Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Wave volume muting itself and explorer.exe pops up on shut down


  • This topic is locked This topic is locked
29 replies to this topic

#1 ToriGirl75

ToriGirl75

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Sonoma County, CA
  • Local time:03:57 AM

Posted 09 May 2013 - 12:07 AM

I've been having multiple problems too many to write up with my computer over the past couple of months. I've run Mbam and it's found a few things, I can post logs if that would help. I had a friend that fixes computers come over and he seemed to fix most of the issues.

 

But I'm still haveing some issues:

 

The wave volume keeps muting itself.

 

Explorer.com keeps popping up when I try to shut the computer down.

 

I'll be on the net and then when I try to go to a new page it won't load the page and it looks like I'm not connected to the net, but I still am. If I restart the computer most times it will reconnect to the internet ok. Since it's not always connecting I'm also having issues downloading emails into Outlook.

 

I've look on your site for help and it looks like I need to post info from the DDS tool so it's below. Let me know what else you need. Thanks!

 

 

DDS (Ver_2012-11-20.01) - FAT32_x86
Internet Explorer: 6.0.2900.2180
Run by D at 20:28:14 on 2013-05-08
Microsoft Windows XP Professional  5.1.2600.2.1252.1.1033.18.1023.316 [GMT -8:00]
.
.
============== Running Processes ================
.
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\HP\hpcoretech\comp\hptskmgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\WINDOWS\system32\svchost.exe -k netsvcs
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [Fix-It AV] c:\progra~1\vcom\fix-it\MemCheck.exe
mRun: [IntelliPoint] "c:\program files\microsoft intellipoint\ipoint.exe"
mRun: [HPDJ Taskbar Utility] c:\windows\system32\spool\drivers\w32x86\3\hpztsb09.exe
mRun: [HP Component Manager] "c:\program files\hp\hpcoretech\hpcmpmgr.exe"
StartupFolder: c:\docume~1\alluse~1.win\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: E&xport to Microsoft Excel - c:\progra~1\mif269~1\office11\EXCEL.EXE/3000
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {FB858B22-55E2-413f-87F5-30ADC5552151} - c:\program files\pdfill\DownloadPDF.exe
LSP: c:\program files\vcom\fix-it\MxAVLsp.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/products/plugin/1.4/jinstall-14_07-windows-i586.cab
DPF: {CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/products/plugin/1.4/jinstall-14_07-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.adobe.com/pub/shockwave/cabs/flash/swflash.cab
TCP: NameServer = 10.0.0.1
TCP: Interfaces\{871B8AF4-A43B-4D15-8099-DC1A8576109D} : DHCPNameServer = 10.0.0.1
Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - c:\program files\common files\microsoft shared\web folders\PKMCDO.DLL
Handler: cetihpz - {CF184AD3-CDCB-4168-A3F7-8E447D129300} - c:\program files\hp\hpcoretech\comp\hpuiprot.dll
Handler: intu-help-qb4 - {ACE22922-D07C-4860-B51B-8CF472FEC2CB} - c:\program files\intuit\quickbooks 2011\HelpAsyncPluggableProtocol.dll
Handler: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} -
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\d\application data\mozilla\firefox\profiles\25rdhkns.default\
FF - plugin: c:\documents and settings\d\application data\mozilla\firefox\profiles\25rdhkns.default\extensions\logmeinclient@logmein.com\plugins\npLMI64.dll
FF - plugin: c:\documents and settings\d\application data\mozilla\firefox\profiles\25rdhkns.default\extensions\logmeinclient@logmein.com\plugins\npRACtrl.dll
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\adobe\reader 11.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\foxit software\foxit reader\plugins\npFoxitReaderPlugin.dll
FF - plugin: c:\program files\google\update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\microsoft silverlight\4.0.60531.0\npctrlui.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\NPJPI141_07.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_6_602_168.dll
.
============= SERVICES / DRIVERS ===============
.
R2 tmpreflt;tmpreflt;c:\progra~1\vcom\fix-it\tmpreflt.sys [2005-7-28 25088]
R3 m4cxw2k3;NDIS5.1 Miniport Driver for D-Link PCI Express Ethernet Controller;c:\windows\system32\drivers\m4cxw2k3.sys [2005-3-10 227584]
S2 mrtRate;mrtRate; [x]
S3 Fattssmtpwss;Fattssmtpwss;c:\windows\system32\drivers\ip6fw.sys [1980-1-1 29056]
S4 QBVSS;QBIDPService;c:\program files\common files\intuit\dataprotect\QBIDPService.exe [2011-6-30 1248256]
.
=============== File Associations ===============
.
ShellExec: FRONTPG.EXE: edit=c:\progra~1\micros~2\office10\FRONTPG.EXE
.
=============== Created Last 30 ================
.
2013-05-07 05:35:29    16439    ----a-w-    c:\windows\system32\dllcache\admin.exe
2013-05-07 05:08:59    --------    d-----w-    c:\program files\Foxit Software
2013-05-07 05:05:15    61557    ----a-w-    c:\program files\mozilla firefox\plugins\NPOJI610.dll
2013-05-07 05:05:15    61556    ----a-w-    c:\program files\mozilla firefox\plugins\NPJava32.dll
2013-05-07 05:05:15    61556    ----a-w-    c:\program files\mozilla firefox\plugins\NPJava13.dll
2013-05-07 05:05:15    61556    ----a-w-    c:\program files\mozilla firefox\plugins\NPJava12.dll
2013-05-07 05:05:15    61556    ----a-w-    c:\program files\mozilla firefox\plugins\NPJava11.dll
2013-05-07 05:05:15    61553    ----a-w-    c:\program files\mozilla firefox\plugins\NPJPI141_07.dll
2013-05-07 05:05:11    229487    ----a-w-    c:\windows\system32\jpicpl32.cpl
2013-05-05 05:23:57    --------    d-----w-    c:\documents and settings\d\local settings\application data\Help
2013-04-20 06:50:21    --------    d-----w-    c:\documents and settings\d\application data\Foxit Software
2013-04-16 01:07:04    26840    ----a-w-    c:\windows\system32\drivers\GEARAspiWDM.sys
2013-04-16 01:06:33    --------    d-----w-    c:\program files\iPod
2013-04-16 01:06:29    --------    d-----w-    c:\program files\iTunes
2013-04-16 01:06:29    --------    d-----w-    c:\documents and settings\all users.windows\application data\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-04-16 01:06:08    --------    d-----w-    c:\documents and settings\d\local settings\application data\Apple
2013-04-16 01:05:52    6112864    ----a-w-    c:\windows\system32\usbaaplrc.dll
2013-04-16 01:05:52    45056    ----a-w-    c:\windows\system32\drivers\usbaapl.sys
2013-04-16 01:04:53    --------    d-----w-    c:\program files\Bonjour
.
==================== Find3M  ====================
.
2013-04-04 22:50:32    22856    ----a-w-    c:\windows\system32\drivers\mbam.sys
2013-02-16 18:16:34    71024    ----a-w-    c:\windows\system32\FlashPlayerCPLApp.cpl
2013-02-16 18:16:34    691568    ----a-w-    c:\windows\system32\FlashPlayerApp.exe
.
=================== ROOTKIT  ====================
.
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 5.1.2600 Disk: Maxtor_4D040H2 rev.DAH017K0 -> Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
.
device: opened successfully
user: MBR read successfully
.
Disk trace:
called modules: ntoskrnl.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0x865344B1]<<
_asm { PUSH EBP; MOV EBP, ESP; PUSH ECX; MOV EAX, [EBP+0x8]; CMP EAX, [0x8653b93c]; MOV EAX, [0x8653bab0]; PUSH EBX; PUSH ESI; MOV ESI, [EBP+0xc]; MOV EBX, [ESI+0x60]; PUSH EDI; JNZ 0x20; MOV [EBP+0x8], EAX;  }
1 nt!IofCallDriver[0x804E3D45] -> \Device\Harddisk0\DR0[0x867CEAB8]
3 CLASSPNP[0xF787005B] -> nt!IofCallDriver[0x804E3D45] -> [0x86638328]
\Driver\atapi[0x8666A6E8] -> IRP_MJ_CREATE -> 0x865344B1
error: Read  A device attached to the system is not functioning.
kernel: MBR read successfully
_asm { XOR AX, AX; MOV SS, AX; MOV SP, 0x7c00; STI ; PUSH AX; POP ES; PUSH AX; POP DS; CLD ; MOV SI, 0x7c1b; MOV DI, 0x61b; PUSH AX; PUSH DI; MOV CX, 0x1e5; REP MOVSB ; RETF ; MOV BP, 0x7be; MOV CL, 0x4; CMP [BP+0x0], CH; JL 0x2e; JNZ 0x3a;  }
detected disk devices:
detected hooks:
\Driver\atapi DriverStartIo -> 0x865342E2
user & kernel MBR OK
Warning: possible TDL3 rootkit infection !
.
============= FINISH: 20:29:02.54 ===============
 

Attached Files


Edited by ToriGirl75, 09 May 2013 - 12:09 AM.


BC AdBot (Login to Remove)

 


#2 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:07:57 AM

Posted 09 May 2013 - 12:09 AM


Hello ToriGirl75

I would like to welcome you to the Malware Removal section of the forum.

Around here they call me Gringo and I will be glad to help you with your malware problems.


Very Important --> Please read this post completely, I have spent my time to put together somethings for you to keep in mind while I am helping you to make things go easier, faster and smoother for both of us!

  • Please do not run any tools unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.
NOTE: At the top of your post, click on the "Follow This Topic" Button, make sure that the "Receive notification" box is checked and that it is set to "Instantly" - This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.


These are the programs I would like you to run next, if you have any problems with one of these just skip it and move on to the next one.

-AdwCleaner-

Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next answer.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.
-Junkware-Removal-Tool-

Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
When they are complete let me have the two reports and let me know how things are running.

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#3 ToriGirl75

ToriGirl75
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Sonoma County, CA
  • Local time:03:57 AM

Posted 09 May 2013 - 09:49 AM

Hello Gringo,

thanks so much for the reply & advice! I down loaded and ran both the AdwCleaner & Junkware Removal tool. I've posted the logs below. The first one seemed to hang up when it started so I restarted computer and then they both ran fine. I'm headed off to work so I've not had much time to see how the compute is working but will repost tonight after I get home and see how it's running.

 

# AdwCleaner v2.300 - Logfile created 05/08/2013 at 22:24:51
# Updated 28/04/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 2 (32 bits)
# User : D - DHOME
# Boot Mode : Normal
# Running from : C:\Documents and Settings\D\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****

Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
Key Deleted : HKLM\Software\PIP

***** [Internet Browsers] *****

-\\ Internet Explorer v6.0.2900.2180

[OK] Registry is clean.

-\\ Mozilla Firefox v12.0 (en-US)

*************************

AdwCleaner[S1].txt - [322 octets] - [08/05/2013 22:19:02]
AdwCleaner[S2].txt - [1160 octets] - [08/05/2013 22:24:51]

########## EOF - C:\AdwCleaner[S2].txt - [1220 octets] ##########
 

 

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.4 (05.06.2013:1)
OS: Microsoft Windows XP x86
Ran by D on Wed 05/08/2013 at 22:32:10.54
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ FireFox

Successfully deleted: [Folder] C:\Documents and Settings\D\Application Data\mozilla\firefox\profiles\25rdhkns.default\extensions\LogMeInClient@logmein.com
Emptied folder: C:\Documents and Settings\D\Application Data\mozilla\firefox\profiles\25rdhkns.default\minidumps [1 files]





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Wed 05/08/2013 at 22:38:25.56
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 



#4 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:07:57 AM

Posted 09 May 2013 - 12:55 PM


Hello ToriGirl75

I Would like you to do the following.

Please print out or make a copy in notepad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.

Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links. I want you to save it to the desktop and run it from there.1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion." Please restart the computer

"information and logs"
  • In your next post I need the following
  • Log from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now?
Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#5 ToriGirl75

ToriGirl75
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Sonoma County, CA
  • Local time:03:57 AM

Posted 09 May 2013 - 11:34 PM

Hello again,

 

When I tried to run Combofix it hung up and wouldn't finish. It completed states 1-50 and was trying to delete C:\documents and settings\networkservices.NT AUTHORITY\UserData\MDZOHGJY.  I tried restarting the computer and progarm three times and it always stopped at that point. I left it the second time for over two hours and it still stopped in the same spot.

Once I tried to log back online and get back on this site I had to restart my computer about 4 times and reset my modem before it would go through and connect (my internet connection showes as connected)

 

Also, while I was trying to install Combofix there was a pop up that said "Microsoft visual client runtime library runtime error! progarm:c\aol.exe R6025 pure virtual function cell"

 

The computer seemed to be running better this morning but now it seems worse with not being able to log on to the net. Usually restarting will fix it but this it didn't seem to help.



#6 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:07:57 AM

Posted 10 May 2013 - 12:08 AM


Hello ToriGirl75

I would like you to try and run these next.

TDSSKiller

Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
  • Put a checkmark beside loaded modules.
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
  • Click the Start Scan button.
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
  • If malicious objects are found, they will show in the Scan results
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • more than one report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". The one that I need is the larger one. Please copy and paste the contents of that file here.

    Note** this report can be very long - so if the website gives you an error saying it is to long you may attache it

    If the forum still complains about it being to long send me everything that is at the end of the report after where it says

    ==================
    Scan finished
    ==================
and I will see if I want to see the whole report

--RogueKiller--

Download & SAVE to your Desktop RogueKiller for 32bit or Roguekiller for 64bit
  • Quit all programs that you may have started.
  • Please disconnect any external drives from the computer before you run this scan!
  • For Vista or Windows 7, right-click and select "Run as Administrator to start"
  • For Windows XP, double-click to start.
  • Wait until Prescan has finished ...
  • Then Click on "Scan" button
  • Wait until the Status box shows "Scan Finished"
  • click on "delete"
  • Wait until the Status box shows "Deleting Finished"
  • Click on "Report" and copy/paste the content of the Notepad into your next reply.
  • the scan will make two reports the one I would like to see is called RKreport[2].txt on your Desktop
  • Exit/Close RogueKiller+
send me the reports made from TDSSKiller and Roguekiller and also let me know how the computer is doing at this time.

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#7 ToriGirl75

ToriGirl75
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Sonoma County, CA
  • Local time:03:57 AM

Posted 10 May 2013 - 04:56 PM

ok will do today when I get home. Thanks!



#8 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:07:57 AM

Posted 10 May 2013 - 05:00 PM

I will look for you then



gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#9 ToriGirl75

ToriGirl75
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Sonoma County, CA
  • Local time:03:57 AM

Posted 10 May 2013 - 10:11 PM

So I downloaded TDSSKiller and followed all your instructions. It did find a malicious object, a rootkit. I clicked on cure and continue and it seemed ok and asked for restart. When I restarted it ran again and found nothing. I was unable to find a report under any of my drives. There is a TDSSKiller_quarantine under the C drive but there are only DTA files & configuration settings. From the actual main screen of the program it has a report link  but I think it's from the second scan which came up clean. I will run RogueKiller now and post the report.

 

 

 

