Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

PC crashes to BSOD at completion of startup


  • Please log in to reply
38 replies to this topic

#1 junebug41

junebug41

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:04:37 PM

Posted 25 October 2012 - 01:31 AM

Hello,

Today I have discovered the limits of my computer self-sufficiency. I have had numerous virus and spyware related debacles over the years, but I have always been able to dig my way out myself by searching around online and finding forums like these where someone had the same problem and posted solutions. After four hours tonight, I must finally admit defeat and humbly ask for help from those smarter than I.

My setup:

Is a Dell Inspiron 530, running Windows XP Home, SP3

The problem:
Just at the completion of startup, when all desktop icons have appeared and taskbar items have loaded up, the system crashes and displays a BSOD, telling me: ""Plug and play detected an error most likely caused by a faulty driver"

The stop code is: 0x000000CA (0x00000005, 0x8A8EBD98, 0x00000000, 0x00000000)

I am still able to operate in Safe Mode.

Background:

I was browsing normally with Google Chrome, but also had IE open, as it's the only browser that works with Remote Desktop to access my work computer. I started getting pop-ups from my antivirus, Avast, indicating that intrusions from malicious sites had been prevented. I was getting a bunch of them every 30 seconds or so, so I did quick research, which suggested I had a trojan downloader trying to bring down the pain, and while Avast was stopping the intrusions, it was still highly disruptive.

I updated Spybot Search and Destroy, and ran a scan, which found a dozen or so pieces of spyware/adware operating. I told Spybot to fix the problems it found, and it indicated it had done so.

I was still getting Avast pop-ups, so I decided to update and run Ad-Aware. At the close of installation, Ad-Aware prompted me to restart, which I did. That was when I first got the BSOD with the above message.

What I have done in the last four hours:
- Ran MalwareBytes, which found and removed one thing
- Did a HijackThis scan, in which I didn't see anything obviously dirty
- Deactivated (and then reactivated) a bunch of drivers from device manager to see if I could find the trigger
- Tried to run Microsoft Updates from Safe Mode, which wouldn't launch
- Tried to run Registry Optimizer from Safe Mode, which wouldn't launch
- Tried to run ComboFix from Safe Mode, which wouldn't launch
- Did a successful System Restore to last month, which did not fix the problem
- Tried to do another System Restore to an earlier date, which failed


Thanks in advance to anyone who can help with this. I am confounded and demoralized.

Mike

Edited by hamluis, 25 October 2012 - 06:44 AM.
Moved from XP to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:37 PM

Posted 25 October 2012 - 05:18 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 junebug41

junebug41
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:04:37 PM

Posted 25 October 2012 - 10:02 AM

UPDATE:

Before I went to bed last night, I clicked on "Show hidden" in the Device manager and thought I had found the smoking gun -- a yellow ! indicating a bad driver under Avast. I disabled the driver and restarted... but still got the BSOD. I rebooted into Safe Mode and tried to uninstall Avast. It hung up and failed.

I woke up this morning and the computer failed to boot into Safe Mode, hanging up indefinitely during the list of devices being loaded. I booted in regular mode, and it informed me "the volume is dirty," then ran CHKDISK unprompted. CHKDISK briefly mentioned repairing a "journal" then the computer rebooted to the desktop and did not crash. However, I attempted to open a browser to come here and both Chrome and IE failed to open.

Trying the steps you gave me now. Thank you.

#4 junebug41

junebug41
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:04:37 PM

Posted 25 October 2012 - 10:06 AM

TDSSKiller log. I have not taken any action:

07:58:51.0015 2000 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
07:58:51.0296 2000 ============================================================
07:58:51.0296 2000 Current date / time: 2012/10/25 07:58:51.0296
07:58:51.0296 2000 SystemInfo:
07:58:51.0296 2000
07:58:51.0296 2000 OS Version: 5.1.2600 ServicePack: 3.0
07:58:51.0296 2000 Product type: Workstation
07:58:51.0296 2000 ComputerName: MIKE
07:58:51.0296 2000 UserName: Administrator
07:58:51.0296 2000 Windows directory: C:\WINDOWS
07:58:51.0296 2000 System windows directory: C:\WINDOWS
07:58:51.0296 2000 Processor architecture: Intel x86
07:58:51.0296 2000 Number of processors: 2
07:58:51.0296 2000 Page size: 0x1000
07:58:51.0296 2000 Boot type: Safe boot with network
07:58:51.0296 2000 ============================================================
07:58:54.0296 2000 Drive \Device\Harddisk0\DR0 - Size: 0x3A35294400 (232.83 Gb), SectorSize: 0x200, Cylinders: 0x76BA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
07:58:54.0312 2000 ============================================================
07:58:54.0312 2000 \Device\Harddisk0\DR0:
07:58:54.0312 2000 MBR partitions:
07:58:54.0312 2000 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x17886, BlocksNum 0x1CAF3004
07:58:54.0312 2000 ============================================================
07:58:54.0359 2000 C: <-> \Device\Harddisk0\DR0\Partition1
07:58:54.0421 2000 ============================================================
07:58:54.0421 2000 Initialize success
07:58:54.0421 2000 ============================================================
07:59:25.0968 2036 ============================================================
07:59:25.0968 2036 Scan started
07:59:25.0968 2036 Mode: Manual; TDLFS;
07:59:25.0968 2036 ============================================================
07:59:27.0031 2036 ================ Scan system memory ========================
07:59:27.0031 2036 System memory - ok
07:59:27.0031 2036 ================ Scan services =============================
07:59:27.0171 2036 [ 3FEFA63FDACBAB9C020CE2273AC45C47 ] 6to4 C:\WINDOWS\System32\6to4svc.dll
07:59:27.0187 2036 6to4 - ok
07:59:27.0296 2036 [ 0352A73CD6B1782EA3ED7A03A8268F55 ] Aavmker4 C:\WINDOWS\system32\drivers\Aavmker4.sys
07:59:27.0296 2036 Aavmker4 - ok
07:59:27.0312 2036 Abiosdsk - ok
07:59:27.0375 2036 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
07:59:27.0375 2036 abp480n5 - ok
07:59:27.0421 2036 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
07:59:27.0421 2036 ACPI - ok
07:59:27.0468 2036 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
07:59:27.0468 2036 ACPIEC - ok
07:59:27.0500 2036 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
07:59:27.0500 2036 adpu160m - ok
07:59:27.0546 2036 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
07:59:27.0546 2036 aec - ok
07:59:27.0593 2036 [ 7E775010EF291DA96AD17CA4B17137D7 ] AFD C:\WINDOWS\System32\drivers\afd.sys
07:59:27.0593 2036 AFD - ok
07:59:27.0640 2036 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
07:59:27.0640 2036 agp440 - ok
07:59:27.0656 2036 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
07:59:27.0671 2036 agpCPQ - ok
07:59:27.0703 2036 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
07:59:27.0703 2036 Aha154x - ok
07:59:27.0718 2036 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
07:59:27.0718 2036 aic78u2 - ok
07:59:27.0750 2036 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
07:59:27.0750 2036 aic78xx - ok
07:59:27.0796 2036 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
07:59:27.0796 2036 Alerter - ok
07:59:27.0828 2036 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
07:59:27.0828 2036 ALG - ok
07:59:27.0859 2036 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
07:59:27.0859 2036 AliIde - ok
07:59:27.0906 2036 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
07:59:27.0906 2036 alim1541 - ok
07:59:27.0937 2036 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
07:59:27.0937 2036 amdagp - ok
07:59:27.0968 2036 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
07:59:27.0968 2036 amsint - ok
07:59:27.0984 2036 AppMgmt - ok
07:59:28.0015 2036 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
07:59:28.0015 2036 asc - ok
07:59:28.0031 2036 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
07:59:28.0031 2036 asc3350p - ok
07:59:28.0062 2036 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
07:59:28.0062 2036 asc3550 - ok
07:59:28.0203 2036 [ 4EABF511B1AF176A971C3271E48FA3A8 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
07:59:28.0234 2036 aspnet_state - ok
07:59:28.0281 2036 [ F5DC168BF77572D51BE28BA261B30CB4 ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
07:59:28.0281 2036 aswFsBlk - ok
07:59:28.0375 2036 [ 2B9B1DF809E965EF63402CBBA6DB50AE ] aswMon2 C:\WINDOWS\system32\drivers\aswMon2.sys
07:59:28.0375 2036 aswMon2 - ok
07:59:28.0421 2036 [ B7D5E4486BA658ED08624D8084ABB830 ] aswRdr C:\WINDOWS\system32\drivers\aswRdr.sys
07:59:28.0437 2036 aswRdr - ok
07:59:28.0500 2036 [ 30E45AF8B4D83176CA850FC9699E860B ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
07:59:28.0500 2036 aswSnx - ok
07:59:28.0562 2036 [ F04BDBCB965C05C51F4A7DE7B62063D6 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
07:59:28.0562 2036 aswSP - ok
07:59:28.0593 2036 [ DFE9152ABFA89BB8CFDC057409B2D4DA ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
07:59:28.0593 2036 aswTdi - ok
07:59:28.0656 2036 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
07:59:28.0656 2036 AsyncMac - ok
07:59:28.0656 2036 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
07:59:28.0656 2036 atapi - ok
07:59:28.0687 2036 Atdisk - ok
07:59:28.0750 2036 [ 3E47191DDAFFCDD9B28CBC50FB6499B5 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
07:59:28.0765 2036 Ati HotKey Poller - ok
07:59:28.0828 2036 [ 096C9955485F2B3F910F4C503C318D74 ] ATI Smart C:\WINDOWS\system32\ati2sgag.exe
07:59:28.0843 2036 ATI Smart - ok
07:59:28.0953 2036 [ E51AA5ADF535C847072C0AED3E642912 ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
07:59:29.0031 2036 ati2mtag - ok
07:59:29.0109 2036 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
07:59:29.0109 2036 Atmarpc - ok
07:59:29.0156 2036 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
07:59:29.0156 2036 AudioSrv - ok
07:59:29.0203 2036 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
07:59:29.0203 2036 audstub - ok
07:59:29.0328 2036 [ 04AC21E821F259845BD7367CEE057290 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
07:59:29.0328 2036 avast! Antivirus - ok
07:59:29.0375 2036 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
07:59:29.0375 2036 Beep - ok
07:59:29.0421 2036 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
07:59:29.0515 2036 BITS - ok
07:59:29.0578 2036 [ CFD4C3352E29A8B729536648466E8DF5 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
07:59:29.0578 2036 Bonjour Service - ok
07:59:29.0625 2036 [ A06CE3399D16DB864F55FAEB1F1927A9 ] Browser C:\WINDOWS\System32\browser.dll
07:59:29.0625 2036 Browser - ok
07:59:29.0671 2036 [ 248DFA5762DDE38DFDDBBD44149E9D7A ] BVRPMPR5 C:\WINDOWS\system32\drivers\BVRPMPR5.SYS
07:59:29.0671 2036 BVRPMPR5 - ok
07:59:29.0703 2036 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
07:59:29.0703 2036 cbidf - ok
07:59:29.0718 2036 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
07:59:29.0718 2036 cbidf2k - ok
07:59:29.0750 2036 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
07:59:29.0765 2036 cd20xrnt - ok
07:59:29.0781 2036 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
07:59:29.0796 2036 Cdaudio - ok
07:59:29.0812 2036 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
07:59:29.0812 2036 Cdfs - ok
07:59:29.0859 2036 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
07:59:29.0859 2036 Cdrom - ok
07:59:29.0875 2036 Changer - ok
07:59:29.0921 2036 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
07:59:29.0921 2036 CiSvc - ok
07:59:29.0937 2036 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
07:59:29.0937 2036 ClipSrv - ok
07:59:29.0968 2036 [ 234B1BC2796483E1F5C3F26649FB3388 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
07:59:30.0125 2036 clr_optimization_v2.0.50727_32 - ok
07:59:30.0156 2036 [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
07:59:30.0171 2036 CmdIde - ok
07:59:30.0171 2036 COMSysApp - ok
07:59:30.0234 2036 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
07:59:30.0234 2036 Cpqarray - ok
07:59:30.0281 2036 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
07:59:30.0281 2036 CryptSvc - ok
07:59:30.0312 2036 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
07:59:30.0328 2036 dac2w2k - ok
07:59:30.0343 2036 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
07:59:30.0343 2036 dac960nt - ok
07:59:30.0390 2036 [ 2589FE6015A316C0F5D5112B4DA7B509 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
07:59:30.0390 2036 DcomLaunch - ok
07:59:30.0453 2036 [ D8CD6A2A94F545858EEC6117F0D5DFF4 ] dfmirage C:\WINDOWS\system32\DRIVERS\dfmirage.sys
07:59:30.0453 2036 dfmirage - ok
07:59:30.0500 2036 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
07:59:30.0500 2036 Dhcp - ok
07:59:30.0531 2036 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
07:59:30.0531 2036 Disk - ok
07:59:30.0593 2036 [ 0659E6E0A95564F958D9DF7313F7701E ] DLABMFSM C:\WINDOWS\system32\DLA\DLABMFSM.SYS
07:59:30.0593 2036 DLABMFSM - ok
07:59:30.0609 2036 [ 8691C78908F0BD66170669DB268369F2 ] DLABOIOM C:\WINDOWS\system32\DLA\DLABOIOM.SYS
07:59:30.0609 2036 DLABOIOM - ok
07:59:30.0625 2036 [ 76167B5EB2DFFC729EDC36386876B40B ] DLACDBHM C:\WINDOWS\system32\Drivers\DLACDBHM.SYS
07:59:30.0625 2036 DLACDBHM - ok
07:59:30.0656 2036 [ 5615744A1056933B90E6AC54FEB86F35 ] DLADResM C:\WINDOWS\system32\DLA\DLADResM.SYS
07:59:30.0656 2036 DLADResM - ok
07:59:30.0671 2036 [ 1AECA2AFA5005CE4A550CF8EB55A8C88 ] DLAIFS_M C:\WINDOWS\system32\DLA\DLAIFS_M.SYS
07:59:30.0671 2036 DLAIFS_M - ok
07:59:30.0687 2036 [ 840E7F6ABB885C72B9FFDDB022EF5B6D ] DLAOPIOM C:\WINDOWS\system32\DLA\DLAOPIOM.SYS
07:59:30.0687 2036 DLAOPIOM - ok
07:59:30.0703 2036 [ 0294D18731AC05DA80132CE88F8A876B ] DLAPoolM C:\WINDOWS\system32\DLA\DLAPoolM.SYS
07:59:30.0703 2036 DLAPoolM - ok
07:59:30.0734 2036 [ 91886FED52A3F9966207BCE46CFD794F ] DLARTL_M C:\WINDOWS\system32\Drivers\DLARTL_M.SYS
07:59:30.0734 2036 DLARTL_M - ok
07:59:30.0750 2036 [ CCA4E121D599D7D1706A30F603731E59 ] DLAUDFAM C:\WINDOWS\system32\DLA\DLAUDFAM.SYS
07:59:30.0750 2036 DLAUDFAM - ok
07:59:30.0765 2036 [ 7DAB85C33135DF24419951DA4E7D38E5 ] DLAUDF_M C:\WINDOWS\system32\DLA\DLAUDF_M.SYS
07:59:30.0765 2036 DLAUDF_M - ok
07:59:30.0796 2036 dmadmin - ok
07:59:30.0859 2036 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
07:59:30.0875 2036 dmboot - ok
07:59:30.0906 2036 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
07:59:30.0906 2036 dmio - ok
07:59:30.0937 2036 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
07:59:30.0937 2036 dmload - ok
07:59:30.0984 2036 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
07:59:30.0984 2036 dmserver - ok
07:59:31.0031 2036 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
07:59:31.0031 2036 DMusic - ok
07:59:31.0078 2036 [ 474B4DC3983173E4B4C9740B0DAC98A6 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
07:59:31.0078 2036 Dnscache - ok
07:59:31.0125 2036 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
07:59:31.0125 2036 Dot3svc - ok
07:59:31.0156 2036 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
07:59:31.0156 2036 dpti2o - ok
07:59:31.0171 2036 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
07:59:31.0171 2036 drmkaud - ok
07:59:31.0218 2036 [ C00440385CF9F3D142917C63F989E244 ] DRVMCDB C:\WINDOWS\system32\Drivers\DRVMCDB.SYS
07:59:31.0218 2036 DRVMCDB - ok
07:59:31.0250 2036 [ 6E6AB29D3C06E64CE81FEACDA85394B5 ] DRVNDDM C:\WINDOWS\system32\Drivers\DRVNDDM.SYS
07:59:31.0265 2036 DRVNDDM - ok
07:59:31.0296 2036 [ 3FCA03CBCA11269F973B70FA483C88EF ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
07:59:31.0296 2036 E100B - ok
07:59:31.0343 2036 [ 34AAA3B298A852B3663E6E0D94D12945 ] e1express C:\WINDOWS\system32\DRIVERS\e1e5132.sys
07:59:31.0343 2036 e1express - ok
07:59:31.0390 2036 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
07:59:31.0390 2036 EapHost - ok
07:59:31.0437 2036 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
07:59:31.0437 2036 ERSvc - ok
07:59:31.0484 2036 [ 0E776ED5F7CC9F94299E70461B7B8185 ] Eventlog C:\WINDOWS\system32\services.exe
07:59:31.0500 2036 Eventlog - ok
07:59:31.0546 2036 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
07:59:31.0546 2036 EventSystem - ok
07:59:31.0578 2036 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
07:59:31.0578 2036 Fastfat - ok
07:59:31.0625 2036 [ 1926899BF9FFE2602B63074971700412 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
07:59:31.0625 2036 FastUserSwitchingCompatibility - ok
07:59:31.0656 2036 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
07:59:31.0656 2036 Fdc - ok
07:59:31.0671 2036 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
07:59:31.0671 2036 Fips - ok
07:59:31.0765 2036 [ 227846995AFEEFA70D328BF5334A86A5 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
07:59:31.0765 2036 FLEXnet Licensing Service - ok
07:59:31.0781 2036 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
07:59:31.0781 2036 Flpydisk - ok
07:59:31.0812 2036 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
07:59:31.0812 2036 FltMgr - ok
07:59:31.0828 2036 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
07:59:31.0828 2036 Fs_Rec - ok
07:59:31.0875 2036 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
07:59:31.0875 2036 Ftdisk - ok
07:59:31.0906 2036 [ 5DC17164F66380CBFEFD895C18467773 ] GEARAspiWDM C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
07:59:31.0906 2036 GEARAspiWDM - ok
07:59:32.0015 2036 [ 0879DC7444A201DF84E69C5DD5083D61 ] getPlusHelper C:\Program Files\NOS\bin\getPlus_Helper.dll
07:59:32.0046 2036 getPlusHelper - ok
07:59:32.0125 2036 [ B39662E4C237AA25A2CD2379FF508099 ] GoogleDesktopManager-022208-143751 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
07:59:32.0125 2036 GoogleDesktopManager-022208-143751 - ok
07:59:32.0171 2036 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
07:59:32.0171 2036 Gpc - ok
07:59:32.0250 2036 [ 626A24ED1228580B9518C01930936DF9 ] gupdate1c9d0cdd7f3c01e C:\Program Files\Google\Update\GoogleUpdate.exe
07:59:32.0250 2036 gupdate1c9d0cdd7f3c01e - ok
07:59:32.0281 2036 [ 626A24ED1228580B9518C01930936DF9 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
07:59:32.0281 2036 gupdatem - ok
07:59:32.0421 2036 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
07:59:32.0421 2036 gusvc - ok
07:59:32.0468 2036 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
07:59:32.0468 2036 HDAudBus - ok
07:59:32.0562 2036 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
07:59:32.0562 2036 helpsvc - ok
07:59:32.0578 2036 HidServ - ok
07:59:32.0609 2036 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
07:59:32.0609 2036 HidUsb - ok
07:59:32.0656 2036 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
07:59:32.0656 2036 hkmsvc - ok
07:59:32.0687 2036 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
07:59:32.0687 2036 hpn - ok
07:59:32.0718 2036 [ 30CA91E657CEDE2F95359D6EF186F650 ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
07:59:32.0718 2036 HPZid412 - ok
07:59:32.0781 2036 [ EFD31AFA752AA7C7BBB57BCBE2B01C78 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
07:59:32.0781 2036 HPZipr12 - ok
07:59:32.0781 2036 [ 7AC43C38CA8FD7ED0B0A4466F753E06E ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
07:59:32.0781 2036 HPZius12 - ok
07:59:32.0828 2036 [ 77E4FF0B73BC0AEAAF39BF0C8104231F ] HSFHWBS2 C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
07:59:32.0828 2036 HSFHWBS2 - ok
07:59:32.0859 2036 [ 60E1604729A15EF4A3B05F298427B3B1 ] HSF_DP C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
07:59:32.0875 2036 HSF_DP - ok
07:59:32.0921 2036 [ F6AACF5BCE2893E0C1754AFEB672E5C9 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
07:59:32.0937 2036 HTTP - ok
07:59:32.0984 2036 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
07:59:32.0984 2036 HTTPFilter - ok
07:59:33.0015 2036 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
07:59:33.0015 2036 i2omgmt - ok
07:59:33.0046 2036 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
07:59:33.0046 2036 i2omp - ok
07:59:33.0062 2036 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
07:59:33.0062 2036 i8042prt - ok
07:59:33.0109 2036 [ 997E8F5939F2D12CD9F2E6B395724C16 ] iaStor C:\WINDOWS\system32\drivers\iaStor.sys
07:59:33.0109 2036 iaStor - ok
07:59:33.0156 2036 icsak - ok
07:59:33.0265 2036 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
07:59:33.0265 2036 IDriverT - ok
07:59:33.0296 2036 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
07:59:33.0296 2036 Imapi - ok
07:59:33.0375 2036 [ 1ACAD13923E467E473C3EC503223F983 ] Imapi Helper C:\Program Files\ISO Recorder\ImapiHelper.exe
07:59:33.0375 2036 Imapi Helper - ok
07:59:33.0437 2036 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
07:59:33.0437 2036 ImapiService - ok
07:59:33.0484 2036 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
07:59:33.0484 2036 ini910u - ok
07:59:33.0625 2036 [ 17BBBABB21F86B650B2626045A9D016C ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
07:59:33.0718 2036 IntcAzAudAddService - ok
07:59:33.0781 2036 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
07:59:33.0781 2036 IntelIde - ok
07:59:33.0796 2036 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
07:59:33.0812 2036 intelppm - ok
07:59:33.0859 2036 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
07:59:33.0859 2036 Ip6Fw - ok
07:59:33.0890 2036 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
07:59:33.0890 2036 IpFilterDriver - ok
07:59:33.0921 2036 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
07:59:33.0921 2036 IpInIp - ok
07:59:33.0953 2036 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
07:59:33.0953 2036 IpNat - ok
07:59:34.0031 2036 [ 1CB96E83FD76EB5580451CEF29E24303 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
07:59:34.0031 2036 iPod Service - ok
07:59:34.0062 2036 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
07:59:34.0062 2036 IPSec - ok
07:59:34.0093 2036 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
07:59:34.0093 2036 IRENUM - ok
07:59:34.0140 2036 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
07:59:34.0140 2036 isapnp - ok
07:59:34.0281 2036 [ 5E06A9D23727DAF96FAA796F1135FDCD ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
07:59:34.0281 2036 JavaQuickStarterService - ok
07:59:34.0328 2036 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
07:59:34.0328 2036 Kbdclass - ok
07:59:34.0359 2036 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
07:59:34.0359 2036 kbdhid - ok
07:59:34.0375 2036 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
07:59:34.0375 2036 kmixer - ok
07:59:34.0406 2036 [ 1705745D900DABF2D89F90EBADDC7517 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
07:59:34.0421 2036 KSecDD - ok
07:59:34.0468 2036 [ F385F4B02C535BFFE1D70CAB80838123 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
07:59:34.0468 2036 lanmanserver - ok
07:59:34.0500 2036 [ 1B67B632786FEF1C1BBAEF46C2F3F2E6 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
07:59:34.0500 2036 lanmanworkstation - ok
07:59:34.0515 2036 lbrtfdc - ok
07:59:34.0578 2036 [ 29FAB5363138F6E322F4CD780ED9D337 ] LicCtrlService C:\WINDOWS\runservice.exe
07:59:35.0078 2036 LicCtrlService - ok
07:59:35.0156 2036 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
07:59:35.0156 2036 LmHosts - ok
07:59:35.0171 2036 [ EEAEA6514BA7C9D273B5E87C4E1AAB30 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
07:59:35.0171 2036 mdmxsdk - ok
07:59:35.0203 2036 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
07:59:35.0203 2036 Messenger - ok
07:59:35.0250 2036 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
07:59:35.0250 2036 mnmdd - ok
07:59:35.0281 2036 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
07:59:35.0281 2036 mnmsrvc - ok
07:59:35.0312 2036 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
07:59:35.0312 2036 Modem - ok
07:59:35.0343 2036 [ 1992E0D143B09653AB0F9C5E04B0FD65 ] MODEMCSA C:\WINDOWS\system32\drivers\MODEMCSA.sys
07:59:35.0343 2036 MODEMCSA - ok
07:59:35.0375 2036 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
07:59:35.0375 2036 Mouclass - ok
07:59:35.0421 2036 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
07:59:35.0437 2036 mouhid - ok
07:59:35.0484 2036 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
07:59:35.0484 2036 MountMgr - ok
07:59:35.0531 2036 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
07:59:35.0531 2036 mraid35x - ok
07:59:35.0562 2036 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
07:59:35.0562 2036 MRxDAV - ok
07:59:35.0609 2036 [ 60AE98742484E7AB80C3C1450E708148 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
07:59:35.0609 2036 MRxSmb - ok
07:59:35.0656 2036 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
07:59:35.0656 2036 MSDTC - ok
07:59:35.0703 2036 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
07:59:35.0703 2036 Msfs - ok
07:59:35.0718 2036 MSIServer - ok
07:59:35.0765 2036 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
07:59:35.0765 2036 MSKSSRV - ok
07:59:35.0781 2036 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
07:59:35.0781 2036 MSPCLOCK - ok
07:59:35.0796 2036 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
07:59:35.0796 2036 MSPQM - ok
07:59:35.0828 2036 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
07:59:35.0828 2036 mssmbios - ok
07:59:35.0859 2036 [ 2F625D11385B1A94360BFC70AAEFDEE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
07:59:35.0859 2036 Mup - ok
07:59:35.0906 2036 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
07:59:35.0906 2036 napagent - ok
07:59:35.0937 2036 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
07:59:35.0953 2036 NDIS - ok
07:59:35.0968 2036 [ 1AB3D00C991AB086E69DB84B6C0ED78F ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
07:59:35.0968 2036 NdisTapi - ok
07:59:36.0015 2036 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
07:59:36.0015 2036 Ndisuio - ok
07:59:36.0078 2036 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
07:59:36.0078 2036 NdisWan - ok
07:59:36.0093 2036 [ 6215023940CFD3702B46ABC304E1D45A ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
07:59:36.0093 2036 NDProxy - ok
07:59:36.0109 2036 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
07:59:36.0109 2036 NetBIOS - ok
07:59:36.0140 2036 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
07:59:36.0140 2036 NetBT - ok
07:59:36.0187 2036 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
07:59:36.0203 2036 NetDDE - ok
07:59:36.0203 2036 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
07:59:36.0218 2036 NetDDEdsdm - ok
07:59:36.0265 2036 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
07:59:36.0265 2036 Netlogon - ok
07:59:36.0281 2036 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
07:59:36.0281 2036 Netman - ok
07:59:36.0343 2036 [ 832E4DD8964AB7ACC880B2837CB1ED20 ] Nla C:\WINDOWS\System32\mswsock.dll
07:59:36.0343 2036 Nla - ok
07:59:36.0406 2036 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
07:59:36.0406 2036 Npfs - ok
07:59:36.0421 2036 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
07:59:36.0421 2036 Ntfs - ok
07:59:36.0468 2036 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
07:59:36.0468 2036 NtLmSsp - ok
07:59:36.0515 2036 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
07:59:36.0531 2036 NtmsSvc - ok
07:59:36.0546 2036 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
07:59:36.0546 2036 Null - ok
07:59:36.0640 2036 [ 2B298519EDBFCF451D43E0F1E8F1006D ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
07:59:36.0718 2036 nv - ok
07:59:36.0781 2036 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
07:59:36.0781 2036 NwlnkFlt - ok
07:59:36.0796 2036 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
07:59:36.0796 2036 NwlnkFwd - ok
07:59:36.0875 2036 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
07:59:36.0875 2036 ose - ok
07:59:36.0937 2036 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
07:59:36.0937 2036 Parport - ok
07:59:36.0968 2036 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
07:59:36.0968 2036 PartMgr - ok
07:59:37.0015 2036 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
07:59:37.0015 2036 ParVdm - ok
07:59:37.0046 2036 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
07:59:37.0046 2036 PCI - ok
07:59:37.0062 2036 PCIDump - ok
07:59:37.0093 2036 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
07:59:37.0109 2036 PCIIde - ok
07:59:37.0156 2036 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
07:59:37.0156 2036 Pcmcia - ok
07:59:37.0156 2036 PDCOMP - ok
07:59:37.0187 2036 PDFRAME - ok
07:59:37.0203 2036 PDRELI - ok
07:59:37.0218 2036 PDRFRAME - ok
07:59:37.0250 2036 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
07:59:37.0265 2036 perc2 - ok
07:59:37.0281 2036 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
07:59:37.0281 2036 perc2hib - ok
07:59:37.0343 2036 [ 0E776ED5F7CC9F94299E70461B7B8185 ] PlugPlay C:\WINDOWS\system32\services.exe
07:59:37.0343 2036 PlugPlay - ok
07:59:37.0406 2036 [ 2D091A99624FB9E7EEF0A86D872EC0C3 ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
07:59:37.0406 2036 Pml Driver HPZ12 - ok
07:59:37.0421 2036 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
07:59:37.0421 2036 PolicyAgent - ok
07:59:37.0500 2036 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
07:59:37.0500 2036 PptpMiniport - ok
07:59:37.0515 2036 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
07:59:37.0531 2036 ProtectedStorage - ok
07:59:37.0546 2036 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
07:59:37.0546 2036 PSched - ok
07:59:37.0593 2036 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
07:59:37.0593 2036 Ptilink - ok
07:59:37.0656 2036 [ 49452BFCEC22F36A7A9B9C2181BC3042 ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
07:59:37.0656 2036 PxHelp20 - ok
07:59:37.0703 2036 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
07:59:37.0703 2036 ql1080 - ok
07:59:37.0734 2036 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
07:59:37.0734 2036 Ql10wnt - ok
07:59:37.0765 2036 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
07:59:37.0765 2036 ql12160 - ok
07:59:37.0781 2036 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
07:59:37.0781 2036 ql1240 - ok
07:59:37.0796 2036 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
07:59:37.0796 2036 ql1280 - ok
07:59:37.0843 2036 [ 0087F01D35A65B32393CC8BBA46EE4A6 ] QV2KUX C:\WINDOWS\system32\DRIVERS\qv2kux.sys
07:59:37.0843 2036 QV2KUX - ok
07:59:37.0890 2036 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
07:59:37.0890 2036 RasAcd - ok
07:59:37.0921 2036 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
07:59:37.0921 2036 RasAuto - ok
07:59:37.0968 2036 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
07:59:37.0968 2036 Rasl2tp - ok
07:59:38.0015 2036 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
07:59:38.0015 2036 RasMan - ok
07:59:38.0031 2036 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
07:59:38.0031 2036 RasPppoe - ok
07:59:38.0062 2036 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
07:59:38.0062 2036 Raspti - ok
07:59:38.0093 2036 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
07:59:38.0093 2036 Rdbss - ok
07:59:38.0109 2036 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
07:59:38.0109 2036 RDPCDD - ok
07:59:38.0140 2036 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
07:59:38.0140 2036 rdpdr - ok
07:59:38.0171 2036 [ 6728E45B66F93C08F11DE2E316FC70DD ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
07:59:38.0171 2036 RDPWD - ok
07:59:38.0218 2036 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
07:59:38.0218 2036 RDSessMgr - ok
07:59:38.0250 2036 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
07:59:38.0250 2036 redbook - ok
07:59:38.0312 2036 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
07:59:38.0312 2036 RemoteAccess - ok
07:59:38.0437 2036 [ EBCDE8B48FADC6479D96A56D0A432160 ] RoxMediaDB9 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
07:59:38.0453 2036 RoxMediaDB9 - ok
07:59:38.0515 2036 [ AB2B1DE1C8F31EFCE2384B14B3DC4260 ] RoxWatch9 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
07:59:38.0515 2036 RoxWatch9 - ok
07:59:38.0578 2036 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
07:59:38.0578 2036 RpcLocator - ok
07:59:38.0609 2036 [ 2589FE6015A316C0F5D5112B4DA7B509 ] RpcSs C:\WINDOWS\system32\rpcss.dll
07:59:38.0609 2036 RpcSs - ok
07:59:38.0640 2036 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
07:59:38.0640 2036 RSVP - ok
07:59:38.0687 2036 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
07:59:38.0687 2036 SamSs - ok
07:59:38.0687 2036 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
07:59:38.0703 2036 SCardSvr - ok
07:59:38.0750 2036 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
07:59:38.0750 2036 Schedule - ok
07:59:38.0828 2036 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
07:59:38.0828 2036 Secdrv - ok
07:59:38.0859 2036 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
07:59:38.0859 2036 seclogon - ok
07:59:38.0859 2036 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
07:59:38.0875 2036 SENS - ok
07:59:38.0921 2036 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
07:59:38.0921 2036 serenum - ok
07:59:38.0953 2036 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
07:59:38.0953 2036 Serial - ok
07:59:39.0000 2036 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
07:59:39.0015 2036 Sfloppy - ok
07:59:39.0062 2036 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
07:59:39.0062 2036 SharedAccess - ok
07:59:39.0093 2036 [ 1926899BF9FFE2602B63074971700412 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
07:59:39.0093 2036 ShellHWDetection - ok
07:59:39.0109 2036 Simbad - ok
07:59:39.0156 2036 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
07:59:39.0156 2036 sisagp - ok
07:59:39.0187 2036 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
07:59:39.0187 2036 Sparrow - ok
07:59:39.0234 2036 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
07:59:39.0234 2036 splitter - ok
07:59:39.0281 2036 [ D8E14A61ACC1D4A6CD0D38AEBAC7FA3B ] Spooler C:\WINDOWS\system32\spoolsv.exe
07:59:39.0281 2036 Spooler - ok
07:59:39.0328 2036 sprtsvc_dellsupportcenter - ok
07:59:39.0343 2036 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
07:59:39.0359 2036 sr - ok
07:59:39.0390 2036 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
07:59:39.0390 2036 srservice - ok
07:59:39.0421 2036 [ 3BB03F2BA89D2BE417206C373D2AF17C ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
07:59:39.0437 2036 Srv - ok
07:59:39.0468 2036 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
07:59:39.0468 2036 SSDPSRV - ok
07:59:39.0515 2036 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
07:59:39.0515 2036 stisvc - ok
07:59:39.0562 2036 [ 51778FD315C9882F1CBD932743E62A72 ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
07:59:39.0578 2036 stllssvr - ok
07:59:39.0609 2036 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
07:59:39.0609 2036 swenum - ok
07:59:39.0640 2036 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
07:59:39.0640 2036 swmidi - ok
07:59:39.0656 2036 SwPrv - ok
07:59:39.0703 2036 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
07:59:39.0703 2036 symc810 - ok
07:59:39.0750 2036 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
07:59:39.0750 2036 symc8xx - ok
07:59:39.0781 2036 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
07:59:39.0781 2036 sym_hi - ok
07:59:39.0812 2036 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
07:59:39.0812 2036 sym_u3 - ok
07:59:39.0859 2036 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
07:59:39.0859 2036 sysaudio - ok
07:59:39.0906 2036 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
07:59:39.0906 2036 SysmonLog - ok
07:59:39.0937 2036 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
07:59:39.0953 2036 TapiSrv - ok
07:59:39.0984 2036 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
07:59:40.0000 2036 Tcpip - ok
07:59:40.0015 2036 [ FB9F32ACC1D3AD523F7EC900B66FC1BB ] Tcpip6 C:\WINDOWS\system32\DRIVERS\tcpip6.sys
07:59:40.0015 2036 Tcpip6 - ok
07:59:40.0046 2036 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
07:59:40.0062 2036 TDPIPE - ok
07:59:40.0078 2036 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
07:59:40.0078 2036 TDTCP - ok
07:59:40.0109 2036 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
07:59:40.0109 2036 TermDD - ok
07:59:40.0156 2036 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
07:59:40.0156 2036 TermService - ok
07:59:40.0187 2036 [ 1926899BF9FFE2602B63074971700412 ] Themes C:\WINDOWS\System32\shsvcs.dll
07:59:40.0187 2036 Themes - ok
07:59:40.0218 2036 [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
07:59:40.0218 2036 TosIde - ok
07:59:40.0250 2036 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
07:59:40.0250 2036 TrkWks - ok
07:59:40.0312 2036 [ 8F861EDA21C05857EB8197300A92501C ] tunmp C:\WINDOWS\system32\DRIVERS\tunmp.sys
07:59:40.0312 2036 tunmp - ok
07:59:40.0343 2036 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
07:59:40.0343 2036 Udfs - ok
07:59:40.0375 2036 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
07:59:40.0375 2036 ultra - ok
07:59:40.0406 2036 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
07:59:40.0421 2036 Update - ok
07:59:40.0468 2036 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
07:59:40.0468 2036 upnphost - ok
07:59:40.0531 2036 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
07:59:40.0531 2036 UPS - ok
07:59:40.0593 2036 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
07:59:40.0593 2036 usbccgp - ok
07:59:40.0625 2036 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
07:59:40.0625 2036 usbehci - ok
07:59:40.0671 2036 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
07:59:40.0671 2036 usbhub - ok
07:59:40.0703 2036 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
07:59:40.0703 2036 usbprint - ok
07:59:40.0734 2036 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
07:59:40.0734 2036 usbscan - ok
07:59:40.0765 2036 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
07:59:40.0765 2036 USBSTOR - ok
07:59:40.0812 2036 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
07:59:40.0812 2036 usbuhci - ok
07:59:40.0859 2036 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
07:59:40.0875 2036 VgaSave - ok
07:59:40.0906 2036 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
07:59:40.0906 2036 viaagp - ok
07:59:40.0953 2036 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
07:59:40.0953 2036 ViaIde - ok
07:59:40.0984 2036 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
07:59:40.0984 2036 VolSnap - ok
07:59:41.0046 2036 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
07:59:41.0046 2036 VSS - ok
07:59:41.0078 2036 [ 54AF4B1D5459500EF0937F6D33B1914F ] w32time C:\WINDOWS\system32\w32time.dll
07:59:41.0093 2036 w32time - ok
07:59:41.0140 2036 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
07:59:41.0140 2036 Wanarp - ok
07:59:41.0156 2036 WDICA - ok
07:59:41.0218 2036 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
07:59:41.0218 2036 wdmaud - ok
07:59:41.0250 2036 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
07:59:41.0250 2036 WebClient - ok
07:59:41.0281 2036 [ F59ED5A43B988A18EF582BB07B2327A7 ] winachsf C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
07:59:41.0296 2036 winachsf - ok
07:59:41.0375 2036 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
07:59:41.0375 2036 winmgmt - ok
07:59:41.0468 2036 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
07:59:41.0468 2036 WmdmPmSN - ok
07:59:41.0531 2036 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
07:59:41.0531 2036 WmiApSrv - ok
07:59:41.0640 2036 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
07:59:41.0640 2036 WMPNetworkSvc - ok
07:59:41.0687 2036 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
07:59:41.0734 2036 wscsvc - ok
07:59:41.0765 2036 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
07:59:41.0765 2036 wuauserv - ok
07:59:41.0812 2036 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
07:59:41.0812 2036 WudfPf - ok
07:59:41.0828 2036 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
07:59:41.0828 2036 WudfRd - ok
07:59:41.0875 2036 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
07:59:41.0890 2036 WudfSvc - ok
07:59:41.0937 2036 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
07:59:41.0937 2036 WZCSVC - ok
07:59:41.0984 2036 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
07:59:41.0984 2036 xmlprov - ok
07:59:42.0000 2036 ================ Scan global ===============================
07:59:42.0046 2036 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
07:59:42.0062 2036 [ 1618F36D4F7F6CCCEB3EE44BA95BE85C ] C:\WINDOWS\system32\winsrv.dll
07:59:42.0078 2036 [ 1618F36D4F7F6CCCEB3EE44BA95BE85C ] C:\WINDOWS\system32\winsrv.dll
07:59:42.0093 2036 [ 0E776ED5F7CC9F94299E70461B7B8185 ] C:\WINDOWS\system32\services.exe
07:59:42.0093 2036 [Global] - ok
07:59:42.0093 2036 ================ Scan MBR ==================================
07:59:42.0125 2036 [ 5CB90281D1A59B251F6603134774EEC3 ] \Device\Harddisk0\DR0
07:59:42.0125 2036 Suspicious mbr (Forged): \Device\Harddisk0\DR0
07:59:42.0140 2036 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
07:59:42.0140 2036 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
07:59:42.0156 2036 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
07:59:42.0156 2036 \Device\Harddisk0\DR0 - detected TDSS File System (1)
07:59:42.0156 2036 ================ Scan VBR ==================================
07:59:42.0203 2036 [ D943627D89120A4C21343A99A0CD38BA ] \Device\Harddisk0\DR0\Partition1
07:59:42.0203 2036 \Device\Harddisk0\DR0\Partition1 - ok
07:59:42.0203 2036 ============================================================
07:59:42.0203 2036 Scan finished
07:59:42.0203 2036 ============================================================
07:59:42.0234 2028 Detected object count: 2
07:59:42.0234 2028 Actual detected object count: 2

