Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

"You are missing a plugin" virus


  • Please log in to reply
18 replies to this topic

#1 sgoodwin49

sgoodwin49

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:03:58 AM

Posted 15 October 2012 - 01:44 PM

Windows XP Pro Service pack 3

When I access most websites, a popup appears that says "You are missing a plugin to play videos". I keep my AV current have run Malwarebytes and set my pop-up blocker to the highest level, but they still appear. How can I rid my computer of this annoying virus? Thanks for any advice.

sgoodwin49

*** Mod Edit: Moved topic from XP to the more appropriate forum. ~ bloopie ***


Edited by bloopie, 15 October 2012 - 10:33 PM.
Topic Moved


BC AdBot (Login to Remove)

 


#2 saw101

saw101

  • Members
  • 432 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Great Pacific Northwest
  • Local time:03:58 AM

Posted 15 October 2012 - 02:41 PM

Not likely a virus. Most likely you are missing the Shockwave Flash plugin.

I never make the same mistake twice....I always make it 5 or 6 times just to be sure!


#3 sgoodwin49

sgoodwin49
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:03:58 AM

Posted 15 October 2012 - 03:00 PM

Hmmm... Thanks for your response. But according to anvisoft.com (I googled "How to remove 'You are missing a plugin to play videos' popup virus"), it is a virus but their solution includes commands that don't work in XP.

#4 saw101

saw101

  • Members
  • 432 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Great Pacific Northwest
  • Local time:03:58 AM

Posted 15 October 2012 - 05:26 PM

I stand corrected. Have a look at this post........

BleepingComputer

I never make the same mistake twice....I always make it 5 or 6 times just to be sure!


#5 sgoodwin49

sgoodwin49
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:03:58 AM

Posted 15 October 2012 - 05:39 PM

Thanks saw101,
Looks like I have a bit of work to do...!

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:58 AM

Posted 15 October 2012 - 10:00 PM

So do you mean that you get pop ups at right bottom corner?

