Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Multiple virus noted after ESET scan


  • Please log in to reply
6 replies to this topic

#1 BretB

BretB

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:08:19 PM

Posted 30 April 2013 - 09:02 PM

Problem: Explorer lag, gaming lag, random internet disruptions

 

Malwarebyte's notes no issues, ran roguekiller.exe then eset scanner.   Eset scan noted 14 viruses,  Olmarik variants, pswtool.rsa.a, opencandy and variants, and an openinstall application.  Kasperky tdss killer notes 7 errors, RKills scan starts and then hangs at SERVICES with one root kit listed.  Seeing as these viruses have multiplied and morphed i think a professional opinion would better suit my position.

 

 



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,323 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:19 PM

Posted 30 April 2013 - 09:11 PM

Welcome BretB

I moved this from XP to Am I Infected.

 

 Please post ESET and TDSS logs..

 

The ESET Online Scanner saves a log file after running, which can be examined or sent in to ESET for further analysis. The path to the log file is "C:\Program Files\ESET\EsetOnlineScanner\log.txt". You can view this file by navigating to the directory and double-clicking it in Windows Explorer, or by copying and pasting the path specification above (including the quotation marks) into the Start > Run dialog box from the Start Menu on the desktop.

 

 

The TDSS LOG report (log file should be in your C drive)


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 BretB

BretB
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:08:19 PM

Posted 30 April 2013 - 10:04 PM

As a quick note, the Olmarik are recurrent.

 

ESET Scanner Log

 

C:\Documents and Settings\Administrator\My Documents\Downloads\Driver_Fusion_1.6.0.exe    Win32/OpenCandy application
C:\Documents and Settings\Administrator\My Documents\Downloads\WinZip170.exe    a variant of Win32/OpenInstall application
C:\Documents and Settings\Administrator\My Documents\Downloads\WinZipRegistryOptimizer.exe    a variant of Win32/OpenInstall application
C:\TDSSKiller_Quarantine\18.09.2012_19.06.03\rtkt0000\svc0000\tsk0000.dta    Win32/Sirefef.DA trojan
C:\TDSSKiller_Quarantine\28.04.2013_12.00.38\mbr0000\tdlfs0000\tsk0001.dta    a variant of Win32/Olmarik.AYI trojan
C:\TDSSKiller_Quarantine\28.04.2013_12.00.38\mbr0000\tdlfs0000\tsk0003.dta    Win32/Olmarik.AWO trojan
C:\TDSSKiller_Quarantine\28.04.2013_12.00.38\mbr0000\tdlfs0000\tsk0004.dta    Win64/Olmarik.AK trojan
C:\TDSSKiller_Quarantine\28.04.2013_12.00.38\mbr0000\tdlfs0000\tsk0008.dta    Win32/Olmarik.AFK trojan
C:\TDSSKiller_Quarantine\28.04.2013_12.00.38\mbr0000\tdlfs0000\tsk0009.dta    Win64/Olmarik.AK trojan
C:\TDSSKiller_Quarantine\28.04.2013_12.00.38\mbr0000\tdlfs0000\tsk0012.dta    Win32/Olmarik.AYI trojan
C:\TDSSKiller_Quarantine\28.04.2013_12.00.38\mbr0000\tdlfs0000\tsk0013.dta    a variant of Win32/Olmarik.AYZ trojan
C:\WINDOWS\Installer\2f552c4.msi    a variant of Win32/Bundled.Toolbar.Ask application

 

 

 



TDSS Scan Results

 