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:37 PM

Posted 25 October 2012 - 10:08 AM

Launch TDSSkiller and select

Rootkit.Boot.Pihar.c -CURE
TDSS File System - DELETE


Restart the PC,run TDSSkiller again and post the new log

Edited by narenxp, 25 October 2012 - 10:09 AM.


#6 junebug41

junebug41
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:04:37 PM

Posted 25 October 2012 - 10:13 AM

aswMBR log (two lines in red):

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-10-25 08:03:29
-----------------------------
08:03:29.609 OS Version: Windows 5.1.2600 Service Pack 3
08:03:29.609 Number of processors: 2 586 0xF0D
08:03:29.609 ComputerName: MIKE UserName:
08:03:30.109 Initialize success
08:03:31.515 AVAST engine defs: 12101000
08:04:06.421 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
08:04:06.437 Disk 0 Vendor: ST3250310AS 3.ADA Size: 238418MB BusType: 3
08:04:06.453 Device \Driver\atapi -> DriverStartIo 8a3d62e2
08:04:06.468 Disk 0 MBR read successfully
08:04:06.484 Disk 0 MBR scan
08:04:06.843 Disk 0 unknown MBR code
08:04:06.875 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 47 MB offset 63
08:04:07.359 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 234982 MB offset 96390
08:04:07.718 Disk 0 Partition 3 00 DB CP/M / CTOS Dell 8.0 3380 MB offset 481339530
08:04:07.843 Disk 0 scanning sectors +488263545
08:04:08.125 Disk 0 scanning C:\WINDOWS\system32\drivers
08:04:22.421 Service scanning
08:04:38.703 Modules scanning
08:04:43.656 Disk 0 trace - called modules:
08:04:43.750 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll >>UNKNOWN [0x8a148858]<<
08:04:43.828 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8a88f9c0]
08:04:43.906 3 CLASSPNP.SYS[f7637fd7] -> nt!IofCallDriver -> \Device\00000065[0x8a89c3b8]
08:04:43.984 5 ACPI.sys[f75ae620] -> nt!IofCallDriver -> [0x8a89b940]
08:04:44.062 \Driver\atapi[0x8a864030] -> IRP_MJ_CREATE -> 0x8a3d64b1
08:04:44.578 AVAST engine scan C:\WINDOWS
08:04:51.296 AVAST engine scan C:\WINDOWS\system32
08:06:00.593 AVAST engine scan C:\WINDOWS\system32\drivers
08:06:09.281 AVAST engine scan C:\Documents and Settings\Administrator
08:06:51.328 AVAST engine scan C:\Documents and Settings\All Users
08:07:11.296 Scan finished successfully
08:07:23.234 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Administrator\Desktop\MBR.dat"
08:07:23.250 The log file has been saved successfully to "C:\Documents and Settings\Administrator\Desktop\aswMBR.txt"

#7 junebug41

junebug41
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:04:37 PM

Posted 25 October 2012 - 11:05 AM

ESET Threats list:

C:\Documents and Settings\Administrator\Desktop\WinZipRegistryOptimizer.exe a variant of Win32/OpenInstall application cleaned by deleting - quarantined
C:\Documents and Settings\Administrator\Local Settings\Temp\OICD.tmp a variant of Win32/OpenInstall application cleaned by deleting - quarantined
C:\Documents and Settings\All Users\Application Data\AVAST Software\Avast\arpot\TEMP\01CDB240321D1912 a variant of Win32/Rootkit.Kryptik.PR trojan cleaned by deleting - quarantined
C:\Documents and Settings\All Users\Application Data\AVAST Software\Avast\arpot\TEMP\1137891a-15e0-0.dat a variant of Win32/Rootkit.Kryptik.PR trojan cleaned by deleting - quarantined
C:\Documents and Settings\MW\Application Data\Sun\Java\Deployment\cache\6.0\50\280884b2-2ada90d0 Java/Exploit.CVE-2009-2843.B trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\25.10.2012_07.58.51\mbr0000\tdlfs0000\tsk0001.dta a variant of Win32/Olmarik.AYI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\25.10.2012_07.58.51\mbr0000\tdlfs0000\tsk0002.dta a variant of Win64/Olmarik.AM trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\25.10.2012_07.58.51\mbr0000\tdlfs0000\tsk0003.dta a variant of Win32/Rootkit.Kryptik.PR trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\25.10.2012_07.58.51\mbr0000\tdlfs0000\tsk0004.dta Win64/Olmarik.AN trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\25.10.2012_07.58.51\mbr0000\tdlfs0000\tsk0008.dta Win32/Olmarik.AFK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\25.10.2012_07.58.51\mbr0000\tdlfs0000\tsk0009.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined

#8 junebug41

junebug41
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:04:37 PM

Posted 25 October 2012 - 11:19 AM

Good news: The computer was able to reboot normally and I am writing this from a Google Chrome window

Bad news: TDSSkiller found TDSS File System again, after I deleted it in safe mode. I deleted it again. I'm not touching anything else.

Here's the report:

09:05:57.0046 0280 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
09:05:58.0656 0280 ============================================================
09:05:58.0656 0280 Current date / time: 2012/10/25 09:05:58.0656
09:05:58.0656 0280 SystemInfo:
09:05:58.0656 0280
09:05:58.0656 0280 OS Version: 5.1.2600 ServicePack: 3.0
09:05:58.0656 0280 Product type: Workstation
09:05:58.0828 0280 ComputerName: MIKE
09:05:58.0828 0280 UserName: MW
09:05:58.0828 0280 Windows directory: C:\WINDOWS
09:05:58.0828 0280 System windows directory: C:\WINDOWS
09:05:58.0828 0280 Processor architecture: Intel x86
09:05:58.0828 0280 Number of processors: 2
09:05:58.0828 0280 Page size: 0x1000
09:05:58.0828 0280 Boot type: Normal boot
09:05:58.0828 0280 ============================================================
09:06:21.0468 0280 BG loaded
09:06:23.0375 0280 Drive \Device\Harddisk0\DR0 - Size: 0x3A35294400 (232.83 Gb), SectorSize: 0x200, Cylinders: 0x76BA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
09:06:43.0562 0280 ============================================================
09:06:43.0562 0280 \Device\Harddisk0\DR0:
09:06:49.0312 0280 MBR partitions:
09:06:49.0312 0280 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x17886, BlocksNum 0x1CAF3004
09:06:49.0312 0280 ============================================================
09:06:54.0328 0280 C: <-> \Device\Harddisk0\DR0\Partition1
09:06:54.0328 0280 ============================================================
09:06:54.0328 0280 Initialize success
09:06:54.0328 0280 ============================================================
09:07:23.0750 2644 ============================================================
09:07:23.0750 2644 Scan started
09:07:23.0750 2644 Mode: Manual; TDLFS;
09:07:23.0750 2644 ============================================================
09:07:25.0843 2644 ================ Scan system memory ========================
09:07:25.0843 2644 System memory - ok
09:07:25.0843 2644 ================ Scan services =============================
09:07:26.0156 2644 [ 3FEFA63FDACBAB9C020CE2273AC45C47 ] 6to4 C:\WINDOWS\System32\6to4svc.dll
09:07:26.0156 2644 6to4 - ok
09:07:26.0265 2644 [ 0352A73CD6B1782EA3ED7A03A8268F55 ] Aavmker4 C:\WINDOWS\system32\drivers\Aavmker4.sys
09:07:26.0265 2644 Aavmker4 - ok
09:07:26.0265 2644 Abiosdsk - ok
09:07:26.0312 2644 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
09:07:26.0312 2644 abp480n5 - ok
09:07:26.0390 2644 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
09:07:26.0390 2644 ACPI - ok
09:07:26.0421 2644 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
09:07:26.0421 2644 ACPIEC - ok
09:07:26.0546 2644 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
09:07:26.0546 2644 adpu160m - ok
09:07:26.0593 2644 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
09:07:26.0593 2644 aec - ok
09:07:26.0656 2644 [ 7E775010EF291DA96AD17CA4B17137D7 ] AFD C:\WINDOWS\System32\drivers\afd.sys
09:07:26.0656 2644 AFD - ok
09:07:26.0703 2644 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
09:07:26.0703 2644 agp440 - ok
09:07:26.0765 2644 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
09:07:26.0765 2644 agpCPQ - ok
09:07:26.0859 2644 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
09:07:26.0875 2644 Aha154x - ok
09:07:26.0906 2644 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
09:07:26.0906 2644 aic78u2 - ok
09:07:27.0015 2644 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
09:07:27.0015 2644 aic78xx - ok
09:07:27.0171 2644 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
09:07:27.0187 2644 Alerter - ok
09:07:27.0218 2644 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
09:07:27.0218 2644 ALG - ok
09:07:27.0312 2644 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
09:07:27.0312 2644 AliIde - ok
09:07:27.0593 2644 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
09:07:27.0593 2644 alim1541 - ok
09:07:27.0640 2644 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
09:07:27.0671 2644 amdagp - ok
09:07:27.0703 2644 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
09:07:27.0703 2644 amsint - ok
09:07:27.0703 2644 AppMgmt - ok
09:07:27.0781 2644 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
09:07:27.0781 2644 asc - ok
09:07:27.0921 2644 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
09:07:27.0921 2644 asc3350p - ok
09:07:27.0937 2644 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
09:07:27.0937 2644 asc3550 - ok
09:07:28.0187 2644 [ 4EABF511B1AF176A971C3271E48FA3A8 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
09:07:28.0234 2644 aspnet_state - ok
09:07:28.0265 2644 [ F5DC168BF77572D51BE28BA261B30CB4 ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
09:07:28.0265 2644 aswFsBlk - ok
09:07:28.0281 2644 [ 2B9B1DF809E965EF63402CBBA6DB50AE ] aswMon2 C:\WINDOWS\system32\drivers\aswMon2.sys
09:07:28.0281 2644 aswMon2 - ok
09:07:28.0328 2644 [ B7D5E4486BA658ED08624D8084ABB830 ] aswRdr C:\WINDOWS\system32\drivers\aswRdr.sys
09:07:28.0328 2644 aswRdr - ok
09:07:28.0343 2644 [ 30E45AF8B4D83176CA850FC9699E860B ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
09:07:28.0343 2644 aswSnx - ok
09:07:28.0359 2644 [ F04BDBCB965C05C51F4A7DE7B62063D6 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
09:07:28.0359 2644 aswSP - ok
09:07:28.0375 2644 [ DFE9152ABFA89BB8CFDC057409B2D4DA ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
09:07:28.0390 2644 aswTdi - ok
09:07:28.0421 2644 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
09:07:28.0437 2644 AsyncMac - ok
09:07:28.0453 2644 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
09:07:28.0484 2644 atapi - ok
09:07:28.0484 2644 Atdisk - ok
09:07:28.0546 2644 [ 3E47191DDAFFCDD9B28CBC50FB6499B5 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
09:07:28.0546 2644 Ati HotKey Poller - ok
09:07:28.0609 2644 [ 096C9955485F2B3F910F4C503C318D74 ] ATI Smart C:\WINDOWS\system32\ati2sgag.exe
09:07:28.0609 2644 ATI Smart - ok
09:07:28.0703 2644 [ E51AA5ADF535C847072C0AED3E642912 ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
09:07:28.0718 2644 ati2mtag - ok
09:07:28.0765 2644 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
09:07:28.0765 2644 Atmarpc - ok
09:07:28.0812 2644 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
09:07:28.0859 2644 AudioSrv - ok
09:07:28.0890 2644 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
09:07:28.0890 2644 audstub - ok
09:07:29.0015 2644 [ 04AC21E821F259845BD7367CEE057290 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
09:07:29.0015 2644 avast! Antivirus - ok
09:07:29.0046 2644 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
09:07:29.0046 2644 Beep - ok
09:07:29.0109 2644 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
09:07:29.0156 2644 BITS - ok
09:07:29.0187 2644 [ CFD4C3352E29A8B729536648466E8DF5 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
09:07:29.0203 2644 Bonjour Service - ok
09:07:29.0250 2644 [ A06CE3399D16DB864F55FAEB1F1927A9 ] Browser C:\WINDOWS\System32\browser.dll
09:07:29.0250 2644 Browser - ok
09:07:29.0281 2644 [ 248DFA5762DDE38DFDDBBD44149E9D7A ] BVRPMPR5 C:\WINDOWS\system32\drivers\BVRPMPR5.SYS
09:07:29.0281 2644 BVRPMPR5 - ok
09:07:29.0343 2644 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
09:07:29.0343 2644 cbidf - ok
09:07:29.0359 2644 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
09:07:29.0359 2644 cbidf2k - ok
09:07:29.0390 2644 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
09:07:29.0390 2644 cd20xrnt - ok
09:07:29.0421 2644 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
09:07:29.0421 2644 Cdaudio - ok
09:07:29.0453 2644 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
09:07:29.0453 2644 Cdfs - ok
09:07:29.0484 2644 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
09:07:29.0484 2644 Cdrom - ok
09:07:29.0500 2644 Changer - ok
09:07:29.0546 2644 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
09:07:29.0578 2644 CiSvc - ok
09:07:29.0593 2644 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
09:07:29.0593 2644 ClipSrv - ok
09:07:29.0640 2644 [ 234B1BC2796483E1F5C3F26649FB3388 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:07:29.0796 2644 clr_optimization_v2.0.50727_32 - ok
09:07:29.0828 2644 [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
09:07:29.0828 2644 CmdIde - ok
09:07:29.0828 2644 COMSysApp - ok
09:07:29.0875 2644 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
09:07:29.0890 2644 Cpqarray - ok
09:07:29.0921 2644 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
09:07:29.0921 2644 CryptSvc - ok
09:07:29.0953 2644 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
09:07:29.0968 2644 dac2w2k - ok
09:07:29.0984 2644 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
09:07:29.0984 2644 dac960nt - ok
09:07:30.0046 2644 [ 2589FE6015A316C0F5D5112B4DA7B509 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
09:07:30.0046 2644 DcomLaunch - ok
09:07:30.0109 2644 [ D8CD6A2A94F545858EEC6117F0D5DFF4 ] dfmirage C:\WINDOWS\system32\DRIVERS\dfmirage.sys
09:07:30.0109 2644 dfmirage - ok
09:07:30.0171 2644 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
09:07:30.0171 2644 Dhcp - ok
09:07:30.0218 2644 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
09:07:30.0218 2644 Disk - ok
09:07:30.0312 2644 [ 0659E6E0A95564F958D9DF7313F7701E ] DLABMFSM C:\WINDOWS\system32\DLA\DLABMFSM.SYS
09:07:30.0312 2644 DLABMFSM - ok
09:07:30.0328 2644 [ 8691C78908F0BD66170669DB268369F2 ] DLABOIOM C:\WINDOWS\system32\DLA\DLABOIOM.SYS
09:07:30.0343 2644 DLABOIOM - ok
09:07:30.0359 2644 [ 76167B5EB2DFFC729EDC36386876B40B ] DLACDBHM C:\WINDOWS\system32\Drivers\DLACDBHM.SYS
09:07:30.0359 2644 DLACDBHM - ok
09:07:30.0390 2644 [ 5615744A1056933B90E6AC54FEB86F35 ] DLADResM C:\WINDOWS\system32\DLA\DLADResM.SYS
09:07:30.0390 2644 DLADResM - ok
09:07:30.0390 2644 [ 1AECA2AFA5005CE4A550CF8EB55A8C88 ] DLAIFS_M C:\WINDOWS\system32\DLA\DLAIFS_M.SYS
09:07:30.0390 2644 DLAIFS_M - ok
09:07:30.0406 2644 [ 840E7F6ABB885C72B9FFDDB022EF5B6D ] DLAOPIOM C:\WINDOWS\system32\DLA\DLAOPIOM.SYS
09:07:30.0406 2644 DLAOPIOM - ok
09:07:30.0406 2644 [ 0294D18731AC05DA80132CE88F8A876B ] DLAPoolM C:\WINDOWS\system32\DLA\DLAPoolM.SYS
09:07:30.0406 2644 DLAPoolM - ok
09:07:30.0421 2644 [ 91886FED52A3F9966207BCE46CFD794F ] DLARTL_M C:\WINDOWS\system32\Drivers\DLARTL_M.SYS
09:07:30.0421 2644 DLARTL_M - ok
09:07:30.0453 2644 [ CCA4E121D599D7D1706A30F603731E59 ] DLAUDFAM C:\WINDOWS\system32\DLA\DLAUDFAM.SYS
09:07:30.0453 2644 DLAUDFAM - ok
09:07:30.0484 2644 [ 7DAB85C33135DF24419951DA4E7D38E5 ] DLAUDF_M C:\WINDOWS\system32\DLA\DLAUDF_M.SYS
09:07:30.0484 2644 DLAUDF_M - ok
09:07:30.0500 2644 dmadmin - ok
09:07:30.0656 2644 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
09:07:30.0718 2644 dmboot - ok
09:07:30.0734 2644 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
09:07:30.0765 2644 dmio - ok
09:07:30.0796 2644 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
09:07:30.0796 2644 dmload - ok
09:07:30.0828 2644 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
09:07:30.0859 2644 dmserver - ok
09:07:30.0890 2644 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
09:07:30.0890 2644 DMusic - ok
09:07:30.0921 2644 [ 474B4DC3983173E4B4C9740B0DAC98A6 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
09:07:30.0921 2644 Dnscache - ok
09:07:31.0000 2644 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
09:07:31.0031 2644 Dot3svc - ok
09:07:31.0046 2644 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
09:07:31.0062 2644 dpti2o - ok
09:07:31.0093 2644 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
09:07:31.0109 2644 drmkaud - ok
09:07:31.0156 2644 [ C00440385CF9F3D142917C63F989E244 ] DRVMCDB C:\WINDOWS\system32\Drivers\DRVMCDB.SYS
09:07:31.0156 2644 DRVMCDB - ok
09:07:31.0187 2644 [ 6E6AB29D3C06E64CE81FEACDA85394B5 ] DRVNDDM C:\WINDOWS\system32\Drivers\DRVNDDM.SYS
09:07:31.0187 2644 DRVNDDM - ok
09:07:31.0203 2644 [ 3FCA03CBCA11269F973B70FA483C88EF ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
09:07:31.0218 2644 E100B - ok
09:07:31.0296 2644 [ 34AAA3B298A852B3663E6E0D94D12945 ] e1express C:\WINDOWS\system32\DRIVERS\e1e5132.sys
09:07:31.0296 2644 e1express - ok
09:07:31.0343 2644 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
09:07:31.0343 2644 EapHost - ok
09:07:31.0390 2644 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
09:07:31.0390 2644 ERSvc - ok
09:07:31.0437 2644 [ 0E776ED5F7CC9F94299E70461B7B8185 ] Eventlog C:\WINDOWS\system32\services.exe
09:07:31.0453 2644 Eventlog - ok
09:07:31.0531 2644 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
09:07:31.0531 2644 EventSystem - ok
09:07:31.0593 2644 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
09:07:31.0593 2644 Fastfat - ok
09:07:31.0656 2644 [ 1926899BF9FFE2602B63074971700412 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
09:07:31.0671 2644 FastUserSwitchingCompatibility - ok
09:07:31.0703 2644 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
09:07:31.0703 2644 Fdc - ok
09:07:31.0734 2644 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
09:07:31.0734 2644 Fips - ok
09:07:31.0906 2644 [ 227846995AFEEFA70D328BF5334A86A5 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
09:07:31.0968 2644 FLEXnet Licensing Service - ok
09:07:32.0000 2644 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
09:07:32.0015 2644 Flpydisk - ok
09:07:32.0062 2644 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
09:07:32.0078 2644 FltMgr - ok
09:07:32.0109 2644 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
09:07:32.0109 2644 Fs_Rec - ok
09:07:32.0156 2644 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
09:07:32.0187 2644 Ftdisk - ok
09:07:32.0218 2644 [ 5DC17164F66380CBFEFD895C18467773 ] GEARAspiWDM C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
09:07:32.0218 2644 GEARAspiWDM - ok
09:07:32.0281 2644 [ 0879DC7444A201DF84E69C5DD5083D61 ] getPlusHelper C:\Program Files\NOS\bin\getPlus_Helper.dll
09:07:32.0359 2644 getPlusHelper - ok
09:07:32.0453 2644 [ B39662E4C237AA25A2CD2379FF508099 ] GoogleDesktopManager-022208-143751 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
09:07:32.0468 2644 GoogleDesktopManager-022208-143751 - ok
09:07:32.0515 2644 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
09:07:32.0515 2644 Gpc - ok
09:07:32.0578 2644 [ 626A24ED1228580B9518C01930936DF9 ] gupdate1c9d0cdd7f3c01e C:\Program Files\Google\Update\GoogleUpdate.exe
09:07:32.0609 2644 gupdate1c9d0cdd7f3c01e - ok
09:07:32.0640 2644 [ 626A24ED1228580B9518C01930936DF9 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
09:07:32.0640 2644 gupdatem - ok
09:07:32.0687 2644 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
09:07:32.0703 2644 gusvc - ok
09:07:32.0750 2644 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
09:07:32.0750 2644 HDAudBus - ok
09:07:32.0843 2644 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
09:07:32.0843 2644 helpsvc - ok
09:07:32.0843 2644 HidServ - ok
09:07:32.0875 2644 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
09:07:32.0890 2644 HidUsb - ok
09:07:33.0093 2644 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
09:07:33.0140 2644 hkmsvc - ok
09:07:33.0171 2644 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
09:07:33.0171 2644 hpn - ok
09:07:33.0234 2644 [ 30CA91E657CEDE2F95359D6EF186F650 ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
09:07:33.0234 2644 HPZid412 - ok
09:07:33.0343 2644 [ EFD31AFA752AA7C7BBB57BCBE2B01C78 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
09:07:33.0343 2644 HPZipr12 - ok
09:07:33.0359 2644 [ 7AC43C38CA8FD7ED0B0A4466F753E06E ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
09:07:33.0359 2644 HPZius12 - ok
09:07:33.0562 2644 [ 77E4FF0B73BC0AEAAF39BF0C8104231F ] HSFHWBS2 C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
09:07:33.0562 2644 HSFHWBS2 - ok
09:07:33.0765 2644 [ 60E1604729A15EF4A3B05F298427B3B1 ] HSF_DP C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
09:07:33.0781 2644 HSF_DP - ok
09:07:33.0890 2644 [ F6AACF5BCE2893E0C1754AFEB672E5C9 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
09:07:34.0203 2644 HTTP - ok
09:07:34.0250 2644 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
09:07:34.0265 2644 HTTPFilter - ok
09:07:34.0296 2644 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
09:07:34.0296 2644 i2omgmt - ok
09:07:34.0515 2644 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
09:07:34.0515 2644 i2omp - ok
09:07:34.0531 2644 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
09:07:34.0531 2644 i8042prt - ok
09:07:34.0640 2644 [ 997E8F5939F2D12CD9F2E6B395724C16 ] iaStor C:\WINDOWS\system32\drivers\iaStor.sys
09:07:34.0718 2644 iaStor - ok
09:07:34.0718 2644 icsak - ok
09:07:35.0109 2644 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
09:07:35.0218 2644 IDriverT - ok
09:07:35.0250 2644 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
09:07:35.0250 2644 Imapi - ok
09:07:35.0468 2644 [ 1ACAD13923E467E473C3EC503223F983 ] Imapi Helper C:\Program Files\ISO Recorder\ImapiHelper.exe
09:07:35.0562 2644 Imapi Helper - ok
09:07:35.0671 2644 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
09:07:35.0671 2644 ImapiService - ok
09:07:35.0734 2644 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
09:07:35.0734 2644 ini910u - ok
09:07:36.0812 2644 [ 17BBBABB21F86B650B2626045A9D016C ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
09:07:36.0859 2644 IntcAzAudAddService - ok
09:07:36.0890 2644 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
09:07:36.0890 2644 IntelIde - ok
09:07:36.0937 2644 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
09:07:36.0937 2644 intelppm - ok
09:07:37.0000 2644 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
09:07:37.0000 2644 Ip6Fw - ok
09:07:37.0078 2644 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
09:07:37.0109 2644 IpFilterDriver - ok
09:07:37.0140 2644 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
09:07:37.0140 2644 IpInIp - ok
09:07:37.0250 2644 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
09:07:37.0265 2644 IpNat - ok
09:07:37.0546 2644 [ 1CB96E83FD76EB5580451CEF29E24303 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
09:07:37.0625 2644 iPod Service - ok
09:07:37.0656 2644 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
09:07:37.0656 2644 IPSec - ok
09:07:37.0687 2644 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
09:07:37.0687 2644 IRENUM - ok
09:07:37.0750 2644 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
09:07:37.0765 2644 isapnp - ok
09:07:37.0953 2644 [ 5E06A9D23727DAF96FAA796F1135FDCD ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
09:07:37.0953 2644 JavaQuickStarterService - ok
09:07:38.0187 2644 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
09:07:38.0187 2644 Kbdclass - ok
09:07:38.0218 2644 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
09:07:38.0218 2644 kbdhid - ok
09:07:38.0328 2644 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
09:07:38.0343 2644 kmixer - ok
09:07:38.0390 2644 [ 1705745D900DABF2D89F90EBADDC7517 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
09:07:38.0390 2644 KSecDD - ok
09:07:38.0437 2644 [ F385F4B02C535BFFE1D70CAB80838123 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
09:07:38.0468 2644 lanmanserver - ok
09:07:38.0562 2644 [ 1B67B632786FEF1C1BBAEF46C2F3F2E6 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
09:07:38.0578 2644 lanmanworkstation - ok
09:07:38.0578 2644 lbrtfdc - ok
09:07:38.0656 2644 [ 29FAB5363138F6E322F4CD780ED9D337 ] LicCtrlService C:\WINDOWS\runservice.exe
09:07:39.0265 2644 LicCtrlService - ok
09:07:39.0359 2644 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
09:07:39.0359 2644 LmHosts - ok
09:07:39.0375 2644 [ EEAEA6514BA7C9D273B5E87C4E1AAB30 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
09:07:39.0390 2644 mdmxsdk - ok
09:07:39.0437 2644 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
09:07:39.0468 2644 Messenger - ok
09:07:39.0515 2644 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
09:07:39.0515 2644 mnmdd - ok
09:07:39.0578 2644 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
09:07:39.0609 2644 mnmsrvc - ok
09:07:39.0625 2644 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
09:07:39.0625 2644 Modem - ok
09:07:39.0656 2644 [ 1992E0D143B09653AB0F9C5E04B0FD65 ] MODEMCSA C:\WINDOWS\system32\drivers\MODEMCSA.sys
09:07:39.0656 2644 MODEMCSA - ok
09:07:39.0656 2644 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
09:07:39.0656 2644 Mouclass - ok
09:07:39.0703 2644 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
09:07:39.0703 2644 mouhid - ok
09:07:39.0765 2644 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
09:07:39.0781 2644 MountMgr - ok
09:07:39.0812 2644 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
09:07:39.0812 2644 mraid35x - ok
09:07:39.0921 2644 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
09:07:39.0921 2644 MRxDAV - ok
09:07:39.0968 2644 [ 60AE98742484E7AB80C3C1450E708148 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
09:07:39.0968 2644 MRxSmb - ok
09:07:40.0062 2644 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
09:07:40.0078 2644 MSDTC - ok
09:07:40.0093 2644 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
09:07:40.0093 2644 Msfs - ok
09:07:40.0093 2644 MSIServer - ok
09:07:40.0125 2644 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
09:07:40.0125 2644 MSKSSRV - ok
09:07:40.0140 2644 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
09:07:40.0140 2644 MSPCLOCK - ok
09:07:40.0140 2644 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
09:07:40.0156 2644 MSPQM - ok
09:07:40.0187 2644 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
09:07:40.0187 2644 mssmbios - ok
09:07:40.0234 2644 [ 2F625D11385B1A94360BFC70AAEFDEE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
09:07:40.0234 2644 Mup - ok
09:07:40.0281 2644 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
09:07:40.0359 2644 napagent - ok
09:07:40.0406 2644 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
09:07:40.0421 2644 NDIS - ok
09:07:40.0421 2644 [ 1AB3D00C991AB086E69DB84B6C0ED78F ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
09:07:40.0437 2644 NdisTapi - ok
09:07:40.0484 2644 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
09:07:40.0484 2644 Ndisuio - ok
09:07:40.0593 2644 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
09:07:40.0593 2644 NdisWan - ok
09:07:40.0609 2644 [ 6215023940CFD3702B46ABC304E1D45A ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
09:07:40.0609 2644 NDProxy - ok
09:07:40.0656 2644 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
09:07:40.0656 2644 NetBIOS - ok
09:07:40.0937 2644 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
09:07:40.0937 2644 NetBT - ok
09:07:41.0093 2644 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
09:07:41.0109 2644 NetDDE - ok
09:07:41.0109 2644 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
09:07:41.0140 2644 NetDDEdsdm - ok
09:07:41.0187 2644 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
09:07:41.0187 2644 Netlogon - ok
09:07:41.0250 2644 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
09:07:41.0250 2644 Netman - ok
09:07:41.0328 2644 [ 832E4DD8964AB7ACC880B2837CB1ED20 ] Nla C:\WINDOWS\System32\mswsock.dll
09:07:41.0328 2644 Nla - ok
09:07:41.0421 2644 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
09:07:41.0421 2644 Npfs - ok
09:07:41.0765 2644 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
09:07:41.0765 2644 Ntfs - ok
09:07:41.0796 2644 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
09:07:41.0812 2644 NtLmSsp - ok
09:07:41.0953 2644 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
09:07:42.0281 2644 NtmsSvc - ok
09:07:42.0343 2644 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
09:07:42.0359 2644 Null - ok
09:07:42.0796 2644 [ 2B298519EDBFCF451D43E0F1E8F1006D ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
09:07:43.0171 2644 nv - ok
09:07:43.0250 2644 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
09:07:43.0250 2644 NwlnkFlt - ok
09:07:43.0265 2644 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
09:07:43.0265 2644 NwlnkFwd - ok
09:07:43.0359 2644 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:07:43.0359 2644 ose - ok
09:07:43.0406 2644 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
09:07:43.0406 2644 Parport - ok
09:07:43.0437 2644 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
09:07:43.0453 2644 PartMgr - ok
09:07:43.0484 2644 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
09:07:43.0484 2644 ParVdm - ok
09:07:43.0515 2644 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
09:07:43.0531 2644 PCI - ok
09:07:43.0828 2644 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
09:07:43.0828 2644 PCI - ok
09:07:43.0843 2644 PCIDump - ok
09:07:43.0921 2644 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
09:07:44.0109 2644 PCIIde - ok
09:07:44.0140 2644 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
09:07:44.0140 2644 Pcmcia - ok
09:07:44.0156 2644 PDCOMP - ok
09:07:44.0187 2644 PDFRAME - ok
09:07:44.0203 2644 PDRELI - ok
