Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

am i infected by smitfraud-c


  • This topic is locked This topic is locked
13 replies to this topic

#1 mr.squinter

mr.squinter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:05:56 AM

Posted 12 November 2012 - 05:35 AM

hi to any clever helpfull folks who might read this.

as you'll soon discover, i don't have a bleeping clue about computers, but i think i have a problem (or lots). i've never had my own pc and when my son moved out he left me his 'out of date, vista pc' as he calls it, and has got himself a new laptop. he used windows security centre, windows defender, etc, also avast, and spybot search and destroy as i'd been told they were good and more importantly, FREE. both are up to date.

however, the pc is running really slow. it defrags weekly, temp files are cleared regular, all the usual stuff, but i did just remove all but the latest system restore points before coming onto a forum with my prob, as was suggested on one forum. but still the pc has slow performance, and running a spyboy scan reveals no threats, yet i can see it scanning things like 'smitfraud-c' and virtumonde.dll. these did not sound normal to me and were confirmed as bad just by me doing a general web search. i learned spybot can't get rid of them but why does n't it list them as a threat?

so i ran a full scan with avast which found one thing... HTML:Applet-inf (trj),and deleted it. a further spybot scan still scans smitfraud and virtumonde yet still completes with the message 'congratulations no immediate threats'

despite telling my son to keep things updated, i found him to be running explorer 8, so i updated to IE9, and he had a really old version of Java, so i just installed the latest. i guess these are 2 areas where something nasty could have got through.

reading other threads i saw vundofix mentioned, so i installed it and did a scan which revealed no threats. also, i have installed hijack this and combo fix but have n't used them until i get expert guidance. just to confirm the pc runs on vista and IE9. anybody out there got any ideas? or would you like more info? i patiently await any help on this matter. thanks.

BC AdBot (Login to Remove)

 


#2 Sightless

Sightless

  • Members
  • 435 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Up in the Clouds
  • Local time:06:56 AM

Posted 12 November 2012 - 10:43 AM

Hi, I can at least get you started.

Download and install Malwarebytes Anti-Malware
Update the definitions and then run a Quick Scan
When the scan is finished, click "Show Results" and then after making sure every item's check box is CHECKED, click "Remove Selected". Copy and paste the generated log file (it will open in Notepad) as a reply to this thread and then restart your computer.

#3 mr.squinter

mr.squinter
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:05:56 AM

Posted 12 November 2012 - 02:32 PM

thank you so much - your help is greatly apreciated. whoops - my son's had 'free registry cleaner for vista' on this pc for over 2 years. log enclosed...

Malwarebytes Anti-Malware (Trial) 1.65.1.1000
www.malwarebytes.org

Database version: v2012.11.12.05

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Steve :: STEVE-PC [administrator]

Protection: Enabled

12/11/2012 18:29:14
mbam-log-2012-11-12 (18-29-14).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 220788
Time elapsed: 43 minute(s), 52 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Free Registry Cleaner for Vista_is1 (Rogue.FreeRegistryCleanerForVista) -> Quarantined and deleted successfully.

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 2
C:\Program Files\Free Registry Cleaner for Vista (Rogue.FreeRegistryCleanerForVista) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Registry Cleaner for Vista (Rogue.FreeRegistryCleanerForVista) -> Quarantined and deleted successfully.

Files Detected: 7
C:\ProgramData\lsass.exe (Trojan.Delf) -> Quarantined and deleted successfully.
C:\Program Files\Free Registry Cleaner for Vista\backuphkcu.REG (Rogue.FreeRegistryCleanerForVista) -> Quarantined and deleted successfully.
C:\Program Files\Free Registry Cleaner for Vista\RegCleanerForVista.exe (Rogue.FreeRegistryCleanerForVista) -> Quarantined and deleted successfully.
C:\Program Files\Free Registry Cleaner for Vista\unins000.dat (Rogue.FreeRegistryCleanerForVista) -> Quarantined and deleted successfully.
C:\Program Files\Free Registry Cleaner for Vista\unins000.exe (Rogue.FreeRegistryCleanerForVista) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Registry Cleaner for Vista\Free Registry Cleaner for Vista.lnk (Rogue.FreeRegistryCleanerForVista) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Registry Cleaner for Vista\Uninstall Free Registry Cleaner for Vista.lnk (Rogue.FreeRegistryCleanerForVista) -> Quarantined and deleted successfully.

(end)

#4 Sightless

Sightless

  • Members
  • 435 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Up in the Clouds
  • Local time:06:56 AM

Posted 12 November 2012 - 04:59 PM

Hi, I was hoping someone more knowledgeable than me would have taken a look at this thread by now....but anyways, let's try an online scan and see if it picks up anything.
Have you had any more detections of smitfraud?

Please run an eset Online Scan. Let the scanner remove all found threats and as you did before, copy and paste the log generated at the end of the scan into this thread.

#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,072 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:56 AM

Posted 12 November 2012 - 08:18 PM

Hello. after ESET run these



Please download Rkill by Grinler and save it to your desktop.Link 1
Link 2
  • Double-click on the Rkill desktop icon to run the tool.
  • If using Vista, right-click on it and Run As Administrator.
  • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
  • If not, delete the file, then download and use the one provided in Link 2.
  • If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.
  • If the tool does not run from any of the links provided, please let me know.
Do not reboot the computer, you will need to run the application again.



Please Download

TDSSkiller


Launch it. Click on change parameters-Select TDLFS file system

Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.




Please download AdwCleaner by Xplode onto your desktop.


  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • You will be prompted to restart your computer. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.



Lastly run MiniToolBox
Please download MiniToolBox, save it to your desktop and run it.Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 mr.squinter

mr.squinter
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:05:56 AM

Posted 13 November 2012 - 07:48 AM

thanks again guys. got lots of info for you so here goes...

firstly, i cant find a log from the eset scan, but i did write down what it found and removed. hope its adequate. there were 5 problems:

variant of win32/install core.a application
variant of winn32?bs downloader application
variant of win32/toolbar widgi application (note: it found 2 with this exact same name)
variant of win32/adware error repair pro application

more logs...


Rkill 2.4.5 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 11/13/2012 09:43:47 AM in x86 mode.
Windows Version: Windows Vista ™ Home Basic Service Pack 2

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* C:\Windows\wanmpsvc.exe (PID: 3696) [WD-HEUR]

1 proccess terminated!

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
* HKLM\Software\Classes\.exe\shell found and deleted!


Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* No issues found.

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* HOSTS file entries found:

127.0.0.1 localhost
::1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com

20 out of 15295 HOSTS entries shown.
Please review HOSTS file for further entries.

