Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Software failing to run


  • Please log in to reply
14 replies to this topic

#1 PCPeebrain

PCPeebrain

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:02:01 AM

Posted 03 January 2013 - 02:02 PM

I wasn't really sure where to put this, so apologies if it's in the wrong place.

One of my PC's, running xp pro sp 3, has over the last few days developed an odd problem. Basically some (but not all) of the sofware on the computer will no longer run. You click the icon, the timer turns, then nothing. It doesn't crash or anything, just doesn't start the app. Looking in the task manager, the application is not showing, but in the process table you can see the software processes. So far I've found 4 that are doing it, including Mozilla Firefox, Sonic Record Now, Eagle and one other that I've just completely forgotten lol.

I've tried uninstalling and reinstalling Sonic and Firefox, neither of which made a difference, still does exactly the same thing.

Not sure where to start!

Edited by PCPeebrain, 03 January 2013 - 02:02 PM.


BC AdBot (Login to Remove)

 


#2 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,612 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:06:01 PM

Posted 03 January 2013 - 02:05 PM

Does this happen ins Safe Mode?

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#3 PCPeebrain

PCPeebrain
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:02:01 AM

Posted 03 January 2013 - 02:14 PM

Good Question, didn't think to try, I shall now.

#4 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,612 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:06:01 PM

Posted 03 January 2013 - 02:33 PM

You may want to run a couple of scans to see if you are infected.


Please download and scan with SUPERAntiSpyware Free
  • Double-click SUPERAntiSypware.exe and use the default settings for installation.
  • An icon will be created on your desktop. Double-click that icon to launch the program.
  • If it will not start, go to Start > All Prgrams > SUPERAntiSpyware and click on Alternate Start.
  • If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download them from here. Double-click on the hyperlink for Download Installer and save SASDEFINITIONS.EXE to your desktop. Then double-click on SASDEFINITIONS.EXE to install the definitions.)
  • In the Main Menu, click the Preferences... button.
  • Click the "General and Startup" tab, and under Start-up Options, make sure "Start SUPERAntiSpyware when Windows starts" box is unchecked.
  • Click the "Scanning Control" tab, and under Scanner Options, make sure the following are checked (leave all others unchecked):
    • Close browsers before scanning.
    • Scan for tracking cookies.
    • Terminate memory threats before quarantining.
  • Click the "Close" button to leave the control center screen and exit the program.
  • Do not run a scan just yet.
Reboot your computer in "Safe Mode" using the F8 method. To do this, restart your computer and after hearing your computer beep once during startup (but before the Windows icon appears) press the F8 key repeatedly. A menu will appear with several options. Use the arrow keys to navigate and select the option to run Windows in "Safe Mode".

Scan with SUPERAntiSpyware as follows:
  • Launch the program and back on the main screen, under "Scan for Harmful Software" click Scan your computer.
  • On the left, make sure you check C:\Fixed Drive.
  • On the right, under "Complete Scan", choose Perform Complete Scan and click "Next".
  • After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "OK".
  • Make sure everything has a checkmark next to it and click "Next".
  • A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
  • If asked if you want to reboot, click "Yes" and reboot normally.
  • To retrieve the removal information after reboot, launch SUPERAntiSpyware again.
    • Click Preferences, then click the Statistics/Logs tab.
    • Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.
    • If there are several logs, click the current dated log and press View log. A text file will open in your default text editor.
    • Please copy and paste the Scan Log results in your next reply.
  • Click Close to exit the program.



Please download Malwarebytes' Anti-Malware from here.

Next disconnect your system from the internet, and your router, then...

Double Click mbam-setup.exe to install the application.

* Launch Malwarebytes' Anti-Malware, then click Finish.
* Once the program has loaded, select "Perform Quick Scan", then click Scan.
* The scan may take some time to finish,so please be patient.
* When the scan is complete, click OK, then Show Results to view the results.
* Make sure that everything is checked, and click Remove Selected.
* When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
* The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
* Copy&Paste the entire report in your next reply.

Extra Note:
If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediatly.

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#5 PCPeebrain

PCPeebrain
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:02:01 AM

Posted 06 January 2013 - 12:18 PM

okay... I followed the above, unfortunately when it got to the last bit when the MBAM log tried to open it instantly shut down. Now, it won't start unless I start in safe mode. The scrolling bars go along as though it's going to start, then they stop and it goes back to the bios boot page then the 'windows failed to start' page.

Of course, in typical fashion, it's a Dell, I received no install disks and never got round to making any as it was only a backup machine... Do Microsoft actually have them downloadable anywhere or are they their usual helpful self's?

Anyway... logs:

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 01/04/2013 at 02:00 AM

Application Version : 5.6.1014

Core Rules Database Version : 9818
Trace Rules Database Version: 7630

Scan type : Complete Scan
Total Scan Time : 05:46:54

Operating System Information
Windows XP Professional 32-bit, Service Pack 3 (Build 5.01.2600)
Administrator

Memory items scanned : 230
Memory threats detected : 1
Registry items scanned : 36001
Registry threats detected : 15
File items scanned : 151541
File threats detected : 245

PUP.bProtector
HKU\S-1-5-21-1979974304-1384060015-3613342143-1005\Software\Microsoft\Internet Explorer\Main#bProtector Start Page [ http://www.claro-search.com/?affID=116677&tt=4912_6&babsrc=HP_ss&mntrId=b4ac88ad0000000000000080c8509ae6 ]
HKU\S-1-5-21-1979974304-1384060015-3613342143-1005\Software\Microsoft\Internet Explorer\SearchScopes#bProtectorDefaultScope [ {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} ]
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693}
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693}#DisplayName
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693}#UninstallString
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693}#UninstalLinkPath
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693}#Publisher
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693}#URLInfoAbout
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693}#HelpLink

Adware.BProtector
HKLM\System\ControlSet001\Services\BROWSER MANAGER
C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\BROWSER MANAGER\2.5.976.107\{C16C1CCB-7046-4E5C-A2F3-533AD2FEC8E8}\MNGR.EXE
HKLM\System\ControlSet001\Enum\Root\LEGACY_BROWSER MANAGER
C:\DOCUME~1\ALLUSE~1\APPLIC~1\BROWSE~1\25976~1.107\{C16C1~1\MNGR.DLL
C:\DOCUME~1\ALLUSE~1\APPLIC~1\BROWSE~1\25976~1.107\{C16C1~1\MNGR.DLL
HKLM\System\ControlSet002\Services\BROWSER MANAGER
HKLM\System\ControlSet002\Enum\Root\LEGACY_BROWSER MANAGER
HKLM\System\CurrentControlSet\Services\BROWSER MANAGER
HKLM\System\CurrentControlSet\Enum\Root\LEGACY_BROWSER MANAGER
C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\BROWSER MANAGER\2.5.976.107\{C16C1CCB-7046-4E5C-A2F3-533AD2FEC8E8}\MNGR.DLL
C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\BROWSER MANAGER\2.5.976.107\{C16C1CCB-7046-4E5C-A2F3-533AD2FEC8E8}\UNINSTALL.EXE
C:\WINDOWS\Prefetch\MNGR.EXE-0F9E0A66.pf

Trojan.Agent/Gen-Falcomp[Cont]
H:\BACKUPS INC SERVER\SERVER DOCS AT LEAVING\DOWNLOADS\CUTE SOFTWARE\CUTEHTML.EXE
H:\PROF COM GEA CURRENT\DOWNLOADS\CUTE SOFTWARE\CUTEHTML.EXE

Trojan.Agent/Gen-ImageDocFake
H:\DEANS DOCS\DOCUMENTS\MY SCANS\FINANCE\VISA\1991_2001\SCAN0494.JPG
I:\DEANS DOCS\USERS\LAPTOP\DOCUMENTS\MY SCANS\FINANCE\VISA\1991_2001\SCAN0494.JPG
C:\DEANS DOCS\DOCUMENTS\MY SCANS\FINANCE\VISA\1991_2001\SCAN0494.JPG

Adware.Tracking Cookie
statse.webtrendslive.com [ C:\DOCUMENTS AND SETTINGS\DRK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\6GYYA7F7.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.kontera.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.legolas-media.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adbrite.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.qnsr.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.collective-media.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.interclick.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.interclick.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.qsstats.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
in.getclicky.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
o1.qnsr.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.qsstats.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.imrworldwide.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.imrworldwide.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.specificclick.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.apmebf.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaplex.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.doubleclick.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.liveperson.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
sales.liveperson.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.liveperson.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.yieldmanager.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
adserver1.backbeatmedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ru4.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ru4.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.apmebf.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www6.addfreestats.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tradedoubler.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tradedoubler.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.eyewonder.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.interclick.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.247realmedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.amazon-adsystem.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.amazon-adsystem.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atwola.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.weborama.fr [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.aimfar.solution.weborama.fr [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.weborama.fr [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.kantarmedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.bs.serving-sys.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.dmtracker.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.survey.g.doubleclick.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adserver.adtechus.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.burstnet.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.247realmedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adinterax.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adinterax.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adviva.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.lucidmedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
eas.apm.emediate.eu [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
eas.apm.emediate.eu [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
eas.apm.emediate.eu [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
m1.webstats.motigo.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.technoratimedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.technoratimedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tacoda.at.atwola.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tacoda.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.at.atwola.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tacoda.at.atwola.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tacoda.at.atwola.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tacoda.at.atwola.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tacoda.at.atwola.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.at.atwola.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tacoda.at.atwola.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ar.atwola.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adxpose.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.chitika.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mm.chitika.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adtech.de [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.pro-market.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.trinitymirror.112.2o7.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaite.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaite.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaite.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaite.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.mediaite.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaite.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
wstat.wibiya.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.solocpm.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.solocpm.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.solocpm.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.solocpm.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.solocpm.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.solocpm.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.solocpm.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.solocpm.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.solocpm.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.solocpm.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.solocpm.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.solocpm.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.solocpm.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.solocpm.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.solocpm.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.solocpm.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.solocpm.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.solocpm.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.solocpm.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tradedoubler.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tradedoubler.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tradedoubler.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.gostats.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.gostats.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.www.burstnet.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.burstnet.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.burstnet.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.burstnet.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.linksynergy.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.linksynergy.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
counters.gigya.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.histats.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.histats.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.unrulymedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.getclicky.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.static.getclicky.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.yadro.ru [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
s04.flagcounter.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.bravenet.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.advertisingarchives.co.uk [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.advertisingarchives.co.uk [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertisingarchives.co.uk [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertisingarchives.co.uk [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertisingarchives.co.uk [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.advertisingarchives.co.uk [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.zedo.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.zedo.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.zedo.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.zedo.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.statcounter.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.advertolog.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.advertolog.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.advertolog.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.unrulymedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.haymarketbusinesspublications.122.2o7.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.pro-market.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.pro-market.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.2o7.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
testdata.coremetrics.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.legolas-media.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.legolas-media.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.legolas-media.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.legolas-media.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ads.gamersmedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ads.gamersmedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adbrite.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adbrite.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adbrite.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adbrite.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.gamersmedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ads.gamersmedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.h.atdmt.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.h.atdmt.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.h.atdmt.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.h.atdmt.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.virginmedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tribalfusion.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediacollege.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediacollege.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediacollege.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.questionmarket.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.fastclick.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.apmebf.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.commission-junction.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.commission-junction.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.commission-junction.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.commission-junction.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.c1.atdmt.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.c1.atdmt.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.adform.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.estat.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.collective-media.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.collective-media.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.collective-media.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.collective-media.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.collective-media.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.xiti.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.smartadserver.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ww251.smartadserver.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.questionmarket.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad2.adfarm1.adition.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adfarm1.adition.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adbrite.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.adform.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adform.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.lucidmedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaplex.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.doubleclick.net [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
accounts.google.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
accounts.google.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
statse.webtrendslive.com [ C:\DOCUMENTS AND SETTINGS\DRK\LOCAL SETTINGS\APPLICATION DATA\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

PUP.CNETInstaller
C:\DOCUMENTS AND SETTINGS\DRK\MY DOCUMENTS\DOWNLOADS\CNET2_ESDPK-PLX4-DWN11-PAGEPLUSSTARTEREDITION_SETUP_EXE.EXE
C:\DOCUMENTS AND SETTINGS\DRK\MY DOCUMENTS\DOWNLOADS\CNET_PANDORARECOVERY2_1_1SETUP_EXE.EXE

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Database version: v2013.01.04.04

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
DRK :: DRKSWORK [administrator]

04/01/2013 08:37:42
mbam-log-2013-01-04 (08-37-42).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 233726
Time elapsed: 6 minute(s), 12 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#6 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,612 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:06:01 PM

Posted 06 January 2013 - 12:25 PM

I have requested that this topic be moved to the Am I Infected forum where you will be in the best hands for cleaning your computer.Posted Image

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,338 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:01 PM

Posted 06 January 2013 - 12:34 PM

Hello, I movedthis to the Am I Infected forum.

From safe mode lets first try restoring the system to a couple days ago and see if you can boot normally. Windows XP System Restore Guide
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 PCPeebrain

PCPeebrain
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:02:01 AM

Posted 06 January 2013 - 01:39 PM

Hi Boopme, Many thanks for the assistance. I've completed a System Restore back to the 23rd Dec (I believe the computer was infected on 26th Dec when recovering info off a damaged hard drive) and we're back up and running. Got the usual 'windows has renamed following files and folders' so I expect a few hiccups but otherwise back up and running :)

I'm slightly worried about running SAS or MAMB again but presume I'll need to to ensure no re-infection?

#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,338 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:01 PM

Posted 06 January 2013 - 01:51 PM

So we have normal mode back..

Run these.. pretty quick scans..


MiniToolBox
Please download MiniToolBox, save it to your desktop and run it.Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

>>>>

Please download Rkill by Grinler and save it to your desktop.Link 1
Link 2
  • Double-click on the Rkill desktop icon to run the tool.
  • If using Vista, right-click on it and Run As Administrator.
  • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
  • If not, delete the file, then download and use the one provided in Link 2.
  • If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.
  • If the tool does not run from any of the links provided, please let me know.
Do not reboot the computer, you will need to run the application again.


