
13:15:06.0203 0452 L: <-> \Device\Harddisk1\DR2\Partition1
13:15:06.0203 0452 ============================================================
13:15:06.0203 0452 Initialize success
13:15:06.0203 0452 ============================================================
13:15:24.0500 1908 ============================================================
13:15:24.0500 1908 Scan started
13:15:24.0500 1908 Mode: Manual; TDLFS;
13:15:24.0500 1908 ============================================================
13:15:24.0843 1908 ================ Scan system memory ========================
13:15:24.0843 1908 System memory - ok
13:15:24.0843 1908 ================ Scan services =============================
13:15:24.0968 1908 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
13:15:24.0968 1908 !SASCORE - ok
13:15:24.0968 1908 .afd - ok
13:15:24.0984 1908 .cdrom - ok
13:15:24.0984 1908 .mrxsmb - ok
13:15:25.0031 1908 .netbt - ok
13:15:25.0031 1908 .serial - ok
13:15:25.0156 1908 [ CD40157A1A5CDDC6CA219AB14A17692A ] 0618813drv C:\WINDOWS\system32\DRIVERS\0618813drv.sys
13:15:25.0171 1908 0618813drv - ok
13:15:25.0187 1908 [ 186B54479D98E48AEE0E9ADA4B3C4D31 ] 12208777 C:\WINDOWS\system32\DRIVERS\12208777.sys
13:15:25.0187 1908 12208777 - ok
13:15:25.0250 1908 [ 186B54479D98E48AEE0E9ADA4B3C4D31 ] 15960376 C:\WINDOWS\system32\DRIVERS\15960376.sys
13:15:25.0250 1908 15960376 - ok
13:15:25.0265 1908 [ 186B54479D98E48AEE0E9ADA4B3C4D31 ] 33112032 C:\WINDOWS\system32\DRIVERS\33112032.sys
13:15:25.0281 1908 33112032 - ok
13:15:25.0296 1908 [ 186B54479D98E48AEE0E9ADA4B3C4D31 ] 56331161 C:\WINDOWS\system32\DRIVERS\56331161.sys
13:15:25.0296 1908 56331161 - ok
13:15:25.0359 1908 [ 186B54479D98E48AEE0E9ADA4B3C4D31 ] 56823756 C:\WINDOWS\system32\DRIVERS\56823756.sys
13:15:25.0359 1908 56823756 - ok
13:15:25.0390 1908 [ 186B54479D98E48AEE0E9ADA4B3C4D31 ] 63089885 C:\WINDOWS\system32\DRIVERS\63089885.sys
13:15:25.0390 1908 63089885 - ok
13:15:25.0437 1908 [ 0352A73CD6B1782EA3ED7A03A8268F55 ] Aavmker4 C:\WINDOWS\system32\drivers\Aavmker4.sys
13:15:25.0437 1908 Aavmker4 - ok
13:15:25.0453 1908 Abiosdsk - ok
13:15:25.0453 1908 abp480n5 - ok
13:15:25.0515 1908 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
13:15:25.0515 1908 ACPI - ok
13:15:25.0562 1908 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
13:15:25.0562 1908 ACPIEC - ok
13:15:25.0562 1908 adfs - ok
13:15:25.0578 1908 adpu160m - ok
13:15:25.0625 1908 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
13:15:25.0625 1908 aec - ok
13:15:25.0687 1908 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
13:15:25.0687 1908 AFD - ok
13:15:25.0703 1908 Aha154x - ok
13:15:25.0703 1908 aic78u2 - ok
13:15:25.0718 1908 aic78xx - ok
13:15:25.0750 1908 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
13:15:25.0750 1908 Alerter - ok
13:15:25.0781 1908 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
13:15:25.0781 1908 ALG - ok
13:15:25.0781 1908 AliIde - ok
13:15:25.0796 1908 amsint - ok
13:15:25.0796 1908 appliandMP - ok
13:15:25.0828 1908 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
13:15:25.0828 1908 AppMgmt - ok
13:15:25.0828 1908 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
13:15:25.0828 1908 Arp1394 - ok
13:15:25.0843 1908 asc - ok
13:15:25.0843 1908 asc3350p - ok
13:15:25.0859 1908 asc3550 - ok
13:15:25.0968 1908 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
13:15:25.0968 1908 aspnet_state - ok
13:15:26.0015 1908 [ F5DC168BF77572D51BE28BA261B30CB4 ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
13:15:26.0015 1908 aswFsBlk - ok
13:15:26.0015 1908 [ 2B9B1DF809E965EF63402CBBA6DB50AE ] aswMon2 C:\WINDOWS\system32\drivers\aswMon2.sys
13:15:26.0015 1908 aswMon2 - ok
13:15:26.0046 1908 [ B7D5E4486BA658ED08624D8084ABB830 ] aswRdr C:\WINDOWS\system32\drivers\aswRdr.sys
13:15:26.0046 1908 aswRdr - ok
13:15:26.0109 1908 [ 30E45AF8B4D83176CA850FC9699E860B ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
13:15:26.0109 1908 aswSnx - ok
13:15:26.0125 1908 [ F04BDBCB965C05C51F4A7DE7B62063D6 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
13:15:26.0140 1908 aswSP - ok
13:15:26.0156 1908 [ DFE9152ABFA89BB8CFDC057409B2D4DA ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
13:15:26.0156 1908 aswTdi - ok
13:15:26.0187 1908 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
13:15:26.0187 1908 AsyncMac - ok
13:15:26.0203 1908 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
13:15:26.0203 1908 atapi - ok
13:15:26.0203 1908 Atdisk - ok
13:15:26.0265 1908 [ 50F682357FB6EBB1502794D6DE9EC6A5 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
13:15:26.0265 1908 Ati HotKey Poller - ok
13:15:26.0328 1908 [ FDC4B0D5E8D477C75D962F395C3A25F0 ] ATI Smart C:\WINDOWS\system32\ati2sgag.exe
13:15:26.0343 1908 ATI Smart - ok
13:15:26.0421 1908 [ 8759322FFC1A50569C1E5528EE8026B7 ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
13:15:26.0421 1908 ati2mtag - ok
13:15:26.0484 1908 [ 924971A182E07463765EF9FA8876F24F ] AtiHDAudioService C:\WINDOWS\system32\drivers\AtihdXP3.sys
13:15:26.0484 1908 AtiHDAudioService - ok
13:15:26.0515 1908 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
13:15:26.0531 1908 Atmarpc - ok
13:15:26.0546 1908 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
13:15:26.0546 1908 AudioSrv - ok
13:15:26.0609 1908 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
13:15:26.0609 1908 audstub - ok
13:15:26.0703 1908 [ 04AC21E821F259845BD7367CEE057290 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
13:15:26.0703 1908 avast! Antivirus - ok
13:15:26.0765 1908 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
13:15:26.0765 1908 BITS - ok
13:15:26.0828 1908 [ F832F1505AD8B83474BD9A5B1B985E01 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
13:15:26.0828 1908 Bonjour Service - ok
13:15:26.0875 1908 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
13:15:26.0875 1908 Browser - ok
13:15:26.0890 1908 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
13:15:26.0890 1908 cbidf2k - ok
13:15:26.0906 1908 [ FDC06E2ADA8C468EBB161624E03976CF ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
13:15:26.0906 1908 CCDECODE - ok
13:15:26.0921 1908 cd20xrnt - ok
13:15:26.0953 1908 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
13:15:26.0953 1908 Cdaudio - ok
13:15:27.0000 1908 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
13:15:27.0015 1908 Cdfs - ok
13:15:27.0046 1908 [ 1F4260CC5B42272D71F79E570A27A4FE ] cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
13:15:27.0062 1908 cdrom - ok
13:15:27.0062 1908 Changer - ok
13:15:27.0078 1908 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
13:15:27.0093 1908 CiSvc - ok
13:15:27.0093 1908 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
13:15:27.0093 1908 ClipSrv - ok
13:15:27.0171 1908 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:15:27.0171 1908 clr_optimization_v2.0.50727_32 - ok
13:15:27.0203 1908 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:15:27.0203 1908 clr_optimization_v4.0.30319_32 - ok
13:15:27.0203 1908 CmdIde - ok
13:15:27.0250 1908 [ 2978318127965CBB9F66D45428AA3DDF ] COMMONFX.DLL C:\WINDOWS\system32\COMMONFX.DLL
13:15:27.0250 1908 COMMONFX.DLL - ok
13:15:27.0296 1908 [ 216F2C5CD4B5858D9A80A09A5479562B ] CompFilter C:\WINDOWS\system32\DRIVERS\lvbusflt.sys
13:15:27.0296 1908 CompFilter - ok
13:15:27.0296 1908 COMSysApp - ok
13:15:27.0296 1908 Cpqarray - ok
13:15:27.0359 1908 [ 3C8B6609712F4FF78E521F6DCFC4032B ] Creative Service for CDROM Access C:\WINDOWS\system32\CTsvcCDA.exe
13:15:27.0359 1908 Creative Service for CDROM Access - ok
13:15:27.0406 1908 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
13:15:27.0406 1908 CryptSvc - ok
13:15:27.0453 1908 [ 134CDD242AF1AE9961F065FBA3508A7B ] CT20XUT C:\WINDOWS\system32\drivers\CT20XUT.SYS
13:15:27.0453 1908 CT20XUT - ok
13:15:27.0468 1908 [ C338A508EFB295478F1AB4FABACEDC15 ] CT20XUT.DLL C:\WINDOWS\system32\CT20XUT.DLL
13:15:27.0468 1908 CT20XUT.DLL - ok
13:15:27.0515 1908 [ 93439BAF09CE3C6D4CE55DA5B07D1B6A ] ctac32k C:\WINDOWS\system32\drivers\ctac32k.sys
13:15:27.0531 1908 ctac32k - ok
13:15:27.0531 1908 [ 6AB74512F09D673452D63DDEC9014DB5 ] ctaud2k C:\WINDOWS\system32\drivers\ctaud2k.sys
13:15:27.0546 1908 ctaud2k - ok
13:15:27.0562 1908 [ 966B19E9F8136AFBEEC9A2F0CB1F2564 ] CTAUDFX.DLL C:\WINDOWS\system32\CTAUDFX.DLL
13:15:27.0562 1908 CTAUDFX.DLL - ok
13:15:27.0609 1908 [ 788DB5D99B2CA44FF61D8ED7B3C67C2E ] ctdvda2k C:\WINDOWS\system32\drivers\ctdvda2k.sys
13:15:27.0625 1908 ctdvda2k - ok
13:15:27.0640 1908 [ BD4BF4BA0791E9C8FB68B317443D2064 ] CTEAPSFX.DLL C:\WINDOWS\system32\CTEAPSFX.DLL
13:15:27.0640 1908 CTEAPSFX.DLL - ok
13:15:27.0656 1908 [ FE0823D8280A51A5575AE2FD9A3732E2 ] CTEDSPFX.DLL C:\WINDOWS\system32\CTEDSPFX.DLL
13:15:27.0671 1908 CTEDSPFX.DLL - ok
13:15:27.0687 1908 [ EAF112535481AB76A022A274F1A8F924 ] CTEDSPIO.DLL C:\WINDOWS\system32\CTEDSPIO.DLL
13:15:27.0687 1908 CTEDSPIO.DLL - ok
13:15:27.0703 1908 [ DB50923F48B8A8FD80329DAE21AD316C ] CTEDSPSY.DLL C:\WINDOWS\system32\CTEDSPSY.DLL
13:15:27.0703 1908 CTEDSPSY.DLL - ok
13:15:27.0718 1908 [ C7F3E238871C8A0473430F8F87921EC5 ] CTERFXFX.DLL C:\WINDOWS\system32\CTERFXFX.DLL
13:15:27.0718 1908 CTERFXFX.DLL - ok
13:15:27.0796 1908 [ 3A9AD039D94BE8D955AD0B2CB207378D ] CTEXFIFX C:\WINDOWS\system32\drivers\CTEXFIFX.SYS
13:15:27.0812 1908 CTEXFIFX - ok
13:15:27.0843 1908 [ 06F1FA6BB9584E7042D622546CA15CF7 ] CTEXFIFX.DLL C:\WINDOWS\system32\CTEXFIFX.DLL
13:15:27.0843 1908 CTEXFIFX.DLL - ok
13:15:27.0890 1908 [ 4602AD8C8E1B285E1A23A957F487DA86 ] CTHWIUT C:\WINDOWS\system32\drivers\CTHWIUT.SYS
13:15:27.0890 1908 CTHWIUT - ok
13:15:27.0906 1908 [ 96EAD0D0472C620A5BC94DDE1A6E1B53 ] CTHWIUT.DLL C:\WINDOWS\system32\CTHWIUT.DLL
13:15:27.0906 1908 CTHWIUT.DLL - ok
13:15:27.0953 1908 [ D42B84671F2193330215D3C375A2E948 ] ctprxy2k C:\WINDOWS\system32\drivers\ctprxy2k.sys
13:15:27.0953 1908 ctprxy2k - ok
13:15:27.0984 1908 [ 14CAD906DBEC361B572AB2EB1CCF390A ] CTSBLFX.DLL C:\WINDOWS\system32\CTSBLFX.DLL
13:15:27.0984 1908 CTSBLFX.DLL - ok
13:15:28.0031 1908 [ FCBB8EA6FE935D2C531D3A4DEE9F985B ] ctsfm2k C:\WINDOWS\system32\drivers\ctsfm2k.sys
13:15:28.0046 1908 ctsfm2k - ok
13:15:28.0062 1908 [ 12A7B253F9128B3B68A9979827047B76 ] CTUSFSYN C:\WINDOWS\system32\drivers\ctusfsyn.sys
13:15:28.0062 1908 CTUSFSYN - ok
13:15:28.0062 1908 dac2w2k - ok
13:15:28.0062 1908 dac960nt - ok
13:15:28.0140 1908 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
13:15:28.0140 1908 DcomLaunch - ok
13:15:28.0187 1908 [ 31273C758C6DF7FC27B00BE78C7220E9 ] DFUBTUSB C:\WINDOWS\system32\Drivers\frmupgr.sys
13:15:28.0187 1908 DFUBTUSB - ok
13:15:28.0218 1908 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
13:15:28.0218 1908 Dhcp - ok
13:15:28.0281 1908 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
13:15:28.0281 1908 Disk - ok
13:15:28.0281 1908 dmadmin - ok
13:15:28.0312 1908 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
13:15:28.0328 1908 dmboot - ok
13:15:28.0343 1908 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\DRIVERS\dmio.sys
13:15:28.0343 1908 dmio - ok
13:15:28.0343 1908 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
13:15:28.0343 1908 dmload - ok
13:15:28.0375 1908 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
13:15:28.0375 1908 dmserver - ok
13:15:28.0437 1908 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
13:15:28.0437 1908 DMusic - ok
13:15:28.0484 1908 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
13:15:28.0484 1908 Dnscache - ok
13:15:28.0515 1908 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
13:15:28.0531 1908 Dot3svc - ok
13:15:28.0531 1908 dpti2o - ok
13:15:28.0546 1908 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
13:15:28.0546 1908 drmkaud - ok
13:15:28.0546 1908 dump_wmimmc - ok
13:15:28.0562 1908 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
13:15:28.0562 1908 EapHost - ok
13:15:28.0609 1908 [ 04AFE5C11777E33178EC11E1FAC47B07 ] emupia C:\WINDOWS\system32\drivers\emupia2k.sys
13:15:28.0609 1908 emupia - ok
13:15:28.0609 1908 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
13:15:28.0625 1908 ERSvc - ok
13:15:28.0656 1908 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
13:15:28.0656 1908 Eventlog - ok
13:15:28.0703 1908 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
13:15:28.0718 1908 EventSystem - ok
13:15:28.0750 1908 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
13:15:28.0750 1908 Fastfat - ok
13:15:28.0796 1908 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
13:15:28.0796 1908 FastUserSwitchingCompatibility - ok
13:15:28.0843 1908 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
13:15:28.0843 1908 Fdc - ok
13:15:28.0859 1908 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
13:15:28.0859 1908 Fips - ok
13:15:28.0906 1908 [ 227846995AFEEFA70D328BF5334A86A5 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
13:15:28.0921 1908 FLEXnet Licensing Service - ok
13:15:28.0921 1908 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
13:15:28.0921 1908 Flpydisk - ok
13:15:28.0968 1908 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
13:15:28.0968 1908 FltMgr - ok
13:15:29.0031 1908 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
13:15:29.0031 1908 FontCache3.0.0.0 - ok
13:15:29.0062 1908 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
13:15:29.0062 1908 Fs_Rec - ok
13:15:29.0078 1908 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
13:15:29.0078 1908 Ftdisk - ok