Program finished at: 11/13/2012 09:45:41 AM
Execution time: 0 hours(s), 1 minute(s), and 54 seconds(s)

----------------------


09:51:31.0464 15304 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
09:51:33.0554 15304 ============================================================
09:51:33.0554 15304 Current date / time: 2012/11/13 09:51:33.0554
09:51:33.0554 15304 SystemInfo:
09:51:33.0554 15304
09:51:33.0554 15304 OS Version: 6.0.6002 ServicePack: 2.0
09:51:33.0554 15304 Product type: Workstation
09:51:33.0554 15304 ComputerName: STEVE-PC
09:51:33.0570 15304 UserName: Steve
09:51:33.0570 15304 Windows directory: C:\Windows
09:51:33.0570 15304 System windows directory: C:\Windows
09:51:33.0570 15304 Processor architecture: Intel x86
09:51:33.0570 15304 Number of processors: 2
09:51:33.0570 15304 Page size: 0x1000
09:51:33.0570 15304 Boot type: Normal boot
09:51:33.0570 15304 ============================================================
09:51:35.0769 15304 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
09:51:36.0050 15304 ============================================================
09:51:36.0050 15304 \Device\Harddisk0\DR0:
09:51:36.0066 15304 MBR partitions:
09:51:36.0066 15304 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1A00800, BlocksNum 0x11018EB0
09:51:36.0066 15304 ============================================================
09:51:36.0315 15304 C: <-> \Device\Harddisk0\DR0\Partition1
09:51:36.0425 15304 ============================================================
09:51:36.0425 15304 Initialize success
09:51:36.0425 15304 ============================================================
09:53:42.0956 15072 ============================================================
09:53:42.0956 15072 Scan started
09:53:42.0956 15072 Mode: Manual; TDLFS;
09:53:42.0956 15072 ============================================================
09:53:50.0912 15072 ================ Scan system memory ========================
09:53:50.0912 15072 System memory - ok
09:53:50.0912 15072 ================ Scan services =============================
09:53:52.0035 15072 A2DDA - ok
09:53:57.0246 15072 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
09:53:57.0542 15072 ACPI - ok
09:53:57.0901 15072 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
09:53:58.0151 15072 adp94xx - ok
09:53:58.0572 15072 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
09:53:58.0697 15072 adpahci - ok
09:53:58.0743 15072 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
09:53:58.0790 15072 adpu160m - ok
09:53:58.0977 15072 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
09:53:59.0243 15072 adpu320 - ok
09:53:59.0367 15072 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
09:53:59.0399 15072 AeLookupSvc - ok
09:53:59.0679 15072 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
09:53:59.0711 15072 AFD - ok
09:53:59.0851 15072 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
09:53:59.0929 15072 agp440 - ok
09:53:59.0991 15072 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
09:54:00.0069 15072 aic78xx - ok
09:54:00.0132 15072 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
09:54:00.0132 15072 ALG - ok
09:54:00.0366 15072 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
09:54:00.0413 15072 aliide - ok
09:54:00.0506 15072 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
09:54:00.0553 15072 amdagp - ok
09:54:00.0647 15072 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
09:54:00.0725 15072 amdide - ok
09:54:00.0787 15072 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
09:54:00.0803 15072 AmdK7 - ok
09:54:00.0849 15072 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
09:54:00.0849 15072 AmdK8 - ok
09:54:01.0271 15072 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
09:54:01.0302 15072 Appinfo - ok
09:54:01.0364 15072 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
09:54:01.0458 15072 arc - ok
09:54:01.0520 15072 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
09:54:01.0614 15072 arcsas - ok
09:54:01.0754 15072 [ D880831279ED91F9A4190A2DB9539EA9 ] ASCTRM C:\Windows\system32\drivers\ASCTRM.sys
09:54:01.0770 15072 ASCTRM - ok
09:54:01.0895 15072 [ F5DC168BF77572D51BE28BA261B30CB4 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
09:54:01.0926 15072 aswFsBlk - ok
09:54:02.0019 15072 [ F76E51561562AC4105DBBE53FC99BC10 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
09:54:02.0144 15072 aswMonFlt - ok
09:54:02.0175 15072 [ B7D5E4486BA658ED08624D8084ABB830 ] aswRdr C:\Windows\system32\drivers\aswRdr.sys
09:54:02.0207 15072 aswRdr - ok
09:54:02.0612 15072 [ 30E45AF8B4D83176CA850FC9699E860B ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
09:54:02.0862 15072 aswSnx - ok
09:54:03.0158 15072 [ F04BDBCB965C05C51F4A7DE7B62063D6 ] aswSP C:\Windows\system32\drivers\aswSP.sys
09:54:03.0221 15072 aswSP - ok
09:54:03.0314 15072 [ DFE9152ABFA89BB8CFDC057409B2D4DA ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
09:54:03.0330 15072 aswTdi - ok
09:54:03.0423 15072 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
09:54:03.0455 15072 AsyncMac - ok
09:54:03.0501 15072 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
09:54:03.0533 15072 atapi - ok
09:54:03.0938 15072 [ F1FC2FD87FF77F63CD7F8BF95940B40C ] athur C:\Windows\system32\DRIVERS\athur.sys
09:54:04.0874 15072 athur - ok
09:54:05.0046 15072 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
09:54:05.0124 15072 AudioEndpointBuilder - ok
09:54:05.0202 15072 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
09:54:05.0217 15072 Audiosrv - ok
09:54:05.0639 15072 [ 04AC21E821F259845BD7367CEE057290 ] avast! Antivirus C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
09:54:05.0654 15072 avast! Antivirus - ok
09:54:05.0841 15072 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
09:54:05.0873 15072 Beep - ok
09:54:06.0013 15072 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
09:54:06.0107 15072 BFE - ok
09:54:06.0372 15072 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\System32\qmgr.dll
09:54:06.0512 15072 BITS - ok
09:54:06.0590 15072 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
09:54:06.0637 15072 blbdrive - ok
09:54:06.0762 15072 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
09:54:06.0824 15072 bowser - ok
09:54:07.0027 15072 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
09:54:07.0105 15072 BrFiltLo - ok
09:54:07.0152 15072 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
09:54:07.0183 15072 BrFiltUp - ok
09:54:07.0277 15072 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
09:54:07.0308 15072 Browser - ok
09:54:07.0433 15072 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
09:54:07.0573 15072 Brserid - ok
09:54:07.0635 15072 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
09:54:07.0682 15072 BrSerWdm - ok
09:54:07.0729 15072 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
09:54:07.0760 15072 BrUsbMdm - ok
09:54:07.0838 15072 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
09:54:07.0854 15072 BrUsbSer - ok
09:54:07.0963 15072 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
09:54:08.0025 15072 BTHMODEM - ok
09:54:08.0322 15072 [ 35E02592F9D3B6F8133E55862C81F50E ] c2scsi C:\Windows\system32\DRIVERS\c2scsi.sys
09:54:08.0369 15072 c2scsi - ok
09:54:08.0447 15072 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
09:54:08.0478 15072 cdfs - ok
09:54:08.0587 15072 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
09:54:08.0681 15072 cdrom - ok
09:54:08.0852 15072 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
09:54:08.0883 15072 CertPropSvc - ok
09:54:08.0977 15072 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
09:54:09.0008 15072 circlass - ok
09:54:09.0180 15072 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
09:54:09.0227 15072 CLFS - ok
09:54:09.0695 15072 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:54:10.0007 15072 clr_optimization_v2.0.50727_32 - ok
09:54:10.0069 15072 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
09:54:10.0100 15072 cmdide - ok
09:54:10.0131 15072 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\drivers\compbatt.sys
09:54:10.0131 15072 Compbatt - ok
09:54:10.0147 15072 COMSysApp - ok
09:54:10.0693 15072 cpuz132 - ok
09:54:10.0787 15072 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
09:54:10.0818 15072 crcdisk - ok
09:54:10.0865 15072 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
09:54:10.0896 15072 Crusoe - ok
09:54:11.0021 15072 [ F1E8C34892336D33EDDCDFE44E474F64 ] CryptSvc C:\Windows\system32\cryptsvc.dll
09:54:11.0036 15072 CryptSvc - ok
09:54:11.0239 15072 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
09:54:11.0286 15072 DcomLaunch - ok
09:54:11.0317 15072 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
09:54:11.0333 15072 DfsC - ok
09:54:11.0660 15072 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
09:54:11.0785 15072 DFSR - ok
09:54:12.0003 15072 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
09:54:12.0050 15072 Dhcp - ok
09:54:12.0128 15072 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
09:54:12.0144 15072 disk - ok
09:54:12.0237 15072 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
09:54:12.0284 15072 Dnscache - ok
09:54:12.0393 15072 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
09:54:12.0425 15072 dot3svc - ok
09:54:12.0549 15072 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
09:54:12.0565 15072 DPS - ok
09:54:12.0596 15072 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