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#7 sgoodwin49

sgoodwin49
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:03:58 AM

Posted 15 October 2012 - 11:56 PM

21:48:02.0849 4472 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
21:48:03.0286 4472 ============================================================
21:48:03.0286 4472 Current date / time: 2012/10/15 21:48:03.0286
21:48:03.0286 4472 SystemInfo:
21:48:03.0286 4472
21:48:03.0286 4472 OS Version: 5.1.2600 ServicePack: 3.0
21:48:03.0286 4472 Product type: Workstation
21:48:03.0286 4472 ComputerName: E520
21:48:03.0286 4472 UserName: Steve
21:48:03.0286 4472 Windows directory: C:\WINDOWS
21:48:03.0286 4472 System windows directory: C:\WINDOWS
21:48:03.0286 4472 Processor architecture: Intel x86
21:48:03.0286 4472 Number of processors: 2
21:48:03.0286 4472 Page size: 0x1000
21:48:03.0286 4472 Boot type: Normal boot
21:48:03.0286 4472 ============================================================
21:48:03.0646 4472 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
21:48:03.0693 4472 Drive \Device\Harddisk5\DR8 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:48:08.0208 4472 ============================================================
21:48:08.0208 4472 \Device\Harddisk0\DR0:
21:48:08.0208 4472 MBR partitions:
21:48:08.0208 4472 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x56CEF8E1
21:48:08.0208 4472 \Device\Harddisk5\DR8:
21:48:08.0208 4472 MBR partitions:
21:48:08.0208 4472 \Device\Harddisk5\DR8\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C02
21:48:08.0208 4472 ============================================================
21:48:08.0271 4472 C: <-> \Device\Harddisk0\DR0\Partition1
21:48:08.0302 4472 I: <-> \Device\Harddisk5\DR8\Partition1
21:48:08.0302 4472 ============================================================
21:48:08.0302 4472 Initialize success
21:48:08.0302 4472 ============================================================
21:51:23.0833 1148 ============================================================
21:51:23.0833 1148 Scan started
21:51:23.0833 1148 Mode: Manual; TDLFS;
21:51:23.0833 1148 ============================================================
21:51:23.0833 1148 ============================================================
21:51:23.0833 1148 Scan finished
21:51:23.0833 1148 ============================================================
21:51:23.0849 3884 Detected object count: 0
21:51:23.0849 3884 Actual detected object count: 0
21:52:25.0443 4508 ============================================================
21:52:25.0443 4508 Scan started
21:52:25.0443 4508 Mode: Manual; TDLFS;
21:52:25.0443 4508 ============================================================
21:52:26.0036 4508 ================ Scan system memory ========================
21:52:26.0036 4508 System memory - ok
21:52:26.0036 4508 ================ Scan services =============================
21:52:26.0036 4508 .afd - ok
21:52:26.0052 4508 .mrxsmb - ok
21:52:26.0068 4508 .redbook - ok
21:52:26.0146 4508 Abiosdsk - ok
21:52:26.0161 4508 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
21:52:26.0161 4508 abp480n5 - ok
21:52:26.0224 4508 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
21:52:26.0224 4508 ACDaemon - ok
21:52:26.0271 4508 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:52:26.0286 4508 ACPI - ok
21:52:26.0302 4508 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
21:52:26.0302 4508 ACPIEC - ok
21:52:26.0396 4508 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:52:26.0396 4508 AdobeFlashPlayerUpdateSvc - ok
21:52:26.0411 4508 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
21:52:26.0411 4508 adpu160m - ok
21:52:26.0474 4508 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
21:52:26.0474 4508 aec - ok
21:52:26.0552 4508 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
21:52:26.0552 4508 AFD - ok
21:52:26.0583 4508 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
21:52:26.0583 4508 agp440 - ok
21:52:26.0599 4508 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
21:52:26.0599 4508 agpCPQ - ok
21:52:26.0630 4508 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
21:52:26.0630 4508 Aha154x - ok
21:52:26.0630 4508 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
21:52:26.0630 4508 aic78u2 - ok
21:52:26.0646 4508 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
21:52:26.0646 4508 aic78xx - ok
21:52:26.0708 4508 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
21:52:26.0708 4508 Alerter - ok
21:52:26.0740 4508 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
21:52:26.0740 4508 ALG - ok
21:52:26.0771 4508 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
21:52:26.0771 4508 AliIde - ok
21:52:26.0802 4508 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
21:52:26.0802 4508 alim1541 - ok
21:52:26.0818 4508 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
21:52:26.0818 4508 amdagp - ok
21:52:26.0833 4508 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
21:52:26.0833 4508 amsint - ok
21:52:26.0865 4508 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:52:26.0865 4508 Apple Mobile Device - ok
21:52:26.0927 4508 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
21:52:26.0927 4508 AppMgmt - ok
21:52:26.0927 4508 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
21:52:26.0927 4508 asc - ok
21:52:26.0943 4508 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
21:52:26.0943 4508 asc3350p - ok
21:52:26.0958 4508 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
21:52:26.0958 4508 asc3550 - ok
21:52:27.0005 4508 [ D880831279ED91F9A4190A2DB9539EA9 ] ASCTRM C:\WINDOWS\system32\drivers\ASCTRM.sys
21:52:27.0005 4508 ASCTRM - ok
21:52:27.0115 4508 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
21:52:27.0146 4508 aspnet_state - ok
21:52:27.0193 4508 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:52:27.0193 4508 AsyncMac - ok
21:52:27.0240 4508 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
21:52:27.0240 4508 atapi - ok
21:52:27.0240 4508 Atdisk - ok
21:52:27.0286 4508 [ C23082B890F21267037CA6111C385FF3 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
21:52:27.0302 4508 Ati HotKey Poller - ok
21:52:27.0333 4508 [ F5FC6AC1E7BC776871361D463FC86BE2 ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
21:52:27.0365 4508 ati2mtag - ok
21:52:27.0365 4508 [ B27FEC21C1125BAB7D3C8CDF872E627B ] ATIAVPCI C:\WINDOWS\system32\DRIVERS\atinavrr.sys
21:52:27.0380 4508 ATIAVPCI - ok
21:52:27.0411 4508 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:52:27.0411 4508 Atmarpc - ok
21:52:27.0458 4508 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
21:52:27.0458 4508 AudioSrv - ok
21:52:27.0505 4508 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
21:52:27.0505 4508 audstub - ok
21:52:27.0552 4508 [ D63D83659EEDF60B3A3E620281A888E5 ] AVGIDSHX C:\WINDOWS\system32\DRIVERS\avgidshx.sys
21:52:27.0552 4508 AVGIDSHX - ok
21:52:27.0599 4508 [ DCB09125C8B4766A88C86914B65487C1 ] Avgldx86 C:\WINDOWS\system32\DRIVERS\avgldx86.sys
21:52:27.0599 4508 Avgldx86 - ok
21:52:27.0615 4508 [ CCDD61545AAEA265977E4B1EFDC74E8C ] Avgmfx86 C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
21:52:27.0615 4508 Avgmfx86 - ok
21:52:27.0615 4508 [ 1FD90B28D2C3100BF4500199C8AD6358 ] Avgrkx86 C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
21:52:27.0630 4508 Avgrkx86 - ok
21:52:27.0646 4508 [ C0BC3B2E3FD625E7F55E1FF863E94592 ] Avgtdix C:\WINDOWS\system32\DRIVERS\avgtdix.sys
21:52:27.0646 4508 Avgtdix - ok
21:52:27.0724 4508 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Program Files\AVG\AVG2012\avgwdsvc.exe
21:52:27.0724 4508 avgwd - ok
21:52:27.0880 4508 [ 9C2CE606E4E7E572799F33AEE5A59C3C ] awhost32 C:\Program Files\Symantec\pcAnywhere\awhost32.exe
21:52:27.0880 4508 awhost32 - ok
21:52:27.0896 4508 [ F7E75C620A04963C9A53C3B47DA80405 ] awlegacy C:\WINDOWS\System32\Drivers\awlegacy.sys
21:52:27.0896 4508 awlegacy - ok
21:52:27.0896 4508 [ 7AB1047FCC742BD4ABF1016C031969CE ] AW_HOST C:\WINDOWS\system32\drivers\aw_host5.sys
21:52:27.0911 4508 AW_HOST - ok
21:52:27.0911 4508 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
21:52:27.0911 4508 Beep - ok
21:52:27.0990 4508 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
21:52:28.0005 4508 BITS - ok
21:52:28.0052 4508 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:52:28.0068 4508 Bonjour Service - ok
21:52:28.0130 4508 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
21:52:28.0130 4508 Browser - ok
21:52:28.0177 4508 [ 2FE6D5BE0629F706197B30C0AA05DE30 ] BrPar C:\WINDOWS\System32\drivers\BrPar.sys
21:52:28.0177 4508 BrPar - ok
21:52:28.0177 4508 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
21:52:28.0177 4508 cbidf - ok
21:52:28.0193 4508 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
21:52:28.0193 4508 cbidf2k - ok
21:52:28.0224 4508 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
21:52:28.0224 4508 CCDECODE - ok
21:52:28.0240 4508 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
21:52:28.0240 4508 cd20xrnt - ok
21:52:28.0240 4508 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
21:52:28.0240 4508 Cdaudio - ok
21:52:28.0255 4508 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
21:52:28.0255 4508 Cdfs - ok
21:52:28.0271 4508 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:52:28.0271 4508 Cdrom - ok
21:52:28.0271 4508 Changer - ok
21:52:28.0302 4508 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
21:52:28.0302 4508 CiSvc - ok
21:52:28.0302 4508 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
21:52:28.0302 4508 ClipSrv - ok
21:52:28.0333 4508 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:52:28.0443 4508 clr_optimization_v2.0.50727_32 - ok
21:52:28.0536 4508 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:52:28.0552 4508 clr_optimization_v4.0.30319_32 - ok
21:52:28.0568 4508 [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
21:52:28.0568 4508 CmdIde - ok
21:52:28.0583 4508 COMSysApp - ok
21:52:28.0599 4508 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
21:52:28.0599 4508 Cpqarray - ok
21:52:28.0615 4508 [ 3C8B6609712F4FF78E521F6DCFC4032B ] Creative Service for CDROM Access C:\WINDOWS\system32\CTsvcCDA.exe
21:52:28.0615 4508 Creative Service for CDROM Access - ok
21:52:28.0646 4508 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
21:52:28.0661 4508 CryptSvc - ok
21:52:28.0677 4508 [ 8A9C65CE4FE6E8CB24CE06BA28D951A0 ] ctac32k C:\WINDOWS\system32\drivers\ctac32k.sys
21:52:28.0677 4508 ctac32k - ok
21:52:28.0693 4508 [ 47236971DFB3E03690B98E41665D0924 ] ctaud2k C:\WINDOWS\system32\drivers\ctaud2k.sys
21:52:28.0693 4508 ctaud2k - ok
21:52:28.0724 4508 [ 5A0EEB00B02FC78605AA9D3590B24978 ] ctdvda2k C:\WINDOWS\system32\drivers\ctdvda2k.sys
21:52:28.0724 4508 ctdvda2k - ok
21:52:28.0740 4508 [ 2381CF056C15271F6B8DAB50FF82CF3A ] ctprxy2k C:\WINDOWS\system32\drivers\ctprxy2k.sys
21:52:28.0740 4508 ctprxy2k - ok
21:52:28.0771 4508 [ DA1C530DE86C85A701138B30FB145AF3 ] ctsfm2k C:\WINDOWS\system32\drivers\ctsfm2k.sys
21:52:28.0771 4508 ctsfm2k - ok
21:52:28.0786 4508 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
21:52:28.0786 4508 dac2w2k - ok
21:52:28.0802 4508 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
21:52:28.0802 4508 dac960nt - ok
21:52:28.0849 4508 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
21:52:28.0865 4508 DcomLaunch - ok
21:52:28.0911 4508 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
21:52:28.0911 4508 Dhcp - ok
21:52:28.0927 4508 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
21:52:28.0927 4508 Disk - ok
21:52:29.0005 4508 [ E2D0DE31442390C35E3163C87CB6A9EB ] DLABOIOM C:\WINDOWS\system32\DLA\DLABOIOM.SYS
21:52:29.0005 4508 DLABOIOM - ok
21:52:29.0005 4508 [ D979BEBCF7EDCC9C9EE1857D1A68C67B ] DLACDBHM C:\WINDOWS\system32\Drivers\DLACDBHM.SYS
21:52:29.0005 4508 DLACDBHM - ok
21:52:29.0005 4508 [ 83545593E297F50A8E2524B4C071A153 ] DLADResN C:\WINDOWS\system32\DLA\DLADResN.SYS
21:52:29.0005 4508 DLADResN - ok
21:52:29.0021 4508 [ 96E01D901CDC98C7817155CC057001BF ] DLAIFS_M C:\WINDOWS\system32\DLA\DLAIFS_M.SYS
21:52:29.0021 4508 DLAIFS_M - ok
21:52:29.0021 4508 [ 0A60A39CC5E767980A31CA5D7238DFA9 ] DLAOPIOM C:\WINDOWS\system32\DLA\DLAOPIOM.SYS
21:52:29.0021 4508 DLAOPIOM - ok
21:52:29.0021 4508 [ 9FE2B72558FC808357F427FD83314375 ] DLAPoolM C:\WINDOWS\system32\DLA\DLAPoolM.SYS
21:52:29.0021 4508 DLAPoolM - ok
21:52:29.0036 4508 [ 7EE0852AE8907689DF25049DCD2342E8 ] DLARTL_N C:\WINDOWS\system32\Drivers\DLARTL_N.SYS
21:52:29.0036 4508 DLARTL_N - ok
21:52:29.0036 4508 [ F08E1DAFAC457893399E03430A6A1397 ] DLAUDFAM C:\WINDOWS\system32\DLA\DLAUDFAM.SYS
21:52:29.0036 4508 DLAUDFAM - ok
21:52:29.0052 4508 [ E7D105ED1E694449D444A9933DF8E060 ] DLAUDF_M C:\WINDOWS\system32\DLA\DLAUDF_M.SYS
21:52:29.0052 4508 DLAUDF_M - ok
21:52:29.0052 4508 dmadmin - ok
21:52:29.0161 4508 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
21:52:29.0177 4508 dmboot - ok
21:52:29.0177 4508 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
21:52:29.0177 4508 dmio - ok
21:52:29.0177 4508 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
21:52:29.0193 4508 dmload - ok
21:52:29.0208 4508 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
21:52:29.0208 4508 dmserver - ok
21:52:29.0224 4508 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
21:52:29.0224 4508 DMusic - ok
21:52:29.0240 4508 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
21:52:29.0255 4508 Dnscache - ok
21:52:29.0302 4508 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
21:52:29.0302 4508 Dot3svc - ok
21:52:29.0318 4508 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
21:52:29.0318 4508 dpti2o - ok
21:52:29.0365 4508 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
21:52:29.0365 4508 drmkaud - ok
21:52:29.0365 4508 [ FD0F95981FEF9073659D8EC58E40AA3C ] DRVMCDB C:\WINDOWS\system32\Drivers\DRVMCDB.SYS
21:52:29.0380 4508 DRVMCDB - ok
21:52:29.0380 4508 [ B4869D320428CDC5EC4D7F5E808E99B5 ] DRVNDDM C:\WINDOWS\system32\Drivers\DRVNDDM.SYS
21:52:29.0380 4508 DRVNDDM - ok
21:52:29.0490 4508 [ 2AC2372FFAD9ADC85672CC8E8AE14BE9 ] DSproct C:\Program Files\Dell Support\GTAction\triggers\DSproct.sys
21:52:29.0490 4508 DSproct - ok
21:52:29.0505 4508 [ 3FCA03CBCA11269F973B70FA483C88EF ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
21:52:29.0505 4508 E100B - ok
21:52:29.0521 4508 [ 00192F0C612591D585594E9467E6CA8B ] e1express C:\WINDOWS\system32\DRIVERS\e1e5132.sys
21:52:29.0536 4508 e1express - ok
21:52:29.0552 4508 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
21:52:29.0568 4508 EapHost - ok
21:52:29.0661 4508 [ 5D1347AA5AE6E2F77D7F4F8372D95AC9 ] ehRecvr C:\WINDOWS\eHome\ehRecvr.exe
21:52:29.0661 4508 ehRecvr - ok
21:52:29.0661 4508 [ A53243709439AC2A4C216B817F8D7411 ] ehSched C:\WINDOWS\eHome\ehSched.exe
21:52:29.0677 4508 ehSched - ok
21:52:29.0724 4508 [ 0923AEC043F5D355B4EF0C2B29A362DE ] ELacpi C:\WINDOWS\system32\DRIVERS\ELacpi.sys
21:52:29.0724 4508 ELacpi - ok
21:52:29.0771 4508 [ CBD71E7772F92BFB85CCC302B2DEEFBA ] ELhid C:\WINDOWS\System32\Drivers\Elhid.sys
21:52:29.0786 4508 ELhid - ok
21:52:29.0786 4508 [ AC75B576C45D144E146FD1F0576A1F53 ] ELkbd C:\WINDOWS\System32\Drivers\Elkbd.sys
21:52:29.0786 4508 ELkbd - ok