18:48:15.0609 2812  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
18:48:16.0312 2812  ============================================================
18:48:16.0312 2812  Current date / time: 2013/04/30 18:48:16.0312
18:48:16.0312 2812  SystemInfo:
18:48:16.0312 2812  
18:48:16.0312 2812  OS Version: 5.1.2600 ServicePack: 3.0
18:48:16.0312 2812  Product type: Workstation
18:48:16.0312 2812  ComputerName: LUSIONS
18:48:16.0312 2812  UserName: Administrator
18:48:16.0312 2812  Windows directory: C:\WINDOWS
18:48:16.0312 2812  System windows directory: C:\WINDOWS
18:48:16.0312 2812  Processor architecture: Intel x86
18:48:16.0312 2812  Number of processors: 2
18:48:16.0312 2812  Page size: 0x1000
18:48:16.0312 2812  Boot type: Normal boot
18:48:16.0312 2812  ============================================================
18:48:17.0406 2812  BG loaded
18:48:17.0750 2812  Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
18:48:17.0750 2812  ============================================================
18:48:17.0750 2812  \Device\Harddisk0\DR0:
18:48:17.0750 2812  MBR partitions:
18:48:17.0750 2812  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x950E482
18:48:17.0750 2812  ============================================================
18:48:17.0781 2812  C: <-> \Device\Harddisk0\DR0\Partition1
18:48:17.0781 2812  ============================================================
18:48:17.0781 2812  Initialize success
18:48:17.0781 2812  ============================================================
18:48:19.0484 3024  ============================================================
18:48:19.0484 3024  Scan started
18:48:19.0484 3024  Mode: Manual;
18:48:19.0484 3024  ============================================================
18:48:20.0765 3024  ================ Scan system memory ========================
18:48:20.0765 3024  System memory - ok
18:48:20.0765 3024  ================ Scan services =============================
18:48:20.0859 3024  89706550 - ok
18:48:20.0859 3024  Abiosdsk - ok
18:48:20.0875 3024  abp480n5 - ok
18:48:20.0921 3024  [ 8FD99680A539792A30E97944FDAECF17 ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:48:20.0921 3024  ACPI - ok
18:48:20.0953 3024  [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
18:48:20.0953 3024  ACPIEC - ok
18:48:21.0062 3024  [ CBDEDCD96AD5B6D89882B8F552BA2E60 ] AcrSch2Svc      C:\Program Files\Common Files\Apricorn\Schedule2\schedul2.exe
18:48:21.0062 3024  AcrSch2Svc - ok
18:48:21.0062 3024  adpu160m - ok
18:48:21.0093 3024  [ 8BED39E3C35D6A489438B8141717A557 ] aec             C:\WINDOWS\system32\drivers\aec.sys
18:48:21.0093 3024  aec - ok
18:48:21.0140 3024  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
18:48:21.0140 3024  AFD - ok
18:48:21.0156 3024  Aha154x - ok
18:48:21.0156 3024  aic78u2 - ok
18:48:21.0171 3024  aic78xx - ok
18:48:21.0218 3024  [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
18:48:21.0218 3024  Alerter - ok
18:48:21.0234 3024  [ 8C515081584A38AA007909CD02020B3D ] ALG             C:\WINDOWS\System32\alg.exe
18:48:21.0234 3024  ALG - ok
18:48:21.0234 3024  AliIde - ok
18:48:21.0250 3024  amsint - ok
18:48:21.0281 3024  [ 7B4BEB577C5D0171F9B66F390EC29284 ] apf001          C:\WINDOWS\system32\apf001.sys
18:48:21.0281 3024  apf001 - ok
18:48:21.0312 3024  [ 459C0FFF8FF5EB4E8DF7E2EFDCB28DE1 ] apf003          C:\WINDOWS\system32\apf003.sys
18:48:21.0312 3024  apf003 - ok
18:48:21.0359 3024  [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
18:48:21.0359 3024  AppMgmt - ok
18:48:21.0390 3024  [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394         C:\WINDOWS\system32\DRIVERS\arp1394.sys
18:48:21.0390 3024  Arp1394 - ok
18:48:21.0390 3024  asc - ok
18:48:21.0390 3024  asc3350p - ok
18:48:21.0406 3024  asc3550 - ok
18:48:21.0875 3024  [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
18:48:21.0875 3024  aspnet_state - ok
18:48:21.0906 3024  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:48:21.0906 3024  AsyncMac - ok
18:48:21.0921 3024  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
18:48:21.0937 3024  atapi - ok
18:48:21.0937 3024  Atdisk - ok
18:48:21.0984 3024  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:48:21.0984 3024  Atmarpc - ok
18:48:22.0031 3024  [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
18:48:22.0031 3024  AudioSrv - ok
18:48:22.0078 3024  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
18:48:22.0078 3024  audstub - ok
18:48:22.0109 3024  [ 71509C9DB1A4B2C05141563FBE3E18A0 ] b57w2k          C:\WINDOWS\system32\DRIVERS\b57xp32.sys
18:48:22.0109 3024  b57w2k - ok
18:48:22.0156 3024  [ E9EA635B8432D68F0005B3F6CEBAB837 ] BCM43XX         C:\WINDOWS\system32\DRIVERS\bcmwl5.sys
18:48:22.0171 3024  BCM43XX - ok
18:48:22.0203 3024  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
18:48:22.0203 3024  Beep - ok
18:48:22.0234 3024  [ 574738F61FCA2935F5265DC4E5691314 ] BITS            C:\WINDOWS\system32\qmgr.dll
18:48:22.0250 3024  BITS - ok
18:48:22.0265 3024  [ A06CE3399D16DB864F55FAEB1F1927A9 ] Browser         C:\WINDOWS\System32\browser.dll
18:48:22.0265 3024  Browser - ok
18:48:22.0406 3024  catchme - ok
18:48:22.0453 3024  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
18:48:22.0453 3024  cbidf2k - ok
18:48:22.0453 3024  cd20xrnt - ok
18:48:22.0515 3024  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
18:48:22.0515 3024  Cdaudio - ok
18:48:22.0562 3024  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
18:48:22.0562 3024  Cdfs - ok
18:48:22.0562 3024  [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:48:22.0562 3024  Cdrom - ok
18:48:22.0640 3024  [ 586E1E31E981A9799A6BB2EC9BB2F7E5 ] CDScheduler     C:\Program Files\CyberDefender\SchedulerService\SchedulerService.exe
18:48:22.0640 3024  CDScheduler - ok
18:48:22.0687 3024  [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc           C:\WINDOWS\system32\cisvc.exe
18:48:22.0687 3024  CiSvc - ok
18:48:22.0703 3024  [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
18:48:22.0703 3024  ClipSrv - ok
18:48:22.0750 3024  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:48:22.0750 3024  clr_optimization_v2.0.50727_32 - ok
18:48:22.0812 3024  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:48:22.0812 3024  clr_optimization_v4.0.30319_32 - ok
18:48:22.0843 3024  [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt          C:\WINDOWS\system32\DRIVERS\CmBatt.sys
18:48:22.0843 3024  CmBatt - ok
18:48:22.0859 3024  CmdIde - ok
18:48:22.0875 3024  [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt        C:\WINDOWS\system32\DRIVERS\compbatt.sys
18:48:22.0875 3024  Compbatt - ok
18:48:22.0890 3024  COMSysApp - ok
18:48:22.0906 3024  Cpqarray - ok
18:48:22.0937 3024  [ D01F685F8B4598D144B0CCE9FF95D8D5 ] cpudrv          C:\Program Files\SystemRequirementsLab\cpudrv.sys
18:48:22.0937 3024  cpudrv - ok
18:48:22.0968 3024  [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
18:48:22.0968 3024  CryptSvc - ok
18:48:22.0984 3024  [ 5C706C06C1279952D2CC1A609CA948BF ] CVirtA          C:\WINDOWS\system32\DRIVERS\CVirtA.sys
18:48:22.0984 3024  CVirtA - ok
18:48:23.0000 3024  dac2w2k - ok
18:48:23.0000 3024  dac960nt - ok
18:48:23.0062 3024  [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
18:48:23.0062 3024  DcomLaunch - ok
18:48:23.0093 3024  [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
18:48:23.0093 3024  Dhcp - ok
18:48:23.0125 3024  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
18:48:23.0125 3024  Disk - ok
18:48:23.0125 3024  dmadmin - ok
18:48:23.0187 3024  [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
18:48:23.0187 3024  dmboot - ok
18:48:23.0218 3024  [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
18:48:23.0218 3024  dmio - ok
18:48:23.0265 3024  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
18:48:23.0265 3024  dmload - ok
18:48:23.0312 3024  [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver        C:\WINDOWS\System32\dmserver.dll
18:48:23.0312 3024  dmserver - ok
18:48:23.0328 3024  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
18:48:23.0328 3024  DMusic - ok
18:48:23.0375 3024  [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
18:48:23.0375 3024  Dnscache - ok
18:48:23.0437 3024  [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
18:48:23.0437 3024  Dot3svc - ok
18:48:23.0437 3024  dpti2o - ok
18:48:23.0468 3024  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
18:48:23.0468 3024  drmkaud - ok
18:48:23.0484 3024  [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost         C:\WINDOWS\System32\eapsvc.dll
18:48:23.0484 3024  EapHost - ok
18:48:23.0500 3024  efavdrv - ok
18:48:23.0531 3024  [ B504C8B1C25C543539077D2082770F3D ] ERmvrDrv        C:\WINDOWS\system32\drivers\ERKRmvrDrv.sys
18:48:23.0531 3024  ERmvrDrv - ok
18:48:23.0546 3024  [ BC93B4A066477954555966D77FEC9ECB ] ERSvc           C:\WINDOWS\System32\ersvc.dll
18:48:23.0562 3024  ERSvc - ok
18:48:23.0593 3024  [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog        C:\WINDOWS\system32\services.exe
18:48:23.0609 3024  Eventlog - ok
18:48:23.0656 3024  [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem     C:\WINDOWS\system32\es.dll
18:48:23.0656 3024  EventSystem - ok
18:48:23.0687 3024  [ 38D332A6D56AF32635675F132548343E ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
18:48:23.0687 3024  Fastfat - ok
18:48:23.0734 3024  [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
18:48:23.0734 3024  FastUserSwitchingCompatibility - ok
18:48:23.0750 3024  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys
18:48:23.0750 3024  Fdc - ok
18:48:23.0796 3024  [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
18:48:23.0796 3024  Fips - ok
18:48:23.0859 3024  [ 227846995AFEEFA70D328BF5334A86A5 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
18:48:23.0859 3024  FLEXnet Licensing Service - ok
18:48:23.0890 3024  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
18:48:23.0890 3024  Flpydisk - ok
18:48:23.0937 3024  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
18:48:23.0937 3024  FltMgr - ok
18:48:23.0984 3024  [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
18:48:23.0984 3024  FontCache3.0.0.0 - ok
18:48:24.0015 3024  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:48:24.0015 3024  Fs_Rec - ok
18:48:24.0031 3024  [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:48:24.0031 3024  Ftdisk - ok
18:48:24.0062 3024  [ 77EBF3E9386DAA51551AF429052D88D0 ] giveio          C:\WINDOWS\system32\giveio.sys
18:48:24.0062 3024  giveio - ok
18:48:24.0078 3024  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:48:24.0078 3024  Gpc - ok
18:48:24.0171 3024  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
18:48:24.0171 3024  gupdate - ok
18:48:24.0171 3024  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
18:48:24.0171 3024  gupdatem - ok
18:48:24.0203 3024  [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
18:48:24.0203 3024  HDAudBus - ok
18:48:24.0281 3024  [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
18:48:24.0281 3024  helpsvc - ok
18:48:24.0328 3024  [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ         C:\WINDOWS\System32\hidserv.dll
18:48:24.0328 3024  HidServ - ok
18:48:24.0375 3024  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
18:48:24.0375 3024  HidUsb - ok
18:48:24.0421 3024  [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
18:48:24.0421 3024  hkmsvc - ok
18:48:24.0421 3024  hpn - ok
18:48:24.0484 3024  [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
18:48:24.0484 3024  HTTP - ok