19:47:33.0890 1000  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
19:47:35.0500 1000  ============================================================
19:47:35.0500 1000  Current date / time: 2013/05/10 19:47:35.0500
19:47:35.0500 1000  SystemInfo:
19:47:35.0500 1000  
19:47:35.0500 1000  OS Version: 5.1.2600 ServicePack: 2.0
19:47:35.0500 1000  Product type: Workstation
19:47:35.0500 1000  ComputerName: DHOME
19:47:35.0500 1000  UserName: D
19:47:35.0500 1000  Windows directory: C:\WINDOWS
19:47:35.0500 1000  System windows directory: C:\WINDOWS
19:47:35.0500 1000  Processor architecture: Intel x86
19:47:35.0500 1000  Number of processors: 1
19:47:35.0500 1000  Page size: 0x1000
19:47:35.0500 1000  Boot type: Normal boot
19:47:35.0500 1000  ============================================================
19:47:47.0312 1000  BG loaded
19:47:49.0031 1000  Drive \Device\Harddisk0\DR0 - Size: 0x98ABA0000 (38.17 Gb), SectorSize: 0x200, Cylinders: 0x1376, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
19:47:49.0140 1000  ============================================================
19:47:49.0140 1000  \Device\Harddisk0\DR0:
19:47:49.0140 1000  MBR partitions:
19:47:49.0140 1000  \Device\Harddisk0\DR0\Partition1: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0x25271FA
19:47:49.0140 1000  \Device\Harddisk0\DR0\Partition2: MBR, Type 0xB, StartLBA 0x2527278, BlocksNum 0x1BDA65B
19:47:49.0218 1000  \Device\Harddisk0\DR0\Partition3: MBR, Type 0xB, StartLBA 0x4101912, BlocksNum 0x76E366
19:47:49.0265 1000  \Device\Harddisk0\DR0\Partition4: MBR, Type 0xB, StartLBA 0x486FCB7, BlocksNum 0x3E433F
19:47:49.0265 1000  ============================================================
19:47:49.0296 1000  C: <-> \Device\Harddisk0\DR0\Partition1
19:47:49.0359 1000  D: <-> \Device\Harddisk0\DR0\Partition2
19:47:49.0421 1000  E: <-> \Device\Harddisk0\DR0\Partition3
19:47:49.0546 1000  F: <-> \Device\Harddisk0\DR0\Partition4
19:47:49.0812 1000  ============================================================
19:47:49.0812 1000  Initialize success
19:47:49.0812 1000  ============================================================
19:51:09.0468 0984  ============================================================
19:51:09.0468 0984  Scan started
19:51:09.0468 0984  Mode: Manual;
19:51:09.0468 0984  ============================================================
19:51:09.0609 0984  ================ Scan system memory ========================
19:51:09.0609 0984  System memory - ok
19:51:09.0625 0984  ================ Scan services =============================
19:51:09.0734 0984  Abiosdsk - ok
19:51:09.0765 0984  abp480n5 - ok
19:51:09.0828 0984  [ A10C7534F7223F4A73A948967D00E69B ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:51:09.0828 0984  ACPI - ok
19:51:09.0890 0984  [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
19:51:09.0890 0984  ACPIEC - ok
19:51:09.0984 0984  [ 5DDC0A8D2CD60BDA593DDAF45821CE08 ] Adobe LM Service C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
19:51:10.0015 0984  Adobe LM Service - ok
19:51:10.0031 0984  adpu160m - ok
19:51:10.0078 0984  [ 11C04B17ED2ABBB4833694BCD644AC90 ] aeaudio         C:\WINDOWS\system32\drivers\aeaudio.sys
19:51:10.0078 0984  aeaudio - ok
19:51:10.0140 0984  [ 841F385C6CFAF66B58FBD898722BB4F0 ] aec             C:\WINDOWS\system32\drivers\aec.sys
19:51:10.0140 0984  aec - ok
19:51:10.0218 0984  [ 5AC495F4CB807B2B98AD2AD591E6D92E ] AFD             C:\WINDOWS\System32\drivers\afd.sys
19:51:10.0218 0984  AFD - ok
19:51:10.0281 0984  [ C719341A1CF6AFD4FA0808AE3D23D6A3 ] AFS2K           C:\WINDOWS\system32\drivers\AFS2K.sys
19:51:10.0281 0984  AFS2K - ok
19:51:10.0343 0984  [ 2C428FA0C3E3A01ED93C9B2A27D8D4BB ] agp440          C:\WINDOWS\system32\DRIVERS\agp440.sys
19:51:10.0343 0984  agp440 - ok
19:51:10.0375 0984  Aha154x - ok
19:51:10.0390 0984  aic78u2 - ok
19:51:10.0421 0984  aic78xx - ok
19:51:10.0500 0984  [ C7AE0FD3867DB0D42B03B73C18F3D671 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
19:51:10.0515 0984  Alerter - ok
19:51:10.0578 0984  [ F1958FBF86D5C004CF19A5951A9514B7 ] ALG             C:\WINDOWS\System32\alg.exe
19:51:10.0578 0984  ALG - ok
19:51:10.0593 0984  AliIde - ok
19:51:10.0625 0984  amsint - ok
19:51:10.0750 0984  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:51:10.0750 0984  Apple Mobile Device - ok
19:51:10.0828 0984  [ 9C3C12975C97119412802B181FBEEFFE ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
19:51:10.0843 0984  AppMgmt - ok
19:51:10.0875 0984  asc - ok
19:51:10.0890 0984  asc3350p - ok
19:51:10.0921 0984  asc3550 - ok
19:51:11.0093 0984  [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
19:51:11.0109 0984  aspnet_state - ok
19:51:11.0156 0984  [ 02000ABF34AF4C218C35D257024807D6 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:51:11.0171 0984  AsyncMac - ok
19:51:11.0234 0984  [ CDFE4411A69C224BD1D11B2DA92DAC51 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
19:51:11.0234 0984  atapi - ok
19:51:11.0281 0984  Atdisk - ok
19:51:11.0359 0984  [ 2D030C2F6B036CA0BC243E1B16D924D1 ] ati2mtaa        C:\WINDOWS\system32\DRIVERS\ati2mtaa.sys
19:51:11.0359 0984  ati2mtaa - ok
19:51:11.0421 0984  [ EC88DA854AB7D7752EC8BE11A741BB7F ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:51:11.0437 0984  Atmarpc - ok
19:51:11.0500 0984  [ DB66DB626E4882EBEF55F136F12C1829 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
19:51:11.0500 0984  AudioSrv - ok
19:51:11.0562 0984  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
19:51:11.0562 0984  audstub - ok
19:51:11.0625 0984  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
19:51:11.0625 0984  Beep - ok
19:51:11.0750 0984  [ 2C69EC7E5A311334D10DD95F338FCCEA ] BITS            C:\WINDOWS\system32\qmgr.dll
19:51:11.0781 0984  BITS - ok
19:51:11.0859 0984  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
19:51:11.0890 0984  Bonjour Service - ok
19:51:11.0953 0984  [ E3CFCCDDA4EDD1D0DC9168B2E18F27B8 ] Browser         C:\WINDOWS\System32\browser.dll
19:51:11.0968 0984  Browser - ok
19:51:12.0046 0984  [ 248DFA5762DDE38DFDDBBD44149E9D7A ] BVRPMPR5        C:\WINDOWS\system32\drivers\BVRPMPR5.SYS
19:51:12.0046 0984  BVRPMPR5 - ok
19:51:12.0156 0984  catchme - ok
19:51:12.0218 0984  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
19:51:12.0218 0984  cbidf2k - ok
19:51:12.0250 0984  cd20xrnt - ok
19:51:12.0312 0984  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
19:51:12.0312 0984  Cdaudio - ok
19:51:12.0390 0984  [ CD7D5152DF32B47F4E36F710B35AAE02 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
19:51:12.0390 0984  Cdfs - ok
19:51:12.0437 0984  [ 882B4257E5A5ADFB6B5C03E8A02D4BF1 ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:51:12.0437 0984  Cdrom - ok
19:51:12.0453 0984  Changer - ok
19:51:12.0531 0984  [ 3192BD04D032A9C4A85A3278C268A13A ] CiSvc           C:\WINDOWS\system32\cisvc.exe
19:51:12.0531 0984  CiSvc - ok
19:51:12.0593 0984  [ C8DEC22C4137D7A90F8BDF41CA4B82AE ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
19:51:12.0593 0984  ClipSrv - ok
19:51:12.0656 0984  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:51:12.0703 0984  clr_optimization_v2.0.50727_32 - ok
19:51:12.0734 0984  CmdIde - ok
19:51:12.0781 0984  COMSysApp - ok
19:51:12.0828 0984  Cpqarray - ok
19:51:12.0875 0984  [ 10654F9DDCEA9C46CFB77554231BE73B ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
19:51:12.0875 0984  CryptSvc - ok
19:51:12.0906 0984  dac2w2k - ok
19:51:12.0921 0984  dac960nt - ok
19:51:13.0015 0984  [ 5C83A4408604F737717AB96371201680 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
19:51:13.0031 0984  DcomLaunch - ok
19:51:13.0109 0984  [ CB6CA3E5261D65F6F809EED23BF167AA ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
19:51:13.0109 0984  Dhcp - ok
19:51:13.0171 0984  [ 00CA44E4534865F8A3B64F7C0984BFF0 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
19:51:13.0187 0984  Disk - ok
19:51:13.0218 0984  dmadmin - ok
19:51:13.0296 0984  [ C0FBB516E06E243F0CF31F597E7EBF7D ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
19:51:13.0343 0984  dmboot - ok
19:51:13.0406 0984  [ F5E7B358A732D09F4BCF2824B88B9E28 ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
19:51:13.0406 0984  dmio - ok
19:51:13.0468 0984  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
19:51:13.0468 0984  dmload - ok
19:51:13.0531 0984  [ 1639D9964C9E1B2ECCA95C8217D3E70D ] dmserver        C:\WINDOWS\System32\dmserver.dll
19:51:13.0546 0984  dmserver - ok
19:51:13.0593 0984  [ A6F881284AC1150E37D9AE47FF601267 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
19:51:13.0593 0984  DMusic - ok
19:51:13.0656 0984  [ 7379DE06FD196E396A00AA97B990C00D ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
19:51:13.0671 0984  Dnscache - ok
19:51:13.0687 0984  dpti2o - ok
19:51:13.0750 0984  [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
19:51:13.0750 0984  drmkaud - ok
19:51:13.0812 0984  [ 67DFF7BBBD0E80AAB7B3CF061448DB8A ] ERSvc           C:\WINDOWS\System32\ersvc.dll
19:51:13.0812 0984  ERSvc - ok
19:51:13.0859 0984  [ C6CE6EEC82F187615D1002BB3BB50ED4 ] Eventlog        C:\WINDOWS\system32\services.exe
19:51:13.0859 0984  Eventlog - ok
19:51:13.0953 0984  [ ACD36A2DD7D1E9D8A060AA651DC07E63 ] EventSystem     C:\WINDOWS\system32\es.dll
19:51:13.0953 0984  EventSystem - ok
19:51:14.0015 0984  [ 3117F595E9615E04F05A54FC15A03B20 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
19:51:14.0031 0984  Fastfat - ok
19:51:14.0078 0984  [ E7518DC542D3EBDCB80EDD98462C7821 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
19:51:14.0078 0984  FastUserSwitchingCompatibility - ok
19:51:14.0125 0984  [ 4448006B6BC60E6C027932CFC38D6855 ] Fattssmtpwss    C:\WINDOWS\system32\drivers\ip6fw.sys
19:51:14.0140 0984  Fattssmtpwss - ok
19:51:14.0203 0984  [ CED2E8396A8838E59D8FD529C680E02C ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys
19:51:14.0203 0984  Fdc - ok
19:51:14.0250 0984  [ E153AB8A11DE5452BCF5AC7652DBF3ED ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
19:51:14.0250 0984  Fips - ok
19:51:14.0312 0984  Fix-It Task Manager - ok
19:51:14.0375 0984  [ 0DD1DE43115B93F4D85E889D7A86F548 ] Flpydisk        C:\WINDOWS\system32\DRIVERS\flpydisk.sys
19:51:14.0375 0984  Flpydisk - ok
19:51:14.0421 0984  [ 157754F0DF355A9E0A6F54721914F9C6 ] FltMgr          C:\WINDOWS\system32\DRIVERS\fltMgr.sys
19:51:14.0437 0984  FltMgr - ok
19:51:14.0562 0984  [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:51:14.0578 0984  FontCache3.0.0.0 - ok
19:51:14.0656 0984  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:51:14.0656 0984  Fs_Rec - ok
19:51:14.0703 0984  [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:51:14.0718 0984  Ftdisk - ok
19:51:14.0781 0984  [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
19:51:14.0781 0984  GEARAspiWDM - ok
19:51:14.0828 0984  [ C0F1D4A21DE5A415DF8170616703DEBF ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:51:14.0828 0984  Gpc - ok
19:51:14.0890 0984  gupdate - ok
19:51:14.0906 0984  gupdatem - ok
19:51:14.0968 0984  [ 8827911A8C37E40C027CBFC88E69D967 ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:51:14.0968 0984  helpsvc - ok
19:51:15.0062 0984  [ 9376E6893E52B368ABC6255BF54F0B28 ] HidServ         C:\WINDOWS\System32\hidserv.dll
19:51:15.0062 0984  HidServ - ok
19:51:15.0109 0984  [ 1DE6783B918F540149AA69943BDFEBA8 ] hidusb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:51:15.0125 0984  hidusb - ok
19:51:15.0156 0984  hpn - ok
19:51:15.0218 0984  [ 287A63BD8509BD78E7978823B38AFA81 ] HPZid412        C:\WINDOWS\system32\DRIVERS\HPZid412.sys
19:51:15.0218 0984  HPZid412 - ok
19:51:15.0281 0984  [ 0B4FDA2657C3E0315EAA57F9C6D4FD1F ] HPZipr12        C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
19:51:15.0281 0984  HPZipr12 - ok
19:51:15.0343 0984  [ 29559DB25258B60510A60C4E470FCE32 ] HPZius12        C:\WINDOWS\system32\DRIVERS\HPZius12.sys
19:51:15.0343 0984  HPZius12 - ok
19:51:15.0437 0984  [ 970178E8E003EB1481293830069624B9 ] HSFHWBS2        C:\WINDOWS\system32\DRIVERS\HSFBS2S2.sys
19:51:15.0437 0984  HSFHWBS2 - ok
19:51:15.0546 0984  [ EBB354438A4C5A3327FB97306260714A ] HSF_DP          C:\WINDOWS\system32\DRIVERS\HSFDPSP2.sys
19:51:15.0562 0984  HSF_DP - ok
19:51:15.0640 0984  [ C19B522A9AE0BBC3293397F3055E80A1 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
19:51:15.0656 0984  HTTP - ok
19:51:15.0718 0984  [ 064D8581ADF77C25133E7D751D917D83 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
19:51:15.0734 0984  HTTPFilter - ok
19:51:15.0750 0984  i2omgmt - ok
19:51:15.0781 0984  i2omp - ok
19:51:15.0812 0984  [ 5502B58EEF7486EE6F93F3F164DCB808 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:51:15.0812 0984  i8042prt - ok
19:51:16.0000 0984  [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc           C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:51:16.0062 0984  idsvc - ok
19:51:16.0125 0984  [ F8AA320C6A0409C0380E5D8A99D76EC6 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
19:51:16.0125 0984  Imapi - ok
19:51:16.0203 0984  [ FA788520BCAC0F5D9D5CDE5615C0D931 ] ImapiService    C:\WINDOWS\system32\imapi.exe
19:51:16.0203 0984  ImapiService - ok
19:51:16.0234 0984  ini910u - ok
19:51:16.0281 0984  [ 2D722B2B54AB55B2FA475EB58D7B2AAD ] IntelIde        C:\WINDOWS\system32\DRIVERS\intelide.sys
19:51:16.0281 0984  IntelIde - ok
19:51:16.0328 0984  [ 279FB78702454DFF2BB445F238C048D2 ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
19:51:16.0343 0984  intelppm - ok
19:51:16.0390 0984  [ 4448006B6BC60E6C027932CFC38D6855 ] Ip6Fw           C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
19:51:16.0390 0984  Ip6Fw - ok
19:51:16.0437 0984  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:51:16.0437 0984  IpFilterDriver - ok
19:51:16.0500 0984  [ E1EC7F5DA720B640CD8FB8424F1B14BB ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:51:16.0515 0984  IpInIp - ok
19:51:16.0578 0984  [ B5A8E215AC29D24D60B4D1250EF05ACE ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:51:16.0578 0984  IpNat - ok
19:51:16.0687 0984  [ E46B17060D3962A384AE484094614788 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
19:51:16.0718 0984  iPod Service - ok
19:51:16.0796 0984  [ 64537AA5C003A6AFEEE1DF819062D0D1 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:51:16.0796 0984  IPSec - ok
19:51:16.0859 0984  [ 50708DAA1B1CBB7D6AC1CF8F56A24410 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
19:51:16.0859 0984  IRENUM - ok
19:51:16.0890 0984  [ E504F706CCB699C2596E9A3DA1596E87 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:51:16.0906 0984  isapnp - ok
19:51:16.0953 0984  [ EBDEE8A2EE5393890A1ACEE971C4C246 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:51:16.0953 0984  Kbdclass - ok
19:51:17.0015 0984  [ E182FA8E49E8EE41B4ADC53093F3C7E6 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
19:51:17.0015 0984  kbdhid - ok
19:51:17.0078 0984  [ D93CAD07C5683DB066B0B2D2D3790EAD ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
19:51:17.0078 0984  kmixer - ok
19:51:17.0109 0984  KodakCCS - ok
19:51:17.0187 0984  [ EB7FFE87FD367EA8FCA0506F74A87FBB ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
19:51:17.0187 0984  KSecDD - ok
19:51:17.0250 0984  [ 93D32468D34E000CB3407947D1D6E22A ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
19:51:17.0265 0984  lanmanserver - ok
19:51:17.0343 0984  [ 2C0A7B2AE9C26F2C163627679B42783C ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
19:51:17.0343 0984  lanmanworkstation - ok
19:51:17.0375 0984  lbrtfdc - ok
19:51:17.0453 0984  [ B3EFF6D938C572E90A07B3D87A3C7657 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
19:51:17.0453 0984  LmHosts - ok
19:51:17.0515 0984  [ 3B1AD8EF095368EF02CADC7FCF0B8AC5 ] m4cxw2k3        C:\WINDOWS\system32\DRIVERS\m4cxw2k3.sys
19:51:17.0515 0984  m4cxw2k3 - ok
19:51:17.0546 0984  MCSTRM - ok
19:51:17.0671 0984  [ 11F714F85530A2BD134074DC30E99FCA ] MDM             C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
19:51:17.0687 0984  MDM - ok
19:51:17.0750 0984  [ 195741AEE20369980796B557358CD774 ] mdmxsdk         C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
19:51:17.0750 0984  mdmxsdk - ok
19:51:17.0796 0984  [ 95FD808E4AC22ABA025A7B3EAC0375D2 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
19:51:17.0796 0984  Messenger - ok
19:51:17.0859 0984  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
19:51:17.0859 0984  mnmdd - ok
19:51:17.0953 0984  [ F6415361201915B9FE3896B0E4E724FF ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
19:51:17.0968 0984  mnmsrvc - ok
19:51:18.0031 0984  [ 6FC6F9D7ACC36DCA9B914565A3AEDA05 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
19:51:18.0031 0984  Modem - ok
19:51:18.0078 0984  [ 34E1F0031153E491910E12551400192C ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:51:18.0078 0984  Mouclass - ok
19:51:18.0140 0984  [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:51:18.0140 0984  mouhid - ok