21:52:29.0786 4508 [ 483CCE5E40137D4E437F4DEF55C80007 ] ELmon C:\WINDOWS\System32\Drivers\Elmon.sys
21:52:29.0786 4508 ELmon - ok
21:52:29.0802 4508 [ 8E88CAFEAC0812BF2D15BEEEDFCCE8BD ] ELmou C:\WINDOWS\System32\Drivers\Elmou.sys
21:52:29.0802 4508 ELmou - ok
21:52:29.0849 4508 [ 47FCF6628E1A221C41F3F0130FBF258E ] ELService C:\Program Files\Intel\IntelDH\Intel® Quick Resume Technology Drivers\Elservice.exe
21:52:29.0865 4508 ELService - ok
21:52:29.0865 4508 [ 661CF27263F3E0B553BE050A42D357DB ] emupia C:\WINDOWS\system32\drivers\emupia2k.sys
21:52:29.0865 4508 emupia - ok
21:52:29.0880 4508 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
21:52:29.0880 4508 ERSvc - ok
21:52:29.0927 4508 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
21:52:29.0927 4508 Eventlog - ok
21:52:29.0990 4508 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
21:52:29.0990 4508 EventSystem - ok
21:52:30.0036 4508 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
21:52:30.0036 4508 Fastfat - ok
21:52:30.0083 4508 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
21:52:30.0083 4508 FastUserSwitchingCompatibility - ok
21:52:30.0115 4508 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
21:52:30.0130 4508 Fdc - ok
21:52:30.0130 4508 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
21:52:30.0130 4508 Fips - ok
21:52:30.0161 4508 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:52:30.0161 4508 Flpydisk - ok
21:52:30.0177 4508 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
21:52:30.0177 4508 FltMgr - ok
21:52:30.0224 4508 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
21:52:30.0224 4508 FontCache3.0.0.0 - ok
21:52:30.0255 4508 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:52:30.0255 4508 Fs_Rec - ok
21:52:30.0302 4508 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:52:30.0302 4508 Ftdisk - ok
21:52:30.0349 4508 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
21:52:30.0349 4508 GEARAspiWDM - ok
21:52:30.0365 4508 [ BA294768509FA03FCFE766962DEE3CAD ] Gernuwa C:\WINDOWS\system32\drivers\Gernuwa.sys
21:52:30.0365 4508 Gernuwa - ok
21:52:30.0411 4508 [ 947DA3AD94A7593BFA439939AC5E823B ] getPlusHelper C:\Program Files\NOS\bin\getPlus_Helper.dll
21:52:30.0411 4508 getPlusHelper - ok
21:52:30.0474 4508 [ 9F5F2F0FB0A7F5AA9F16B9A7B6DAD89F ] GoogleDesktopManager-051210-111108 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
21:52:30.0490 4508 GoogleDesktopManager-051210-111108 - ok
21:52:30.0490 4508 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:52:30.0505 4508 Gpc - ok
21:52:30.0552 4508 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
21:52:30.0552 4508 gupdate - ok
21:52:30.0552 4508 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
21:52:30.0552 4508 gupdatem - ok
21:52:30.0599 4508 [ CC839E8D766CC31A7710C9F38CF3E375 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
21:52:30.0599 4508 gusvc - ok
21:52:30.0661 4508 [ 862D4185D43128FEF7818711F8F30436 ] ha20x2k C:\WINDOWS\system32\drivers\ha20x2k.sys
21:52:30.0677 4508 ha20x2k - ok
21:52:30.0740 4508 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
21:52:30.0740 4508 helpsvc - ok
21:52:30.0771 4508 [ BB1A6FB7D35A91E599973FA74A619056 ] HidIr C:\WINDOWS\system32\DRIVERS\hidir.sys
21:52:30.0771 4508 HidIr - ok
21:52:30.0802 4508 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
21:52:30.0802 4508 HidServ - ok
21:52:30.0865 4508 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:52:30.0865 4508 HidUsb - ok
21:52:30.0896 4508 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
21:52:30.0896 4508 hkmsvc - ok
21:52:30.0927 4508 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
21:52:30.0927 4508 hpn - ok
21:52:30.0974 4508 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
21:52:30.0974 4508 HTTP - ok
21:52:31.0021 4508 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
21:52:31.0021 4508 HTTPFilter - ok
21:52:31.0036 4508 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
21:52:31.0036 4508 i2omgmt - ok
21:52:31.0068 4508 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
21:52:31.0068 4508 i2omp - ok
21:52:31.0068 4508 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:52:31.0068 4508 i8042prt - ok
21:52:31.0130 4508 [ B122BE74E283A2BC7FEBC180BFD2EFD5 ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
21:52:31.0130 4508 IAANTMON - ok
21:52:31.0208 4508 [ 0674CE8AE167D830B871A99C677C5C59 ] ialm C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
21:52:31.0224 4508 ialm - ok
21:52:31.0271 4508 [ 019CF5F31C67030841233C545A0E217A ] iaStor C:\WINDOWS\system32\drivers\iaStor.sys
21:52:31.0271 4508 iaStor - ok
21:52:31.0333 4508 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:52:31.0349 4508 idsvc - ok
21:52:31.0365 4508 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
21:52:31.0365 4508 Imapi - ok
21:52:31.0427 4508 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
21:52:31.0427 4508 ImapiService - ok
21:52:31.0458 4508 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
21:52:31.0458 4508 ini910u - ok
21:52:31.0474 4508 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
21:52:31.0474 4508 IntelIde - ok
21:52:31.0521 4508 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
21:52:31.0521 4508 intelppm - ok
21:52:31.0583 4508 [ 3DC635B66DD7412E1C9C3A77B8D78F25 ] IntuitUpdateService C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
21:52:31.0583 4508 IntuitUpdateService - ok
21:52:31.0615 4508 [ 1663A135865F0BA6E853353E98E67F2A ] IntuitUpdateServiceV4 C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
21:52:31.0615 4508 IntuitUpdateServiceV4 - ok
21:52:31.0646 4508 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
21:52:31.0646 4508 Ip6Fw - ok
21:52:31.0677 4508 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:52:31.0677 4508 IpFilterDriver - ok
21:52:31.0693 4508 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:52:31.0708 4508 IpInIp - ok
21:52:31.0724 4508 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:52:31.0724 4508 IpNat - ok
21:52:31.0833 4508 [ BC0EA61246F8D940FBC5F652D337D6BD ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
21:52:31.0849 4508 iPod Service - ok
21:52:31.0865 4508 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:52:31.0880 4508 IPSec - ok
21:52:31.0958 4508 [ B43B36B382AEA10861F7C7A37F9D4AE2 ] IrBus C:\WINDOWS\system32\DRIVERS\IrBus.sys
21:52:31.0958 4508 IrBus - ok
21:52:31.0974 4508 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
21:52:31.0974 4508 IRENUM - ok
21:52:31.0974 4508 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:52:31.0974 4508 isapnp - ok
21:52:32.0068 4508 [ E731921DB2E17DCD3DB472FAD5549C57 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
21:52:32.0068 4508 JavaQuickStarterService - ok
21:52:32.0099 4508 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:52:32.0099 4508 Kbdclass - ok
21:52:32.0099 4508 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:52:32.0099 4508 kbdhid - ok
21:52:32.0115 4508 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
21:52:32.0115 4508 kmixer - ok
21:52:32.0146 4508 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
21:52:32.0146 4508 KSecDD - ok
21:52:32.0193 4508 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
21:52:32.0193 4508 lanmanserver - ok
21:52:32.0240 4508 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
21:52:32.0240 4508 lanmanworkstation - ok
21:52:32.0271 4508 [ B28C741AE2912A079CF90041A9E5C0A4 ] LBeepKE C:\WINDOWS\system32\Drivers\LBeepKE.sys
21:52:32.0271 4508 LBeepKE - ok
21:52:32.0286 4508 lbrtfdc - ok
21:52:32.0318 4508 [ 3FA98339E8D9E007726BE62F231E2015 ] LHidFilt C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
21:52:32.0318 4508 LHidFilt - ok
21:52:32.0318 4508 [ DD40C03D85649205EC086722474C8A63 ] LHidKe C:\WINDOWS\system32\DRIVERS\LHidKE.Sys
21:52:32.0333 4508 LHidKe - ok
21:52:32.0333 4508 lmab_device - ok
21:52:32.0349 4508 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
21:52:32.0349 4508 LmHosts - ok
21:52:32.0458 4508 [ 63DAF163D1617DD611BD0AB8E41A43E8 ] LMIGuardianSvc C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe
21:52:32.0458 4508 LMIGuardianSvc - ok
21:52:32.0490 4508 [ 4F69FAAABB7DB0D43E327C0B6AAB40FC ] LMIInfo C:\Program Files\LogMeIn\x86\RaInfo.sys
21:52:32.0490 4508 LMIInfo - ok
21:52:32.0505 4508 [ 175F50F37EEAA1D4D744BCCCBB7CF68C ] LMIMaint C:\Program Files\LogMeIn\x86\RaMaint.exe
21:52:32.0505 4508 LMIMaint - ok
21:52:32.0552 4508 [ 4477689E2D8AE6B78BA34C9AF4CC1ED1 ] lmimirr C:\WINDOWS\system32\DRIVERS\lmimirr.sys
21:52:32.0552 4508 lmimirr - ok
21:52:32.0552 4508 LMIRfsClientNP - ok
21:52:32.0568 4508 [ 3FAA563DDF853320F90259D455A01D79 ] LMIRfsDriver C:\WINDOWS\system32\drivers\LMIRfsDriver.sys
21:52:32.0568 4508 LMIRfsDriver - ok
21:52:32.0630 4508 [ F259F758E04D8FB8D48C6CDBE45223E8 ] LMouFilt C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
21:52:32.0630 4508 LMouFilt - ok
21:52:32.0630 4508 [ 2EBD4C02D259944869630A912EC86BCE ] LMouKE C:\WINDOWS\system32\DRIVERS\LMouKE.Sys
21:52:32.0646 4508 LMouKE - ok
21:52:32.0693 4508 [ 432618FA75B61059D2C57D6A7E55147A ] LogMeIn C:\Program Files\LogMeIn\x86\LogMeIn.exe
21:52:32.0693 4508 LogMeIn - ok
21:52:32.0740 4508 [ A9ABAD5FCB7011114082933B01E13FCE ] LVUSBSta C:\WINDOWS\system32\drivers\lvusbsta.sys
21:52:32.0755 4508 LVUSBSta - ok
21:52:32.0755 4508 lyhetzpr - ok
21:52:32.0818 4508 [ DF0A511F38F16016BF658FCA0090CB87 ] McrdSvc C:\WINDOWS\ehome\mcrdsvc.exe
21:52:32.0833 4508 McrdSvc - ok
21:52:33.0068 4508 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
21:52:33.0068 4508 MDM - ok
21:52:33.0115 4508 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
21:52:33.0115 4508 Messenger - ok
21:52:33.0130 4508 [ B7521F69C0A9B29D356157229376FB21 ] MHN C:\WINDOWS\System32\mhn.dll
21:52:33.0130 4508 MHN - ok
21:52:33.0146 4508 [ 7F2F1D2815A6449D346FCCCBC569FBD6 ] MHNDRV C:\WINDOWS\system32\DRIVERS\mhndrv.sys
21:52:33.0146 4508 MHNDRV - ok
21:52:33.0161 4508 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
21:52:33.0161 4508 mnmdd - ok
21:52:33.0193 4508 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
21:52:33.0208 4508 mnmsrvc - ok
21:52:33.0224 4508 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
21:52:33.0224 4508 Modem - ok
21:52:33.0224 4508 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:52:33.0224 4508 Mouclass - ok
21:52:33.0255 4508 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:52:33.0255 4508 mouhid - ok
21:52:33.0255 4508 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
21:52:33.0255 4508 MountMgr - ok
21:52:33.0271 4508 [ C0F8E0C2C3C0437CF37C6781896DC3EC ] MPE C:\WINDOWS\system32\DRIVERS\MPE.sys
21:52:33.0271 4508 MPE - ok
21:52:33.0302 4508 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
21:52:33.0302 4508 mraid35x - ok
21:52:33.0302 4508 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:52:33.0302 4508 MRxDAV - ok
21:52:33.0380 4508 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:52:33.0380 4508 MRxSmb - ok
21:52:33.0396 4508 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
21:52:33.0396 4508 MSDTC - ok
21:52:33.0411 4508 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
21:52:33.0411 4508 Msfs - ok
21:52:33.0411 4508 MSIServer - ok
21:52:33.0443 4508 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:52:33.0443 4508 MSKSSRV - ok
21:52:33.0458 4508 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:52:33.0458 4508 MSPCLOCK - ok
21:52:33.0490 4508 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
21:52:33.0490 4508 MSPQM - ok
21:52:33.0490 4508 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:52:33.0505 4508 mssmbios - ok
21:52:33.0521 4508 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
21:52:33.0521 4508 MSTEE - ok
21:52:33.0552 4508 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
21:52:33.0552 4508 Mup - ok
21:52:33.0583 4508 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
21:52:33.0583 4508 NABTSFEC - ok
21:52:33.0630 4508 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
21:52:33.0646 4508 napagent - ok
21:52:33.0661 4508 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
21:52:33.0677 4508 NDIS - ok
21:52:33.0693 4508 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
21:52:33.0693 4508 NdisIP - ok
21:52:33.0708 4508 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:52:33.0708 4508 NdisTapi - ok
21:52:33.0755 4508 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:52:33.0755 4508 Ndisuio - ok
21:52:33.0755 4508 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:52:33.0771 4508 NdisWan - ok
21:52:33.0818 4508 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
21:52:33.0818 4508 NDProxy - ok
21:52:33.0818 4508 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
21:52:33.0818 4508 NetBIOS - ok
21:52:33.0833 4508 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
21:52:33.0849 4508 NetBT - ok
21:52:33.0865 4508 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
21:52:33.0865 4508 NetDDE - ok
21:52:33.0880 4508 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
21:52:33.0880 4508 NetDDEdsdm - ok
21:52:33.0927 4508 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
21:52:33.0927 4508 Netlogon - ok
21:52:34.0005 4508 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
21:52:34.0005 4508 Netman - ok
21:52:34.0021 4508 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:52:34.0021 4508 NetTcpPortSharing - ok
21:52:34.0052 4508 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
21:52:34.0052 4508 Nla - ok
21:52:34.0068 4508 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
21:52:34.0068 4508 Npfs - ok
21:52:34.0083 4508 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
21:52:34.0083 4508 Ntfs - ok
21:52:34.0083 4508 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
21:52:34.0099 4508 NtLmSsp - ok
21:52:34.0146 4508 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
21:52:34.0146 4508 NtmsSvc - ok
21:52:34.0161 4508 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
21:52:34.0161 4508 Null - ok
21:52:34.0208 4508 [ 2B298519EDBFCF451D43E0F1E8F1006D ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
21:52:34.0255 4508 nv - ok
21:52:34.0271 4508 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:52:34.0271 4508 NwlnkFlt - ok
21:52:34.0271 4508 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:52:34.0271 4508 NwlnkFwd - ok
21:52:34.0286 4508 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:52:34.0286 4508 ose - ok
21:52:34.0318 4508 [ 99F877A7BB6FEB5AF1184EAFE937C208 ] ossrv C:\WINDOWS\system32\drivers\ctoss2k.sys
21:52:34.0333 4508 ossrv - ok
21:52:34.0380 4508 [ 937A02981F11B2CE96B1D493C95AED2B ] p2pgasvc C:\WINDOWS\system32\p2pgasvc.dll
21:52:34.0380 4508 p2pgasvc - ok
21:52:34.0427 4508 [ 4A1035CB8F0D57BE41873B5183D96CF4 ] p2pimsvc C:\WINDOWS\system32\p2psvc.dll
21:52:34.0443 4508 p2pimsvc - ok
21:52:34.0443 4508 [ 4A1035CB8F0D57BE41873B5183D96CF4 ] p2psvc C:\WINDOWS\system32\p2psvc.dll
21:52:34.0458 4508 p2psvc - ok
21:52:34.0474 4508 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
21:52:34.0474 4508 Parport - ok
21:52:34.0490 4508 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
21:52:34.0490 4508 PartMgr - ok