13:15:29.0125 1908 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
13:15:29.0125 1908 GEARAspiWDM - ok
13:15:29.0171 1908 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
13:15:29.0171 1908 Gpc - ok
13:15:29.0234 1908 [ 41FCE1833D8F659ACC56CB0EE43B2CED ] ha20x2k C:\WINDOWS\system32\drivers\ha20x2k.sys
13:15:29.0250 1908 ha20x2k - ok
13:15:29.0265 1908 [ 56BF27D7A539F9E6BBC1DE201ABA0EDF ] HdAudAddService C:\WINDOWS\system32\drivers\AtiHdAud.sys
13:15:29.0265 1908 HdAudAddService - ok
13:15:29.0312 1908 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
13:15:29.0312 1908 HDAudBus - ok
13:15:29.0375 1908 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
13:15:29.0375 1908 helpsvc - ok
13:15:29.0421 1908 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
13:15:29.0421 1908 HidServ - ok
13:15:29.0484 1908 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys
13:15:29.0484 1908 hidusb - ok
13:15:29.0515 1908 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
13:15:29.0515 1908 hkmsvc - ok
13:15:29.0515 1908 hpn - ok
13:15:29.0546 1908 [ D03D10F7DED688FECF50F8FBF1EA9B8A ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
13:15:29.0546 1908 HPZid412 - ok
13:15:29.0562 1908 [ 0B4FDA2657C3E0315EAA57F9C6D4FD1F ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
13:15:29.0562 1908 HPZipr12 - ok
13:15:29.0578 1908 [ ABCB05CCDBF03000354B9553820E39F8 ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
13:15:29.0578 1908 HPZius12 - ok
13:15:29.0609 1908 [ CFF11BD4AF297A7BCF3EB41EE4AD6D14 ] HssDrv C:\WINDOWS\system32\DRIVERS\HssDrv.sys
13:15:29.0609 1908 HssDrv - ok
13:15:29.0656 1908 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
13:15:29.0656 1908 HTTP - ok
13:15:29.0703 1908 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
13:15:29.0703 1908 HTTPFilter - ok
13:15:29.0703 1908 i2omgmt - ok
13:15:29.0703 1908 i2omp - ok
13:15:29.0750 1908 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
13:15:29.0750 1908 i8042prt - ok
13:15:29.0875 1908 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
13:15:29.0875 1908 IDriverT - ok
13:15:29.0937 1908 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
13:15:29.0953 1908 idsvc - ok
13:15:29.0984 1908 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
13:15:29.0984 1908 Imapi - ok
13:15:30.0046 1908 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
13:15:30.0046 1908 ImapiService - ok
13:15:30.0046 1908 ini910u - ok
13:15:30.0156 1908 [ 60D7460B07012D364CED11DD9FD83E1F ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
13:15:30.0218 1908 IntcAzAudAddService - ok
13:15:30.0218 1908 IntelIde - ok
13:15:30.0265 1908 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
13:15:30.0265 1908 intelppm - ok
13:15:30.0281 1908 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
13:15:30.0296 1908 Ip6Fw - ok
13:15:30.0296 1908 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
13:15:30.0296 1908 IpFilterDriver - ok
13:15:30.0312 1908 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
13:15:30.0312 1908 IpInIp - ok
13:15:30.0343 1908 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
13:15:30.0359 1908 IpNat - ok
13:15:30.0406 1908 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
13:15:30.0406 1908 IPSec - ok
13:15:30.0437 1908 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
13:15:30.0437 1908 IRENUM - ok
13:15:30.0468 1908 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
13:15:30.0468 1908 isapnp - ok
13:15:30.0625 1908 [ 0A5709543986843D37A92290B7838340 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
13:15:30.0625 1908 JavaQuickStarterService - ok
13:15:30.0671 1908 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
13:15:30.0671 1908 Kbdclass - ok
13:15:30.0671 1908 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
13:15:30.0671 1908 kbdhid - ok
13:15:30.0734 1908 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
13:15:30.0734 1908 kmixer - ok
13:15:30.0750 1908 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
13:15:30.0750 1908 KSecDD - ok
13:15:30.0796 1908 [ D8D3F1C1E82117A3776A2D320A7B3694 ] L8042Kbd C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys
13:15:30.0796 1908 L8042Kbd - ok
13:15:30.0812 1908 [ 5262222FB4A7B57B48115016CCFD1F4C ] L8042mou C:\WINDOWS\system32\DRIVERS\L8042mou.Sys
13:15:30.0812 1908 L8042mou - ok
13:15:30.0859 1908 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
13:15:30.0859 1908 lanmanserver - ok
13:15:30.0906 1908 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
13:15:30.0921 1908 lanmanworkstation - ok
13:15:30.0968 1908 [ E254E5B2C5227DDBB47D045940A0A559 ] LBeepKE C:\WINDOWS\system32\Drivers\LBeepKE.sys
13:15:30.0968 1908 LBeepKE - ok
13:15:30.0968 1908 lbrtfdc - ok
13:15:31.0078 1908 [ 47C12F1A54B5C1B51008D7629C1D4F7B ] LBTServ C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
13:15:31.0078 1908 LBTServ - ok
13:15:31.0125 1908 [ 8B30311241F97B35167AFE68D79E8530 ] LHidFilt C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
13:15:31.0125 1908 LHidFilt - ok
13:15:31.0171 1908 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
13:15:31.0171 1908 LmHosts - ok
13:15:31.0218 1908 [ 48D7422A6C4EEC886B56AC534CFA3ACF ] LMouFilt C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
13:15:31.0218 1908 LMouFilt - ok
13:15:31.0250 1908 [ 96062EC1F26F08EBE056C026667744DD ] LMouKE C:\WINDOWS\system32\DRIVERS\LMouKE.Sys
13:15:31.0250 1908 LMouKE - ok
13:15:31.0296 1908 [ 8BE71D7EDB8C7494913722059F760DD0 ] LVPr2Mon C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys
13:15:31.0296 1908 LVPr2Mon - ok
13:15:31.0312 1908 [ 2333057542C91AE8228BDCCC2E5F2632 ] LVPrcSrv C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe
13:15:31.0312 1908 LVPrcSrv - ok
13:15:31.0359 1908 [ A1857FBB9B4930EEB2FD92386C45C529 ] LVRS C:\WINDOWS\system32\DRIVERS\lvrs.sys
13:15:31.0359 1908 LVRS - ok
13:15:31.0453 1908 [ 3703406AF0726BADD24C5E552493E5B1 ] LVUVC C:\WINDOWS\system32\DRIVERS\lvuvc.sys
13:15:31.0500 1908 LVUVC - ok
13:15:31.0531 1908 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
13:15:31.0531 1908 Messenger - ok
13:15:31.0578 1908 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
13:15:31.0578 1908 mnmdd - ok
13:15:31.0609 1908 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
13:15:31.0609 1908 mnmsrvc - ok
13:15:31.0625 1908 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
13:15:31.0625 1908 Modem - ok
13:15:31.0671 1908 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
13:15:31.0671 1908 Mouclass - ok
13:15:31.0718 1908 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
13:15:31.0718 1908 mouhid - ok
13:15:31.0781 1908 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
13:15:31.0781 1908 MountMgr - ok
13:15:31.0843 1908 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
13:15:31.0843 1908 MozillaMaintenance - ok
13:15:31.0843 1908 mraid35x - ok
13:15:31.0906 1908 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
13:15:31.0906 1908 MRxDAV - ok
13:15:31.0937 1908 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
13:15:31.0937 1908 MSDTC - ok
13:15:31.0953 1908 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
13:15:31.0953 1908 Msfs - ok
13:15:31.0968 1908 MSIServer - ok
13:15:31.0984 1908 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
13:15:31.0984 1908 MSKSSRV - ok
13:15:32.0000 1908 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
13:15:32.0000 1908 MSPCLOCK - ok
13:15:32.0000 1908 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
13:15:32.0000 1908 MSPQM - ok
13:15:32.0031 1908 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
13:15:32.0031 1908 mssmbios - ok
13:15:32.0140 1908 MSSQL$SONY_MEDIAMGR - ok
13:15:32.0203 1908 [ CB7524C21727404BD3140DCA32DEB7DE ] MSSQLServerADHelper C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe
13:15:32.0203 1908 MSSQLServerADHelper - ok
13:15:32.0234 1908 [ D5059366B361F0E1124753447AF08AA2 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
13:15:32.0234 1908 MSTEE - ok
13:15:32.0265 1908 [ D48659BB24C48345D926ECB45C1EBDF5 ] MTsensor C:\WINDOWS\system32\DRIVERS\ASACPI.sys
13:15:32.0265 1908 MTsensor - ok
13:15:32.0312 1908 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
13:15:32.0312 1908 Mup - ok
13:15:32.0343 1908 [ AC31B352CE5E92704056D409834BEB74 ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
13:15:32.0343 1908 NABTSFEC - ok
13:15:32.0359 1908 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
13:15:32.0359 1908 napagent - ok
13:15:32.0406 1908 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
13:15:32.0406 1908 NDIS - ok
13:15:32.0421 1908 [ ABD7629CF2796250F315C1DD0B6CF7A0 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
13:15:32.0421 1908 NdisIP - ok
13:15:32.0468 1908 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
13:15:32.0468 1908 NdisTapi - ok
13:15:32.0531 1908 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
13:15:32.0531 1908 Ndisuio - ok
13:15:32.0546 1908 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
13:15:32.0546 1908 NdisWan - ok
13:15:32.0578 1908 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
13:15:32.0593 1908 NDProxy - ok
13:15:32.0593 1908 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
13:15:32.0593 1908 NetBIOS - ok
13:15:32.0640 1908 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
13:15:32.0640 1908 NetBT - ok
13:15:32.0687 1908 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
13:15:32.0687 1908 NetDDE - ok
13:15:32.0687 1908 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
13:15:32.0687 1908 NetDDEdsdm - ok
13:15:32.0734 1908 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
13:15:32.0734 1908 Netlogon - ok
13:15:32.0750 1908 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
13:15:32.0750 1908 Netman - ok
13:15:32.0796 1908 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
13:15:32.0796 1908 NetTcpPortSharing - ok
13:15:32.0812 1908 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
13:15:32.0812 1908 NIC1394 - ok
13:15:32.0953 1908 [ 328E366E253B788256956532DFBF8A8A ] NIHardwareService C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
13:15:33.0000 1908 NIHardwareService - ok
13:15:33.0062 1908 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
13:15:33.0062 1908 Nla - ok
13:15:33.0078 1908 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
13:15:33.0078 1908 Npfs - ok
13:15:33.0078 1908 npkcrypt - ok
13:15:33.0078 1908 npkcusb - ok
13:15:33.0125 1908 [ 9131FE60ADFAB595C8DA53AD6A06AA31 ] NPPTNT2 C:\WINDOWS\system32\npptNT2.sys
13:15:33.0125 1908 NPPTNT2 - ok
13:15:33.0171 1908 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
13:15:33.0171 1908 Ntfs - ok
13:15:33.0187 1908 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
13:15:33.0187 1908 NtLmSsp - ok
13:15:33.0218 1908 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
13:15:33.0234 1908 NtmsSvc - ok
13:15:33.0234 1908 [ C03E15101F6D9E82CD9B0E7D715F5DE3 ] nvata C:\WINDOWS\system32\DRIVERS\nvata.sys
13:15:33.0234 1908 nvata - ok
13:15:33.0265 1908 [ B9333604527E02CD2223F200C0BAE7E0 ] NVENETFD C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
13:15:33.0265 1908 NVENETFD - ok
13:15:33.0281 1908 [ 5E9E55F7EE644C7C5FD78A206FBE37AB ] nvnetbus C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
13:15:33.0281 1908 nvnetbus - ok
13:15:33.0328 1908 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
13:15:33.0328 1908 NwlnkFlt - ok
13:15:33.0328 1908 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
13:15:33.0328 1908 NwlnkFwd - ok
13:15:33.0343 1908 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
13:15:33.0343 1908 ohci1394 - ok
13:15:33.0406 1908 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:15:33.0406 1908 ose - ok
13:15:33.0437 1908 [ 3649EEFA90990249267DD6C7808CBC86 ] ossrv C:\WINDOWS\system32\drivers\ctoss2k.sys
13:15:33.0453 1908 ossrv - ok
13:15:33.0500 1908 [ DF886FFED69AEAD0CF608B89B18C3F6F ] P17 C:\WINDOWS\system32\drivers\P17.sys
13:15:33.0515 1908 P17 - ok
13:15:33.0578 1908 [ 06902B5F2A17DDDF1282FF402B5BD51B ] P17xfi C:\WINDOWS\system32\drivers\P17xfi.sys
13:15:33.0593 1908 P17xfi - ok
13:15:33.0656 1908 [ A782E03A3B54C13FA7C29D33E1C9A044 ] p17xfilt C:\WINDOWS\system32\drivers\p17xfilt.sys
13:15:33.0671 1908 p17xfilt - ok
13:15:33.0718 1908 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
13:15:33.0718 1908 Parport - ok
13:15:33.0718 1908 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
13:15:33.0718 1908 PartMgr - ok
13:15:33.0781 1908 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
13:15:33.0781 1908 ParVdm - ok
13:15:33.0781 1908 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
13:15:33.0781 1908 PCI - ok
13:15:33.0781 1908 PCIDump - ok
13:15:33.0843 1908 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
13:15:33.0843 1908 PCIIde - ok
13:15:33.0890 1908 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
13:15:33.0890 1908 Pcmcia - ok
13:15:33.0906 1908 [ 5B6C11DE7E839C05248CED8825470FEF ] pcouffin C:\WINDOWS\system32\Drivers\pcouffin.sys
13:15:33.0906 1908 pcouffin - ok
13:15:33.0906 1908 PDCOMP - ok
13:15:33.0906 1908 PDFRAME - ok
13:15:33.0921 1908 PDRELI - ok
13:15:33.0921 1908 PDRFRAME - ok
13:15:33.0921 1908 perc2 - ok
13:15:33.0937 1908 perc2hib - ok
13:15:33.0968 1908 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
13:15:33.0968 1908 PlugPlay - ok
13:15:34.0015 1908 [ 5C1CADD1CB67C0B9D8A84EC6E4D6B5CC ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