>>>>>>

TDSS Alt
Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 PCPeebrain

PCPeebrain
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:02:01 AM

Posted 06 January 2013 - 02:07 PM

okies - results as follows:

Minitoolbox:

MiniToolBox by Farbar Version: 25-11-2012
Ran by DRK (administrator) on 06-01-2013 at 18:58:49
Running from "C:\Documents and Settings\DRK\Desktop"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

Intel® PRO/100 VE Network Connection = Local Area Connection (Connected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp

# Interface IP Configuration for "Bluetooth Network Connection"

set address name="Bluetooth Network Connection" source=dhcp
set dns name="Bluetooth Network Connection" source=dhcp register=PRIMARY
set wins name="Bluetooth Network Connection" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : DRKSWORK

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Unknown

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No



Ethernet adapter Local Area Connection:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Intel® PRO/100 VE Network Connection

Physical Address. . . . . . . . . : 00-12-3F-9F-03-DD

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 192.168.0.4

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.0.1

DHCP Server . . . . . . . . . . . : 192.168.0.1

DNS Servers . . . . . . . . . . . : 212.69.36.3

212.69.40.3

Lease Obtained. . . . . . . . . . : 06 January 2013 18:18:39

Lease Expires . . . . . . . . . . : 07 January 2013 18:18:39



Ethernet adapter Bluetooth Network Connection:



Media State . . . . . . . . . . . : Media disconnected

Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)

Physical Address. . . . . . . . . : 00-80-C8-50-9A-E6

Server: resolver0.idnet.net
Address: 212.69.36.3

Name: google.com
Addresses: 173.194.41.137, 173.194.41.142, 173.194.41.128, 173.194.41.129
173.194.41.130, 173.194.41.131, 173.194.41.132, 173.194.41.133, 173.194.41.134
173.194.41.135, 173.194.41.136



Pinging google.com [173.194.41.128] with 32 bytes of data:



Reply from 173.194.41.128: bytes=32 time=18ms TTL=58

Reply from 173.194.41.128: bytes=32 time=17ms TTL=58



Ping statistics for 173.194.41.128:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 17ms, Maximum = 18ms, Average = 17ms

Server: resolver0.idnet.net
Address: 212.69.36.3

Name: yahoo.com
Addresses: 98.138.253.109, 98.139.183.24, 72.30.38.140



Pinging yahoo.com [98.139.183.24] with 32 bytes of data:



Reply from 98.139.183.24: bytes=32 time=775ms TTL=53

Reply from 98.139.183.24: bytes=32 time=688ms TTL=50



Ping statistics for 98.139.183.24:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 688ms, Maximum = 775ms, Average = 731ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x10003 ...00 12 3f 9f 03 dd ...... Intel® PRO/100 VE Network Connection - Packet Scheduler Miniport
0x10004 ...00 80 c8 50 9a e6 ...... Bluetooth Device (Personal Area Network)
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.4 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
169.254.0.0 255.255.0.0 192.168.0.4 192.168.0.4 20
192.168.0.0 255.255.255.0 192.168.0.4 192.168.0.4 20
192.168.0.4 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.0.255 255.255.255.255 192.168.0.4 192.168.0.4 20
224.0.0.0 240.0.0.0 192.168.0.4 192.168.0.4 20
255.255.255.255 255.255.255.255 192.168.0.4 192.168.0.4 1
255.255.255.255 255.255.255.255 192.168.0.4 10004 1
Default Gateway: 192.168.0.1
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\wshbth.dll [108032] (Microsoft Corporation)
Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/06/2013 06:19:10 PM) (Source: Windows Search Service) (User: )
Description: The application cannot be initialized.

Context: Windows Application


Details:
The content index cannot be read. (0xc0041800)

Error: (01/06/2013 06:19:10 PM) (Source: Windows Search Service) (User: )
Description: The gatherer object cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
The content index cannot be read. (0xc0041800)

Error: (01/06/2013 06:19:10 PM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
The content index cannot be read. (0xc0041800)

Error: (01/06/2013 06:19:09 PM) (Source: Windows Search Service) (User: )
Description: The search service has detected corrupted data files in the index. The service will attempt to automatically correct this problem by rebuilding the index.

Context: Windows Application, SystemIndex Catalog


Details:
0xc0041801 (0xc0041801)

Error: (01/06/2013 06:19:03 PM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 18 4.0.168.192.in-addr.arpa. PTR DRKSWORK.local.

Error: (01/06/2013 06:19:03 PM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.0.4:5353 20 4.0.168.192.in-addr.arpa. PTR DRKSWORK-2.local.

Error: (01/04/2013 08:29:40 AM) (Source: Windows Search Service) (User: )
Description: The entry <C:\WINDOWS\SOFTWAREDISTRIBUTION\WUREDIR\7971F918-A847-4430-9279-4A52D1EFE18D\WUREDIR.CAB.BAK> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (01/04/2013 08:27:12 AM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 18 4.0.168.192.in-addr.arpa. PTR DRKSWORK.local.

Error: (01/04/2013 08:27:12 AM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.0.4:5353 20 4.0.168.192.in-addr.arpa. PTR DRKSWORK-2.local.

Error: (01/03/2013 08:41:58 AM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 18 5.0.168.192.in-addr.arpa. PTR DRKSWORK.local.


System errors:
=============
Error: (01/06/2013 06:19:38 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated with service-specific error 2147749155 (0x80040D23).

Error: (01/06/2013 05:53:55 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (01/06/2013 05:52:51 PM) (Source: DCOM) (User: DRKSWORK)
Description: DCOM got error "%%1084" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (01/06/2013 05:49:04 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
AFD
AvgLdx86
AvgMfx86
AvgTdiX
Fips
intelppm
IPSec
MRxSmb
NetBIOS
NetBT
RasAcd
Rdbss
SASDIFSV
SASKUTIL
Tcpip

Error: (01/06/2013 05:49:04 PM) (Source: Service Control Manager) (User: )
Description: The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error:
%%31

Error: (01/06/2013 05:49:04 PM) (Source: Service Control Manager) (User: )
Description: The Bonjour Service service depends on the TCP/IP Protocol Driver service which failed to start because of the following error:
%%31

Error: (01/06/2013 05:49:04 PM) (Source: Service Control Manager) (User: )
Description: The Apple Mobile Device service depends on the TCP/IP Protocol Driver service which failed to start because of the following error:
%%31

Error: (01/06/2013 05:49:04 PM) (Source: Service Control Manager) (User: )
Description: The TCP/IP NetBIOS Helper service depends on the AFD service which failed to start because of the following error:
%%31

Error: (01/06/2013 05:49:04 PM) (Source: Service Control Manager) (User: )
Description: The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error:
%%31

Error: (01/06/2013 05:49:04 PM) (Source: Service Control Manager) (User: )
Description: The DHCP Client service depends on the NetBios over Tcpip service which failed to start because of the following error:
%%31


Microsoft Office Sessions:
=========================
Error: (01/06/2013 06:19:10 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application


Details:
The content index cannot be read. (0xc0041800)

Error: (01/06/2013 06:19:10 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
The content index cannot be read. (0xc0041800)

Error: (01/06/2013 06:19:10 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
The content index cannot be read. (0xc0041800)
Search.TripoliIndexer

Error: (01/06/2013 06:19:09 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
0xc0041801 (0xc0041801)

Error: (01/06/2013 06:19:03 PM) (Source: Bonjour Service)(User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 18 4.0.168.192.in-addr.arpa. PTR DRKSWORK.local.

Error: (01/06/2013 06:19:03 PM) (Source: Bonjour Service)(User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.0.4:5353 20 4.0.168.192.in-addr.arpa. PTR DRKSWORK-2.local.

Error: (01/04/2013 08:29:40 AM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)
C:\WINDOWS\SOFTWAREDISTRIBUTION\WUREDIR\7971F918-A847-4430-9279-4A52D1EFE18D\WUREDIR.CAB.BAK

Error: (01/04/2013 08:27:12 AM) (Source: Bonjour Service)(User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 18 4.0.168.192.in-addr.arpa. PTR DRKSWORK.local.

Error: (01/04/2013 08:27:12 AM) (Source: Bonjour Service)(User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.0.4:5353 20 4.0.168.192.in-addr.arpa. PTR DRKSWORK-2.local.

Error: (01/03/2013 08:41:58 AM) (Source: Bonjour Service)(User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 18 5.0.168.192.in-addr.arpa. PTR DRKSWORK.local.


=========================== Installed Programs ============================

Acronis True Image Home (Version: 13.0.7046)
Adobe Bridge 1.0 (Version: 001.000.004)
Adobe Common File Installer (Version: 1.00.0000)
Adobe Creative Suite 2
Adobe Flash Player 10 ActiveX (Version: 10.1.53.64)
Adobe Flash Player 10 Plugin (Version: 10.2.153.1)
Adobe Help Center 1.0 (Version: 001.000.000)
Adobe Illustrator CS2 (Version: 12.000.000)
Adobe InDesign CS2 (Version: 004.000.000)
Adobe Photoshop CS2 (Version: 9.0)
Adobe Reader 7.1.0 (Version: 7.1.0)
Adobe Stock Photos 1.0 (Version: 1.0.8)
Adobe SVG Viewer 3.0 (Version: 3.0)
Adobe Version Cue CS2 (Version: 2.0.1)
Apple Application Support (Version: 2.3.2)
Apple Mobile Device Support (Version: 6.0.1.3)
Apple Software Update (Version: 2.1.3.127)
Audacity 1.2.6
AVG 9.0
AVG Security Toolbar
Bonjour (Version: 3.0.0.10)
Browser Manager
Canon MG5100 series MP Drivers
CCleaner (Version: 3.00)
Claro Chrome Toolbar (Version: 1.0.0.2)
Claro LTD toolbar
COSMOSMotion 2007 SP0 (Version: 15.00.9021)
COSMOSWorks 2007 SP0 (Version: 15.00.9021)
Creative MediaSource
CuteFTP 5.0 XP
Debugging Tools for Windows (x86) (Version: 6.11.1.404)
Dell Driver Reset Tool (Version: 1.02.0000)
Dell Media Experience (Version: 3.00)
Dell System Restore (Version: 2.00.0000)
Document Express DjVu Plug-in (Version: 6.1.27999)
DWGeditor (Version: 15.00.9022)
EAGLE 5.10.0 (Version: 5.10.0)
eDrawings 2007 (Version: 7.0.627)
ESET Online Scanner v3
Facebook Plug-In
forteManager (Version: 2.73.004)
FotoMorph version 13.7.1 (Version: 13.7.1)
Google Chrome (Version: 23.0.1271.97)
HandBrake 0.9.8 (Version: 0.9.8)
Imprudence Viewer 1.3.0 (SSE2 optimized)
Intel® Graphics Media Accelerator Driver (Version: 6.14.10.4410)
Intel® PRO Network Connections Software v9.2.4.11
Intel® PROSafe for Wired Connections (Version: 8.00.0005)
Intel® PROSafe for Wired Connections (Version: 99.99.9999)
Internet Explorer Default Page (Version: 1.00.03)
iTunes (Version: 11.0.0.163)
Java Auto Updater (Version: 2.0.2.4)
Java DB 10.5.3.0 (Version: 10.5.3.0)
Java™ 6 Update 31 (Version: 6.0.310)
Java™ SE Development Kit 6 Update 21 (Version: 1.6.0.210)
Junk Mail filter update (Version: 14.0.8117.416)
Learn2 Player (Uninstall Only)
LogMeIn (Version: 4.0.680)
Macromedia Shockwave Player (Version: 10.1.0.11)
Malwarebytes' Anti-Malware
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 1.1 Security Update (KB2698023)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft Office 97, Professional Edition
Microsoft Report Viewer Redistributable 2005
Microsoft Report Viewer Redistributable 2005 (Version: 8.0.56405)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Mozilla Firefox (3.6.13) (Version: 3.6.13 (en-GB))
Mozilla Thunderbird (3.1.17) (Version: 3.1.17 (en-GB))
MSN Toolbar
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 6 Service Pack 2 (KB973686) (Version: 6.20.2003.0)
My Way Search Assistant (Version: 1.0.256)
PandoraRecovery (Remove Only)
PC Wizard 2008.1.85.1
PowerDVD 5.5
PrimoPDF (Version: 3.2)
PrimoPDF Redistribution Package (Version: 1.0.0.0)
QuickTime (Version: 7.72.80.56)
Radegast
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealPlayer (Version: 15.0.6)
RealUpgrade 1.1 (Version: 1.1.0)
SDK (Version: 1.1.007)
SeaMonkey (2.7.2) (Version: 2.7.2 (en-US))
Segoe UI (Version: 14.0.4327.805)
Serif PagePlus Starter Edition (Version: 2.0.2.009)
Skype Toolbars (Version: 1.0.4051)
Skype™ 5.10 (Version: 5.10.116)
SolidWorks 2007 SP0 (Version: 15.1.0003)
SolidWorks Explorer 2007 sp0 (Version: 15.00.9022)
SolidWorks Installation Manager (Version: 15.00.9022)
Sonic DLA (Version: 4.98)
Sonic MyDVD LE (Version: 6.1.1)
Sonic RecordNow Audio (Version: 2.0.0)
Sonic RecordNow Copy (Version: 2.0.0)
Sonic RecordNow Data (Version: 2.0.0.1)
Sonic Update Manager (Version: 3.0.0)
Sound Blaster Live! 24-bit
Suite Specific (Version: 2.0.0)
SUPERAntiSpyware (Version: 4.39.1002)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Windows Internet Explorer 8 (KB976662) (Version: 1)
Update for Windows Internet Explorer 8 (KB982632) (Version: 1)
Update for Windows XP (KB2141007) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2616676-v2) (Version: 2)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2661254-v2) (Version: 2)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB2736233) (Version: 1)
Update for Windows XP (KB2749655) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Wajam (Version: 1.50)
WebFldrs XP (Version: 9.50.7523)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Live Call (Version: 14.0.8117.0416)
Windows Live Communications Platform (Version: 14.0.8117.416)
Windows Live Essentials (Version: 14.0.8117.0416)
Windows Live Essentials (Version: 14.0.8117.416)
Windows Live Mail (Version: 14.0.8117.0416)
Windows Live Messenger (Version: 14.0.8117.0416)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Media Format 11 runtime
Windows Media Player 11
WinRAR archiver
XviD MPEG-4 Video Codec (Version: XviD-1.0.3-20122004)
Yahoo! BrowserPlus 2.7.1
Yahoo! Messenger
Yahoo! Search Protection
Yahoo! Software Update
Yahoo! Toolbar

========================= Memory info: ===================================

Percentage of memory in use: 44%
Total physical RAM: 2550.07 MB
Available physical RAM: 1420.68 MB
Total Pagefile: 4438.03 MB
Available Pagefile: 3214.21 MB
Total Virtual: 2047.88 MB
Available Virtual: 1967.59 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:145.96 GB) (Free:90.3 GB) NTFS
2 Drive d: (Disc) (CDROM) (Total:0.57 GB) (Free:0 GB) UDF
3 Drive e: (Slave P1) (Fixed) (Total:97.65 GB) (Free:20.17 GB) NTFS
4 Drive h: (Slave P2) (Fixed) (Total:67.61 GB) (Free:25.39 GB) NTFS
5 Drive i: (Slave P3) (Fixed) (Total:67.62 GB) (Free:39.5 GB) NTFS

========================= Users: ========================================

User accounts for \\DRKSWORK

Administrator DRK Guest
HelpAssistant Other Oiks stephen
SUPPORT_388945a0


**** End of log ****

RKill:

Rkill 2.4.5 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 01/06/2013 07:01:21 PM in x86 mode.
Windows Version: Microsoft Windows XP Service Pack 3

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* C:\WINDOWS\system32\CTsvcCDA.EXE (PID: 432) [WD-HEUR]

1 proccess terminated!

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* No issues found.