19:51:18.0171 0984  [ 65653F3B4477F3C63E68A9659F85EE2E ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
19:51:18.0187 0984  MountMgr - ok
19:51:18.0218 0984  mraid35x - ok
19:51:18.0234 0984  mrtRate - ok
19:51:18.0296 0984  [ 46EDCC8F2DB2F322C24F48785CB46366 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:51:18.0328 0984  MRxDAV - ok
19:51:18.0406 0984  [ 1FD607FC67F7F7C633C3DA65BFC53D18 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:51:18.0421 0984  MRxSmb - ok
19:51:18.0500 0984  [ C7C3D89EB0A6F3DBA622EA737FA335B1 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
19:51:18.0500 0984  MSDTC - ok
19:51:18.0546 0984  [ 561B3A4333CA2DBDBA28B5B956822519 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
19:51:18.0562 0984  Msfs - ok
19:51:18.0609 0984  MSIServer - ok
19:51:18.0687 0984  [ AE431A8DD3C1D0D0610CDBAC16057AD0 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:51:18.0687 0984  MSKSSRV - ok
19:51:18.0734 0984  [ 13E75FEF9DFEB08EEDED9D0246E1F448 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:51:18.0734 0984  MSPCLOCK - ok
19:51:18.0765 0984  [ 1988A33FF19242576C3D0EF9CE785DA7 ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
19:51:18.0765 0984  MSPQM - ok
19:51:18.0812 0984  [ 469541F8BFD2B32659D5D463A6714BCE ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:51:18.0812 0984  mssmbios - ok
19:51:18.0828 0984  Mssoppovswin - ok
19:51:18.0906 0984  [ 82035E0F41C2DD05AE41D27FE6CF7DE1 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
19:51:18.0906 0984  Mup - ok
19:51:18.0953 0984  [ 558635D3AF1C7546D26067D5D9B6959E ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
19:51:18.0968 0984  NDIS - ok
19:51:19.0015 0984  [ 08D43BBDACDF23F34D79E44ED35C1B4C ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:51:19.0015 0984  NdisTapi - ok
19:51:19.0078 0984  [ 34D6CD56409DA9A7ED573E1C90A308BF ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:51:19.0078 0984  Ndisuio - ok
19:51:19.0140 0984  [ 0B90E255A9490166AB368CD55A529893 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:51:19.0140 0984  NdisWan - ok
19:51:19.0203 0984  [ 59FC3FB44D2669BC144FD87826BB571F ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
19:51:19.0203 0984  NDProxy - ok
19:51:19.0250 0984  [ 3A2ACA8FC1D7786902CA434998D7CEB4 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
19:51:19.0250 0984  NetBIOS - ok
19:51:19.0312 0984  [ 0C80E410CD2F47134407EE7DD19CC86B ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
19:51:19.0312 0984  NetBT - ok
19:51:19.0390 0984  [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDE          C:\WINDOWS\system32\netdde.exe
19:51:19.0406 0984  NetDDE - ok
19:51:19.0437 0984  [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
19:51:19.0437 0984  NetDDEdsdm - ok
19:51:19.0500 0984  [ 84885F9B82F4D55C6146EBF6065D75D2 ] Netlogon        C:\WINDOWS\system32\lsass.exe
19:51:19.0500 0984  Netlogon - ok
19:51:19.0562 0984  [ DAB9E6C7105D2EF49876FE92C524F565 ] Netman          C:\WINDOWS\System32\netman.dll
19:51:19.0578 0984  Netman - ok
19:51:19.0703 0984  [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:51:19.0718 0984  NetTcpPortSharing - ok
19:51:19.0781 0984  [ 4E74AF063C3271FBEA20DD940CFD1184 ] Nla             C:\WINDOWS\System32\mswsock.dll
19:51:19.0781 0984  Nla - ok
19:51:19.0859 0984  [ 4F601BCB8F64EA3AC0994F98FED03F8E ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
19:51:19.0859 0984  Npfs - ok
19:51:19.0937 0984  [ B78BE402C3F63DD55521F73876951CDD ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
19:51:19.0968 0984  Ntfs - ok
19:51:20.0000 0984  [ 84885F9B82F4D55C6146EBF6065D75D2 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
19:51:20.0000 0984  NtLmSsp - ok
19:51:20.0093 0984  [ B62F29C00AC55A761B2E45877D85EA0F ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
19:51:20.0125 0984  NtmsSvc - ok
19:51:20.0187 0984  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys
19:51:20.0187 0984  Null - ok
19:51:20.0250 0984  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:51:20.0250 0984  NwlnkFlt - ok
19:51:20.0312 0984  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:51:20.0328 0984  NwlnkFwd - ok
19:51:20.0390 0984  [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:51:20.0406 0984  ose - ok
19:51:20.0484 0984  [ 29744EB4CE659DFE3B4122DEB45BC478 ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys
19:51:20.0484 0984  Parport - ok
19:51:20.0546 0984  [ 3334430C29DC338092F79C38EF7B4CD0 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
19:51:20.0562 0984  PartMgr - ok
19:51:20.0625 0984  [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
19:51:20.0625 0984  ParVdm - ok
19:51:20.0687 0984  [ 8086D9979234B603AD5BC2F5D890B234 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
19:51:20.0703 0984  PCI - ok
19:51:20.0718 0984  PCIDump - ok
19:51:20.0765 0984  [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde          C:\WINDOWS\system32\drivers\PCIIde.sys
19:51:20.0765 0984  PCIIde - ok
19:51:20.0828 0984  [ 82A087207DECEC8456FBE8537947D579 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
19:51:20.0843 0984  Pcmcia - ok
19:51:20.0859 0984  PDCOMP - ok
19:51:20.0890 0984  PDFRAME - ok
19:51:20.0937 0984  PDRELI - ok
19:51:20.0953 0984  PDRFRAME - ok
19:51:20.0984 0984  perc2 - ok
19:51:21.0000 0984  perc2hib - ok
19:51:21.0109 0984  [ C8A2D6FF660AC601B7BB9A9B16A5C25E ] PfModNT         C:\WINDOWS\system32\drivers\PfModNT.sys
19:51:21.0109 0984  PfModNT - ok
19:51:21.0187 0984  [ C6CE6EEC82F187615D1002BB3BB50ED4 ] PlugPlay        C:\WINDOWS\system32\services.exe
19:51:21.0187 0984  PlugPlay - ok
19:51:21.0265 0984  [ 5C1CADD1CB67C0B9D8A84EC6E4D6B5CC ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
19:51:21.0281 0984  Pml Driver HPZ12 - ok
19:51:21.0343 0984  [ 5C71F7CDD1B4BA5F00B87CA05E414AEA ] Point32         C:\WINDOWS\system32\DRIVERS\point32.sys
19:51:21.0343 0984  Point32 - ok
19:51:21.0375 0984  [ 84885F9B82F4D55C6146EBF6065D75D2 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
19:51:21.0375 0984  PolicyAgent - ok
19:51:21.0453 0984  [ 1C5CC65AAC0783C344F16353E60B72AC ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:51:21.0453 0984  PptpMiniport - ok
19:51:21.0500 0984  [ 84885F9B82F4D55C6146EBF6065D75D2 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
19:51:21.0500 0984  ProtectedStorage - ok
19:51:21.0546 0984  [ 48671F327553DCF1D27F6197F622A668 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
19:51:21.0546 0984  PSched - ok
19:51:21.0609 0984  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:51:21.0609 0984  Ptilink - ok
19:51:21.0734 0984  [ 91195091F449699B176FE1305DAD40DA ] QBCFMonitorService C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
19:51:21.0734 0984  QBCFMonitorService - ok
19:51:21.0843 0984  [ 6BEE1814470DC12FA20C53DFC3C97EBB ] QBFCService     C:\Program Files\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
19:51:21.0843 0984  QBFCService - ok
19:51:21.0968 0984  [ 78AFB70DBE365BD6140E6740792AC3EA ] QBVSS           C:\Program Files\Common Files\Intuit\DataProtect\QBIDPService.exe
19:51:22.0031 0984  QBVSS - ok
19:51:22.0046 0984  ql1080 - ok
19:51:22.0078 0984  Ql10wnt - ok
19:51:22.0093 0984  ql12160 - ok
19:51:22.0125 0984  ql1240 - ok
19:51:22.0140 0984  ql1280 - ok
19:51:22.0218 0984  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:51:22.0218 0984  RasAcd - ok
19:51:22.0281 0984  [ 44DB7A9BDD2FB58747D123FBF1D35ADB ] RasAuto         C:\WINDOWS\System32\rasauto.dll
19:51:22.0296 0984  RasAuto - ok
19:51:22.0343 0984  [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:51:22.0343 0984  Rasl2tp - ok
19:51:22.0421 0984  [ 41A3C11E3517C962C9B44893BCEC3B34 ] RasMan          C:\WINDOWS\System32\rasmans.dll
19:51:22.0421 0984  RasMan - ok
19:51:22.0484 0984  [ 7306EEED8895454CBED4669BE9F79FAA ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:51:22.0484 0984  RasPppoe - ok
19:51:22.0546 0984  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
19:51:22.0546 0984  Raspti - ok
19:51:22.0609 0984  [ 29D66245ADBA878FFF574CD66ABD2884 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:51:22.0609 0984  Rdbss - ok
19:51:22.0656 0984  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:51:22.0656 0984  RDPCDD - ok
19:51:22.0750 0984  [ A2CAE2C60BC37E0751EF9DDA7CEAF4AD ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
19:51:22.0750 0984  rdpdr - ok
19:51:22.0812 0984  [ D4F5643D7714EF499AE9527FDCD50894 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
19:51:22.0828 0984  RDPWD - ok
19:51:22.0921 0984  [ 729798E0933076B8FCFCD9934698F164 ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
19:51:22.0953 0984  RDSessMgr - ok
19:51:23.0031 0984  [ B31B4588E4086D8D84ADBF9845C2402B ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
19:51:23.0031 0984  redbook - ok
19:51:23.0093 0984  [ 3046DB917E3CFA040632799DD9B14865 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
19:51:23.0093 0984  RemoteAccess - ok
19:51:23.0171 0984  [ 3151427DB7D87107D1C5BE58FAC53960 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
19:51:23.0171 0984  RemoteRegistry - ok
19:51:23.0250 0984  [ 793F04A09B15E7C6C11DBDFFAF06C0AB ] RpcLocator      C:\WINDOWS\system32\locator.exe
19:51:23.0265 0984  RpcLocator - ok
19:51:23.0343 0984  [ 5C83A4408604F737717AB96371201680 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
19:51:23.0343 0984  RpcSs - ok
19:51:23.0406 0984  [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP            C:\WINDOWS\system32\rsvp.exe
19:51:23.0421 0984  RSVP - ok
19:51:23.0484 0984  [ 84885F9B82F4D55C6146EBF6065D75D2 ] SamSs           C:\WINDOWS\system32\lsass.exe
19:51:23.0484 0984  SamSs - ok
19:51:23.0546 0984  [ 25D8DE134DF108E3DBC8D7D23B1AA58E ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
19:51:23.0562 0984  SCardSvr - ok
19:51:23.0656 0984  [ 92360854316611F6CC471612213C3D92 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
19:51:23.0671 0984  Schedule - ok
19:51:23.0734 0984  [ D26E26EA516450AF9D072635C60387F4 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:51:23.0750 0984  Secdrv - ok
19:51:23.0812 0984  [ B1E0CE09895376871746F36DC5773B4F ] seclogon        C:\WINDOWS\System32\seclogon.dll
19:51:23.0812 0984  seclogon - ok
19:51:23.0875 0984  [ DFD9870CF39C791D86C4C209DA9FA919 ] SENS            C:\WINDOWS\system32\sens.dll
19:51:23.0875 0984  SENS - ok
19:51:23.0953 0984  [ A2D868AEEFF612E70E213C451A70CAFB ] serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
19:51:23.0953 0984  serenum - ok
19:51:24.0000 0984  [ CD9404D115A00D249F70A371B46D5A26 ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys
19:51:24.0000 0984  Serial - ok
19:51:24.0093 0984  [ 0D13B6DF6E9E101013A7AFB0CE629FE0 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
19:51:24.0093 0984  Sfloppy - ok
19:51:24.0171 0984  [ 36CC8C01B5E50163037BEF56CB96DEFF ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
19:51:24.0187 0984  SharedAccess - ok
19:51:24.0265 0984  [ E7518DC542D3EBDCB80EDD98462C7821 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
19:51:24.0265 0984  ShellHWDetection - ok
19:51:24.0281 0984  Simbad - ok
19:51:24.0390 0984  [ 70B8DD8707DBF6142530C106365DF67D ] smwdm           C:\WINDOWS\system32\drivers\smwdm.sys
19:51:24.0390 0984  smwdm - ok
19:51:24.0421 0984  Sparrow - ok
19:51:24.0453 0984  [ 8E186B8F23295D1E42C573B82B80D548 ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
19:51:24.0453 0984  splitter - ok
19:51:24.0515 0984  [ 7435B108B935E42EA92CA94F59C8E717 ] Spooler         C:\WINDOWS\system32\spoolsv.exe
19:51:24.0515 0984  Spooler - ok
19:51:24.0578 0984  [ E41B6D037D6CD08461470AF04500DC24 ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
19:51:24.0593 0984  sr - ok
19:51:24.0687 0984  [ 92BDF74F12D6CBEC43C94D4B7F804838 ] srservice       C:\WINDOWS\system32\srsvc.dll
19:51:24.0687 0984  srservice - ok
19:51:24.0750 0984  [ 20B7E396720353E4117D64D9DCB926CA ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
19:51:24.0781 0984  Srv - ok
19:51:24.0843 0984  [ 4B8D61792F7175BED48859CC18CE4E38 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
19:51:24.0843 0984  SSDPSRV - ok
19:51:24.0906 0984  [ D9F6C4F6B1E188ADAFC42B561D9BC2E6 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
19:51:24.0921 0984  stisvc - ok
19:51:24.0984 0984  [ 03C1BAE4766E2450219D20B993D6E046 ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
19:51:24.0984 0984  swenum - ok
19:51:25.0015 0984  [ 94ABC808FC4B6D7D2BBF42B85E25BB4D ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
19:51:25.0015 0984  swmidi - ok
19:51:25.0078 0984  SwPrv - ok
19:51:25.0093 0984  symc810 - ok
19:51:25.0125 0984  symc8xx - ok
19:51:25.0140 0984  sym_hi - ok
19:51:25.0156 0984  sym_u3 - ok
19:51:25.0187 0984  [ 650AD082D46BAC0E64C9C0E0928492FD ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
19:51:25.0187 0984  sysaudio - ok
19:51:25.0265 0984  [ 8B54AA346D1B1B113FFAA75501B8B1B2 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
19:51:25.0265 0984  SysmonLog - ok
19:51:25.0343 0984  [ EB4A4187D74A8EFDCBEA3EA2CB1BDFBD ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
19:51:25.0359 0984  TapiSrv - ok
19:51:25.0437 0984  [ 9F4B36614A0FC234525BA224957DE55C ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:51:25.0437 0984  Tcpip - ok
19:51:25.0484 0984  [ 38D437CF2D98965F239B0ABCD66DCB0F ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
19:51:25.0500 0984  TDPIPE - ok
19:51:25.0546 0984  [ ED0580AF02502D00AD8C4C066B156BE9 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
19:51:25.0562 0984  TDTCP - ok
19:51:25.0609 0984  [ A540A99C281D933F3D69D55E48727F47 ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
19:51:25.0609 0984  TermDD - ok
19:51:25.0687 0984  [ B60C877D16D9C880B952FDA04ADF16E6 ] TermService     C:\WINDOWS\System32\termsrv.dll
19:51:25.0703 0984  TermService - ok
19:51:25.0765 0984  [ E7518DC542D3EBDCB80EDD98462C7821 ] Themes          C:\WINDOWS\System32\shsvcs.dll
19:51:25.0781 0984  Themes - ok
19:51:25.0843 0984  [ 37DB0A7D097310E8B4DE803FC3119C78 ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
19:51:25.0859 0984  TlntSvr - ok
19:51:25.0953 0984  [ CCD8B28C039302C367266BC3F641BC92 ] tmpreflt        C:\PROGRA~1\VCOM\Fix-It\tmpreflt.sys
19:51:25.0953 0984  tmpreflt - ok
19:51:26.0015 0984  [ 7B6A9637905FAB070292D5A6AD5CF3AF ] tmxpflt         C:\PROGRA~1\VCOM\Fix-It\tmxpflt.sys
19:51:26.0015 0984  tmxpflt - ok
19:51:26.0031 0984  TosIde - ok
19:51:26.0109 0984  [ 6D9AC544B30F96C57F8206566C1FB6A1 ] TrkWks          C:\WINDOWS\system32\trkwks.dll
19:51:26.0109 0984  TrkWks - ok
19:51:26.0187 0984  [ 12F70256F140CD7D52C58C7048FDE657 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
19:51:26.0203 0984  Udfs - ok
19:51:26.0234 0984  ultra - ok
19:51:26.0296 0984  [ AFF2E5045961BBC0A602BB6F95EB1345 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
19:51:26.0296 0984  Update - ok
19:51:26.0375 0984  [ 0546477BDE979E33294FE97F6B3DE84A ] upnphost        C:\WINDOWS\System32\upnphost.dll
19:51:26.0406 0984  upnphost - ok
19:51:26.0468 0984  [ 3F5DF65B0758675F95A2D43918A740A3 ] UPS             C:\WINDOWS\System32\ups.exe
19:51:26.0484 0984  UPS - ok
19:51:26.0531 0984  [ 6E421CCC57059B0186C6259CA3B6DFC9 ] USBAAPL         C:\WINDOWS\system32\Drivers\usbaapl.sys
19:51:26.0546 0984  USBAAPL - ok
19:51:26.0609 0984  [ BFFD9F120CC63BCBAA3D840F3EEF9F79 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:51:26.0609 0984  usbccgp - ok
19:51:26.0656 0984  [ 15E993BA2F6946B2BFBBFCD30398621E ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:51:26.0656 0984  usbehci - ok
19:51:26.0703 0984  [ C72F40947F92CEA56A8FB532EDF025F1 ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:51:26.0703 0984  usbhub - ok
19:51:26.0765 0984  [ A42369B7CD8886CD7C70F33DA6FCBCF5 ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
19:51:26.0781 0984  usbprint - ok
19:51:26.0843 0984  [ A6BC71402F4F7DD5B77FD7F4A8DDBA85 ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
19:51:26.0843 0984  usbscan - ok
19:51:26.0906 0984  [ 6CD7B22193718F1D17A47A1CD6D37E75 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:51:26.0906 0984  USBSTOR - ok
19:51:26.0953 0984  [ F8FD1400092E23C8F2F31406EF06167B ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:51:26.0953 0984  usbuhci - ok
19:51:27.0015 0984  [ 8A60EDD72B4EA5AEA8202DAF0E427925 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
19:51:27.0015 0984  VgaSave - ok
19:51:27.0031 0984  ViaIde - ok
19:51:27.0109 0984  [ EE4660083DEBA849FF6C485D944B379B ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
19:51:27.0109 0984  VolSnap - ok
19:51:27.0218 0984  [ 059F25954C02F134FE94E135F6B99910 ] Vsapint         C:\PROGRA~1\VCOM\Fix-It\Vsapint.sys
19:51:27.0234 0984  Vsapint - ok
19:51:27.0312 0984  [ 3EE00364AE0FD8D604F46CBAF512838A ] VSS             C:\WINDOWS\System32\vssvc.exe
19:51:27.0343 0984  VSS - ok
19:51:27.0421 0984  [ 2B281958F5D0CF99ED626E3EF39D5C8D ] W32Time         C:\WINDOWS\system32\w32time.dll
19:51:27.0421 0984  W32Time - ok