13:15:34.0015 1908 Pml Driver HPZ12 - ok
13:15:34.0046 1908 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
13:15:34.0046 1908 PolicyAgent - ok
13:15:34.0062 1908 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
13:15:34.0062 1908 PptpMiniport - ok
13:15:34.0062 1908 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
13:15:34.0062 1908 ProtectedStorage - ok
13:15:34.0062 1908 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
13:15:34.0062 1908 PSched - ok
13:15:34.0062 1908 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
13:15:34.0062 1908 Ptilink - ok
13:15:34.0093 1908 [ 153D02480A0A2F45785522E814C634B6 ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
13:15:34.0093 1908 PxHelp20 - ok
13:15:34.0109 1908 ql1080 - ok
13:15:34.0109 1908 Ql10wnt - ok
13:15:34.0109 1908 ql12160 - ok
13:15:34.0109 1908 ql1240 - ok
13:15:34.0125 1908 ql1280 - ok
13:15:34.0156 1908 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
13:15:34.0156 1908 RasAcd - ok
13:15:34.0187 1908 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
13:15:34.0187 1908 RasAuto - ok
13:15:34.0234 1908 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
13:15:34.0234 1908 Rasl2tp - ok
13:15:34.0250 1908 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
13:15:34.0250 1908 RasMan - ok
13:15:34.0250 1908 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
13:15:34.0250 1908 RasPppoe - ok
13:15:34.0250 1908 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
13:15:34.0250 1908 Raspti - ok
13:15:34.0312 1908 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
13:15:34.0312 1908 Rdbss - ok
13:15:34.0312 1908 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
13:15:34.0312 1908 RDPCDD - ok
13:15:34.0359 1908 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
13:15:34.0359 1908 rdpdr - ok
13:15:34.0406 1908 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
13:15:34.0406 1908 RDPWD - ok
13:15:34.0421 1908 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
13:15:34.0421 1908 RDSessMgr - ok
13:15:34.0468 1908 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
13:15:34.0468 1908 redbook - ok
13:15:34.0500 1908 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
13:15:34.0500 1908 RemoteAccess - ok
13:15:34.0546 1908 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
13:15:34.0546 1908 RemoteRegistry - ok
13:15:34.0578 1908 [ 8B5B8A11306190C6963D3473F052D3C8 ] Revoflt C:\WINDOWS\system32\DRIVERS\revoflt.sys
13:15:34.0578 1908 Revoflt - ok
13:15:34.0593 1908 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
13:15:34.0593 1908 RpcLocator - ok
13:15:34.0625 1908 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\system32\rpcss.dll
13:15:34.0625 1908 RpcSs - ok
13:15:34.0671 1908 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
13:15:34.0671 1908 RSVP - ok
13:15:34.0703 1908 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
13:15:34.0703 1908 SamSs - ok
13:15:34.0750 1908 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
13:15:34.0750 1908 SASDIFSV - ok
13:15:34.0750 1908 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
13:15:34.0765 1908 SASKUTIL - ok
13:15:34.0796 1908 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
13:15:34.0796 1908 SCardSvr - ok
13:15:34.0843 1908 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
13:15:34.0843 1908 Schedule - ok
13:15:34.0875 1908 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
13:15:34.0875 1908 Secdrv - ok
13:15:34.0906 1908 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
13:15:34.0906 1908 seclogon - ok
13:15:34.0937 1908 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
13:15:34.0937 1908 SENS - ok
13:15:34.0953 1908 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
13:15:34.0953 1908 serenum - ok
13:15:35.0000 1908 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
13:15:35.0000 1908 Sfloppy - ok
13:15:35.0062 1908 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
13:15:35.0062 1908 SharedAccess - ok
13:15:35.0078 1908 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
13:15:35.0093 1908 ShellHWDetection - ok
13:15:35.0093 1908 Simbad - ok
13:15:35.0171 1908 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
13:15:35.0171 1908 SkypeUpdate - ok
13:15:35.0203 1908 [ 1FFC44D6787EC1EA9A2B1440A90FA5C1 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
13:15:35.0203 1908 SLIP - ok
13:15:35.0218 1908 soqwx32 - ok
13:15:35.0218 1908 Sparrow - ok
13:15:35.0265 1908 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
13:15:35.0265 1908 splitter - ok
13:15:35.0312 1908 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
13:15:35.0312 1908 Spooler - ok
13:15:35.0375 1908 [ 0022CFFF1A41E5CE3A764050A7DDF22A ] sptd C:\WINDOWS\System32\Drivers\sptd.sys
13:15:35.0375 1908 sptd - ok
13:15:35.0390 1908 SQLAgent$SONY_MEDIAMGR - ok
13:15:35.0406 1908 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
13:15:35.0406 1908 sr - ok
13:15:35.0421 1908 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
13:15:35.0437 1908 srservice - ok
13:15:35.0437 1908 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
13:15:35.0437 1908 Srv - ok
13:15:35.0468 1908 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
13:15:35.0468 1908 SSDPSRV - ok
13:15:35.0515 1908 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
13:15:35.0515 1908 stisvc - ok
13:15:35.0546 1908 [ A9F9FD0212E572B84EDB9EB661F6BC04 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
13:15:35.0546 1908 streamip - ok
13:15:35.0578 1908 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
13:15:35.0578 1908 swenum - ok
13:15:35.0625 1908 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
13:15:35.0625 1908 swmidi - ok
13:15:35.0640 1908 SwPrv - ok
13:15:35.0640 1908 symc810 - ok
13:15:35.0640 1908 symc8xx - ok
13:15:35.0656 1908 sym_hi - ok
13:15:35.0656 1908 sym_u3 - ok
13:15:35.0687 1908 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
13:15:35.0687 1908 sysaudio - ok
13:15:35.0703 1908 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
13:15:35.0703 1908 SysmonLog - ok
13:15:35.0734 1908 [ 11D34FC869F5BDA29949FE3858380894 ] tap0901 C:\WINDOWS\system32\DRIVERS\tap0901.sys
13:15:35.0734 1908 tap0901 - ok
13:15:35.0781 1908 [ FD90A16CEB10D4FDAA00AAF39B8FF58F ] taphss C:\WINDOWS\system32\DRIVERS\taphss.sys
13:15:35.0781 1908 taphss - ok
13:15:35.0812 1908 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
13:15:35.0812 1908 TapiSrv - ok
13:15:35.0859 1908 [ 4AFB3B0919649F95C1964AA1FAD27D73 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
13:15:35.0859 1908 Tcpip - ok
13:15:35.0906 1908 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
13:15:35.0906 1908 TDPIPE - ok
13:15:35.0921 1908 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
13:15:35.0921 1908 TDTCP - ok
13:15:35.0953 1908 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
13:15:35.0953 1908 TermDD - ok
13:15:35.0984 1908 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
13:15:36.0000 1908 TermService - ok
13:15:36.0031 1908 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
13:15:36.0031 1908 Themes - ok
13:15:36.0062 1908 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
13:15:36.0062 1908 TlntSvr - ok
13:15:36.0062 1908 TosIde - ok
13:15:36.0078 1908 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
13:15:36.0078 1908 TrkWks - ok
13:15:36.0109 1908 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
13:15:36.0109 1908 Udfs - ok
13:15:36.0109 1908 ultra - ok
13:15:36.0156 1908 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
13:15:36.0156 1908 Update - ok
13:15:36.0203 1908 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
13:15:36.0203 1908 upnphost - ok
13:15:36.0218 1908 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
13:15:36.0218 1908 UPS - ok
13:15:36.0265 1908 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
13:15:36.0265 1908 usbaudio - ok
13:15:36.0281 1908 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
13:15:36.0281 1908 usbccgp - ok
13:15:36.0312 1908 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
13:15:36.0312 1908 usbehci - ok
13:15:36.0375 1908 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
13:15:36.0375 1908 usbhub - ok
13:15:36.0375 1908 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
13:15:36.0375 1908 usbohci - ok
13:15:36.0421 1908 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
13:15:36.0421 1908 usbprint - ok
13:15:36.0453 1908 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
13:15:36.0453 1908 usbscan - ok
13:15:36.0484 1908 [ A32426D9B14A089EAA1D922E0C5801A9 ] usbstor C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
13:15:36.0484 1908 usbstor - ok
13:15:36.0531 1908 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
13:15:36.0531 1908 usbvideo - ok
13:15:36.0562 1908 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
13:15:36.0562 1908 VgaSave - ok
13:15:36.0578 1908 ViaIde - ok
13:15:36.0578 1908 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
13:15:36.0578 1908 VolSnap - ok
13:15:36.0625 1908 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
13:15:36.0625 1908 VSS - ok
13:15:36.0671 1908 [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time C:\WINDOWS\system32\w32time.dll
13:15:36.0671 1908 W32Time - ok
13:15:36.0734 1908 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
13:15:36.0734 1908 Wanarp - ok
13:15:36.0796 1908 [ FD47474BD21794508AF449D9D91AF6E6 ] Wdf01000 C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
13:15:36.0796 1908 Wdf01000 - ok
13:15:36.0796 1908 WDICA - ok
13:15:36.0859 1908 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
13:15:36.0859 1908 wdmaud - ok
13:15:36.0890 1908 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
13:15:36.0890 1908 WebClient - ok
13:15:36.0968 1908 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
13:15:36.0968 1908 winmgmt - ok
13:15:37.0000 1908 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
13:15:37.0000 1908 WmdmPmSN - ok
13:15:37.0046 1908 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi C:\WINDOWS\System32\advapi32.dll
13:15:37.0046 1908 Wmi - ok
13:15:37.0093 1908 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
13:15:37.0093 1908 WmiApSrv - ok
13:15:37.0109 1908 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\Drivers\wpdusb.sys
13:15:37.0109 1908 WpdUsb - ok
13:15:37.0187 1908 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
13:15:37.0203 1908 WPFFontCache_v0400 - ok
13:15:37.0250 1908 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
13:15:37.0250 1908 WS2IFSL - ok
13:15:37.0312 1908 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
13:15:37.0312 1908 wscsvc - ok
13:15:37.0343 1908 [ 233CDD1C06942115802EB7CE6669E099 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
13:15:37.0343 1908 WSTCODEC - ok
13:15:37.0359 1908 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
13:15:37.0359 1908 wuauserv - ok
13:15:37.0375 1908 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
13:15:37.0390 1908 WudfPf - ok
13:15:37.0390 1908 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
13:15:37.0390 1908 WudfRd - ok
13:15:37.0406 1908 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
13:15:37.0406 1908 WudfSvc - ok
13:15:37.0468 1908 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
13:15:37.0468 1908 WZCSVC - ok
13:15:37.0500 1908 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
13:15:37.0500 1908 xmlprov - ok
13:15:37.0515 1908 ================ Scan global ===============================
13:15:37.0546 1908 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
13:15:37.0593 1908 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
13:15:37.0609 1908 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
13:15:37.0609 1908 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
13:15:37.0625 1908 [Global] - ok
13:15:37.0625 1908 ================ Scan MBR ==================================
13:15:37.0640 1908 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
13:15:37.0875 1908 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
13:15:37.0875 1908 \Device\Harddisk0\DR0 - detected TDSS File System (1)
13:15:37.0875 1908 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR2
13:15:38.0031 1908 \Device\Harddisk1\DR2 - ok
13:15:38.0187 1908 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR3
13:15:38.0468 1908 \Device\Harddisk2\DR3 - ok
13:15:38.0468 1908 ================ Scan VBR ==================================
13:15:38.0468 1908 [ 9444F64A1F639DFD6F0BF13101094021 ] \Device\Harddisk0\DR0\Partition1
13:15:38.0484 1908 \Device\Harddisk0\DR0\Partition1 - ok
13:15:38.0484 1908 [ 61A809829567957E30F45BAB9C39FD85 ] \Device\Harddisk1\DR2\Partition1
13:15:38.0484 1908 \Device\Harddisk1\DR2\Partition1 - ok
13:15:38.0484 1908 [ 43FAE830CB65BC31AFE581749A230101 ] \Device\Harddisk2\DR3\Partition1
13:15:38.0484 1908 \Device\Harddisk2\DR3\Partition1 - ok
13:15:38.0484 1908 ============================================================
13:15:38.0484 1908 Scan finished
13:15:38.0484 1908 ============================================================
13:15:38.0500 0536 Detected object count: 1
13:15:38.0500 0536 Actual detected object count: 1
13:16:00.0625 0536 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
13:16:00.0625 0536 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
13:16:24.0015 0444 Deinitialize success
