Searching for Missing Digital Signatures:

* C:\WINDOWS\System32\drivers\mqac.sys [NoSig]
+-> C:\WINDOWS\ServicePackFiles\i386\mqac.sys : 92,544 : 04/13/2008 07:39 PM : 70c14f5cca5cf73f8a645c73a01d8726 [Pos Repl]
+-> C:\WINDOWS\SoftwareDistribution\Download\bdc721baeee8bba4d985bebe7bf57f8b\sp1qfe\ip\mqac.sys : 67,456 : 03/23/2005 00:55 AM : e3ad46935f5da5197edd54440aa31ea2 [Pos Repl]
+-> C:\WINDOWS\SoftwareDistribution\Download\dd9ab5193501484cf5e6884fa1d22f9e\mqac.sys : 92,544 : 04/13/2008 07:39 PM : 70c14f5cca5cf73f8a645c73a01d8726 [Pos Repl]
+-> C:\WINDOWS\system32\dllcache\mqac.sys : 91,776 : 06/22/2009 07:48 AM : eee50bf24caeedb515a8f3b22756d3bb [Pos Repl]

Checking HOSTS File:

* HOSTS file entries found:

127.0.0.1 localhost

Program finished at: 01/06/2013 07:02:31 PM
Execution time: 0 hours(s), 1 minute(s), and 9 seconds(s)


TDSS Killer:

19:04:02.0874 2132 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
19:04:03.0014 2132 ============================================================
19:04:03.0014 2132 Current date / time: 2013/01/06 19:04:03.0014
19:04:03.0014 2132 SystemInfo:
19:04:03.0014 2132
19:04:03.0014 2132 OS Version: 5.1.2600 ServicePack: 3.0
19:04:03.0014 2132 Product type: Workstation
19:04:03.0014 2132 ComputerName: DRKSWORK
19:04:03.0014 2132 UserName: DRK
19:04:03.0014 2132 Windows directory: C:\WINDOWS
19:04:03.0014 2132 System windows directory: C:\WINDOWS
19:04:03.0014 2132 Processor architecture: Intel x86
19:04:03.0014 2132 Number of processors: 2
19:04:03.0014 2132 Page size: 0x1000
19:04:03.0014 2132 Boot type: Normal boot
19:04:03.0014 2132 ============================================================
19:04:04.0452 2132 Drive \Device\Harddisk0\DR0 - Size: 0x2540BE4000 (149.01 Gb), SectorSize: 0x200, Cylinders: 0x4BFC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
19:04:04.0467 2132 Drive \Device\Harddisk1\DR1 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
19:04:04.0467 2132 ============================================================
19:04:04.0467 2132 \Device\Harddisk0\DR0:
19:04:04.0467 2132 MBR partitions:
19:04:04.0467 2132 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x17886, BlocksNum 0x123EC0EE
19:04:04.0467 2132 \Device\Harddisk1\DR1:
19:04:04.0467 2132 MBR partitions:
19:04:04.0467 2132 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xC34F28D
19:04:04.0467 2132 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0xC34F2CC, BlocksNum 0x87389FA
19:04:04.0467 2132 \Device\Harddisk1\DR1\Partition3: MBR, Type 0x7, StartLBA 0x14A87CC6, BlocksNum 0x873C8BB
19:04:04.0467 2132 ============================================================
19:04:04.0499 2132 C: <-> \Device\Harddisk0\DR0\Partition1
19:04:04.0545 2132 E: <-> \Device\Harddisk1\DR1\Partition1
19:04:04.0592 2132 H: <-> \Device\Harddisk1\DR1\Partition2
19:04:04.0624 2132 I: <-> \Device\Harddisk1\DR1\Partition3
19:04:04.0624 2132 ============================================================
19:04:04.0624 2132 Initialize success
19:04:04.0624 2132 ============================================================
19:04:34.0452 3764 ============================================================
19:04:34.0452 3764 Scan started
19:04:34.0452 3764 Mode: Manual; TDLFS;
19:04:34.0452 3764 ============================================================
19:04:36.0702 3764 ================ Scan system memory ========================
19:04:36.0717 3764 System memory - ok
19:04:36.0717 3764 ================ Scan services =============================
19:04:36.0795 3764 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
19:04:36.0795 3764 !SASCORE - ok
19:04:36.0889 3764 Abiosdsk - ok
19:04:36.0920 3764 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
19:04:36.0920 3764 abp480n5 - ok
19:04:37.0014 3764 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:04:37.0014 3764 ACPI - ok
19:04:37.0045 3764 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
19:04:37.0045 3764 ACPIEC - ok
19:04:37.0124 3764 [ 60C2ACD6949045EF4777A04E38CE270D ] AcrSch2Svc C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
19:04:37.0217 3764 AcrSch2Svc - ok
19:04:37.0280 3764 [ 8B46D5A1D3EF08232C04D0EAFB871FB2 ] Adobe LM Service C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
19:04:37.0295 3764 Adobe LM Service - ok
19:04:37.0420 3764 [ 41D15EAD554396BF35B7C5246AD47A28 ] Adobe Version Cue CS2 C:\Program Files\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe
19:04:37.0420 3764 Adobe Version Cue CS2 - ok
19:04:37.0530 3764 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
19:04:37.0530 3764 adpu160m - ok
19:04:37.0561 3764 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
19:04:37.0561 3764 aec - ok
19:04:37.0592 3764 [ 4FA0CA536DAB995BAF48BD41B4E2ED00 ] afcdp C:\WINDOWS\system32\DRIVERS\afcdp.sys
19:04:37.0608 3764 afcdp - ok
19:04:37.0920 3764 [ 8B333E7FF3147A63B15975B512364466 ] afcdpsrv C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
19:04:38.0389 3764 afcdpsrv - ok
19:04:38.0436 3764 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
19:04:38.0436 3764 AFD - ok
19:04:38.0483 3764 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
19:04:38.0483 3764 agp440 - ok
19:04:38.0499 3764 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
19:04:38.0530 3764 agpCPQ - ok
19:04:38.0577 3764 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
19:04:38.0577 3764 Aha154x - ok
19:04:38.0624 3764 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
19:04:38.0624 3764 aic78u2 - ok
19:04:38.0624 3764 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
19:04:38.0639 3764 aic78xx - ok
19:04:38.0670 3764 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
19:04:38.0670 3764 Alerter - ok
19:04:38.0686 3764 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
19:04:38.0686 3764 ALG - ok
19:04:38.0717 3764 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
19:04:38.0717 3764 AliIde - ok
19:04:38.0717 3764 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
19:04:38.0717 3764 alim1541 - ok
19:04:38.0733 3764 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
19:04:38.0733 3764 amdagp - ok
19:04:38.0780 3764 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
19:04:38.0780 3764 amsint - ok
19:04:38.0842 3764 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:04:38.0842 3764 Apple Mobile Device - ok
19:04:38.0874 3764 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
19:04:38.0874 3764 AppMgmt - ok
19:04:38.0936 3764 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
19:04:38.0936 3764 asc - ok
19:04:38.0967 3764 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
19:04:38.0967 3764 asc3350p - ok
19:04:38.0983 3764 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
19:04:38.0983 3764 asc3550 - ok
19:04:39.0108 3764 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
19:04:39.0108 3764 aspnet_state - ok
19:04:39.0155 3764 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:04:39.0155 3764 AsyncMac - ok
19:04:39.0202 3764 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
19:04:39.0202 3764 atapi - ok
19:04:39.0217 3764 Atdisk - ok
19:04:39.0233 3764 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:04:39.0233 3764 Atmarpc - ok
19:04:39.0280 3764 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
19:04:39.0280 3764 AudioSrv - ok
19:04:39.0295 3764 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
19:04:39.0295 3764 audstub - ok
19:04:39.0420 3764 [ D45B7995761253A92AB071D576114F28 ] AVG Security Toolbar Service C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe
19:04:39.0436 3764 AVG Security Toolbar Service - ok
19:04:39.0499 3764 [ AA054CD537357F03D5BA6ABA7562B35F ] avg9emc C:\Program Files\AVG\AVG9\avgemc.exe
19:04:39.0592 3764 avg9emc - ok
19:04:39.0655 3764 [ C4D15594DB5BE042D3346EA58DF87D89 ] avg9wd C:\Program Files\AVG\AVG9\avgwdsvc.exe
19:04:39.0702 3764 avg9wd - ok
19:04:39.0733 3764 [ B8C187439D27ABA430DD69FDCF1FA657 ] AvgLdx86 C:\WINDOWS\System32\Drivers\avgldx86.sys
19:04:39.0749 3764 AvgLdx86 - ok
19:04:39.0780 3764 [ 80FF2B1B7EEDA966394F0BAA895BBF4B ] AvgMfx86 C:\WINDOWS\System32\Drivers\avgmfx86.sys
19:04:39.0780 3764 AvgMfx86 - ok
19:04:39.0795 3764 [ 5BBCD8646074A3AF4EE9B321D12C2B64 ] AvgRkx86 C:\WINDOWS\system32\Drivers\avgrkx86.sys
19:04:39.0795 3764 AvgRkx86 - ok
19:04:39.0827 3764 [ 9A7A93388F503A34E7339AE7F9997449 ] AvgTdiX C:\WINDOWS\System32\Drivers\avgtdix.sys
19:04:39.0827 3764 AvgTdiX - ok
19:04:39.0858 3764 [ 57D83B82117C2DDB9D7E9AEA691CEDFC ] avgtp C:\WINDOWS\system32\drivers\avgtpx86.sys
19:04:39.0858 3764 avgtp - ok
19:04:39.0874 3764 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
19:04:39.0874 3764 Beep - ok
19:04:39.0920 3764 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
19:04:39.0920 3764 BITS - ok
19:04:39.0999 3764 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
19:04:40.0014 3764 Bonjour Service - ok
19:04:40.0045 3764 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
19:04:40.0045 3764 Browser - ok
19:04:40.0139 3764 [ EBBA16A88F517BFB1B7681ABF006C8B0 ] Browser Manager C:\Documents and Settings\All Users\Application Data\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\mngr.exe
19:04:40.0155 3764 Browser Manager - ok
19:04:40.0186 3764 [ B279426E3C0C344893ED78A613A73BDE ] BthEnum C:\WINDOWS\system32\DRIVERS\BthEnum.sys
19:04:40.0186 3764 BthEnum - ok
19:04:40.0186 3764 [ FCA6F069597B62D42495191ACE3FC6C1 ] BTHMODEM C:\WINDOWS\system32\DRIVERS\bthmodem.sys
19:04:40.0186 3764 BTHMODEM - ok
19:04:40.0202 3764 [ 80602B8746D3738F5886CE3D67EF06B6 ] BthPan C:\WINDOWS\system32\DRIVERS\bthpan.sys
19:04:40.0202 3764 BthPan - ok
19:04:40.0233 3764 [ 662BFD909447DD9CC15B1A1C366583B4 ] BTHPORT C:\WINDOWS\system32\Drivers\BTHport.sys
19:04:40.0233 3764 BTHPORT - ok
19:04:40.0264 3764 [ F4C43C66471B87996D95DB7A3A664A37 ] BthServ C:\WINDOWS\System32\bthserv.dll
19:04:40.0264 3764 BthServ - ok
19:04:40.0280 3764 [ 61364CD71EF63B0F038B7E9DF00F1EFA ] BTHUSB C:\WINDOWS\system32\Drivers\BTHUSB.sys
19:04:40.0295 3764 BTHUSB - ok
19:04:40.0358 3764 catchme - ok
19:04:40.0389 3764 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
19:04:40.0389 3764 cbidf - ok
19:04:40.0389 3764 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
19:04:40.0389 3764 cbidf2k - ok
19:04:40.0436 3764 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
19:04:40.0436 3764 cd20xrnt - ok
19:04:40.0452 3764 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
19:04:40.0452 3764 Cdaudio - ok
19:04:40.0483 3764 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
19:04:40.0483 3764 Cdfs - ok
19:04:40.0514 3764 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:04:40.0514 3764 Cdrom - ok
19:04:40.0514 3764 Changer - ok
19:04:40.0545 3764 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
19:04:40.0545 3764 CiSvc - ok
19:04:40.0561 3764 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
19:04:40.0561 3764 ClipSrv - ok
19:04:40.0592 3764 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:04:40.0592 3764 clr_optimization_v2.0.50727_32 - ok
19:04:40.0639 3764 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:04:40.0655 3764 clr_optimization_v4.0.30319_32 - ok
19:04:40.0670 3764 [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
19:04:40.0670 3764 CmdIde - ok
19:04:40.0686 3764 COMSysApp - ok
19:04:40.0717 3764 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
19:04:40.0717 3764 Cpqarray - ok
19:04:40.0764 3764 [ 3C8B6609712F4FF78E521F6DCFC4032B ] Creative Service for CDROM Access C:\WINDOWS\system32\CTsvcCDA.EXE
19:04:40.0764 3764 Creative Service for CDROM Access - ok
19:04:40.0780 3764 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
19:04:40.0780 3764 CryptSvc - ok
19:04:40.0811 3764 [ 8DB84DE3AAB34A8B4C2F644EFF41CD76 ] ctsfm2k C:\WINDOWS\system32\DRIVERS\ctsfm2k.sys
19:04:40.0889 3764 ctsfm2k - ok
19:04:40.0936 3764 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
19:04:40.0952 3764 dac2w2k - ok
19:04:40.0983 3764 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
19:04:40.0983 3764 dac960nt - ok
19:04:41.0014 3764 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
19:04:41.0030 3764 DcomLaunch - ok
19:04:41.0061 3764 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
19:04:41.0061 3764 Dhcp - ok
19:04:41.0092 3764 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
19:04:41.0092 3764 Disk - ok
19:04:41.0108 3764 dmadmin - ok
19:04:41.0155 3764 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
19:04:41.0155 3764 dmboot - ok
19:04:41.0170 3764 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\DRIVERS\dmio.sys
19:04:41.0170 3764 dmio - ok
19:04:41.0186 3764 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
19:04:41.0186 3764 dmload - ok
19:04:41.0264 3764 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
19:04:41.0264 3764 dmserver - ok
19:04:41.0280 3764 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
19:04:41.0280 3764 DMusic - ok
19:04:41.0311 3764 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
19:04:41.0311 3764 Dnscache - ok
19:04:41.0358 3764 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
19:04:41.0358 3764 Dot3svc - ok
19:04:41.0405 3764 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
19:04:41.0405 3764 dpti2o - ok
19:04:41.0420 3764 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
19:04:41.0420 3764 drmkaud - ok
19:04:41.0436 3764 [ 96BC8F872F0270C10EDC3931F1C03776 ] drvmcdb C:\WINDOWS\system32\drivers\drvmcdb.sys
19:04:41.0436 3764 drvmcdb - ok
19:04:41.0452 3764 [ 5AFBEC7A6AC61B211633DFDB1D9E0C89 ] drvnddm C:\WINDOWS\system32\drivers\drvnddm.sys
19:04:41.0452 3764 drvnddm - ok
19:04:41.0483 3764 [ CE1BEC2949CD2EE87B666ABF485D001F ] DTSRVC C:\Program Files\Common Files\Portrait Displays\Shared\DTSRVC.exe
19:04:41.0483 3764 DTSRVC - ok
19:04:41.0514 3764 [ D57A8FC800B501AC05B10D00F66D127A ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
19:04:41.0530 3764 E100B - ok
19:04:41.0577 3764 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
19:04:41.0577 3764 EapHost - ok
19:04:41.0608 3764 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
19:04:41.0608 3764 ERSvc - ok
19:04:41.0624 3764 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
19:04:41.0639 3764 Eventlog - ok
19:04:41.0670 3764 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\System32\es.dll
19:04:41.0670 3764 EventSystem - ok
19:04:41.0702 3764 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
19:04:41.0702 3764 Fastfat - ok
19:04:41.0717 3764 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
19:04:41.0733 3764 FastUserSwitchingCompatibility - ok
19:04:41.0764 3764 [ E97D6A8684466DF94FF3BC24FB787A07 ] Fax C:\WINDOWS\system32\fxssvc.exe
19:04:41.0780 3764 Fax - ok
19:04:41.0811 3764 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
19:04:41.0811 3764 Fdc - ok
19:04:41.0842 3764 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
19:04:41.0842 3764 Fips - ok
19:04:41.0874 3764 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
19:04:41.0874 3764 Flpydisk - ok
19:04:41.0905 3764 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
19:04:41.0905 3764 FltMgr - ok
19:04:41.0967 3764 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:04:41.0967 3764 FontCache3.0.0.0 - ok
19:04:41.0983 3764 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:04:41.0983 3764 Fs_Rec - ok
19:04:42.0014 3764 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:04:42.0014 3764 Ftdisk - ok
19:04:42.0045 3764 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
19:04:42.0045 3764 GEARAspiWDM - ok
19:04:42.0061 3764 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:04:42.0061 3764 Gpc - ok
19:04:42.0092 3764 [ D64A40B94602158E40527AE95E7A9193 ] Hardlock C:\WINDOWS\system32\drivers\hardlock.sys
19:04:42.0108 3764 Hardlock - ok
19:04:42.0217 3764 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:04:42.0233 3764 helpsvc - ok
19:04:42.0249 3764 [ 7BD2DE4C85EB4241EED57672B16A7D8D ] HidBth C:\WINDOWS\system32\DRIVERS\hidbth.sys
19:04:42.0249 3764 HidBth - ok
19:04:42.0264 3764 HidServ - ok
19:04:42.0264 3764 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:04:42.0280 3764 HidUsb - ok
19:04:42.0327 3764 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
19:04:42.0327 3764 hkmsvc - ok
19:04:42.0358 3764 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
19:04:42.0358 3764 hpn - ok
19:04:42.0389 3764 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
19:04:42.0389 3764 HTTP - ok
19:04:42.0436 3764 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
19:04:42.0436 3764 HTTPFilter - ok
19:04:42.0452 3764 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
19:04:42.0452 3764 i2omgmt - ok
19:04:42.0483 3764 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
19:04:42.0483 3764 i2omp - ok
19:04:42.0530 3764 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:04:42.0530 3764 i8042prt - ok
19:04:42.0592 3764 [ 5A8E05F1D5C36ABD58CFFA111EB325EA ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
19:04:42.0624 3764 ialm - ok
19:04:42.0686 3764 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:04:42.0717 3764 idsvc - ok
19:04:42.0733 3764 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
19:04:42.0733 3764 Imapi - ok
19:04:42.0764 3764 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
19:04:42.0811 3764 ImapiService - ok
19:04:42.0842 3764 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
19:04:42.0842 3764 ini910u - ok
19:04:42.0858 3764 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
19:04:42.0858 3764 IntelIde - ok
19:04:42.0874 3764 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
19:04:42.0874 3764 intelppm - ok
19:04:42.0889 3764 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
19:04:42.0889 3764 Ip6Fw - ok
19:04:42.0920 3764 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:04:42.0920 3764 IpFilterDriver - ok
19:04:42.0952 3764 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:04:42.0952 3764 IpInIp - ok
19:04:42.0983 3764 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:04:42.0983 3764 IpNat - ok
19:04:43.0030 3764 [ EF1C51222117B37AFBFF8F4642EA8C62 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
19:04:43.0139 3764 iPod Service - ok
19:04:43.0233 3764 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:04:43.0233 3764 IPSec - ok
19:04:43.0342 3764 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
19:04:43.0342 3764 IRENUM - ok
19:04:43.0389 3764 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:04:43.0389 3764 isapnp - ok
19:04:43.0655 3764 [ 0A5709543986843D37A92290B7838340 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
19:04:43.0670 3764 JavaQuickStarterService - ok
19:04:43.0686 3764 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:04:43.0686 3764 Kbdclass - ok
19:04:43.0702 3764 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
19:04:43.0702 3764 kbdhid - ok
19:04:43.0733 3764 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
19:04:43.0733 3764 kmixer - ok
19:04:43.0749 3764 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
19:04:43.0749 3764 KSecDD - ok
19:04:43.0780 3764 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
19:04:43.0780 3764 lanmanserver - ok
19:04:43.0811 3764 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
19:04:43.0827 3764 lanmanworkstation - ok
19:04:43.0827 3764 lbrtfdc - ok
19:04:43.0858 3764 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
19:04:43.0858 3764 LmHosts - ok
19:04:43.0920 3764 [ 3D67740573A70C6C9B1614982CFAC4C5 ] LMIGuardianSvc C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe
19:04:43.0920 3764 LMIGuardianSvc - ok
19:04:43.0952 3764 [ 4F69FAAABB7DB0D43E327C0B6AAB40FC ] LMIInfo C:\Program Files\LogMeIn\x86\RaInfo.sys
19:04:43.0952 3764 LMIInfo - ok
19:04:43.0952 3764 [ D95F3217C9DFA24ECA582ED8E435E221 ] LMIMaint C:\Program Files\LogMeIn\x86\RaMaint.exe
19:04:43.0967 3764 LMIMaint - ok
19:04:43.0983 3764 [ 4477689E2D8AE6B78BA34C9AF4CC1ED1 ] lmimirr C:\WINDOWS\system32\DRIVERS\lmimirr.sys
19:04:43.0983 3764 lmimirr - ok
19:04:43.0999 3764 LMIRfsClientNP - ok
19:04:44.0014 3764 [ 3FAA563DDF853320F90259D455A01D79 ] LMIRfsDriver C:\WINDOWS\system32\drivers\LMIRfsDriver.sys
19:04:44.0014 3764 LMIRfsDriver - ok
19:04:44.0061 3764 [ 432618FA75B61059D2C57D6A7E55147A ] LogMeIn C:\Program Files\LogMeIn\x86\LogMeIn.exe
19:04:44.0077 3764 LogMeIn - ok
19:04:44.0092 3764 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
19:04:44.0092 3764 Messenger - ok
19:04:44.0124 3764 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
19:04:44.0124 3764 mnmdd - ok
19:04:44.0202 3764 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
19:04:44.0202 3764 mnmsrvc - ok
19:04:44.0249 3764 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
19:04:44.0249 3764 Modem - ok
19:04:44.0280 3764 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:04:44.0280 3764 Mouclass - ok
19:04:44.0311 3764 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:04:44.0311 3764 mouhid - ok
19:04:44.0311 3764 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
19:04:44.0311 3764 MountMgr - ok
19:04:44.0342 3764 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
19:04:44.0358 3764 mraid35x - ok
19:04:44.0358 3764 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:04:44.0358 3764 MRxDAV - ok
19:04:44.0405 3764 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:04:44.0405 3764 MRxSmb - ok