09:07:44.0218 2644 PDRFRAME - ok
09:07:44.0234 2644 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
09:07:44.0250 2644 perc2 - ok
09:07:44.0296 2644 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
09:07:44.0296 2644 perc2hib - ok
09:07:44.0343 2644 [ 0E776ED5F7CC9F94299E70461B7B8185 ] PlugPlay C:\WINDOWS\system32\services.exe
09:07:44.0359 2644 PlugPlay - ok
09:07:44.0406 2644 [ 2D091A99624FB9E7EEF0A86D872EC0C3 ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
09:07:44.0421 2644 Pml Driver HPZ12 - ok
09:07:44.0468 2644 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
09:07:44.0468 2644 PolicyAgent - ok
09:07:44.0578 2644 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
09:07:44.0578 2644 PptpMiniport - ok
09:07:44.0593 2644 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
09:07:44.0593 2644 ProtectedStorage - ok
09:07:44.0687 2644 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
09:07:44.0687 2644 PSched - ok
09:07:44.0765 2644 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
09:07:44.0781 2644 Ptilink - ok
09:07:44.0859 2644 [ 49452BFCEC22F36A7A9B9C2181BC3042 ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
09:07:44.0859 2644 PxHelp20 - ok
09:07:44.0937 2644 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
09:07:44.0937 2644 ql1080 - ok
09:07:44.0953 2644 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
09:07:44.0953 2644 Ql10wnt - ok
09:07:45.0000 2644 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
09:07:45.0000 2644 ql12160 - ok
09:07:45.0046 2644 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
09:07:45.0046 2644 ql1240 - ok
09:07:45.0125 2644 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
09:07:45.0125 2644 ql1280 - ok
09:07:45.0218 2644 [ 0087F01D35A65B32393CC8BBA46EE4A6 ] QV2KUX C:\WINDOWS\system32\DRIVERS\qv2kux.sys
09:07:45.0218 2644 QV2KUX - ok
09:07:45.0281 2644 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
09:07:45.0281 2644 RasAcd - ok
09:07:45.0359 2644 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
09:07:45.0390 2644 RasAuto - ok
09:07:45.0484 2644 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
09:07:45.0484 2644 Rasl2tp - ok
09:07:45.0578 2644 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
09:07:45.0593 2644 RasMan - ok
09:07:45.0625 2644 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
09:07:45.0625 2644 RasPppoe - ok
09:07:45.0625 2644 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
09:07:45.0640 2644 Raspti - ok
09:07:45.0687 2644 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
09:07:45.0703 2644 Rdbss - ok
09:07:45.0703 2644 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
09:07:45.0703 2644 RDPCDD - ok
09:07:45.0796 2644 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
09:07:45.0796 2644 rdpdr - ok
09:07:45.0812 2644 [ 6728E45B66F93C08F11DE2E316FC70DD ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
09:07:45.0812 2644 RDPWD - ok
09:07:45.0859 2644 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
09:07:45.0859 2644 RDSessMgr - ok
09:07:45.0906 2644 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
09:07:45.0906 2644 redbook - ok
09:07:45.0953 2644 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
09:07:45.0968 2644 RemoteAccess - ok
09:07:46.0343 2644 [ EBCDE8B48FADC6479D96A56D0A432160 ] RoxMediaDB9 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
09:07:46.0531 2644 RoxMediaDB9 - ok
09:07:46.0562 2644 [ AB2B1DE1C8F31EFCE2384B14B3DC4260 ] RoxWatch9 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
09:07:46.0562 2644 RoxWatch9 - ok
09:07:46.0593 2644 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
09:07:46.0593 2644 RpcLocator - ok
09:07:46.0718 2644 [ 2589FE6015A316C0F5D5112B4DA7B509 ] RpcSs C:\WINDOWS\system32\rpcss.dll
09:07:46.0734 2644 RpcSs - ok
09:07:46.0812 2644 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
09:07:46.0859 2644 RSVP - ok
09:07:46.0890 2644 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
09:07:46.0906 2644 SamSs - ok
09:07:46.0937 2644 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
09:07:46.0953 2644 SCardSvr - ok
09:07:47.0031 2644 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
09:07:47.0062 2644 Schedule - ok
09:07:49.0000 2644 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
09:07:49.0000 2644 Secdrv - ok
09:07:49.0046 2644 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
09:07:49.0156 2644 seclogon - ok
09:07:49.0390 2644 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
09:07:49.0484 2644 SENS - ok
09:07:49.0578 2644 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
09:07:49.0609 2644 serenum - ok
09:07:49.0656 2644 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
09:07:49.0687 2644 Serial - ok
09:07:49.0718 2644 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
09:07:49.0750 2644 Sfloppy - ok
09:07:49.0843 2644 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
09:07:49.0875 2644 SharedAccess - ok
09:07:49.0906 2644 [ 1926899BF9FFE2602B63074971700412 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
09:07:50.0015 2644 ShellHWDetection - ok
09:07:50.0062 2644 Simbad - ok
09:07:50.0109 2644 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
09:07:50.0125 2644 sisagp - ok
09:07:50.0156 2644 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
09:07:50.0171 2644 Sparrow - ok
09:07:50.0296 2644 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
09:07:50.0343 2644 splitter - ok
09:07:50.0390 2644 [ D8E14A61ACC1D4A6CD0D38AEBAC7FA3B ] Spooler C:\WINDOWS\system32\spoolsv.exe
09:07:50.0406 2644 Spooler - ok
09:07:50.0484 2644 sprtsvc_dellsupportcenter - ok
09:07:50.0531 2644 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
09:07:50.0546 2644 sr - ok
09:07:50.0593 2644 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
09:07:50.0843 2644 srservice - ok
09:07:50.0984 2644 [ 3BB03F2BA89D2BE417206C373D2AF17C ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
09:07:51.0000 2644 Srv - ok
09:07:51.0109 2644 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
09:07:51.0187 2644 SSDPSRV - ok
09:07:51.0296 2644 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
09:07:51.0343 2644 stisvc - ok
09:07:51.0500 2644 [ 51778FD315C9882F1CBD932743E62A72 ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
09:07:51.0750 2644 stllssvr - ok
09:07:51.0859 2644 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
09:07:51.0859 2644 swenum - ok
09:07:51.0937 2644 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
09:07:51.0953 2644 swmidi - ok
09:07:51.0953 2644 SwPrv - ok
09:07:52.0000 2644 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
09:07:52.0000 2644 symc810 - ok
09:07:52.0031 2644 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
09:07:52.0031 2644 symc8xx - ok
09:07:52.0062 2644 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
09:07:52.0062 2644 sym_hi - ok
09:07:52.0093 2644 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
09:07:52.0093 2644 sym_u3 - ok
09:07:52.0187 2644 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
09:07:52.0187 2644 sysaudio - ok
09:07:52.0234 2644 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
09:07:52.0265 2644 SysmonLog - ok
09:07:52.0453 2644 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
09:07:52.0468 2644 TapiSrv - ok
09:07:52.0703 2644 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
09:07:52.0843 2644 Tcpip - ok
09:07:52.0968 2644 [ FB9F32ACC1D3AD523F7EC900B66FC1BB ] Tcpip6 C:\WINDOWS\system32\DRIVERS\tcpip6.sys
09:07:52.0968 2644 Tcpip6 - ok
09:07:53.0343 2644 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
09:07:53.0359 2644 TDPIPE - ok
09:07:53.0500 2644 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
09:07:53.0515 2644 TDTCP - ok
09:07:53.0562 2644 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
09:07:53.0562 2644 TermDD - ok
09:07:53.0734 2644 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
09:07:53.0734 2644 TermService - ok
09:07:54.0390 2644 [ 1926899BF9FFE2602B63074971700412 ] Themes C:\WINDOWS\System32\shsvcs.dll
09:07:54.0390 2644 Themes - ok
09:07:54.0625 2644 [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
09:07:54.0625 2644 TosIde - ok
09:07:54.0734 2644 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
09:07:54.0750 2644 TrkWks - ok
09:07:54.0796 2644 [ 8F861EDA21C05857EB8197300A92501C ] tunmp C:\WINDOWS\system32\DRIVERS\tunmp.sys
09:07:54.0796 2644 tunmp - ok
09:07:55.0859 2644 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
09:07:55.0859 2644 Udfs - ok
09:07:55.0875 2644 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
09:07:55.0890 2644 ultra - ok
09:07:56.0031 2644 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
09:07:56.0046 2644 Update - ok
09:07:56.0093 2644 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
09:07:56.0156 2644 upnphost - ok
09:07:56.0187 2644 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
09:07:56.0203 2644 UPS - ok
09:07:56.0250 2644 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
09:07:56.0250 2644 usbccgp - ok
09:07:56.0296 2644 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
09:07:56.0312 2644 usbehci - ok
09:07:56.0328 2644 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
09:07:56.0328 2644 usbhub - ok
09:07:56.0375 2644 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
09:07:56.0375 2644 usbprint - ok
09:07:56.0390 2644 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
09:07:56.0390 2644 usbscan - ok
09:07:56.0453 2644 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
09:07:56.0468 2644 USBSTOR - ok
09:07:56.0515 2644 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
09:07:56.0515 2644 usbuhci - ok
09:07:56.0562 2644 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
09:07:56.0609 2644 VgaSave - ok
09:07:56.0656 2644 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
09:07:56.0656 2644 viaagp - ok
09:07:56.0687 2644 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
09:07:56.0703 2644 ViaIde - ok
09:07:56.0734 2644 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
09:07:56.0828 2644 VolSnap - ok
09:07:56.0890 2644 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
09:07:56.0906 2644 VSS - ok
09:07:56.0937 2644 [ 54AF4B1D5459500EF0937F6D33B1914F ] w32time C:\WINDOWS\system32\w32time.dll
09:07:56.0953 2644 w32time - ok
09:07:57.0000 2644 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
09:07:57.0000 2644 Wanarp - ok
09:07:57.0000 2644 WDICA - ok
09:07:57.0046 2644 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
09:07:57.0046 2644 wdmaud - ok
09:07:57.0078 2644 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
09:07:57.0078 2644 WebClient - ok
09:07:57.0125 2644 [ F59ED5A43B988A18EF582BB07B2327A7 ] winachsf C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
09:07:57.0125 2644 winachsf - ok
09:07:57.0250 2644 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
09:07:57.0250 2644 winmgmt - ok
09:07:57.0312 2644 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
09:07:57.0328 2644 WmdmPmSN - ok
09:07:57.0390 2644 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
09:07:57.0406 2644 WmiApSrv - ok
09:07:57.0609 2644 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
09:07:57.0640 2644 WMPNetworkSvc - ok
09:07:57.0671 2644 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
09:07:57.0687 2644 wscsvc - ok
09:07:57.0718 2644 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
09:07:57.0718 2644 wuauserv - ok
09:07:57.0796 2644 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
09:07:57.0796 2644 WudfPf - ok
09:07:57.0828 2644 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
09:07:57.0828 2644 WudfRd - ok
09:07:57.0859 2644 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
09:07:57.0859 2644 WudfSvc - ok
09:07:57.0906 2644 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
09:07:57.0921 2644 WZCSVC - ok
09:07:57.0953 2644 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
09:07:57.0968 2644 xmlprov - ok
09:07:57.0968 2644 ================ Scan global ===============================
09:07:58.0000 2644 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
09:07:58.0046 2644 [ 1618F36D4F7F6CCCEB3EE44BA95BE85C ] C:\WINDOWS\system32\winsrv.dll
09:07:58.0062 2644 [ 1618F36D4F7F6CCCEB3EE44BA95BE85C ] C:\WINDOWS\system32\winsrv.dll
09:07:58.0093 2644 [ 0E776ED5F7CC9F94299E70461B7B8185 ] C:\WINDOWS\system32\services.exe
09:07:58.0093 2644 [Global] - ok
09:07:58.0093 2644 ================ Scan MBR ==================================
09:07:58.0125 2644 [ 5CB90281D1A59B251F6603134774EEC3 ] \Device\Harddisk0\DR0
09:07:58.0375 2644 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
09:07:58.0375 2644 \Device\Harddisk0\DR0 - detected TDSS File System (1)
09:07:58.0375 2644 ================ Scan VBR ==================================
09:07:58.0406 2644 [ D943627D89120A4C21343A99A0CD38BA ] \Device\Harddisk0\DR0\Partition1
09:07:58.0406 2644 \Device\Harddisk0\DR0\Partition1 - ok
09:07:58.0421 2644 ============================================================
09:07:58.0421 2644 Scan finished
09:07:58.0421 2644 ============================================================
09:07:58.0468 1400 Detected object count: 1
09:07:58.0468 1400 Actual detected object count: 1
09:09:11.0000 1400 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
09:09:11.0000 1400 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
09:09:17.0984 2664 ============================================================
09:09:17.0984 2664 Scan started
09:09:17.0984 2664 Mode: Manual; TDLFS;
09:09:17.0984 2664 ============================================================
09:09:18.0843 2664 ================ Scan system memory ========================
09:09:18.0843 2664 System memory - ok
09:09:18.0843 2664 ================ Scan services =============================
09:09:19.0015 2664 [ 3FEFA63FDACBAB9C020CE2273AC45C47 ] 6to4 C:\WINDOWS\System32\6to4svc.dll
09:09:19.0031 2664 6to4 - ok
09:09:19.0093 2664 [ 0352A73CD6B1782EA3ED7A03A8268F55 ] Aavmker4 C:\WINDOWS\system32\drivers\Aavmker4.sys
09:09:19.0093 2664 Aavmker4 - ok
09:09:19.0093 2664 Abiosdsk - ok
09:09:19.0156 2664 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
09:09:19.0156 2664 abp480n5 - ok
09:09:19.0203 2664 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
09:09:19.0203 2664 ACPI - ok
09:09:19.0234 2664 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
09:09:19.0234 2664 ACPIEC - ok
09:09:19.0265 2664 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
09:09:19.0265 2664 adpu160m - ok
09:09:19.0296 2664 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
09:09:19.0296 2664 aec - ok
09:09:19.0343 2664 [ 7E775010EF291DA96AD17CA4B17137D7 ] AFD C:\WINDOWS\System32\drivers\afd.sys
09:09:19.0343 2664 AFD - ok
09:09:19.0375 2664 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
09:09:19.0375 2664 agp440 - ok
09:09:19.0375 2664 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
09:09:19.0390 2664 agpCPQ - ok
09:09:19.0406 2664 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
09:09:19.0406 2664 Aha154x - ok
09:09:19.0421 2664 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
09:09:19.0421 2664 aic78u2 - ok
09:09:19.0421 2664 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
09:09:19.0421 2664 aic78xx - ok
09:09:19.0468 2664 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
09:09:19.0468 2664 Alerter - ok
09:09:19.0484 2664 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
09:09:19.0484 2664 ALG - ok
09:09:19.0515 2664 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
09:09:19.0515 2664 AliIde - ok
09:09:19.0546 2664 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
09:09:19.0546 2664 alim1541 - ok
09:09:19.0546 2664 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
09:09:19.0562 2664 amdagp - ok
09:09:19.0578 2664 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
09:09:19.0578 2664 amsint - ok
09:09:19.0578 2664 AppMgmt - ok
09:09:19.0593 2664 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
09:09:19.0593 2664 asc - ok
09:09:19.0609 2664 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
09:09:19.0609 2664 asc3350p - ok
09:09:19.0656 2664 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
09:09:19.0656 2664 asc3550 - ok
09:09:19.0765 2664 [ 4EABF511B1AF176A971C3271E48FA3A8 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
09:09:19.0765 2664 aspnet_state - ok
09:09:19.0812 2664 [ F5DC168BF77572D51BE28BA261B30CB4 ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
09:09:19.0812 2664 aswFsBlk - ok
09:09:19.0828 2664 [ 2B9B1DF809E965EF63402CBBA6DB50AE ] aswMon2 C:\WINDOWS\system32\drivers\aswMon2.sys
09:09:19.0828 2664 aswMon2 - ok
09:09:19.0875 2664 [ B7D5E4486BA658ED08624D8084ABB830 ] aswRdr C:\WINDOWS\system32\drivers\aswRdr.sys
09:09:19.0875 2664 aswRdr - ok
09:09:19.0906 2664 [ 30E45AF8B4D83176CA850FC9699E860B ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
09:09:19.0906 2664 aswSnx - ok
09:09:19.0921 2664 [ F04BDBCB965C05C51F4A7DE7B62063D6 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
09:09:19.0937 2664 aswSP - ok
09:09:20.0000 2664 [ DFE9152ABFA89BB8CFDC057409B2D4DA ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
09:09:20.0000 2664 aswTdi - ok
09:09:20.0031 2664 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
09:09:20.0031 2664 AsyncMac - ok
09:09:20.0046 2664 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
09:09:20.0046 2664 atapi - ok
09:09:20.0062 2664 Atdisk - ok
09:09:20.0109 2664 [ 3E47191DDAFFCDD9B28CBC50FB6499B5 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
09:09:20.0109 2664 Ati HotKey Poller - ok
09:09:20.0171 2664 [ 096C9955485F2B3F910F4C503C318D74 ] ATI Smart C:\WINDOWS\system32\ati2sgag.exe
09:09:20.0171 2664 ATI Smart - ok
09:09:20.0250 2664 [ E51AA5ADF535C847072C0AED3E642912 ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
09:09:20.0265 2664 ati2mtag - ok
09:09:20.0296 2664 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
09:09:20.0296 2664 Atmarpc - ok
09:09:20.0343 2664 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
09:09:20.0343 2664 AudioSrv - ok
09:09:20.0375 2664 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
09:09:20.0375 2664 audstub - ok
09:09:20.0500 2664 [ 04AC21E821F259845BD7367CEE057290 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
09:09:20.0500 2664 avast! Antivirus - ok
09:09:20.0546 2664 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
09:09:20.0546 2664 Beep - ok
09:09:20.0593 2664 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
09:09:20.0609 2664 BITS - ok
09:09:20.0656 2664 [ CFD4C3352E29A8B729536648466E8DF5 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
09:09:20.0656 2664 Bonjour Service - ok
09:09:20.0703 2664 [ A06CE3399D16DB864F55FAEB1F1927A9 ] Browser C:\WINDOWS\System32\browser.dll
09:09:20.0718 2664 Browser - ok
09:09:20.0750 2664 [ 248DFA5762DDE38DFDDBBD44149E9D7A ] BVRPMPR5 C:\WINDOWS\system32\drivers\BVRPMPR5.SYS
09:09:20.0750 2664 BVRPMPR5 - ok
09:09:20.0812 2664 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
09:09:20.0812 2664 cbidf - ok
09:09:20.0828 2664 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
09:09:20.0843 2664 cbidf2k - ok
09:09:20.0890 2664 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
09:09:20.0890 2664 cd20xrnt - ok
09:09:20.0921 2664 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
09:09:20.0921 2664 Cdaudio - ok
09:09:20.0937 2664 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
09:09:20.0937 2664 Cdfs - ok
09:09:20.0953 2664 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
09:09:20.0968 2664 Cdrom - ok
09:09:20.0968 2664 Changer - ok
09:09:21.0046 2664 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
09:09:21.0046 2664 CiSvc - ok
09:09:21.0046 2664 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
09:09:21.0046 2664 ClipSrv - ok
09:09:21.0078 2664 [ 234B1BC2796483E1F5C3F26649FB3388 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:09:21.0078 2664 clr_optimization_v2.0.50727_32 - ok
09:09:21.0125 2664 [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
09:09:21.0140 2664 CmdIde - ok
09:09:21.0140 2664 COMSysApp - ok
09:09:21.0171 2664 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
09:09:21.0171 2664 Cpqarray - ok
09:09:21.0203 2664 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
09:09:21.0203 2664 CryptSvc - ok
09:09:21.0234 2664 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
09:09:21.0234 2664 dac2w2k - ok
09:09:21.0250 2664 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
09:09:21.0250 2664 dac960nt - ok
09:09:21.0296 2664 [ 2589FE6015A316C0F5D5112B4DA7B509 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
09:09:21.0312 2664 DcomLaunch - ok
09:09:21.0343 2664 [ D8CD6A2A94F545858EEC6117F0D5DFF4 ] dfmirage C:\WINDOWS\system32\DRIVERS\dfmirage.sys
09:09:21.0343 2664 dfmirage - ok
09:09:21.0390 2664 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
09:09:21.0390 2664 Dhcp - ok
09:09:21.0406 2664 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
09:09:21.0406 2664 Disk - ok
09:09:21.0484 2664 [ 0659E6E0A95564F958D9DF7313F7701E ] DLABMFSM C:\WINDOWS\system32\DLA\DLABMFSM.SYS
09:09:21.0484 2664 DLABMFSM - ok
09:09:21.0484 2664 [ 8691C78908F0BD66170669DB268369F2 ] DLABOIOM C:\WINDOWS\system32\DLA\DLABOIOM.SYS
09:09:21.0484 2664 DLABOIOM - ok
09:09:21.0484 2664 [ 76167B5EB2DFFC729EDC36386876B40B ] DLACDBHM C:\WINDOWS\system32\Drivers\DLACDBHM.SYS
09:09:21.0484 2664 DLACDBHM - ok
09:09:21.0500 2664 [ 5615744A1056933B90E6AC54FEB86F35 ] DLADResM C:\WINDOWS\system32\DLA\DLADResM.SYS
09:09:21.0500 2664 DLADResM - ok
09:09:21.0500 2664 [ 1AECA2AFA5005CE4A550CF8EB55A8C88 ] DLAIFS_M C:\WINDOWS\system32\DLA\DLAIFS_M.SYS
09:09:21.0500 2664 DLAIFS_M - ok
09:09:21.0515 2664 [ 840E7F6ABB885C72B9FFDDB022EF5B6D ] DLAOPIOM C:\WINDOWS\system32\DLA\DLAOPIOM.SYS
09:09:21.0515 2664 DLAOPIOM - ok
09:09:21.0515 2664 [ 0294D18731AC05DA80132CE88F8A876B ] DLAPoolM C:\WINDOWS\system32\DLA\DLAPoolM.SYS
09:09:21.0515 2664 DLAPoolM - ok
09:09:21.0531 2664 [ 91886FED52A3F9966207BCE46CFD794F ] DLARTL_M C:\WINDOWS\system32\Drivers\DLARTL_M.SYS
09:09:21.0531 2664 DLARTL_M - ok
09:09:21.0531 2664 [ CCA4E121D599D7D1706A30F603731E59 ] DLAUDFAM C:\WINDOWS\system32\DLA\DLAUDFAM.SYS
09:09:21.0531 2664 DLAUDFAM - ok
09:09:21.0546 2664 [ 7DAB85C33135DF24419951DA4E7D38E5 ] DLAUDF_M C:\WINDOWS\system32\DLA\DLAUDF_M.SYS
09:09:21.0546 2664 DLAUDF_M - ok
09:09:21.0546 2664 dmadmin - ok
09:09:21.0593 2664 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
09:09:21.0609 2664 dmboot - ok
09:09:21.0640 2664 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
09:09:21.0640 2664 dmio - ok
09:09:21.0671 2664 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
09:09:21.0671 2664 dmload - ok
09:09:21.0718 2664 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
09:09:21.0718 2664 dmserver - ok
09:09:21.0734 2664 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
09:09:21.0734 2664 DMusic - ok
09:09:21.0750 2664 [ 474B4DC3983173E4B4C9740B0DAC98A6 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
09:09:21.0750 2664 Dnscache - ok
09:09:21.0781 2664 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
09:09:21.0796 2664 Dot3svc - ok
09:09:21.0812 2664 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
09:09:21.0812 2664 dpti2o - ok
09:09:21.0828 2664 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
09:09:21.0828 2664 drmkaud - ok
09:09:21.0875 2664 [ C00440385CF9F3D142917C63F989E244 ] DRVMCDB C:\WINDOWS\system32\Drivers\DRVMCDB.SYS
09:09:21.0875 2664 DRVMCDB - ok
09:09:21.0906 2664 [ 6E6AB29D3C06E64CE81FEACDA85394B5 ] DRVNDDM C:\WINDOWS\system32\Drivers\DRVNDDM.SYS
09:09:21.0906 2664 DRVNDDM - ok
09:09:21.0921 2664 [ 3FCA03CBCA11269F973B70FA483C88EF ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
09:09:21.0921 2664 E100B - ok
09:09:21.0953 2664 [ 34AAA3B298A852B3663E6E0D94D12945 ] e1express C:\WINDOWS\system32\DRIVERS\e1e5132.sys
09:09:21.0953 2664 e1express - ok
09:09:21.0984 2664 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
09:09:21.0984 2664 EapHost - ok
09:09:22.0046 2664 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
09:09:22.0046 2664 ERSvc - ok
09:09:22.0078 2664 [ 0E776ED5F7CC9F94299E70461B7B8185 ] Eventlog C:\WINDOWS\system32\services.exe
09:09:22.0093 2664 Eventlog - ok
09:09:22.0125 2664 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
09:09:22.0125 2664 EventSystem - ok
09:09:22.0171 2664 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
09:09:22.0171 2664 Fastfat - ok
09:09:22.0218 2664 [ 1926899BF9FFE2602B63074971700412 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
09:09:22.0234 2664 FastUserSwitchingCompatibility - ok
09:09:22.0234 2664 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
09:09:22.0234 2664 Fdc - ok
09:09:22.0281 2664 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
09:09:22.0281 2664 Fips - ok
09:09:22.0406 2664 [ 227846995AFEEFA70D328BF5334A86A5 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
09:09:22.0406 2664 FLEXnet Licensing Service - ok
09:09:22.0421 2664 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