09:54:12.0768 15072 drmkaud - ok
09:54:13.0111 15072 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
09:54:13.0205 15072 DXGKrnl - ok
09:54:13.0329 15072 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
09:54:13.0392 15072 E1G60 - ok
09:54:13.0501 15072 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
09:54:13.0532 15072 EapHost - ok
09:54:13.0735 15072 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
09:54:13.0875 15072 Ecache - ok
09:54:14.0094 15072 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
09:54:14.0156 15072 elxstor - ok
09:54:14.0359 15072 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
09:54:14.0624 15072 EMDMgmt - ok
09:54:14.0733 15072 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
09:54:14.0796 15072 ErrDev - ok
09:54:15.0108 15072 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
09:54:15.0186 15072 EventSystem - ok
09:54:15.0404 15072 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
09:54:15.0498 15072 exfat - ok
09:54:15.0763 15072 [ 42F721C52EEF2D6DF9372A53813A83EF ] ezSharedSvc C:\Windows\System32\ezsvc7.dll
09:54:15.0794 15072 ezSharedSvc - ok
09:54:15.0997 15072 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
09:54:16.0075 15072 fastfat - ok
09:54:16.0200 15072 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
09:54:16.0278 15072 fdc - ok
09:54:16.0403 15072 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
09:54:16.0512 15072 fdPHost - ok
09:54:16.0683 15072 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
09:54:16.0699 15072 FDResPub - ok
09:54:17.0339 15072 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
09:54:17.0339 15072 FileInfo - ok
09:54:17.0463 15072 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
09:54:17.0541 15072 Filetrace - ok
09:54:17.0775 15072 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
09:54:17.0791 15072 flpydisk - ok
09:54:18.0103 15072 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
09:54:18.0243 15072 FltMgr - ok
09:54:18.0899 15072 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
09:54:18.0992 15072 FontCache - ok
09:54:19.0538 15072 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
09:54:19.0757 15072 FontCache3.0.0.0 - ok
09:54:19.0913 15072 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
09:54:19.0959 15072 Fs_Rec - ok
09:54:20.0115 15072 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
09:54:20.0225 15072 gagp30kx - ok
09:54:20.0225 15072 GenericHidService - ok
09:54:21.0036 15072 [ 9E37E0C528E1E3A79E215B6A4EEA2143 ] GoogleDesktopManager-092308-165331 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
09:54:21.0067 15072 GoogleDesktopManager-092308-165331 - ok
09:54:21.0909 15072 [ 5CC2B1D06AC1962AF5FBBCF88D781DD8 ] GoToAssist C:\Program Files\Citrix\GoToAssist\570\g2aservice.exe
09:54:22.0143 15072 GoToAssist - ok
09:54:22.0471 15072 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
09:54:22.0845 15072 gpsvc - ok
09:54:23.0391 15072 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
09:54:23.0594 15072 gupdate - ok
09:54:23.0688 15072 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
09:54:23.0703 15072 gupdatem - ok
09:54:23.0969 15072 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
09:54:24.0078 15072 HdAudAddService - ok
09:54:24.0468 15072 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
09:54:24.0639 15072 HDAudBus - ok
09:54:24.0702 15072 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
09:54:24.0764 15072 HidBth - ok
09:54:24.0811 15072 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
09:54:24.0858 15072 HidIr - ok
09:54:24.0920 15072 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\system32\hidserv.dll
09:54:24.0936 15072 hidserv - ok
09:54:25.0045 15072 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
09:54:25.0232 15072 HidUsb - ok
09:54:25.0326 15072 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
09:54:25.0404 15072 hkmsvc - ok
09:54:25.0482 15072 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
09:54:25.0529 15072 HpCISSs - ok
09:54:25.0747 15072 [ 0EEECA26C8D4BDE2A4664DB058A81937 ] HTTP C:\Windows\system32\drivers\HTTP.sys
09:54:25.0919 15072 HTTP - ok
09:54:25.0997 15072 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
09:54:26.0059 15072 i2omp - ok
09:54:26.0231 15072 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
09:54:26.0262 15072 i8042prt - ok
09:54:26.0387 15072 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
09:54:26.0543 15072 iaStorV - ok
09:54:26.0901 15072 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
09:54:27.0104 15072 idsvc - ok
09:54:27.0182 15072 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
09:54:27.0213 15072 iirsp - ok
09:54:27.0369 15072 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
09:54:27.0713 15072 IKEEXT - ok
09:54:28.0352 15072 [ 219CA9A36D6DE2EC04F958C907673436 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
09:54:28.0617 15072 IntcAzAudAddService - ok
09:54:28.0727 15072 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
09:54:28.0758 15072 intelide - ok
09:54:28.0883 15072 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
09:54:28.0945 15072 intelppm - ok
09:54:29.0007 15072 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
09:54:29.0039 15072 IPBusEnum - ok
09:54:29.0101 15072 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
09:54:29.0117 15072 IpFilterDriver - ok
09:54:29.0241 15072 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
09:54:29.0351 15072 iphlpsvc - ok
09:54:29.0366 15072 IpInIp - ok
09:54:29.0444 15072 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
09:54:29.0460 15072 IPMIDRV - ok
09:54:29.0475 15072 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
09:54:29.0507 15072 IPNAT - ok
09:54:29.0538 15072 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
09:54:29.0585 15072 IRENUM - ok
09:54:29.0725 15072 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
09:54:29.0741 15072 isapnp - ok
09:54:29.0834 15072 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
09:54:29.0897 15072 iScsiPrt - ok
09:54:29.0975 15072 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
09:54:30.0037 15072 iteatapi - ok
09:54:30.0162 15072 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
09:54:30.0240 15072 iteraid - ok
09:54:30.0645 15072 [ CF9BA304B8047B9582D72D9BFEF42EAE ] jswpsapi C:\Program Files\NETGEAR\WNA1100\jswpsapi.exe
09:54:30.0770 15072 jswpsapi - ok
09:54:31.0004 15072 [ 55C9B4252B751226B838EED2BC50BB64 ] jswpslwf C:\Windows\system32\DRIVERS\jswpslwf.sys
09:54:31.0035 15072 jswpslwf - ok
09:54:31.0082 15072 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
09:54:31.0176 15072 kbdclass - ok
09:54:31.0363 15072 [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
09:54:31.0410 15072 kbdhid - ok
09:54:31.0519 15072 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
09:54:31.0535 15072 KeyIso - ok
09:54:31.0737 15072 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
09:54:31.0987 15072 KSecDD - ok
09:54:32.0221 15072 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
09:54:32.0361 15072 KtmRm - ok
09:54:32.0424 15072 [ 43446F197C74EF2030F84B3A4F39D570 ] LanmanServer C:\Windows\system32\srvsvc.dll
09:54:32.0439 15072 LanmanServer - ok
09:54:32.0627 15072 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
09:54:32.0720 15072 LanmanWorkstation - ok
09:54:32.0954 15072 Lavasoft Kernexplorer - ok
09:54:33.0063 15072 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
09:54:33.0095 15072 lltdio - ok
09:54:33.0297 15072 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
09:54:33.0329 15072 lltdsvc - ok
09:54:33.0375 15072 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
09:54:33.0391 15072 lmhosts - ok
09:54:33.0531 15072 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
09:54:33.0594 15072 LSI_FC - ok
09:54:33.0656 15072 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
09:54:33.0734 15072 LSI_SAS - ok
09:54:33.0875 15072 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
09:54:33.0937 15072 LSI_SCSI - ok
09:54:33.0999 15072 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
09:54:34.0046 15072 luafv - ok
09:54:34.0077 15072 lxby_device - ok
09:54:34.0140 15072 [ 500D089CE760D83DA2B6CBA681AA9949 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
09:54:34.0155 15072 MBAMProtector - ok
09:54:34.0421 15072 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
09:54:34.0483 15072 MBAMScheduler - ok
09:54:34.0623 15072 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
09:54:34.0701 15072 MBAMService - ok
09:54:34.0811 15072 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
09:54:34.0826 15072 megasas - ok
09:54:34.0998 15072 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
09:54:35.0279 15072 MegaSR - ok
09:54:35.0856 15072 [ FAFE367D032ED82E9332B4C741A20216 ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
09:54:36.0105 15072 Microsoft Office Groove Audit Service - ok
09:54:36.0183 15072 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
09:54:36.0199 15072 MMCSS - ok
09:54:36.0246 15072 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
09:54:36.0261 15072 Modem - ok
09:54:36.0480 15072 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
09:54:36.0589 15072 monitor - ok
09:54:36.0745 15072 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
09:54:36.0776 15072 mouclass - ok
09:54:36.0807 15072 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