19:04:44.0405 3764 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
19:04:44.0405 3764 MSDTC - ok
19:04:44.0420 3764 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
19:04:44.0420 3764 Msfs - ok
19:04:44.0436 3764 MSIServer - ok
19:04:44.0467 3764 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:04:44.0467 3764 MSKSSRV - ok
19:04:44.0467 3764 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:04:44.0467 3764 MSPCLOCK - ok
19:04:44.0483 3764 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
19:04:44.0483 3764 MSPQM - ok
19:04:44.0530 3764 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:04:44.0530 3764 mssmbios - ok
19:04:44.0561 3764 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
19:04:44.0561 3764 Mup - ok
19:04:44.0608 3764 [ 9121D8FFFF773C66BBF4955E4F7AAC23 ] NAL C:\WINDOWS\system32\Drivers\iqvw32.sys
19:04:44.0608 3764 NAL - ok
19:04:44.0670 3764 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
19:04:44.0686 3764 napagent - ok
19:04:44.0733 3764 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
19:04:44.0733 3764 NDIS - ok
19:04:44.0764 3764 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:04:44.0764 3764 NdisTapi - ok
19:04:44.0780 3764 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:04:44.0780 3764 Ndisuio - ok
19:04:44.0795 3764 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:04:44.0795 3764 NdisWan - ok
19:04:44.0827 3764 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
19:04:44.0827 3764 NDProxy - ok
19:04:44.0874 3764 [ 1352E1648213551923A0A822E441553C ] Netaapl C:\WINDOWS\system32\DRIVERS\netaapl.sys
19:04:44.0874 3764 Netaapl - ok
19:04:44.0889 3764 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
19:04:44.0889 3764 NetBIOS - ok
19:04:44.0920 3764 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
19:04:44.0920 3764 NetBT - ok
19:04:44.0967 3764 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
19:04:44.0967 3764 NetDDE - ok
19:04:44.0967 3764 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
19:04:44.0967 3764 NetDDEdsdm - ok
19:04:45.0014 3764 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
19:04:45.0014 3764 Netlogon - ok
19:04:45.0045 3764 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
19:04:45.0045 3764 Netman - ok
19:04:45.0077 3764 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:04:45.0092 3764 NetTcpPortSharing - ok
19:04:45.0124 3764 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
19:04:45.0139 3764 Nla - ok
19:04:45.0155 3764 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
19:04:45.0155 3764 Npfs - ok
19:04:45.0233 3764 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
19:04:45.0233 3764 Ntfs - ok
19:04:45.0249 3764 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\System32\lsass.exe
19:04:45.0249 3764 NtLmSsp - ok
19:04:45.0295 3764 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
19:04:45.0295 3764 NtmsSvc - ok
19:04:45.0327 3764 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
19:04:45.0327 3764 Null - ok
19:04:45.0420 3764 [ 2B298519EDBFCF451D43E0F1E8F1006D ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
19:04:45.0467 3764 nv - ok
19:04:45.0530 3764 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:04:45.0530 3764 NwlnkFlt - ok
19:04:45.0561 3764 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:04:45.0561 3764 NwlnkFwd - ok
19:04:45.0592 3764 [ 53D5F1278D9EDB21689BBBCECC09108D ] omci C:\WINDOWS\system32\DRIVERS\omci.sys
19:04:45.0592 3764 omci - ok
19:04:45.0639 3764 [ 103A9B117A7D9903111955CDAFE65AC6 ] ossrv C:\WINDOWS\system32\DRIVERS\ctoss2k.sys
19:04:45.0639 3764 ossrv - ok
19:04:45.0655 3764 oviozbw - ok
19:04:45.0702 3764 [ DF886FFED69AEAD0CF608B89B18C3F6F ] P17 C:\WINDOWS\system32\drivers\P17.sys
19:04:45.0733 3764 P17 - ok
19:04:45.0780 3764 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
19:04:45.0780 3764 Parport - ok
19:04:45.0795 3764 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
19:04:45.0795 3764 PartMgr - ok
19:04:45.0827 3764 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
19:04:45.0827 3764 ParVdm - ok
19:04:45.0842 3764 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
19:04:45.0842 3764 PCI - ok
19:04:45.0842 3764 PCIDump - ok
19:04:45.0858 3764 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
19:04:45.0874 3764 PCIIde - ok
19:04:45.0905 3764 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
19:04:45.0905 3764 Pcmcia - ok
19:04:45.0905 3764 PDCOMP - ok
19:04:45.0920 3764 PDFRAME - ok
19:04:45.0952 3764 [ 7DA02838E7B55C10B661AB57E94F6077 ] pdiddcci C:\WINDOWS\system32\DRIVERS\pdiddcci.sys
19:04:45.0952 3764 pdiddcci - ok
19:04:45.0967 3764 [ 18ED1D71FEF6F71D38C24263500BBD01 ] PdiPorts C:\WINDOWS\system32\Drivers\PdiPorts.sys
19:04:45.0967 3764 PdiPorts - ok
19:04:45.0967 3764 PDRELI - ok
19:04:45.0983 3764 PDRFRAME - ok
19:04:46.0030 3764 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
19:04:46.0030 3764 perc2 - ok
19:04:46.0061 3764 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
19:04:46.0061 3764 perc2hib - ok
19:04:46.0092 3764 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
19:04:46.0092 3764 PlugPlay - ok
19:04:46.0092 3764 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
19:04:46.0108 3764 PolicyAgent - ok
19:04:46.0108 3764 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:04:46.0108 3764 PptpMiniport - ok
19:04:46.0124 3764 [ A32BEBAF723557681BFC6BD93E98BD26 ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
19:04:46.0124 3764 Processor - ok
19:04:46.0139 3764 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
19:04:46.0139 3764 ProtectedStorage - ok
19:04:46.0139 3764 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
19:04:46.0139 3764 PSched - ok
19:04:46.0233 3764 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:04:46.0233 3764 Ptilink - ok
19:04:46.0264 3764 [ 7C81AE3C9B82BA2DA437ED4D31BC56CF ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
19:04:46.0264 3764 PxHelp20 - ok
19:04:46.0311 3764 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
19:04:46.0311 3764 ql1080 - ok
19:04:46.0358 3764 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
19:04:46.0358 3764 Ql10wnt - ok
19:04:46.0374 3764 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
19:04:46.0374 3764 ql12160 - ok
19:04:46.0405 3764 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
19:04:46.0405 3764 ql1240 - ok
19:04:46.0420 3764 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
19:04:46.0420 3764 ql1280 - ok
19:04:46.0452 3764 [ 0087F01D35A65B32393CC8BBA46EE4A6 ] QV2KUX C:\WINDOWS\system32\DRIVERS\qv2kux.sys
19:04:46.0452 3764 QV2KUX - ok
19:04:46.0499 3764 [ B953369C5EF43615F1BFA9CEA69FC9AA ] radpms C:\WINDOWS\system32\DRIVERS\radpms.sys
19:04:46.0499 3764 radpms - ok
19:04:46.0561 3764 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:04:46.0561 3764 RasAcd - ok
19:04:46.0592 3764 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
19:04:46.0592 3764 RasAuto - ok
19:04:46.0624 3764 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:04:46.0624 3764 Rasl2tp - ok
19:04:46.0655 3764 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
19:04:46.0670 3764 RasMan - ok
19:04:46.0670 3764 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:04:46.0670 3764 RasPppoe - ok
19:04:46.0686 3764 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
19:04:46.0686 3764 Raspti - ok
19:04:46.0717 3764 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:04:46.0733 3764 Rdbss - ok
19:04:46.0733 3764 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:04:46.0733 3764 RDPCDD - ok
19:04:46.0749 3764 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
19:04:46.0749 3764 rdpdr - ok
19:04:46.0795 3764 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
19:04:46.0795 3764 RDPWD - ok
19:04:46.0827 3764 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
19:04:46.0827 3764 RDSessMgr - ok
19:04:46.0858 3764 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
19:04:46.0858 3764 redbook - ok
19:04:46.0889 3764 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
19:04:46.0889 3764 RemoteAccess - ok
19:04:46.0920 3764 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
19:04:46.0920 3764 RemoteRegistry - ok
19:04:46.0936 3764 [ 851C30DF2807FCFA21E4C681A7D6440E ] RFCOMM C:\WINDOWS\system32\DRIVERS\rfcomm.sys
19:04:46.0936 3764 RFCOMM - ok
19:04:46.0952 3764 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\System32\locator.exe
19:04:46.0952 3764 RpcLocator - ok
19:04:46.0967 3764 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\System32\rpcss.dll
19:04:46.0983 3764 RpcSs - ok
19:04:46.0999 3764 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\System32\rsvp.exe
19:04:46.0999 3764 RSVP - ok
19:04:47.0030 3764 SABKUTIL - ok
19:04:47.0045 3764 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
19:04:47.0045 3764 SamSs - ok
19:04:47.0061 3764 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
19:04:47.0061 3764 SASDIFSV - ok
19:04:47.0061 3764 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
19:04:47.0077 3764 SASKUTIL - ok
19:04:47.0092 3764 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
19:04:47.0092 3764 SCardSvr - ok
19:04:47.0108 3764 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
19:04:47.0124 3764 Schedule - ok
19:04:47.0155 3764 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:04:47.0155 3764 Secdrv - ok
19:04:47.0217 3764 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
19:04:47.0217 3764 seclogon - ok
19:04:47.0217 3764 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
19:04:47.0233 3764 SENS - ok
19:04:47.0249 3764 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
19:04:47.0249 3764 serenum - ok
19:04:47.0280 3764 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
19:04:47.0280 3764 Serial - ok
19:04:47.0327 3764 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\DRIVERS\sfloppy.sys
19:04:47.0327 3764 Sfloppy - ok
19:04:47.0358 3764 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
19:04:47.0374 3764 SharedAccess - ok
19:04:47.0405 3764 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
19:04:47.0405 3764 ShellHWDetection - ok
19:04:47.0405 3764 Simbad - ok
19:04:47.0436 3764 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
19:04:47.0436 3764 sisagp - ok
19:04:47.0514 3764 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
19:04:47.0530 3764 SkypeUpdate - ok
19:04:47.0561 3764 [ 4F7ED0C2F594F1B8E9CAFAB21EB86126 ] snapman C:\WINDOWS\system32\DRIVERS\snapman.sys
19:04:47.0577 3764 snapman - ok
19:04:47.0624 3764 [ FD17103AABD35F727255607B8898E7E4 ] SolidWorks Licensing Service C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe
19:04:47.0624 3764 SolidWorks Licensing Service - ok
19:04:47.0655 3764 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
19:04:47.0655 3764 Sparrow - ok
19:04:47.0686 3764 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
19:04:47.0686 3764 splitter - ok
19:04:47.0717 3764 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
19:04:47.0733 3764 Spooler - ok
19:04:47.0749 3764 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
19:04:47.0749 3764 sr - ok
19:04:47.0780 3764 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
19:04:47.0780 3764 srservice - ok
19:04:47.0811 3764 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
19:04:47.0811 3764 Srv - ok
19:04:47.0827 3764 [ 98625722AD52B40305E74AAA83C93086 ] sscdbhk5 C:\WINDOWS\system32\drivers\sscdbhk5.sys
19:04:47.0827 3764 sscdbhk5 - ok
19:04:47.0842 3764 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
19:04:47.0842 3764 SSDPSRV - ok
19:04:47.0858 3764 [ D79412E3942C8A257253487536D5A994 ] ssrtln C:\WINDOWS\system32\drivers\ssrtln.sys
19:04:47.0858 3764 ssrtln - ok
19:04:47.0874 3764 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
19:04:47.0874 3764 stisvc - ok
19:04:47.0889 3764 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
19:04:47.0889 3764 swenum - ok
19:04:47.0905 3764 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
19:04:47.0905 3764 swmidi - ok
19:04:47.0920 3764 SwPrv - ok
19:04:47.0967 3764 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
19:04:47.0967 3764 symc810 - ok
19:04:48.0014 3764 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
19:04:48.0014 3764 symc8xx - ok
19:04:48.0061 3764 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
19:04:48.0061 3764 sym_hi - ok
19:04:48.0077 3764 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
19:04:48.0077 3764 sym_u3 - ok
19:04:48.0139 3764 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
19:04:48.0139 3764 sysaudio - ok
19:04:48.0233 3764 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
19:04:48.0233 3764 SysmonLog - ok
19:04:48.0249 3764 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
19:04:48.0249 3764 TapiSrv - ok
19:04:48.0327 3764 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:04:48.0327 3764 Tcpip - ok
19:04:48.0374 3764 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
19:04:48.0374 3764 TDPIPE - ok
19:04:48.0420 3764 [ 8DE3E45000BA8C9EBB16737D3F83E216 ] tdrpman258 C:\WINDOWS\system32\DRIVERS\tdrpm258.sys
19:04:48.0436 3764 tdrpman258 - ok
19:04:48.0467 3764 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
19:04:48.0467 3764 TDTCP - ok
19:04:48.0499 3764 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
19:04:48.0499 3764 TermDD - ok
19:04:48.0514 3764 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
19:04:48.0530 3764 TermService - ok
19:04:48.0561 3764 [ D0177776E11B0B3F272EEBD262A69661 ] tfsnboio C:\WINDOWS\system32\dla\tfsnboio.sys
19:04:48.0561 3764 tfsnboio - ok
19:04:48.0577 3764 [ 599804BC938B8305A5422319774DA871 ] tfsncofs C:\WINDOWS\system32\dla\tfsncofs.sys
19:04:48.0577 3764 tfsncofs - ok
19:04:48.0577 3764 [ A1902C00ADC11C4D83F8E3ED947A6A32 ] tfsndrct C:\WINDOWS\system32\dla\tfsndrct.sys
19:04:48.0592 3764 tfsndrct - ok
19:04:48.0592 3764 [ D8DDB3F2B1BEF15CFF6728D89C042C61 ] tfsndres C:\WINDOWS\system32\dla\tfsndres.sys
19:04:48.0592 3764 tfsndres - ok
19:04:48.0608 3764 [ C4F2DEA75300971CDAEE311007DE138D ] tfsnifs C:\WINDOWS\system32\dla\tfsnifs.sys
19:04:48.0608 3764 tfsnifs - ok
19:04:48.0624 3764 [ 272925BE0EA919F08286D2EE6F102B0F ] tfsnopio C:\WINDOWS\system32\dla\tfsnopio.sys
19:04:48.0624 3764 tfsnopio - ok
19:04:48.0639 3764 [ 7B7D955E5CEBC2FB88B03EF875D52A2F ] tfsnpool C:\WINDOWS\system32\dla\tfsnpool.sys
19:04:48.0639 3764 tfsnpool - ok
19:04:48.0655 3764 [ E3D01263109D800C1967C12C10A0B018 ] tfsnudf C:\WINDOWS\system32\dla\tfsnudf.sys
19:04:48.0655 3764 tfsnudf - ok
19:04:48.0655 3764 [ B9E9C377906E3A65BC74598FFF7F7458 ] tfsnudfa C:\WINDOWS\system32\dla\tfsnudfa.sys
19:04:48.0655 3764 tfsnudfa - ok
19:04:48.0686 3764 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
19:04:48.0686 3764 Themes - ok
19:04:48.0733 3764 [ 3E06987FEDBCDFBFF8E85EF8108565F9 ] timounter C:\WINDOWS\system32\DRIVERS\timntr.sys
19:04:48.0749 3764 timounter - ok
19:04:48.0795 3764 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
19:04:48.0795 3764 TlntSvr - ok
19:04:48.0827 3764 [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
19:04:48.0827 3764 TosIde - ok
19:04:48.0874 3764 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
19:04:48.0874 3764 TrkWks - ok
19:04:48.0889 3764 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
19:04:48.0889 3764 Udfs - ok
19:04:48.0920 3764 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
19:04:48.0920 3764 ultra - ok
19:04:48.0967 3764 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
19:04:48.0967 3764 Update - ok
19:04:49.0014 3764 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
19:04:49.0014 3764 upnphost - ok
19:04:49.0030 3764 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
19:04:49.0030 3764 UPS - ok
19:04:49.0061 3764 [ 83CAFCB53201BBAC04D822F32438E244 ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
19:04:49.0061 3764 USBAAPL - ok
19:04:49.0077 3764 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:04:49.0077 3764 usbehci - ok
19:04:49.0092 3764 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:04:49.0092 3764 usbhub - ok
19:04:49.0124 3764 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
19:04:49.0124 3764 usbscan - ok
19:04:49.0155 3764 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:04:49.0155 3764 USBSTOR - ok
19:04:49.0186 3764 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:04:49.0186 3764 usbuhci - ok
19:04:49.0217 3764 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
19:04:49.0217 3764 VgaSave - ok
19:04:49.0264 3764 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
19:04:49.0264 3764 viaagp - ok
19:04:49.0311 3764 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
19:04:49.0311 3764 ViaIde - ok
19:04:49.0342 3764 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
19:04:49.0342 3764 VolSnap - ok
19:04:49.0389 3764 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
19:04:49.0405 3764 VSS - ok
19:04:49.0467 3764 [ 7D110D645030C05A06C3CD08D1E47D0A ] vToolbarUpdater13.2.0 C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
19:04:49.0499 3764 vToolbarUpdater13.2.0 - ok
19:04:49.0530 3764 [ 54AF4B1D5459500EF0937F6D33B1914F ] w32time C:\WINDOWS\system32\w32time.dll
19:04:49.0530 3764 w32time - ok
19:04:49.0561 3764 [ 4AA2CC5979AFF984227364F2C23B04F3 ] WajamUpdater C:\Program Files\Wajam\Updater\WajamUpdater.exe
19:04:49.0561 3764 WajamUpdater - ok
19:04:49.0577 3764 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:04:49.0577 3764 Wanarp - ok
19:04:49.0592 3764 wanatw - ok
19:04:49.0624 3764 [ D918617B46457B9AC28027722E30F647 ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys
19:04:49.0655 3764 Wdf01000 - ok
19:04:49.0655 3764 WDICA - ok
19:04:49.0686 3764 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
19:04:49.0686 3764 wdmaud - ok
19:04:49.0733 3764 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
19:04:49.0733 3764 WebClient - ok
19:04:49.0811 3764 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
19:04:49.0811 3764 winmgmt - ok
19:04:49.0889 3764 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
19:04:49.0889 3764 WmdmPmSN - ok
19:04:49.0936 3764 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi C:\WINDOWS\System32\advapi32.dll
19:04:49.0952 3764 Wmi - ok
19:04:49.0983 3764 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\System32\wbem\wmiapsrv.exe
19:04:49.0999 3764 WmiApSrv - ok
19:04:50.0092 3764 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
19:04:50.0124 3764 WMPNetworkSvc - ok
19:04:50.0514 3764 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:04:50.0608 3764 WPFFontCache_v0400 - ok
19:04:50.0639 3764 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
19:04:50.0639 3764 WS2IFSL - ok
19:04:50.0670 3764 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
19:04:50.0686 3764 wscsvc - ok
19:04:50.0686 3764 WSearch - ok
19:04:50.0702 3764 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
19:04:50.0717 3764 wuauserv - ok
19:04:50.0749 3764 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:04:50.0749 3764 WudfPf - ok
19:04:50.0795 3764 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:04:50.0795 3764 WudfRd - ok
19:04:50.0827 3764 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
19:04:50.0827 3764 WudfSvc - ok
19:04:50.0858 3764 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
19:04:50.0874 3764 WZCSVC - ok
19:04:50.0920 3764 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
19:04:50.0920 3764 xmlprov - ok
19:04:51.0014 3764 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
19:04:51.0030 3764 YahooAUService - ok
19:04:51.0045 3764 ================ Scan global ===============================
19:04:51.0061 3764 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
19:04:51.0108 3764 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
19:04:51.0139 3764 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
19:04:51.0155 3764 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
19:04:51.0155 3764 [Global] - ok
19:04:51.0155 3764 ================ Scan MBR ==================================
19:04:51.0186 3764 [ B16A2359F4962B0C622D81A1C1F4B703 ] \Device\Harddisk0\DR0
19:04:51.0514 3764 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
19:04:51.0514 3764 \Device\Harddisk0\DR0 - detected TDSS File System (1)
19:04:51.0530 3764 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
19:04:51.0592 3764 \Device\Harddisk1\DR1 - ok