19:51:27.0500 0984  [ 984EF0B9788ABF89974CFED4BFBAACBC ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:51:27.0500 0984  Wanarp - ok
19:51:27.0531 0984  WDICA - ok
19:51:27.0593 0984  [ 2797F33EBF50466020C430EE4F037933 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
19:51:27.0593 0984  wdmaud - ok
19:51:27.0656 0984  [ 5D0A442864BFBF3B19DCCA4CD29F6E99 ] WebClient       C:\WINDOWS\System32\webclnt.dll
19:51:27.0671 0984  WebClient - ok
19:51:27.0750 0984  [ 1225EBEA76AAC3C84DF6C54FE5E5D8BE ] winachsf        C:\WINDOWS\system32\DRIVERS\HSFCXTS2.sys
19:51:27.0765 0984  winachsf - ok
19:51:27.0843 0984  [ F399242A80C4066FD155EFA4CF96658E ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
19:51:27.0843 0984  winmgmt - ok
19:51:27.0953 0984  [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
19:51:27.0968 0984  WmdmPmSN - ok
19:51:28.0062 0984  [ 1AFF244CA134956C54474F4E2433E4CE ] Wmi             C:\WINDOWS\System32\advapi32.dll
19:51:28.0078 0984  Wmi - ok
19:51:28.0140 0984  [ BA8CECC3E813E1F7C441B20393D4F86C ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
19:51:28.0156 0984  WmiApSrv - ok
19:51:28.0203 0984  [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb          C:\WINDOWS\system32\DRIVERS\wpdusb.sys
19:51:28.0218 0984  WpdUsb - ok
19:51:28.0281 0984  [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys
19:51:28.0281 0984  WS2IFSL - ok
19:51:28.0359 0984  [ 4D59DAA66C60858CDF4F67A900F42D4A ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
19:51:28.0359 0984  wscsvc - ok
19:51:28.0421 0984  [ 13D72740963CBA12D9FF76A7F218BCD8 ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
19:51:28.0421 0984  wuauserv - ok
19:51:28.0484 0984  [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:51:28.0515 0984  WudfPf - ok
19:51:28.0578 0984  [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:51:28.0593 0984  WudfRd - ok
19:51:28.0671 0984  [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
19:51:28.0671 0984  WudfSvc - ok
19:51:28.0765 0984  [ 5A91E6FEAB9F901302FA7FF768C0120F ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
19:51:28.0781 0984  WZCSVC - ok
19:51:28.0843 0984  [ EEF46DAB68229A14DA3D8E73C99E2959 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
19:51:28.0843 0984  xmlprov - ok
19:51:28.0875 0984  ================ Scan global ===============================
19:51:28.0953 0984  [ 00EF9C3AF83EDBAF18CA7A2837750117 ] C:\WINDOWS\system32\basesrv.dll
19:51:29.0062 0984  [ 442D0EAD5534E4ADCF6D4469043C82C0 ] C:\WINDOWS\system32\winsrv.dll
19:51:29.0125 0984  [ 442D0EAD5534E4ADCF6D4469043C82C0 ] C:\WINDOWS\system32\winsrv.dll
19:51:29.0171 0984  [ C6CE6EEC82F187615D1002BB3BB50ED4 ] C:\WINDOWS\system32\services.exe
19:51:29.0171 0984  [Global] - ok
19:51:29.0187 0984  ================ Scan MBR ==================================
19:51:29.0234 0984  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
19:51:29.0390 0984  \Device\Harddisk0\DR0 - ok
19:51:29.0390 0984  ================ Scan VBR ==================================
19:51:29.0406 0984  [ 9426A78A15A42217D29D1DC94A6D12D2 ] \Device\Harddisk0\DR0\Partition1
19:51:29.0406 0984  \Device\Harddisk0\DR0\Partition1 - ok
19:51:29.0437 0984  [ 532FC85660DA84633F8DEE3361994432 ] \Device\Harddisk0\DR0\Partition2
19:51:29.0437 0984  \Device\Harddisk0\DR0\Partition2 - ok
19:51:29.0484 0984  [ 0C85E63F89D10A5D7CE619CD77034431 ] \Device\Harddisk0\DR0\Partition3
19:51:29.0484 0984  \Device\Harddisk0\DR0\Partition3 - ok
19:51:29.0531 0984  [ 2CE3A1A5FD7EA467E22D826FD33D4145 ] \Device\Harddisk0\DR0\Partition4
19:51:29.0531 0984  \Device\Harddisk0\DR0\Partition4 - ok
19:51:29.0531 0984  ================ Scan active images ========================
19:51:29.0546 0984  [ 279FB78702454DFF2BB445F238C048D2 ] C:\WINDOWS\System32\DRIVERS\INTELPPM.SYS
19:51:29.0546 0984  C:\WINDOWS\System32\DRIVERS\INTELPPM.SYS - ok
19:51:29.0562 0984  [ D5A9D123F5ED7C9965A481BD20CF66D8 ] C:\WINDOWS\System32\DRIVERS\VIDEOPRT.SYS
19:51:29.0562 0984  C:\WINDOWS\System32\DRIVERS\VIDEOPRT.SYS - ok
19:51:29.0593 0984  [ 2D030C2F6B036CA0BC243E1B16D924D1 ] C:\WINDOWS\System32\DRIVERS\ATI2MTAA.SYS
19:51:29.0593 0984  C:\WINDOWS\System32\DRIVERS\ATI2MTAA.SYS - ok
19:51:29.0609 0984  [ 2034CA78F9C6E787B4B76D81AC888351 ] C:\WINDOWS\System32\DRIVERS\USBPORT.SYS
19:51:29.0609 0984  C:\WINDOWS\System32\DRIVERS\USBPORT.SYS - ok
19:51:29.0625 0984  [ F8FD1400092E23C8F2F31406EF06167B ] C:\WINDOWS\System32\DRIVERS\USBUHCI.SYS
19:51:29.0625 0984  C:\WINDOWS\System32\DRIVERS\USBUHCI.SYS - ok
19:51:29.0656 0984  [ 15E993BA2F6946B2BFBBFCD30398621E ] C:\WINDOWS\System32\DRIVERS\USBEHCI.SYS
19:51:29.0656 0984  C:\WINDOWS\System32\DRIVERS\USBEHCI.SYS - ok
19:51:29.0671 0984  [ B9540E258F952650DE8DEC68719A5C97 ] C:\WINDOWS\System32\DRIVERS\KS.SYS
19:51:29.0671 0984  C:\WINDOWS\System32\DRIVERS\KS.SYS - ok
19:51:29.0687 0984  [ 970178E8E003EB1481293830069624B9 ] C:\WINDOWS\System32\DRIVERS\HSFBS2S2.SYS
19:51:29.0687 0984  C:\WINDOWS\System32\DRIVERS\HSFBS2S2.SYS - ok
19:51:29.0718 0984  [ EBB354438A4C5A3327FB97306260714A ] C:\WINDOWS\System32\DRIVERS\HSFDPSP2.SYS
19:51:29.0718 0984  C:\WINDOWS\System32\DRIVERS\HSFDPSP2.SYS - ok
19:51:29.0734 0984  [ 1225EBEA76AAC3C84DF6C54FE5E5D8BE ] C:\WINDOWS\System32\DRIVERS\HSFCXTS2.SYS
19:51:29.0734 0984  C:\WINDOWS\System32\DRIVERS\HSFCXTS2.SYS - ok
19:51:29.0765 0984  [ 6FC6F9D7ACC36DCA9B914565A3AEDA05 ] C:\WINDOWS\System32\DRIVERS\MODEM.SYS
19:51:29.0765 0984  C:\WINDOWS\System32\DRIVERS\MODEM.SYS - ok
19:51:29.0781 0984  [ 3B1AD8EF095368EF02CADC7FCF0B8AC5 ] C:\WINDOWS\System32\DRIVERS\m4cxw2k3.sys
19:51:29.0781 0984  C:\WINDOWS\System32\DRIVERS\m4cxw2k3.sys - ok
19:51:29.0812 0984  [ CED2E8396A8838E59D8FD529C680E02C ] C:\WINDOWS\System32\DRIVERS\FDC.SYS
19:51:29.0812 0984  C:\WINDOWS\System32\DRIVERS\FDC.SYS - ok
19:51:29.0828 0984  [ 5502B58EEF7486EE6F93F3F164DCB808 ] C:\WINDOWS\System32\DRIVERS\I8042PRT.SYS
19:51:29.0828 0984  C:\WINDOWS\System32\DRIVERS\I8042PRT.SYS - ok
19:51:29.0843 0984  [ EBDEE8A2EE5393890A1ACEE971C4C246 ] C:\WINDOWS\System32\DRIVERS\KBDCLASS.SYS
19:51:29.0843 0984  C:\WINDOWS\System32\DRIVERS\KBDCLASS.SYS - ok
19:51:29.0875 0984  [ CD9404D115A00D249F70A371B46D5A26 ] C:\WINDOWS\System32\DRIVERS\SERIAL.SYS
19:51:29.0875 0984  C:\WINDOWS\System32\DRIVERS\SERIAL.SYS - ok
19:51:29.0890 0984  [ A2D868AEEFF612E70E213C451A70CAFB ] C:\WINDOWS\System32\DRIVERS\SERENUM.SYS
19:51:29.0890 0984  C:\WINDOWS\System32\DRIVERS\SERENUM.SYS - ok
19:51:29.0906 0984  [ 29744EB4CE659DFE3B4122DEB45BC478 ] C:\WINDOWS\System32\DRIVERS\PARPORT.SYS
19:51:29.0906 0984  C:\WINDOWS\System32\DRIVERS\PARPORT.SYS - ok
19:51:29.0937 0984  [ F8AA320C6A0409C0380E5D8A99D76EC6 ] C:\WINDOWS\System32\DRIVERS\IMAPI.SYS
19:51:29.0937 0984  C:\WINDOWS\System32\DRIVERS\IMAPI.SYS - ok
19:51:29.0953 0984  [ C719341A1CF6AFD4FA0808AE3D23D6A3 ] C:\WINDOWS\System32\DRIVERS\AFS2K.SYS
19:51:29.0953 0984  C:\WINDOWS\System32\DRIVERS\AFS2K.SYS - ok
19:51:29.0968 0984  [ 882B4257E5A5ADFB6B5C03E8A02D4BF1 ] C:\WINDOWS\System32\DRIVERS\CDROM.SYS
19:51:29.0968 0984  C:\WINDOWS\System32\DRIVERS\CDROM.SYS - ok
19:51:30.0000 0984  [ B31B4588E4086D8D84ADBF9845C2402B ] C:\WINDOWS\System32\DRIVERS\REDBOOK.SYS
19:51:30.0000 0984  C:\WINDOWS\System32\DRIVERS\REDBOOK.SYS - ok
19:51:30.0031 0984  [ 185ADA973B5020655CEE342059A86CBB ] C:\WINDOWS\System32\DRIVERS\GEARAspiWDM.sys
19:51:30.0031 0984  C:\WINDOWS\System32\DRIVERS\GEARAspiWDM.sys - ok
19:51:30.0046 0984  [ FF86422268DE771D571E123EB7092C6A ] C:\WINDOWS\System32\DRIVERS\drmk.sys
19:51:30.0046 0984  C:\WINDOWS\System32\DRIVERS\drmk.sys - ok
19:51:30.0062 0984  [ 5B0F00E43A7094C0B7E433CB42C79164 ] C:\WINDOWS\System32\DRIVERS\portcls.sys
19:51:30.0062 0984  C:\WINDOWS\System32\DRIVERS\portcls.sys - ok
19:51:30.0078 0984  [ 70B8DD8707DBF6142530C106365DF67D ] C:\WINDOWS\System32\DRIVERS\smwdm.sys
19:51:30.0078 0984  C:\WINDOWS\System32\DRIVERS\smwdm.sys - ok
19:51:30.0109 0984  [ 11C04B17ED2ABBB4833694BCD644AC90 ] C:\WINDOWS\System32\DRIVERS\aeaudio.sys
19:51:30.0109 0984  C:\WINDOWS\System32\DRIVERS\aeaudio.sys - ok
19:51:30.0125 0984  [ D9F724AA26C010A217C97606B160ED68 ] C:\WINDOWS\System32\DRIVERS\AUDSTUB.SYS
19:51:30.0125 0984  C:\WINDOWS\System32\DRIVERS\AUDSTUB.SYS - ok
19:51:30.0140 0984  [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C ] C:\WINDOWS\System32\DRIVERS\RASL2TP.SYS
19:51:30.0140 0984  C:\WINDOWS\System32\DRIVERS\RASL2TP.SYS - ok
19:51:30.0171 0984  [ 08D43BBDACDF23F34D79E44ED35C1B4C ] C:\WINDOWS\System32\DRIVERS\NDISTAPI.SYS
19:51:30.0171 0984  C:\WINDOWS\System32\DRIVERS\NDISTAPI.SYS - ok
19:51:30.0187 0984  [ 0B90E255A9490166AB368CD55A529893 ] C:\WINDOWS\System32\DRIVERS\NDISWAN.SYS
19:51:30.0187 0984  C:\WINDOWS\System32\DRIVERS\NDISWAN.SYS - ok
19:51:30.0218 0984  [ 7306EEED8895454CBED4669BE9F79FAA ] C:\WINDOWS\System32\DRIVERS\RASPPPOE.SYS
19:51:30.0218 0984  C:\WINDOWS\System32\DRIVERS\RASPPPOE.SYS - ok
19:51:30.0234 0984  [ 6891B74AB9A016064E82A419388D0601 ] C:\WINDOWS\System32\DRIVERS\TDI.SYS
19:51:30.0234 0984  C:\WINDOWS\System32\DRIVERS\TDI.SYS - ok
19:51:30.0250 0984  [ 1C5CC65AAC0783C344F16353E60B72AC ] C:\WINDOWS\System32\DRIVERS\RASPPTP.SYS
19:51:30.0250 0984  C:\WINDOWS\System32\DRIVERS\RASPPTP.SYS - ok
19:51:30.0281 0984  [ C0F1D4A21DE5A415DF8170616703DEBF ] C:\WINDOWS\System32\DRIVERS\MSGPC.SYS
19:51:30.0281 0984  C:\WINDOWS\System32\DRIVERS\MSGPC.SYS - ok
19:51:30.0296 0984  [ 48671F327553DCF1D27F6197F622A668 ] C:\WINDOWS\System32\DRIVERS\PSCHED.SYS
19:51:30.0296 0984  C:\WINDOWS\System32\DRIVERS\PSCHED.SYS - ok
19:51:30.0312 0984  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] C:\WINDOWS\System32\DRIVERS\PTILINK.SYS
19:51:30.0312 0984  C:\WINDOWS\System32\DRIVERS\PTILINK.SYS - ok
19:51:30.0328 0984  [ FDBB1D60066FCFBB7452FD8F9829B242 ] C:\WINDOWS\System32\DRIVERS\RASPTI.SYS
19:51:30.0328 0984  C:\WINDOWS\System32\DRIVERS\RASPTI.SYS - ok
19:51:30.0359 0984  [ A2CAE2C60BC37E0751EF9DDA7CEAF4AD ] C:\WINDOWS\System32\DRIVERS\RDPDR.SYS
19:51:30.0359 0984  C:\WINDOWS\System32\DRIVERS\RDPDR.SYS - ok
19:51:30.0375 0984  [ 34E1F0031153E491910E12551400192C ] C:\WINDOWS\System32\DRIVERS\MOUCLASS.SYS
19:51:30.0375 0984  C:\WINDOWS\System32\DRIVERS\MOUCLASS.SYS - ok
19:51:30.0390 0984  [ A540A99C281D933F3D69D55E48727F47 ] C:\WINDOWS\System32\DRIVERS\TERMDD.SYS
19:51:30.0390 0984  C:\WINDOWS\System32\DRIVERS\TERMDD.SYS - ok
19:51:30.0421 0984  [ 03C1BAE4766E2450219D20B993D6E046 ] C:\WINDOWS\System32\DRIVERS\SWENUM.SYS
19:51:30.0421 0984  C:\WINDOWS\System32\DRIVERS\SWENUM.SYS - ok
19:51:30.0437 0984  [ AFF2E5045961BBC0A602BB6F95EB1345 ] C:\WINDOWS\System32\DRIVERS\UPDATE.SYS
19:51:30.0437 0984  C:\WINDOWS\System32\DRIVERS\UPDATE.SYS - ok
19:51:30.0453 0984  [ 469541F8BFD2B32659D5D463A6714BCE ] C:\WINDOWS\System32\DRIVERS\MSSMBIOS.SYS
19:51:30.0453 0984  C:\WINDOWS\System32\DRIVERS\MSSMBIOS.SYS - ok
19:51:30.0453 0984  [ 59FC3FB44D2669BC144FD87826BB571F ] C:\WINDOWS\System32\DRIVERS\NDPROXY.SYS
19:51:30.0453 0984  C:\WINDOWS\System32\DRIVERS\NDPROXY.SYS - ok
19:51:30.0468 0984  [ 596EB39B50D6EBD9B734DC4AE0544693 ] C:\WINDOWS\System32\DRIVERS\USBD.SYS
19:51:30.0468 0984  C:\WINDOWS\System32\DRIVERS\USBD.SYS - ok
19:51:30.0484 0984  [ C72F40947F92CEA56A8FB532EDF025F1 ] C:\WINDOWS\System32\DRIVERS\USBHUB.SYS
19:51:30.0484 0984  C:\WINDOWS\System32\DRIVERS\USBHUB.SYS - ok
19:51:30.0500 0984  [ 0DD1DE43115B93F4D85E889D7A86F548 ] C:\WINDOWS\System32\DRIVERS\FLPYDISK.SYS
19:51:30.0500 0984  C:\WINDOWS\System32\DRIVERS\FLPYDISK.SYS - ok
19:51:30.0500 0984  [ C1B486A7658353D33A10CC15211A873B ] C:\WINDOWS\System32\DRIVERS\CDAUDIO.SYS
19:51:30.0500 0984  C:\WINDOWS\System32\DRIVERS\CDAUDIO.SYS - ok
19:51:30.0515 0984  [ 0D13B6DF6E9E101013A7AFB0CE629FE0 ] C:\WINDOWS\System32\DRIVERS\SFLOPPY.SYS
19:51:30.0515 0984  C:\WINDOWS\System32\DRIVERS\SFLOPPY.SYS - ok
19:51:30.0515 0984  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] C:\WINDOWS\System32\DRIVERS\FS_REC.SYS
19:51:30.0515 0984  C:\WINDOWS\System32\DRIVERS\FS_REC.SYS - ok
19:51:30.0531 0984  [ DA1F27D85E0D1525F6621372E7B685E9 ] C:\WINDOWS\System32\DRIVERS\BEEP.SYS
19:51:30.0531 0984  C:\WINDOWS\System32\DRIVERS\BEEP.SYS - ok
19:51:30.0546 0984  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] C:\WINDOWS\System32\DRIVERS\NULL.SYS
19:51:30.0546 0984  C:\WINDOWS\System32\DRIVERS\NULL.SYS - ok
19:51:30.0546 0984  [ 5FFF41CD5108E9051D255C37825AF697 ] C:\WINDOWS\System32\DRIVERS\HIDPARSE.SYS
19:51:30.0546 0984  C:\WINDOWS\System32\DRIVERS\HIDPARSE.SYS - ok
19:51:30.0562 0984  [ E182FA8E49E8EE41B4ADC53093F3C7E6 ] C:\WINDOWS\System32\DRIVERS\KBDHID.SYS
19:51:30.0562 0984  C:\WINDOWS\System32\DRIVERS\KBDHID.SYS - ok
19:51:30.0578 0984  [ 8A60EDD72B4EA5AEA8202DAF0E427925 ] C:\WINDOWS\System32\DRIVERS\VGA.SYS
19:51:30.0578 0984  C:\WINDOWS\System32\DRIVERS\VGA.SYS - ok
19:51:30.0578 0984  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] C:\WINDOWS\System32\DRIVERS\MNMDD.SYS
19:51:30.0578 0984  C:\WINDOWS\System32\DRIVERS\MNMDD.SYS - ok
19:51:30.0593 0984  [ 4912D5B403614CE99C28420F75353332 ] C:\WINDOWS\System32\DRIVERS\RDPCDD.SYS
19:51:30.0593 0984  C:\WINDOWS\System32\DRIVERS\RDPCDD.SYS - ok
19:51:30.0609 0984  [ 561B3A4333CA2DBDBA28B5B956822519 ] C:\WINDOWS\System32\DRIVERS\MSFS.SYS
19:51:30.0609 0984  C:\WINDOWS\System32\DRIVERS\MSFS.SYS - ok
19:51:30.0609 0984  [ 4F601BCB8F64EA3AC0994F98FED03F8E ] C:\WINDOWS\System32\DRIVERS\NPFS.SYS
19:51:30.0609 0984  C:\WINDOWS\System32\DRIVERS\NPFS.SYS - ok
19:51:30.0625 0984  [ FE0D99D6F31E4FAD8159F690D68DED9C ] C:\WINDOWS\System32\DRIVERS\RASACD.SYS
19:51:30.0625 0984  C:\WINDOWS\System32\DRIVERS\RASACD.SYS - ok
19:51:30.0640 0984  [ 64537AA5C003A6AFEEE1DF819062D0D1 ] C:\WINDOWS\System32\DRIVERS\IPSEC.SYS
19:51:30.0640 0984  C:\WINDOWS\System32\DRIVERS\IPSEC.SYS - ok
19:51:30.0640 0984  [ 9F4B36614A0FC234525BA224957DE55C ] C:\WINDOWS\System32\DRIVERS\TCPIP.SYS
19:51:30.0640 0984  C:\WINDOWS\System32\DRIVERS\TCPIP.SYS - ok
19:51:30.0656 0984  [ 0C80E410CD2F47134407EE7DD19CC86B ] C:\WINDOWS\System32\DRIVERS\NETBT.SYS
19:51:30.0656 0984  C:\WINDOWS\System32\DRIVERS\NETBT.SYS - ok
19:51:30.0671 0984  [ B5A8E215AC29D24D60B4D1250EF05ACE ] C:\WINDOWS\System32\DRIVERS\IPNAT.SYS
19:51:30.0671 0984  C:\WINDOWS\System32\DRIVERS\IPNAT.SYS - ok
19:51:30.0671 0984  [ 984EF0B9788ABF89974CFED4BFBAACBC ] C:\WINDOWS\System32\DRIVERS\WANARP.SYS
19:51:30.0671 0984  C:\WINDOWS\System32\DRIVERS\WANARP.SYS - ok
19:51:30.0687 0984  [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] C:\WINDOWS\System32\DRIVERS\ws2ifsl.sys
19:51:30.0687 0984  C:\WINDOWS\System32\DRIVERS\ws2ifsl.sys - ok
19:51:30.0703 0984  [ 5AC495F4CB807B2B98AD2AD591E6D92E ] C:\WINDOWS\System32\DRIVERS\AFD.SYS
19:51:30.0703 0984  C:\WINDOWS\System32\DRIVERS\AFD.SYS - ok
19:51:30.0703 0984  [ 3A2ACA8FC1D7786902CA434998D7CEB4 ] C:\WINDOWS\System32\DRIVERS\NETBIOS.SYS
19:51:30.0703 0984  C:\WINDOWS\System32\DRIVERS\NETBIOS.SYS - ok
19:51:30.0718 0984  [ 29D66245ADBA878FFF574CD66ABD2884 ] C:\WINDOWS\System32\DRIVERS\RDBSS.SYS
19:51:30.0718 0984  C:\WINDOWS\System32\DRIVERS\RDBSS.SYS - ok
19:51:30.0734 0984  [ 1FD607FC67F7F7C633C3DA65BFC53D18 ] C:\WINDOWS\System32\DRIVERS\MRXSMB.SYS
19:51:30.0734 0984  C:\WINDOWS\System32\DRIVERS\MRXSMB.SYS - ok
19:51:30.0734 0984  [ E153AB8A11DE5452BCF5AC7652DBF3ED ] C:\WINDOWS\System32\DRIVERS\FIPS.SYS
19:51:30.0734 0984  C:\WINDOWS\System32\DRIVERS\FIPS.SYS - ok
19:51:30.0750 0984  [ BD7FB0957C716F1A60333AEE04DE2178 ] C:\WINDOWS\System32\SMSS.EXE
19:51:30.0750 0984  C:\WINDOWS\System32\SMSS.EXE - ok
19:51:30.0765 0984  [ BB5CBFFC096497506167BCE1D9690EF2 ] C:\WINDOWS\System32\ntdll.dll
19:51:30.0765 0984  C:\WINDOWS\System32\ntdll.dll - ok
19:51:30.0765 0984  [ B3415B9D6026F65E43089ABED096C38C ] C:\WINDOWS\System32\AUTOCHK.EXE
19:51:30.0765 0984  C:\WINDOWS\System32\AUTOCHK.EXE - ok
19:51:30.0765 0984  [ BFFD9F120CC63BCBAA3D840F3EEF9F79 ] C:\WINDOWS\System32\DRIVERS\USBCCGP.SYS
19:51:30.0765 0984  C:\WINDOWS\System32\DRIVERS\USBCCGP.SYS - ok
19:51:30.0781 0984  [ 378055AB8DDA86228683C697C4E11685 ] C:\WINDOWS\System32\DRIVERS\HIDCLASS.SYS
19:51:30.0781 0984  C:\WINDOWS\System32\DRIVERS\HIDCLASS.SYS - ok
19:51:30.0796 0984  [ 1DE6783B918F540149AA69943BDFEBA8 ] C:\WINDOWS\System32\DRIVERS\HIDUSB.SYS
19:51:30.0796 0984  C:\WINDOWS\System32\DRIVERS\HIDUSB.SYS - ok
19:51:30.0796 0984  [ B1C303E17FB9D46E87A98E4BA6769685 ] C:\WINDOWS\System32\DRIVERS\MOUHID.SYS
19:51:30.0796 0984  C:\WINDOWS\System32\DRIVERS\MOUHID.SYS - ok
19:51:30.0796 0984  [ 5C71F7CDD1B4BA5F00B87CA05E414AEA ] C:\WINDOWS\System32\DRIVERS\point32.sys
19:51:30.0796 0984  C:\WINDOWS\System32\DRIVERS\point32.sys - ok
19:51:30.0812 0984  [ 30A609E00BD1D4FFC49D6B5A432BE7F2 ] C:\WINDOWS\System32\SFCFILES.DLL
19:51:30.0812 0984  C:\WINDOWS\System32\SFCFILES.DLL - ok
19:51:30.0828 0984  [ CD7D5152DF32B47F4E36F710B35AAE02 ] C:\WINDOWS\System32\DRIVERS\CDFS.SYS
19:51:30.0828 0984  C:\WINDOWS\System32\DRIVERS\CDFS.SYS - ok
19:51:30.0828 0984  [ FE97D0343ACFDEBDD578FC67CC91FA87 ] C:\WINDOWS\System32\DRIVERS\DXAPI.SYS