09:09:22.0421 2664 Flpydisk - ok
09:09:22.0484 2664 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
09:09:22.0484 2664 FltMgr - ok
09:09:22.0500 2664 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
09:09:22.0500 2664 Fs_Rec - ok
09:09:22.0562 2664 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
09:09:22.0562 2664 Ftdisk - ok
09:09:22.0578 2664 [ 5DC17164F66380CBFEFD895C18467773 ] GEARAspiWDM C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
09:09:22.0578 2664 GEARAspiWDM - ok
09:09:22.0640 2664 [ 0879DC7444A201DF84E69C5DD5083D61 ] getPlusHelper C:\Program Files\NOS\bin\getPlus_Helper.dll
09:09:22.0640 2664 getPlusHelper - ok
09:09:22.0703 2664 [ B39662E4C237AA25A2CD2379FF508099 ] GoogleDesktopManager-022208-143751 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
09:09:22.0703 2664 GoogleDesktopManager-022208-143751 - ok
09:09:22.0750 2664 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
09:09:22.0750 2664 Gpc - ok
09:09:22.0796 2664 [ 626A24ED1228580B9518C01930936DF9 ] gupdate1c9d0cdd7f3c01e C:\Program Files\Google\Update\GoogleUpdate.exe
09:09:22.0796 2664 gupdate1c9d0cdd7f3c01e - ok
09:09:22.0812 2664 [ 626A24ED1228580B9518C01930936DF9 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
09:09:22.0812 2664 gupdatem - ok
09:09:22.0859 2664 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
09:09:22.0859 2664 gusvc - ok
09:09:22.0937 2664 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
09:09:22.0937 2664 HDAudBus - ok
09:09:23.0015 2664 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
09:09:23.0015 2664 helpsvc - ok
09:09:23.0015 2664 HidServ - ok
09:09:23.0046 2664 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
09:09:23.0046 2664 HidUsb - ok
09:09:23.0093 2664 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
09:09:23.0093 2664 hkmsvc - ok
09:09:23.0109 2664 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
09:09:23.0109 2664 hpn - ok
09:09:23.0156 2664 [ 30CA91E657CEDE2F95359D6EF186F650 ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
09:09:23.0156 2664 HPZid412 - ok
09:09:23.0203 2664 [ EFD31AFA752AA7C7BBB57BCBE2B01C78 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
09:09:23.0203 2664 HPZipr12 - ok
09:09:23.0218 2664 [ 7AC43C38CA8FD7ED0B0A4466F753E06E ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
09:09:23.0218 2664 HPZius12 - ok
09:09:23.0296 2664 [ 77E4FF0B73BC0AEAAF39BF0C8104231F ] HSFHWBS2 C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
09:09:23.0296 2664 HSFHWBS2 - ok
09:09:23.0312 2664 [ 60E1604729A15EF4A3B05F298427B3B1 ] HSF_DP C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
09:09:23.0328 2664 HSF_DP - ok
09:09:23.0375 2664 [ F6AACF5BCE2893E0C1754AFEB672E5C9 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
09:09:23.0375 2664 HTTP - ok
09:09:23.0421 2664 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
09:09:23.0421 2664 HTTPFilter - ok
09:09:23.0437 2664 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
09:09:23.0437 2664 i2omgmt - ok
09:09:23.0453 2664 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
09:09:23.0453 2664 i2omp - ok
09:09:23.0468 2664 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
09:09:23.0468 2664 i8042prt - ok
09:09:23.0500 2664 [ 997E8F5939F2D12CD9F2E6B395724C16 ] iaStor C:\WINDOWS\system32\drivers\iaStor.sys
09:09:23.0500 2664 iaStor - ok
09:09:23.0500 2664 icsak - ok
09:09:23.0609 2664 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
09:09:23.0609 2664 IDriverT - ok
09:09:23.0640 2664 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
09:09:23.0640 2664 Imapi - ok
09:09:23.0703 2664 [ 1ACAD13923E467E473C3EC503223F983 ] Imapi Helper C:\Program Files\ISO Recorder\ImapiHelper.exe
09:09:23.0703 2664 Imapi Helper - ok
09:09:23.0781 2664 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
09:09:23.0781 2664 ImapiService - ok
09:09:23.0812 2664 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
09:09:23.0812 2664 ini910u - ok
09:09:23.0953 2664 [ 17BBBABB21F86B650B2626045A9D016C ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
09:09:23.0984 2664 IntcAzAudAddService - ok
09:09:24.0015 2664 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
09:09:24.0015 2664 IntelIde - ok
09:09:24.0046 2664 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
09:09:24.0046 2664 intelppm - ok
09:09:24.0093 2664 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
09:09:24.0093 2664 Ip6Fw - ok
09:09:24.0125 2664 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
09:09:24.0140 2664 IpFilterDriver - ok
09:09:24.0140 2664 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
09:09:24.0140 2664 IpInIp - ok
09:09:24.0171 2664 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
09:09:24.0171 2664 IpNat - ok
09:09:24.0218 2664 [ 1CB96E83FD76EB5580451CEF29E24303 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
09:09:24.0218 2664 iPod Service - ok
09:09:24.0234 2664 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
09:09:24.0234 2664 IPSec - ok
09:09:24.0265 2664 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
09:09:24.0265 2664 IRENUM - ok
09:09:24.0296 2664 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
09:09:24.0296 2664 isapnp - ok
09:09:24.0421 2664 [ 5E06A9D23727DAF96FAA796F1135FDCD ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
09:09:24.0421 2664 JavaQuickStarterService - ok
09:09:24.0468 2664 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
09:09:24.0468 2664 Kbdclass - ok
09:09:24.0484 2664 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
09:09:24.0484 2664 kbdhid - ok
09:09:24.0531 2664 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
09:09:24.0531 2664 kmixer - ok
09:09:24.0562 2664 [ 1705745D900DABF2D89F90EBADDC7517 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
09:09:24.0562 2664 KSecDD - ok
09:09:24.0625 2664 [ F385F4B02C535BFFE1D70CAB80838123 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
09:09:24.0625 2664 lanmanserver - ok
09:09:24.0921 2664 [ 1B67B632786FEF1C1BBAEF46C2F3F2E6 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
09:09:24.0937 2664 lanmanworkstation - ok
09:09:24.0984 2664 lbrtfdc - ok
09:09:25.0031 2664 [ 29FAB5363138F6E322F4CD780ED9D337 ] LicCtrlService C:\WINDOWS\runservice.exe
09:09:25.0031 2664 LicCtrlService - ok
09:09:25.0078 2664 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
09:09:25.0078 2664 LmHosts - ok
09:09:25.0093 2664 [ EEAEA6514BA7C9D273B5E87C4E1AAB30 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
09:09:25.0093 2664 mdmxsdk - ok
09:09:25.0109 2664 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
09:09:25.0109 2664 Messenger - ok
09:09:25.0156 2664 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
09:09:25.0156 2664 mnmdd - ok
09:09:25.0187 2664 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
09:09:25.0187 2664 mnmsrvc - ok
09:09:25.0203 2664 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
09:09:25.0203 2664 Modem - ok
09:09:25.0203 2664 [ 1992E0D143B09653AB0F9C5E04B0FD65 ] MODEMCSA C:\WINDOWS\system32\drivers\MODEMCSA.sys
09:09:25.0203 2664 MODEMCSA - ok
09:09:25.0218 2664 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
09:09:25.0218 2664 Mouclass - ok
09:09:25.0265 2664 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
09:09:25.0265 2664 mouhid - ok
09:09:25.0296 2664 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
09:09:25.0312 2664 MountMgr - ok
09:09:25.0343 2664 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
09:09:25.0343 2664 mraid35x - ok
09:09:25.0343 2664 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
09:09:25.0359 2664 MRxDAV - ok
09:09:25.0406 2664 [ 60AE98742484E7AB80C3C1450E708148 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
09:09:25.0406 2664 MRxSmb - ok
09:09:25.0437 2664 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
09:09:25.0437 2664 MSDTC - ok
09:09:25.0453 2664 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
09:09:25.0453 2664 Msfs - ok
09:09:25.0453 2664 MSIServer - ok
09:09:25.0484 2664 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
09:09:25.0484 2664 MSKSSRV - ok
09:09:25.0500 2664 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
09:09:25.0500 2664 MSPCLOCK - ok
09:09:25.0500 2664 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
09:09:25.0500 2664 MSPQM - ok
09:09:25.0515 2664 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
09:09:25.0515 2664 mssmbios - ok
09:09:25.0546 2664 [ 2F625D11385B1A94360BFC70AAEFDEE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
09:09:25.0546 2664 Mup - ok
09:09:25.0609 2664 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
09:09:25.0609 2664 napagent - ok
09:09:25.0656 2664 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
09:09:25.0656 2664 NDIS - ok
09:09:25.0671 2664 [ 1AB3D00C991AB086E69DB84B6C0ED78F ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
09:09:25.0671 2664 NdisTapi - ok
09:09:25.0687 2664 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
09:09:25.0687 2664 Ndisuio - ok
09:09:25.0734 2664 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
09:09:25.0734 2664 NdisWan - ok
09:09:25.0750 2664 [ 6215023940CFD3702B46ABC304E1D45A ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
09:09:25.0750 2664 NDProxy - ok
09:09:25.0765 2664 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
09:09:25.0765 2664 NetBIOS - ok
09:09:25.0781 2664 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
09:09:25.0796 2664 NetBT - ok
09:09:25.0828 2664 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
09:09:25.0828 2664 NetDDE - ok
09:09:25.0828 2664 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
09:09:25.0843 2664 NetDDEdsdm - ok
09:09:25.0875 2664 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
09:09:25.0890 2664 Netlogon - ok
09:09:25.0890 2664 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
09:09:25.0890 2664 Netman - ok
09:09:25.0937 2664 [ 832E4DD8964AB7ACC880B2837CB1ED20 ] Nla C:\WINDOWS\System32\mswsock.dll
09:09:25.0937 2664 Nla - ok
09:09:25.0984 2664 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
09:09:25.0984 2664 Npfs - ok
09:09:26.0000 2664 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
09:09:26.0000 2664 Ntfs - ok
09:09:26.0015 2664 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
09:09:26.0015 2664 NtLmSsp - ok
09:09:26.0062 2664 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
09:09:26.0062 2664 NtmsSvc - ok
09:09:26.0093 2664 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
09:09:26.0093 2664 Null - ok
09:09:26.0156 2664 [ 2B298519EDBFCF451D43E0F1E8F1006D ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
09:09:26.0156 2664 nv - ok
09:09:26.0187 2664 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
09:09:26.0187 2664 NwlnkFlt - ok
09:09:26.0203 2664 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
09:09:26.0218 2664 NwlnkFwd - ok
09:09:26.0296 2664 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:09:26.0296 2664 ose - ok
09:09:26.0328 2664 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
09:09:26.0328 2664 Parport - ok
09:09:26.0359 2664 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
09:09:26.0359 2664 PartMgr - ok
09:09:26.0390 2664 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
09:09:26.0390 2664 ParVdm - ok
09:09:26.0406 2664 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
09:09:26.0406 2664 PCI - ok
09:09:26.0406 2664 PCIDump - ok
09:09:26.0453 2664 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
09:09:26.0453 2664 PCIIde - ok
09:09:26.0468 2664 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
09:09:26.0468 2664 Pcmcia - ok
09:09:26.0468 2664 PDCOMP - ok
09:09:26.0484 2664 PDFRAME - ok
09:09:26.0484 2664 PDRELI - ok
09:09:26.0484 2664 PDRFRAME - ok
09:09:26.0500 2664 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
09:09:26.0500 2664 perc2 - ok
09:09:26.0500 2664 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
09:09:26.0515 2664 perc2hib - ok
09:09:26.0546 2664 [ 0E776ED5F7CC9F94299E70461B7B8185 ] PlugPlay C:\WINDOWS\system32\services.exe
09:09:26.0546 2664 PlugPlay - ok
09:09:26.0593 2664 [ 2D091A99624FB9E7EEF0A86D872EC0C3 ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
09:09:26.0593 2664 Pml Driver HPZ12 - ok
09:09:26.0609 2664 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
09:09:26.0609 2664 PolicyAgent - ok
09:09:26.0640 2664 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
09:09:26.0640 2664 PptpMiniport - ok
09:09:26.0640 2664 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
09:09:26.0656 2664 ProtectedStorage - ok
09:09:26.0687 2664 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
09:09:26.0687 2664 PSched - ok
09:09:26.0734 2664 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
09:09:26.0734 2664 Ptilink - ok
09:09:26.0796 2664 [ 49452BFCEC22F36A7A9B9C2181BC3042 ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
09:09:26.0796 2664 PxHelp20 - ok
09:09:26.0828 2664 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
09:09:26.0828 2664 ql1080 - ok
09:09:26.0828 2664 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
09:09:26.0828 2664 Ql10wnt - ok
09:09:26.0859 2664 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
09:09:26.0859 2664 ql12160 - ok
09:09:26.0859 2664 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
09:09:26.0859 2664 ql1240 - ok
09:09:26.0875 2664 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
09:09:26.0875 2664 ql1280 - ok
09:09:26.0906 2664 [ 0087F01D35A65B32393CC8BBA46EE4A6 ] QV2KUX C:\WINDOWS\system32\DRIVERS\qv2kux.sys
09:09:26.0906 2664 QV2KUX - ok
09:09:26.0953 2664 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
09:09:26.0953 2664 RasAcd - ok
09:09:27.0015 2664 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
09:09:27.0015 2664 RasAuto - ok
09:09:27.0078 2664 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
09:09:27.0078 2664 Rasl2tp - ok
09:09:27.0125 2664 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
09:09:27.0125 2664 RasMan - ok
09:09:27.0125 2664 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
09:09:27.0125 2664 RasPppoe - ok
09:09:27.0156 2664 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
09:09:27.0156 2664 Raspti - ok
09:09:27.0218 2664 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
09:09:27.0218 2664 Rdbss - ok
09:09:27.0218 2664 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
09:09:27.0218 2664 RDPCDD - ok
09:09:27.0250 2664 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
09:09:27.0250 2664 rdpdr - ok
09:09:27.0281 2664 [ 6728E45B66F93C08F11DE2E316FC70DD ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
09:09:27.0281 2664 RDPWD - ok
09:09:27.0312 2664 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
09:09:27.0328 2664 RDSessMgr - ok
09:09:27.0343 2664 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
09:09:27.0359 2664 redbook - ok
09:09:27.0515 2664 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
09:09:27.0531 2664 RemoteAccess - ok
09:09:27.0984 2664 [ EBCDE8B48FADC6479D96A56D0A432160 ] RoxMediaDB9 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
09:09:27.0984 2664 RoxMediaDB9 - ok
09:09:28.0015 2664 [ AB2B1DE1C8F31EFCE2384B14B3DC4260 ] RoxWatch9 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
09:09:28.0031 2664 RoxWatch9 - ok
09:09:28.0031 2664 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
09:09:28.0046 2664 RpcLocator - ok
09:09:28.0093 2664 [ 2589FE6015A316C0F5D5112B4DA7B509 ] RpcSs C:\WINDOWS\system32\rpcss.dll
09:09:28.0093 2664 RpcSs - ok
09:09:28.0125 2664 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
09:09:28.0140 2664 RSVP - ok
09:09:28.0156 2664 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
09:09:28.0171 2664 SamSs - ok
09:09:28.0171 2664 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
09:09:28.0171 2664 SCardSvr - ok
09:09:28.0187 2664 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
09:09:28.0203 2664 Schedule - ok
09:09:28.0234 2664 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
09:09:28.0234 2664 Secdrv - ok
09:09:28.0265 2664 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
09:09:28.0265 2664 seclogon - ok
09:09:28.0281 2664 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
09:09:28.0281 2664 SENS - ok
09:09:28.0312 2664 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
09:09:28.0312 2664 serenum - ok
09:09:28.0343 2664 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
09:09:28.0343 2664 Serial - ok
09:09:28.0359 2664 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
09:09:28.0359 2664 Sfloppy - ok
09:09:28.0406 2664 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
09:09:28.0406 2664 SharedAccess - ok
09:09:28.0421 2664 [ 1926899BF9FFE2602B63074971700412 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
09:09:28.0437 2664 ShellHWDetection - ok
09:09:28.0437 2664 Simbad - ok
09:09:28.0468 2664 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
09:09:28.0468 2664 sisagp - ok
09:09:28.0500 2664 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
09:09:28.0500 2664 Sparrow - ok
09:09:28.0531 2664 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
09:09:28.0531 2664 splitter - ok
09:09:28.0562 2664 [ D8E14A61ACC1D4A6CD0D38AEBAC7FA3B ] Spooler C:\WINDOWS\system32\spoolsv.exe
09:09:28.0578 2664 Spooler - ok
09:09:28.0609 2664 sprtsvc_dellsupportcenter - ok
09:09:28.0625 2664 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
09:09:28.0625 2664 sr - ok
09:09:28.0656 2664 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
09:09:28.0671 2664 srservice - ok
09:09:28.0703 2664 [ 3BB03F2BA89D2BE417206C373D2AF17C ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
09:09:28.0703 2664 Srv - ok
09:09:28.0750 2664 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
09:09:28.0750 2664 SSDPSRV - ok
09:09:28.0781 2664 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
09:09:28.0796 2664 stisvc - ok
09:09:28.0843 2664 [ 51778FD315C9882F1CBD932743E62A72 ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
09:09:28.0843 2664 stllssvr - ok
09:09:28.0875 2664 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
09:09:28.0890 2664 swenum - ok
09:09:28.0890 2664 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
09:09:28.0906 2664 swmidi - ok
09:09:28.0906 2664 SwPrv - ok
09:09:28.0921 2664 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
09:09:28.0921 2664 symc810 - ok
09:09:28.0937 2664 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
09:09:28.0937 2664 symc8xx - ok
09:09:28.0968 2664 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
09:09:28.0984 2664 sym_hi - ok
09:09:29.0062 2664 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
09:09:29.0078 2664 sym_u3 - ok
09:09:29.0140 2664 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
09:09:29.0140 2664 sysaudio - ok
09:09:29.0171 2664 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
09:09:29.0187 2664 SysmonLog - ok
09:09:29.0234 2664 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
09:09:29.0234 2664 TapiSrv - ok
09:09:29.0328 2664 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
09:09:29.0343 2664 Tcpip - ok
09:09:29.0406 2664 [ FB9F32ACC1D3AD523F7EC900B66FC1BB ] Tcpip6 C:\WINDOWS\system32\DRIVERS\tcpip6.sys
09:09:29.0406 2664 Tcpip6 - ok
09:09:29.0437 2664 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
09:09:29.0437 2664 TDPIPE - ok
09:09:29.0453 2664 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
09:09:29.0468 2664 TDTCP - ok
09:09:29.0500 2664 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
09:09:29.0500 2664 TermDD - ok
09:09:29.0531 2664 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
09:09:29.0531 2664 TermService - ok
09:09:29.0562 2664 [ 1926899BF9FFE2602B63074971700412 ] Themes C:\WINDOWS\System32\shsvcs.dll
09:09:29.0578 2664 Themes - ok
09:09:29.0609 2664 [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
09:09:29.0609 2664 TosIde - ok
09:09:29.0640 2664 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
09:09:29.0640 2664 TrkWks - ok
09:09:29.0671 2664 [ 8F861EDA21C05857EB8197300A92501C ] tunmp C:\WINDOWS\system32\DRIVERS\tunmp.sys
09:09:29.0671 2664 tunmp - ok
09:09:29.0718 2664 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
09:09:29.0718 2664 Udfs - ok
09:09:29.0750 2664 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
09:09:29.0750 2664 ultra - ok
09:09:29.0781 2664 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
09:09:29.0796 2664 Update - ok
09:09:29.0843 2664 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
09:09:29.0859 2664 upnphost - ok
09:09:29.0875 2664 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
09:09:29.0875 2664 UPS - ok
09:09:29.0921 2664 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
09:09:29.0921 2664 usbccgp - ok
09:09:29.0953 2664 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
09:09:29.0953 2664 usbehci - ok
09:09:29.0953 2664 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
09:09:29.0953 2664 usbhub - ok
09:09:30.0046 2664 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
09:09:30.0046 2664 usbprint - ok
09:09:30.0046 2664 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
09:09:30.0062 2664 usbscan - ok
09:09:30.0078 2664 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
09:09:30.0078 2664 USBSTOR - ok
09:09:30.0093 2664 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
09:09:30.0093 2664 usbuhci - ok
09:09:30.0125 2664 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
09:09:30.0125 2664 VgaSave - ok
09:09:30.0156 2664 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
09:09:30.0156 2664 viaagp - ok
09:09:30.0203 2664 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
09:09:30.0203 2664 ViaIde - ok
09:09:30.0250 2664 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
09:09:30.0250 2664 VolSnap - ok
09:09:30.0312 2664 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
09:09:30.0312 2664 VSS - ok
09:09:30.0359 2664 [ 54AF4B1D5459500EF0937F6D33B1914F ] w32time C:\WINDOWS\system32\w32time.dll
09:09:30.0375 2664 w32time - ok
09:09:30.0390 2664 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
09:09:30.0390 2664 Wanarp - ok
09:09:30.0390 2664 WDICA - ok
09:09:30.0468 2664 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
09:09:30.0468 2664 wdmaud - ok
09:09:30.0484 2664 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
09:09:30.0484 2664 WebClient - ok
09:09:30.0656 2664 [ F59ED5A43B988A18EF582BB07B2327A7 ] winachsf C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
09:09:30.0656 2664 winachsf - ok
09:09:30.0796 2664 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
09:09:30.0796 2664 winmgmt - ok
09:09:30.0875 2664 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
09:09:30.0875 2664 WmdmPmSN - ok
09:09:30.0890 2664 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
09:09:30.0890 2664 WmiApSrv - ok
09:09:31.0031 2664 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
09:09:31.0031 2664 WMPNetworkSvc - ok
09:09:31.0078 2664 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
09:09:31.0093 2664 wscsvc - ok
09:09:31.0125 2664 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
09:09:31.0140 2664 wuauserv - ok
09:09:31.0171 2664 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
09:09:31.0171 2664 WudfPf - ok
09:09:31.0187 2664 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
09:09:31.0187 2664 WudfRd - ok
09:09:31.0234 2664 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
09:09:31.0250 2664 WudfSvc - ok
09:09:31.0265 2664 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
09:09:31.0296 2664 WZCSVC - ok
09:09:31.0359 2664 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
09:09:31.0359 2664 xmlprov - ok
09:09:31.0359 2664 ================ Scan global ===============================
09:09:31.0390 2664 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
09:09:31.0468 2664 [ 1618F36D4F7F6CCCEB3EE44BA95BE85C ] C:\WINDOWS\system32\winsrv.dll
09:09:31.0484 2664 [ 1618F36D4F7F6CCCEB3EE44BA95BE85C ] C:\WINDOWS\system32\winsrv.dll
09:09:31.0531 2664 [ 0E776ED5F7CC9F94299E70461B7B8185 ] C:\WINDOWS\system32\services.exe
09:09:31.0546 2664 [Global] - ok
09:09:31.0546 2664 ================ Scan MBR ==================================
09:09:31.0562 2664 [ 5CB90281D1A59B251F6603134774EEC3 ] \Device\Harddisk0\DR0
09:09:32.0281 2664 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
09:09:32.0281 2664 \Device\Harddisk0\DR0 - detected TDSS File System (1)
09:09:32.0281 2664 ================ Scan VBR ==================================
09:09:32.0281 2664 [ D943627D89120A4C21343A99A0CD38BA ] \Device\Harddisk0\DR0\Partition1
09:09:32.0281 2664 \Device\Harddisk0\DR0\Partition1 - ok
09:09:32.0281 2664 ============================================================
09:09:32.0281 2664 Scan finished
09:09:32.0281 2664 ============================================================
09:09:32.0296 2084 Detected object count: 1
09:09:32.0296 2084 Actual detected object count: 1
09:12:10.0656 2084 \Device\Harddisk0\DR0\TDLFS - deleted
09:12:10.0656 2084 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete

Off to work for a few hours. Thanks so much for your help so far.

Mike

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:37 PM

Posted 25 October 2012 - 02:18 PM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#10 junebug41

junebug41
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:04:37 PM

Posted 25 October 2012 - 08:26 PM

MalwareBytes Log:

Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org

Database version: v2012.10.25.07

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
MW :: MIKE [administrator]

10/25/2012 4:42:57 PM
mbam-log-2012-10-25 (16-42-57).txt

Scan type: Full scan (A:\|C:\|D:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 377495
Time elapsed: 1 hour(s), 32 minute(s), 14 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 1
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings|ProxyServer (PUM.Bad.Proxy) -> Data: http=127.0.0.1:5555 -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 3
c:\system volume information\_restore{202550a8-7a33-4bca-9586-051d24ddbf8f}\rp1291\a3488414.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
c:\system volume information\_restore{202550a8-7a33-4bca-9586-051d24ddbf8f}\rp1291\a3493371.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\TDSSKiller_Quarantine\25.10.2012_09.01.59\tdlfs0000\tsk0003.dta (Trojan.Agent.MRGGen) -> Quarantined and deleted successfully.

(end)

#11 junebug41

junebug41
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:04:37 PM

Posted 25 October 2012 - 08:33 PM

MiniToolBox log:

MiniToolBox by Farbar Version: 23-07-2012
Ran by MW (administrator) on 25-10-2012 at 18:23:54
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 www.100888290cs.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 www.10sek.com
127.0.0.1 10sek.com

There are 15302 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Intel® 82562V-2 10/100 Network Connection = Local Area Connection (Connected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : Mike

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Unknown

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No



Ethernet adapter Local Area Connection:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Intel® 82562V-2 10/100 Network Connection

Physical Address. . . . . . . . . : 00-1D-09-7F-92-C3

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 192.168.1.9

Subnet Mask . . . . . . . . . . . : 255.255.255.0

IP Address. . . . . . . . . . . . : fe80::21d:9ff:fe7f:92c3%4

Default Gateway . . . . . . . . . : 192.168.1.1

DHCP Server . . . . . . . . . . . : 192.168.1.1

DNS Servers . . . . . . . . . . . : 192.168.1.1

fec0:0:0:ffff::1%1

fec0:0:0:ffff::2%1

fec0:0:0:ffff::3%1

Lease Obtained. . . . . . . . . . : Thursday, October 25, 2012 9:05:31 AM

Lease Expires . . . . . . . . . . : Friday, October 26, 2012 9:05:31 AM



Tunnel adapter Teredo Tunneling Pseudo-Interface:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface

Physical Address. . . . . . . . . : 80-00-FA-42-BC-46-72-65

Dhcp Enabled. . . . . . . . . . . : No

IP Address. . . . . . . . . . . . : 2001:0:9d38:953c:8000:fa42:bc46:7265

IP Address. . . . . . . . . . . . : fe80::ffff:ffff:fffd%5

Default Gateway . . . . . . . . . : ::

NetBIOS over Tcpip. . . . . . . . : Disabled



Tunnel adapter Automatic Tunneling Pseudo-Interface:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Automatic Tunneling Pseudo-Interface

Physical Address. . . . . . . . . : C0-A8-01-09

Dhcp Enabled. . . . . . . . . . . : No

IP Address. . . . . . . . . . . . : fe80::5efe:192.168.1.9%2

Default Gateway . . . . . . . . . :

DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1

fec0:0:0:ffff::2%1

fec0:0:0:ffff::3%1

NetBIOS over Tcpip. . . . . . . . : Disabled

Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 173.194.33.32, 173.194.33.33, 173.194.33.34, 173.194.33.40
173.194.33.36, 173.194.33.46, 173.194.33.39, 173.194.33.35, 173.194.33.41
173.194.33.37, 173.194.33.38



Pinging google.com [173.194.33.33] with 32 bytes of data:



Reply from 173.194.33.33: bytes=32 time=9ms TTL=55

Reply from 173.194.33.33: bytes=32 time=10ms TTL=55



Ping statistics for 173.194.33.33:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 9ms, Maximum = 10ms, Average = 9ms

Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 98.139.183.24, 98.138.253.109, 72.30.38.140



Pinging yahoo.com [98.138.253.109] with 32 bytes of data:



Reply from 98.138.253.109: bytes=32 time=82ms TTL=49

Reply from 98.138.253.109: bytes=32 time=119ms TTL=49



Ping statistics for 98.138.253.109:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 82ms, Maximum = 119ms, Average = 100ms

Server: UnKnown
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:



Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 1d 09 7f 92 c3 ...... Intel® 82562V-2 10/100 Network Connection - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.9 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
192.168.1.0 255.255.255.0 192.168.1.9 192.168.1.9 20
192.168.1.9 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.1.255 255.255.255.255 192.168.1.9 192.168.1.9 20
224.0.0.0 240.0.0.0 192.168.1.9 192.168.1.9 20
255.255.255.255 255.255.255.255 192.168.1.9 192.168.1.9 1
Default Gateway: 192.168.1.1
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [147456] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/24/2012 09:51:14 PM) (Source: WinMgmt) (User: )
Description: WinMgmt could not initialize the core parts. This could be due to a badly installed version of WinMgmt, WinMgmt repository upgrade failure, insufficient disk space or insufficient memory.

Error: (10/24/2012 09:51:14 PM) (Source: WinMgmt) (User: )
Description: The WinMgmt service failed to load the repository files under the directory %windir%\system32\wbem\repository. This
can be caused by a corruption in the repository files, security settings on this directory, lack disk space, or other
system resource issues like lack of memory. If this error happens every time the machine is rebooted then the
administrator on this machine may need to stop WinMgmt service, delete all files and directories under this location,
and restarting the WinMgmt service.

Error: (10/20/2012 07:40:11 PM) (Source: Application Error) (User: )
Description: Faulting application ootp10.exe, version 2.0.0.0, faulting module kernel32.dll, version 5.1.2600.5512, fault address 0x0002e821.
Processing media-specific event for [ootp10.exe!ws!]

Error: (10/18/2012 08:45:18 PM) (Source: Application Error) (User: )
Description: Faulting application ootp10.exe, version 2.0.0.0, faulting module ootp10.exe, version 2.0.0.0, fault address 0x0073a1eb.
Processing media-specific event for [ootp10.exe!ws!]

Error: (10/15/2012 09:58:06 AM) (Source: Application Error) (User: )
Description: Fault bucket -1088898769.
The Wep key exchange did not result in a secure connection setup after 802.1x authentication. The current setting has been marked as failed and the Wireless connection will be disconnected.

Error: (10/15/2012 09:58:01 AM) (Source: Application Error) (User: )
Description: Faulting application avastui.exe, version 7.0.1466.549, faulting module unknown, version 0.0.0.0, fault address 0x01677d10.
Processing media-specific event for [avastui.exe!ws!]

Error: (06/18/2012 11:22:12 AM) (Source: MsiInstaller) (User: MIKE)MIKE
Description: Product: Microsoft Fix it 50391 -- This Microsoft Fix it does not apply to your operating system or application version.

Error: (06/18/2012 06:55:29 AM) (Source: crypt32) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: The specified server cannot perform the requested operation.

Error: (06/18/2012 06:55:29 AM) (Source: crypt32) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: The specified server cannot perform the requested operation.

Error: (06/18/2012 06:55:29 AM) (Source: crypt32) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: The specified server cannot perform the requested operation.


System errors:
=============
Error: (10/25/2012 09:07:13 AM) (Source: System Error) (User: )
Description: Error code 000000ca, parameter1 00000005, parameter2 8a8ebd98, parameter3 00000000, parameter4 00000000.

Error: (10/25/2012 09:07:01 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
iaStor

Error: (10/25/2012 09:06:59 AM) (Source: System Error) (User: )
Description: Error code 000000ca, parameter1 00000005, parameter2 8a900d98, parameter3 00000000, parameter4 00000000.

Error: (10/25/2012 09:06:56 AM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for the Roxio Hard Drive Watcher 9 service to connect.

Error: (10/25/2012 09:05:37 AM) (Source: 0) (User: )
Description: 0xC000024320105812.sysHarddiskVolume2

Error: (10/25/2012 09:04:20 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (10/25/2012 08:59:56 AM) (Source: DCOM) (User: MIKE)
Description: DCOM got error "%%1084" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (10/25/2012 08:59:52 AM) (Source: DCOM) (User: MIKE)
Description: DCOM got error "%%1084" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (10/25/2012 08:59:50 AM) (Source: DCOM) (User: MIKE)
Description: DCOM got error "%%1084" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (10/25/2012 08:03:27 AM) (Source: DCOM) (User: MIKE)
Description: DCOM got error "%%1084" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}


Microsoft Office Sessions:
=========================
Error: (10/24/2012 09:51:14 PM) (Source: WinMgmt)(User: )
Description:

Error: (10/24/2012 09:51:14 PM) (Source: WinMgmt)(User: )
Description:

Error: (10/20/2012 07:40:11 PM) (Source: Application Error)(User: )
Description: ootp10.exe2.0.0.0kernel32.dll5.1.2600.55120002e821

Error: (10/18/2012 08:45:18 PM) (Source: Application Error)(User: )
Description: ootp10.exe2.0.0.0ootp10.exe2.0.0.00073a1eb

Error: (10/15/2012 09:58:06 AM) (Source: Application Error)(User: )
Description: -1088898769

Error: (10/15/2012 09:58:01 AM) (Source: Application Error)(User: )
Description: avastui.exe7.0.1466.549unknown0.0.0.001677d10

Error: (06/18/2012 11:22:12 AM) (Source: MsiInstaller)(User: MIKE)MIKE
Description: Product: Microsoft Fix it 50391 -- This Microsoft Fix it does not apply to your operating system or application version.(NULL)(NULL)(NULL)

Error: (06/18/2012 06:55:29 AM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txtThe specified server cannot perform the requested operation.