09:54:36.0885 15072 mouhid - ok
09:54:36.0948 15072 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
09:54:36.0963 15072 MountMgr - ok
09:54:37.0088 15072 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
09:54:37.0151 15072 mpio - ok
09:54:37.0229 15072 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
09:54:37.0244 15072 mpsdrv - ok
09:54:37.0416 15072 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
09:54:37.0478 15072 MpsSvc - ok
09:54:37.0619 15072 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
09:54:37.0634 15072 Mraid35x - ok
09:54:37.0837 15072 [ 9BD4DCB5412921864A7AACDEDFBD1923 ] MREMP50 C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
09:54:37.0931 15072 MREMP50 - ok
09:54:37.0946 15072 MREMPR5 - ok
09:54:38.0009 15072 MRENDIS5 - ok
09:54:38.0071 15072 [ 07C02C892E8E1A72D6BF35004F0E9C5E ] MRESP50 C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
09:54:38.0102 15072 MRESP50 - ok
09:54:38.0211 15072 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
09:54:38.0274 15072 MRxDAV - ok
09:54:38.0321 15072 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
09:54:38.0336 15072 mrxsmb - ok
09:54:38.0461 15072 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
09:54:38.0477 15072 mrxsmb10 - ok
09:54:38.0523 15072 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
09:54:38.0555 15072 mrxsmb20 - ok
09:54:38.0586 15072 [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci C:\Windows\system32\drivers\msahci.sys
09:54:38.0601 15072 msahci - ok
09:54:38.0664 15072 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
09:54:38.0679 15072 msdsm - ok
09:54:38.0711 15072 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
09:54:38.0726 15072 MSDTC - ok
09:54:38.0773 15072 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
09:54:38.0789 15072 Msfs - ok
09:54:38.0867 15072 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
09:54:38.0882 15072 msisadrv - ok
09:54:38.0945 15072 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
09:54:38.0960 15072 MSiSCSI - ok
09:54:38.0976 15072 msiserver - ok
09:54:39.0054 15072 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
09:54:39.0069 15072 MSKSSRV - ok
09:54:39.0132 15072 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
09:54:39.0132 15072 MSPCLOCK - ok
09:54:39.0179 15072 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
09:54:39.0210 15072 MSPQM - ok
09:54:39.0303 15072 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
09:54:39.0303 15072 MsRPC - ok
09:54:39.0366 15072 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
09:54:39.0397 15072 mssmbios - ok
09:54:39.0444 15072 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
09:54:39.0475 15072 MSTEE - ok
09:54:39.0522 15072 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
09:54:39.0537 15072 Mup - ok
09:54:39.0647 15072 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
09:54:39.0693 15072 napagent - ok
09:54:39.0756 15072 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
09:54:39.0771 15072 NativeWifiP - ok
09:54:39.0849 15072 NAVENG - ok
09:54:39.0865 15072 NAVEX15 - ok
09:54:40.0489 15072 [ B498A14133BD09AD0817590ACE4470AD ] NBService C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
09:54:40.0801 15072 NBService - ok
09:54:41.0347 15072 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
09:54:41.0971 15072 NDIS - ok
09:54:42.0065 15072 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
09:54:42.0080 15072 NdisTapi - ok
09:54:42.0174 15072 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
09:54:42.0189 15072 Ndisuio - ok
09:54:42.0314 15072 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
09:54:42.0501 15072 NdisWan - ok
09:54:42.0673 15072 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
09:54:42.0907 15072 NDProxy - ok
09:54:42.0985 15072 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
09:54:43.0047 15072 NetBIOS - ok
09:54:43.0172 15072 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
09:54:43.0328 15072 netbt - ok
09:54:43.0406 15072 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
09:54:43.0422 15072 Netlogon - ok
09:54:43.0687 15072 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
09:54:44.0342 15072 Netman - ok
09:54:44.0483 15072 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
09:54:44.0545 15072 netprofm - ok
09:54:44.0592 15072 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
09:54:44.0607 15072 NetTcpPortSharing - ok
09:54:44.0685 15072 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
09:54:44.0717 15072 nfrd960 - ok
09:54:44.0841 15072 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
09:54:44.0982 15072 NlaSvc - ok
09:54:45.0263 15072 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
09:54:45.0341 15072 Npfs - ok
09:54:45.0403 15072 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
09:54:45.0465 15072 nsi - ok
09:54:45.0762 15072 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
09:54:45.0824 15072 nsiproxy - ok
09:54:46.0401 15072 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
09:54:47.0010 15072 Ntfs - ok
09:54:47.0119 15072 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
09:54:47.0166 15072 ntrigdigi - ok
09:54:47.0228 15072 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
09:54:47.0244 15072 Null - ok
09:54:49.0818 15072 [ 00832A21237BA36901B5A3E499F2E197 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
09:54:54.0123 15072 nvlddmkm - ok
09:54:54.0233 15072 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
09:54:54.0279 15072 nvraid - ok
09:54:54.0311 15072 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
09:54:54.0404 15072 nvstor - ok
09:54:54.0529 15072 [ 4876E7C3184BDF50EDE043FEF616B867 ] nvstor32 C:\Windows\system32\DRIVERS\nvstor32.sys
09:54:54.0560 15072 nvstor32 - ok
09:54:54.0654 15072 [ 24A4AD50C9B79C47DA3414B82B94C71C ] nvsvc C:\Windows\system32\nvvsvc.exe
09:54:54.0685 15072 nvsvc - ok
09:54:54.0794 15072 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
09:54:54.0825 15072 nv_agp - ok
09:54:54.0841 15072 NwlnkFlt - ok
09:54:54.0857 15072 NwlnkFwd - ok
09:54:55.0340 15072 [ E54AA592A65F317390EEE386A8821692 ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
09:54:55.0465 15072 odserv - ok
09:54:55.0527 15072 [ BE32DA025A0BE1878F0EE8D6D9386CD5 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
09:54:55.0605 15072 ohci1394 - ok
09:54:55.0746 15072 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:54:55.0855 15072 ose - ok
09:54:55.0995 15072 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
09:54:56.0183 15072 p2pimsvc - ok
09:54:56.0292 15072 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
09:54:56.0307 15072 p2psvc - ok
09:54:56.0370 15072 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
09:54:56.0432 15072 Parport - ok
09:54:56.0526 15072 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
09:54:56.0526 15072 partmgr - ok
09:54:56.0619 15072 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
09:54:56.0666 15072 Parvdm - ok
09:54:56.0744 15072 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
09:54:56.0760 15072 PcaSvc - ok
09:54:56.0994 15072 [ C96C14987F167F461266A6C6028B698B ] pcCMService C:\Program Files\Common Files\Motive\pcCMService.exe
09:54:57.0041 15072 pcCMService - ok
09:54:57.0197 15072 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
09:54:57.0243 15072 pci - ok
09:54:57.0306 15072 [ 1636D43F10416AEB483BC6001097B26C ] pciide C:\Windows\system32\drivers\pciide.sys
09:54:57.0337 15072 pciide - ok
09:54:57.0415 15072 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
09:54:57.0446 15072 pcmcia - ok
09:54:57.0633 15072 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
09:54:57.0852 15072 PEAUTH - ok
09:54:58.0070 15072 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
09:54:58.0226 15072 pla - ok
09:54:58.0304 15072 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
09:54:58.0413 15072 PlugPlay - ok
09:54:58.0601 15072 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
09:54:58.0616 15072 PNRPAutoReg - ok
09:54:58.0632 15072 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
09:54:58.0647 15072 PNRPsvc - ok
09:54:58.0819 15072 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
09:54:58.0835 15072 PolicyAgent - ok
09:54:58.0913 15072 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
09:54:58.0928 15072 PptpMiniport - ok
09:54:58.0991 15072 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
09:54:58.0991 15072 Processor - ok
09:54:59.0100 15072 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
09:54:59.0100 15072 ProfSvc - ok
09:54:59.0147 15072 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
09:54:59.0147 15072 ProtectedStorage - ok
09:54:59.0271 15072 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
09:54:59.0271 15072 PSched - ok
09:54:59.0334 15072 [ 153D02480A0A2F45785522E814C634B6 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
09:54:59.0443 15072 PxHelp20 - ok
09:54:59.0693 15072 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
09:54:59.0880 15072 ql2300 - ok
09:54:59.0911 15072 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
09:54:59.0942 15072 ql40xx - ok
09:55:00.0098 15072 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
09:55:00.0114 15072 QWAVE - ok
09:55:00.0207 15072 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
09:55:00.0223 15072 QWAVEdrv - ok
09:55:00.0441 15072 [ 70DBDAB246C18B78E2200D6401D038BE ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