19:51:30.0828 0984  C:\WINDOWS\System32\DRIVERS\DXAPI.SYS - ok
19:51:30.0828 0984  [ C9BF2F12C4E6C12F8A85FBA4B6BC6208 ] C:\WINDOWS\System32\WATCHDOG.SYS
19:51:30.0828 0984  C:\WINDOWS\System32\WATCHDOG.SYS - ok
19:51:30.0843 0984  [ B74C69A810949E7A54DC688CAE662206 ] C:\WINDOWS\System32\WIN32K.SYS
19:51:30.0843 0984  C:\WINDOWS\System32\WIN32K.SYS - ok
19:51:30.0843 0984  [ D06EAA8B23BC1F671B11D18CFEA65115 ] C:\WINDOWS\System32\CSRSRV.DLL
19:51:30.0843 0984  C:\WINDOWS\System32\CSRSRV.DLL - ok
19:51:30.0843 0984  [ F12B178B1678D778CFD3FF1FC38C71FB ] C:\WINDOWS\System32\CSRSS.EXE
19:51:30.0843 0984  C:\WINDOWS\System32\CSRSS.EXE - ok
19:51:30.0859 0984  [ 00EF9C3AF83EDBAF18CA7A2837750117 ] C:\WINDOWS\System32\BASESRV.DLL
19:51:30.0859 0984  C:\WINDOWS\System32\BASESRV.DLL - ok
19:51:30.0859 0984  [ 442D0EAD5534E4ADCF6D4469043C82C0 ] C:\WINDOWS\System32\WINSRV.DLL
19:51:30.0859 0984  C:\WINDOWS\System32\WINSRV.DLL - ok
19:51:30.0875 0984  [ C72661F8552ACE7C5C85E16A3CF505C4 ] C:\WINDOWS\System32\USER32.DLL
19:51:30.0875 0984  C:\WINDOWS\System32\USER32.DLL - ok
19:51:30.0875 0984  [ 888190E31455FAD793312F8D087146EB ] C:\WINDOWS\System32\KERNEL32.DLL
19:51:30.0875 0984  C:\WINDOWS\System32\KERNEL32.DLL - ok
19:51:30.0875 0984  [ F5AEE133BF44521852819C2202D82453 ] C:\WINDOWS\System32\GDI32.DLL
19:51:30.0875 0984  C:\WINDOWS\System32\GDI32.DLL - ok
19:51:30.0875 0984  [ D3DAC8432110AAD0B02A58B4459AB835 ] C:\WINDOWS\System32\DRIVERS\DXG.SYS
19:51:30.0875 0984  C:\WINDOWS\System32\DRIVERS\DXG.SYS - ok
19:51:30.0890 0984  [ A73F5D6705B1D820C19B18782E176EFD ] C:\WINDOWS\System32\DRIVERS\DXGTHK.SYS
19:51:30.0890 0984  C:\WINDOWS\System32\DRIVERS\DXGTHK.SYS - ok
19:51:30.0890 0984  [ 47ADF7C60C81A3B93AE6357A62E1BCDD ] C:\WINDOWS\System32\ATI2DVAA.DLL
19:51:30.0890 0984  C:\WINDOWS\System32\ATI2DVAA.DLL - ok
19:51:30.0906 0984  [ ECB7591870F8BFB1A4C17B718AD5A4AA ] C:\WINDOWS\System32\VGA.DLL
19:51:30.0906 0984  C:\WINDOWS\System32\VGA.DLL - ok
19:51:30.0906 0984  [ 01C3346C241652F43AED8E2149881BFE ] C:\WINDOWS\System32\WINLOGON.EXE
19:51:30.0906 0984  C:\WINDOWS\System32\WINLOGON.EXE - ok
19:51:30.0906 0984  [ 1AFF244CA134956C54474F4E2433E4CE ] C:\WINDOWS\System32\ADVAPI32.DLL
19:51:30.0906 0984  C:\WINDOWS\System32\ADVAPI32.DLL - ok
19:51:30.0921 0984  [ 857AE842E5779194595C1AA6428690A2 ] C:\WINDOWS\System32\RPCRT4.DLL
19:51:30.0921 0984  C:\WINDOWS\System32\RPCRT4.DLL - ok
19:51:30.0937 0984  [ A3930A43856BD52772BA475648D6DB5B ] C:\WINDOWS\System32\AUTHZ.DLL
19:51:30.0937 0984  C:\WINDOWS\System32\AUTHZ.DLL - ok
19:51:30.0937 0984  [ B0FEFA816D61EC66AA765DDF534EAB5E ] C:\WINDOWS\System32\MSVCRT.DLL
19:51:30.0937 0984  C:\WINDOWS\System32\MSVCRT.DLL - ok
19:51:30.0937 0984  [ EFC958396A7A7EF7E6D4A52B97512E18 ] C:\WINDOWS\System32\CRYPT32.DLL
19:51:30.0937 0984  C:\WINDOWS\System32\CRYPT32.DLL - ok
19:51:30.0937 0984  [ 3CD1CE106CA2A9B4CC626D7DF03FBD6F ] C:\WINDOWS\System32\MSASN1.DLL
19:51:30.0937 0984  C:\WINDOWS\System32\MSASN1.DLL - ok
19:51:30.0953 0984  [ 458AB591E8CF240CC105A23671F2C3D6 ] C:\WINDOWS\System32\NDDEAPI.DLL
19:51:30.0953 0984  C:\WINDOWS\System32\NDDEAPI.DLL - ok
19:51:30.0968 0984  [ CD3879812B56F0F7AEB38A3CBC79C81E ] C:\WINDOWS\System32\NETAPI32.DLL
19:51:30.0968 0984  C:\WINDOWS\System32\NETAPI32.DLL - ok
19:51:30.0968 0984  [ FE4F71711CF5C17ADE5E506348132D24 ] C:\WINDOWS\System32\PROFMAP.DLL
19:51:30.0968 0984  C:\WINDOWS\System32\PROFMAP.DLL - ok
19:51:30.0968 0984  [ 2B9B56A89A8A42E917511972A6DB36E3 ] C:\WINDOWS\System32\USERENV.DLL
19:51:30.0968 0984  C:\WINDOWS\System32\USERENV.DLL - ok
19:51:30.0968 0984  [ 96E48C7EB9089D1DBF6F85CA11B264DF ] C:\WINDOWS\System32\PSAPI.DLL
19:51:30.0968 0984  C:\WINDOWS\System32\PSAPI.DLL - ok
19:51:30.0984 0984  [ 899ED710FDC37EB7D0115C2932C2B1EB ] C:\WINDOWS\System32\REGAPI.DLL
19:51:30.0984 0984  C:\WINDOWS\System32\REGAPI.DLL - ok
19:51:30.0984 0984  [ 81459CB8E975003AD28B8ABB8DFA8329 ] C:\WINDOWS\System32\SECUR32.DLL
19:51:30.0984 0984  C:\WINDOWS\System32\SECUR32.DLL - ok
19:51:30.0984 0984  [ 7808313CBC634EE08346D5DDFEF1CC5F ] C:\WINDOWS\System32\SETUPAPI.DLL
19:51:30.0984 0984  C:\WINDOWS\System32\SETUPAPI.DLL - ok
19:51:31.0000 0984  [ D38408967BE738D0C1B47005BCE8CEEB ] C:\WINDOWS\System32\VERSION.DLL
19:51:31.0000 0984  C:\WINDOWS\System32\VERSION.DLL - ok
19:51:31.0000 0984  [ 7BC4BA4C33ADF3EF5CD370D99BC60B04 ] C:\WINDOWS\System32\WINSTA.DLL
19:51:31.0000 0984  C:\WINDOWS\System32\WINSTA.DLL - ok
19:51:31.0000 0984  [ B015A20C60D2A751777A9C8207A7BA82 ] C:\WINDOWS\System32\WINTRUST.DLL
19:51:31.0000 0984  C:\WINDOWS\System32\WINTRUST.DLL - ok
19:51:31.0015 0984  [ 5AFCE94E8286B2F57A04DA37F01BF21A ] C:\WINDOWS\System32\IMAGEHLP.DLL
19:51:31.0015 0984  C:\WINDOWS\System32\IMAGEHLP.DLL - ok
19:51:31.0015 0984  [ 2ED0B7F12A60F90092081C50FA0EC2B2 ] C:\WINDOWS\System32\WS2_32.DLL
19:51:31.0015 0984  C:\WINDOWS\System32\WS2_32.DLL - ok
19:51:31.0031 0984  [ 9BEACB911CA61E5881102188AB7FB431 ] C:\WINDOWS\System32\WS2HELP.DLL
19:51:31.0031 0984  C:\WINDOWS\System32\WS2HELP.DLL - ok
19:51:31.0031 0984  [ 56C5B179FE3308B655EB6208C3256FEC ] C:\WINDOWS\System32\KBDUS.DLL
19:51:31.0031 0984  C:\WINDOWS\System32\KBDUS.DLL - ok
19:51:31.0031 0984  [ A29AF639AA180CC68C59242A10E1D3B1 ] C:\WINDOWS\System32\MSGINA.DLL
19:51:31.0031 0984  C:\WINDOWS\System32\MSGINA.DLL - ok
19:51:31.0031 0984  [ D5988A5048E4DC7175BCA9F29FC144AE ] C:\WINDOWS\System32\SHELL32.DLL
19:51:31.0031 0984  C:\WINDOWS\System32\SHELL32.DLL - ok
19:51:31.0046 0984  [ 5C201E9741BB40AF60A7C66D2B3AFCC4 ] C:\WINDOWS\System32\SHLWAPI.DLL
19:51:31.0046 0984  C:\WINDOWS\System32\SHLWAPI.DLL - ok
19:51:31.0046 0984  [ A77DFB85FAEE49D66C74DA6024EBC69B ] C:\WINDOWS\System32\COMCTL32.DLL
19:51:31.0046 0984  C:\WINDOWS\System32\COMCTL32.DLL - ok
19:51:31.0062 0984  [ F79D7D98CD764499ECCBAAF3F800D349 ] C:\WINDOWS\System32\ODBC32.DLL
19:51:31.0062 0984  C:\WINDOWS\System32\ODBC32.DLL - ok
19:51:31.0062 0984  [ 1EDB1BB89D021955E6F7265911175B8D ] C:\WINDOWS\System32\COMDLG32.DLL
19:51:31.0062 0984  C:\WINDOWS\System32\COMDLG32.DLL - ok
19:51:31.0062 0984  [ BCDF5F4BAE714231ECC916A1EF724627 ] C:\WINDOWS\System32\SXS.DLL
19:51:31.0062 0984  C:\WINDOWS\System32\SXS.DLL - ok
19:51:31.0062 0984  [ 5AF68A5E44734A082442668E9C787743 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\COMCTL32.DLL
19:51:31.0062 0984  C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\COMCTL32.DLL - ok
19:51:31.0078 0984  [ C237FB08F52F27823C4E4E6705ECD196 ] C:\WINDOWS\System32\ODBCINT.DLL
19:51:31.0078 0984  C:\WINDOWS\System32\ODBCINT.DLL - ok
19:51:31.0078 0984  [ E7518DC542D3EBDCB80EDD98462C7821 ] C:\WINDOWS\System32\SHSVCS.DLL
19:51:31.0078 0984  C:\WINDOWS\System32\SHSVCS.DLL - ok
19:51:31.0093 0984  [ E8A12A12EA9088B4327D49EDCA3ADD3E ] C:\WINDOWS\System32\SFC.DLL
19:51:31.0093 0984  C:\WINDOWS\System32\SFC.DLL - ok
19:51:31.0093 0984  [ 9858CC4D73A4CCF2F852FAE07C11A0B5 ] C:\WINDOWS\System32\SFC_OS.DLL
19:51:31.0093 0984  C:\WINDOWS\System32\SFC_OS.DLL - ok
19:51:31.0093 0984  [ 4FE9D9FA62D020E35E0AC6D1AEEB96F0 ] C:\WINDOWS\System32\OLE32.DLL
19:51:31.0093 0984  C:\WINDOWS\System32\OLE32.DLL - ok
19:51:31.0109 0984  [ ECA24AB73FCFFA754D4070CDB03529E3 ] C:\WINDOWS\System32\APPHELP.DLL
19:51:31.0109 0984  C:\WINDOWS\System32\APPHELP.DLL - ok
19:51:31.0109 0984  [ 84885F9B82F4D55C6146EBF6065D75D2 ] C:\WINDOWS\System32\LSASS.EXE
19:51:31.0109 0984  C:\WINDOWS\System32\LSASS.EXE - ok
19:51:31.0109 0984  [ C6CE6EEC82F187615D1002BB3BB50ED4 ] C:\WINDOWS\System32\SERVICES.EXE
19:51:31.0109 0984  C:\WINDOWS\System32\SERVICES.EXE - ok
19:51:31.0125 0984  [ 3BC20B8CF096F7D19B0236E934866098 ] C:\WINDOWS\System32\LSASRV.DLL
19:51:31.0125 0984  C:\WINDOWS\System32\LSASRV.DLL - ok
19:51:31.0125 0984  [ 9A42C1F3154545A4D32E5043038B01FA ] C:\WINDOWS\System32\SCESRV.DLL
19:51:31.0125 0984  C:\WINDOWS\System32\SCESRV.DLL - ok
19:51:31.0140 0984  [ B43A92C15AE97C6E609C88129CFEE53B ] C:\WINDOWS\System32\UMPNPMGR.DLL
19:51:31.0140 0984  C:\WINDOWS\System32\UMPNPMGR.DLL - ok
19:51:31.0140 0984  [ DA201A0A309B96381FD674D0FAB5DA86 ] C:\WINDOWS\System32\NCOBJAPI.DLL
19:51:31.0140 0984  C:\WINDOWS\System32\NCOBJAPI.DLL - ok
19:51:31.0140 0984  [ 1F57EB5B92B2AC7F9D71A77D184D8C13 ] C:\WINDOWS\System32\MSVCP60.DLL
19:51:31.0140 0984  C:\WINDOWS\System32\MSVCP60.DLL - ok
19:51:31.0156 0984  [ E15154E7FDA8A580A8F74C7CC16B1FFE ] C:\WINDOWS\System32\SAMSRV.DLL
19:51:31.0156 0984  C:\WINDOWS\System32\SAMSRV.DLL - ok
19:51:31.0156 0984  [ 43DA983415EA533F9E667FDB415F4655 ] C:\WINDOWS\System32\SHIMENG.DLL
19:51:31.0156 0984  C:\WINDOWS\System32\SHIMENG.DLL - ok
19:51:31.0171 0984  [ EF5B64A9CD71ED27E837165C08DA4CC1 ] C:\WINDOWS\System32\CRYPTDLL.DLL
19:51:31.0171 0984  C:\WINDOWS\System32\CRYPTDLL.DLL - ok
19:51:31.0171 0984  [ 744EA281298317E91C3BEA70BF3843D4 ] C:\WINDOWS\AppPatch\AcAdProc.dll
19:51:31.0171 0984  C:\WINDOWS\AppPatch\AcAdProc.dll - ok
19:51:31.0171 0984  [ C76735BFB7214907B4590DD35AE64A79 ] C:\WINDOWS\System32\DNSAPI.DLL
19:51:31.0171 0984  C:\WINDOWS\System32\DNSAPI.DLL - ok
19:51:31.0187 0984  [ EBE12F403FDE45E7312E7BF764BFB6C6 ] C:\WINDOWS\System32\SAMLIB.DLL
19:51:31.0187 0984  C:\WINDOWS\System32\SAMLIB.DLL - ok
19:51:31.0187 0984  [ 2CFE80AA3428C09E6DE67FAC50DA65CF ] C:\WINDOWS\System32\MPR.DLL
19:51:31.0187 0984  C:\WINDOWS\System32\MPR.DLL - ok
19:51:31.0203 0984  [ 6201BACF384292A5FE94CE73364AE53A ] C:\WINDOWS\System32\NTDSAPI.DLL
19:51:31.0203 0984  C:\WINDOWS\System32\NTDSAPI.DLL - ok
19:51:31.0203 0984  [ 10F36FA092D7A309A0647FCDC764AE6C ] C:\WINDOWS\System32\WLDAP32.DLL
19:51:31.0203 0984  C:\WINDOWS\System32\WLDAP32.DLL - ok
19:51:31.0203 0984  [ FB537F29A827D78F756154CF397A113F ] C:\WINDOWS\AppPatch\AcGenral.dll
19:51:31.0203 0984  C:\WINDOWS\AppPatch\AcGenral.dll - ok
19:51:31.0203 0984  [ 90FDAA22F38D9E911F91FA3B8A1F7E5D ] C:\WINDOWS\System32\WINMM.DLL
19:51:31.0203 0984  C:\WINDOWS\System32\WINMM.DLL - ok
19:51:31.0218 0984  [ B3742DEE858B243E77C73D2B8F7C8223 ] C:\WINDOWS\System32\OLEAUT32.DLL
19:51:31.0218 0984  C:\WINDOWS\System32\OLEAUT32.DLL - ok
19:51:31.0218 0984  [ 975D12353B1D525C0F3444C447FB3B9A ] C:\WINDOWS\System32\MSACM32.DLL
19:51:31.0218 0984  C:\WINDOWS\System32\MSACM32.DLL - ok
19:51:31.0234 0984  [ 2CDE496666A975A2CE8F969F3042C8DB ] C:\WINDOWS\System32\UXTHEME.DLL
19:51:31.0234 0984  C:\WINDOWS\System32\UXTHEME.DLL - ok
19:51:31.0234 0984  [ 29632E787DCFC0085A555C681EB82693 ] C:\WINDOWS\System32\SCHANNEL.DLL
19:51:31.0234 0984  C:\WINDOWS\System32\SCHANNEL.DLL - ok
19:51:31.0250 0984  [ 6BEC17053284E847CF1FBB8C9A181E1E ] C:\WINDOWS\System32\MSPRIVS.DLL
19:51:31.0250 0984  C:\WINDOWS\System32\MSPRIVS.DLL - ok
19:51:31.0265 0984  [ 940813D4CA9193D6C1A0BA10E0ED9B4E ] C:\WINDOWS\System32\KERBEROS.DLL
19:51:31.0265 0984  C:\WINDOWS\System32\KERBEROS.DLL - ok
19:51:31.0265 0984  [ FB6359FE8864D0CE06B79CD33D188411 ] C:\WINDOWS\System32\atmfd.dll
19:51:31.0265 0984  C:\WINDOWS\System32\atmfd.dll - ok
19:51:31.0265 0984  [ 77C41F9146450C89534704A75836CE56 ] C:\WINDOWS\System32\MSV1_0.DLL
19:51:31.0265 0984  C:\WINDOWS\System32\MSV1_0.DLL - ok
19:51:31.0281 0984  [ 42A1912DBDF8BCC087A1CAE008DB060C ] C:\WINDOWS\System32\IPHLPAPI.DLL
19:51:31.0281 0984  C:\WINDOWS\System32\IPHLPAPI.DLL - ok
19:51:31.0281 0984  [ 96353FCECBA774BB8DA74A1C6507015A ] C:\WINDOWS\System32\NETLOGON.DLL
19:51:31.0281 0984  C:\WINDOWS\System32\NETLOGON.DLL - ok
19:51:31.0296 0984  [ 2B281958F5D0CF99ED626E3EF39D5C8D ] C:\WINDOWS\System32\W32TIME.DLL
19:51:31.0296 0984  C:\WINDOWS\System32\W32TIME.DLL - ok
19:51:31.0312 0984  [ A8B82C5D30B7AB937E164AB349478FBA ] C:\WINDOWS\System32\WDIGEST.DLL
19:51:31.0312 0984  C:\WINDOWS\System32\WDIGEST.DLL - ok
19:51:31.0312 0984  [ 26ACBD865F8CFF730F1791C4D0854352 ] C:\WINDOWS\System32\RSAENH.DLL
19:51:31.0312 0984  C:\WINDOWS\System32\RSAENH.DLL - ok
19:51:31.0328 0984  [ 7BCB23FA39CE266AF4347A6BEAB60F8C ] C:\WINDOWS\System32\WINSCARD.DLL
19:51:31.0328 0984  C:\WINDOWS\System32\WINSCARD.DLL - ok
19:51:31.0343 0984  [ 67F2D109AB373FECEB819F420DB11F03 ] C:\WINDOWS\System32\WTSAPI32.DLL
19:51:31.0343 0984  C:\WINDOWS\System32\WTSAPI32.DLL - ok
19:51:31.0343 0984  [ 0F78E27F563F2AAF74B91A49E2ABF19A ] C:\WINDOWS\System32\SCECLI.DLL
19:51:31.0343 0984  C:\WINDOWS\System32\SCECLI.DLL - ok
19:51:31.0359 0984  [ 8F078AE4ED187AAABC0A305146DE6716 ] C:\WINDOWS\System32\SVCHOST.EXE
19:51:31.0359 0984  C:\WINDOWS\System32\SVCHOST.EXE - ok
19:51:31.0375 0984  [ DAA91B358E685FC6CCA9ACA72BE6FE85 ] C:\WINDOWS\System32\NTMARTA.DLL
19:51:31.0375 0984  C:\WINDOWS\System32\NTMARTA.DLL - ok
19:51:31.0375 0984  [ 5C83A4408604F737717AB96371201680 ] C:\WINDOWS\System32\RPCSS.DLL
19:51:31.0375 0984  C:\WINDOWS\System32\RPCSS.DLL - ok
19:51:31.0390 0984  [ 1320AEA7057A26A671D9548CC7BEBDA5 ] C:\WINDOWS\System32\XPSP2RES.DLL
19:51:31.0390 0984  C:\WINDOWS\System32\XPSP2RES.DLL - ok
19:51:31.0406 0984  [ 4E74AF063C3271FBEA20DD940CFD1184 ] C:\WINDOWS\System32\MSWSOCK.DLL
19:51:31.0406 0984  C:\WINDOWS\System32\MSWSOCK.DLL - ok
19:51:31.0406 0984  [ AA8BE4FCD33C40712F9B0527412FD9AC ] C:\Program Files\VCOM\Fix-It\MxAVlsp.dll
19:51:31.0406 0984  C:\Program Files\VCOM\Fix-It\MxAVlsp.dll - ok
19:51:31.0421 0984  [ 372F174B1A5F69987EEF26AE24E4BF04 ] C:\Program Files\VCOM\Fix-It\MXPM.DLL
19:51:31.0421 0984  C:\Program Files\VCOM\Fix-It\MXPM.DLL - ok
19:51:31.0421 0984  [ 765B30C776A1780B46B479FE614F707C ] C:\WINDOWS\System32\HNETCFG.DLL
19:51:31.0421 0984  C:\WINDOWS\System32\HNETCFG.DLL - ok
19:51:31.0437 0984  [ A7F95A53EE055115DF03588997A47D4D ] C:\WINDOWS\System32\WSHTCPIP.DLL
19:51:31.0437 0984  C:\WINDOWS\System32\WSHTCPIP.DLL - ok
19:51:31.0453 0984  [ 2C8FDB176F22629EA5342DB474FAC391 ] C:\WINDOWS\System32\WINRNR.DLL
19:51:31.0453 0984  C:\WINDOWS\System32\WINRNR.DLL - ok
19:51:31.0453 0984  [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files\Bonjour\mdnsNSP.dll
19:51:31.0453 0984  C:\Program Files\Bonjour\mdnsNSP.dll - ok
19:51:31.0468 0984  [ 4CAEC028C1E21C75E17877D4522D3DB4 ] C:\WINDOWS\System32\RASADHLP.DLL
19:51:31.0468 0984  C:\WINDOWS\System32\RASADHLP.DLL - ok
19:51:31.0484 0984  [ 7DB59FFF2AF32C27EB2276424FA5EDDB ] C:\WINDOWS\System32\LOGONUI.EXE
19:51:31.0484 0984  C:\WINDOWS\System32\LOGONUI.EXE - ok
19:51:31.0484 0984  [ 587729679B4FE04CE06A5C61D6C56DCD ] C:\WINDOWS\System32\CSCDLL.DLL
19:51:31.0484 0984  C:\WINDOWS\System32\CSCDLL.DLL - ok
19:51:31.0484 0984  [ 05231C04253C5BC30B26CBAAE680ED89 ] C:\WINDOWS\System32\WudfSvc.dll
19:51:31.0484 0984  C:\WINDOWS\System32\WudfSvc.dll - ok
19:51:31.0500 0984  [ A599E5E366C1408E48AA5D37882D4E3E ] C:\WINDOWS\System32\WLNOTIFY.DLL
19:51:31.0500 0984  C:\WINDOWS\System32\WLNOTIFY.DLL - ok
19:51:31.0500 0984  [ 777EB29D0135D81AD9828A2B05443496 ] C:\WINDOWS\System32\WINSPOOL.DRV
19:51:31.0500 0984  C:\WINDOWS\System32\WINSPOOL.DRV - ok
19:51:31.0515 0984  [ 5CAF91E865FE0C85048A233E594544D2 ] C:\WINDOWS\System32\WudfPlatform.dll
19:51:31.0515 0984  C:\WINDOWS\System32\WudfPlatform.dll - ok
19:51:31.0515 0984  [ ED7E847905DD2797565B4B695E92F42B ] C:\WINDOWS\System32\DUSER.DLL
19:51:31.0515 0984  C:\WINDOWS\System32\DUSER.DLL - ok
19:51:31.0515 0984  [ B5331F2B6F37C66C29C847F3B94FF900 ] C:\WINDOWS\System32\MSIMG32.DLL
19:51:31.0515 0984  C:\WINDOWS\System32\MSIMG32.DLL - ok
19:51:31.0515 0984  [ 5F2DBE3CB563741C8084657BF956CE64 ] C:\WINDOWS\System32\OLEACC.DLL
19:51:31.0515 0984  C:\WINDOWS\System32\OLEACC.DLL - ok
19:51:31.0531 0984  [ E26F50A92EE564F21C30501AA6173676 ] C:\WINDOWS\System32\CLBCATQ.DLL
19:51:31.0531 0984  C:\WINDOWS\System32\CLBCATQ.DLL - ok
19:51:31.0531 0984  [ 6728270CB7DBB776ED086F5AC4C82310 ] C:\WINDOWS\System32\COMRES.DLL
19:51:31.0531 0984  C:\WINDOWS\System32\COMRES.DLL - ok
19:51:31.0546 0984  [ 34D6CD56409DA9A7ED573E1C90A308BF ] C:\WINDOWS\System32\DRIVERS\NDISUIO.SYS
19:51:31.0546 0984  C:\WINDOWS\System32\DRIVERS\NDISUIO.SYS - ok
19:51:31.0546 0984  [ CB6CA3E5261D65F6F809EED23BF167AA ] C:\WINDOWS\System32\DHCPCSVC.DLL
19:51:31.0546 0984  C:\WINDOWS\System32\DHCPCSVC.DLL - ok
19:51:31.0546 0984  [ 7379DE06FD196E396A00AA97B990C00D ] C:\WINDOWS\System32\DNSRSLVR.DLL
19:51:31.0546 0984  C:\WINDOWS\System32\DNSRSLVR.DLL - ok
19:51:31.0546 0984  [ 1D3A8A40F8045100A3E35C5F9BC6C5DE ] C:\WINDOWS\System32\SHGINA.DLL
19:51:31.0546 0984  C:\WINDOWS\System32\SHGINA.DLL - ok
19:51:31.0562 0984  [ B3EFF6D938C572E90A07B3D87A3C7657 ] C:\WINDOWS\System32\LMHSVC.DLL
19:51:31.0562 0984  C:\WINDOWS\System32\LMHSVC.DLL - ok
19:51:31.0562 0984  [ 5A91E6FEAB9F901302FA7FF768C0120F ] C:\WINDOWS\System32\WZCSVC.DLL
19:51:31.0562 0984  C:\WINDOWS\System32\WZCSVC.DLL - ok
19:51:31.0578 0984  [ 2030FA027E7C3E0A145649C03171457B ] C:\WINDOWS\System32\RTUTILS.DLL
19:51:31.0578 0984  C:\WINDOWS\System32\RTUTILS.DLL - ok
19:51:31.0578 0984  [ E682696D7F982494A8CFC80C5B59D422 ] C:\WINDOWS\System32\WMI.DLL
19:51:31.0578 0984  C:\WINDOWS\System32\WMI.DLL - ok
19:51:31.0593 0984  [ A57B8ACD54AFBE482042C285C2767EBF ] C:\WINDOWS\System32\ESENT.DLL
19:51:31.0593 0984  C:\WINDOWS\System32\ESENT.DLL - ok