18:48:24.0500 3024  [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
18:48:24.0500 3024  HTTPFilter - ok
18:48:24.0515 3024  i2omgmt - ok
18:48:24.0515 3024  i2omp - ok
18:48:24.0531 3024  [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:48:24.0531 3024  i8042prt - ok
18:48:24.0750 3024  [ 48846B31BE5A4FA662CCFDE7A1BA86B9 ] ialm            C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
18:48:24.0781 3024  ialm - ok
18:48:24.0859 3024  [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc           c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:48:24.0875 3024  idsvc - ok
18:48:24.0890 3024  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
18:48:24.0890 3024  Imapi - ok
18:48:24.0937 3024  [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService    C:\WINDOWS\system32\imapi.exe
18:48:24.0937 3024  ImapiService - ok
18:48:24.0953 3024  ini910u - ok
18:48:24.0968 3024  IntelIde - ok
18:48:25.0000 3024  [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
18:48:25.0000 3024  intelppm - ok
18:48:25.0015 3024  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
18:48:25.0015 3024  Ip6Fw - ok
18:48:25.0046 3024  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:48:25.0046 3024  IpFilterDriver - ok
18:48:25.0062 3024  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:48:25.0062 3024  IpInIp - ok
18:48:25.0109 3024  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:48:25.0109 3024  IpNat - ok
18:48:25.0140 3024  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:48:25.0140 3024  IPSec - ok
18:48:25.0156 3024  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
18:48:25.0156 3024  IRENUM - ok
18:48:25.0171 3024  [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:48:25.0171 3024  isapnp - ok
18:48:25.0203 3024  [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:48:25.0203 3024  Kbdclass - ok
18:48:25.0250 3024  [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
18:48:25.0250 3024  kbdhid - ok
18:48:25.0265 3024  [ 692BCF44383D056AED41B045A323D378 ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
18:48:25.0281 3024  kmixer - ok
18:48:25.0328 3024  [ B467646C54CC746128904E1654C750C1 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
18:48:25.0328 3024  KSecDD - ok
18:48:25.0359 3024  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
18:48:25.0359 3024  lanmanserver - ok
18:48:25.0406 3024  [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
18:48:25.0406 3024  lanmanworkstation - ok
18:48:25.0421 3024  lbrtfdc - ok
18:48:25.0453 3024  [ A7DB739AE99A796D91580147E919CC59 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
18:48:25.0453 3024  LmHosts - ok
18:48:25.0484 3024  [ 0DB7527DB188C7D967A37BB51BBF3963 ] MBAMSwissArmy   C:\WINDOWS\system32\drivers\mbamswissarmy.sys
18:48:25.0484 3024  MBAMSwissArmy - ok
18:48:25.0500 3024  [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
18:48:25.0500 3024  Messenger - ok
18:48:25.0546 3024  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
18:48:25.0546 3024  mnmdd - ok
18:48:25.0593 3024  [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
18:48:25.0593 3024  mnmsrvc - ok
18:48:25.0640 3024  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
18:48:25.0640 3024  Modem - ok
18:48:25.0656 3024  [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:48:25.0656 3024  Mouclass - ok
18:48:25.0703 3024  [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
18:48:25.0703 3024  mouhid - ok
18:48:25.0718 3024  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
18:48:25.0718 3024  MountMgr - ok
18:48:25.0765 3024  [ 7EDBBB9351A38C6BB0FE98CFD44DB430 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
18:48:25.0765 3024  MozillaMaintenance - ok
18:48:25.0765 3024  mraid35x - ok
18:48:25.0796 3024  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:48:25.0796 3024  MRxDAV - ok
18:48:25.0843 3024  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:48:25.0843 3024  MRxSmb - ok
18:48:25.0875 3024  [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
18:48:25.0875 3024  MSDTC - ok
18:48:25.0890 3024  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
18:48:25.0890 3024  Msfs - ok
18:48:25.0890 3024  MSIServer - ok
18:48:25.0906 3024  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:48:25.0906 3024  MSKSSRV - ok
18:48:25.0921 3024  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:48:25.0921 3024  MSPCLOCK - ok
18:48:25.0953 3024  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
18:48:25.0953 3024  MSPQM - ok
18:48:26.0000 3024  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:48:26.0000 3024  mssmbios - ok
18:48:26.0046 3024  [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
18:48:26.0046 3024  Mup - ok
18:48:26.0093 3024  [ 0102140028FAD045756796E1C685D695 ] napagent        C:\WINDOWS\System32\qagentrt.dll
18:48:26.0093 3024  napagent - ok
18:48:26.0156 3024  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
18:48:26.0156 3024  NDIS - ok
18:48:26.0187 3024  [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:48:26.0187 3024  NdisTapi - ok
18:48:26.0218 3024  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:48:26.0218 3024  Ndisuio - ok
18:48:26.0234 3024  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:48:26.0234 3024  NdisWan - ok
18:48:26.0281 3024  [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
18:48:26.0281 3024  NDProxy - ok
18:48:26.0296 3024  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
18:48:26.0296 3024  NetBIOS - ok
18:48:26.0328 3024  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
18:48:26.0328 3024  NetBT - ok
18:48:26.0375 3024  [ B857BA82860D7FF85AE29B095645563B ] NetDDE          C:\WINDOWS\system32\netdde.exe
18:48:26.0375 3024  NetDDE - ok
18:48:26.0375 3024  [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
18:48:26.0375 3024  NetDDEdsdm - ok
18:48:26.0406 3024  [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon        C:\WINDOWS\system32\lsass.exe
18:48:26.0406 3024  Netlogon - ok
18:48:26.0437 3024  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman          C:\WINDOWS\System32\netman.dll
18:48:26.0437 3024  Netman - ok
18:48:26.0515 3024  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
18:48:26.0515 3024  NetTcpPortSharing - ok
18:48:26.0562 3024  [ 37260A293B6A89373AE76791E6CC5A12 ] nhcDriverDevice C:\WINDOWS\system32\drivers\nhcDriver.sys
18:48:26.0562 3024  nhcDriverDevice - ok
18:48:26.0609 3024  [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394         C:\WINDOWS\system32\DRIVERS\nic1394.sys
18:48:26.0609 3024  NIC1394 - ok
18:48:26.0656 3024  [ 943337D786A56729263071623BBB9DE5 ] Nla             C:\WINDOWS\System32\mswsock.dll
18:48:26.0656 3024  Nla - ok
18:48:26.0671 3024  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
18:48:26.0687 3024  Npfs - ok
18:48:26.0687 3024  npggsvc - ok
18:48:26.0718 3024  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
18:48:26.0718 3024  Ntfs - ok
18:48:26.0734 3024  [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
18:48:26.0734 3024  NtLmSsp - ok
18:48:26.0796 3024  [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
18:48:26.0796 3024  NtmsSvc - ok
18:48:26.0812 3024  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys
18:48:26.0812 3024  Null - ok
18:48:26.0843 3024  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:48:26.0843 3024  NwlnkFlt - ok
18:48:26.0859 3024  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:48:26.0859 3024  NwlnkFwd - ok
18:48:26.0968 3024  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:48:26.0968 3024  odserv - ok
18:48:27.0015 3024  [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394        C:\WINDOWS\system32\DRIVERS\ohci1394.sys
18:48:27.0015 3024  ohci1394 - ok
18:48:27.0031 3024  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:48:27.0031 3024  ose - ok
18:48:27.0062 3024  [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport         C:\WINDOWS\system32\drivers\Parport.sys
18:48:27.0062 3024  Parport - ok
18:48:27.0093 3024  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
18:48:27.0093 3024  PartMgr - ok
18:48:27.0125 3024  [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
18:48:27.0125 3024  ParVdm - ok
18:48:27.0140 3024  [ A219903CCF74233761D92BEF471A07B1 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
18:48:27.0140 3024  PCI - ok
18:48:27.0140 3024  PCIDump - ok
18:48:27.0171 3024  [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
18:48:27.0171 3024  PCIIde - ok
18:48:27.0203 3024  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia          C:\WINDOWS\system32\DRIVERS\pcmcia.sys
18:48:27.0203 3024  Pcmcia - ok
18:48:27.0203 3024  PDCOMP - ok
18:48:27.0218 3024  PDFRAME - ok
18:48:27.0218 3024  PDRELI - ok
18:48:27.0234 3024  PDRFRAME - ok
18:48:27.0234 3024  perc2 - ok
18:48:27.0234 3024  perc2hib - ok
18:48:27.0296 3024  [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay        C:\WINDOWS\system32\services.exe
18:48:27.0296 3024  PlugPlay - ok
18:48:27.0328 3024  [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
18:48:27.0328 3024  PolicyAgent - ok
18:48:27.0343 3024  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:48:27.0343 3024  PptpMiniport - ok
18:48:27.0343 3024  [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
18:48:27.0343 3024  ProtectedStorage - ok
18:48:27.0359 3024  [ 09298EC810B07E5D582CB3A3F9255424 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
18:48:27.0359 3024  PSched - ok
18:48:27.0390 3024  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:48:27.0390 3024  Ptilink - ok
18:48:27.0421 3024  [ 153D02480A0A2F45785522E814C634B6 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
18:48:27.0421 3024  PxHelp20 - ok
18:48:27.0437 3024  qidkg - ok
18:48:27.0437 3024  ql1080 - ok
18:48:27.0437 3024  Ql10wnt - ok
18:48:27.0453 3024  ql12160 - ok
18:48:27.0453 3024  ql1240 - ok
18:48:27.0468 3024  ql1280 - ok
18:48:27.0500 3024  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:48:27.0500 3024  RasAcd - ok
18:48:27.0546 3024  [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
18:48:27.0546 3024  RasAuto - ok
18:48:27.0578 3024  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:48:27.0578 3024  Rasl2tp - ok
18:48:27.0625 3024  [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan          C:\WINDOWS\System32\rasmans.dll
18:48:27.0625 3024  RasMan - ok
18:48:27.0640 3024  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:48:27.0640 3024  RasPppoe - ok
18:48:27.0671 3024  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
18:48:27.0671 3024  Raspti - ok
18:48:27.0703 3024  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:48:27.0703 3024  Rdbss - ok
18:48:27.0718 3024  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:48:27.0718 3024  RDPCDD - ok
18:48:27.0750 3024  [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
18:48:27.0750 3024  rdpdr - ok
18:48:27.0796 3024  [ FC105DD312ED64EB66BFF111E8EC6EAC ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
18:48:27.0796 3024  RDPWD - ok
18:48:27.0843 3024  [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
18:48:27.0843 3024  RDSessMgr - ok
18:48:27.0890 3024  [ F828DD7E1419B6653894A8F97A0094C5 ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
18:48:27.0890 3024  redbook - ok
18:48:27.0906 3024  [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
18:48:27.0906 3024  RemoteAccess - ok
18:48:27.0906 3024  [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
18:48:27.0906 3024  RemoteRegistry - ok