21:52:34.0536 4508 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
21:52:34.0536 4508 ParVdm - ok
21:52:34.0568 4508 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
21:52:34.0568 4508 PCI - ok
21:52:34.0568 4508 PCIDump - ok
21:52:34.0615 4508 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
21:52:34.0615 4508 PCIIde - ok
21:52:34.0661 4508 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
21:52:34.0661 4508 Pcmcia - ok
21:52:34.0661 4508 PDCOMP - ok
21:52:34.0677 4508 PDFRAME - ok
21:52:34.0677 4508 PDRELI - ok
21:52:34.0677 4508 PDRFRAME - ok
21:52:34.0693 4508 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
21:52:34.0693 4508 perc2 - ok
21:52:34.0708 4508 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
21:52:34.0708 4508 perc2hib - ok
21:52:34.0740 4508 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
21:52:34.0740 4508 PlugPlay - ok
21:52:34.0755 4508 [ 4A1035CB8F0D57BE41873B5183D96CF4 ] PNRPSvc C:\WINDOWS\system32\p2psvc.dll
21:52:34.0755 4508 PNRPSvc - ok
21:52:34.0771 4508 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
21:52:34.0771 4508 PolicyAgent - ok
21:52:34.0771 4508 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:52:34.0771 4508 PptpMiniport - ok
21:52:34.0771 4508 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
21:52:34.0786 4508 ProtectedStorage - ok
21:52:34.0786 4508 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
21:52:34.0786 4508 PSched - ok
21:52:34.0818 4508 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:52:34.0818 4508 Ptilink - ok
21:52:34.0849 4508 [ 81088114178112618B1C414A65E50F7C ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
21:52:34.0849 4508 PxHelp20 - ok
21:52:34.0911 4508 [ A5D52C11EFF8B133432D98B2C2A4AEE6 ] QCMerced C:\WINDOWS\system32\DRIVERS\LVCM.sys
21:52:34.0911 4508 QCMerced - ok
21:52:34.0927 4508 qgdtklje - ok
21:52:34.0943 4508 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
21:52:34.0943 4508 ql1080 - ok
21:52:34.0943 4508 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
21:52:34.0943 4508 Ql10wnt - ok
21:52:34.0958 4508 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
21:52:34.0958 4508 ql12160 - ok
21:52:34.0974 4508 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
21:52:34.0974 4508 ql1240 - ok
21:52:34.0974 4508 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
21:52:34.0974 4508 ql1280 - ok
21:52:35.0005 4508 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:52:35.0005 4508 RasAcd - ok
21:52:35.0099 4508 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
21:52:35.0099 4508 RasAuto - ok
21:52:35.0099 4508 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:52:35.0099 4508 Rasl2tp - ok
21:52:35.0177 4508 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
21:52:35.0177 4508 RasMan - ok
21:52:35.0177 4508 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:52:35.0177 4508 RasPppoe - ok
21:52:35.0193 4508 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
21:52:35.0193 4508 Raspti - ok
21:52:35.0224 4508 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:52:35.0224 4508 Rdbss - ok
21:52:35.0240 4508 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:52:35.0240 4508 RDPCDD - ok
21:52:35.0255 4508 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
21:52:35.0255 4508 rdpdr - ok
21:52:35.0318 4508 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
21:52:35.0318 4508 RDPWD - ok
21:52:35.0349 4508 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
21:52:35.0349 4508 RDSessMgr - ok
21:52:35.0365 4508 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
21:52:35.0365 4508 redbook - ok
21:52:35.0396 4508 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
21:52:35.0396 4508 RemoteAccess - ok
21:52:35.0411 4508 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
21:52:35.0427 4508 RemoteRegistry - ok
21:52:35.0490 4508 [ B30E1A8516173F7FC577DC954D97A0DB ] RioMSC C:\WINDOWS\system32\RioMSC.exe
21:52:35.0505 4508 RioMSC - ok
21:52:35.0521 4508 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
21:52:35.0521 4508 RpcLocator - ok
21:52:35.0568 4508 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\system32\rpcss.dll
21:52:35.0568 4508 RpcSs - ok
21:52:35.0583 4508 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
21:52:35.0599 4508 RSVP - ok
21:52:35.0599 4508 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
21:52:35.0599 4508 SamSs - ok
21:52:35.0599 4508 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
21:52:35.0615 4508 SCardSvr - ok
21:52:35.0646 4508 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
21:52:35.0661 4508 Schedule - ok
21:52:35.0708 4508 [ 8EDD7B9E4A4B4C16E2DAB9188CAA861B ] SDDMI2 C:\WINDOWS\system32\DDMI2.sys
21:52:35.0708 4508 SDDMI2 - ok
21:52:35.0740 4508 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:52:35.0740 4508 Secdrv - ok
21:52:35.0771 4508 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
21:52:35.0771 4508 seclogon - ok
21:52:35.0849 4508 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
21:52:35.0849 4508 SENS - ok
21:52:35.0896 4508 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
21:52:35.0896 4508 serenum - ok
21:52:35.0927 4508 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
21:52:35.0927 4508 Serial - ok
21:52:35.0943 4508 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
21:52:35.0943 4508 Sfloppy - ok
21:52:35.0990 4508 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
21:52:36.0005 4508 SharedAccess - ok
21:52:36.0021 4508 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
21:52:36.0021 4508 ShellHWDetection - ok
21:52:36.0021 4508 Simbad - ok
21:52:36.0052 4508 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
21:52:36.0052 4508 sisagp - ok
21:52:36.0130 4508 [ A37740568718F245E818D0C5575B9AA9 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
21:52:36.0130 4508 SkypeUpdate - ok
21:52:36.0161 4508 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
21:52:36.0177 4508 SLIP - ok
21:52:36.0224 4508 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
21:52:36.0224 4508 Sparrow - ok
21:52:36.0255 4508 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
21:52:36.0255 4508 splitter - ok
21:52:36.0302 4508 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
21:52:36.0302 4508 Spooler - ok
21:52:36.0349 4508 sprtsvc_dellsupportcenter - ok
21:52:36.0380 4508 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
21:52:36.0380 4508 sr - ok
21:52:36.0380 4508 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
21:52:36.0396 4508 srservice - ok
21:52:36.0443 4508 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
21:52:36.0458 4508 Srv - ok
21:52:36.0458 4508 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
21:52:36.0474 4508 SSDPSRV - ok
21:52:36.0536 4508 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
21:52:36.0552 4508 stisvc - ok
21:52:36.0583 4508 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
21:52:36.0583 4508 streamip - ok
21:52:36.0615 4508 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
21:52:36.0615 4508 swenum - ok
21:52:36.0630 4508 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
21:52:36.0630 4508 swmidi - ok
21:52:36.0630 4508 SwPrv - ok
21:52:36.0661 4508 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
21:52:36.0661 4508 symc810 - ok
21:52:36.0661 4508 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
21:52:36.0677 4508 symc8xx - ok
21:52:36.0724 4508 [ AFDCF8008D0FFE23F42071C1540F35E7 ] SymEvent C:\Program Files\Symantec\SYMEVENT.SYS
21:52:36.0740 4508 SymEvent - ok
21:52:36.0740 4508 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
21:52:36.0755 4508 sym_hi - ok
21:52:36.0755 4508 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
21:52:36.0771 4508 sym_u3 - ok
21:52:36.0802 4508 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
21:52:36.0802 4508 sysaudio - ok
21:52:36.0849 4508 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
21:52:36.0849 4508 SysmonLog - ok
21:52:36.0896 4508 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
21:52:36.0896 4508 TapiSrv - ok
21:52:36.0943 4508 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:52:36.0943 4508 Tcpip - ok
21:52:36.0974 4508 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
21:52:36.0974 4508 TDPIPE - ok
21:52:36.0990 4508 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
21:52:36.0990 4508 TDTCP - ok
21:52:37.0036 4508 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
21:52:37.0036 4508 TermDD - ok
21:52:37.0115 4508 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
21:52:37.0115 4508 TermService - ok
21:52:37.0146 4508 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
21:52:37.0146 4508 Themes - ok
21:52:37.0177 4508 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
21:52:37.0177 4508 TlntSvr - ok
21:52:37.0193 4508 [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
21:52:37.0193 4508 TosIde - ok
21:52:37.0224 4508 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
21:52:37.0224 4508 TrkWks - ok
21:52:37.0286 4508 [ 8F861EDA21C05857EB8197300A92501C ] tunmp C:\WINDOWS\system32\DRIVERS\tunmp.sys
21:52:37.0286 4508 tunmp - ok
21:52:37.0333 4508 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
21:52:37.0333 4508 Udfs - ok
21:52:37.0349 4508 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
21:52:37.0349 4508 ultra - ok
21:52:37.0365 4508 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
21:52:37.0380 4508 Update - ok
21:52:37.0411 4508 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
21:52:37.0411 4508 upnphost - ok
21:52:37.0411 4508 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
21:52:37.0427 4508 UPS - ok
21:52:37.0458 4508 [ 73B41F4EAD65F355962168D766AF0F2E ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
21:52:37.0458 4508 USBAAPL - ok
21:52:37.0474 4508 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
21:52:37.0474 4508 usbaudio - ok
21:52:37.0505 4508 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:52:37.0505 4508 usbccgp - ok
21:52:37.0568 4508 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:52:37.0568 4508 usbehci - ok
21:52:37.0646 4508 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:52:37.0646 4508 usbhub - ok
21:52:37.0677 4508 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
21:52:37.0677 4508 usbprint - ok
21:52:37.0708 4508 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
21:52:37.0708 4508 usbscan - ok
21:52:37.0708 4508 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:52:37.0708 4508 USBSTOR - ok
21:52:37.0740 4508 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
21:52:37.0740 4508 usbuhci - ok
21:52:37.0818 4508 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
21:52:37.0818 4508 VgaSave - ok
21:52:37.0865 4508 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
21:52:37.0880 4508 viaagp - ok
21:52:37.0896 4508 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
21:52:37.0927 4508 ViaIde - ok
21:52:37.0943 4508 [ 3B8F222B23917C041E4DA29CCC57E7D0 ] vncmirror C:\WINDOWS\system32\DRIVERS\vncmirror.sys
21:52:37.0943 4508 vncmirror - ok
21:52:38.0005 4508 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
21:52:38.0005 4508 VolSnap - ok
21:52:38.0083 4508 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
21:52:38.0099 4508 VSS - ok
21:52:38.0146 4508 [ 54AF4B1D5459500EF0937F6D33B1914F ] w32time C:\WINDOWS\system32\w32time.dll
21:52:38.0146 4508 w32time - ok
21:52:38.0146 4508 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:52:38.0161 4508 Wanarp - ok
21:52:38.0161 4508 wanatw - ok
21:52:38.0193 4508 [ FD47474BD21794508AF449D9D91AF6E6 ] Wdf01000 C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
21:52:38.0193 4508 Wdf01000 - ok
21:52:38.0208 4508 WDICA - ok
21:52:38.0240 4508 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
21:52:38.0240 4508 wdmaud - ok
21:52:38.0302 4508 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
21:52:38.0302 4508 WebClient - ok
21:52:38.0365 4508 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
21:52:38.0365 4508 winmgmt - ok
21:52:38.0474 4508 [ DB8236F16E9D20D8AEF17E29AC05B797 ] WinVNC4 C:\Program Files\RealVNC\VNC4\WinVNC4.exe
21:52:38.0490 4508 WinVNC4 - ok
21:52:38.0521 4508 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
21:52:38.0536 4508 WmdmPmSN - ok
21:52:38.0568 4508 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi C:\WINDOWS\System32\advapi32.dll
21:52:38.0568 4508 Wmi - ok
21:52:38.0583 4508 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
21:52:38.0583 4508 WmiApSrv - ok
21:52:38.0630 4508 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
21:52:38.0646 4508 WMPNetworkSvc - ok
21:52:38.0661 4508 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
21:52:38.0661 4508 WpdUsb - ok
21:52:38.0802 4508 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
21:52:38.0802 4508 WPFFontCache_v0400 - ok
21:52:38.0849 4508 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
21:52:38.0865 4508 wscsvc - ok
21:52:38.0896 4508 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
21:52:38.0896 4508 WSTCODEC - ok
21:52:38.0958 4508 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
21:52:38.0958 4508 wuauserv - ok
21:52:39.0005 4508 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:52:39.0005 4508 WudfPf - ok
21:52:39.0036 4508 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:52:39.0036 4508 WudfRd - ok
21:52:39.0068 4508 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
21:52:39.0083 4508 WudfSvc - ok
21:52:39.0161 4508 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
21:52:39.0161 4508 WZCSVC - ok
21:52:39.0224 4508 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
21:52:39.0224 4508 xmlprov - ok
21:52:39.0365 4508 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
21:52:39.0380 4508 YahooAUService - ok
21:52:39.0380 4508 ================ Scan global ===============================
21:52:39.0443 4508 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
21:52:39.0458 4508 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
21:52:39.0474 4508 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
21:52:39.0521 4508 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
21:52:39.0536 4508 [Global] - ok
21:52:39.0536 4508 ================ Scan MBR ==================================
21:52:39.0568 4508 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
21:52:39.0833 4508 \Device\Harddisk0\DR0 - ok
21:52:39.0833 4508 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk5\DR8
21:52:40.0021 4508 \Device\Harddisk5\DR8 - ok
21:52:40.0021 4508 ================ Scan VBR ==================================
21:52:40.0021 4508 [ DF26C02B25B75FF8B8583271AE313B97 ] \Device\Harddisk0\DR0\Partition1
21:52:40.0021 4508 \Device\Harddisk0\DR0\Partition1 - ok
21:52:40.0021 4508 [ F85D8C153D8102C8186F70845EDF4F7E ] \Device\Harddisk5\DR8\Partition1
21:52:40.0021 4508 \Device\Harddisk5\DR8\Partition1 - ok
21:52:40.0021 4508 ============================================================
21:52:40.0021 4508 Scan finished
21:52:40.0021 4508 ============================================================
21:52:40.0036 0548 Detected object count: 0
21:52:40.0036 0548 Actual detected object count: 0
21:52:57.0115 2636 Deinitialize success