09:55:00.0504 15072 RapiMgr - ok
09:55:00.0707 15072 [ 3AF684252780CF87DC2809F85B8F7591 ] RapportCerberus_43926 C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\43926\RapportCerberus32_43926.sys
09:55:00.0722 15072 RapportCerberus_43926 - ok
09:55:00.0941 15072 [ 093B6A040BCF3FD4A0FFF397BAF28330 ] RapportEI C:\Program Files\Trusteer\Rapport\bin\RapportEI.sys
09:55:00.0972 15072 RapportEI - ok
09:55:01.0175 15072 [ 35199EC35EDC7DCBA71FDA711DFB05C0 ] RapportIaso c:\programdata\trusteer\rapport\store\exts\rapportms\39624\rapportiaso.sys
09:55:01.0190 15072 RapportIaso - ok
09:55:01.0237 15072 [ 660436FBE447EBC73873EF2B0B2094B4 ] RapportKELL C:\Windows\system32\Drivers\RapportKELL.sys
09:55:01.0253 15072 RapportKELL - ok
09:55:01.0643 15072 [ 61B37C0B3FD7DA7414C20D917469BFFF ] RapportMgmtService C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
09:55:01.0767 15072 RapportMgmtService - ok
09:55:01.0986 15072 [ 3DE33A522BB73E161F20D444687E978B ] RapportPG C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys
09:55:02.0033 15072 RapportPG - ok
09:55:02.0079 15072 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
09:55:02.0142 15072 RasAcd - ok
09:55:02.0173 15072 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
09:55:02.0220 15072 RasAuto - ok
09:55:02.0267 15072 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
09:55:02.0282 15072 Rasl2tp - ok
09:55:02.0376 15072 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
09:55:02.0391 15072 RasMan - ok
09:55:02.0454 15072 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
09:55:02.0485 15072 RasPppoe - ok
09:55:02.0532 15072 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
09:55:02.0579 15072 RasSstp - ok
09:55:02.0641 15072 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
09:55:02.0688 15072 rdbss - ok
09:55:02.0735 15072 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
09:55:02.0735 15072 RDPCDD - ok
09:55:02.0828 15072 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
09:55:02.0844 15072 rdpdr - ok
09:55:02.0859 15072 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
09:55:02.0875 15072 RDPENCDD - ok
09:55:03.0047 15072 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
09:55:03.0078 15072 RDPWD - ok
09:55:03.0203 15072 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
09:55:03.0234 15072 RemoteAccess - ok
09:55:03.0343 15072 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
09:55:03.0405 15072 RemoteRegistry - ok
09:55:03.0452 15072 Roxio UPnP Renderer 11 - ok
09:55:03.0561 15072 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
09:55:03.0593 15072 RpcLocator - ok
09:55:03.0749 15072 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
09:55:03.0749 15072 RpcSs - ok
09:55:03.0811 15072 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
09:55:03.0811 15072 rspndr - ok
09:55:03.0873 15072 [ 283392AF1860ECDB5E0F8EBD7F3D72DF ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
09:55:03.0873 15072 RTL8169 - ok
09:55:03.0967 15072 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
09:55:03.0967 15072 SamSs - ok
09:55:04.0014 15072 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
09:55:04.0076 15072 sbp2port - ok
09:55:04.0092 15072 SBRE - ok
09:55:04.0232 15072 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
09:55:04.0248 15072 SBSDWSCService - ok
09:55:04.0295 15072 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
09:55:04.0295 15072 SCardSvr - ok
09:55:04.0388 15072 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
09:55:04.0404 15072 Schedule - ok
09:55:04.0497 15072 [ 46FB343BA8538009D5A24B110E8C7724 ] SCMNdisP C:\Windows\system32\DRIVERS\scmndisp.sys
09:55:04.0497 15072 SCMNdisP - ok
09:55:04.0575 15072 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
09:55:04.0575 15072 SCPolicySvc - ok
09:55:04.0607 15072 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
09:55:04.0638 15072 SDRSVC - ok
09:55:04.0716 15072 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
09:55:04.0716 15072 secdrv - ok
09:55:04.0747 15072 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
09:55:04.0763 15072 seclogon - ok
09:55:04.0778 15072 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
09:55:04.0841 15072 SENS - ok
09:55:04.0919 15072 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
09:55:04.0934 15072 Serenum - ok
09:55:04.0965 15072 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
09:55:04.0981 15072 Serial - ok
09:55:05.0012 15072 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
09:55:05.0043 15072 sermouse - ok
09:55:05.0106 15072 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
09:55:05.0137 15072 SessionEnv - ok
09:55:05.0168 15072 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
09:55:05.0168 15072 sffdisk - ok
09:55:05.0215 15072 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
09:55:05.0231 15072 sffp_mmc - ok
09:55:05.0262 15072 [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
09:55:05.0262 15072 sffp_sd - ok
09:55:05.0309 15072 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
09:55:05.0309 15072 sfloppy - ok
09:55:05.0402 15072 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
09:55:05.0449 15072 SharedAccess - ok
09:55:05.0511 15072 [ C818C44C201898399BF999BB6B35D4E3 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
09:55:05.0511 15072 ShellHWDetection - ok
09:55:05.0574 15072 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
09:55:05.0589 15072 sisagp - ok
09:55:05.0636 15072 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
09:55:05.0636 15072 SiSRaid2 - ok
09:55:05.0667 15072 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
09:55:05.0683 15072 SiSRaid4 - ok
09:55:05.0964 15072 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
09:55:06.0120 15072 slsvc - ok
09:55:06.0229 15072 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
09:55:06.0245 15072 SLUINotify - ok
09:55:06.0276 15072 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
09:55:06.0291 15072 Smb - ok
09:55:06.0369 15072 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
09:55:06.0401 15072 SNMPTRAP - ok
09:55:06.0494 15072 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
09:55:06.0510 15072 spldr - ok
09:55:06.0588 15072 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
09:55:06.0588 15072 Spooler - ok
09:55:06.0603 15072 SRTSP - ok
09:55:06.0635 15072 SRTSPX - ok
09:55:06.0837 15072 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
09:55:06.0869 15072 srv - ok
09:55:06.0978 15072 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
09:55:07.0305 15072 srv2 - ok
09:55:07.0399 15072 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
09:55:07.0446 15072 srvnet - ok
09:55:07.0524 15072 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
09:55:07.0539 15072 SSDPSRV - ok
09:55:07.0664 15072 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
09:55:07.0727 15072 SstpSvc - ok
09:55:07.0883 15072 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
09:55:08.0382 15072 stisvc - ok
09:55:08.0444 15072 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
09:55:08.0507 15072 swenum - ok
09:55:08.0569 15072 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
09:55:08.0585 15072 swprv - ok
09:55:08.0631 15072 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
09:55:08.0694 15072 Symc8xx - ok
09:55:08.0850 15072 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
09:55:08.0897 15072 Sym_hi - ok
09:55:08.0943 15072 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
09:55:08.0959 15072 Sym_u3 - ok
09:55:09.0053 15072 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
09:55:09.0146 15072 SysMain - ok
09:55:09.0177 15072 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
09:55:09.0193 15072 TabletInputService - ok
09:55:09.0255 15072 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
09:55:09.0271 15072 TapiSrv - ok
09:55:09.0365 15072 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
09:55:09.0396 15072 TBS - ok
09:55:09.0474 15072 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
09:55:09.0489 15072 Tcpip - ok
09:55:09.0521 15072 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
09:55:09.0536 15072 Tcpip6 - ok
09:55:09.0583 15072 [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
09:55:09.0583 15072 tcpipreg - ok
09:55:09.0630 15072 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
09:55:09.0645 15072 TDPIPE - ok
09:55:09.0708 15072 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
09:55:09.0739 15072 TDTCP - ok
09:55:09.0817 15072 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
09:55:09.0833 15072 tdx - ok
09:55:09.0879 15072 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
09:55:09.0895 15072 TermDD - ok
09:55:10.0051 15072 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
09:55:10.0082 15072 TermService - ok
09:55:10.0113 15072 [ C818C44C201898399BF999BB6B35D4E3 ] Themes C:\Windows\system32\shsvcs.dll
09:55:10.0129 15072 Themes - ok
09:55:10.0176 15072 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
09:55:10.0191 15072 THREADORDER - ok
09:55:10.0269 15072 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
09:55:10.0285 15072 TrkWks - ok
09:55:10.0363 15072 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
09:55:10.0363 15072 TrustedInstaller - ok
09:55:10.0457 15072 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
09:55:10.0457 15072 tssecsrv - ok
09:55:10.0519 15072 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