18:48:27.0953 3024  [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator      C:\WINDOWS\system32\locator.exe
18:48:27.0953 3024  RpcLocator - ok
18:48:27.0984 3024  [ 6B27A5C03DFB94B4245739065431322C ] RpcSs           C:\WINDOWS\System32\rpcss.dll
18:48:27.0984 3024  RpcSs - ok
18:48:27.0984 3024  rqmcawvd - ok
18:48:28.0015 3024  [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP            C:\WINDOWS\system32\rsvp.exe
18:48:28.0015 3024  RSVP - ok
18:48:28.0031 3024  [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs           C:\WINDOWS\system32\lsass.exe
18:48:28.0031 3024  SamSs - ok
18:48:28.0062 3024  [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
18:48:28.0062 3024  SCardSvr - ok
18:48:28.0093 3024  [ 20B2751CD4C8F3FD989739CA661B9F30 ] SCDEmu          C:\WINDOWS\system32\drivers\SCDEmu.sys
18:48:28.0093 3024  SCDEmu - ok
18:48:28.0140 3024  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule        C:\WINDOWS\system32\schedsvc.dll
18:48:28.0140 3024  Schedule - ok
18:48:28.0281 3024  [ 206387AB881E93A1A6EB89966C8651F1 ] SDScannerService C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
18:48:28.0281 3024  SDScannerService - ok
18:48:28.0312 3024  [ CB63BDB77BB86549FC3303C2F11EDC18 ] SDWSCService    C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
18:48:28.0312 3024  SDWSCService - ok
18:48:28.0359 3024  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:48:28.0359 3024  Secdrv - ok
18:48:28.0390 3024  [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon        C:\WINDOWS\System32\seclogon.dll
18:48:28.0390 3024  seclogon - ok
18:48:28.0406 3024  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS            C:\WINDOWS\system32\sens.dll
18:48:28.0421 3024  SENS - ok
18:48:28.0437 3024  [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
18:48:28.0437 3024  serenum - ok
18:48:28.0453 3024  [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys
18:48:28.0468 3024  Serial - ok
18:48:28.0500 3024  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
18:48:28.0500 3024  Sfloppy - ok
18:48:28.0546 3024  [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
18:48:28.0562 3024  SharedAccess - ok
18:48:28.0578 3024  [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
18:48:28.0578 3024  ShellHWDetection - ok
18:48:28.0593 3024  Simbad - ok
18:48:28.0609 3024  Sparrow - ok
18:48:28.0640 3024  [ 3FA2E254BFBCE52B3C6F1BF23AAB6911 ] speedfan        C:\WINDOWS\system32\speedfan.sys
18:48:28.0656 3024  speedfan - ok
18:48:28.0671 3024  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
18:48:28.0671 3024  splitter - ok
18:48:28.0703 3024  [ 60784F891563FB1B767F70117FC2428F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
18:48:28.0703 3024  Spooler - ok
18:48:28.0718 3024  [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
18:48:28.0718 3024  sr - ok
18:48:28.0781 3024  [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice       C:\WINDOWS\system32\srsvc.dll
18:48:28.0781 3024  srservice - ok
18:48:28.0843 3024  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
18:48:28.0843 3024  Srv - ok
18:48:28.0875 3024  [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
18:48:28.0875 3024  SSDPSRV - ok
18:48:28.0937 3024  [ 6F855B5625A47F3AC731A262FDC379A6 ] STacSV          C:\Program Files\SigmaTel\C-Major Audio\DellXPM_5515v131\WDM\StacSV.exe
18:48:28.0953 3024  STacSV - ok
18:48:29.0031 3024  [ 951801DFB54D86F611F0AF47825476F9 ] STHDA           C:\WINDOWS\system32\drivers\sthda.sys
18:48:29.0046 3024  STHDA - ok
18:48:29.0078 3024  [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
18:48:29.0093 3024  stisvc - ok
18:48:29.0125 3024  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
18:48:29.0140 3024  swenum - ok
18:48:29.0156 3024  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
18:48:29.0156 3024  swmidi - ok
18:48:29.0156 3024  SwPrv - ok
18:48:29.0171 3024  symc810 - ok
18:48:29.0187 3024  symc8xx - ok
18:48:29.0187 3024  sym_hi - ok
18:48:29.0203 3024  sym_u3 - ok
18:48:29.0218 3024  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
18:48:29.0218 3024  sysaudio - ok
18:48:29.0281 3024  [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
18:48:29.0281 3024  SysmonLog - ok
18:48:29.0343 3024  [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
18:48:29.0343 3024  TapiSrv - ok
18:48:29.0437 3024  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:48:29.0437 3024  Tcpip - ok
18:48:29.0453 3024  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
18:48:29.0468 3024  TDPIPE - ok
18:48:29.0484 3024  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
18:48:29.0484 3024  TDTCP - ok
18:48:29.0531 3024  [ 88155247177638048422893737429D9E ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
18:48:29.0531 3024  TermDD - ok
18:48:29.0562 3024  [ FF3477C03BE7201C294C35F684B3479F ] TermService     C:\WINDOWS\System32\termsrv.dll
18:48:29.0562 3024  TermService - ok
18:48:29.0593 3024  [ 99BC0B50F511924348BE19C7C7313BBF ] Themes          C:\WINDOWS\System32\shsvcs.dll
18:48:29.0593 3024  Themes - ok
18:48:29.0640 3024  [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
18:48:29.0656 3024  TlntSvr - ok
18:48:29.0656 3024  TosIde - ok
18:48:29.0718 3024  [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks          C:\WINDOWS\system32\trkwks.dll
18:48:29.0718 3024  TrkWks - ok
18:48:29.0765 3024  [ 81532F3628F8ACC80FD1264095960C3A ] TrueSight       C:\WINDOWS\system32\drivers\TrueSight.sys
18:48:29.0765 3024  TrueSight - ok
18:48:29.0796 3024  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
18:48:29.0796 3024  Udfs - ok
18:48:29.0812 3024  ultra - ok
18:48:29.0843 3024  [ AB0A7CA90D9E3D6A193905DC1715DED0 ] UMWdf           C:\WINDOWS\system32\wdfmgr.exe
18:48:29.0843 3024  UMWdf - ok
18:48:29.0906 3024  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
18:48:29.0921 3024  Update - ok
18:48:29.0968 3024  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost        C:\WINDOWS\System32\upnphost.dll
18:48:29.0968 3024  upnphost - ok
18:48:30.0000 3024  [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS             C:\WINDOWS\System32\ups.exe
18:48:30.0000 3024  UPS - ok
18:48:30.0031 3024  [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:48:30.0031 3024  usbccgp - ok
18:48:30.0062 3024  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:48:30.0062 3024  usbehci - ok
18:48:30.0109 3024  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:48:30.0109 3024  usbhub - ok
18:48:30.0140 3024  [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:48:30.0140 3024  USBSTOR - ok
18:48:30.0156 3024  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
18:48:30.0171 3024  usbuhci - ok
18:48:30.0218 3024  [ B6CC50279D6CD28E090A5D33244ADC9A ] usb_rndisx      C:\WINDOWS\system32\DRIVERS\usb8023x.sys
18:48:30.0218 3024  usb_rndisx - ok
18:48:30.0250 3024  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
18:48:30.0250 3024  VgaSave - ok
18:48:30.0250 3024  ViaIde - ok
18:48:30.0281 3024  [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
18:48:30.0281 3024  VolSnap - ok
18:48:30.0296 3024  vsdatant - ok
18:48:30.0359 3024  [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS             C:\WINDOWS\System32\vssvc.exe
18:48:30.0359 3024  VSS - ok
18:48:30.0390 3024  [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time         C:\WINDOWS\system32\w32time.dll
18:48:30.0390 3024  W32Time - ok
18:48:30.0421 3024  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:48:30.0421 3024  Wanarp - ok
18:48:30.0421 3024  WDICA - ok
18:48:30.0453 3024  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
18:48:30.0453 3024  wdmaud - ok
18:48:30.0468 3024  [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient       C:\WINDOWS\System32\webclnt.dll
18:48:30.0468 3024  WebClient - ok
18:48:30.0562 3024  [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
18:48:30.0562 3024  winmgmt - ok
18:48:30.0609 3024  WinRing0_1_2_0 - ok
18:48:30.0625 3024  wltrysvc - ok
18:48:30.0656 3024  [ 140EF97B64F560FD78643CAE2CDAD838 ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
18:48:30.0656 3024  WmdmPmSN - ok
18:48:30.0703 3024  [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi             C:\WINDOWS\System32\advapi32.dll
18:48:30.0703 3024  Wmi - ok
18:48:30.0765 3024  [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi         C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
18:48:30.0765 3024  WmiAcpi - ok
18:48:30.0796 3024  [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
18:48:30.0796 3024  WmiApSrv - ok
18:48:30.0828 3024  [ 1385E5AA9C9821790D33A9563B8D2DD0 ] WpdUsb          C:\WINDOWS\system32\Drivers\wpdusb.sys
18:48:30.0828 3024  WpdUsb - ok
18:48:31.0015 3024  [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
18:48:31.0031 3024  WPFFontCache_v0400 - ok
18:48:31.0062 3024  [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys
18:48:31.0062 3024  WS2IFSL - ok
18:48:31.0109 3024  [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
18:48:31.0109 3024  wscsvc - ok
18:48:31.0140 3024  [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
18:48:31.0140 3024  wuauserv - ok
18:48:31.0203 3024  [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
18:48:31.0265 3024  WZCSVC - ok
18:48:31.0265 3024  XDva370 - ok
18:48:31.0468 3024  [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
18:48:31.0468 3024  xmlprov - ok
18:48:31.0468 3024  ================ Scan global ===============================
18:48:31.0515 3024  [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
18:48:31.0562 3024  [ 95CF3446911A6E25EE4086DF8A45B2AA ] C:\WINDOWS\system32\winsrv.dll
18:48:31.0562 3024  [ 95CF3446911A6E25EE4086DF8A45B2AA ] C:\WINDOWS\system32\winsrv.dll
18:48:31.0593 3024  [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
18:48:31.0593 3024  [Global] - ok
18:48:31.0593 3024  ================ Scan MBR ==================================
18:48:31.0609 3024  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
18:48:31.0765 3024  \Device\Harddisk0\DR0 - ok
18:48:31.0765 3024  ================ Scan VBR ==================================
18:48:31.0781 3024  [ A1A09407B644C40BBB52F0F95D2ED4ED ] \Device\Harddisk0\DR0\Partition1
18:48:31.0781 3024  \Device\Harddisk0\DR0\Partition1 - ok
18:48:31.0781 3024  ============================================================
18:48:31.0781 3024  Scan finished
18:48:31.0781 3024  ============================================================
18:48:31.0781 3016  Detected object count: 0
18:48:31.0781 3016  Actual detected object count: 0
18:48:46.0453 3572  ============================================================
18:48:46.0453 3572  Scan started
18:48:46.0453 3572  Mode: Manual; SigCheck; TDLFS;
18:48:46.0453 3572  ============================================================
18:48:46.0906 3572  ================ Scan system memory ========================
18:48:46.0906 3572  System memory - ok
18:48:46.0906 3572  ================ Scan services =============================
18:48:47.0031 3572  89706550 - ok
18:48:47.0031 3572  Abiosdsk - ok
18:48:47.0031 3572  abp480n5 - ok
18:48:47.0093 3572  [ 8FD99680A539792A30E97944FDAECF17 ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:48:47.0296 3572  ACPI - ok
18:48:47.0328 3572  [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
18:48:47.0437 3572  ACPIEC - ok
18:48:47.0593 3572  [ CBDEDCD96AD5B6D89882B8F552BA2E60 ] AcrSch2Svc      C:\Program Files\Common Files\Apricorn\Schedule2\schedul2.exe
18:48:47.0609 3572  AcrSch2Svc - ok
18:48:47.0625 3572  adpu160m - ok