MBAM:


Malwarebytes Anti-Malware 1.65.0.1400
www.malwarebytes.org

Database version: v2012.09.14.07

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Administrator :: PAST-594BFF0499 [administrator]

9/14/2012 1:27:46 PM
mbam-log-2012-09-14 (13-27-46).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 201602
Time elapsed: 2 minute(s), 4 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)








MTB



MiniToolBox by Farbar Version: 23-07-2012
Ran by Administrator (administrator) on 14-09-2012 at 13:31:57
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================
Windows IP Configuration Successfully flushed the DNS Resolver Cache.
========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


127.0.0.1 activate.adobe.com
127.0.0.1 activate.adobe.com

========================= IP Configuration: ================================

TAP-Win32 Adapter V9 = Local Area Connection 4 (Disconnected)
1394 Net Adapter = 1394 Connection (Connected)
NVIDIA nForce Networking Controller = Local Area Connection (Connected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp


popd
# End of interface IP configuration


Windows IP Configuration Host Name . . . . . . . . . . . . : past-594bff0499 Primary Dns Suffix . . . . . . . : Node Type . . . . . . . . . . . . : Unknown IP Routing Enabled. . . . . . . . : No WINS Proxy Enabled. . . . . . . . : No Ethernet adapter Local Area Connection: Connection-specific DNS Suffix . : Description . . . . . . . . . . . : NVIDIA nForce Networking Controller Physical Address. . . . . . . . . : 00-1D-60-1B-B6-5C Dhcp Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes IP Address. . . . . . . . . . . . : 192.168.1.8 Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : 192.168.1.1 DHCP Server . . . . . . . . . . . : 192.168.1.1 DNS Servers . . . . . . . . . . . : 192.168.1.1 Lease Obtained. . . . . . . . . . : Friday, September 14, 2012 1:18:16 PM Lease Expires . . . . . . . . . . : Saturday, September 15, 2012 1:18:16 PM Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 74.125.239.7, 74.125.239.8, 74.125.239.9, 74.125.239.14
74.125.239.0, 74.125.239.1, 74.125.239.2, 74.125.239.3, 74.125.239.4
74.125.239.5, 74.125.239.6

Pinging google.com [74.125.239.6] with 32 bytes of data: Reply from 74.125.239.6: bytes=32 time=71ms TTL=52 Reply from 74.125.239.6: bytes=32 time=72ms TTL=52 Ping statistics for 74.125.239.6: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 71ms, Maximum = 72ms, Average = 71ms Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 72.30.38.140, 98.138.253.109, 98.139.183.24

Pinging yahoo.com [98.139.183.24] with 32 bytes of data: Reply from 98.139.183.24: bytes=32 time=182ms TTL=44 Reply from 98.139.183.24: bytes=32 time=157ms TTL=45 Ping statistics for 98.139.183.24: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 157ms, Maximum = 182ms, Average = 169ms Server: UnKnown
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2

Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data: Reply from 208.43.87.2: Destination host unreachable. Reply from 208.43.87.2: Destination host unreachable. Ping statistics for 208.43.87.2: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 0ms, Maximum = 0ms, Average = 0ms Pinging 127.0.0.1 with 32 bytes of data: Reply from 127.0.0.1: bytes=32 time<1ms TTL=128 Reply from 127.0.0.1: bytes=32 time<1ms TTL=128 Ping statistics for 127.0.0.1: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 0ms, Maximum = 0ms, Average = 0ms ===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 1d 60 1b b6 5c ...... NVIDIA nForce Networking Controller - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.8 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
169.254.0.0 255.255.0.0 192.168.1.8 192.168.1.8 20
192.168.1.0 255.255.255.0 192.168.1.8 192.168.1.8 20
192.168.1.8 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.1.255 255.255.255.255 192.168.1.8 192.168.1.8 20
224.0.0.0 240.0.0.0 192.168.1.8 192.168.1.8 20
255.255.255.255 255.255.255.255 192.168.1.8 192.168.1.8 1
Default Gateway: 192.168.1.1
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/10/2012 03:22:48 AM) (Source: Application Error) (User: )
Description: Faulting application superantispyware.exe, version 5.5.0.1016, faulting module superantispyware.exe, version 5.5.0.1016, fault address 0x00078cd8.
Processing media-specific event for [superantispyware.exe!ws!]