19:51:31.0593 0984  [ 2D40EDB9BF811590DAD7406DEC67B926 ] C:\WINDOWS\System32\ATL.DLL
19:51:31.0593 0984  C:\WINDOWS\System32\ATL.DLL - ok
19:51:31.0593 0984  [ 7435B108B935E42EA92CA94F59C8E717 ] C:\WINDOWS\System32\SPOOLSV.EXE
19:51:31.0593 0984  C:\WINDOWS\System32\SPOOLSV.EXE - ok
19:51:31.0609 0984  [ DB66DB626E4882EBEF55F136F12C1829 ] C:\WINDOWS\System32\AUDIOSRV.DLL
19:51:31.0609 0984  C:\WINDOWS\System32\AUDIOSRV.DLL - ok
19:51:31.0609 0984  [ 2C0A7B2AE9C26F2C163627679B42783C ] C:\WINDOWS\System32\WKSSVC.DLL
19:51:31.0609 0984  C:\WINDOWS\System32\WKSSVC.DLL - ok
19:51:31.0625 0984  [ ED82558A79958612959F374155F3FCE6 ] C:\Program Files\VCOM\Fix-It\MXR.dll
19:51:31.0625 0984  C:\Program Files\VCOM\Fix-It\MXR.dll - ok
19:51:31.0625 0984  [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] C:\WINDOWS\System32\DRIVERS\PARVDM.SYS
19:51:31.0625 0984  C:\WINDOWS\System32\DRIVERS\PARVDM.SYS - ok
19:51:31.0625 0984  [ 195741AEE20369980796B557358CD774 ] C:\WINDOWS\System32\DRIVERS\MDMXSDK.SYS
19:51:31.0625 0984  C:\WINDOWS\System32\DRIVERS\MDMXSDK.SYS - ok
19:51:31.0625 0984  [ 9376E6893E52B368ABC6255BF54F0B28 ] C:\WINDOWS\System32\HIDSERV.DLL
19:51:31.0625 0984  C:\WINDOWS\System32\HIDSERV.DLL - ok
19:51:31.0640 0984  [ 18AFEE0EDE045B6255408D634372DC29 ] C:\WINDOWS\System32\HID.DLL
19:51:31.0640 0984  C:\WINDOWS\System32\HID.DLL - ok
19:51:31.0640 0984  [ C8A2D6FF660AC601B7BB9A9B16A5C25E ] C:\WINDOWS\System32\DRIVERS\PfModNT.sys
19:51:31.0640 0984  C:\WINDOWS\System32\DRIVERS\PfModNT.sys - ok
19:51:31.0656 0984  [ 8827911A8C37E40C027CBFC88E69D967 ] C:\WINDOWS\PCHEALTH\HELPCTR\BINARIES\PCHSVC.DLL
19:51:31.0656 0984  C:\WINDOWS\PCHEALTH\HELPCTR\BINARIES\PCHSVC.DLL - ok
19:51:31.0656 0984  [ D1E299962B5956005113EC4AB1E0D9B7 ] C:\WINDOWS\System32\IPSECSVC.DLL
19:51:31.0656 0984  C:\WINDOWS\System32\IPSECSVC.DLL - ok
19:51:31.0656 0984  [ 67DFF7BBBD0E80AAB7B3CF061448DB8A ] C:\WINDOWS\System32\ERSVC.DLL
19:51:31.0656 0984  C:\WINDOWS\System32\ERSVC.DLL - ok
19:51:31.0656 0984  [ 1639D9964C9E1B2ECCA95C8217D3E70D ] C:\WINDOWS\System32\DMSERVER.DLL
19:51:31.0656 0984  C:\WINDOWS\System32\DMSERVER.DLL - ok
19:51:31.0671 0984  [ 10654F9DDCEA9C46CFB77554231BE73B ] C:\WINDOWS\System32\CRYPTSVC.DLL
19:51:31.0671 0984  C:\WINDOWS\System32\CRYPTSVC.DLL - ok
19:51:31.0687 0984  [ A76128BE63EEA6A3AF521A0576D3EBF7 ] C:\WINDOWS\System32\OAKLEY.DLL
19:51:31.0687 0984  C:\WINDOWS\System32\OAKLEY.DLL - ok
19:51:31.0687 0984  [ AD44C5BC21213F394F6AFCB55CC39293 ] C:\WINDOWS\System32\CERTCLI.DLL
19:51:31.0687 0984  C:\WINDOWS\System32\CERTCLI.DLL - ok
19:51:31.0703 0984  [ D9F6C4F6B1E188ADAFC42B561D9BC2E6 ] C:\WINDOWS\System32\wiaservc.dll
19:51:31.0703 0984  C:\WINDOWS\System32\wiaservc.dll - ok
19:51:31.0718 0984  [ 4AC302BF714DC163E685D0A187A36D0F ] C:\WINDOWS\System32\CRYPTUI.DLL
19:51:31.0718 0984  C:\WINDOWS\System32\CRYPTUI.DLL - ok
19:51:31.0718 0984  [ 2B2F31E3F2CE3723C1B0F3700C8BE28B ] C:\WINDOWS\System32\WINIPSEC.DLL
19:51:31.0718 0984  C:\WINDOWS\System32\WINIPSEC.DLL - ok
19:51:31.0734 0984  [ 306B30A036DB25FCB76B507FEDE07D58 ] C:\WINDOWS\System32\PSTORSVC.DLL
19:51:31.0734 0984  C:\WINDOWS\System32\PSTORSVC.DLL - ok
19:51:31.0734 0984  [ 4D3CCDF22D2B4BAE229BA73B81D13E26 ] C:\WINDOWS\System32\PSBASE.DLL
19:51:31.0734 0984  C:\WINDOWS\System32\PSBASE.DLL - ok
19:51:31.0750 0984  [ CACD2C63A79268D131EA37E85524CC44 ] C:\WINDOWS\System32\DSSENH.DLL
19:51:31.0750 0984  C:\WINDOWS\System32\DSSENH.DLL - ok
19:51:31.0765 0984  [ 0FCB11B39AF688035E1CDE754684EE5C ] C:\WINDOWS\System32\CFGMGR32.dll
19:51:31.0765 0984  C:\WINDOWS\System32\CFGMGR32.dll - ok
19:51:31.0765 0984  [ E8A45791EF55E93137EFCC0EEAE2B938 ] C:\WINDOWS\System32\mscms.dll
19:51:31.0765 0984  C:\WINDOWS\System32\mscms.dll - ok
19:51:31.0765 0984  [ C0823FC5469663BA63E7DB88F9919D70 ] C:\WINDOWS\System32\WININET.DLL
19:51:31.0765 0984  C:\WINDOWS\System32\WININET.DLL - ok
19:51:31.0781 0984  [ A0BC687A49542C40EB60B7308F454E8A ] C:\WINDOWS\System32\RICHED20.DLL
19:51:31.0781 0984  C:\WINDOWS\System32\RICHED20.DLL - ok
19:51:31.0796 0984  [ 13510490BEA0997DB625DAA0178CBFCA ] C:\WINDOWS\System32\ACTXPRXY.DLL
19:51:31.0796 0984  C:\WINDOWS\System32\ACTXPRXY.DLL - ok
19:51:31.0796 0984  [ 059F25954C02F134FE94E135F6B99910 ] C:\Program Files\VCOM\Fix-It\Vsapint.sys
19:51:31.0796 0984  C:\Program Files\VCOM\Fix-It\Vsapint.sys - ok
19:51:31.0812 0984  [ DAB9E6C7105D2EF49876FE92C524F565 ] C:\WINDOWS\System32\NETMAN.DLL
19:51:31.0812 0984  C:\WINDOWS\System32\NETMAN.DLL - ok
19:51:31.0828 0984  [ BF52A4D4EB4CFB3109667E429B93E21A ] C:\WINDOWS\System32\NETSHELL.DLL
19:51:31.0828 0984  C:\WINDOWS\System32\NETSHELL.DLL - ok
19:51:31.0828 0984  [ 1ECB753D7CEEC8F5A94C9781CA64EC44 ] C:\WINDOWS\System32\CREDUI.DLL
19:51:31.0828 0984  C:\WINDOWS\System32\CREDUI.DLL - ok
19:51:31.0843 0984  [ CCD8B28C039302C367266BC3F641BC92 ] C:\Program Files\VCOM\Fix-It\tmpreflt.sys
19:51:31.0843 0984  C:\Program Files\VCOM\Fix-It\tmpreflt.sys - ok
19:51:31.0843 0984  [ 9F78F329B1858E845087B923B4DBA0F3 ] C:\WINDOWS\System32\MPRAPI.DLL
19:51:31.0843 0984  C:\WINDOWS\System32\MPRAPI.DLL - ok
19:51:31.0859 0984  [ 875D770F477E0AE0088BE1810D537B23 ] C:\WINDOWS\System32\ACTIVEDS.DLL
19:51:31.0859 0984  C:\WINDOWS\System32\ACTIVEDS.DLL - ok
19:51:31.0875 0984  [ 12A581CA44E53B09D24C5B94F252C78D ] C:\WINDOWS\System32\ADSLDPC.DLL
19:51:31.0875 0984  C:\WINDOWS\System32\ADSLDPC.DLL - ok
19:51:31.0875 0984  [ 7B6A9637905FAB070292D5A6AD5CF3AF ] C:\Program Files\VCOM\Fix-It\tmxpflt.sys
19:51:31.0875 0984  C:\Program Files\VCOM\Fix-It\tmxpflt.sys - ok
19:51:31.0890 0984  [ CD1F7ED9842138BEADF9ECBF37818BEF ] C:\WINDOWS\System32\RASAPI32.DLL
19:51:31.0890 0984  C:\WINDOWS\System32\RASAPI32.DLL - ok
19:51:31.0890 0984  [ 30E244A707E6CE0A4B099CD6384EC6CA ] C:\WINDOWS\System32\RASMAN.DLL
19:51:31.0890 0984  C:\WINDOWS\System32\RASMAN.DLL - ok
19:51:31.0906 0984  [ 6307A1B82F6CA87D7E0CDF49E6E7BC00 ] C:\WINDOWS\System32\TAPI32.DLL
19:51:31.0906 0984  C:\WINDOWS\System32\TAPI32.DLL - ok
19:51:31.0906 0984  [ 9A9BBC71D0EBCD400A33ABCD5F0AB39C ] C:\WINDOWS\System32\WZCSAPI.DLL
19:51:31.0906 0984  C:\WINDOWS\System32\WZCSAPI.DLL - ok
19:51:31.0906 0984  [ 92BDF74F12D6CBEC43C94D4B7F804838 ] C:\WINDOWS\System32\SRSVC.DLL
19:51:31.0906 0984  C:\WINDOWS\System32\SRSVC.DLL - ok
19:51:31.0921 0984  [ 1B5F6923ABB450692E9FE0672C897AED ] C:\WINDOWS\System32\POWRPROF.DLL
19:51:31.0921 0984  C:\WINDOWS\System32\POWRPROF.DLL - ok
19:51:31.0921 0984  [ B1E0CE09895376871746F36DC5773B4F ] C:\WINDOWS\System32\SECLOGON.DLL
19:51:31.0921 0984  C:\WINDOWS\System32\SECLOGON.DLL - ok
19:51:31.0921 0984  [ 13D72740963CBA12D9FF76A7F218BCD8 ] C:\WINDOWS\System32\WUAUSERV.DLL
19:51:31.0921 0984  C:\WINDOWS\System32\WUAUSERV.DLL - ok
19:51:31.0937 0984  [ F399242A80C4066FD155EFA4CF96658E ] C:\WINDOWS\System32\WBEM\WMISVC.DLL
19:51:31.0937 0984  C:\WINDOWS\System32\WBEM\WMISVC.DLL - ok
19:51:31.0937 0984  [ 79DABB124D00ADF19852AE879C201890 ] C:\WINDOWS\System32\VSSAPI.DLL
19:51:31.0937 0984  C:\WINDOWS\System32\VSSAPI.DLL - ok
19:51:31.0937 0984  [ B8401A8BBFA8A75E713D3D465AAA54A8 ] C:\WINDOWS\System32\WUAUENG.DLL
19:51:31.0937 0984  C:\WINDOWS\System32\WUAUENG.DLL - ok
19:51:31.0937 0984  [ 2301AD7B56D8D26936FFF4968D2D9DC6 ] C:\WINDOWS\System32\ADVPACK.DLL
19:51:31.0937 0984  C:\WINDOWS\System32\ADVPACK.DLL - ok
19:51:31.0953 0984  [ 7C8F371C924DAA376217E553378275BA ] C:\WINDOWS\System32\SHFOLDER.DLL
19:51:31.0953 0984  C:\WINDOWS\System32\SHFOLDER.DLL - ok
19:51:31.0953 0984  [ EA82A55F22654FBEDCBD82D2D4305B45 ] C:\WINDOWS\System32\WINHTTP.DLL
19:51:31.0953 0984  C:\WINDOWS\System32\WINHTTP.DLL - ok
19:51:31.0968 0984  [ 08F0190AE201EC331B4CA3B0FA2D2CCE ] C:\WINDOWS\System32\CABINET.DLL
19:51:31.0968 0984  C:\WINDOWS\System32\CABINET.DLL - ok
19:51:31.0968 0984  [ 633C197292B4051D986903827DE561A3 ] C:\WINDOWS\System32\MSPATCHA.DLL
19:51:31.0968 0984  C:\WINDOWS\System32\MSPATCHA.DLL - ok
19:51:31.0984 0984  [ 36CC8C01B5E50163037BEF56CB96DEFF ] C:\WINDOWS\System32\IPNATHLP.DLL
19:51:31.0984 0984  C:\WINDOWS\System32\IPNATHLP.DLL - ok
19:51:31.0984 0984  [ ACD36A2DD7D1E9D8A060AA651DC07E63 ] C:\WINDOWS\System32\ES.DLL
19:51:31.0984 0984  C:\WINDOWS\System32\ES.DLL - ok
19:51:31.0984 0984  [ 4D59DAA66C60858CDF4F67A900F42D4A ] C:\WINDOWS\System32\WSCSVC.DLL
19:51:31.0984 0984  C:\WINDOWS\System32\WSCSVC.DLL - ok
19:51:31.0984 0984  [ 1CBC000ECD2DE2E6FD2B19BC9AABCC52 ] C:\WINDOWS\System32\MSI.DLL
19:51:31.0984 0984  C:\WINDOWS\System32\MSI.DLL - ok
19:51:32.0000 0984  [ 851547797C2A7F8A04841644C471A567 ] C:\WINDOWS\System32\WBEM\WBEMPROX.DLL
19:51:32.0000 0984  C:\WINDOWS\System32\WBEM\WBEMPROX.DLL - ok
19:51:32.0000 0984  [ 4E39C36213E95FB971A61A247BDE2F61 ] C:\WINDOWS\System32\WBEM\WBEMCOMN.DLL
19:51:32.0000 0984  C:\WINDOWS\System32\WBEM\WBEMCOMN.DLL - ok
19:51:32.0015 0984  [ 36360B625D7290BBA2CD03AD4975E1BC ] C:\WINDOWS\System32\WBEM\WBEMCORE.DLL
19:51:32.0015 0984  C:\WINDOWS\System32\WBEM\WBEMCORE.DLL - ok
19:51:32.0015 0984  [ DE578E4E6844954823FC7688625F00C8 ] C:\WINDOWS\System32\WBEM\ESSCLI.DLL
19:51:32.0015 0984  C:\WINDOWS\System32\WBEM\ESSCLI.DLL - ok
19:51:32.0015 0984  [ C28500101BC66FDABD830F8DE51A59A0 ] C:\WINDOWS\System32\WBEM\FASTPROX.DLL
19:51:32.0015 0984  C:\WINDOWS\System32\WBEM\FASTPROX.DLL - ok
19:51:32.0031 0984  [ 6C043A37D47D92CD9C0AFEFFB89F96AF ] C:\WINDOWS\System32\MSXML3.DLL
19:51:32.0031 0984  C:\WINDOWS\System32\MSXML3.DLL - ok
19:51:32.0031 0984  [ 7D676AC8CC19341117C77C261647BA07 ] C:\WINDOWS\System32\WBEM\WBEMSVC.DLL
19:51:32.0031 0984  C:\WINDOWS\System32\WBEM\WBEMSVC.DLL - ok
19:51:32.0046 0984  [ 0A1161DB4FCCF7821736C70D70A0F5A3 ] C:\WINDOWS\System32\WBEM\WMIUTILS.DLL
19:51:32.0046 0984  C:\WINDOWS\System32\WBEM\WMIUTILS.DLL - ok
19:51:32.0046 0984  [ 9A66728EFE501D855D0FFE3DE023CE32 ] C:\WINDOWS\System32\WBEM\REPDRVFS.DLL
19:51:32.0046 0984  C:\WINDOWS\System32\WBEM\REPDRVFS.DLL - ok
19:51:32.0046 0984  [ 652603D2A664D9BFC1D5EB0A9FAEA016 ] C:\WINDOWS\System32\COMSVCS.DLL
19:51:32.0046 0984  C:\WINDOWS\System32\COMSVCS.DLL - ok
19:51:32.0046 0984  [ 5CBD40C1A866FEDF82951DF3868948F4 ] C:\WINDOWS\System32\MTXCLU.DLL
19:51:32.0046 0984  C:\WINDOWS\System32\MTXCLU.DLL - ok
19:51:32.0062 0984  [ 53AF9F2B2CE4B6EFF41C70417359D010 ] C:\WINDOWS\System32\WSOCK32.DLL
19:51:32.0062 0984  C:\WINDOWS\System32\WSOCK32.DLL - ok
19:51:32.0062 0984  [ 98C1FF6676E02D43DA208802286A6EE7 ] C:\WINDOWS\System32\CLUSAPI.DLL
19:51:32.0062 0984  C:\WINDOWS\System32\CLUSAPI.DLL - ok
19:51:32.0078 0984  [ 201E12371ECD2BA04AB78B2AD5575C9E ] C:\WINDOWS\System32\COLBACT.DLL
19:51:32.0078 0984  C:\WINDOWS\System32\COLBACT.DLL - ok
19:51:32.0078 0984  [ 2738C8A33FF07DD3C99C7C8F0A85DA72 ] C:\WINDOWS\System32\RESUTILS.DLL
19:51:32.0078 0984  C:\WINDOWS\System32\RESUTILS.DLL - ok
19:51:32.0078 0984  [ 1F080CCC567D222A2DCB7CC285C6A7AD ] C:\WINDOWS\System32\WBEM\WMIPRVSD.DLL
19:51:32.0078 0984  C:\WINDOWS\System32\WBEM\WMIPRVSD.DLL - ok
19:51:32.0078 0984  [ 6708E1DDF12CAB2D5B5A2B66B76E0038 ] C:\WINDOWS\System32\WBEM\WBEMESS.DLL
19:51:32.0078 0984  C:\WINDOWS\System32\WBEM\WBEMESS.DLL - ok
19:51:32.0093 0984  [ DFD9870CF39C791D86C4C209DA9FA919 ] C:\WINDOWS\System32\SENS.DLL
19:51:32.0093 0984  C:\WINDOWS\System32\SENS.DLL - ok
19:51:32.0093 0984  [ F1958FBF86D5C004CF19A5951A9514B7 ] C:\WINDOWS\System32\ALG.EXE
19:51:32.0093 0984  C:\WINDOWS\System32\ALG.EXE - ok
19:51:32.0109 0984  [ 1A2B18F59FA3D73AF731A046DB0F781A ] C:\WINDOWS\System32\WUAPI.DLL
19:51:32.0109 0984  C:\WINDOWS\System32\WUAPI.DLL - ok
19:51:32.0109 0984  [ 6AE613FFF9F9DFEE552652662BFABE41 ] C:\WINDOWS\System32\WBEM\NCPROV.DLL
19:51:32.0109 0984  C:\WINDOWS\System32\WBEM\NCPROV.DLL - ok
19:51:32.0125 0984  [ 41A3C11E3517C962C9B44893BCEC3B34 ] C:\WINDOWS\System32\rasmans.dll
19:51:32.0125 0984  C:\WINDOWS\System32\rasmans.dll - ok
19:51:32.0125 0984  [ E3AE8DC04643850D2DFD431443558B28 ] C:\WINDOWS\System32\netcfgx.dll
19:51:32.0125 0984  C:\WINDOWS\System32\netcfgx.dll - ok
19:51:32.0140 0984  [ D18D28CEF9FEA09359C7DE7BE3669F66 ] C:\WINDOWS\System32\WBEM\WBEMCONS.DLL
19:51:32.0140 0984  C:\WINDOWS\System32\WBEM\WBEMCONS.DLL - ok
19:51:32.0140 0984  [ EB4A4187D74A8EFDCBEA3EA2CB1BDFBD ] C:\WINDOWS\System32\tapisrv.dll
19:51:32.0140 0984  C:\WINDOWS\System32\tapisrv.dll - ok
19:51:32.0156 0984  [ 1D536BEBC30DD8D0D3B6FF3B0CD2D32B ] C:\WINDOWS\System32\rastapi.dll
19:51:32.0156 0984  C:\WINDOWS\System32\rastapi.dll - ok
19:51:32.0171 0984  [ 1DFD6E8DA0FE2D14A5FA12CFCFB162C1 ] C:\WINDOWS\System32\unimdm.tsp
19:51:32.0171 0984  C:\WINDOWS\System32\unimdm.tsp - ok
19:51:32.0171 0984  [ 3AB4213BF48F9062E087B909832AA8E6 ] C:\WINDOWS\System32\uniplat.dll
19:51:32.0171 0984  C:\WINDOWS\System32\uniplat.dll - ok
19:51:32.0187 0984  [ 2DBFBD419C332E4361E35528E611B0A0 ] C:\WINDOWS\System32\unimdmat.dll
19:51:32.0187 0984  C:\WINDOWS\System32\unimdmat.dll - ok
19:51:32.0187 0984  [ 5EB4B3A7F2F736DF61206982A8A1F694 ] C:\WINDOWS\System32\modemui.dll
19:51:32.0187 0984  C:\WINDOWS\System32\modemui.dll - ok
19:51:32.0203 0984  [ 7735385C0FA821961F9A1EBA94F2AC98 ] C:\WINDOWS\System32\kmddsp.tsp
19:51:32.0203 0984  C:\WINDOWS\System32\kmddsp.tsp - ok
19:51:32.0218 0984  [ 37D7005A87F6405DEA87F50098CE03F7 ] C:\WINDOWS\System32\ndptsp.tsp
19:51:32.0218 0984  C:\WINDOWS\System32\ndptsp.tsp - ok
19:51:32.0218 0984  [ A4C40AF21BF9F90E08A3C1DD0DC79E0B ] C:\WINDOWS\System32\ipconf.tsp
19:51:32.0218 0984  C:\WINDOWS\System32\ipconf.tsp - ok
19:51:32.0234 0984  [ 49361F295DF887AC32CD660CA94ACAA5 ] C:\WINDOWS\System32\h323.tsp
19:51:32.0234 0984  C:\WINDOWS\System32\h323.tsp - ok
19:51:32.0250 0984  [ 83168270F2E73A20E981B0F38A34958F ] C:\WINDOWS\System32\hidphone.tsp
19:51:32.0250 0984  C:\WINDOWS\System32\hidphone.tsp - ok
19:51:32.0250 0984  [ 04ECEC0447F79419AD25227205B8277D ] C:\WINDOWS\System32\rasppp.dll
19:51:32.0250 0984  C:\WINDOWS\System32\rasppp.dll - ok
19:51:32.0265 0984  [ C5EF2A4F6CB968B3119B43F43C64A1A6 ] C:\WINDOWS\System32\ntlsapi.dll
19:51:32.0265 0984  C:\WINDOWS\System32\ntlsapi.dll - ok
19:51:32.0265 0984  [ 1B0F0FC350C77B62A4B927810E53B2BF ] C:\WINDOWS\System32\RASCHAP.DLL
19:51:32.0265 0984  C:\WINDOWS\System32\RASCHAP.DLL - ok
19:51:32.0281 0984  [ ADEAC063A3757E8FBC242BB4414D632B ] C:\WINDOWS\System32\RASTLS.DLL
19:51:32.0281 0984  C:\WINDOWS\System32\RASTLS.DLL - ok
19:51:32.0281 0984  [ 51230212AE7F8159A90F06A7EA30DD8A ] C:\WINDOWS\System32\CSCUI.DLL
19:51:32.0281 0984  C:\WINDOWS\System32\CSCUI.DLL - ok
19:51:32.0296 0984  [ F7FC12EDD4F0C19490D37AF9570C50F8 ] C:\WINDOWS\System32\DPCDLL.DLL
19:51:32.0296 0984  C:\WINDOWS\System32\DPCDLL.DLL - ok
19:51:32.0312 0984  [ D6A8DC8C374EEA24744F2D4E87CA0E7E ] C:\WINDOWS\System32\wdmaud.drv
19:51:32.0312 0984  C:\WINDOWS\System32\wdmaud.drv - ok
19:51:32.0312 0984  [ 2797F33EBF50466020C430EE4F037933 ] C:\WINDOWS\System32\DRIVERS\wdmaud.sys
19:51:32.0312 0984  C:\WINDOWS\System32\DRIVERS\wdmaud.sys - ok
19:51:32.0328 0984  [ 39B1FFB03C2296323832ACBAE50D2AFF ] C:\WINDOWS\System32\USERINIT.EXE
19:51:32.0328 0984  C:\WINDOWS\System32\USERINIT.EXE - ok
19:51:32.0328 0984  [ 650AD082D46BAC0E64C9C0E0928492FD ] C:\WINDOWS\System32\DRIVERS\sysaudio.sys
19:51:32.0328 0984  C:\WINDOWS\System32\DRIVERS\sysaudio.sys - ok
19:51:32.0343 0984  [ 8E186B8F23295D1E42C573B82B80D548 ] C:\WINDOWS\System32\DRIVERS\splitter.sys
19:51:32.0343 0984  C:\WINDOWS\System32\DRIVERS\splitter.sys - ok
19:51:32.0359 0984  [ 841F385C6CFAF66B58FBD898722BB4F0 ] C:\WINDOWS\System32\DRIVERS\aec.sys
19:51:32.0359 0984  C:\WINDOWS\System32\DRIVERS\aec.sys - ok
19:51:32.0359 0984  [ A0732187050030AE399B241436565E64 ] C:\WINDOWS\EXPLORER.EXE
19:51:32.0359 0984  C:\WINDOWS\EXPLORER.EXE - ok
19:51:32.0375 0984  [ 94ABC808FC4B6D7D2BBF42B85E25BB4D ] C:\WINDOWS\System32\DRIVERS\swmidi.sys
19:51:32.0375 0984  C:\WINDOWS\System32\DRIVERS\swmidi.sys - ok
19:51:32.0390 0984  [ A6F881284AC1150E37D9AE47FF601267 ] C:\WINDOWS\System32\DRIVERS\DMusic.sys
19:51:32.0390 0984  C:\WINDOWS\System32\DRIVERS\DMusic.sys - ok
19:51:32.0390 0984  [ D93CAD07C5683DB066B0B2D2D3790EAD ] C:\WINDOWS\System32\DRIVERS\kmixer.sys
19:51:32.0390 0984  C:\WINDOWS\System32\DRIVERS\kmixer.sys - ok
19:51:32.0406 0984  [ AD93D4A84960163CD14E94B1EC3F6D33 ] C:\WINDOWS\System32\BROWSEUI.DLL
19:51:32.0406 0984  C:\WINDOWS\System32\BROWSEUI.DLL - ok
19:51:32.0421 0984  [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E ] C:\WINDOWS\System32\DRIVERS\drmkaud.sys
19:51:32.0421 0984  C:\WINDOWS\System32\DRIVERS\drmkaud.sys - ok
19:51:32.0421 0984  [ 79CC4AAD58112A87175B65D8B2B4FFB7 ] C:\WINDOWS\System32\SHDOCVW.DLL
19:51:32.0421 0984  C:\WINDOWS\System32\SHDOCVW.DLL - ok
19:51:32.0437 0984  [ 9A3BD5F55AADFF859539142F6328A66E ] C:\WINDOWS\System32\msacm32.drv
19:51:32.0437 0984  C:\WINDOWS\System32\msacm32.drv - ok
19:51:32.0437 0984  [ 3B4702155BB2AE9DC00C06A68834BDFA ] C:\WINDOWS\System32\midimap.dll
19:51:32.0453 0984  C:\WINDOWS\System32\midimap.dll - ok
19:51:32.0453 0984  [ E931B4DD87DFACE46468FD506FDCD262 ] C:\WINDOWS\System32\DESK.CPL
19:51:32.0453 0984  C:\WINDOWS\System32\DESK.CPL - ok