18:48:47.0656 3572  [ 8BED39E3C35D6A489438B8141717A557 ] aec             C:\WINDOWS\system32\drivers\aec.sys
18:48:47.0765 3572  aec - ok
18:48:47.0796 3572  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
18:48:47.0828 3572  AFD - ok
18:48:47.0828 3572  Aha154x - ok
18:48:47.0843 3572  aic78u2 - ok
18:48:47.0843 3572  aic78xx - ok
18:48:47.0890 3572  [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
18:48:48.0015 3572  Alerter - ok
18:48:48.0031 3572  [ 8C515081584A38AA007909CD02020B3D ] ALG             C:\WINDOWS\System32\alg.exe
18:48:48.0078 3572  ALG - ok
18:48:48.0093 3572  AliIde - ok
18:48:48.0093 3572  amsint - ok
18:48:48.0125 3572  [ 7B4BEB577C5D0171F9B66F390EC29284 ] apf001          C:\WINDOWS\system32\apf001.sys
18:48:48.0140 3572  apf001 - ok
18:48:48.0156 3572  [ 459C0FFF8FF5EB4E8DF7E2EFDCB28DE1 ] apf003          C:\WINDOWS\system32\apf003.sys
18:48:48.0203 3572  apf003 ( UnsignedFile.Multi.Generic ) - warning
18:48:48.0203 3572  apf003 - detected UnsignedFile.Multi.Generic (1)
18:48:48.0250 3572  [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
18:48:48.0312 3572  AppMgmt - ok
18:48:48.0343 3572  [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394         C:\WINDOWS\system32\DRIVERS\arp1394.sys
18:48:48.0453 3572  Arp1394 - ok
18:48:48.0453 3572  asc - ok
18:48:48.0453 3572  asc3350p - ok
18:48:48.0468 3572  asc3550 - ok
18:48:49.0125 3572  [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
18:48:49.0140 3572  aspnet_state - ok
18:48:49.0156 3572  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:48:49.0281 3572  AsyncMac - ok
18:48:49.0328 3572  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
18:48:49.0500 3572  atapi - ok
18:48:49.0500 3572  Atdisk - ok
18:48:49.0562 3572  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:48:49.0671 3572  Atmarpc - ok
18:48:49.0703 3572  [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
18:48:49.0828 3572  AudioSrv - ok
18:48:49.0859 3572  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
18:48:49.0953 3572  audstub - ok
18:48:49.0984 3572  [ 71509C9DB1A4B2C05141563FBE3E18A0 ] b57w2k          C:\WINDOWS\system32\DRIVERS\b57xp32.sys
18:48:50.0046 3572  b57w2k - ok
18:48:50.0140 3572  [ E9EA635B8432D68F0005B3F6CEBAB837 ] BCM43XX         C:\WINDOWS\system32\DRIVERS\bcmwl5.sys
18:48:50.0234 3572  BCM43XX - ok
18:48:50.0265 3572  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
18:48:50.0390 3572  Beep - ok
18:48:50.0500 3572  [ 574738F61FCA2935F5265DC4E5691314 ] BITS            C:\WINDOWS\system32\qmgr.dll
18:48:50.0671 3572  BITS - ok
18:48:50.0734 3572  [ A06CE3399D16DB864F55FAEB1F1927A9 ] Browser         C:\WINDOWS\System32\browser.dll
18:48:50.0906 3572  Browser - ok
18:48:51.0109 3572  catchme - ok
18:48:51.0156 3572  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
18:48:51.0281 3572  cbidf2k - ok
18:48:51.0281 3572  cd20xrnt - ok
18:48:51.0296 3572  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
18:48:51.0406 3572  Cdaudio - ok
18:48:51.0453 3572  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
18:48:51.0656 3572  Cdfs - ok
18:48:51.0671 3572  [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:48:51.0812 3572  Cdrom - ok
18:48:51.0921 3572  [ 586E1E31E981A9799A6BB2EC9BB2F7E5 ] CDScheduler     C:\Program Files\CyberDefender\SchedulerService\SchedulerService.exe
18:48:51.0984 3572  CDScheduler - ok
18:48:52.0015 3572  [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc           C:\WINDOWS\system32\cisvc.exe
18:48:52.0140 3572  CiSvc - ok
18:48:52.0171 3572  [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
18:48:52.0296 3572  ClipSrv - ok
18:48:52.0359 3572  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:48:52.0375 3572  clr_optimization_v2.0.50727_32 - ok
18:48:52.0437 3572  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:48:52.0437 3572  clr_optimization_v4.0.30319_32 - ok
18:48:52.0468 3572  [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt          C:\WINDOWS\system32\DRIVERS\CmBatt.sys
18:48:52.0609 3572  CmBatt - ok
18:48:52.0609 3572  CmdIde - ok
18:48:52.0687 3572  [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt        C:\WINDOWS\system32\DRIVERS\compbatt.sys
18:48:52.0812 3572  Compbatt - ok
18:48:52.0828 3572  COMSysApp - ok
18:48:52.0828 3572  Cpqarray - ok
18:48:52.0890 3572  [ D01F685F8B4598D144B0CCE9FF95D8D5 ] cpudrv          C:\Program Files\SystemRequirementsLab\cpudrv.sys
18:48:52.0906 3572  cpudrv - ok
18:48:52.0937 3572  [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
18:48:53.0078 3572  CryptSvc - ok
18:48:53.0109 3572  [ 5C706C06C1279952D2CC1A609CA948BF ] CVirtA          C:\WINDOWS\system32\DRIVERS\CVirtA.sys
18:48:53.0156 3572  CVirtA - ok
18:48:53.0156 3572  dac2w2k - ok
18:48:53.0156 3572  dac960nt - ok
18:48:53.0234 3572  [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
18:48:53.0296 3572  DcomLaunch - ok
18:48:53.0328 3572  [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
18:48:53.0484 3572  Dhcp - ok
18:48:53.0562 3572  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
18:48:53.0750 3572  Disk - ok
18:48:53.0750 3572  dmadmin - ok
18:48:53.0828 3572  [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
18:48:54.0046 3572  dmboot - ok
18:48:54.0078 3572  [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
18:48:54.0250 3572  dmio - ok
18:48:54.0281 3572  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
18:48:54.0437 3572  dmload - ok
18:48:54.0484 3572  [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver        C:\WINDOWS\System32\dmserver.dll
18:48:54.0640 3572  dmserver - ok
18:48:54.0656 3572  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
18:48:54.0765 3572  DMusic - ok
18:48:54.0812 3572  [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
18:48:54.0828 3572  Dnscache - ok
18:48:54.0875 3572  [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
18:48:54.0984 3572  Dot3svc - ok
18:48:54.0984 3572  dpti2o - ok
18:48:55.0031 3572  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
18:48:55.0125 3572  drmkaud - ok
18:48:55.0171 3572  [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost         C:\WINDOWS\System32\eapsvc.dll
18:48:55.0265 3572  EapHost - ok
18:48:55.0281 3572  efavdrv - ok
18:48:55.0296 3572  [ B504C8B1C25C543539077D2082770F3D ] ERmvrDrv        C:\WINDOWS\system32\drivers\ERKRmvrDrv.sys
18:48:55.0312 3572  ERmvrDrv - ok
18:48:55.0328 3572  [ BC93B4A066477954555966D77FEC9ECB ] ERSvc           C:\WINDOWS\System32\ersvc.dll
18:48:55.0437 3572  ERSvc - ok
18:48:55.0468 3572  [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog        C:\WINDOWS\system32\services.exe
18:48:55.0500 3572  Eventlog - ok
18:48:55.0546 3572  [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem     C:\WINDOWS\system32\es.dll
18:48:55.0578 3572  EventSystem - ok
18:48:55.0593 3572  [ 38D332A6D56AF32635675F132548343E ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
18:48:55.0703 3572  Fastfat - ok
18:48:55.0750 3572  [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
18:48:55.0765 3572  FastUserSwitchingCompatibility - ok
18:48:55.0765 3572  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys
18:48:55.0875 3572  Fdc - ok
18:48:55.0906 3572  [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
18:48:56.0015 3572  Fips - ok
18:48:56.0062 3572  [ 227846995AFEEFA70D328BF5334A86A5 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
18:48:56.0109 3572  FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - warning
18:48:56.0109 3572  FLEXnet Licensing Service - detected UnsignedFile.Multi.Generic (1)
18:48:56.0171 3572  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
18:48:56.0250 3572  Flpydisk - ok
18:48:56.0312 3572  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
18:48:56.0390 3572  FltMgr - ok
18:48:56.0453 3572  [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
18:48:56.0468 3572  FontCache3.0.0.0 - ok
18:48:56.0484 3572  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:48:56.0578 3572  Fs_Rec - ok
18:48:56.0609 3572  [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:48:56.0703 3572  Ftdisk - ok
18:48:56.0734 3572  [ 77EBF3E9386DAA51551AF429052D88D0 ] giveio          C:\WINDOWS\system32\giveio.sys
18:48:56.0750 3572  giveio ( UnsignedFile.Multi.Generic ) - warning
18:48:56.0750 3572  giveio - detected UnsignedFile.Multi.Generic (1)
18:48:56.0781 3572  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:48:56.0875 3572  Gpc - ok
18:48:56.0953 3572  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
18:48:56.0968 3572  gupdate - ok
18:48:56.0968 3572  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
18:48:56.0984 3572  gupdatem - ok
18:48:57.0000 3572  [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
18:48:57.0109 3572  HDAudBus - ok
18:48:57.0171 3572  [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
18:48:57.0281 3572  helpsvc - ok
18:48:57.0328 3572  [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ         C:\WINDOWS\System32\hidserv.dll
18:48:57.0484 3572  HidServ - ok
18:48:57.0531 3572  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
18:48:57.0687 3572  HidUsb - ok
18:48:57.0765 3572  [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
18:48:57.0875 3572  hkmsvc - ok
18:48:57.0875 3572  hpn - ok
18:48:57.0921 3572  [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
18:48:57.0937 3572  HTTP - ok
18:48:57.0968 3572  [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
18:48:58.0078 3572  HTTPFilter - ok
18:48:58.0093 3572  i2omgmt - ok
18:48:58.0093 3572  i2omp - ok
18:48:58.0109 3572  [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:48:58.0203 3572  i8042prt - ok
18:48:58.0406 3572  [ 48846B31BE5A4FA662CCFDE7A1BA86B9 ] ialm            C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
18:48:58.0656 3572  ialm - ok
18:48:58.0750 3572  [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc           c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:48:58.0812 3572  idsvc - ok
18:48:58.0843 3572  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
18:48:59.0062 3572  Imapi - ok
18:48:59.0125 3572  [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService    C:\WINDOWS\system32\imapi.exe
18:48:59.0234 3572  ImapiService - ok
18:48:59.0234 3572  ini910u - ok
18:48:59.0234 3572  IntelIde - ok
18:48:59.0281 3572  [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
18:48:59.0375 3572  intelppm - ok
18:48:59.0390 3572  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
18:48:59.0500 3572  Ip6Fw - ok
18:48:59.0531 3572  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:48:59.0640 3572  IpFilterDriver - ok
18:48:59.0656 3572  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:48:59.0750 3572  IpInIp - ok
18:48:59.0796 3572  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:48:59.0906 3572  IpNat - ok
18:48:59.0921 3572  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:49:00.0031 3572  IPSec - ok
18:49:00.0046 3572  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
18:49:00.0078 3572  IRENUM - ok
18:49:00.0093 3572  [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:49:00.0203 3572  isapnp - ok
18:49:00.0234 3572  [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:49:00.0328 3572  Kbdclass - ok
18:49:00.0375 3572  [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
18:49:00.0468 3572  kbdhid - ok
18:49:00.0500 3572  [ 692BCF44383D056AED41B045A323D378 ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
18:49:00.0593 3572  kmixer - ok
18:49:00.0640 3572  [ B467646C54CC746128904E1654C750C1 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