Error: (08/25/2012 04:39:43 PM) (Source: Application Error) (User: )
Description: Faulting application mp3test.exe, version 1.7.0.170, faulting module mp3test.exe, version 1.7.0.170, fault address 0x00044681.
Processing media-specific event for [mp3test.exe!ws!]

Error: (08/25/2012 04:39:42 PM) (Source: Application Error) (User: )
Description: Faulting application mp3test.exe, version 1.7.0.170, faulting module mp3test.exe, version 1.7.0.170, fault address 0x00004c5a.
Processing media-specific event for [mp3test.exe!ws!]

Error: (08/25/2012 04:39:40 PM) (Source: Application Error) (User: )
Description: Faulting application mp3test.exe, version 1.7.0.170, faulting module mp3test.exe, version 1.7.0.170, fault address 0x00003dda.
Processing media-specific event for [mp3test.exe!ws!]

Error: (08/25/2012 04:39:35 PM) (Source: Application Error) (User: )
Description: Faulting application mp3test.exe, version 1.7.0.170, faulting module mp3test.exe, version 1.7.0.170, fault address 0x00003dda.
Processing media-specific event for [mp3test.exe!ws!]

Error: (08/17/2012 09:27:38 PM) (Source: Application Error) (User: )
Description: Faulting application mp3checker-0.19.exe, version 0.0.0.5, faulting module ntdll.dll, version 5.1.2600.6055, fault address 0x00010a19.
Processing media-specific event for [mp3checker-0.19.exe!ws!]

Error: (08/09/2012 04:18:33 AM) (Source: MsiInstaller) (User: PAST-594BFF0499)PAST-594BFF0499
Description: Product: dupeGuru Music Edition -- Error 1721. There is a problem with this Windows Installer package. A program required for this install to complete could not be run. Contact your support personnel or package vendor. Action: AI_UPDATER_UNINSTALL, location: C:\Program Files\Hardcoded Software\dupeGuru Music Edition\updater.exe, command: /clean silent

Error: (07/18/2012 08:03:27 PM) (Source: crypt32) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (07/18/2012 08:03:27 PM) (Source: crypt32) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (07/18/2012 08:03:27 PM) (Source: crypt32) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.


System errors:
=============
Error: (09/14/2012 01:20:13 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Workstation service which failed to start because of the following error:
%%1066

Error: (09/14/2012 01:20:13 PM) (Source: Service Control Manager) (User: )
Description: The Workstation service terminated with service-specific error 2250 (0x8CA).

Error: (09/14/2012 01:20:13 PM) (Source: Workstation) (User: )
Description: Could not load RDR device driver.

Error: (09/14/2012 01:18:55 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Workstation service which failed to start because of the following error:
%%1066

Error: (09/14/2012 01:18:55 PM) (Source: Service Control Manager) (User: )
Description: The Workstation service terminated with service-specific error 2250 (0x8CA).

Error: (09/14/2012 01:18:55 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Workstation service which failed to start because of the following error:
%%1066

Error: (09/14/2012 01:18:55 PM) (Source: Service Control Manager) (User: )
Description: The Workstation service terminated with service-specific error 2250 (0x8CA).

Error: (09/14/2012 01:18:55 PM) (Source: Workstation) (User: )
Description: Could not load RDR device driver.

Error: (09/14/2012 01:18:55 PM) (Source: Workstation) (User: )
Description: Could not load RDR device driver.

Error: (09/14/2012 01:18:39 PM) (Source: Service Control Manager) (User: )
Description: The npkcrypt service failed to start due to the following error:
%%3


Microsoft Office Sessions:
=========================
Error: (09/10/2012 03:22:48 AM) (Source: Application Error)(User: )
Description: superantispyware.exe5.5.0.1016superantispyware.exe5.5.0.101600078cd8

Error: (08/25/2012 04:39:43 PM) (Source: Application Error)(User: )
Description: mp3test.exe1.7.0.170mp3test.exe1.7.0.17000044681

Error: (08/25/2012 04:39:42 PM) (Source: Application Error)(User: )
Description: mp3test.exe1.7.0.170mp3test.exe1.7.0.17000004c5a

Error: (08/25/2012 04:39:40 PM) (Source: Application Error)(User: )
Description: mp3test.exe1.7.0.170mp3test.exe1.7.0.17000003dda

Error: (08/25/2012 04:39:35 PM) (Source: Application Error)(User: )
Description: mp3test.exe1.7.0.170mp3test.exe1.7.0.17000003dda

Error: (08/17/2012 09:27:38 PM) (Source: Application Error)(User: )
Description: mp3checker-0.19.exe0.0.0.5ntdll.dll5.1.2600.605500010a19

Error: (08/09/2012 04:18:33 AM) (Source: MsiInstaller)(User: PAST-594BFF0499)PAST-594BFF0499
Description: Product: dupeGuru Music Edition -- Error 1721. There is a problem with this Windows Installer package. A program required for this install to complete could not be run. Contact your support personnel or package vendor. Action: AI_UPDATER_UNINSTALL, location: C:\Program Files\Hardcoded Software\dupeGuru Music Edition\updater.exe, command: /clean silent (NULL)(NULL)(NULL)(NULL)

Error: (07/18/2012 08:03:27 PM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (07/18/2012 08:03:27 PM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (07/18/2012 08:03:27 PM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.