#8 sgoodwin49

sgoodwin49
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:03:58 AM

Posted 16 October 2012 - 08:05 AM

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-10-15 22:00:21
-----------------------------
22:00:21.740 OS Version: Windows 5.1.2600 Service Pack 3
22:00:21.740 Number of processors: 2 586 0xF06
22:00:21.740 ComputerName: E520 UserName:
22:00:24.677 Initialize success
22:04:33.302 AVAST engine defs: 12101501
22:04:51.865 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-2
22:04:51.865 Disk 0 Vendor: ST375052 CC44 Size: 715404MB BusType: 3
22:04:51.880 Disk 0 MBR read successfully
22:04:51.880 Disk 0 MBR scan
22:04:51.911 Disk 0 Windows XP default MBR code
22:04:51.911 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 39 MB offset 63
22:04:51.927 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 711135 MB offset 80325
22:04:51.943 Disk 0 Partition 3 00 DB CP/M / CTOS Dell 8.0 4228 MB offset 1456485030
22:04:51.958 Disk 0 scanning sectors +1465144065
22:04:52.021 Disk 0 scanning C:\WINDOWS\system32\drivers
22:05:05.224 Service scanning
22:05:05.490 Service .afd \? **LOCKED** 123
22:05:05.490 Service .mrxsmb \? **LOCKED** 123
22:05:05.490 Service .redbook \? **LOCKED** 123
22:05:23.005 Modules scanning
22:05:27.427 Module: C:\WINDOWS\System32\DLA\DLADResN.SYS **SUSPICIOUS**
22:05:28.474 Disk 0 trace - called modules:
22:05:28.490 ntkrnlpa.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
22:05:28.490 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8b30c968]
22:05:28.490 3 CLASSPNP.SYS[ba0e8fd7] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-2[0x8b301030]
22:05:33.583 AVAST engine scan C:\WINDOWS
22:05:59.255 AVAST engine scan C:\WINDOWS\system32
22:09:57.224 AVAST engine scan C:\WINDOWS\system32\drivers
22:10:37.583 AVAST engine scan C:\Documents and Settings\Steve
23:16:52.474 AVAST engine scan C:\Documents and Settings\All Users
23:21:16.958 Scan finished successfully
06:01:45.708 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Steve\My Documents\MBR.dat"
06:01:45.708 The log file has been saved successfully to "C:\Documents and Settings\Steve\My Documents\aswMBR.txt"

#9 sgoodwin49

sgoodwin49
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:03:58 AM

Posted 16 October 2012 - 12:31 PM

ESET SCAN:

C:\temp\WeatherStudioRemovalTool\Weather-Studio-Removal-Tool.exe a variant of Win32/SecurityStronghold application cleaned by deleting - quarantined
C:\WINDOWS\system32\drivers\etc\hosts Win32/Qhost trojan cleaned by deleting (after the next restart) - quarantined
I:\2-15-2011\C\temp\WeatherStudioRemovalTool\Weather-Studio-Removal-Tool.exe a variant of Win32/SecurityStronghold application cleaned by deleting - quarantined
I:\e520 backup\E520 Backup\temp\WeatherStudioRemovalTool\Weather-Studio-Removal-Tool.exe a variant of Win32/SecurityStronghold application cleaned by deleting - quarantined

What's next, boss?

#10 sgoodwin49

sgoodwin49
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:03:58 AM

Posted 16 October 2012 - 12:40 PM

Update: Annoying popup is GONE! Thank you for your help, narenxp. You are a rock star.

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:58 AM

Posted 16 October 2012 - 12:47 PM

Grt :) We still have few more scans to make sure system is clean

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#12 sgoodwin49

sgoodwin49
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:03:58 AM

Posted 16 October 2012 - 03:27 PM

Malwarebytes Anti-Malware 1.65.0.1400
www.malwarebytes.org

Database version: v2012.10.15.08

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Steve :: E520 [administrator]

10/16/2012 11:13:51 AM
mbam-log-2012-10-16 (11-13-51).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 540739
Time elapsed: 1 hour(s), 36 minute(s), 10 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

MiniToolBox by Farbar Version: 23-07-2012
Ran by Steve (administrator) on 16-10-2012 at 13:23:49
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 4

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

Hosts file not detected in the default directory
========================= IP Configuration: ================================

Intel® 82562V 10/100 Network Connection = Local Area Connection 4 (Connected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection 4"

set address name="Local Area Connection 4" source=dhcp
set dns name="Local Area Connection 4" source=dhcp register=PRIMARY
set wins name="Local Area Connection 4" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : e520

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Unknown

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No



Ethernet adapter Local Area Connection 4:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Intel® 82562V 10/100 Network Connection #2

Physical Address. . . . . . . . . : 00-19-D1-07-4E-8F

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 192.168.1.100

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.1.1

DHCP Server . . . . . . . . . . . : 192.168.1.1

DNS Servers . . . . . . . . . . . : 108.161.16.16

108.161.17.17

Lease Obtained. . . . . . . . . . : Tuesday, October 16, 2012 8:19:59 AM

Lease Expires . . . . . . . . . . : Wednesday, October 17, 2012 8:19:59 AM

Server: dns1.fibersphere.net
Address: 108.161.16.16

Name: google.com
Addresses: 173.194.33.40, 173.194.33.41, 173.194.33.46, 173.194.33.32
173.194.33.33, 173.194.33.34, 173.194.33.35, 173.194.33.36, 173.194.33.37
173.194.33.38, 173.194.33.39



Pinging google.com [173.194.33.39] with 32 bytes of data:



Reply from 173.194.33.39: bytes=32 time=6ms TTL=58

Reply from 173.194.33.39: bytes=32 time=5ms TTL=58



Ping statistics for 173.194.33.39:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 5ms, Maximum = 6ms, Average = 5ms

Server: dns1.fibersphere.net
Address: 108.161.16.16

Name: yahoo.com
Addresses: 72.30.38.140, 98.138.253.109, 98.139.183.24



Pinging yahoo.com [98.139.183.24] with 32 bytes of data:



Reply from 98.139.183.24: bytes=32 time=168ms TTL=49

Reply from 98.139.183.24: bytes=32 time=94ms TTL=49



Ping statistics for 98.139.183.24:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 94ms, Maximum = 168ms, Average = 131ms

Server: dns1.fibersphere.net
Address: 108.161.16.16

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:



Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 19 d1 07 4e 8f ...... Intel® 82562V 10/100 Network Connection #2 - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.100 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
169.254.0.0 255.255.0.0 192.168.1.100 192.168.1.100 20
192.168.1.0 255.255.255.0 192.168.1.100 192.168.1.100 20
192.168.1.100 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.1.255 255.255.255.255 192.168.1.100 192.168.1.100 20
224.0.0.0 240.0.0.0 192.168.1.100 192.168.1.100 20
255.255.255.255 255.255.255.255 192.168.1.100 192.168.1.100 1
Default Gateway: 192.168.1.1
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\nwprovau.dll [142336] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 04 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/15/2012 08:22:01 AM) (Source: Media Center Guide) (User: )
Description: Event Info: Failure attempting to download new Guide data. Please check your Internet connection settings. If you are connecting through a firewall or proxy, please verify that it has been properly configured.
Process: DefaultDomain
Object Name: Microsoft.Ehome.Epg.Ehepgdat

Error: (10/15/2012 08:22:01 AM) (Source: Media Center Guide) (User: )
Description: Event Info: Failure attempting to download new Guide data. Please check your Internet connection settings. If you are connecting through a firewall or proxy, please verify that it has been properly configured.
Process: DefaultDomain
Object Name: Microsoft.Ehome.Epg.Ehepgdat

Error: (08/16/2012 05:24:04 PM) (Source: Application Hang) (User: )
Description: Hanging application explorer.exe, version 6.0.2900.5512, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (08/02/2012 11:51:28 PM) (Source: Application Hang) (User: )
Description: Hanging application explorer.exe, version 6.0.2900.5512, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (08/02/2012 11:43:58 PM) (Source: Application Hang) (User: )
Description: Hanging application explorer.exe, version 6.0.2900.5512, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (07/08/2012 06:52:02 AM) (Source: Application Hang) (User: )
Description: Hanging application OUTLOOK.EXE, version 11.0.8326.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (06/29/2012 08:51:10 PM) (Source: Media Center Guide) (User: )
Description: Event Info: Failure attempting to download new Guide data. Please check your Internet connection settings. If you are connecting through a firewall or proxy, please verify that it has been properly configured.
Process: DefaultDomain
Object Name: Microsoft.Ehome.Epg.Ehepgdat

Error: (06/29/2012 08:51:10 PM) (Source: Media Center Guide) (User: )
Description: Event Info: Failure attempting to download new Guide data. Please check your Internet connection settings. If you are connecting through a firewall or proxy, please verify that it has been properly configured.
Process: DefaultDomain
Object Name: Microsoft.Ehome.Epg.Ehepgdat

Error: (06/26/2012 03:18:35 PM) (Source: Application Error) (User: )
Description: Faulting application itunes.exe, version 10.5.1.42, faulting module itunes.dll, version 10.5.1.42, fault address 0x00897f1f.
Processing media-specific event for [itunes.exe!ws!]

Error: (06/15/2012 10:55:09 AM) (Source: Application Hang) (User: )
Description: Hanging application Eudora.exe, version 7.1.0.9, hang module hungapp, version 0.0.0.0, hang address 0x00000000.


System errors:
=============
Error: (10/16/2012 01:01:39 PM) (Source: DCOM) (User: E520)
Description: DCOM got error "%%1058" attempting to start the service ehSched with arguments "-Service"
in order to run the server:
{4B635ECB-0887-4015-8CA6-D621362F98D1}

Error: (10/16/2012 00:31:39 PM) (Source: DCOM) (User: E520)
Description: DCOM got error "%%1058" attempting to start the service ehSched with arguments "-Service"
in order to run the server:
{4B635ECB-0887-4015-8CA6-D621362F98D1}

Error: (10/16/2012 00:01:39 PM) (Source: DCOM) (User: E520)
Description: DCOM got error "%%1058" attempting to start the service ehSched with arguments "-Service"
in order to run the server:
{4B635ECB-0887-4015-8CA6-D621362F98D1}

Error: (10/16/2012 11:31:39 AM) (Source: DCOM) (User: E520)
Description: DCOM got error "%%1058" attempting to start the service ehSched with arguments "-Service"
in order to run the server:
{4B635ECB-0887-4015-8CA6-D621362F98D1}

Error: (10/16/2012 11:02:17 AM) (Source: DCOM) (User: E520)
Description: DCOM got error "%%1058" attempting to start the service gupdate with arguments "/comsvc"
in order to run the server:
{4EB61BAC-A3B6-4760-9581-655041EF4D69}

Error: (10/16/2012 11:02:17 AM) (Source: DCOM) (User: E520)
Description: DCOM got error "%%1058" attempting to start the service gupdatem with arguments "/comsvc"
in order to run the server:
{9465B4B4-5216-4042-9A2C-754D3BCDC410}

Error: (10/16/2012 11:01:39 AM) (Source: DCOM) (User: E520)
Description: DCOM got error "%%1058" attempting to start the service ehSched with arguments "-Service"
in order to run the server:
{4B635ECB-0887-4015-8CA6-D621362F98D1}

Error: (10/16/2012 10:47:20 AM) (Source: DCOM) (User: E520)
Description: DCOM got error "%%1058" attempting to start the service gupdate with arguments "/comsvc"
in order to run the server:
{4EB61BAC-A3B6-4760-9581-655041EF4D69}

Error: (10/16/2012 10:31:39 AM) (Source: DCOM) (User: E520)
Description: DCOM got error "%%1058" attempting to start the service ehSched with arguments "-Service"
in order to run the server:
{4B635ECB-0887-4015-8CA6-D621362F98D1}

Error: (10/16/2012 10:01:39 AM) (Source: DCOM) (User: E520)
Description: DCOM got error "%%1058" attempting to start the service ehSched with arguments "-Service"
in order to run the server:
{4B635ECB-0887-4015-8CA6-D621362F98D1}


Microsoft Office Sessions:
=========================
Error: (10/15/2012 08:22:01 AM) (Source: Media Center Guide)(User: )
Description: Event Info: Failure attempting to download new Guide data. Please check your Internet connection settings. If you are connecting through a firewall or proxy, please verify that it has been properly configured.
Process: DefaultDomain
Object Name: Microsoft.Ehome.Epg.Ehepgdat

Error: (10/15/2012 08:22:01 AM) (Source: Media Center Guide)(User: )
Description: Event Info: Failure attempting to download new Guide data. Please check your Internet connection settings. If you are connecting through a firewall or proxy, please verify that it has been properly configured.
Process: DefaultDomain
Object Name: Microsoft.Ehome.Epg.Ehepgdat

Error: (08/16/2012 05:24:04 PM) (Source: Application Hang)(User: )
Description: explorer.exe6.0.2900.5512hungapp0.0.0.000000000

Error: (08/02/2012 11:51:28 PM) (Source: Application Hang)(User: )
Description: explorer.exe6.0.2900.5512hungapp0.0.0.000000000

Error: (08/02/2012 11:43:58 PM) (Source: Application Hang)(User: )
Description: explorer.exe6.0.2900.5512hungapp0.0.0.000000000

Error: (07/08/2012 06:52:02 AM) (Source: Application Hang)(User: )
Description: OUTLOOK.EXE11.0.8326.0hungapp0.0.0.000000000

Error: (06/29/2012 08:51:10 PM) (Source: Media Center Guide)(User: )
Description: Event Info: Failure attempting to download new Guide data. Please check your Internet connection settings. If you are connecting through a firewall or proxy, please verify that it has been properly configured.
Process: DefaultDomain
Object Name: Microsoft.Ehome.Epg.Ehepgdat

Error: (06/29/2012 08:51:10 PM) (Source: Media Center Guide)(User: )
Description: Event Info: Failure attempting to download new Guide data. Please check your Internet connection settings. If you are connecting through a firewall or proxy, please verify that it has been properly configured.
Process: DefaultDomain
Object Name: Microsoft.Ehome.Epg.Ehepgdat

Error: (06/26/2012 03:18:35 PM) (Source: Application Error)(User: )
Description: itunes.exe10.5.1.42itunes.dll10.5.1.4200897f1f

Error: (06/15/2012 10:55:09 AM) (Source: Application Hang)(User: )
Description: Eudora.exe7.1.0.9hungapp0.0.0.000000000