18:49:00.0656 3572  KSecDD - ok
18:49:00.0687 3572  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
18:49:00.0734 3572  lanmanserver - ok
18:49:00.0765 3572  [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
18:49:00.0812 3572  lanmanworkstation - ok
18:49:00.0812 3572  lbrtfdc - ok
18:49:00.0859 3572  [ A7DB739AE99A796D91580147E919CC59 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
18:49:00.0968 3572  LmHosts - ok
18:49:01.0000 3572  [ 0DB7527DB188C7D967A37BB51BBF3963 ] MBAMSwissArmy   C:\WINDOWS\system32\drivers\mbamswissarmy.sys
18:49:01.0000 3572  MBAMSwissArmy - ok
18:49:01.0031 3572  [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
18:49:01.0125 3572  Messenger - ok
18:49:01.0156 3572  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
18:49:01.0312 3572  mnmdd - ok
18:49:01.0359 3572  [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
18:49:01.0500 3572  mnmsrvc - ok
18:49:01.0546 3572  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
18:49:01.0640 3572  Modem - ok
18:49:01.0656 3572  [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:49:01.0765 3572  Mouclass - ok
18:49:01.0796 3572  [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
18:49:01.0906 3572  mouhid - ok
18:49:01.0921 3572  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
18:49:02.0031 3572  MountMgr - ok
18:49:02.0078 3572  [ 7EDBBB9351A38C6BB0FE98CFD44DB430 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
18:49:02.0078 3572  MozillaMaintenance - ok
18:49:02.0093 3572  mraid35x - ok
18:49:02.0125 3572  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:49:02.0218 3572  MRxDAV - ok
18:49:02.0281 3572  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:49:02.0328 3572  MRxSmb - ok
18:49:02.0375 3572  [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
18:49:02.0468 3572  MSDTC - ok
18:49:02.0484 3572  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
18:49:02.0578 3572  Msfs - ok
18:49:02.0578 3572  MSIServer - ok
18:49:02.0593 3572  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:49:02.0687 3572  MSKSSRV - ok
18:49:02.0703 3572  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:49:02.0812 3572  MSPCLOCK - ok
18:49:02.0828 3572  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
18:49:02.0921 3572  MSPQM - ok
18:49:02.0953 3572  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:49:03.0046 3572  mssmbios - ok
18:49:03.0078 3572  [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
18:49:03.0109 3572  Mup - ok
18:49:03.0140 3572  [ 0102140028FAD045756796E1C685D695 ] napagent        C:\WINDOWS\System32\qagentrt.dll
18:49:03.0250 3572  napagent - ok
18:49:03.0281 3572  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
18:49:03.0375 3572  NDIS - ok
18:49:03.0406 3572  [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:49:03.0421 3572  NdisTapi - ok
18:49:03.0437 3572  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:49:03.0546 3572  Ndisuio - ok
18:49:03.0562 3572  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:49:03.0671 3572  NdisWan - ok
18:49:03.0718 3572  [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
18:49:03.0750 3572  NDProxy - ok
18:49:03.0765 3572  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
18:49:03.0859 3572  NetBIOS - ok
18:49:03.0890 3572  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
18:49:03.0984 3572  NetBT - ok
18:49:04.0031 3572  [ B857BA82860D7FF85AE29B095645563B ] NetDDE          C:\WINDOWS\system32\netdde.exe
18:49:04.0109 3572  NetDDE - ok
18:49:04.0125 3572  [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
18:49:04.0218 3572  NetDDEdsdm - ok
18:49:04.0218 3572  [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon        C:\WINDOWS\system32\lsass.exe
18:49:04.0312 3572  Netlogon - ok
18:49:04.0328 3572  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman          C:\WINDOWS\System32\netman.dll
18:49:04.0421 3572  Netman - ok
18:49:04.0515 3572  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
18:49:04.0515 3572  NetTcpPortSharing - ok
18:49:04.0562 3572  [ 37260A293B6A89373AE76791E6CC5A12 ] nhcDriverDevice C:\WINDOWS\system32\drivers\nhcDriver.sys
18:49:04.0562 3572  nhcDriverDevice ( UnsignedFile.Multi.Generic ) - warning
18:49:04.0562 3572  nhcDriverDevice - detected UnsignedFile.Multi.Generic (1)
18:49:04.0609 3572  [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394         C:\WINDOWS\system32\DRIVERS\nic1394.sys
18:49:04.0703 3572  NIC1394 - ok
18:49:04.0734 3572  [ 943337D786A56729263071623BBB9DE5 ] Nla             C:\WINDOWS\System32\mswsock.dll
18:49:04.0765 3572  Nla - ok
18:49:04.0781 3572  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
18:49:04.0890 3572  Npfs - ok
18:49:04.0890 3572  npggsvc - ok
18:49:04.0921 3572  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
18:49:05.0062 3572  Ntfs - ok
18:49:05.0078 3572  [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
18:49:05.0156 3572  NtLmSsp - ok
18:49:05.0218 3572  [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
18:49:05.0343 3572  NtmsSvc - ok
18:49:05.0359 3572  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys
18:49:05.0468 3572  Null - ok
18:49:05.0484 3572  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:49:05.0578 3572  NwlnkFlt - ok
18:49:05.0609 3572  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:49:05.0687 3572  NwlnkFwd - ok
18:49:05.0796 3572  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:49:05.0812 3572  odserv - ok
18:49:05.0875 3572  [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394        C:\WINDOWS\system32\DRIVERS\ohci1394.sys
18:49:05.0968 3572  ohci1394 - ok
18:49:05.0984 3572  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:49:06.0000 3572  ose - ok
18:49:06.0015 3572  [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport         C:\WINDOWS\system32\drivers\Parport.sys
18:49:06.0109 3572  Parport - ok
18:49:06.0156 3572  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
18:49:06.0265 3572  PartMgr - ok
18:49:06.0296 3572  [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
18:49:06.0437 3572  ParVdm - ok
18:49:06.0468 3572  [ A219903CCF74233761D92BEF471A07B1 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
18:49:06.0578 3572  PCI - ok
18:49:06.0578 3572  PCIDump - ok
18:49:06.0593 3572  [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
18:49:06.0687 3572  PCIIde - ok
18:49:06.0703 3572  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia          C:\WINDOWS\system32\DRIVERS\pcmcia.sys
18:49:06.0796 3572  Pcmcia - ok
18:49:06.0812 3572  PDCOMP - ok
18:49:06.0812 3572  PDFRAME - ok
18:49:06.0812 3572  PDRELI - ok
18:49:06.0828 3572  PDRFRAME - ok
18:49:06.0828 3572  perc2 - ok
18:49:06.0828 3572  perc2hib - ok
18:49:06.0859 3572  [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay        C:\WINDOWS\system32\services.exe
18:49:06.0890 3572  PlugPlay - ok
18:49:06.0906 3572  [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
18:49:06.0984 3572  PolicyAgent - ok
18:49:07.0031 3572  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:49:07.0125 3572  PptpMiniport - ok
18:49:07.0140 3572  [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
18:49:07.0218 3572  ProtectedStorage - ok
18:49:07.0234 3572  [ 09298EC810B07E5D582CB3A3F9255424 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
18:49:07.0343 3572  PSched - ok
18:49:07.0359 3572  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:49:07.0468 3572  Ptilink - ok
18:49:07.0500 3572  [ 153D02480A0A2F45785522E814C634B6 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
18:49:07.0500 3572  PxHelp20 - ok
18:49:07.0515 3572  qidkg - ok
18:49:07.0515 3572  ql1080 - ok
18:49:07.0515 3572  Ql10wnt - ok
18:49:07.0515 3572  ql12160 - ok
18:49:07.0531 3572  ql1240 - ok
18:49:07.0531 3572  ql1280 - ok
18:49:07.0562 3572  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:49:07.0640 3572  RasAcd - ok
18:49:07.0671 3572  [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
18:49:07.0765 3572  RasAuto - ok
18:49:07.0781 3572  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:49:07.0875 3572  Rasl2tp - ok
18:49:07.0921 3572  [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan          C:\WINDOWS\System32\rasmans.dll
18:49:08.0015 3572  RasMan - ok
18:49:08.0031 3572  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:49:08.0140 3572  RasPppoe - ok
18:49:08.0156 3572  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
18:49:08.0265 3572  Raspti - ok
18:49:08.0281 3572  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:49:08.0390 3572  Rdbss - ok
18:49:08.0406 3572  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:49:08.0484 3572  RDPCDD - ok
18:49:08.0500 3572  [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
18:49:08.0609 3572  rdpdr - ok
18:49:08.0656 3572  [ FC105DD312ED64EB66BFF111E8EC6EAC ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
18:49:08.0671 3572  RDPWD - ok
18:49:08.0718 3572  [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
18:49:08.0812 3572  RDSessMgr - ok
18:49:08.0828 3572  [ F828DD7E1419B6653894A8F97A0094C5 ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
18:49:08.0921 3572  redbook - ok
18:49:08.0968 3572  [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
18:49:09.0078 3572  RemoteAccess - ok
18:49:09.0109 3572  [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
18:49:09.0203 3572  RemoteRegistry - ok
18:49:09.0234 3572  [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator      C:\WINDOWS\system32\locator.exe
18:49:09.0312 3572  RpcLocator - ok
18:49:09.0343 3572  [ 6B27A5C03DFB94B4245739065431322C ] RpcSs           C:\WINDOWS\System32\rpcss.dll
18:49:09.0390 3572  RpcSs - ok
18:49:09.0390 3572  rqmcawvd - ok
18:49:09.0421 3572  [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP            C:\WINDOWS\system32\rsvp.exe
18:49:09.0515 3572  RSVP - ok
18:49:09.0531 3572  [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs           C:\WINDOWS\system32\lsass.exe
18:49:09.0625 3572  SamSs - ok
18:49:09.0656 3572  [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
18:49:09.0750 3572  SCardSvr - ok
18:49:09.0781 3572  [ 20B2751CD4C8F3FD989739CA661B9F30 ] SCDEmu          C:\WINDOWS\system32\drivers\SCDEmu.sys
18:49:09.0781 3572  SCDEmu ( UnsignedFile.Multi.Generic ) - warning
18:49:09.0781 3572  SCDEmu - detected UnsignedFile.Multi.Generic (1)
18:49:09.0812 3572  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule        C:\WINDOWS\system32\schedsvc.dll
18:49:09.0921 3572  Schedule - ok
18:49:10.0046 3572  [ 206387AB881E93A1A6EB89966C8651F1 ] SDScannerService C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
18:49:10.0078 3572  SDScannerService - ok
18:49:10.0125 3572  [ CB63BDB77BB86549FC3303C2F11EDC18 ] SDWSCService    C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
18:49:10.0140 3572  SDWSCService - ok
18:49:10.0171 3572  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:49:10.0234 3572  Secdrv - ok
18:49:10.0265 3572  [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon        C:\WINDOWS\System32\seclogon.dll
18:49:10.0375 3572  seclogon - ok
18:49:10.0406 3572  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS            C:\WINDOWS\system32\sens.dll
18:49:10.0515 3572  SENS - ok
18:49:10.0531 3572  [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
18:49:10.0625 3572  serenum - ok
18:49:10.0640 3572  [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys
18:49:10.0750 3572  Serial - ok
18:49:10.0765 3572  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