=========================== Installed Programs ============================

µTorrent (Version: 3.2.0)
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.1.377)
Adobe AIR (Version: 1.1.0.5790)
Adobe Anchor Service CS3 (Version: 1.0)
Adobe Asset Services CS3 (Version: 3)
Adobe Bridge CS3 (Version: 2)
Adobe Bridge Start Meeting (Version: 1.0)
Adobe Camera Raw 4.0 (Version: 4.0)
Adobe CMaps (Version: 1.0)
Adobe Color - Photoshop Specific (Version: 1.0)
Adobe Color Common Settings (Version: 1.0.1)
Adobe Color EU Extra Settings (Version: 1.0)
Adobe Color JA Extra Settings (Version: 1.0)
Adobe Color NA Recommended Settings (Version: 1.0)
Adobe Default Language CS3 (Version: 1.0)
Adobe Device Central CS3 (Version: 1.0)
Adobe ExtendScript Toolkit 2 (Version: 2.0.2)
Adobe Flash Player 10 Plugin (Version: 10.3.181.34)
Adobe Flash Player 11 ActiveX (Version: 11.0.1.152)
Adobe Fonts All (Version: 1.0)
Adobe Help Viewer CS3 (Version: 1)
Adobe Linguistics CS3 (Version: 3.0.0)
Adobe Media Player (Version: 0.0.0)
Adobe Media Player (Version: 1.1)
Adobe PDF Library Files (Version: 8.0)
Adobe Photoshop CS3 (Version: 10)
Adobe Photoshop CS3 (Version: 10.0)
Adobe Reader 9 (Version: 9.0.0)
Adobe Setup (Version: 1.0)
Adobe Stock Photos CS3 (Version: 1.5)
Adobe Type Support (Version: 1.0)
Adobe Update Manager CS3 (Version: 5.1.0)
Adobe Version Cue CS3 Client (Version: 3)
Adobe WinSoft Linguistics Plugin (Version: 1.0)
Adobe XMP Panels CS3 (Version: 1.0)
Advanced Audio FX Engine
Advanced Video FX Engine
AMD Catalyst Install Manager (Version: 8.0.881.0)
Apple Application Support (Version: 2.0.1)
Apple Software Update (Version: 2.1.3.127)
Ashampoo Burning Studio 11 v.11.0.3 (Version: 11.0.3)
ATI AVIVO Codecs (Version: 9.15.0.20713)
ATI Catalyst Control Center (Version: 2.008.0225.2152)
ATI HYDRAVISION (Version: 3.25.0006)
ATI Parental Control & Encoder (Version: 3.0)
ATI Problem Report Wizard (Version: 8.10)
Auslogics Disk Defrag (Version: version 3.1)
avast! Free Antivirus (Version: 7.0.1466.0)
BearShare (Version: 10.0.0.127204)
CameraHelperMsi (Version: 13.10.1217.0)
Captcha Brotherhood (Version: 1.1.7)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2008.0225.2153.39091)
Catalyst Control Center Graphics Full Existing (Version: 2008.0225.2153.39091)
Catalyst Control Center Graphics Full New (Version: 2008.0225.2153.39091)
Catalyst Control Center Graphics Light (Version: 2008.0225.2153.39091)
Catalyst Control Center Graphics Previews Common (Version: 2008.0225.2153.39091)
Catalyst Control Center Graphics Previews Common (Version: 2012.0524.1601.26859)
Catalyst Control Center Localization All (Version: 2012.0524.1601.26859)
Catalyst Control Center Localization Chinese Standard (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Chinese Traditional (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Czech (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Danish (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Dutch (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Finnish (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization French (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization German (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Greek (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Hungarian (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Italian (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Japanese (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Korean (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Norwegian (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Polish (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Portuguese (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Russian (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Spanish (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Swedish (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Thai (Version: 2008.0225.2153.39091)
Catalyst Control Center Localization Turkish (Version: 2008.0225.2153.39091)
ccc-core-preinstall (Version: 2008.0225.2153.39091)
ccc-core-static (Version: 2008.0225.2153.39091)
ccc-utility (Version: 2008.0225.2153.39091)
ccc-utility (Version: 2012.0524.1601.26859)
CCC Help Chinese Standard (Version: 2008.0225.2152.39091)
CCC Help Chinese Standard (Version: 2012.0524.1600.26859)
CCC Help Chinese Traditional (Version: 2008.0225.2152.39091)
CCC Help Chinese Traditional (Version: 2012.0524.1600.26859)
CCC Help Czech (Version: 2008.0225.2152.39091)
CCC Help Czech (Version: 2012.0524.1600.26859)
CCC Help Danish (Version: 2008.0225.2152.39091)
CCC Help Danish (Version: 2012.0524.1600.26859)
CCC Help Dutch (Version: 2008.0225.2152.39091)
CCC Help Dutch (Version: 2012.0524.1600.26859)
CCC Help English (Version: 2008.0225.2152.39091)
CCC Help English (Version: 2012.0524.1600.26859)
CCC Help Finnish (Version: 2008.0225.2152.39091)
CCC Help Finnish (Version: 2012.0524.1600.26859)
CCC Help French (Version: 2008.0225.2152.39091)
CCC Help French (Version: 2012.0524.1600.26859)
CCC Help German (Version: 2008.0225.2152.39091)
CCC Help German (Version: 2012.0524.1600.26859)
CCC Help Greek (Version: 2008.0225.2152.39091)
CCC Help Greek (Version: 2012.0524.1600.26859)
CCC Help Hungarian (Version: 2008.0225.2152.39091)
CCC Help Hungarian (Version: 2012.0524.1600.26859)
CCC Help Italian (Version: 2008.0225.2152.39091)
CCC Help Italian (Version: 2012.0524.1600.26859)
CCC Help Japanese (Version: 2008.0225.2152.39091)
CCC Help Japanese (Version: 2012.0524.1600.26859)
CCC Help Korean (Version: 2008.0225.2152.39091)
CCC Help Korean (Version: 2012.0524.1600.26859)
CCC Help Norwegian (Version: 2008.0225.2152.39091)
CCC Help Norwegian (Version: 2012.0524.1600.26859)
CCC Help Polish (Version: 2008.0225.2152.39091)
CCC Help Polish (Version: 2012.0524.1600.26859)
CCC Help Portuguese (Version: 2008.0225.2152.39091)
CCC Help Portuguese (Version: 2012.0524.1600.26859)
CCC Help Russian (Version: 2008.0225.2152.39091)
CCC Help Russian (Version: 2012.0524.1600.26859)
CCC Help Spanish (Version: 2008.0225.2152.39091)
CCC Help Spanish (Version: 2012.0524.1600.26859)
CCC Help Swedish (Version: 2008.0225.2152.39091)
CCC Help Swedish (Version: 2012.0524.1600.26859)
CCC Help Thai (Version: 2008.0225.2152.39091)
CCC Help Thai (Version: 2012.0524.1600.26859)
CCC Help Turkish (Version: 2008.0225.2152.39091)
CCC Help Turkish (Version: 2012.0524.1600.26859)
CCleaner (Version: 3.18)
CDDRV_Installer (Version: 4.60)
Company of Heroes - FAKEMSI (Version: 2.0.0.0)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Creative Audio Console
Creative MediaSource 5 (Version: 5.26)
Creative Software AutoUpdate
Creative System Information
Creative WaveStudio 7 (Version: 7.12)
DigitImg (Version: 2.00.0000)
Dropbox (Version: 1.4.7)
DropBox (Version: 6.5.0.0)
Easy CD-DA Extractor 2011 (Version: 2011)
erLT (Version: 1.20.138.34)
ESET Online Scanner v3
FLAC to MP3 Converter 6.2.0
GEAR 32bit Driver Installer (Version: 2.005.1)
HP Deskjet 3000 J310 series Basic Device Software (Version: 22.50.231.0)
HP Deskjet 3000 J310 series Help (Version: 140.0.66.66)
HP Software Update (Version: 2.0.37.20031205)
ImagXpress (Version: 7.0.74.0)
IsoBuster 2.7 (Version: 2.7)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 31 (Version: 6.0.310)
Java™ 6 Update 6 (Version: 1.6.0.60)
Java™ 6 Update 7 (Version: 1.6.0.70)
Junk Mail filter update (Version: 14.0.8089.726)
KhalInstallWrapper (Version: 4.72.40)
Logitech SetPoint (Version: 4.72)
Logitech Webcam Software (Version: 2.0)
LWS Facebook (Version: 13.10.1216.0)
LWS Gallery (Version: 13.10.1216.0)
LWS Help_main (Version: 13.10.1224.0)
LWS Launcher (Version: 13.10.1224.0)
LWS Motion Detection (Version: 13.10.1218.0)
LWS Pictures And Video (Version: 13.10.1218.0)
LWS Twitter (Version: 13.00.1216.0)
LWS Video Mask Maker (Version: 13.10.1216.0)
LWS VideoEffects (Version: 13.00.1774.0)
LWS Webcam Software (Version: 13.00.1774.0)
LWS WLM Plugin (Version: 1.10.1222.0)
LWS YouTube Plugin (Version: 13.10.1216.0)
Malwarebytes Anti-Malware version 1.65.0.1400 (Version: 1.65.0.1400)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Games for Windows - LIVE (Version: 2.0.687.0)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.0.19.0)
Microsoft Office Word Viewer 2003 (Version: 11.0.8173.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server Desktop Engine (SONY_MEDIAMGR) (Version: 8.00.761)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft XML Parser (Version: 8.70.1104.04)
MIDI-OX (Version: 7.00.365)
MiPony 1.6.4 (Version: 1.6.4)
MixMeister Fusion 7.3.5
Mozilla Firefox 15.0.1 (x86 en-US) (Version: 15.0.1)
Mozilla Maintenance Service (Version: 15.0.1)
MP3Test (Version: 1.7.0.170)
MPEG2 Codec(libmpeg2/mad)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 6 Service Pack 2 (KB954459) (Version: 6.20.1099.0)
Native Instruments Controller Editor
Native Instruments Controller Editor (Version: 1.4.5.910)
Native Instruments Service Center
Native Instruments Service Center (Version: 2.3.2.926)
Native Instruments Traktor 2
Native Instruments Traktor 2 (Version: 2.5.1.13951)
neroxml (Version: 1.0.0)
NVIDIA Drivers
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
overland (Version: 2.1.5)
PDF Settings (Version: 1.0)
Platinum Notes 3.0 (Version: 3.0)
PS7900 (Version: 1.01.0000)
PSShortcuts (Version: 1.01.0000)
PSUsage (Version: 1.30.0000)
QFolder (Version: 1.00.0000)
QuickTime (Version: 7.70.80.34)
Realtek High Definition Audio Driver
Revo Uninstaller Pro 2.5.8 (Version: 2.5.8)
Segoe UI (Version: 14.0.4327.805)
Skins (Version: 2008.0225.2153.39091)
Skype™ 5.10 (Version: 5.10.116)
Sony Media Manager 2.0 (Version: 2.0.40)
SoulSeek 157 NS 13e
Sound Blaster X-Fi Xtreme Audio (Version: 1.0)
Sound Forge Pro 10.0 (Version: 10.0.368)
Steam (Version: 1.0.0.0)
SUPERAntiSpyware (Version: 5.5.1016)
SureThing CD Labeler Deluxe 4
Ubisoft Game Launcher (Version: 1.0.0.0)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Windows Internet Explorer 8 (KB971180) (Version: 1)
Update for Windows Internet Explorer 8 (KB976662) (Version: 1)
Update for Windows Internet Explorer 8 (KB976749) (Version: 1)
Update for Windows Internet Explorer 8 (KB980182) (Version: 1)
Update for Windows XP (KB2736233) (Version: 1)
VCRedistSetup (Version: 1.0.0)
VLC media player 2.0.2 (Version: 2.0.2)
Voxware Audio decoder 1.6 (Version: 1.6.0)
Vyzex MPD26 (Version: Vyzex MPD26 v1.00)
Warhammer 40,000: Dawn of War - Soulstorm (Version: 1.0)
Warhammer 40,000: Dawn of War II
WebFldrs XP (Version: 9.50.7523)
Winamp (Version: 5.56 )
Windows Genuine Advantage Notifications (KB905474) (Version: 1.9.0040.0)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Live Call (Version: 14.0.8064.0206)
Windows Live Communications Platform (Version: 14.0.8064.206)
Windows Live Essentials (Version: 14.0.8089.0726)
Windows Live Essentials (Version: 14.0.8089.726)
Windows Live Mail (Version: 14.0.8089.0726)
Windows Live Messenger (Version: 14.0.8089.0726)
Windows Live Photo Gallery (Version: 14.0.8081.709)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Media Format 11 runtime
Windows Presentation Foundation (Version: 3.0.6920.0)
WinRAR archiver
XML Paper Specification Shared Components Pack 1.0
Zip Motion Block Video codec (Remove Only)

========================= Devices: ================================

Name: ACPI Multiprocessor PC
Description: ACPI Multiprocessor PC
Class Guid: {4D36E966-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard computers)
Service: \Driver\ACPI_HAL

Name: Microsoft ACPI-Compliant System
Description: Microsoft ACPI-Compliant System
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: ACPI

Name: Intel® Core™2 Duo CPU E8400 @ 3.00GHz
Description: Intel Processor
Class Guid: {50127DC3-0F36-415E-A6CC-4CB3BE910B65}
Manufacturer: Intel
Service: intelppm

Name: Intel® Core™2 Duo CPU E8400 @ 3.00GHz
Description: Intel Processor
Class Guid: {50127DC3-0F36-415E-A6CC-4CB3BE910B65}
Manufacturer: Intel
Service: intelppm

Name: ACPI Power Button
Description: ACPI Power Button
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: PCI bus
Description: PCI bus
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: pci

Name: PCI standard host CPU bridge
Description: PCI standard host CPU bridge
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: PCI standard RAM Controller
Description: PCI standard RAM Controller
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: PCI standard RAM Controller
Description: PCI standard RAM Controller
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: PCI standard RAM Controller
Description: PCI standard RAM Controller
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: PCI standard RAM Controller
Description: PCI standard RAM Controller
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: PCI standard RAM Controller
Description: PCI standard RAM Controller
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: PCI standard RAM Controller
Description: PCI standard RAM Controller
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: PCI standard RAM Controller
Description: PCI standard RAM Controller
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: PCI standard RAM Controller
Description: PCI standard RAM Controller
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: PCI standard RAM Controller
Description: PCI standard RAM Controller
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: PCI standard RAM Controller
Description: PCI standard RAM Controller
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: PCI standard RAM Controller
Description: PCI standard RAM Controller
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: PCI standard RAM Controller
Description: PCI standard RAM Controller
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: PCI standard RAM Controller
Description: PCI standard RAM Controller
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: PCI standard RAM Controller
Description: PCI standard RAM Controller
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: PCI standard RAM Controller
Description: PCI standard RAM Controller
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: PCI standard RAM Controller
Description: PCI standard RAM Controller
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: PCI standard RAM Controller
Description: PCI standard RAM Controller
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: PCI standard PCI-to-PCI bridge
Description: PCI standard PCI-to-PCI bridge
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: pci

Name: ATI Radeon HD 3600 Series
Description: ATI Radeon HD 3600 Series
Class Guid: {4D36E968-E325-11CE-BFC1-08002BE10318}
Manufacturer: Advanced Micro Devices, Inc.
Service: ati2mtag
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Microsoft UAA Bus Driver for High Definition Audio
Description: Microsoft UAA Bus Driver for High Definition Audio
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: HDAudBus

Name: AMD High Definition Audio Device
Description: AMD High Definition Audio Device
Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Manufacturer: Advanced Micro Devices
Service: AtiHDAudioService

Name: PCI standard PCI-to-PCI bridge
Description: PCI standard PCI-to-PCI bridge
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: pci

Name: PCI standard RAM Controller
Description: PCI standard RAM Controller
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: PCI standard ISA bridge
Description: PCI standard ISA bridge
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: isapnp

Name: ISAPNP Read Data Port
Description: ISAPNP Read Data Port
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: Motherboard resources
Description: Motherboard resources
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: Programmable interrupt controller
Description: Programmable interrupt controller
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: Direct memory access controller
Description: Direct memory access controller
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: System timer
Description: System timer
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: High precision event timer
Description: High precision event timer
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: System CMOS/real time clock
Description: System CMOS/real time clock
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: System speaker
Description: System speaker
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: Numeric data processor
Description: Numeric data processor
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: Communications Port (COM1)
Description: Communications Port
Class Guid: {4D36E978-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard port types)
Service: Serial
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

Name: Printer Port (LPT1)
Description: Printer Port
Class Guid: {4D36E978-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard port types)
Service: Parport

Name: Printer Port Logical Interface
Description: Printer Port Logical Interface
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: NVIDIA nForce PCI System Management
Description: NVIDIA nForce PCI System Management
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: NVIDIA
Service:

Name: PCI standard RAM Controller
Description: PCI standard RAM Controller
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: Standard OpenHCD USB Host Controller
Description: Standard OpenHCD USB Host Controller
Class Guid: {36FC9E60-C465-11CF-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: usbohci

Name: USB Root Hub
Description: USB Root Hub
Class Guid: {36FC9E60-C465-11CF-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: usbhub

Name: Generic USB Hub
Description: Generic USB Hub
Class Guid: {36FC9E60-C465-11CF-8056-444553540000}
Manufacturer: (Generic USB Hub)
Service: usbhub