=========================== Installed Programs ============================

ACDSee 10 Photo Manager (Version: 10.0.238)
Acoustica Effects Pack (Version: 3.0)
Adobe Acrobat Connect Add-in
Adobe AIR (Version: 3.1.0.4880)
Adobe Digital Editions
Adobe Flash Player 11 ActiveX (Version: 11.4.402.287)
Adobe Reader 7.1.0 (Version: 7.1.0)
Advanced Decoder Patch
Amazon Kindle For PC
Amazon MP3 Downloader 1.0.15 (Version: 1.0.15)
AnswerWorks 4.0 Runtime - English (Version: 4.0.101)
AnswerWorks 5.0 English Runtime (Version: 008.000.0003)
AOLIcon (Version: 1.00.0000)
Apple Application Support (Version: 2.2.2)
Apple Mobile Device Support (Version: 6.0.0.59)
Apple Software Update (Version: 2.1.3.127)
ArcSoft PhotoStudio 5.5
ArcSoft TotalMedia Backup (Version: 1.5.21.7)
ATI Catalyst Control Center (Version: 1.2.2370.37610)
ATI Display Driver (Version: 8.263-060607a-034018C-Dell)
ATI Parental Control (Version: 1.0.0.1)
AVG 2012 (Version: 12.0.2221)
AVG 2012 (Version: 12.0.2441)
AVG 2012 (Version: 2012.0.2221)
BeatFeet Beta 1.0
BeatFeet Program Updates
BeatFeet Update 090721
Beatometer
Beatometer 1.0
Bonjour (Version: 3.0.0.10)
Brother HL-4040CN (Version: 1.00)
calibre (Version: 0.7.38)
Canon CanoScan 8800F User Registration
Canon MP Navigator EX 1.0
Canon ScanGear Toolbox 3.0
Canon Utilities Solution Menu
CDDRV_Installer (Version: 1.00.0000)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Corel Snapfire Plus (Version: 1.00.0000)
Creative MediaSource (Version: 3.00)
Critical Update for Windows Media Player 11 (KB959772)
DebugMode Wink
Dell CinePlayer (Version: 3.0)
Dell Driver Reset Tool (Version: 1.02.0000)
Dell Game Console
Dell Support 3.2.1 (Version: 5.5.2087)
Dell Support Center (Support Software) (Version: 2.2.09085)
Dell System Restore (Version: 2.00.0000)
deskPDF 2.5 Standard Edition
Digital Content Portal (Version: 1.00.0000)
Docudesk GPL Ghostscript 8.15
Documentation & Support Launcher (Version: 1.00.0000)
EarthLink Setup Files (Version: 2005.2.178.0.2.2)
EducateU (Version: 1.00.0000)
EPSON Printer Software
ESET Online Scanner v3
ESPNMotion (Version: 2.1.6.0011)
Eudora (Version: 7.0)
Express Rip
Free WMA MP3 Converter
Games, Music, & Photos Launcher (Version: 1.00.0000)
Garmin Communicator Plugin (Version: 4.0.1)
Garmin USB Drivers (Version: 2.3.0.0)
GemMaster Mystic
Get High Speed Internet! (Version: 1.00.0000)
Google Chrome (Version: 22.0.1229.94)
Google Desktop (Version: 5.9.1005.12335)
Google Earth (Version: 6.1.0.5001)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.2.2427.2330)
Google Update Helper (Version: 1.3.21.99)
GoToMeeting 4.5.0.457
High Definition Audio Driver Package - KB835221 (Version: 20040219.000000)
Inno Setup QuickStart Pack version 5.2.2 (Version: 5.2.2)
InstallShield Express Visual FoxPro Limited Edition (Version: 3.54.155)
Intel® Graphics Media Accelerator Driver
Intel® Matrix Storage Manager
Intel® PRO Network Connections (Version: )
Intel® Quick Resume Technology Drivers
Intel® Viiv™ Software (Version: 1.0.3.2019)
Internet Service Offers Launcher (Version: 1.00.0000)
ISTool 5.2.1.0 (Version: 5.2.1.0)
iTunes (Version: 10.7.0.21)
Java Auto Updater (Version: 2.0.2.4)
Java™ 6 Update 23 (Version: 6.0.230)
KhalInstallWrapper (Version: 4.00.121)
Learn2 Player (Uninstall Only)
LiveReg (Symantec Corporation) (Version: 2.0.6.1314)
LiveUpdate 1.6 (Symantec Corporation)
Logitech Communications Manager (Version: 10.00.1375)
Logitech Desktop Messenger (Version: 2.52.18)
Logitech Harmony Remote Software (Version: 1.0.110307)
Logitech Harmony Remote Software 7 (Version: 7.4.0.5)
Logitech Harmony Remote Software 7 (Version: 7.7.0.0)
Logitech QuickCam (Version: 8.30.0000)
Logitech SetPoint (Version: 4.00)
Logitech® Camera Driver
LogMeIn (Version: 4.0.982)
Malwarebytes Anti-Malware version 1.65.0.1400 (Version: 1.65.0.1400)
MetaFrame Presentation Server Web Client for Win32
Microsoft .NET Framework 1.0 Hotfix (KB2572066)
Microsoft .NET Framework 1.0 Hotfix (KB2604042)
Microsoft .NET Framework 1.0 Hotfix (KB2656378)
Microsoft .NET Framework 1.0 Hotfix (KB953295)
Microsoft .NET Framework 1.0 Hotfix (KB979904)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
Microsoft National Language Support Downlevel APIs
Microsoft Office Basic Edition 2003 (Version: 11.0.8173.0)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Live Image Uploader (Version: 0.0.0.0)
Microsoft Office Outlook Connector (Version: 14.0.6123.5001)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Plus! Digital Media Edition Installer (Version: 1.1.0.3514)
Microsoft Plus! Photo Story 2 LE (Version: 1.1.0.3463)
Microsoft Reader Railway
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SOAP Toolkit 3.0 (Version: 3.00.1325.3)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft VFPCOM Utility (Version: 9.00.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual FoxPro 8.0 Professional - English
Microsoft Visual FoxPro 8.0 Runtime GDI+ Hotfix - KB887685 (Version: 1.00.0000)
Microsoft Visual FoxPro 9.0 Professional - English
MobileMe Control Panel (Version: 3.1.5.0)
Mozilla Firefox 10.0.2 (x86 en-US) (Version: 10.0.2)
MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
NCH Toolbox
Nero Burning ROM 10 (Version: 10.2.11000.12.100)
Nero Burning ROM 10 (Version: 10.5.10300)
Nero BurningROM 10 Help (CHM) (Version: 10.5.10100)
Nero BurnRights 10 Help (CHM) (Version: 10.5.10000)
Nero Control Center 10 (Version: 10.2.10600.0.6)
Nero ControlCenter 10 Help (CHM) (Version: 10.5.10000)
Nero Core Components 10 (Version: 2.0.17400.8.2)
Netflix Movie Viewer (Version: 1.2.211)
NetZeroInstallers (Version: 1.0.0)
Otto
Outlook Setup Tool (Version: 2.0.14)
Pandora (Version: 2.0.6)
PINPadDevice Files
Presto! PageManager 7.15.16 (Version: 7.15.16)
Process Lasso (Version: 3.84.7)
Qualxserve Service Agreement (Version: 1.11.0000)
Quicken 6
RealPlayer Basic
Remote Control USB Driver (Version: 2.3.2.317)
Remove PTRDEMO
Rio Internet Update (Version: 2.90)
Rio Music Manager (Version: 2.90)
Roxio DLA (Version: 5.2.0)
Roxio MyDVD LE (Version: 6.1.6)
Roxio RecordNow Audio (Version: 2.0.4)
Roxio RecordNow Copy (Version: 2.0.4)
Roxio RecordNow Data (Version: 2.0.4)
ScanSoft OmniPage SE 4 (Version: 15.2.0020)
SearchAssist
Skype Click to Call (Version: 5.7.8773)
Skype™ 5.10 (Version: 5.10.116)
SnagIt 8 (Version: 8.2.2)
SoftwarePassport
Sonic Activation Module (Version: 1.0)
Sonic Encoders (Version: 1.00)
Sonic Update Manager (Version: 3.0.0)
Sonos Controller (Version: 19.3.53220)
Sound Blaster X-Fi (Version: 1.0)
Sperry Software - Attachment Save v4.0
Spybot - Search & Destroy (Version: 1.6.2)
Stuart Little - His Adventures in Wordland
Switch
Symantec pcAnywhere (Version: 10.5)
The Perfect Partner v7.0 Demo version
TurboTax 2008
TurboTax 2008 WinPerFedFormset (Version: 008.000.0338)
TurboTax 2008 WinPerProgramHelp (Version: 008.000.0218)
TurboTax 2008 WinPerReleaseEngine (Version: 008.000.0190)
TurboTax 2008 WinPerTaxSupport (Version: 008.000.1000)
TurboTax 2008 WinPerUserEducation (Version: 008.000.0428)
TurboTax 2008 woriper (Version: 008.000.0122)
TurboTax 2008 wrapper (Version: 008.000.0065)
TurboTax 2009
TurboTax 2009 WinPerFedFormset (Version: 009.000.2068)
TurboTax 2009 WinPerReleaseEngine (Version: 009.000.0328)
TurboTax 2009 WinPerTaxSupport (Version: 009.000.0238)
TurboTax 2009 woriper (Version: 009.000.0736)
TurboTax 2009 wrapper (Version: 009.000.0145)
TurboTax 2010
TurboTax 2010 WinPerFedFormset (Version: 010.000.3441)
TurboTax 2010 WinPerReleaseEngine (Version: 010.000.0414)
TurboTax 2010 WinPerTaxSupport (Version: 010.000.0199)
TurboTax 2010 woriper (Version: 010.000.1135)
TurboTax 2010 wrapper (Version: 010.000.0157)
TurboTax 2011
TurboTax 2011 WinPerFedFormset (Version: 011.000.2999)
TurboTax 2011 WinPerReleaseEngine (Version: 011.000.0495)
TurboTax 2011 WinPerTaxSupport (Version: 011.000.0214)
TurboTax 2011 woriper (Version: 011.000.1562)
TurboTax 2011 wrapper (Version: 011.000.0121)
TurboTax Deluxe 2007
TurboTax Deluxe Deduction Maximizer 2006
TurboTax ItsDeductible 2006 (Version: 10.00.0000)
Twelve Keys
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Windows Internet Explorer 7 (KB976749) (Version: 1)
Update for Windows Internet Explorer 7 (KB980182) (Version: 1)
Update for Windows Internet Explorer 8 (KB2598845) (Version: 1)
Update for Windows Media Player 10 (KB910393)
Update for Windows Media Player 10 (KB913800)
Update for Windows Media Player 10 (KB926251)
Update for Windows XP (KB2141007) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2607712) (Version: 1)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2661254-v2) (Version: 2)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB2736233) (Version: 1)
Update for Windows XP (KB2749655) (Version: 1)
Update for Windows XP (KB951072-v2) (Version: 2)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB955839) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
Update Rollup 2 for Windows XP Media Center Edition 2005
URL Assistant
Viewpoint Media Player
Visual FoxPro 8.0 Baseline - English (Version: 8.00.2518)
Visual FoxPro 8.0 Professional - English (Version: 8.00.3117)
Visual FoxPro 9.0 Baseline - English (Version: 9.00.2412)
Visual FoxPro 9.0 Professional - English (Version: 9.00.3504)
VNC Mirror Driver 1.8.0 (Version: 1.8.0)
VNC Personal Edition P4.5.3 (Version: P4.5.3)
VNC Printer Driver 1.6.0 (Version: 1.6.0)
WavePad Sound Editor
WebFldrs XP (Version: 9.50.7523)
Webshots Desktop
Webshots Toolbar
WexTech AnswerWorks (Version: 1.00.000)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0) (Version: 06/03/2009 2.3.0.0)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Installer 3.1 (KB893803)
Windows Internet Explorer 7 (Version: 20061107.210142)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Live Mail desktop (Version: 8.0.1226.0)
Windows Live OneCare safety scanner
Windows Media Format 11 runtime
Windows Media Player 10 (Version: 9.00.3636)
Windows Media Player 10 Hotfix [See EmeraldQFE2 for more information]
Windows XP Media Center Edition 2005 KB2502898
Windows XP Media Center Edition 2005 KB2619340
Windows XP Media Center Edition 2005 KB2628259
Windows XP Media Center Edition 2005 KB908246
Windows XP Media Center Edition 2005 KB925766
Windows XP Media Center Edition 2005 KB973768
Windows XP Service Pack 3 (Version: 20080414.031525)
WordPerfect Office 11 (Version: 11.0.0.233)
X-Charge SDK 5.0
Yahoo! Music Jukebox (Version: 2.0.0.134)
Yahoo! Software Update
Yahoo! Toolbar
ZIP 2 Secure EXE (Version: v13.0.0)