19:04:51.0592 3764 ================ Scan VBR ==================================
19:04:51.0608 3764 [ 4108E3C9774F77CE02F01627EF6C65A9 ] \Device\Harddisk0\DR0\Partition1
19:04:51.0608 3764 \Device\Harddisk0\DR0\Partition1 - ok
19:04:51.0608 3764 [ 549EEDEE16907992290D68796E2869C6 ] \Device\Harddisk1\DR1\Partition1
19:04:51.0608 3764 \Device\Harddisk1\DR1\Partition1 - ok
19:04:51.0639 3764 [ EDDB70665A52800443700B941401990D ] \Device\Harddisk1\DR1\Partition2
19:04:51.0639 3764 \Device\Harddisk1\DR1\Partition2 - ok
19:04:51.0655 3764 [ 30098026A59747BD85A9272F74E437D2 ] \Device\Harddisk1\DR1\Partition3
19:04:51.0655 3764 \Device\Harddisk1\DR1\Partition3 - ok
19:04:51.0655 3764 ============================================================
19:04:51.0655 3764 Scan finished
19:04:51.0655 3764 ============================================================
19:04:51.0670 2492 Detected object count: 1
19:04:51.0670 2492 Actual detected object count: 1
19:05:06.0061 2492 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
19:05:06.0061 2492 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
19:05:23.0233 2232 ============================================================
19:05:23.0233 2232 Scan started
19:05:23.0233 2232 Mode: Manual; TDLFS;
19:05:23.0233 2232 ============================================================
19:05:24.0467 2232 ================ Scan system memory ========================
19:05:24.0483 2232 System memory - ok
19:05:24.0483 2232 ================ Scan services =============================
19:05:24.0577 2232 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
19:05:24.0577 2232 !SASCORE - ok
19:05:24.0655 2232 Abiosdsk - ok
19:05:24.0686 2232 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
19:05:24.0686 2232 abp480n5 - ok
19:05:24.0811 2232 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:05:24.0811 2232 ACPI - ok
19:05:24.0842 2232 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
19:05:24.0842 2232 ACPIEC - ok
19:05:24.0983 2232 [ 60C2ACD6949045EF4777A04E38CE270D ] AcrSch2Svc C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
19:05:24.0983 2232 AcrSch2Svc - ok
19:05:25.0108 2232 [ 8B46D5A1D3EF08232C04D0EAFB871FB2 ] Adobe LM Service C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
19:05:25.0108 2232 Adobe LM Service - ok
19:05:25.0233 2232 [ 41D15EAD554396BF35B7C5246AD47A28 ] Adobe Version Cue CS2 C:\Program Files\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe
19:05:25.0233 2232 Adobe Version Cue CS2 - ok
19:05:25.0264 2232 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
19:05:25.0264 2232 adpu160m - ok
19:05:25.0295 2232 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
19:05:25.0295 2232 aec - ok
19:05:25.0311 2232 [ 4FA0CA536DAB995BAF48BD41B4E2ED00 ] afcdp C:\WINDOWS\system32\DRIVERS\afcdp.sys
19:05:25.0311 2232 afcdp - ok
19:05:25.0389 2232 [ 8B333E7FF3147A63B15975B512364466 ] afcdpsrv C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
19:05:25.0405 2232 afcdpsrv - ok
19:05:25.0436 2232 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
19:05:25.0436 2232 AFD - ok
19:05:25.0467 2232 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
19:05:25.0467 2232 agp440 - ok
19:05:25.0467 2232 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
19:05:25.0467 2232 agpCPQ - ok
19:05:25.0514 2232 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
19:05:25.0514 2232 Aha154x - ok
19:05:25.0545 2232 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
19:05:25.0545 2232 aic78u2 - ok
19:05:25.0561 2232 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
19:05:25.0561 2232 aic78xx - ok
19:05:25.0592 2232 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
19:05:25.0592 2232 Alerter - ok
19:05:25.0608 2232 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
19:05:25.0608 2232 ALG - ok
19:05:25.0624 2232 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
19:05:25.0639 2232 AliIde - ok
19:05:25.0639 2232 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
19:05:25.0639 2232 alim1541 - ok
19:05:25.0639 2232 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
19:05:25.0655 2232 amdagp - ok
19:05:25.0686 2232 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
19:05:25.0686 2232 amsint - ok
19:05:25.0749 2232 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:05:25.0749 2232 Apple Mobile Device - ok
19:05:25.0795 2232 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
19:05:25.0795 2232 AppMgmt - ok
19:05:25.0842 2232 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
19:05:25.0842 2232 asc - ok
19:05:25.0889 2232 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
19:05:25.0889 2232 asc3350p - ok
19:05:25.0905 2232 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
19:05:25.0905 2232 asc3550 - ok
19:05:26.0061 2232 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
19:05:26.0061 2232 aspnet_state - ok
19:05:26.0139 2232 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:05:26.0139 2232 AsyncMac - ok
19:05:26.0186 2232 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
19:05:26.0202 2232 atapi - ok
19:05:26.0202 2232 Atdisk - ok
19:05:26.0233 2232 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:05:26.0233 2232 Atmarpc - ok
19:05:26.0280 2232 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
19:05:26.0280 2232 AudioSrv - ok
19:05:26.0327 2232 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
19:05:26.0327 2232 audstub - ok
19:05:26.0483 2232 [ D45B7995761253A92AB071D576114F28 ] AVG Security Toolbar Service C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe
19:05:26.0483 2232 AVG Security Toolbar Service - ok
19:05:26.0530 2232 [ AA054CD537357F03D5BA6ABA7562B35F ] avg9emc C:\Program Files\AVG\AVG9\avgemc.exe
19:05:26.0545 2232 avg9emc - ok
19:05:26.0577 2232 [ C4D15594DB5BE042D3346EA58DF87D89 ] avg9wd C:\Program Files\AVG\AVG9\avgwdsvc.exe
19:05:26.0592 2232 avg9wd - ok
19:05:26.0608 2232 [ B8C187439D27ABA430DD69FDCF1FA657 ] AvgLdx86 C:\WINDOWS\System32\Drivers\avgldx86.sys
19:05:26.0608 2232 AvgLdx86 - ok
19:05:26.0655 2232 [ 80FF2B1B7EEDA966394F0BAA895BBF4B ] AvgMfx86 C:\WINDOWS\System32\Drivers\avgmfx86.sys
19:05:26.0655 2232 AvgMfx86 - ok
19:05:26.0670 2232 [ 5BBCD8646074A3AF4EE9B321D12C2B64 ] AvgRkx86 C:\WINDOWS\system32\Drivers\avgrkx86.sys
19:05:26.0670 2232 AvgRkx86 - ok
19:05:26.0702 2232 [ 9A7A93388F503A34E7339AE7F9997449 ] AvgTdiX C:\WINDOWS\System32\Drivers\avgtdix.sys
19:05:26.0702 2232 AvgTdiX - ok
19:05:26.0733 2232 [ 57D83B82117C2DDB9D7E9AEA691CEDFC ] avgtp C:\WINDOWS\system32\drivers\avgtpx86.sys
19:05:26.0733 2232 avgtp - ok
19:05:26.0749 2232 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
19:05:26.0749 2232 Beep - ok
19:05:26.0795 2232 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
19:05:26.0795 2232 BITS - ok
19:05:26.0874 2232 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
19:05:26.0874 2232 Bonjour Service - ok
19:05:26.0905 2232 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
19:05:26.0905 2232 Browser - ok
19:05:27.0030 2232 [ EBBA16A88F517BFB1B7681ABF006C8B0 ] Browser Manager C:\Documents and Settings\All Users\Application Data\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\mngr.exe
19:05:27.0045 2232 Browser Manager - ok
19:05:27.0061 2232 [ B279426E3C0C344893ED78A613A73BDE ] BthEnum C:\WINDOWS\system32\DRIVERS\BthEnum.sys
19:05:27.0061 2232 BthEnum - ok
19:05:27.0061 2232 [ FCA6F069597B62D42495191ACE3FC6C1 ] BTHMODEM C:\WINDOWS\system32\DRIVERS\bthmodem.sys
19:05:27.0061 2232 BTHMODEM - ok
19:05:27.0092 2232 [ 80602B8746D3738F5886CE3D67EF06B6 ] BthPan C:\WINDOWS\system32\DRIVERS\bthpan.sys
19:05:27.0092 2232 BthPan - ok
19:05:27.0124 2232 [ 662BFD909447DD9CC15B1A1C366583B4 ] BTHPORT C:\WINDOWS\system32\Drivers\BTHport.sys
19:05:27.0139 2232 BTHPORT - ok
19:05:27.0170 2232 [ F4C43C66471B87996D95DB7A3A664A37 ] BthServ C:\WINDOWS\System32\bthserv.dll
19:05:27.0170 2232 BthServ - ok
19:05:27.0186 2232 [ 61364CD71EF63B0F038B7E9DF00F1EFA ] BTHUSB C:\WINDOWS\system32\Drivers\BTHUSB.sys
19:05:27.0202 2232 BTHUSB - ok
19:05:27.0327 2232 catchme - ok
19:05:27.0358 2232 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
19:05:27.0358 2232 cbidf - ok
19:05:27.0374 2232 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
19:05:27.0374 2232 cbidf2k - ok
19:05:27.0405 2232 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
19:05:27.0405 2232 cd20xrnt - ok
19:05:27.0420 2232 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
19:05:27.0420 2232 Cdaudio - ok
19:05:27.0467 2232 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
19:05:27.0467 2232 Cdfs - ok
19:05:27.0483 2232 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:05:27.0483 2232 Cdrom - ok
19:05:27.0483 2232 Changer - ok
19:05:27.0530 2232 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
19:05:27.0530 2232 CiSvc - ok
19:05:27.0530 2232 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
19:05:27.0530 2232 ClipSrv - ok
19:05:27.0577 2232 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:05:27.0577 2232 clr_optimization_v2.0.50727_32 - ok
19:05:27.0639 2232 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:05:27.0639 2232 clr_optimization_v4.0.30319_32 - ok
19:05:27.0655 2232 [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
19:05:27.0655 2232 CmdIde - ok
19:05:27.0670 2232 COMSysApp - ok
19:05:27.0702 2232 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
19:05:27.0702 2232 Cpqarray - ok
19:05:27.0749 2232 [ 3C8B6609712F4FF78E521F6DCFC4032B ] Creative Service for CDROM Access C:\WINDOWS\system32\CTsvcCDA.EXE
19:05:27.0749 2232 Creative Service for CDROM Access - ok
19:05:27.0764 2232 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
19:05:27.0764 2232 CryptSvc - ok
19:05:27.0780 2232 [ 8DB84DE3AAB34A8B4C2F644EFF41CD76 ] ctsfm2k C:\WINDOWS\system32\DRIVERS\ctsfm2k.sys
19:05:27.0780 2232 ctsfm2k - ok
19:05:27.0842 2232 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
19:05:27.0842 2232 dac2w2k - ok
19:05:27.0889 2232 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
19:05:27.0889 2232 dac960nt - ok
19:05:27.0920 2232 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
19:05:27.0920 2232 DcomLaunch - ok
19:05:27.0952 2232 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
19:05:27.0952 2232 Dhcp - ok
19:05:27.0999 2232 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
19:05:27.0999 2232 Disk - ok
19:05:27.0999 2232 dmadmin - ok
19:05:28.0061 2232 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
19:05:28.0077 2232 dmboot - ok
19:05:28.0077 2232 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\DRIVERS\dmio.sys
19:05:28.0077 2232 dmio - ok
19:05:28.0108 2232 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
19:05:28.0108 2232 dmload - ok
19:05:28.0139 2232 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
19:05:28.0139 2232 dmserver - ok
19:05:28.0155 2232 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
19:05:28.0155 2232 DMusic - ok
19:05:28.0186 2232 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
19:05:28.0186 2232 Dnscache - ok
19:05:28.0295 2232 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
19:05:28.0295 2232 Dot3svc - ok
19:05:28.0342 2232 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
19:05:28.0342 2232 dpti2o - ok
19:05:28.0374 2232 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
19:05:28.0374 2232 drmkaud - ok
19:05:28.0405 2232 [ 96BC8F872F0270C10EDC3931F1C03776 ] drvmcdb C:\WINDOWS\system32\drivers\drvmcdb.sys
19:05:28.0405 2232 drvmcdb - ok
19:05:28.0420 2232 [ 5AFBEC7A6AC61B211633DFDB1D9E0C89 ] drvnddm C:\WINDOWS\system32\drivers\drvnddm.sys
19:05:28.0420 2232 drvnddm - ok
19:05:28.0452 2232 [ CE1BEC2949CD2EE87B666ABF485D001F ] DTSRVC C:\Program Files\Common Files\Portrait Displays\Shared\DTSRVC.exe
19:05:28.0452 2232 DTSRVC - ok
19:05:28.0483 2232 [ D57A8FC800B501AC05B10D00F66D127A ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
19:05:28.0483 2232 E100B - ok
19:05:28.0530 2232 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
19:05:28.0530 2232 EapHost - ok
19:05:28.0577 2232 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
19:05:28.0577 2232 ERSvc - ok
19:05:28.0608 2232 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
19:05:28.0608 2232 Eventlog - ok
19:05:28.0624 2232 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\System32\es.dll
19:05:28.0624 2232 EventSystem - ok
19:05:28.0639 2232 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
19:05:28.0639 2232 Fastfat - ok
19:05:28.0670 2232 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
19:05:28.0670 2232 FastUserSwitchingCompatibility - ok
19:05:28.0702 2232 [ E97D6A8684466DF94FF3BC24FB787A07 ] Fax C:\WINDOWS\system32\fxssvc.exe
19:05:28.0702 2232 Fax - ok
19:05:28.0733 2232 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
19:05:28.0733 2232 Fdc - ok
19:05:28.0749 2232 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
19:05:28.0749 2232 Fips - ok
19:05:28.0780 2232 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
19:05:28.0780 2232 Flpydisk - ok
19:05:28.0811 2232 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
19:05:28.0811 2232 FltMgr - ok
19:05:28.0874 2232 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:05:28.0874 2232 FontCache3.0.0.0 - ok
19:05:28.0889 2232 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:05:28.0889 2232 Fs_Rec - ok
19:05:28.0920 2232 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:05:28.0936 2232 Ftdisk - ok
19:05:28.0967 2232 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
19:05:28.0967 2232 GEARAspiWDM - ok
19:05:28.0983 2232 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:05:28.0983 2232 Gpc - ok
19:05:29.0014 2232 [ D64A40B94602158E40527AE95E7A9193 ] Hardlock C:\WINDOWS\system32\drivers\hardlock.sys
19:05:29.0030 2232 Hardlock - ok
19:05:29.0092 2232 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:05:29.0092 2232 helpsvc - ok
19:05:29.0108 2232 [ 7BD2DE4C85EB4241EED57672B16A7D8D ] HidBth C:\WINDOWS\system32\DRIVERS\hidbth.sys
19:05:29.0108 2232 HidBth - ok
19:05:29.0108 2232 HidServ - ok
19:05:29.0124 2232 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:05:29.0124 2232 HidUsb - ok
19:05:29.0170 2232 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
19:05:29.0170 2232 hkmsvc - ok
19:05:29.0217 2232 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
19:05:29.0233 2232 hpn - ok
19:05:29.0295 2232 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
19:05:29.0295 2232 HTTP - ok
19:05:29.0342 2232 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
19:05:29.0342 2232 HTTPFilter - ok
19:05:29.0358 2232 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
19:05:29.0358 2232 i2omgmt - ok
19:05:29.0389 2232 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
19:05:29.0389 2232 i2omp - ok
19:05:29.0420 2232 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:05:29.0420 2232 i8042prt - ok
19:05:29.0483 2232 [ 5A8E05F1D5C36ABD58CFFA111EB325EA ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
19:05:29.0499 2232 ialm - ok
19:05:29.0561 2232 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:05:29.0577 2232 idsvc - ok
19:05:29.0592 2232 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
19:05:29.0592 2232 Imapi - ok
19:05:29.0624 2232 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
19:05:29.0624 2232 ImapiService - ok
19:05:29.0655 2232 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
19:05:29.0655 2232 ini910u - ok
19:05:29.0686 2232 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
19:05:29.0686 2232 IntelIde - ok
19:05:29.0702 2232 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
19:05:29.0717 2232 intelppm - ok
19:05:29.0749 2232 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
19:05:29.0749 2232 Ip6Fw - ok
19:05:29.0780 2232 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:05:29.0780 2232 IpFilterDriver - ok
19:05:29.0811 2232 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:05:29.0811 2232 IpInIp - ok
19:05:29.0842 2232 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:05:29.0842 2232 IpNat - ok
19:05:29.0889 2232 [ EF1C51222117B37AFBFF8F4642EA8C62 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
19:05:29.0889 2232 iPod Service - ok
19:05:29.0905 2232 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:05:29.0905 2232 IPSec - ok
19:05:29.0936 2232 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
19:05:29.0936 2232 IRENUM - ok
19:05:29.0983 2232 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:05:29.0983 2232 isapnp - ok
19:05:30.0030 2232 [ 0A5709543986843D37A92290B7838340 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
19:05:30.0045 2232 JavaQuickStarterService - ok
19:05:30.0077 2232 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:05:30.0077 2232 Kbdclass - ok
19:05:30.0092 2232 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
19:05:30.0092 2232 kbdhid - ok
19:05:30.0124 2232 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
19:05:30.0124 2232 kmixer - ok
19:05:30.0139 2232 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
19:05:30.0139 2232 KSecDD - ok
19:05:30.0170 2232 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
19:05:30.0170 2232 lanmanserver - ok
19:05:30.0202 2232 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
19:05:30.0202 2232 lanmanworkstation - ok
19:05:30.0202 2232 lbrtfdc - ok
19:05:30.0249 2232 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
19:05:30.0249 2232 LmHosts - ok
19:05:30.0311 2232 [ 3D67740573A70C6C9B1614982CFAC4C5 ] LMIGuardianSvc C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe
19:05:30.0311 2232 LMIGuardianSvc - ok
19:05:30.0342 2232 [ 4F69FAAABB7DB0D43E327C0B6AAB40FC ] LMIInfo C:\Program Files\LogMeIn\x86\RaInfo.sys
19:05:30.0342 2232 LMIInfo - ok
19:05:30.0342 2232 [ D95F3217C9DFA24ECA582ED8E435E221 ] LMIMaint C:\Program Files\LogMeIn\x86\RaMaint.exe
19:05:30.0342 2232 LMIMaint - ok
19:05:30.0374 2232 [ 4477689E2D8AE6B78BA34C9AF4CC1ED1 ] lmimirr C:\WINDOWS\system32\DRIVERS\lmimirr.sys
19:05:30.0374 2232 lmimirr - ok
19:05:30.0374 2232 LMIRfsClientNP - ok
19:05:30.0405 2232 [ 3FAA563DDF853320F90259D455A01D79 ] LMIRfsDriver C:\WINDOWS\system32\drivers\LMIRfsDriver.sys
19:05:30.0405 2232 LMIRfsDriver - ok
19:05:30.0436 2232 [ 432618FA75B61059D2C57D6A7E55147A ] LogMeIn C:\Program Files\LogMeIn\x86\LogMeIn.exe
19:05:30.0452 2232 LogMeIn - ok
19:05:30.0467 2232 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
19:05:30.0467 2232 Messenger - ok
19:05:30.0514 2232 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
19:05:30.0514 2232 mnmdd - ok
19:05:30.0545 2232 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
19:05:30.0545 2232 mnmsrvc - ok
19:05:30.0592 2232 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
19:05:30.0592 2232 Modem - ok
19:05:30.0608 2232 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:05:30.0608 2232 Mouclass - ok
19:05:30.0624 2232 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:05:30.0624 2232 mouhid - ok
19:05:30.0639 2232 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
19:05:30.0639 2232 MountMgr - ok
19:05:30.0686 2232 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
19:05:30.0702 2232 mraid35x - ok
19:05:30.0702 2232 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:05:30.0702 2232 MRxDAV - ok
19:05:30.0749 2232 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:05:30.0749 2232 MRxSmb - ok
19:05:30.0749 2232 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
19:05:30.0749 2232 MSDTC - ok
19:05:30.0764 2232 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
19:05:30.0764 2232 Msfs - ok
19:05:30.0780 2232 MSIServer - ok
19:05:30.0811 2232 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:05:30.0811 2232 MSKSSRV - ok
19:05:30.0827 2232 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:05:30.0827 2232 MSPCLOCK - ok
19:05:30.0842 2232 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
19:05:30.0842 2232 MSPQM - ok
19:05:30.0874 2232 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:05:30.0874 2232 mssmbios - ok
19:05:30.0905 2232 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
19:05:30.0905 2232 Mup - ok
19:05:30.0952 2232 [ 9121D8FFFF773C66BBF4955E4F7AAC23 ] NAL C:\WINDOWS\system32\Drivers\iqvw32.sys
19:05:30.0952 2232 NAL - ok
19:05:31.0014 2232 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
19:05:31.0014 2232 napagent - ok
19:05:31.0108 2232 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
19:05:31.0108 2232 NDIS - ok