Name: USB Human Interface Device
Description: USB Human Interface Device
Class Guid: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA}
Manufacturer: (Standard system devices)
Service: HidUsb

Name: Logitech HID-Compliant Keyboard
Description: Logitech HID-Compliant Keyboard
Class Guid: {4D36E96B-E325-11CE-BFC1-08002BE10318}
Manufacturer: Logitech
Service: kbdhid

Name: Logitech Driver Interface
Description: Logitech Driver Interface
Class Guid: {D41DD63A-1395-4419-AE14-A534F5F2AD29}
Manufacturer: Logitech
Service:

Name: USB Human Interface Device
Description: USB Human Interface Device
Class Guid: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA}
Manufacturer: (Standard system devices)
Service: HidUsb

Name: HID-compliant Bluetooth Mouse
Description: HID-compliant Bluetooth Mouse
Class Guid: {4D36E96F-E325-11CE-BFC1-08002BE10318}
Manufacturer: Logitech
Service: mouhid

Name: Logitech Driver Interface
Description: Logitech Driver Interface
Class Guid: {D41DD63A-1395-4419-AE14-A534F5F2AD29}
Manufacturer: Logitech
Service:

Name: Logitech Driver Interface
Description: Logitech Driver Interface
Class Guid: {D41DD63A-1395-4419-AE14-A534F5F2AD29}
Manufacturer: Logitech
Service:

Name: HID-compliant consumer control device
Description: HID-compliant consumer control device
Class Guid: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA}
Manufacturer: Microsoft
Service:

Name: HID-compliant device
Description: HID-compliant device
Class Guid: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA}
Manufacturer: (Standard system devices)
Service:

Name: HID-compliant Device
Description: HID-compliant Device
Class Guid: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA}
Manufacturer: Logitech
Service:

Name: HID-compliant device
Description: HID-compliant device
Class Guid: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA}
Manufacturer: (Standard system devices)
Service:

Name: HID-compliant device
Description: HID-compliant device
Class Guid: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA}
Manufacturer: (Standard system devices)
Service:

Name: Standard Enhanced PCI to USB Host Controller
Description: Standard Enhanced PCI to USB Host Controller
Class Guid: {36FC9E60-C465-11CF-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: usbehci

Name: USB Root Hub
Description: USB Root Hub
Class Guid: {36FC9E60-C465-11CF-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: usbhub

Name: USB Mass Storage Device
Description: USB Mass Storage Device
Class Guid: {36FC9E60-C465-11CF-8056-444553540000}
Manufacturer: Compatible USB storage device
Service: USBSTOR

Name: Seagate FA GoFlex Desk USB Device
Description: Disk drive
Class Guid: {4D36E967-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard disk drives)
Service: disk

Name: Logitech USB Camera (HD Pro Webcam C910)
Description: Logitech USB Camera (HD Pro Webcam C910)
Class Guid: {36FC9E60-C465-11CF-8056-444553540000}
Manufacturer: Logitech
Service: usbccgp

Name: HD Pro Webcam C910
Description: HD Pro Webcam C910
Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Manufacturer: Logitech
Service: usbaudio

Name: Logitech HD Pro Webcam C910
Description: Logitech HD Pro Webcam C910
Class Guid: {6BDD1FC6-810F-11D0-BEC7-08002BE2092F}
Manufacturer: Logitech
Service: LVUVC

Name: USB Mass Storage Device
Description: USB Mass Storage Device
Class Guid: {36FC9E60-C465-11CF-8056-444553540000}
Manufacturer: Compatible USB storage device
Service: USBSTOR

Name: Ext Hard Disk USB Device
Description: Disk drive
Class Guid: {4D36E967-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard disk drives)
Service: disk

Name: USB Mass Storage Device
Description: USB Mass Storage Device
Class Guid: {36FC9E60-C465-11CF-8056-444553540000}
Manufacturer: Compatible USB storage device
Service: USBSTOR

Name: Disk drive
Description: Disk drive
Class Guid: {4D36E967-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard disk drives)
Service: disk

Name: Generic volume
Description: Generic volume
Class Guid: {71A27CDD-812A-11D0-BEC7-08002BE2092F}
Manufacturer: Microsoft
Service:

Name: Generic STORAGE DEVICE USB Device
Description: Disk drive
Class Guid: {4D36E967-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard disk drives)
Service: disk

Name: Generic volume
Description: Generic volume
Class Guid: {71A27CDD-812A-11D0-BEC7-08002BE2092F}
Manufacturer: Microsoft
Service:

Name: Generic STORAGE DEVICE USB Device
Description: Disk drive
Class Guid: {4D36E967-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard disk drives)
Service: disk

Name: Generic volume
Description: Generic volume
Class Guid: {71A27CDD-812A-11D0-BEC7-08002BE2092F}
Manufacturer: Microsoft
Service:

Name: Generic STORAGE DEVICE USB Device
Description: Disk drive
Class Guid: {4D36E967-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard disk drives)
Service: disk

Name: Generic volume
Description: Generic volume
Class Guid: {71A27CDD-812A-11D0-BEC7-08002BE2092F}
Manufacturer: Microsoft
Service:

Name: Disk drive
Description: Disk drive
Class Guid: {4D36E967-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard disk drives)
Service: disk

Name: Generic volume
Description: Generic volume
Class Guid: {71A27CDD-812A-11D0-BEC7-08002BE2092F}
Manufacturer: Microsoft
Service:

Name: Standard Dual Channel PCI IDE Controller
Description: Standard Dual Channel PCI IDE Controller
Class Guid: {4D36E96A-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard IDE ATA/ATAPI controllers)
Service: pciide

Name: Primary IDE Channel
Description: Primary IDE Channel
Class Guid: {4D36E96A-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard IDE ATA/ATAPI controllers)
Service: atapi

Name: Secondary IDE Channel
Description: Secondary IDE Channel
Class Guid: {4D36E96A-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard IDE ATA/ATAPI controllers)
Service: atapi

Name: Optiarc DVD RW AD-7200A
Description: CD-ROM Drive
Class Guid: {4D36E965-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard CD-ROM drives)
Service: cdrom

Name: Optiarc DVD RW AD-7200A
Description: CD-ROM Drive
Class Guid: {4D36E965-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard CD-ROM drives)
Service: cdrom

Name: NVIDIA nForce 430/410 Serial ATA Controller
Description: NVIDIA nForce 430/410 Serial ATA Controller
Class Guid: {4D36E96A-E325-11CE-BFC1-08002BE10318}
Manufacturer: NVIDIA Corporation
Service: nvata

Name: NVIDIA nForce 430/410 Serial ATA Controller
Description: NVIDIA nForce 430/410 Serial ATA Controller
Class Guid: {4D36E96A-E325-11CE-BFC1-08002BE10318}
Manufacturer: NVIDIA Corporation
Service: nvata

Name: Hitachi HDP725032GLA360
Description: Disk drive
Class Guid: {4D36E967-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard disk drives)
Service: disk

Name: PCI standard PCI-to-PCI bridge
Description: PCI standard PCI-to-PCI bridge
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: pci

Name: Sound Blaster X-Fi Xtreme Audio
Description: Sound Blaster X-Fi Xtreme Audio
Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Manufacturer: Creative Technology Ltd.
Service: P17xfi

Name: VIA OHCI Compliant IEEE 1394 Host Controller
Description: VIA OHCI Compliant IEEE 1394 Host Controller
Class Guid: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F}
Manufacturer: VIA
Service: ohci1394

Name: 1394 Net Adapter
Description: 1394 Net Adapter
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: NIC1394

Name: NVIDIA Network Bus Enumerator
Description: NVIDIA Network Bus Enumerator
Class Guid: {1A3E09BE-1E45-494B-9174-D7385B45BBF5}
Manufacturer: NVIDIA
Service: nvnetbus

Name: NVIDIA nForce Networking Controller
Description: NVIDIA nForce Networking Controller
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: NVIDIA
Service: NVENETFD

Name: Extended IO Bus
Description: Extended IO Bus
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: Motherboard resources
Description: Motherboard resources
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: ATK0110 ACPI UTILITY
Description: ATK0110 ACPI UTILITY
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: ATK
Service: MTsensor

Name: Motherboard resources
Description: Motherboard resources
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: System board
Description: System board
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: ACPI Fan
Description: ACPI Fan
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: ACPI Thermal Zone
Description: ACPI Thermal Zone
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: ACPI Fixed Feature Button
Description: ACPI Fixed Feature Button
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service:

Name: Logical Disk Manager
Description: Logical Disk Manager
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: dmio

Name: Volume Manager
Description: Volume Manager
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: ftdisk

Name: Generic volume
Description: Generic volume
Class Guid: {71A27CDD-812A-11D0-BEC7-08002BE2092F}
Manufacturer: Microsoft
Service:

Name: Generic volume
Description: Generic volume
Class Guid: {71A27CDD-812A-11D0-BEC7-08002BE2092F}
Manufacturer: Microsoft
Service:

Name: Generic volume
Description: Generic volume
Class Guid: {71A27CDD-812A-11D0-BEC7-08002BE2092F}
Manufacturer: Microsoft
Service:

Name: 12208777
Description: 12208777
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: 12208777

Name: 15960376
Description: 15960376
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: 15960376

Name: 33112032
Description: 33112032
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: 33112032

Name: 56331161
Description: 56331161
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: 56331161

Name: 56823756
Description: 56823756
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: 56823756

Name: 63089885
Description: 63089885
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: 63089885

Name: avast! Asynchronous Virus Monitor
Description: avast! Asynchronous Virus Monitor
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Aavmker4

Name: AFD
Description: AFD
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: AFD

Name: 1394 ARP Client Protocol
Description: 1394 ARP Client Protocol
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Arp1394

Name: aswRdr
Description: aswRdr
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: aswRdr

Name: avast! Self Protection
Description: avast! Self Protection
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: aswSP

Name: avast! Network Shield Support
Description: avast! Network Shield Support
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: aswTdi

Name: COMMONFX.DLL
Description: COMMONFX.DLL
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: COMMONFX.DLL

Name: CT20XUT.DLL
Description: CT20XUT.DLL
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: CT20XUT.DLL

Name: Creative AC3 Software Decoder
Description: Creative AC3 Software Decoder
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: ctac32k

Name: CTAUDFX.DLL
Description: CTAUDFX.DLL
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: CTAUDFX.DLL

Name: CTEAPSFX.DLL
Description: CTEAPSFX.DLL
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: CTEAPSFX.DLL

Name: CTEDSPFX.DLL
Description: CTEDSPFX.DLL
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: CTEDSPFX.DLL

Name: CTEDSPIO.DLL
Description: CTEDSPIO.DLL
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: CTEDSPIO.DLL

Name: CTEDSPSY.DLL
Description: CTEDSPSY.DLL
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: CTEDSPSY.DLL

Name: CTERFXFX.DLL
Description: CTERFXFX.DLL
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: CTERFXFX.DLL

Name: CTEXFIFX.DLL
Description: CTEXFIFX.DLL
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: CTEXFIFX.DLL

Name: CTHWIUT.DLL
Description: CTHWIUT.DLL
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: CTHWIUT.DLL

Name: Creative Proxy Driver
Description: Creative Proxy Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: ctprxy2k

Name: CTSBLFX.DLL
Description: CTSBLFX.DLL
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: CTSBLFX.DLL

Name: Creative SoundFont Management Device Driver
Description: Creative SoundFont Management Device Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: ctsfm2k

Name: dmboot
Description: dmboot
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: dmboot

Name: dmload
Description: dmload
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: dmload

Name: dump_wmimmc
Description: dump_wmimmc
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: dump_wmimmc

Name: E-mu Plug-in Architecture Driver
Description: E-mu Plug-in Architecture Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: emupia

Name: Fips
Description: Fips
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Fips