09:55:10.0519 15072 tunmp - ok
09:55:10.0597 15072 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
09:55:10.0597 15072 tunnel - ok
09:55:10.0659 15072 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
09:55:10.0675 15072 uagp35 - ok
09:55:10.0800 15072 [ 65B162122DC65BA553F8EADBC4F50A50 ] UdfReadr C:\Windows\system32\drivers\UdfReadr.sys
09:55:10.0815 15072 UdfReadr - ok
09:55:10.0878 15072 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
09:55:10.0925 15072 udfs - ok
09:55:10.0987 15072 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
09:55:11.0003 15072 UI0Detect - ok
09:55:11.0049 15072 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
09:55:11.0049 15072 uliagpkx - ok
09:55:11.0096 15072 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
09:55:11.0112 15072 uliahci - ok
09:55:11.0143 15072 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
09:55:11.0159 15072 UlSata - ok
09:55:11.0221 15072 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
09:55:11.0237 15072 ulsata2 - ok
09:55:11.0252 15072 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
09:55:11.0252 15072 umbus - ok
09:55:11.0330 15072 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
09:55:11.0346 15072 upnphost - ok
09:55:11.0439 15072 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
09:55:11.0455 15072 usbccgp - ok
09:55:11.0486 15072 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
09:55:11.0486 15072 usbcir - ok
09:55:11.0533 15072 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
09:55:11.0549 15072 usbehci - ok
09:55:11.0595 15072 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
09:55:11.0595 15072 usbhub - ok
09:55:11.0673 15072 [ CE697FEE0D479290D89BEC80DFE793B7 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
09:55:11.0673 15072 usbohci - ok
09:55:11.0705 15072 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
09:55:11.0736 15072 usbprint - ok
09:55:11.0783 15072 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
09:55:11.0798 15072 usbscan - ok
09:55:11.0861 15072 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
09:55:11.0861 15072 USBSTOR - ok
09:55:11.0985 15072 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
09:55:11.0985 15072 usbuhci - ok
09:55:12.0048 15072 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
09:55:12.0079 15072 UxSms - ok
09:55:12.0141 15072 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
09:55:12.0157 15072 vds - ok
09:55:12.0219 15072 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
09:55:12.0251 15072 vga - ok
09:55:12.0297 15072 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
09:55:12.0313 15072 VgaSave - ok
09:55:12.0344 15072 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
09:55:12.0453 15072 viaagp - ok
09:55:12.0547 15072 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
09:55:12.0625 15072 ViaC7 - ok
09:55:12.0656 15072 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
09:55:12.0750 15072 viaide - ok
09:55:12.0797 15072 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
09:55:12.0812 15072 volmgr - ok
09:55:12.0890 15072 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
09:55:12.0906 15072 volmgrx - ok
09:55:13.0015 15072 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
09:55:13.0046 15072 volsnap - ok
09:55:13.0155 15072 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
09:55:13.0171 15072 vsmraid - ok
09:55:13.0296 15072 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
09:55:13.0389 15072 VSS - ok
09:55:13.0483 15072 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
09:55:13.0514 15072 W32Time - ok
09:55:13.0545 15072 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
09:55:13.0561 15072 WacomPen - ok
09:55:13.0623 15072 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
09:55:13.0639 15072 Wanarp - ok
09:55:13.0655 15072 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
09:55:13.0655 15072 Wanarpv6 - ok
09:55:13.0795 15072 [ 0A716C08CB13C3A8F4F51E882DBF7416 ] wanatw C:\Windows\system32\DRIVERS\wanatw4.sys
09:55:13.0826 15072 wanatw - ok
09:55:13.0889 15072 [ EB9A99AB5D17B1727034FF191E6448D7 ] WANMiniportService C:\Windows\wanmpsvc.exe
09:55:13.0904 15072 WANMiniportService - ok
09:55:14.0076 15072 [ 779F9C90D3FE9C70B6FFD8EF035F3E83 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
09:55:14.0169 15072 WcesComm - ok
09:55:14.0247 15072 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
09:55:14.0403 15072 wcncsvc - ok
09:55:14.0497 15072 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
09:55:14.0544 15072 WcsPlugInService - ok
09:55:14.0637 15072 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
09:55:14.0653 15072 Wd - ok
09:55:14.0684 15072 [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
09:55:14.0715 15072 Wdf01000 - ok
09:55:14.0840 15072 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
09:55:14.0856 15072 WdiServiceHost - ok
09:55:14.0871 15072 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
09:55:14.0887 15072 WdiSystemHost - ok
09:55:14.0918 15072 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
09:55:14.0981 15072 WebClient - ok
09:55:15.0027 15072 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
09:55:15.0074 15072 Wecsvc - ok
09:55:15.0105 15072 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
09:55:15.0121 15072 wercplsupport - ok
09:55:15.0183 15072 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
09:55:15.0199 15072 WerSvc - ok
09:55:15.0308 15072 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
09:55:15.0308 15072 WinDefend - ok
09:55:15.0324 15072 WinHttpAutoProxySvc - ok
09:55:15.0402 15072 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
09:55:15.0417 15072 Winmgmt - ok
09:55:15.0480 15072 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
09:55:15.0511 15072 WinRM - ok
09:55:15.0620 15072 [ 676F4B665BDD8053EAA53AC1695B8074 ] winusb C:\Windows\system32\DRIVERS\winusb.sys
09:55:15.0620 15072 winusb - ok
09:55:15.0683 15072 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
09:55:15.0776 15072 Wlansvc - ok
09:55:15.0917 15072 [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
09:55:15.0948 15072 wlidsvc - ok
09:55:15.0979 15072 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
09:55:15.0979 15072 WmiAcpi - ok
09:55:16.0026 15072 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
09:55:16.0057 15072 wmiApSrv - ok
09:55:16.0151 15072 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
09:55:16.0182 15072 WMPNetworkSvc - ok
09:55:16.0244 15072 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
09:55:16.0260 15072 WPCSvc - ok
09:55:16.0322 15072 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
09:55:16.0353 15072 WPDBusEnum - ok
09:55:16.0385 15072 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
09:55:16.0385 15072 ws2ifsl - ok
09:55:16.0447 15072 [ 4160CBE59D9B5BE22E4C3897E8DB9D56 ] WsAudio_DeviceS(1) C:\Windows\system32\drivers\WsAudio_DeviceS(1).sys
09:55:16.0447 15072 WsAudio_DeviceS(1) - ok
09:55:16.0525 15072 [ 4160CBE59D9B5BE22E4C3897E8DB9D56 ] WsAudio_DeviceS(2) C:\Windows\system32\drivers\WsAudio_DeviceS(2).sys
09:55:16.0541 15072 WsAudio_DeviceS(2) - ok
09:55:16.0587 15072 [ 4160CBE59D9B5BE22E4C3897E8DB9D56 ] WsAudio_DeviceS(3) C:\Windows\system32\drivers\WsAudio_DeviceS(3).sys
09:55:16.0587 15072 WsAudio_DeviceS(3) - ok
09:55:16.0634 15072 [ 4160CBE59D9B5BE22E4C3897E8DB9D56 ] WsAudio_DeviceS(4) C:\Windows\system32\drivers\WsAudio_DeviceS(4).sys
09:55:16.0634 15072 WsAudio_DeviceS(4) - ok
09:55:16.0681 15072 [ 4160CBE59D9B5BE22E4C3897E8DB9D56 ] WsAudio_DeviceS(5) C:\Windows\system32\drivers\WsAudio_DeviceS(5).sys
09:55:16.0697 15072 WsAudio_DeviceS(5) - ok
09:55:16.0743 15072 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\System32\wscsvc.dll
09:55:16.0759 15072 wscsvc - ok
09:55:16.0775 15072 WSearch - ok
09:55:16.0915 15072 [ 0001DC46B513A37B1E8151335CA6F28E ] WSWNA1100 C:\Program Files\NETGEAR\WNA1100\WifiSvc.exe
09:55:16.0915 15072 WSWNA1100 - ok
09:55:17.0040 15072 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
09:55:17.0087 15072 wuauserv - ok
09:55:17.0133 15072 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
09:55:17.0133 15072 WUDFRd - ok
09:55:17.0165 15072 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
09:55:17.0180 15072 wudfsvc - ok
09:55:17.0227 15072 ================ Scan global ===============================
09:55:17.0243 15072 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
09:55:17.0367 15072 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
09:55:17.0399 15072 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
09:55:17.0523 15072 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
09:55:17.0539 15072 [Global] - ok
09:55:17.0539 15072 ================ Scan MBR ==================================
09:55:17.0555 15072 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
09:55:18.0272 15072 \Device\Harddisk0\DR0 - ok
09:55:18.0272 15072 ================ Scan VBR ==================================
09:55:18.0303 15072 [ 2DB6FCFF85BE3AF5EBE8FD378C42C536 ] \Device\Harddisk0\DR0\Partition1
09:55:18.0335 15072 \Device\Harddisk0\DR0\Partition1 - ok
09:55:18.0335 15072 ============================================================
09:55:18.0335 15072 Scan finished
09:55:18.0335 15072 ============================================================
09:55:18.0381 14916 Detected object count: 0
09:55:18.0381 14916 Actual detected object count: 0
10:02:13.0139 15212 Deinitialize success