18:49:10.0859 3572  Sfloppy - ok
18:49:10.0906 3572  [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
18:49:11.0015 3572  SharedAccess - ok
18:49:11.0046 3572  [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
18:49:11.0046 3572  ShellHWDetection - ok
18:49:11.0062 3572  Simbad - ok
18:49:11.0062 3572  Sparrow - ok
18:49:11.0093 3572  [ 3FA2E254BFBCE52B3C6F1BF23AAB6911 ] speedfan        C:\WINDOWS\system32\speedfan.sys
18:49:11.0109 3572  speedfan - ok
18:49:11.0125 3572  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
18:49:11.0218 3572  splitter - ok
18:49:11.0250 3572  [ 60784F891563FB1B767F70117FC2428F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
18:49:11.0250 3572  Spooler - ok
18:49:11.0281 3572  [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
18:49:11.0328 3572  sr - ok
18:49:11.0359 3572  [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice       C:\WINDOWS\system32\srsvc.dll
18:49:11.0406 3572  srservice - ok
18:49:11.0468 3572  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
18:49:11.0515 3572  Srv - ok
18:49:11.0531 3572  [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
18:49:11.0593 3572  SSDPSRV - ok
18:49:11.0656 3572  [ 6F855B5625A47F3AC731A262FDC379A6 ] STacSV          C:\Program Files\SigmaTel\C-Major Audio\DellXPM_5515v131\WDM\StacSV.exe
18:49:11.0703 3572  STacSV - ok
18:49:11.0796 3572  [ 951801DFB54D86F611F0AF47825476F9 ] STHDA           C:\WINDOWS\system32\drivers\sthda.sys
18:49:11.0890 3572  STHDA - ok
18:49:11.0937 3572  [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
18:49:12.0109 3572  stisvc - ok
18:49:12.0171 3572  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
18:49:12.0265 3572  swenum - ok
18:49:12.0281 3572  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
18:49:12.0375 3572  swmidi - ok
18:49:12.0390 3572  SwPrv - ok
18:49:12.0390 3572  symc810 - ok
18:49:12.0390 3572  symc8xx - ok
18:49:12.0406 3572  sym_hi - ok
18:49:12.0406 3572  sym_u3 - ok
18:49:12.0421 3572  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
18:49:12.0531 3572  sysaudio - ok
18:49:12.0578 3572  [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
18:49:12.0671 3572  SysmonLog - ok
18:49:12.0703 3572  [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
18:49:12.0796 3572  TapiSrv - ok
18:49:12.0843 3572  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:49:12.0875 3572  Tcpip - ok
18:49:12.0906 3572  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
18:49:12.0984 3572  TDPIPE - ok
18:49:13.0000 3572  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
18:49:13.0078 3572  TDTCP - ok
18:49:13.0109 3572  [ 88155247177638048422893737429D9E ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
18:49:13.0203 3572  TermDD - ok
18:49:13.0250 3572  [ FF3477C03BE7201C294C35F684B3479F ] TermService     C:\WINDOWS\System32\termsrv.dll
18:49:13.0343 3572  TermService - ok
18:49:13.0375 3572  [ 99BC0B50F511924348BE19C7C7313BBF ] Themes          C:\WINDOWS\System32\shsvcs.dll
18:49:13.0390 3572  Themes - ok
18:49:13.0421 3572  [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
18:49:13.0468 3572  TlntSvr - ok
18:49:13.0468 3572  TosIde - ok
18:49:13.0500 3572  [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks          C:\WINDOWS\system32\trkwks.dll
18:49:13.0609 3572  TrkWks - ok
18:49:13.0640 3572  [ 81532F3628F8ACC80FD1264095960C3A ] TrueSight       C:\WINDOWS\system32\drivers\TrueSight.sys
18:49:13.0656 3572  TrueSight ( UnsignedFile.Multi.Generic ) - warning
18:49:13.0656 3572  TrueSight - detected UnsignedFile.Multi.Generic (1)
18:49:13.0671 3572  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
18:49:13.0781 3572  Udfs - ok
18:49:13.0781 3572  ultra - ok
18:49:13.0812 3572  [ AB0A7CA90D9E3D6A193905DC1715DED0 ] UMWdf           C:\WINDOWS\system32\wdfmgr.exe
18:49:13.0843 3572  UMWdf - ok
18:49:13.0890 3572  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
18:49:14.0062 3572  Update - ok
18:49:14.0078 3572  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost        C:\WINDOWS\System32\upnphost.dll
18:49:14.0156 3572  upnphost - ok
18:49:14.0171 3572  [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS             C:\WINDOWS\System32\ups.exe
18:49:14.0328 3572  UPS - ok
18:49:14.0359 3572  [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:49:14.0453 3572  usbccgp - ok
18:49:14.0468 3572  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:49:14.0578 3572  usbehci - ok
18:49:14.0609 3572  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:49:14.0703 3572  usbhub - ok
18:49:14.0734 3572  [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:49:14.0828 3572  USBSTOR - ok
18:49:14.0843 3572  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
18:49:14.0953 3572  usbuhci - ok
18:49:14.0984 3572  [ B6CC50279D6CD28E090A5D33244ADC9A ] usb_rndisx      C:\WINDOWS\system32\DRIVERS\usb8023x.sys
18:49:15.0078 3572  usb_rndisx - ok
18:49:15.0093 3572  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
18:49:15.0187 3572  VgaSave - ok
18:49:15.0187 3572  ViaIde - ok
18:49:15.0218 3572  [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
18:49:15.0312 3572  VolSnap - ok
18:49:15.0328 3572  vsdatant - ok
18:49:15.0375 3572  [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS             C:\WINDOWS\System32\vssvc.exe
18:49:15.0421 3572  VSS - ok
18:49:15.0453 3572  [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time         C:\WINDOWS\system32\w32time.dll
18:49:15.0546 3572  W32Time - ok
18:49:15.0578 3572  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:49:15.0671 3572  Wanarp - ok
18:49:15.0687 3572  WDICA - ok
18:49:15.0703 3572  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
18:49:15.0796 3572  wdmaud - ok
18:49:15.0812 3572  [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient       C:\WINDOWS\System32\webclnt.dll
18:49:15.0921 3572  WebClient - ok
18:49:16.0000 3572  [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
18:49:16.0078 3572  winmgmt - ok
18:49:16.0109 3572  WinRing0_1_2_0 - ok
18:49:16.0125 3572  wltrysvc - ok
18:49:16.0140 3572  [ 140EF97B64F560FD78643CAE2CDAD838 ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
18:49:16.0156 3572  WmdmPmSN - ok
18:49:16.0187 3572  [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi             C:\WINDOWS\System32\advapi32.dll
18:49:16.0234 3572  Wmi - ok
18:49:16.0281 3572  [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi         C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
18:49:16.0375 3572  WmiAcpi - ok
18:49:16.0390 3572  [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
18:49:16.0484 3572  WmiApSrv - ok
18:49:16.0500 3572  [ 1385E5AA9C9821790D33A9563B8D2DD0 ] WpdUsb          C:\WINDOWS\system32\Drivers\wpdusb.sys
18:49:16.0531 3572  WpdUsb - ok
18:49:16.0687 3572  [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
18:49:16.0718 3572  WPFFontCache_v0400 - ok
18:49:16.0765 3572  [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys
18:49:16.0875 3572  WS2IFSL - ok
18:49:16.0921 3572  [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
18:49:17.0031 3572  wscsvc - ok
18:49:17.0062 3572  [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
18:49:17.0234 3572  wuauserv - ok
18:49:17.0281 3572  [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
18:49:17.0375 3572  WZCSVC - ok
18:49:17.0375 3572  XDva370 - ok
18:49:17.0406 3572  [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
18:49:17.0500 3572  xmlprov - ok
18:49:17.0515 3572  ================ Scan global ===============================
18:49:17.0546 3572  [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
18:49:17.0578 3572  [ 95CF3446911A6E25EE4086DF8A45B2AA ] C:\WINDOWS\system32\winsrv.dll
18:49:17.0593 3572  [ 95CF3446911A6E25EE4086DF8A45B2AA ] C:\WINDOWS\system32\winsrv.dll
18:49:17.0625 3572  [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
18:49:17.0625 3572  [Global] - ok
18:49:17.0625 3572  ================ Scan MBR ==================================
18:49:17.0640 3572  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
18:49:17.0875 3572  \Device\Harddisk0\DR0 ( TDSS File System ) - warning
18:49:17.0875 3572  \Device\Harddisk0\DR0 - detected TDSS File System (1)
18:49:17.0875 3572  ================ Scan VBR ==================================
18:49:17.0890 3572  [ A1A09407B644C40BBB52F0F95D2ED4ED ] \Device\Harddisk0\DR0\Partition1
18:49:17.0890 3572  \Device\Harddisk0\DR0\Partition1 - ok
18:49:17.0890 3572  ============================================================
18:49:17.0890 3572  Scan finished
18:49:17.0890 3572  ============================================================
18:49:18.0000 3564  Detected object count: 7
18:49:18.0000 3564  Actual detected object count: 7
21:04:54.0781 3564  C:\WINDOWS\system32\apf003.sys - copied to quarantine
21:04:54.0812 3564  HKLM\SYSTEM\ControlSet001\services\apf003 - will be deleted on reboot
21:04:54.0828 3564  HKLM\SYSTEM\ControlSet003\services\apf003 - will be deleted on reboot
21:04:54.0859 3564  C:\WINDOWS\system32\apf003.sys - will be deleted on reboot
21:04:54.0859 3564  apf003 ( UnsignedFile.Multi.Generic ) - User select action: Delete
21:04:54.0968 3564  C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe - copied to quarantine
21:04:54.0968 3564  HKLM\SYSTEM\ControlSet001\services\FLEXnet Licensing Service - will be deleted on reboot
21:04:54.0968 3564  HKLM\SYSTEM\ControlSet003\services\FLEXnet Licensing Service - will be deleted on reboot
21:04:54.0968 3564  C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe - will be deleted on reboot
21:04:54.0968 3564  FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Delete
21:04:55.0000 3564  C:\WINDOWS\system32\giveio.sys - copied to quarantine
21:04:55.0015 3564  giveio ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
21:04:55.0031 3564  C:\WINDOWS\system32\drivers\nhcDriver.sys - copied to quarantine
21:04:55.0031 3564  nhcDriverDevice ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
21:04:55.0062 3564  C:\WINDOWS\system32\drivers\SCDEmu.sys - copied to quarantine
21:04:55.0062 3564  SCDEmu ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
21:04:55.0093 3564  C:\WINDOWS\system32\drivers\TrueSight.sys - copied to quarantine
21:04:55.0093 3564  TrueSight ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
21:04:55.0156 3564  \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
21:04:55.0187 3564  \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
21:04:55.0203 3564  \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
21:04:55.0218 3564  \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
21:04:55.0234 3564  \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
21:04:55.0234 3564  \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
21:04:55.0234 3564  \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
21:04:55.0250 3564  \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
21:04:55.0250 3564  \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
21:04:55.0250 3564  \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
21:04:55.0250 3564  \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
21:04:55.0265 3564  \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
21:04:55.0281 3564  \Device\Harddisk0\DR0\TDLFS\ph.dll - copied to quarantine
21:04:55.0281 3564  \Device\Harddisk0\DR0\TDLFS\cmd32.dll - copied to quarantine
21:04:55.0281 3564  \Device\Harddisk0\DR0\TDLFS - deleted
21:04:55.0281 3564  \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete
21:05:04.0093 2728  Deinitialize success
 