========================= Memory info: ===================================

Percentage of memory in use: 36%
Total physical RAM: 3069.84 MB
Available physical RAM: 1949.86 MB
Total Pagefile: 4955.04 MB
Available Pagefile: 3728.64 MB
Total Virtual: 2047.88 MB
Available Virtual: 1969 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:694.47 GB) (Free:532.43 GB) NTFS
6 Drive i: (HITACHI) (Fixed) (Total:465.76 GB) (Free:98.7 GB) NTFS
9 Drive x: () (Network) (Total:74.47 GB) (Free:10.16 GB) NTFS
10 Drive y: () (Network) (Total:74.47 GB) (Free:10.16 GB) NTFS

========================= Users: ========================================

User accounts for \\E520

Administrator Guest HelpAssistant
Joni Sonos Steve
SUPPORT_388945a0

========================= Restore Points ==================================

19-07-2012 10:00:25 Software Distribution Service 3.0
20-07-2012 10:00:26 Software Distribution Service 3.0
21-07-2012 10:00:32 Software Distribution Service 3.0
22-07-2012 10:00:27 Software Distribution Service 3.0
23-07-2012 10:00:24 Software Distribution Service 3.0
24-07-2012 10:00:25 Software Distribution Service 3.0
25-07-2012 10:00:23 Software Distribution Service 3.0
25-07-2012 13:04:43 Installed Microsoft Office Outlook Connector
26-07-2012 10:00:21 Software Distribution Service 3.0
27-07-2012 10:00:24 Software Distribution Service 3.0
28-07-2012 10:00:28 Software Distribution Service 3.0
29-07-2012 10:00:25 Software Distribution Service 3.0
30-07-2012 10:00:24 Software Distribution Service 3.0
31-07-2012 10:00:39 Software Distribution Service 3.0
01-08-2012 10:00:28 Software Distribution Service 3.0
02-08-2012 10:00:20 Software Distribution Service 3.0
03-08-2012 10:00:36 Software Distribution Service 3.0
04-08-2012 10:00:25 Software Distribution Service 3.0
05-08-2012 10:00:36 Software Distribution Service 3.0
05-08-2012 23:53:13 Software Distribution Service 3.0
06-08-2012 10:00:20 Software Distribution Service 3.0
07-08-2012 10:00:24 Software Distribution Service 3.0
08-08-2012 10:00:19 Software Distribution Service 3.0
09-08-2012 10:00:25 Software Distribution Service 3.0
10-08-2012 10:00:37 Software Distribution Service 3.0
11-08-2012 10:00:24 Software Distribution Service 3.0
12-08-2012 10:00:24 Software Distribution Service 3.0
13-08-2012 01:00:39 Software Distribution Service 3.0
13-08-2012 10:00:19 Software Distribution Service 3.0
14-08-2012 10:00:27 Software Distribution Service 3.0
15-08-2012 10:00:34 Software Distribution Service 3.0
16-08-2012 10:00:26 Software Distribution Service 3.0
17-08-2012 10:00:26 Software Distribution Service 3.0
18-08-2012 10:00:27 Software Distribution Service 3.0
19-08-2012 10:00:24 Software Distribution Service 3.0
20-08-2012 10:00:19 Software Distribution Service 3.0
21-08-2012 10:00:25 Software Distribution Service 3.0
22-08-2012 10:00:29 Software Distribution Service 3.0
23-08-2012 10:00:26 Software Distribution Service 3.0
24-08-2012 10:00:29 Software Distribution Service 3.0
25-08-2012 10:00:38 Software Distribution Service 3.0
26-08-2012 10:00:34 Software Distribution Service 3.0
27-08-2012 10:00:26 Software Distribution Service 3.0
28-08-2012 10:00:24 Software Distribution Service 3.0
29-08-2012 10:00:25 Software Distribution Service 3.0
30-08-2012 10:00:33 Software Distribution Service 3.0
31-08-2012 10:00:28 Software Distribution Service 3.0
31-08-2012 15:28:44 Software Distribution Service 3.0
01-09-2012 10:00:18 Software Distribution Service 3.0
02-09-2012 10:00:25 Software Distribution Service 3.0
03-09-2012 10:00:19 Software Distribution Service 3.0
04-09-2012 10:00:30 Software Distribution Service 3.0
05-09-2012 10:00:28 Software Distribution Service 3.0
06-09-2012 10:00:24 Software Distribution Service 3.0
07-09-2012 10:00:32 Software Distribution Service 3.0
08-09-2012 10:00:25 Software Distribution Service 3.0
09-09-2012 10:00:29 Software Distribution Service 3.0
10-09-2012 10:00:31 Software Distribution Service 3.0
11-09-2012 10:00:26 Software Distribution Service 3.0
12-09-2012 10:00:32 Software Distribution Service 3.0
13-09-2012 10:00:22 Software Distribution Service 3.0
14-09-2012 10:00:31 Software Distribution Service 3.0
15-09-2012 10:00:31 Software Distribution Service 3.0
16-09-2012 10:00:23 Software Distribution Service 3.0
17-09-2012 10:00:19 Software Distribution Service 3.0
18-09-2012 10:00:20 Software Distribution Service 3.0
19-09-2012 10:00:30 Software Distribution Service 3.0
20-09-2012 10:00:28 Software Distribution Service 3.0
21-09-2012 10:00:22 Software Distribution Service 3.0
22-09-2012 10:00:22 Software Distribution Service 3.0
23-09-2012 10:00:17 Software Distribution Service 3.0
24-09-2012 10:00:36 Software Distribution Service 3.0
25-09-2012 10:00:30 Software Distribution Service 3.0
26-09-2012 10:00:19 Software Distribution Service 3.0
27-09-2012 10:00:23 Software Distribution Service 3.0
28-09-2012 10:00:23 Software Distribution Service 3.0
29-09-2012 10:00:16 Software Distribution Service 3.0
30-09-2012 10:00:29 Software Distribution Service 3.0
01-10-2012 10:00:18 Software Distribution Service 3.0
02-10-2012 10:00:20 Software Distribution Service 3.0
03-10-2012 10:00:38 Software Distribution Service 3.0
04-10-2012 10:00:28 Software Distribution Service 3.0
05-10-2012 10:00:27 Software Distribution Service 3.0
06-10-2012 10:00:23 Software Distribution Service 3.0
07-10-2012 10:00:27 Software Distribution Service 3.0
08-10-2012 02:44:13 Installed iTunes
08-10-2012 10:00:18 Software Distribution Service 3.0
08-10-2012 22:29:34 Removed iTunes
08-10-2012 22:33:53 Removed QuickTime
08-10-2012 22:35:19 Removed Apple Software Update
08-10-2012 22:36:23 Removed Apple Mobile Device Support
08-10-2012 22:38:17 Removed Bonjour
08-10-2012 22:39:15 Removed Apple Application Support
08-10-2012 22:52:35 Installed iTunes
09-10-2012 10:00:32 Software Distribution Service 3.0
10-10-2012 10:00:24 Software Distribution Service 3.0
11-10-2012 10:34:02 System Checkpoint
12-10-2012 10:34:35 System Checkpoint
13-10-2012 11:34:29 System Checkpoint
14-10-2012 12:34:24 System Checkpoint
15-10-2012 13:34:22 System Checkpoint
16-10-2012 14:38:58 System Checkpoint

**** End of log ****

#13 sgoodwin49

sgoodwin49
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:03:58 AM

Posted 16 October 2012 - 03:29 PM

Farbar Service Scanner Version: 07-10-2012
Ran by Steve (administrator) on 16-10-2012 at 13:28:55
Running from "C:\Documents and Settings\Steve\My Documents\Downloads"
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
Avgtdix(22) Gpc(6) IPSec(20) NetBT(21) PSched(7) Tcpip(19)
0x1600000014000000110000000F0000000400000001000000020000000300000005000000060000000700000008000000090000000A0000000B0000000C0000000D0000000E0000001000000012000000130000001600000015000000


**** End of log ****

#14 sgoodwin49

sgoodwin49
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:03:58 AM

Posted 16 October 2012 - 03:43 PM

ADWARE CLEANER:

# AdwCleaner v2.005 - Logfile created 10/16/2012 at 13:33:26
# Updated 14/10/2012 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Steve - E520
# Boot Mode : Normal
# Running from : C:\Documents and Settings\Steve\My Documents\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Documents and Settings\All Users\Application Data\Viewpoint
Folder Deleted : C:\Program Files\Viewpoint

***** [Registry] *****

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C04B7D22-5AEC-4561-8F49-27F6269208F6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\BHO.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKLM\Software\Freeze.com
Key Deleted : HKLM\Software\MetaStream
Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ViewpointMediaPlayer
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@viewpoint.com/VMP
Key Deleted : HKLM\Software\Viewpoint
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D7E97865-918F-41E4-9CD0-25AB1C574CE8}]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Search Bar] = hxxp://toolbar.inbox.com/search/dispatcher.aspx?tp=aus&qkw=%s&tbid=%tb_id&%language --> hxxp://www.google.com

-\\ Mozilla Firefox v10.0.2 (en-US)

Profile name : default
File : C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\1r1xkj6r.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v [Unable to get version]

File : C:\Documents and Settings\Steve\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [3208 octets] - [16/10/2012 13:33:26]

########## EOF - C:\AdwCleaner[S1].txt - [3268 octets] ##########

#15 sgoodwin49

sgoodwin49
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:03:58 AM

Posted 16 October 2012 - 04:13 PM

Junkware Removal Tool (JRT) by Thisisu
Version: 1.6.7 (10.16.2012)
OS: Microsoft Windows XP x86
Ran by Steve on Tue 10/16/2012 at 13:46:33.45
Blog: http://thisisudax.blogspot.com
**************************************************************




*** Services: 0 Detections



*** Registry Values: 0 Detections



*** Registry Keys: 0 Detections



*** Files:

Successfully deleted: [FILE] C:\eula.1028.txt
Successfully deleted: [FILE] C:\eula.1031.txt
Successfully deleted: [FILE] C:\eula.1033.txt
Successfully deleted: [FILE] C:\eula.1036.txt
Successfully deleted: [FILE] C:\eula.1040.txt
Successfully deleted: [FILE] C:\eula.1041.txt
Successfully deleted: [FILE] C:\eula.1042.txt
Successfully deleted: [FILE] C:\eula.2052.txt
Successfully deleted: [FILE] C:\install.res.1028.dll
Successfully deleted: [FILE] C:\install.res.1031.dll
Successfully deleted: [FILE] C:\install.res.1033.dll
Successfully deleted: [FILE] C:\install.res.1036.dll
Successfully deleted: [FILE] C:\install.res.1040.dll
Successfully deleted: [FILE] C:\install.res.1041.dll
Successfully deleted: [FILE] C:\install.res.1042.dll
Successfully deleted: [FILE] C:\install.res.2052.dll
Successfully deleted: [FILE] C:\install.res.3082.dll



*** Folders: 0 Detections



*** FireFox detected and repaired



*** Event Viewer Logs - NOT cleared





**************************************************************
Scan was completed on Tue 10/16/2012 at 13:54:19.42
End of Report

I feel like I have been through a carwash without the car! Am I clean?




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users