19:05:31.0139 2232 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:05:31.0139 2232 NdisTapi - ok
19:05:31.0155 2232 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:05:31.0155 2232 Ndisuio - ok
19:05:31.0170 2232 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:05:31.0170 2232 NdisWan - ok
19:05:31.0186 2232 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
19:05:31.0186 2232 NDProxy - ok
19:05:31.0202 2232 [ 1352E1648213551923A0A822E441553C ] Netaapl C:\WINDOWS\system32\DRIVERS\netaapl.sys
19:05:31.0217 2232 Netaapl - ok
19:05:31.0217 2232 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
19:05:31.0217 2232 NetBIOS - ok
19:05:31.0249 2232 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
19:05:31.0249 2232 NetBT - ok
19:05:31.0264 2232 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
19:05:31.0280 2232 NetDDE - ok
19:05:31.0280 2232 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
19:05:31.0280 2232 NetDDEdsdm - ok
19:05:31.0327 2232 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
19:05:31.0327 2232 Netlogon - ok
19:05:31.0358 2232 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
19:05:31.0358 2232 Netman - ok
19:05:31.0389 2232 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:05:31.0389 2232 NetTcpPortSharing - ok
19:05:31.0420 2232 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
19:05:31.0420 2232 Nla - ok
19:05:31.0452 2232 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
19:05:31.0452 2232 Npfs - ok
19:05:31.0467 2232 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
19:05:31.0467 2232 Ntfs - ok
19:05:31.0483 2232 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\System32\lsass.exe
19:05:31.0483 2232 NtLmSsp - ok
19:05:31.0545 2232 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
19:05:31.0545 2232 NtmsSvc - ok
19:05:31.0577 2232 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
19:05:31.0577 2232 Null - ok
19:05:31.0686 2232 [ 2B298519EDBFCF451D43E0F1E8F1006D ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
19:05:31.0686 2232 nv - ok
19:05:31.0733 2232 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:05:31.0733 2232 NwlnkFlt - ok
19:05:31.0764 2232 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:05:31.0764 2232 NwlnkFwd - ok
19:05:31.0795 2232 [ 53D5F1278D9EDB21689BBBCECC09108D ] omci C:\WINDOWS\system32\DRIVERS\omci.sys
19:05:31.0811 2232 omci - ok
19:05:31.0842 2232 [ 103A9B117A7D9903111955CDAFE65AC6 ] ossrv C:\WINDOWS\system32\DRIVERS\ctoss2k.sys
19:05:31.0842 2232 ossrv - ok
19:05:31.0842 2232 oviozbw - ok
19:05:31.0889 2232 [ DF886FFED69AEAD0CF608B89B18C3F6F ] P17 C:\WINDOWS\system32\drivers\P17.sys
19:05:31.0905 2232 P17 - ok
19:05:31.0936 2232 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
19:05:31.0936 2232 Parport - ok
19:05:31.0952 2232 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
19:05:31.0952 2232 PartMgr - ok
19:05:31.0999 2232 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
19:05:31.0999 2232 ParVdm - ok
19:05:31.0999 2232 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
19:05:31.0999 2232 PCI - ok
19:05:32.0014 2232 PCIDump - ok
19:05:32.0030 2232 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
19:05:32.0030 2232 PCIIde - ok
19:05:32.0045 2232 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
19:05:32.0045 2232 Pcmcia - ok
19:05:32.0045 2232 PDCOMP - ok
19:05:32.0061 2232 PDFRAME - ok
19:05:32.0108 2232 [ 7DA02838E7B55C10B661AB57E94F6077 ] pdiddcci C:\WINDOWS\system32\DRIVERS\pdiddcci.sys
19:05:32.0108 2232 pdiddcci - ok
19:05:32.0124 2232 [ 18ED1D71FEF6F71D38C24263500BBD01 ] PdiPorts C:\WINDOWS\system32\Drivers\PdiPorts.sys
19:05:32.0124 2232 PdiPorts - ok
19:05:32.0124 2232 PDRELI - ok
19:05:32.0124 2232 PDRFRAME - ok
19:05:32.0170 2232 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
19:05:32.0170 2232 perc2 - ok
19:05:32.0202 2232 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
19:05:32.0202 2232 perc2hib - ok
19:05:32.0233 2232 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
19:05:32.0233 2232 PlugPlay - ok
19:05:32.0249 2232 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
19:05:32.0249 2232 PolicyAgent - ok
19:05:32.0264 2232 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:05:32.0280 2232 PptpMiniport - ok
19:05:32.0280 2232 [ A32BEBAF723557681BFC6BD93E98BD26 ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
19:05:32.0280 2232 Processor - ok
19:05:32.0295 2232 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
19:05:32.0295 2232 ProtectedStorage - ok
19:05:32.0311 2232 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
19:05:32.0311 2232 PSched - ok
19:05:32.0327 2232 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:05:32.0327 2232 Ptilink - ok
19:05:32.0358 2232 [ 7C81AE3C9B82BA2DA437ED4D31BC56CF ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
19:05:32.0358 2232 PxHelp20 - ok
19:05:32.0420 2232 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
19:05:32.0420 2232 ql1080 - ok
19:05:32.0436 2232 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
19:05:32.0436 2232 Ql10wnt - ok
19:05:32.0452 2232 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
19:05:32.0452 2232 ql12160 - ok
19:05:32.0467 2232 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
19:05:32.0467 2232 ql1240 - ok
19:05:32.0499 2232 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
19:05:32.0499 2232 ql1280 - ok
19:05:32.0530 2232 [ 0087F01D35A65B32393CC8BBA46EE4A6 ] QV2KUX C:\WINDOWS\system32\DRIVERS\qv2kux.sys
19:05:32.0530 2232 QV2KUX - ok
19:05:32.0577 2232 [ B953369C5EF43615F1BFA9CEA69FC9AA ] radpms C:\WINDOWS\system32\DRIVERS\radpms.sys
19:05:32.0577 2232 radpms - ok
19:05:32.0608 2232 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:05:32.0608 2232 RasAcd - ok
19:05:32.0655 2232 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
19:05:32.0655 2232 RasAuto - ok
19:05:32.0670 2232 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:05:32.0670 2232 Rasl2tp - ok
19:05:32.0702 2232 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
19:05:32.0702 2232 RasMan - ok
19:05:32.0717 2232 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:05:32.0717 2232 RasPppoe - ok
19:05:32.0733 2232 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
19:05:32.0733 2232 Raspti - ok
19:05:32.0764 2232 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:05:32.0764 2232 Rdbss - ok
19:05:32.0780 2232 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:05:32.0780 2232 RDPCDD - ok
19:05:32.0795 2232 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
19:05:32.0795 2232 rdpdr - ok
19:05:32.0827 2232 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
19:05:32.0827 2232 RDPWD - ok
19:05:32.0858 2232 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
19:05:32.0858 2232 RDSessMgr - ok
19:05:32.0889 2232 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
19:05:32.0889 2232 redbook - ok
19:05:32.0905 2232 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
19:05:32.0905 2232 RemoteAccess - ok
19:05:32.0952 2232 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
19:05:32.0952 2232 RemoteRegistry - ok
19:05:32.0967 2232 [ 851C30DF2807FCFA21E4C681A7D6440E ] RFCOMM C:\WINDOWS\system32\DRIVERS\rfcomm.sys
19:05:32.0967 2232 RFCOMM - ok
19:05:32.0983 2232 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\System32\locator.exe
19:05:32.0983 2232 RpcLocator - ok
19:05:32.0999 2232 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\System32\rpcss.dll
19:05:32.0999 2232 RpcSs - ok
19:05:33.0014 2232 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\System32\rsvp.exe
19:05:33.0030 2232 RSVP - ok
19:05:33.0045 2232 SABKUTIL - ok
19:05:33.0061 2232 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
19:05:33.0061 2232 SamSs - ok
19:05:33.0092 2232 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
19:05:33.0092 2232 SASDIFSV - ok
19:05:33.0092 2232 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
19:05:33.0092 2232 SASKUTIL - ok
19:05:33.0139 2232 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
19:05:33.0155 2232 SCardSvr - ok
19:05:33.0170 2232 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
19:05:33.0170 2232 Schedule - ok
19:05:33.0217 2232 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:05:33.0217 2232 Secdrv - ok
19:05:33.0249 2232 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
19:05:33.0249 2232 seclogon - ok
19:05:33.0264 2232 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
19:05:33.0264 2232 SENS - ok
19:05:33.0280 2232 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
19:05:33.0280 2232 serenum - ok
19:05:33.0311 2232 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
19:05:33.0311 2232 Serial - ok
19:05:33.0358 2232 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\DRIVERS\sfloppy.sys
19:05:33.0358 2232 Sfloppy - ok
19:05:33.0436 2232 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
19:05:33.0436 2232 SharedAccess - ok
19:05:33.0452 2232 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
19:05:33.0467 2232 ShellHWDetection - ok
19:05:33.0467 2232 Simbad - ok
19:05:33.0499 2232 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
19:05:33.0499 2232 sisagp - ok
19:05:33.0577 2232 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
19:05:33.0577 2232 SkypeUpdate - ok
19:05:33.0608 2232 [ 4F7ED0C2F594F1B8E9CAFAB21EB86126 ] snapman C:\WINDOWS\system32\DRIVERS\snapman.sys
19:05:33.0624 2232 snapman - ok
19:05:33.0670 2232 [ FD17103AABD35F727255607B8898E7E4 ] SolidWorks Licensing Service C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe
19:05:33.0670 2232 SolidWorks Licensing Service - ok
19:05:33.0686 2232 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
19:05:33.0686 2232 Sparrow - ok
19:05:33.0717 2232 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
19:05:33.0717 2232 splitter - ok
19:05:33.0749 2232 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
19:05:33.0764 2232 Spooler - ok
19:05:33.0764 2232 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
19:05:33.0764 2232 sr - ok
19:05:33.0795 2232 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
19:05:33.0795 2232 srservice - ok
19:05:33.0842 2232 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
19:05:33.0842 2232 Srv - ok
19:05:33.0858 2232 [ 98625722AD52B40305E74AAA83C93086 ] sscdbhk5 C:\WINDOWS\system32\drivers\sscdbhk5.sys
19:05:33.0858 2232 sscdbhk5 - ok
19:05:33.0874 2232 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
19:05:33.0889 2232 SSDPSRV - ok
19:05:33.0889 2232 [ D79412E3942C8A257253487536D5A994 ] ssrtln C:\WINDOWS\system32\drivers\ssrtln.sys
19:05:33.0889 2232 ssrtln - ok
19:05:33.0905 2232 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
19:05:33.0920 2232 stisvc - ok
19:05:33.0936 2232 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
19:05:33.0952 2232 swenum - ok
19:05:33.0952 2232 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
19:05:33.0967 2232 swmidi - ok
19:05:33.0967 2232 SwPrv - ok
19:05:34.0014 2232 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
19:05:34.0014 2232 symc810 - ok
19:05:34.0061 2232 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
19:05:34.0061 2232 symc8xx - ok
19:05:34.0108 2232 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
19:05:34.0108 2232 sym_hi - ok
19:05:34.0139 2232 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
19:05:34.0170 2232 sym_u3 - ok
19:05:34.0186 2232 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
19:05:34.0186 2232 sysaudio - ok
19:05:34.0233 2232 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
19:05:34.0233 2232 SysmonLog - ok
19:05:34.0374 2232 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
19:05:34.0374 2232 TapiSrv - ok
19:05:34.0545 2232 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:05:34.0545 2232 Tcpip - ok
19:05:34.0608 2232 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
19:05:34.0608 2232 TDPIPE - ok
19:05:34.0827 2232 [ 8DE3E45000BA8C9EBB16737D3F83E216 ] tdrpman258 C:\WINDOWS\system32\DRIVERS\tdrpm258.sys
19:05:34.0842 2232 tdrpman258 - ok
19:05:34.0874 2232 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
19:05:34.0874 2232 TDTCP - ok
19:05:34.0905 2232 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
19:05:34.0905 2232 TermDD - ok
19:05:34.0920 2232 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
19:05:34.0920 2232 TermService - ok
19:05:34.0967 2232 [ D0177776E11B0B3F272EEBD262A69661 ] tfsnboio C:\WINDOWS\system32\dla\tfsnboio.sys
19:05:34.0967 2232 tfsnboio - ok
19:05:34.0983 2232 [ 599804BC938B8305A5422319774DA871 ] tfsncofs C:\WINDOWS\system32\dla\tfsncofs.sys
19:05:34.0983 2232 tfsncofs - ok
19:05:34.0983 2232 [ A1902C00ADC11C4D83F8E3ED947A6A32 ] tfsndrct C:\WINDOWS\system32\dla\tfsndrct.sys
19:05:34.0999 2232 tfsndrct - ok
19:05:34.0999 2232 [ D8DDB3F2B1BEF15CFF6728D89C042C61 ] tfsndres C:\WINDOWS\system32\dla\tfsndres.sys
19:05:34.0999 2232 tfsndres - ok
19:05:35.0014 2232 [ C4F2DEA75300971CDAEE311007DE138D ] tfsnifs C:\WINDOWS\system32\dla\tfsnifs.sys
19:05:35.0014 2232 tfsnifs - ok
19:05:35.0014 2232 [ 272925BE0EA919F08286D2EE6F102B0F ] tfsnopio C:\WINDOWS\system32\dla\tfsnopio.sys
19:05:35.0030 2232 tfsnopio - ok
19:05:35.0030 2232 [ 7B7D955E5CEBC2FB88B03EF875D52A2F ] tfsnpool C:\WINDOWS\system32\dla\tfsnpool.sys
19:05:35.0045 2232 tfsnpool - ok
19:05:35.0045 2232 [ E3D01263109D800C1967C12C10A0B018 ] tfsnudf C:\WINDOWS\system32\dla\tfsnudf.sys
19:05:35.0045 2232 tfsnudf - ok
19:05:35.0061 2232 [ B9E9C377906E3A65BC74598FFF7F7458 ] tfsnudfa C:\WINDOWS\system32\dla\tfsnudfa.sys
19:05:35.0061 2232 tfsnudfa - ok
19:05:35.0077 2232 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
19:05:35.0077 2232 Themes - ok
19:05:35.0124 2232 [ 3E06987FEDBCDFBFF8E85EF8108565F9 ] timounter C:\WINDOWS\system32\DRIVERS\timntr.sys
19:05:35.0124 2232 timounter - ok
19:05:35.0186 2232 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
19:05:35.0186 2232 TlntSvr - ok
19:05:35.0233 2232 [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
19:05:35.0233 2232 TosIde - ok
19:05:35.0280 2232 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
19:05:35.0280 2232 TrkWks - ok
19:05:35.0295 2232 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
19:05:35.0295 2232 Udfs - ok
19:05:35.0327 2232 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
19:05:35.0342 2232 ultra - ok
19:05:35.0389 2232 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
19:05:35.0389 2232 Update - ok
19:05:35.0420 2232 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
19:05:35.0420 2232 upnphost - ok
19:05:35.0436 2232 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
19:05:35.0436 2232 UPS - ok
19:05:35.0483 2232 [ 83CAFCB53201BBAC04D822F32438E244 ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
19:05:35.0483 2232 USBAAPL - ok
19:05:35.0499 2232 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:05:35.0499 2232 usbehci - ok
19:05:35.0514 2232 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:05:35.0514 2232 usbhub - ok
19:05:35.0530 2232 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
19:05:35.0530 2232 usbscan - ok
19:05:35.0561 2232 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:05:35.0561 2232 USBSTOR - ok
19:05:35.0592 2232 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:05:35.0608 2232 usbuhci - ok
19:05:35.0608 2232 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
19:05:35.0608 2232 VgaSave - ok
19:05:35.0655 2232 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
19:05:35.0655 2232 viaagp - ok
19:05:35.0686 2232 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
19:05:35.0686 2232 ViaIde - ok
19:05:35.0717 2232 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
19:05:35.0717 2232 VolSnap - ok
19:05:35.0764 2232 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
19:05:35.0780 2232 VSS - ok
19:05:35.0842 2232 [ 7D110D645030C05A06C3CD08D1E47D0A ] vToolbarUpdater13.2.0 C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
19:05:35.0842 2232 vToolbarUpdater13.2.0 - ok
19:05:35.0889 2232 [ 54AF4B1D5459500EF0937F6D33B1914F ] w32time C:\WINDOWS\system32\w32time.dll
19:05:35.0889 2232 w32time - ok
19:05:35.0920 2232 [ 4AA2CC5979AFF984227364F2C23B04F3 ] WajamUpdater C:\Program Files\Wajam\Updater\WajamUpdater.exe
19:05:35.0920 2232 WajamUpdater - ok
19:05:35.0952 2232 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:05:35.0952 2232 Wanarp - ok
19:05:35.0952 2232 wanatw - ok
19:05:35.0999 2232 [ D918617B46457B9AC28027722E30F647 ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys
19:05:35.0999 2232 Wdf01000 - ok
19:05:35.0999 2232 WDICA - ok
19:05:36.0077 2232 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
19:05:36.0077 2232 wdmaud - ok
19:05:36.0124 2232 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
19:05:36.0124 2232 WebClient - ok
19:05:36.0202 2232 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
19:05:36.0202 2232 winmgmt - ok
19:05:36.0264 2232 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
19:05:36.0264 2232 WmdmPmSN - ok
19:05:36.0311 2232 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi C:\WINDOWS\System32\advapi32.dll
19:05:36.0311 2232 Wmi - ok
19:05:36.0358 2232 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\System32\wbem\wmiapsrv.exe
19:05:36.0358 2232 WmiApSrv - ok
19:05:36.0467 2232 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
19:05:36.0467 2232 WMPNetworkSvc - ok
19:05:36.0733 2232 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:05:36.0733 2232 WPFFontCache_v0400 - ok
19:05:36.0764 2232 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
19:05:36.0764 2232 WS2IFSL - ok
19:05:36.0795 2232 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
19:05:36.0795 2232 wscsvc - ok
19:05:36.0811 2232 WSearch - ok
19:05:36.0827 2232 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
19:05:36.0827 2232 wuauserv - ok
19:05:36.0874 2232 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:05:36.0874 2232 WudfPf - ok
19:05:36.0905 2232 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:05:36.0905 2232 WudfRd - ok
19:05:36.0936 2232 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
19:05:36.0936 2232 WudfSvc - ok
19:05:36.0983 2232 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
19:05:36.0999 2232 WZCSVC - ok
19:05:37.0061 2232 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
19:05:37.0061 2232 xmlprov - ok
19:05:37.0139 2232 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
19:05:37.0139 2232 YahooAUService - ok
19:05:37.0155 2232 ================ Scan global ===============================
19:05:37.0186 2232 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
19:05:37.0217 2232 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
19:05:37.0295 2232 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
19:05:37.0327 2232 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
19:05:37.0342 2232 [Global] - ok
19:05:37.0342 2232 ================ Scan MBR ==================================
19:05:37.0342 2232 [ B16A2359F4962B0C622D81A1C1F4B703 ] \Device\Harddisk0\DR0
19:05:37.0545 2232 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
19:05:37.0545 2232 \Device\Harddisk0\DR0 - detected TDSS File System (1)
19:05:37.0545 2232 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
19:05:37.0608 2232 \Device\Harddisk1\DR1 - ok
19:05:37.0608 2232 ================ Scan VBR ==================================
19:05:37.0639 2232 [ 4108E3C9774F77CE02F01627EF6C65A9 ] \Device\Harddisk0\DR0\Partition1
19:05:37.0639 2232 \Device\Harddisk0\DR0\Partition1 - ok
19:05:37.0639 2232 [ 549EEDEE16907992290D68796E2869C6 ] \Device\Harddisk1\DR1\Partition1
19:05:37.0639 2232 \Device\Harddisk1\DR1\Partition1 - ok
19:05:37.0670 2232 [ EDDB70665A52800443700B941401990D ] \Device\Harddisk1\DR1\Partition2
19:05:37.0670 2232 \Device\Harddisk1\DR1\Partition2 - ok
19:05:37.0686 2232 [ 30098026A59747BD85A9272F74E437D2 ] \Device\Harddisk1\DR1\Partition3
19:05:37.0686 2232 \Device\Harddisk1\DR1\Partition3 - ok
19:05:37.0686 2232 ============================================================
19:05:37.0686 2232 Scan finished
19:05:37.0686 2232 ============================================================
19:05:37.0702 0652 Detected object count: 1
19:05:37.0702 0652 Actual detected object count: 1
19:05:48.0764 0652 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
19:05:48.0764 0652 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
19:05:51.0717 1816 Deinitialize success