#4 BretB

BretB
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:08:19 PM

Posted 30 April 2013 - 10:07 PM

Unintentionally clicked to have them fixed in tdss.  Recieved BSOD with following

 

On blue screen:    0x00000008 (0x80000004, 0x806ede1, 0xba2b6eec, 0x00000000)

Error report on bootup is, BCCode 10000000, BCD1 80000004, BCP2 80eedhe1, BCP3 ba2b6cec

BCP4 00000000  OSV 5_1_2600, SP 3 , (I missed the field) 256_1


Edited by BretB, 30 April 2013 - 11:06 PM.


#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,323 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:19 PM

Posted 02 May 2013 - 11:02 AM

This would indicate some corrupt system files.

 

Please run SFC (System File Checker)
Please run System File Checker sfc /scannow... For more information on this tool see How To Use Sfc.exe To Repair System Files

NOTE for Vista/WIN 7 users..The command needs to be run from an Elevated Command Prompt.Click Start, type cmd into the Start/Search box,
right-click cmd.exe in the list above and select 'Run as Administrator'

You will need your operating system  CD handy.

Open Windows Task Manager....by pressing CTRL+SHIFT+ESC

Then click  File.. then New Task(Run)

In the box that opens type sfc /scannow ......There is a space between c and /

Click OK
Let it run and insert the CD when asked.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 BretB

BretB
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:08:19 PM

Posted 02 May 2013 - 03:27 PM

I have contacted Dell to try and get an installation cd in order to run cmd:  Sfc /scannow.  Another problem, I wanted to see if I could use Dell's diagnostic toolset but am unable to connect to the dell site, it says an internet connection is required.  I have tried to set up a LAN, a wireless and hard connection to my wireless router but am unable to make any headway. If I might get some insight as to what is happening it would be appreciated.  I'm assuming that I may be on a DNS unrecognizable to dells support site.  If you could please provide me w/ proper documentation as to my next action I would greatly appreciate it.  If i'm in over my head please let me know.  I will be unable to run scannow until the required XP installation disk is acquired.  Thanks for your time and patience.  I will contact you with updates as required per forum regulations.



#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,323 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:19 PM

Posted 02 May 2013 - 08:52 PM

Okay, let's try the Windows Repair Tool. Copy this tool to your flash drive and transfer it to the affected computer:

Download Windows Repair (all in one) from this site

Install the program then run it.

Go to Step 2 and allow it to run CheckDisk by clicking on Do It button:

p22001645.gif



Once that is done then skip Steps 3 and 4.

Go to Start Repairs tab and click Start button.

p22001166.gif


Please ensure that ONLY items seen in the image below are ticked as indicated (they're all checked by default)(if you see extra items not shown, leave them un-checked):

p22001647.gif

Click on box next to the Restart System when Finished. Then click on Start.

When the system restarts, let me know if internet is working now.

==========

If still not, visit this page to download the Complete Internet Repair tool:  

 

 

Give the page a few seconds to load, then at the top right of the page click the big "SKIP AD" logo and your download should begin. Transfer that zip file to your flash drive and run it on your affected machine.
 

 

 


Edited by boopme, 02 May 2013 - 08:55 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users