---------------------------------

note: this AdwCleaner log file was displayed after the pc was rebooted, but it found 1 thing...

Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Scheduled Update for Ask Toolbar

reboot log:

# AdwCleaner v2.007 - Logfile created 11/13/2012 at 10:39:59
# Updated 06/11/2012 by Xplode
# Operating system : Windows Vista ™ Home Basic Service Pack 2 (32 bits)
# User : Steve - STEVE-PC
# Boot Mode : Normal
# Running from : C:\Users\Steve\Desktop\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

*************************

AdwCleaner[R4].txt - [1069 octets] - [13/11/2012 10:02:54]
AdwCleaner[S4].txt - [582 octets] - [13/11/2012 10:39:59]

########## EOF - C:\AdwCleaner[S4].txt - [641 octets] ##########

------------------------------


mini toolbox has been scanning for approx 2 hrs so i will leave it running cos i have to go out for 2 hrs, maybe the info i provided will be a start. toolbax scan to follow.

#7 mr.squinter

mr.squinter
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:05:56 AM

Posted 13 November 2012 - 11:34 AM

latest - mini toolbox has been scanning for 5 hrs, 30 mins. its reached the point of 'getting office session errors'. i'm off out again now. part of the log has been saved which i've enclosed. is it normal to scan for this long?

MiniToolBox by Farbar Version: 10-11-2012 02
Ran by Steve (administrator) on 13-11-2012 at 10:59:49
Windows Vista ™ Home Basic Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com

There are 15274 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

NETGEAR WNA1100 N150 Wireless USB Adapter = Wireless Network Connection (Connected)
Realtek RTL8101 Family PCI-E Fast Ethernet NIC (NDIS 6.0) = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global defaultcurhoplimit=128 icmpredirects=enabled
set interface interface="Local Area Connection" forwarding=disabled advertise=disabled mtu=576 metric=0 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled
set interface interface="ppp_3" forwarding=disabled advertise=disabled mtu=576 metric=0 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Steve-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : home

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : NETGEAR WNA1100 N150 Wireless USB Adapter
Physical Address. . . . . . . . . : E0-91-F5-42-C6-E3
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::c15b:9594:c29e:c7eb%20(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.65(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : 13 November 2012 10:42:48
Lease Expires . . . . . . . . . . : 14 November 2012 10:42:47
Default Gateway . . . . . . . . . : 192.168.1.254
DHCP Server . . . . . . . . . . . : 192.168.1.254
DHCPv6 IAID . . . . . . . . . . . : 434147829
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-11-59-4B-7E-00-21-97-C5-A2-1C
DNS Servers . . . . . . . . . . . : 192.168.1.254
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek RTL8101 Family PCI-E Fast Ethernet NIC (NDIS 6.0)
Physical Address. . . . . . . . . : 00-21-97-C5-A2-1C
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{D2B7E229-FE4E-4838-88F8-43247EBC0476}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:73b8:856:26d:3f57:febe(Preferred)
Link-local IPv6 Address . . . . . : fe80::856:26d:3f57:febe%12(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 13:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 6TO4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 14:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{2E9F4EA1-73A0-4165-90EA-92B373E3D23D}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 15:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{310C4480-BD9E-445F-93A9-F5108FE89633}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 17:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 6TO4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 18:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : isatap.home
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: api.home
Address: 192.168.1.254