#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,338 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:01 PM

Posted 07 January 2013 - 04:21 PM

Rerun TDss again and change the option on these to Cure or Delete.

19:05:48.0764 0652 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
19:05:48.0764 0652 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip


Please download aswMBR ( 4.5MB ) to your desktop.
  • Double click the aswMBR.exe icon, and click Run.
  • When asked if you'd like to "download the latest Avast! virus definitions", click Yes.
  • Click the Scan button to start the scan.
  • On completion of the scan, click the save log button, save it to your desktop, then copy and paste it in your next reply.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 PCPeebrain

PCPeebrain
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:02:01 AM

Posted 08 January 2013 - 04:10 AM

All Done -

aswMBR log:


aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-01-08 08:11:19
-----------------------------
08:11:19.795 OS Version: Windows 5.1.2600 Service Pack 3
08:11:19.795 Number of processors: 2 586 0x401
08:11:19.795 ComputerName: DRKSWORK UserName: DRK
08:11:20.624 Initialize success
08:13:36.202 AVAST engine defs: 13010701
08:19:44.233 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-f
08:19:44.233 Disk 0 Vendor: Maxtor_6L160M0 BANC1G10 Size: 152587MB BusType: 3
08:19:44.233 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP1T1L0-17
08:19:44.233 Disk 1 Vendor: ST3250318AS CC38 Size: 238475MB BusType: 3
08:19:44.249 Disk 0 MBR read successfully
08:19:44.249 Disk 0 MBR scan
08:19:44.280 Disk 0 unknown MBR code
08:19:44.295 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 47 MB offset 63
08:19:44.295 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 149464 MB offset 96390
08:19:44.327 Disk 0 Partition 3 00 DB CP/M / CTOS Dell 8.0 3074 MB offset 306198900
08:19:44.327 Disk 0 scanning sectors +312496380
08:19:44.389 Disk 0 scanning C:\WINDOWS\system32\drivers
08:19:56.733 Service scanning
08:20:17.295 Modules scanning
08:20:22.530 Disk 0 trace - called modules:
08:20:22.530 ntkrnlpa.exe CLASSPNP.SYS disk.sys atapi.sys hal.dll pciide.sys PCIIDEX.SYS
08:20:22.545 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8aa05ab8]
08:20:22.545 3 CLASSPNP.SYS[ba0e8fd7] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP1T0L0-f[0x8aa08b00]
08:20:23.217 AVAST engine scan C:\WINDOWS
08:20:29.702 AVAST engine scan C:\WINDOWS\system32
08:23:40.874 AVAST engine scan C:\WINDOWS\system32\drivers
08:23:59.827 AVAST engine scan C:\Documents and Settings\DRK
08:33:57.280 AVAST engine scan C:\Documents and Settings\All Users
08:37:07.170 Scan finished successfully
09:08:55.264 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\DRK\Desktop\MBR.dat"
09:08:55.280 The log file has been saved successfully to "C:\Documents and Settings\DRK\Desktop\aswMBR.txt"

#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,338 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:01 PM

Posted 08 January 2013 - 02:36 PM

How is it running now?

You need to update several things.

Important Note: Your version of Java is out of date. Older versions have vulnerabilities that malicious sites can use to exploit and infect your system.Please follow these steps to remove older version Java components and update:
  • Download the latest version of Java Runtime Environment (JRE) Version 7 and save it to your desktop.
  • Look for "Java Platform, Standard Edition".
  • Click the "Download JRE" button to the right.
  • Read the License Agreement, and then check the box that says: "Accept License Agreement".
  • From the list, select your OS and Platform (32-bit or 64-bit).
    64-bit OS users, should read: Which Java download should I choose for my 64-bit Windows operating system?
  • If a download for an Offline Installation is available, it is recommended to choose that and save the file to your desktop.
  • Close any programs you may have running - especially your web browser.
Go to Posted Image > Control Panel, double-click on Add/Remove Programs or Programs and Features in Vista/Windows 7 and remove all older versions of Java.
  • Check (highlight) any item with Java Runtime Environment (JRE or J2SE) in the name.
  • Click the Remove or Change/Remove button and follow the onscreen instructions for the Java uninstaller.
  • Repeat as many times as necessary to remove each Java versions.
  • Reboot your computer once all Java components are removed.
  • Then from your desktop double-click on jre-7u10-windows-i586.exe (or jre-7u10-windows-x64.exe for 64-bit) to install the newest version.
  • If using Windows 7 or Vista and the installer refuses to launch due to insufficient user permissions, then Run As Administrator.
  • When the Java Setup - Welcome window opens, click the Install > button.
  • If offered any unwanted software or toolbars during installation, just uncheck the box before continuing unless you want it.
  • The McAfee Security Scan Plus tool is installed by default unless you uncheck the McAfee installation box when updating Java.
Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications but it's not necessary.
To disable the JQS service if you don't want to use it:
  • Go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter.
  • Click Ok and reboot your computer.

NOTE: UN Tick any boxes like these...

Yes, install Chrome as my default browser and Google Toolbar for Internet Explorer – optional


Similarly also update to ....

Adobe Flash Player
Adobe Reader XI

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#14 PCPeebrain

PCPeebrain
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:02:01 AM

Posted 12 January 2013 - 06:17 AM

Many thanks Boopme :) Sorry for not replying sooner, things went a little mad here in life!

The computer isn't running too badly - lots of software won't run though so I'm having to reinstall lots of it or make changes, but the actual PC itself is now running! I'll be updating those bits n pieces later as a result!

#15 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,338 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:01 PM

Posted 12 January 2013 - 10:05 AM

Sounds good.. Installing is probably best.. After you atre done.

Create a New Restore Point to prevent possible reinfection from an old one. Some of the malware you picked up could have been saved in System Restore. Since this is a protected directory your tools cannot access to delete these files, they sometimes can reinfect your system if you accidentally use an old restore point. Setting a new restore point AFTER cleaning your system will help prevent this and enable your computer to "roll-back" to a clean working state.

The easiest and safest way to do this is:
  • Go to Start > Programs > Accessories > System Tools and click "System Restore".
  • Choose the radio button marked "Create a Restore Point" on the first screen then click "Next". Give the R.P. a name, then click "Create". The new point will be stamped with the current date and time. Keep a log of this so you can find it easily should you need to use System Restore.
  • Then use Disk Cleanup to remove all but the most recently created Restore Point.
  • Go to Start > Run and type: Cleanmgr
  • Click "Ok". Disk Cleanup will scan your files for several minutes, then open.
  • Click the "More Options" tab, then click the "Clean up" button under System Restore.
  • Click Ok. You will be prompted with "Are you sure you want to delete all but the most recent restore point?"
  • Click Yes, then click Ok.
  • Click Yes again when prompted with "Are you sure you want to perform these actions?"
  • Disk Cleanup will remove the files and close automatically.
Vista Users can refer to these links: Create a New Restore Point and Disk Cleanup.

Tips to protect yourself against malware and reduce the potential for re-infection:? Avoid gaming sites, pirated software, cracking tools, keygens, and peer-to-peer (P2P) file sharing programs. They are a security risk which can make your computer susceptible to a smörgåsbord of malware infections, remote attacks, exposure of personal information, and identity theft. Many malicious worms and Trojans spread across P2P file sharing networks, gaming and underground sites. Users visiting such pages may see innocuous-looking banner ads containing code which can trigger pop-up ads and malicious Flash ads that install viruses, Trojans and spyware. Ads are a target for hackers because they offer a stealthy way to distribute malware to a wide range of Internet users. The best way to reduce the risk of infection is to avoid these types of web sites and not use any P2P applications. Read P2P Software User Advisories and Risks of File-Sharing Technology.

? Keeping Autorun enabled on USB and other removable drives has become a significant security risk due to the increasing number of malware variants that can infect them and transfer the infection to your computer. To learn more about this risk, please read:

Edited by boopme, 12 January 2013 - 10:06 AM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users