Error: (06/18/2012 06:55:29 AM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txtThe specified server cannot perform the requested operation.

Error: (06/18/2012 06:55:29 AM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txtThe specified server cannot perform the requested operation.


=========================== Installed Programs ============================

AC3Filter (remove only)
Acoustica MP3 CD Burner
Add or Remove Adobe Creative Suite 3 Web Premium (Version: 1.0)
Adobe Acrobat 8 Professional (Version: 8.3.1)
Adobe Acrobat 8.3.1 - CPSID_83708
Adobe Acrobat 8.3.1 Professional (Version: 8.3.1)
Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742) (Version: 8.1.2)
Adobe Anchor Service CS3 (Version: 1.0)
Adobe Asset Services CS3 (Version: 3)
Adobe Bridge CS3 (Version: 2)
Adobe Bridge Start Meeting (Version: 1.0)
Adobe BridgeTalk Plugin CS3 (Version: 1.0)
Adobe Camera Raw 4.0 (Version: 4.0)
Adobe CMaps (Version: 1.0)
Adobe Color - Photoshop Specific (Version: 1.0)
Adobe Color Common Settings (Version: 1.0.1)
Adobe Color EU Extra Settings (Version: 1.0)
Adobe Color JA Extra Settings (Version: 1.0)
Adobe Color NA Recommended Settings (Version: 1.0)
Adobe Default Language CS3 (Version: 1.0)
Adobe Device Central CS3 (Version: 1.0)
Adobe Download Manager (Version: 1.6.2.63)
Adobe ExtendScript Toolkit 2 (Version: 2.0.2)
Adobe Extension Manager CS3 (Version: 1.8)
Adobe Flash Player 10 Plugin (Version: 10.0.32.18)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.265)
Adobe Fonts All (Version: 1.0)
Adobe Help Viewer CS3 (Version: 1)
Adobe Illustrator CS3 (Version: 13.0)
Adobe Linguistics CS3 (Version: 3.0.0)
Adobe MotionPicture Color Files (Version: 1.0)
Adobe PDF Library Files (Version: 8.0)
Adobe Photoshop 7.0 (Version: 7.0)
Adobe Reader 8.3.1 (Version: 8.3.1)
Adobe Setup (Version: 1.0)
Adobe Stock Photos CS3 (Version: 1.5)
Adobe Type Support (Version: 1.0)
Adobe Update Manager CS3 (Version: 5.1.0)
Adobe Version Cue CS3 Client (Version: 3)
Adobe WAS CS3 (Version: 1.0)
Adobe WinSoft Linguistics Plugin (Version: 1.0)
Adobe XMP Panels CS3 (Version: 1.0)
Advertising Center (Version: 0.0.0.2)
AHV content for Acrobat and Flash (Version: 1)
AiO_Scan_CDA (Version: 70.0.231.000)
AiOSoftwareNPI (Version: 70.0.231.000)
ATI - Software Uninstall Utility (Version: 6.14.10.1019)
ATI Display Driver (Version: 8.451-071220a1-057717C-ATI)
Audacity 1.2.6
avast! Free Antivirus (Version: 7.0.1466.0)
Browser Address Error Redirector (Version: 1.00.0000)
BufferChm (Version: 70.0.170.000)
C4100 (Version: 70.0.231.000)
c4100_Help (Version: 70.0.231.000)
CCleaner (remove only)
CD-DA X-Tractor v0.24 (Version: 0.24)
Compatibility Pack for the 2007 Office system (Version: 12.0.6021.5000)
Conexant D850 56K V.9x DFVc Modem
CP_CalendarTemplates1 (Version: 70.0.170.000)
cp_OnlineProjectsConfig (Version: 70.0.170.000)
CP_Package_Basic1 (Version: 70.0.170.000)
CP_Panorama1Config (Version: 70.0.170.000)
cp_PosterPrintConfig (Version: 70.0.170.000)
CueTour (Version: 70.0.170.000)
Dell DataSafe Online (Version: 1.0.21)
Dell Driver Reset Tool (Version: 1.02.0000)
Dell Support Center (Version: 2.1.08044)
Dell System Restore (Version: 2.00.0000)
Destinations (Version: 70.0.170.000)
DeviceManagementQFolder (Version: 1.00.0000)
Digital Line Detect (Version: 1.10)
DocProc (Version: 7.0.0.0)
DocProcQFolder (Version: 1.00.0000)
Documentation & Support Launcher (Version: 1.00.0000)
DocumentViewer (Version: 70.0.170.000)
DocumentViewerQFolder (Version: 1.00.0000)
Download_Energy Toolbar (Version: )
DVD Decrypter (Remove Only)
ESET Online Scanner v3
eSupportQFolder (Version: 1.00.0000)
Fax_CDA (Version: 70.0.231.000)
Full Tilt Poker (Version: 4.12.1.WIN.FullTilt.Real)
FullDPAppQFolder (Version: 1.00.0000)
Games, Music, & Photos Launcher (Version: 1.00.0000)
Google Chrome (Version: 22.0.1229.94)
Google Desktop (Version: 5.7.0802.22438)
Google Earth (Version: 6.1.0.5001)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3230.2052)
Google Update Helper (Version: 1.3.21.123)
High Definition Audio Driver Package - KB835221 (Version: 20040219.000000)
HiJackThis (Version: 1.0.0)
HijackThis 2.0.2 (Version: 2.0.2)
HP Document Viewer 7.0 (Version: 7.0)
HP Imaging Device Functions 7.0 (Version: 7.0)
HP Photosmart Essential (Version: 1.9.1.3)
HP Photosmart Premier Software 6.5 (Version: 6.5)
HP Photosmart, Officejet and Deskjet 7.0.A
HP Solution Center 7.0 (Version: 7.0)
HPPhotoSmartExpress (Version: 70.0.170.000)
HPProductAssistant (Version: 70.0.170.000)
InstantShareDevices (Version: 70.0.170.000)
InstantShareDevicesMFC (Version: 70.0.170.000)
Intel® PRO Network Connections Drivers
Internet Service Offers Launcher (Version: 1.00.0000)
ISO Recorder (Version: 2.0.0)
Java Auto Updater (Version: 2.0.3.1)
Java™ 6 Update 24 (Version: 6.0.240)
Java™ 6 Update 5 (Version: 1.6.0.50)
Java™ 6 Update 6 (Version: 1.6.0.60)
Java™ 6 Update 7 (Version: 1.6.0.70)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Hotfix (KB928366)
Microsoft .NET Framework 2.0 Service Pack 1 (Version: 2.1.21022)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Diagnostics and Recovery Toolset 5.0 (Version: 6.00.0000)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0)
Microsoft Plus! Digital Media Edition Installer (Version: 1.1.0.3514)
Microsoft Plus! Photo Story 2 LE (Version: 1.1.0.3463)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Works (Version: 08.05.0818)
Mirage Driver 1.1 (Version: 1.1)
Modem Diagnostic Tool (Version: 1.0.17.2)
Move Media Player
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 6 Service Pack 2 (KB954459) (Version: 6.20.1099.0)
neroxml (Version: 1.0.0)
NetWaiting (Version: 2.5.12)
NewCopy_CDA (Version: 70.0.231.000)
OCR Software by I.R.I.S 7.0 (Version: 7.0)
OpenOffice.org 3.3 (Version: 3.3.9567)
Out of the Park 10
Out of the Park 8
PanoStandAlone (Version: 70.0.170.000)
PC Booster (Version: 6.0)
PDF Settings (Version: 1.0)
PE Builder 3.1.10a
PeaZip 3.1
PENTAX USB DISK Device (Version: 1.02.0000)
PhotoGallery (Version: 70.0.170.000)
Picasa 3 (Version: 3.8)
PowerDVD (Version: 7.0)
ProductContextNPI (Version: 70.0.231.000)
Protected Music Converter 1.0.0.7 (Version: 1.0.0.6)
QuickTime (Version: 7.4.5.67)
RandMap (Version: 70.0.170.000)
Readme (Version: 70.0.231.000)
Realtek High Definition Audio Driver
Remote Desktop Web Connection
Roxio Creator Audio (Version: 3.3.0)
Roxio Creator BDAV Plugin (Version: 3.3.0)
Roxio Creator Copy (Version: 3.3.0)
Roxio Creator Data (Version: 3.3.0)
Roxio Creator DE (Version: 3.3.0)
Roxio Creator Tools (Version: 3.3.0)
Roxio Drag-to-Disc (Version: 9.0)
Roxio Express Labeler (Version: 2.1.0)
Roxio MyDVD DE (Version: 9.0.116)
Roxio Update Manager (Version: 3.0.0)
Scan (Version: 7.0.0.0)
ScannerCopy (Version: 7.0.0.0)
SearchAssist
SkinsHP1 (Version: 70.0.170.000)
SlideShow (Version: 70.0.170.000)
SolutionCenter (Version: 70.0.170.000)
Sonic Activation Module (Version: 1.0)
Sonic_PrimoSDK (Version: 70.0.170.000)
Spybot - Search & Destroy (Version: 1.6.2)
Status (Version: 70.0.170.000)
Switch Sound File Converter
Toolbox (Version: 70.0.170.000)
TrayApp (Version: 70.0.170.000)
Ultima Online 2D Client (Version: 5.0.9)
Unload (Version: 7.0.0)
Update for Windows Internet Explorer 8 (KB2598845) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
VC 9.0 Runtime (Version: 1.0.0)
WebFldrs XP (Version: 9.50.7523)
WebReg (Version: 70.0.170.000)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Installer 3.1 (KB893803)
Windows Internet Explorer 7 (Version: 20070813.185237)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Media Format 11 runtime
Windows Media Player 10 (Version: 9.00.3636)
Windows Media Player 11
Windows XP Service Pack 3 (Version: 20080414.031525)
WinMX Music (Version: 4.8.9.0)
WinMX v3.53 Patch level: 3.0 mod 2a (Version: 3.5.3.0 Patch: 3.0 mod 2a)
WinZip 14.0 (Version: 14.0.9029)
Xvid 1.1.3 final uninstall (Version: 1.1)
Yahoo! Detect
Yahoo! Messenger
Yugma (Version: 1.0)

========================= Memory info: ===================================

Percentage of memory in use: 37%
Total physical RAM: 2046.1 MB
Available physical RAM: 1285.15 MB
Total Pagefile: 3938.2 MB
Available Pagefile: 3329.09 MB
Total Virtual: 2047.88 MB
Available Virtual: 1970.95 MB

========================= Partitions: =====================================

2 Drive c: () (Fixed) (Total:229.47 GB) (Free:155.23 GB) NTFS

========================= Users: ========================================

User accounts for \\MIKE

Administrator Guest HelpAssistant
MW SUPPORT_388945a0

========================= Restore Points ==================================

28-07-2012 22:54:40 System Checkpoint
30-07-2012 03:08:55 System Checkpoint
31-07-2012 06:12:56 System Checkpoint
01-08-2012 06:47:32 System Checkpoint
02-08-2012 16:38:28 System Checkpoint
04-08-2012 03:04:26 System Checkpoint
05-08-2012 06:20:22 System Checkpoint
06-08-2012 15:20:23 System Checkpoint
08-08-2012 04:35:22 System Checkpoint
09-08-2012 05:49:01 System Checkpoint
10-08-2012 06:19:21 System Checkpoint
11-08-2012 07:01:50 System Checkpoint
12-08-2012 16:54:03 System Checkpoint
13-08-2012 18:29:56 System Checkpoint
14-08-2012 23:51:25 System Checkpoint
15-08-2012 20:23:17 Software Distribution Service 3.0
15-08-2012 20:27:15 Installed Windows Internet Explorer 8.
15-08-2012 20:27:31 Software Distribution Service 3.0
16-08-2012 20:37:23 System Checkpoint
18-08-2012 02:16:02 System Checkpoint
19-08-2012 03:38:25 System Checkpoint
20-08-2012 04:00:59 System Checkpoint
21-08-2012 15:15:23 System Checkpoint
23-08-2012 00:56:48 System Checkpoint
24-08-2012 03:23:36 System Checkpoint
27-08-2012 14:15:04 System Checkpoint
28-08-2012 15:16:04 System Checkpoint
29-08-2012 16:32:08 System Checkpoint
30-08-2012 18:00:15 System Checkpoint
31-08-2012 19:56:55 System Checkpoint
01-09-2012 21:53:50 System Checkpoint
02-09-2012 23:39:27 System Checkpoint
04-09-2012 01:43:46 System Checkpoint
05-09-2012 03:26:42 System Checkpoint
06-09-2012 05:26:42 System Checkpoint
07-09-2012 06:58:47 System Checkpoint
08-09-2012 07:37:06 System Checkpoint
09-09-2012 08:25:17 System Checkpoint
10-09-2012 14:57:57 System Checkpoint
12-09-2012 01:54:50 System Checkpoint
13-09-2012 02:48:43 System Checkpoint
14-09-2012 02:52:19 System Checkpoint
15-09-2012 03:05:16 System Checkpoint
16-09-2012 16:16:02 System Checkpoint
17-09-2012 16:51:28 System Checkpoint
19-09-2012 02:46:00 System Checkpoint
20-09-2012 03:10:00 System Checkpoint
21-09-2012 03:45:03 System Checkpoint
24-09-2012 05:30:33 System Checkpoint
25-09-2012 06:38:10 System Checkpoint
26-09-2012 07:21:23 System Checkpoint
27-09-2012 14:40:57 System Checkpoint
29-09-2012 01:15:34 System Checkpoint
30-09-2012 01:31:53 System Checkpoint
01-10-2012 02:17:46 System Checkpoint
03-10-2012 02:40:55 System Checkpoint
04-10-2012 02:59:36 System Checkpoint
08-10-2012 15:01:20 System Checkpoint
09-10-2012 16:03:14 System Checkpoint
10-10-2012 17:24:48 System Checkpoint
14-10-2012 21:14:13 System Checkpoint
18-10-2012 01:32:34 System Checkpoint
19-10-2012 06:08:57 System Checkpoint
20-10-2012 16:21:18 System Checkpoint
21-10-2012 17:26:20 System Checkpoint
22-10-2012 17:39:38 System Checkpoint
23-10-2012 17:41:13 System Checkpoint
24-10-2012 19:25:27 System Checkpoint
25-10-2012 01:38:59 Restore Operation
25-10-2012 04:48:51 Restore Operation

**** End of log ****

#12 junebug41

junebug41
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:04:37 PM

Posted 25 October 2012 - 08:36 PM

Farbar Service Scanner log:

Farbar Service Scanner Version: 19-10-2012
Ran by MW (administrator) on 25-10-2012 at 18:30:40
Running from "C:\Documents and Settings\MW\Desktop"
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
aswTdi(11) Gpc(6) IPSec(4) NetBT(5) PSched(7) Tcpip(3) Tcpip6(10)
0x0B000000040000000100000002000000030000000B00000005000000060000000700000008000000090000000A000000
IpSec Tag value is correct.

**** End of log ****

#13 junebug41

junebug41
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:04:37 PM

Posted 25 October 2012 - 08:45 PM

AdwCleaner Log (this looks like it found a lot of crap):

# AdwCleaner v2.005 - Logfile created 10/25/2012 at 18:34:05
# Updated 14/10/2012 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : MW - MIKE
# Boot Mode : Normal
# Running from : C:\Documents and Settings\MW\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\WINDOWS\system32\conduitEngine.tmp
File Deleted : C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job
Folder Deleted : C:\Documents and Settings\All Users\Application Data\blekko toolbars
Folder Deleted : C:\Documents and Settings\MW\Local Settings\Application Data\Conduit
Folder Deleted : C:\Documents and Settings\MW\Local Settings\Application Data\ConduitEngine
Folder Deleted : C:\Documents and Settings\MW\Local Settings\Application Data\Download_Energy
Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Program Files\ConduitEngine
Folder Deleted : C:\Program Files\Download_Energy
Folder Deleted : C:\WINDOWS\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\AskToolbarInfo
Key Deleted : HKCU\Software\Ask.com
Key Deleted : HKCU\Software\AskToolbar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\conduitEngine
Key Deleted : HKCU\Software\Download_Energy
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AD708C09-D51B-45B3-9D28-4EBA2681FEBF}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AD708C09-D51B-45B3-9D28-4EBA2681FEBF}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Toolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{098BF80B-9A4C-4C57-BFEF-AC7E592171C7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AD708C09-D51B-45B3-9D28-4EBA2681FEBF}
Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT1269415
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\conduitEngine
Key Deleted : HKLM\Software\Download_Energy
Key Deleted : HKLM\Software\Freeze.com
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{78BF1293-EB84-4EFC-AA4A-12CFB176AF7B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D15737F3-BEA6-47A2-85D6-06625858B04B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Download_Energy Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AD708C09-D51B-45B3-9D28-4EBA2681FEBF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{098BF80B-9A4C-4C57-BFEF-AC7E592171C7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Download_Energy Toolbar
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{AD708C09-D51B-45B3-9D28-4EBA2681FEBF}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AD708C09-D51B-45B3-9D28-4EBA2681FEBF}]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry is clean.

-\\ Google Chrome v22.0.1229.94

File : C:\Documents and Settings\MW\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

File : C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [6423 octets] - [25/10/2012 18:33:06]
AdwCleaner[S1].txt - [5863 octets] - [25/10/2012 18:34:05]

########## EOF - C:\AdwCleaner[S1].txt - [5923 octets] ##########

#14 junebug41

junebug41
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:04:37 PM

Posted 25 October 2012 - 09:00 PM

Junkware Removal Tool log:

Junkware Removal Tool (JRT) by Thisisu
Version: 2.1.8 (10.25.2012)
OS: Microsoft Windows XP x86
Ran by MW on Thu 10/25/2012 at 18:42:11.12
Blog: http://thisisudax.blogspot.com
**************************************************************




*** Services: 0 Detections



*** Registry Values: 0 Detections



*** Registry Keys:

Successfully deleted: [KEY] hkey_classes_root\clsid\{3c471948-f874-49f5-b338-4f214a2ee0b1}



*** Files: 0 Detections



*** Folders: 0 Detections



*** Event Viewer Logs - NOT cleared





**************************************************************
Scan was completed on Thu 10/25/2012 at 18:50:57.26
End of Report

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:37 PM

Posted 25 October 2012 - 09:02 PM

Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users