Name: Generic Packet Classifier
Description: Generic Packet Classifier
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Gpc

Name: Creative 20X HAL Driver
Description: Creative 20X HAL Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: ha20x2k

Name: HTTP
Description: HTTP
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: HTTP

Name: IP Traffic Filter Driver
Description: IP Traffic Filter Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: IpFilterDriver

Name: IP Network Address Translator
Description: IP Network Address Translator
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: IpNat

Name: IPSEC driver
Description: IPSEC driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: IPSec

Name: ksecdd
Description: ksecdd
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: ksecdd

Name: Logitech LVPr2Mon Driver
Description: Logitech LVPr2Mon Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: LVPr2Mon

Name: mnmdd
Description: mnmdd
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: mnmdd

Name: mountmgr
Description: mountmgr
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: mountmgr

Name: NDIS System Driver
Description: NDIS System Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: NDIS

Name: Remote Access NDIS TAPI Driver
Description: Remote Access NDIS TAPI Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: NdisTapi

Name: NDIS Usermode I/O Protocol
Description: NDIS Usermode I/O Protocol
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Ndisuio

Name: NDProxy
Description: NDProxy
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: NDProxy

Name: NetBios over Tcpip
Description: NetBios over Tcpip
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: NetBT

Name: NPPTNT2
Description: NPPTNT2
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: NPPTNT2

Name: Creative OS Services Driver
Description: Creative OS Services Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: ossrv

Name: PartMgr
Description: PartMgr
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: PartMgr

Name: ParVdm
Description: ParVdm
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: ParVdm

Name: Remote Access Auto Connection Driver
Description: Remote Access Auto Connection Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: RasAcd

Name: RDPCDD
Description: RDPCDD
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: RDPCDD

Name: SASDIFSV
Description: SASDIFSV
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: SASDIFSV

Name: SASKUTIL
Description: SASKUTIL
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: SASKUTIL

Name: sptd
Description: sptd
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: sptd

Name: TCP/IP Protocol Driver
Description: TCP/IP Protocol Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Tcpip

Name: VgaSave
Description: VgaSave
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: VgaSave

Name: VolSnap
Description: VolSnap
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: VolSnap

Name: Remote Access IP ARP Driver
Description: Remote Access IP ARP Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Wanarp

Name: Wdf01000
Description: Wdf01000
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Wdf01000

Name: Windows Socket 2.0 Non-IFS Service Provider Support Environment
Description: Windows Socket 2.0 Non-IFS Service Provider Support Environment
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: WS2IFSL

Name: Audio Codecs
Description: Audio Codecs
Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: audstub

Name: Legacy Audio Drivers
Description: Legacy Audio Drivers
Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: audstub

Name: Media Control Devices
Description: Media Control Devices
Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: audstub

Name: Legacy Video Capture Devices
Description: Legacy Video Capture Devices
Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: audstub

Name: Video Codecs
Description: Video Codecs
Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: audstub

Name: TAP-Win32 Adapter V9 - Hotspot Shield Routing Miniport
Description: Hotspot Shield Routing Miniport
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Hotspot Shield
Service: HssDrv

Name: NVIDIA nForce Networking Controller - Hotspot Shield Routing Miniport
Description: Hotspot Shield Routing Miniport
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Hotspot Shield
Service: HssDrv

Name: WAN Miniport (IP) - Hotspot Shield Routing Miniport
Description: Hotspot Shield Routing Miniport
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Hotspot Shield
Service: HssDrv

Name: WAN Miniport (L2TP)
Description: WAN Miniport (L2TP)
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: Rasl2tp

Name: WAN Miniport (IP)
Description: WAN Miniport (IP)
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: NdisWan

Name: WAN Miniport (PPPOE)
Description: WAN Miniport (PPPOE)
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: RasPppoe

Name: WAN Miniport (PPTP)
Description: WAN Miniport (PPTP)
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: PptpMiniport

Name: WAN Miniport (IP) - Packet Scheduler Miniport
Description: Packet Scheduler Miniport
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: PSched

Name: NVIDIA nForce Networking Controller - Packet Scheduler Miniport
Description: Packet Scheduler Miniport
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: PSched

Name: TAP-Win32 Adapter V9 - Packet Scheduler Miniport
Description: Packet Scheduler Miniport
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: PSched

Name: Direct Parallel
Description: Direct Parallel
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: Raspti

Name: TAP-Win32 Adapter V9
Description: TAP-Win32 Adapter V9
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: TAP-Win32 Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Terminal Server Device Redirector
Description: Terminal Server Device Redirector
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: rdpdr

Name: Terminal Server Keyboard Driver
Description: Terminal Server Keyboard Driver
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: TermDD

Name: Terminal Server Mouse Driver
Description: Terminal Server Mouse Driver
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: TermDD

Name: Plug and Play Software Device Enumerator
Description: Plug and Play Software Device Enumerator
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: swenum

Name: Microsoft WINMM WDM Audio Compatibility Driver
Description: Microsoft WINMM WDM Audio Compatibility Driver
Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: wdmaud

Name: Microsoft Kernel System Audio Device
Description: Microsoft Kernel System Audio Device
Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: sysaudio

Name: Microsoft Kernel Wave Audio Mixer
Description: Microsoft Kernel Wave Audio Mixer
Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Manufacturer: Microsoft
Service: kmixer

Name: Microcode Update Device
Description: Microcode Update Device
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: update

Name: Microsoft System Management BIOS Driver
Description: Microsoft System Management BIOS Driver
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: (Standard system devices)
Service: mssmbios


========================= Memory info: ===================================

Percentage of memory in use: 15%
Total physical RAM: 3582.48 MB
Available physical RAM: 3040.39 MB
Total Pagefile: 5433.51 MB
Available Pagefile: 5146.76 MB
Total Virtual: 2047.88 MB
Available Virtual: 1969.62 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:298.08 GB) (Free:30.89 GB) NTFS
4 Drive f: (IOMEGA HDD) (Fixed) (Total:111.79 GB) (Free:20.09 GB) NTFS
10 Drive l: (POWER 2) (Fixed) (Total:1863.01 GB) (Free:1522.58 GB) NTFS

========================= Users: ========================================
========================= Minidump Files ==================================

No minidump file found


**** End of log ****

#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:40 PM

Posted 14 September 2012 - 07:34 PM

Hello, rerun TDSS and change the option on these 2 to cure or delete.
13:16:00.0625 0536 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
13:16:00.0625 0536 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip


Go to Start ... Run and type in cmd
A dos Window will appear.
Type in the dos window: netsh winsock reset
Click on the enter key.

Reboot your system to complete the process.

>>>>
Run TFC by OT (Temp File Cleaner)
Please download TFC by Old Timer and save it to your desktop.
alternate download link

Save any unsaved work. TFC will close ALL open programs including your browser!
Double-click on TFC.exe to run it. If you are using Vista, right-click on the file and choose Run As Administrator.
Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway to ensure a complete clean.




I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Under scan settings, check Posted Image and check Remove found threats
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


NOTE: In some instances if no malware is found there will be no log produced.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 Mr Darkwater

Mr Darkwater
  • Topic Starter

  • Members
  • 70 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:40 AM

Posted 14 September 2012 - 09:06 PM

C:\TDSSKiller_Quarantine\12.02.2012_11.15.41\mbr0000\tdlfs0000\tsk0004.dta probably a variant of Win32/TrojanDownloader.Agent.LVENLZT trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\12.02.2012_11.15.41\tdlfs0000\tsk0004.dta probably a variant of Win32/TrojanDownloader.Agent.LVENLZT trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\14.09.2012_14.49.03\tdlfs0000\tsk0001.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\14.09.2012_14.49.03\tdlfs0000\tsk0002.dta a variant of Win32/Rootkit.Kryptik.NH trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\23.07.2012_03.02.56\mbr0000\tdlfs0000\tsk0002.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\23.07.2012_03.02.56\mbr0000\tdlfs0000\tsk0003.dta a variant of Win32/Rootkit.Kryptik.NH trojan cleaned by deleting - quarantined

#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:40 PM

Posted 14 September 2012 - 09:45 PM

OK that was good.
Do you use A lot of Adobe applications?

Does it stiil look like safe Mode?



Please rerun MiniToolBox,

Checkmark the following checkboxes:

•List Winsock Entries

Post that log.



Important Note: Your version of Java is out of date. Older versions have vulnerabilities that malicious sites can use to exploit and infect your system.Please follow these steps to remove older version Java components and update:
  • Download the latest version of Java Runtime Environment (JRE) Version 7 and save it to your desktop.
  • Look for "Java Platform, Standard Edition".
  • Click the "Download JRE" button to the right.
  • Read the License Agreement, and then check the box that says: "Accept License Agreement".
  • From the list, select your OS and Platform (32-bit or 64-bit).
    64-bit OS users, should read: Which Java download should I choose for my 64-bit Windows operating system?
  • If a download for an Offline Installation is available, it is recommended to choose that and save the file to your desktop.
  • Close any programs you may have running - especially your web browser.
Go to Posted Image > Control Panel, double-click on Add/Remove Programs or Programs and Features in Vista/Windows 7 and remove all older versions of Java.
  • Check (highlight) any item with Java Runtime Environment (JRE or J2SE) in the name.
  • Click the Remove or Change/Remove button and follow the onscreen instructions for the Java uninstaller.
  • Repeat as many times as necessary to remove each Java versions.
  • Reboot your computer once all Java components are removed.
  • Then from your desktop double-click on jre-7u7-windows-i586.exe (or jre-7u7-windows-x64.exe for 64-bit) to install the newest version.
  • If using Windows 7 or Vista and the installer refuses to launch due to insufficient user permissions, then Run As Administrator.
  • When the Java Setup - Welcome window opens, click the Install > button.
  • If offered any unwanted software or toolbars during installation, just uncheck the box before continuing unless you want it.
  • The McAfee Security Scan Plus tool is installed by default unless you uncheck the McAfee installation box when updating Java.
Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications but it's not necessary.
To disable the JQS service if you don't want to use it:
  • Go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter.
  • Click Ok and reboot your computer.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 Mr Darkwater

Mr Darkwater
  • Topic Starter

  • Members
  • 70 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:40 AM

Posted 14 September 2012 - 10:26 PM

MiniToolBox by Farbar Version: 23-07-2012
Ran by Administrator (administrator) on 14-09-2012 at 17:10:05
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)

**** End of log ****



I will tell you the problems I am having:


When going into the control panel. The window is as small as it can be. I have never set it that small.

Movies I have played before...video quailty being fine...now digitizes the video.

my destop screen was normal one day...then my icons were arranged on the left side of the screen the next.



Thoughts? Thank you for your help by the way. :)

#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:40 PM

Posted 15 September 2012 - 07:58 PM

We may still have a zeroaccess rootkit here. We need a deeper look.
Make a new topic.
If the issues still persist after that fix,mention them there.

Please go here....Preparation Guide ,do steps 6-9.

Create a DDS log and post it in the new topic explained in step 9 which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.
If GMER won't run (it may not on a 64 bit system) skip it and move on.

Let me know if that went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 Mr Darkwater

Mr Darkwater
  • Topic Starter

  • Members
  • 70 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:40 AM

Posted 17 September 2012 - 04:36 PM

Will do Boopme.

Thank you for all your help! :thumbsup:

#14 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:40 PM

Posted 17 September 2012 - 06:28 PM

You're welcome!

Now that your log is properly posted, you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a Malware Removal Team member, nor should you continue to ask for help elsewhere. Doing so can result in system changes which may not show it the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

From this point on the Malware Removal Team should be the only members that you take advice from, until they have verified your log as clean.

Please be patient. It may take a while to get a response because the Malware Removal Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the Malware Removal Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRL Team member is already assisting you and not open the thread to respond.

The current wait time is 1 - 3 days and ALL logs are answered.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

To avoid confusion, I am closing this topic.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users