19:51:32.0468 0984  [ E6796D51CED309E46D29C0B787735615 ] C:\WINDOWS\System32\THEMEUI.DLL
19:51:32.0468 0984  C:\WINDOWS\System32\THEMEUI.DLL - ok
19:51:32.0468 0984  [ 19D0EAB2740080925F812FF36A2D6378 ] C:\WINDOWS\System32\URLMON.DLL
19:51:32.0468 0984  C:\WINDOWS\System32\URLMON.DLL - ok
19:51:32.0484 0984  [ EEB024F2C81F0D55936FB825D21A91D6 ] C:\WINDOWS\System32\cmd.exe
19:51:32.0484 0984  C:\WINDOWS\System32\cmd.exe - ok
19:51:32.0500 0984  [ 178A34E5554DCE485E1262DDF027960C ] C:\Documents and Settings\D\Local Settings\Temp\74921361-65F7-42EA-8497-3796D2B70089.exe
19:51:32.0500 0984  C:\Documents and Settings\D\Local Settings\Temp\74921361-65F7-42EA-8497-3796D2B70089.exe - ok
19:51:32.0500 0984  [ C932872F01F30ECECC947E4B413A8826 ] C:\Program Files\VCOM\Fix-It\MemCheck.exe
19:51:32.0500 0984  C:\Program Files\VCOM\Fix-It\MemCheck.exe - ok
19:51:32.0515 0984  [ C657EAFC69660FBEE917F6616DE360E4 ] C:\Program Files\Microsoft IntelliPoint\ipoint.exe
19:51:32.0515 0984  C:\Program Files\Microsoft IntelliPoint\ipoint.exe - ok
19:51:32.0531 0984  [ C2BBD044C741EA4292016C36F718D2E4 ] C:\WINDOWS\System32\LINKINFO.DLL
19:51:32.0531 0984  C:\WINDOWS\System32\LINKINFO.DLL - ok
19:51:32.0531 0984  [ 385E9AEC6E100DBEBEE5BD1F27A55E1D ] C:\WINDOWS\System32\NTSHRUI.DLL
19:51:32.0531 0984  C:\WINDOWS\System32\NTSHRUI.DLL - ok
19:51:32.0546 0984  [ DD124F756F151BA04EAB507C15DE577B ] C:\Program Files\VCOM\Fix-It\MxNotify.dll
19:51:32.0546 0984  C:\Program Files\VCOM\Fix-It\MxNotify.dll - ok
19:51:32.0562 0984  [ C2617F4999E0FCD05B2F8CFCA06D979B ] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb09.exe
19:51:32.0562 0984  C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb09.exe - ok
19:51:32.0562 0984  [ 0BB8C95F9571DF25BCF2C140809B1B71 ] C:\Program Files\VCOM\Fix-It\MXAV.dll
19:51:32.0562 0984  C:\Program Files\VCOM\Fix-It\MXAV.dll - ok
19:51:32.0578 0984  [ 12509373ADE2A148C18E63E0AD19C96B ] C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
19:51:32.0578 0984  C:\Program Files\HP\hpcoretech\hpcmpmgr.exe - ok
19:51:32.0578 0984  [ 2D2013284879F406BA43CD6592E3E30E ] C:\Program Files\Microsoft IntelliPoint\dpgmkb.dll
19:51:32.0578 0984  C:\Program Files\Microsoft IntelliPoint\dpgmkb.dll - ok
19:51:32.0593 0984  [ 24232996A38C0B0CF151C2140AE29FC8 ] C:\WINDOWS\System32\ctfmon.exe
19:51:32.0593 0984  C:\WINDOWS\System32\ctfmon.exe - ok
19:51:32.0609 0984  [ 2B6D3630EB32B562E6763370CE35D730 ] C:\WINDOWS\System32\MSCTF.dll
19:51:32.0609 0984  C:\WINDOWS\System32\MSCTF.dll - ok
19:51:32.0609 0984  [ A940874B1904F1C48D09F9196F9BC178 ] C:\Program Files\HP\hpcoretech\HPVCR70.dll
19:51:32.0609 0984  C:\Program Files\HP\hpcoretech\HPVCR70.dll - ok
19:51:32.0625 0984  [ 87B85BC1E1F6E0228876204A20A9C24C ] C:\WINDOWS\System32\SPOOLSS.DLL
19:51:32.0625 0984  C:\WINDOWS\System32\SPOOLSS.DLL - ok
19:51:32.0640 0984  [ 9EEA0CA999A33C9D2EABE82E4C624CC3 ] C:\WINDOWS\System32\MSUTB.dll
19:51:32.0640 0984  C:\WINDOWS\System32\MSUTB.dll - ok
19:51:32.0640 0984  [ D9775544025F803EFEFF28575CC833B1 ] C:\Program Files\VCOM\Fix-It\TrLibNT.dll
19:51:32.0640 0984  C:\Program Files\VCOM\Fix-It\TrLibNT.dll - ok
19:51:32.0656 0984  [ 71D3D970127D939A4BB062B5040B6EBA ] C:\WINDOWS\System32\LOCALSPL.DLL
19:51:32.0656 0984  C:\WINDOWS\System32\LOCALSPL.DLL - ok
19:51:32.0671 0984  [ DA23A12845607133ACF1DB3502D4E575 ] C:\WINDOWS\System32\MSISIP.DLL
19:51:32.0671 0984  C:\WINDOWS\System32\MSISIP.DLL - ok
19:51:32.0671 0984  [ 2DA67574F4B3219E9BF02A9D30AF014F ] C:\Program Files\VCOM\Fix-It\Bpmnt.dll
19:51:32.0671 0984  C:\Program Files\VCOM\Fix-It\Bpmnt.dll - ok
19:51:32.0687 0984  [ A42C79BF8C1921CE37DAF0C2AD708CCD ] C:\WINDOWS\System32\wshext.dll
19:51:32.0687 0984  C:\WINDOWS\System32\wshext.dll - ok
19:51:32.0703 0984  [ AFD4C131D9647DB5005AC4520F6AC39C ] C:\Program Files\VCOM\Fix-It\Vsapi32.dll
19:51:32.0703 0984  C:\Program Files\VCOM\Fix-It\Vsapi32.dll - ok
19:51:32.0703 0984  [ 4602907535FD682195DFFF9117365826 ] C:\WINDOWS\System32\MFC42.DLL
19:51:32.0703 0984  C:\WINDOWS\System32\MFC42.DLL - ok
19:51:32.0718 0984  [ 7105749E78925FDFFD078DD54A8C2B70 ] C:\WINDOWS\System32\CNBJMON.DLL
19:51:32.0718 0984  C:\WINDOWS\System32\CNBJMON.DLL - ok
19:51:32.0718 0984  [ 747D47CAC37CB83672E89C3562C432D3 ] C:\WINDOWS\System32\hpzlnt04.dll
19:51:32.0718 0984  C:\WINDOWS\System32\hpzlnt04.dll - ok
19:51:32.0734 0984  [ 44E45BD9327ABC0540593E809B32F3CA ] C:\WINDOWS\System32\MSXML4.dll
19:51:32.0734 0984  C:\WINDOWS\System32\MSXML4.dll - ok
19:51:32.0750 0984  [ C961E52188D0ABBE018E0B4A9C97EB73 ] C:\WINDOWS\System32\hpzlnt09.dll
19:51:32.0750 0984  C:\WINDOWS\System32\hpzlnt09.dll - ok
19:51:32.0750 0984  [ 4038EE8AC13C15A067536D292A93D697 ] C:\WINDOWS\ime\sptip.dll
19:51:32.0750 0984  C:\WINDOWS\ime\sptip.dll - ok
19:51:32.0765 0984  [ 98B2C119851F89E9355CE2376C3D38BD ] C:\Program Files\Microsoft IntelliPoint\ipres.dll
19:51:32.0765 0984  C:\Program Files\Microsoft IntelliPoint\ipres.dll - ok
19:51:32.0765 0984  [ CF0376023360AADD55C89BA50564AFDC ] C:\WINDOWS\System32\mdimon.dll
19:51:32.0765 0984  C:\WINDOWS\System32\mdimon.dll - ok
19:51:32.0781 0984  [ AA6741C359E11F101056A609D022E92A ] C:\WINDOWS\System32\mslbui.dll
19:51:32.0781 0984  C:\WINDOWS\System32\mslbui.dll - ok
19:51:32.0781 0984  [ 6D64131C22EDD8B39702725B4F4EDAE8 ] C:\Program Files\PDFill\PDFWriter\Driver\PDFillWriterMon.dll
19:51:32.0781 0984  C:\Program Files\PDFill\PDFWriter\Driver\PDFillWriterMon.dll - ok
19:51:32.0796 0984  [ F0B0D86C7E5CE1781BB92F300169A257 ] C:\Program Files\Microsoft Office2003\OFFICE11\MCPS.DLL
19:51:32.0796 0984  C:\Program Files\Microsoft Office2003\OFFICE11\MCPS.DLL - ok
19:51:32.0812 0984  [ 73BA53E0CADAF05A3ED66F169C3F4709 ] C:\Program Files\Microsoft IntelliPoint\srres.dll
19:51:32.0812 0984  C:\Program Files\Microsoft IntelliPoint\srres.dll - ok
19:51:32.0812 0984  [ C44BC10BA73575C91FF50CDAF4D8E370 ] C:\WINDOWS\System32\PJLMON.DLL
19:51:32.0812 0984  C:\WINDOWS\System32\PJLMON.DLL - ok
19:51:32.0828 0984  [ A3F853629F7F2537157EA6EA9857EA56 ] C:\WINDOWS\System32\TCPMON.DLL
19:51:32.0828 0984  C:\WINDOWS\System32\TCPMON.DLL - ok
19:51:32.0843 0984  [ 242D07D7FC72AD897944BFF932D57C3C ] C:\WINDOWS\System32\USBMON.DLL
19:51:32.0843 0984  C:\WINDOWS\System32\USBMON.DLL - ok
19:51:32.0843 0984  [ ADCFBA92C21CCC3F3D0AB7AFE576A3B1 ] C:\Program Files\Microsoft Silverlight\xapauthenticodesip.dll
19:51:32.0843 0984  C:\Program Files\Microsoft Silverlight\xapauthenticodesip.dll - ok
19:51:32.0859 0984  [ 6501DB5182D5A8C0F1F1707286161D66 ] C:\WINDOWS\System32\WEBCHECK.DLL
19:51:32.0859 0984  C:\WINDOWS\System32\WEBCHECK.DLL - ok
19:51:32.0859 0984  [ 58E13A2292839321D3CDC918D5A4F5AE ] C:\WINDOWS\System32\spool\PRTPROCS\W32X86\mdippr.dll
19:51:32.0859 0984  C:\WINDOWS\System32\spool\PRTPROCS\W32X86\mdippr.dll - ok
19:51:32.0875 0984  [ FA788520BCAC0F5D9D5CDE5615C0D931 ] C:\WINDOWS\System32\IMAPI.EXE
19:51:32.0875 0984  C:\WINDOWS\System32\IMAPI.EXE - ok
19:51:32.0875 0984  [ 5DC79FA6E8A946B425DCBFC2447807F0 ] C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
19:51:32.0875 0984  C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe - ok
19:51:32.0890 0984  [ A1C10F87248529173F39F4B4734DF14B ] C:\WINDOWS\System32\WIN32SPL.DLL
19:51:32.0890 0984  C:\WINDOWS\System32\WIN32SPL.DLL - ok
19:51:32.0890 0984  [ 84A5644AE4731202A4A02E6342D29BA6 ] C:\WINDOWS\System32\NETRAP.DLL
19:51:32.0890 0984  C:\WINDOWS\System32\NETRAP.DLL - ok
19:51:32.0890 0984  [ F14A6BD840E4D7CD4C0535CB3CEF2887 ] C:\WINDOWS\System32\INETPP.DLL
19:51:32.0890 0984  C:\WINDOWS\System32\INETPP.DLL - ok
19:51:32.0906 0984  [ 297101A925ECFFDCDF7F6341FFBB6C1A ] C:\WINDOWS\System32\STOBJECT.DLL
19:51:32.0906 0984  C:\WINDOWS\System32\STOBJECT.DLL - ok
19:51:32.0906 0984  [ 4E6EEEA8EB9302D604603D4758C05E75 ] C:\WINDOWS\System32\BATMETER.DLL
19:51:32.0906 0984  C:\WINDOWS\System32\BATMETER.DLL - ok
19:51:32.0921 0984  [ 045E228F71C31901084B64BE59093499 ] C:\WINDOWS\System32\WPDShServiceObj.dll
19:51:32.0921 0984  C:\WINDOWS\System32\WPDShServiceObj.dll - ok
19:51:32.0921 0984  [ 4126D27CECE4471E00E425411F7306B5 ] C:\WINDOWS\System32\wuauclt.exe
19:51:32.0921 0984  C:\WINDOWS\System32\wuauclt.exe - ok
19:51:32.0921 0984  [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\WINDOWS\System32\DRIVERS\13074259.sys
19:51:32.0921 0984  C:\WINDOWS\System32\DRIVERS\13074259.sys - ok
19:51:32.0937 0984  [ 454AFC473106D220062142F62E25B571 ] C:\WINDOWS\System32\wuaucpl.cpl
19:51:32.0937 0984  C:\WINDOWS\System32\wuaucpl.cpl - ok
19:51:32.0953 0984  [ 0346DA24DE3C85909717D5997510A31F ] C:\WINDOWS\System32\mlang.dll
19:51:32.0953 0984  C:\WINDOWS\System32\mlang.dll - ok
19:51:32.0968 0984  [ D1DF1B8E6C6C433D4EA21D210075816A ] C:\WINDOWS\System32\spool\drivers\w32x86\3\HPZR3209.dll
19:51:32.0968 0984  C:\WINDOWS\System32\spool\drivers\w32x86\3\HPZR3209.dll - ok
19:51:32.0968 0984  [ 7469B9D06F0299273769C3E5365F5469 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL
19:51:32.0968 0984  C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL - ok
19:51:32.0984 0984  [ DD6D5ABAD9B8C13CEDA4752370BA982C ] C:\WINDOWS\System32\mydocs.dll
19:51:32.0984 0984  C:\WINDOWS\System32\mydocs.dll - ok
19:51:33.0000 0984  [ 22358578CB321F3325496A3723029409 ] C:\WINDOWS\System32\PortableDeviceTypes.dll
19:51:33.0000 0984  C:\WINDOWS\System32\PortableDeviceTypes.dll - ok
19:51:33.0000 0984  [ 3C1BD99E8B875594E1C571C60A0075BF ] C:\Program Files\HP\Digital Imaging\bin\hpqcxm08.dll
19:51:33.0000 0984  C:\Program Files\HP\Digital Imaging\bin\hpqcxm08.dll - ok
19:51:33.0015 0984  [ 9D45B2201D0ECF9F42136C7B99DEB8B2 ] C:\WINDOWS\System32\PortableDeviceApi.dll
19:51:33.0015 0984  C:\WINDOWS\System32\PortableDeviceApi.dll - ok
19:51:33.0015 0984  [ DD99D67399C1CE999D237681DB917BBD ] C:\Program Files\HP\Digital Imaging\bin\hpquio08.dll
19:51:33.0015 0984  C:\Program Files\HP\Digital Imaging\bin\hpquio08.dll - ok
19:51:33.0031 0984  [ FE03F8D9704FBD731DAAB2B1A53982BC ] C:\Program Files\Microsoft IntelliPoint\dpgcmd.dll
19:51:33.0031 0984  C:\Program Files\Microsoft IntelliPoint\dpgcmd.dll - ok
19:51:33.0046 0984  [ 339089D6C3FC3BC5CED8D9049C4D2101 ] C:\WINDOWS\System32\UPNP.DLL
19:51:33.0046 0984  C:\WINDOWS\System32\UPNP.DLL - ok
19:51:33.0046 0984  [ E8A6B00EE2056BD87D718D5B012DDC43 ] C:\Program Files\HP\Digital Imaging\bin\hpqtra08.rsc
19:51:33.0046 0984  C:\Program Files\HP\Digital Imaging\bin\hpqtra08.rsc - ok
19:51:33.0062 0984  [ 5B8DFA748FA4845BC04445A30126F2E9 ] C:\WINDOWS\System32\SSDPAPI.DLL
19:51:33.0062 0984  C:\WINDOWS\System32\SSDPAPI.DLL - ok
19:51:33.0078 0984  [ C19B522A9AE0BBC3293397F3055E80A1 ] C:\WINDOWS\System32\DRIVERS\HTTP.SYS
19:51:33.0078 0984  C:\WINDOWS\System32\DRIVERS\HTTP.SYS - ok
19:51:33.0078 0984  [ 3F4C4CF222C7A31D227BB2421AFC82AC ] C:\Program Files\HP\Digital Imaging\bin\hpqtao08.dll
19:51:33.0078 0984  C:\Program Files\HP\Digital Imaging\bin\hpqtao08.dll - ok
19:51:33.0093 0984  [ CAB98BB1AAEFC9D18DAE9541DB391004 ] C:\Program Files\HP\hpcoretech\soln\HPOSM.exe
19:51:33.0093 0984  C:\Program Files\HP\hpcoretech\soln\HPOSM.exe - ok
19:51:33.0109 0984  [ BA5D5FD3CCA6F64A429E2E0E1A1A0917 ] C:\WINDOWS\System32\RASDLG.DLL
19:51:33.0109 0984  C:\WINDOWS\System32\RASDLG.DLL - ok
19:51:33.0109 0984  [ 4B8D61792F7175BED48859CC18CE4E38 ] C:\WINDOWS\System32\SSDPSRV.DLL
19:51:33.0109 0984  C:\WINDOWS\System32\SSDPSRV.DLL - ok
19:51:33.0125 0984  [ CB41F8C8DE2D846CEA58CA82AC7D1687 ] C:\WINDOWS\System32\HPVAUT32.dll
19:51:33.0125 0984  C:\WINDOWS\System32\HPVAUT32.dll - ok
19:51:33.0140 0984  [ A940874B1904F1C48D09F9196F9BC178 ] C:\WINDOWS\System32\HPVCR70.dll
19:51:33.0140 0984  C:\WINDOWS\System32\HPVCR70.dll - ok
19:51:33.0140 0984  [ C5795DAFCFEDD3EBF41DC6486F354853 ] C:\Program Files\Microsoft IntelliPoint\Components\Commands\DPGHnt\DPGHnt.dll
19:51:33.0140 0984  C:\Program Files\Microsoft IntelliPoint\Components\Commands\DPGHnt\DPGHnt.dll - ok
19:51:33.0156 0984  [ F4BFB897EF3D76F18D1461BE048AF7A1 ] C:\WINDOWS\System32\wups.dll
19:51:33.0156 0984  C:\WINDOWS\System32\wups.dll - ok
19:51:33.0156 0984  [ 8001DB4C7CC0C3914E91F73A205828BD ] C:\Program Files\HP\hpcoretech\HPCmpMgr.dll
19:51:33.0156 0984  C:\Program Files\HP\hpcoretech\HPCmpMgr.dll - ok
19:51:33.0171 0984  [ B22922EBCE3F52ADD0991E277DF452E1 ] C:\Program Files\HP\hpcoretech\comp\hptskmgr.exe
19:51:33.0171 0984  C:\Program Files\HP\hpcoretech\comp\hptskmgr.exe - ok
19:51:33.0187 0984  [ 69539DC5EE4E99EA1D6757751D55374D ] C:\WINDOWS\System32\HPVCP70.dll
19:51:33.0187 0984  C:\WINDOWS\System32\HPVCP70.dll - ok
19:51:33.0187 0984  [ 1C5F8CB84D34E5427C9048AE472A8D35 ] C:\WINDOWS\System32\httpapi.dll
19:51:33.0187 0984  C:\WINDOWS\System32\httpapi.dll - ok
19:51:33.0203 0984  [ 064D8581ADF77C25133E7D751D917D83 ] C:\WINDOWS\System32\w3ssl.dll
19:51:33.0203 0984  C:\WINDOWS\System32\w3ssl.dll - ok
19:51:33.0218 0984  [ C9C3E09700E38C01929EAE057FF18736 ] C:\WINDOWS\System32\strmfilt.dll
19:51:33.0218 0984  C:\WINDOWS\System32\strmfilt.dll - ok
19:51:33.0218 0984  [ FF348D5A0E7570AC7FFAED5CF7992765 ] C:\Program Files\HP\hpcoretech\comp\hpschedr.dll
19:51:33.0218 0984  C:\Program Files\HP\hpcoretech\comp\hpschedr.dll - ok
19:51:33.0234 0984  [ 0F8AB2E5FB7849BCFE387BD6EB21A148 ] C:\Program Files\HP\Digital Imaging\bin\hpotra08.dll
19:51:33.0234 0984  C:\Program Files\HP\Digital Imaging\bin\hpotra08.dll - ok
19:51:33.0250 0984  [ 592837331889B8895E4BCFEB1EC64C6A ] C:\Program Files\HP\Digital Imaging\bin\hpotra08.rsc
19:51:33.0250 0984  C:\Program Files\HP\Digital Imaging\bin\hpotra08.rsc - ok
19:51:33.0250 0984  [ E543125E68BD8CCD58A943D448362974 ] C:\Program Files\HP\Digital Imaging\bin\hpodio08.dll
19:51:33.0250 0984  C:\Program Files\HP\Digital Imaging\bin\hpodio08.dll - ok
19:51:33.0265 0984  [ BDF3EE0F674CD7A58945188D24373A9E ] C:\Program Files\HP\Digital Imaging\bin\hpodvd08.dll
19:51:33.0265 0984  C:\Program Files\HP\Digital Imaging\bin\hpodvd08.dll - ok
19:51:33.0265 0984  [ 3F40CCE88D2BFAA58AA3192AA898B12B ] C:\Program Files\HP\Digital Imaging\bin\hpostd08.dll
19:51:33.0265 0984  C:\Program Files\HP\Digital Imaging\bin\hpostd08.dll - ok
19:51:33.0281 0984  [ A3D79401EC4270CAFA5A6B7778E0CC9D ] C:\Program Files\HP\Digital Imaging\bin\hpqtap08.dll
19:51:33.0281 0984  C:\Program Files\HP\Digital Imaging\bin\hpqtap08.dll - ok
19:51:33.0281 0984  [ 42462329AA680451C05FE36D0737AB36 ] C:\Program Files\HP\Digital Imaging\bin\hpostd08.rsc
19:51:33.0281 0984  C:\Program Files\HP\Digital Imaging\bin\hpostd08.rsc - ok
19:51:33.0296 0984  [ DF002BBF00D0C3126F1035B2B422C493 ] C:\Program Files\HP\Digital Imaging\bin\hpocxi08.dll
19:51:33.0296 0984  C:\Program Files\HP\Digital Imaging\bin\hpocxi08.dll - ok
19:51:33.0296 0984  [ DD973D5E5B3B24ECCAFB83FD28614F74 ] C:\Program Files\HP\Digital Imaging\bin\hpqcob08.dll
19:51:33.0296 0984  C:\Program Files\HP\Digital Imaging\bin\hpqcob08.dll - ok
19:51:33.0312 0984  [ 0F2D53A73D27105CA5DBCBDB0AD3BC5B ] C:\WINDOWS\System32\hpzidr12.dll
19:51:33.0312 0984  C:\WINDOWS\System32\hpzidr12.dll - ok
19:51:33.0328 0984  [ 8DD12146838BBFA51D78A40EB34BA02B ] C:\WINDOWS\System32\hpzipr12.dll
19:51:33.0328 0984  C:\WINDOWS\System32\hpzipr12.dll - ok
19:51:33.0328 0984  [ 90B72E21BE9BAA774F1F3D8B411B6A2A ] C:\Program Files\HP\Digital Imaging\bin\hpodev08.dll
19:51:33.0328 0984  C:\Program Files\HP\Digital Imaging\bin\hpodev08.dll - ok
19:51:33.0343 0984  [ 20A57E6E1C9EBBFBF0BF134531280A04 ] C:\Program Files\HP\Digital Imaging\bin\hpodeb08.dll
19:51:33.0343 0984  C:\Program Files\HP\Digital Imaging\bin\hpodeb08.dll - ok
19:51:33.0359 0984  [ 2447447185DDCE2678F3917151F06368 ] C:\Program Files\HP\Digital Imaging\bin\hposcn08.dll
19:51:33.0359 0984  C:\Program Files\HP\Digital Imaging\bin\hposcn08.dll - ok
19:51:33.0359 0984  [ F6719362645C184049B2180110F0253F ] C:\WINDOWS\System32\STI.dll
19:51:33.0359 0984  C:\WINDOWS\System32\STI.dll - ok
19:51:33.0375 0984  [ 9C8DF2E81783C7E74AAEE7788D3E947E ] C:\Program Files\HP\Digital Imaging\bin\hposcn08.rsc
19:51:33.0375 0984  C:\Program Files\HP\Digital Imaging\bin\hposcn08.rsc - ok
19:51:33.0390 0984  [ C39CD25443CCCDD121BF1F807564DCFA ] C:\WINDOWS\System32\drprov.dll
19:51:33.0390 0984  C:\WINDOWS\System32\drprov.dll - ok
19:51:33.0390 0984  [ 6539CED6E5AB5684AA09E6B0ABBF4124 ] C:\WINDOWS\System32\ntlanman.dll
19:51:33.0390 0984  C:\WINDOWS\System32\ntlanman.dll - ok
19:51:33.0406 0984  [ 01520B46830C8178E1B2C05A4F3F6C16 ] C:\WINDOWS\System32\NETUI0.dll
19:51:33.0406 0984  C:\WINDOWS\System32\NETUI0.dll - ok
19:51:33.0421 0984  [ 88B918E7FB3B09595DD8A0FD09A35B8F ] C:\WINDOWS\System32\NETUI1.dll
19:51:33.0421 0984  C:\WINDOWS\System32\NETUI1.dll - ok
19:51:33.0421 0984  [ 716A078B2FC6CC0BB3030B2559EC143F ] C:\WINDOWS\System32\davclnt.dll
19:51:33.0421 0984  C:\WINDOWS\System32\davclnt.dll - ok
19:51:33.0437 0984  ============================================================
19:51:33.0437 0984  Scan finished
19:51:33.0437 0984  ============================================================
19:51:33.0453 0976  Detected object count: 0
19:51:33.0453 0976  Actual detected object count: 0
 