Name: google.com
Addresses: 2a00:1450:4009:805::1005
173.194.34.164
173.194.34.160
173.194.34.161
173.194.34.169
173.194.34.167
173.194.34.166
173.194.34.162
173.194.34.165
173.194.34.163
173.194.34.168
173.194.34.174



Pinging google.com [173.194.34.167] with 32 bytes of data:

Reply from 173.194.34.167: bytes=32 time=30ms TTL=52

Reply from 173.194.34.167: bytes=32 time=30ms TTL=52



Ping statistics for 173.194.34.167:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 30ms, Maximum = 30ms, Average = 30ms

Server: api.home
Address: 192.168.1.254

Name: yahoo.com
Addresses: 72.30.38.140
98.139.183.24
98.138.253.109



Pinging yahoo.com [98.139.183.24] with 32 bytes of data:

Reply from 98.139.183.24: bytes=32 time=258ms TTL=44

Reply from 98.139.183.24: bytes=32 time=140ms TTL=45



Ping statistics for 98.139.183.24:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 140ms, Maximum = 258ms, Average = 199ms



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time=18ms TTL=128

Reply from 127.0.0.1: bytes=32 time=3ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 3ms, Maximum = 18ms, Average = 10ms

===========================================================================
Interface List
20 ...e0 91 f5 42 c6 e3 ...... NETGEAR WNA1100 N150 Wireless USB Adapter
10 ...00 21 97 c5 a2 1c ...... Realtek RTL8101 Family PCI-E Fast Ethernet NIC (NDIS 6.0)
1 ........................... Software Loopback Interface 1
19 ...00 00 00 00 00 00 00 e0 isatap.{D2B7E229-FE4E-4838-88F8-43247EBC0476}
12 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
13 ...00 00 00 00 00 00 00 e0 6TO4 Adapter
15 ...00 00 00 00 00 00 00 e0 isatap.{2E9F4EA1-73A0-4165-90EA-92B373E3D23D}
16 ...00 00 00 00 00 00 00 e0 isatap.{310C4480-BD9E-445F-93A9-F5108FE89633}
17 ...00 00 00 00 00 00 00 e0 6TO4 Adapter
21 ...00 00 00 00 00 00 00 e0 isatap.home
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.65 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.65 281
192.168.1.65 255.255.255.255 On-link 192.168.1.65 281
192.168.1.255 255.255.255.255 On-link 192.168.1.65 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.65 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.65 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
12 18 ::/0 On-link
1 306 ::1/128 On-link
12 18 2001::/32 On-link
12 266 2001:0:5ef5:73b8:856:26d:3f57:febe/128
On-link
20 281 fe80::/64 On-link
12 266 fe80::/64 On-link
12 266 fe80::856:26d:3f57:febe/128
On-link
20 281 fe80::c15b:9594:c29e:c7eb/128
On-link
1 306 ff00::/8 On-link
12 266 ff00::/8 On-link
20 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/13/2012 10:52:03 AM) (Source: Application Hang) (User: )
Description: The program WNA1100.exe version 1.1.4.27 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: b08
Start Time: 01cdc18c2d2b40aa
Termination Time: 904

Error: (11/13/2012 10:46:56 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (11/13/2012 10:43:19 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/13/2012 06:40:33 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (11/13/2012 06:37:19 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/12/2012 09:15:51 PM) (Source: Application Error) (User: )
Description: Faulting application emule.exe, version 0.50.0.4, time stamp 0x4bbc81c8, faulting module emule.exe, version 0.50.0.4, time stamp 0x4bbc81c8, exception code 0xc0000005, fault offset 0x0013b4da,
process id 0x11a4, application start time 0xemule.exe0.

Error: (11/12/2012 07:41:02 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (11/12/2012 07:41:02 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (11/12/2012 07:37:37 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/12/2012 06:07:00 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.


System errors:
=============
Error: (11/13/2012 10:53:43 AM) (Source: DCOM) (User: )
Description: {E60687F7-01A1-40AA-86AC-DB1CBF673334}

Error: (11/13/2012 10:51:23 AM) (Source: Service Control Manager) (User: )
Description: Windows Update

Error: (11/13/2012 10:51:23 AM) (Source: Service Control Manager) (User: )
Description: Windows Media Player Network Sharing Service%%1053

Error: (11/13/2012 10:51:23 AM) (Source: Service Control Manager) (User: )
Description: 30000Windows Media Player Network Sharing Service

Error: (11/13/2012 10:47:24 AM) (Source: Service Control Manager) (User: )
Description: Windows Font Cache Service%%1053

Error: (11/13/2012 10:47:24 AM) (Source: Service Control Manager) (User: )
Description: 30000Windows Font Cache Service

Error: (11/13/2012 10:45:56 AM) (Source: DCOM) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (11/13/2012 10:43:49 AM) (Source: Service Control Manager) (User: )
Description: SBRE
SRTSP
SRTSPX

Error: (11/13/2012 10:43:34 AM) (Source: Service Control Manager) (User: )
Description: AOL ACS%%3

Error: (11/13/2012 09:44:14 AM) (Source: Service Control Manager) (User: )
Description: WAN Miniport (ATW) Service1


Microsoft Office Sessions:
=========================

#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,072 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:56 AM

Posted 13 November 2012 - 12:41 PM

That is way too long Can you terminate it.
How is it running nOw?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 mr.squinter

mr.squinter
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:05:56 AM

Posted 13 November 2012 - 12:59 PM

just got home - mini toolbar still running so i stopped it. a spybot scan still finds smitfraud-c, kgb keylogger, sc keylogger. fake alert.gen, fraud.anti security tool, and lots of other possible undesirables. but it reports 'no immediate threat'. should i try and run mini toolbar again?

#10 mr.squinter

mr.squinter
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:05:56 AM

Posted 13 November 2012 - 02:16 PM

just tried to run another mini toolbox scan but it reached the same point as before then stopped responding. i had to stop it via the task manager. in both scans this was the last info it displayed...

'getting office sessions errors: 425'

it counts down to 425 then stops responding. it takes less than 5 mins of scanning to reach this point.

also, twice today explorer has stopped responding. i left it running and it responded ok but took apprx 45 secs. just a co-incidence???

#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,072 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:56 AM

Posted 13 November 2012 - 04:57 PM

I think we should get a deeper look. Please follow this Preparation Guide and post in a new topic.
If Gmer won't run,skip it.

Let me know if all went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 mr.squinter

mr.squinter
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:05:56 AM

Posted 14 November 2012 - 03:16 AM

thanks - it will take me a while to do, inbetween work. so bear with me. also, pc is running really slow.

#13 mr.squinter

mr.squinter
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:05:56 AM

Posted 14 November 2012 - 05:49 AM

new topic posted, as per the last instructions

#14 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,072 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:56 AM

Posted 14 November 2012 - 11:09 AM

Now that your log is properly posted, you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a Malware Removal Team member, nor should you continue to ask for help elsewhere. Doing so can result in system changes which may not show it the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

From this point on the Malware Removal Team should be the only members that you take advice from, until they have verified your log as clean.

Please be patient. It may take a while to get a response because the Malware Removal Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the Malware Removal Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRL Team member is already assisting you and not open the thread to respond.



If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

To avoid confusion, I am closing this topic.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users