#10 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:07:57 AM

Posted 10 May 2013 - 10:12 PM

OK now run the --RogueKiller-- program
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#11 ToriGirl75

ToriGirl75
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Sonoma County, CA
  • Local time:03:57 AM

Posted 10 May 2013 - 10:18 PM

Here is the RogueKiller report. It found three things. I'll get back to you in a bit with how the computer seems to be now. Sorry had to change the report I posted...got ahead of myself & the directions.

 

 

RogueKiller V8.5.4 [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/
Website : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows XP (5.1.2600 Service Pack 2) 32 bits version
Started in : Normal mode
User : D [Admin rights]
Mode : Remove -- Date : 05/10/2013 20:18:43
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 3 ¤¤¤
[HJPOL] HKCU\[...]\System : DisableRegistryTools (0) -> DELETED
[HJ SMENU] HKCU\[...]\Advanced : Start_ShowSetProgramAccessAndDefaults (0) -> REPLACED (1)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Particular Files / Folders: ¤¤¤
[Faked.Drv][FILE] processr.sys : C:\WINDOWS\system32\drivers\processr.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] amdk6.sys : C:\WINDOWS\system32\drivers\amdk6.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] amdk7.sys : C:\WINDOWS\system32\drivers\amdk7.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] arp1394.sys : C:\WINDOWS\system32\drivers\arp1394.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] asyncmac.sys : C:\WINDOWS\system32\drivers\asyncmac.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] atmarpc.sys : C:\WINDOWS\system32\drivers\atmarpc.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] atmlane.sys : C:\WINDOWS\system32\drivers\atmlane.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] bridge.sys : C:\WINDOWS\system32\drivers\bridge.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] cdfs.sys : C:\WINDOWS\system32\drivers\cdfs.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] crusoe.sys : C:\WINDOWS\system32\drivers\crusoe.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] dmboot.sys : C:\WINDOWS\system32\drivers\dmboot.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] hxxp.sys : C:\WINDOWS\system32\drivers\hxxp.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] intelppm.sys : C:\WINDOWS\system32\drivers\intelppm.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] ip6fw.sys : C:\WINDOWS\system32\drivers\ip6fw.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] ipinip.sys : C:\WINDOWS\system32\drivers\ipinip.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] ipnat.sys : C:\WINDOWS\system32\drivers\ipnat.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] mf.sys : C:\WINDOWS\system32\drivers\mf.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] mqac.sys : C:\WINDOWS\system32\drivers\mqac.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] mssmbios.sys : C:\WINDOWS\system32\drivers\mssmbios.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] nic1394.sys : C:\WINDOWS\system32\drivers\nic1394.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] nmnt.sys : C:\WINDOWS\system32\drivers\nmnt.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] ntfs.sys : C:\WINDOWS\system32\drivers\ntfs.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] nwlnkipx.sys : C:\WINDOWS\system32\drivers\nwlnkipx.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] nwrdr.sys : C:\WINDOWS\system32\drivers\nwrdr.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] pcmcia.sys : C:\WINDOWS\system32\drivers\pcmcia.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] usb8023.sys : C:\WINDOWS\system32\drivers\usb8023.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] scsiport.sys : C:\WINDOWS\system32\drivers\scsiport.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] sdbus.sys : C:\WINDOWS\system32\drivers\sdbus.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] secdrv.sys : C:\WINDOWS\system32\drivers\secdrv.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] sffdisk.sys : C:\WINDOWS\system32\drivers\sffdisk.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] sffp_sd.sys : C:\WINDOWS\system32\drivers\sffp_sd.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] sonydcam.sys : C:\WINDOWS\system32\drivers\sonydcam.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] smsens.sys : C:\WINDOWS\system32\drivers\smsens.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] tape.sys : C:\WINDOWS\system32\drivers\tape.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] tcpip6.sys : C:\WINDOWS\system32\drivers\tcpip6.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] tunmp.sys : C:\WINDOWS\system32\drivers\tunmp.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] udfs.sys : C:\WINDOWS\system32\drivers\udfs.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] rndismp.sys : C:\WINDOWS\system32\drivers\rndismp.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] update.sys : C:\WINDOWS\system32\drivers\update.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] usbintel.sys : C:\WINDOWS\system32\drivers\usbintel.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] point32.sys : C:\WINDOWS\system32\drivers\point32.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] i8042prt.sys : C:\WINDOWS\system32\drivers\i8042prt.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] acpi.sys : C:\WINDOWS\system32\drivers\acpi.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] pci.sys : C:\WINDOWS\system32\drivers\pci.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] usbccgp.sys : C:\WINDOWS\system32\drivers\usbccgp.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] usbhub.sys : C:\WINDOWS\system32\drivers\usbhub.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] hidclass.sys : C:\WINDOWS\system32\drivers\hidclass.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] hidparse.sys : C:\WINDOWS\system32\drivers\hidparse.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] usbport.sys : C:\WINDOWS\system32\drivers\usbport.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] usbuhci.sys : C:\WINDOWS\system32\drivers\usbuhci.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] usbehci.sys : C:\WINDOWS\system32\drivers\usbehci.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] mbam.sys : C:\WINDOWS\system32\drivers\mbam.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] mouhid.sys : C:\WINDOWS\system32\drivers\mouhid.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] irenum.sys : C:\WINDOWS\system32\drivers\irenum.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] rdpwd.sys : C:\WINDOWS\system32\drivers\rdpwd.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] AGP440.SYS : C:\WINDOWS\system32\drivers\AGP440.SYS [-] --> CANNOT FIX
[Faked.Drv][FILE] intelide.sys : C:\WINDOWS\system32\drivers\intelide.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] HSFDPSP2.sys : C:\WINDOWS\system32\drivers\HSFDPSP2.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] HSFBS2S2.sys : C:\WINDOWS\system32\drivers\HSFBS2S2.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] mdmxsdk.sys : C:\WINDOWS\system32\drivers\mdmxsdk.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] HSFCXTS2.sys : C:\WINDOWS\system32\drivers\HSFCXTS2.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] ati2mtaa.sys : C:\WINDOWS\system32\drivers\ati2mtaa.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] redbook.sys : C:\WINDOWS\system32\drivers\redbook.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] audstub.sys : C:\WINDOWS\system32\drivers\audstub.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] termdd.sys : C:\WINDOWS\system32\drivers\termdd.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] rdpdr.sys : C:\WINDOWS\system32\drivers\rdpdr.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] tdpipe.sys : C:\WINDOWS\system32\drivers\tdpipe.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] tdtcp.sys : C:\WINDOWS\system32\drivers\tdtcp.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] sr.sys : C:\WINDOWS\system32\drivers\sr.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] PFMODNT.SYS : C:\WINDOWS\system32\drivers\PFMODNT.SYS [-] --> CANNOT FIX
[Faked.Drv][FILE] fltMgr.sys : C:\WINDOWS\system32\drivers\fltMgr.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] USBSTOR.SYS : C:\WINDOWS\system32\drivers\USBSTOR.SYS [-] --> CANNOT FIX
[Faked.Drv][FILE] smwdm.sys : C:\WINDOWS\system32\drivers\smwdm.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] portcls.sys : C:\WINDOWS\system32\drivers\portcls.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] ks.sys : C:\WINDOWS\system32\drivers\ks.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] aeaudio.sys : C:\WINDOWS\system32\drivers\aeaudio.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] drmk.sys : C:\WINDOWS\system32\drivers\drmk.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] hpzid412.sys : C:\WINDOWS\system32\drivers\hpzid412.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] MSPCLOCK.sys : C:\WINDOWS\system32\drivers\MSPCLOCK.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] MSPQM.sys : C:\WINDOWS\system32\drivers\MSPQM.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] MSKSSRV.sys : C:\WINDOWS\system32\drivers\MSKSSRV.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] sysaudio.sys : C:\WINDOWS\system32\drivers\sysaudio.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] drmkaud.sys : C:\WINDOWS\system32\drivers\drmkaud.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] kmixer.sys : C:\WINDOWS\system32\drivers\kmixer.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] aec.sys : C:\WINDOWS\system32\drivers\aec.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] swmidi.sys : C:\WINDOWS\system32\drivers\swmidi.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] wdmaud.sys : C:\WINDOWS\system32\drivers\wdmaud.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] DMusic.sys : C:\WINDOWS\system32\drivers\DMusic.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] splitter.sys : C:\WINDOWS\system32\drivers\splitter.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] usbscan.sys : C:\WINDOWS\system32\drivers\usbscan.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] usbprint.sys : C:\WINDOWS\system32\drivers\usbprint.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] HPZius12.sys : C:\WINDOWS\system32\drivers\HPZius12.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] AFS2K.SYS : C:\WINDOWS\system32\drivers\AFS2K.SYS [-] --> CANNOT FIX
[Faked.Drv][FILE] HPZipr12.sys : C:\WINDOWS\system32\drivers\HPZipr12.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] m4cxw2k3.sys : C:\WINDOWS\system32\drivers\m4cxw2k3.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] kbdclass.sys : C:\WINDOWS\system32\drivers\kbdclass.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] kbdhid.sys : C:\WINDOWS\system32\drivers\kbdhid.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] mouclass.sys : C:\WINDOWS\system32\drivers\mouclass.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] wpdusb.sys : C:\WINDOWS\system32\drivers\wpdusb.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] BVRPMPR5.SYS : C:\WINDOWS\system32\drivers\BVRPMPR5.SYS [-] --> CANNOT FIX
[Faked.Drv][FILE] cdrom.sys : C:\WINDOWS\system32\drivers\cdrom.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] usbaapl.sys : C:\WINDOWS\system32\drivers\usbaapl.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] stream.sys : C:\WINDOWS\system32\drivers\stream.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] WudfPf.sys : C:\WINDOWS\system32\drivers\WudfPf.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] WudfRd.sys : C:\WINDOWS\system32\drivers\WudfRd.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] GEARAspiWDM.sys : C:\WINDOWS\system32\drivers\GEARAspiWDM.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] TrueSight.sys : C:\WINDOWS\system32\drivers\TrueSight.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] wmilib.sys : C:\WINDOWS\system32\drivers\wmilib.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] dmload.sys : C:\WINDOWS\system32\drivers\dmload.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] ftdisk.sys : C:\WINDOWS\system32\drivers\ftdisk.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] partmgr.sys : C:\WINDOWS\system32\drivers\partmgr.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] ndistapi.sys : C:\WINDOWS\system32\drivers\ndistapi.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] ptilink.sys : C:\WINDOWS\system32\drivers\ptilink.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] raspti.sys : C:\WINDOWS\system32\drivers\raspti.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] ndproxy.sys : C:\WINDOWS\system32\drivers\ndproxy.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] cdaudio.sys : C:\WINDOWS\system32\drivers\cdaudio.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] fs_rec.sys : C:\WINDOWS\system32\drivers\fs_rec.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] null.sys : C:\WINDOWS\system32\drivers\null.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] beep.sys : C:\WINDOWS\system32\drivers\beep.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] rdpcdd.sys : C:\WINDOWS\system32\drivers\rdpcdd.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] rasacd.sys : C:\WINDOWS\system32\drivers\rasacd.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] fips.sys : C:\WINDOWS\system32\drivers\fips.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] dxgthk.sys : C:\WINDOWS\system32\drivers\dxgthk.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] parvdm.sys : C:\WINDOWS\system32\drivers\parvdm.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] atmepvc.sys : C:\WINDOWS\system32\drivers\atmepvc.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] atmuni.sys : C:\WINDOWS\system32\drivers\atmuni.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] cbidf2k.sys : C:\WINDOWS\system32\drivers\cbidf2k.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] cinemst2.sys : C:\WINDOWS\system32\drivers\cinemst2.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] cpqdap01.sys : C:\WINDOWS\system32\drivers\cpqdap01.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] dxapi.sys : C:\WINDOWS\system32\drivers\dxapi.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] ipfltdrv.sys : C:\WINDOWS\system32\drivers\ipfltdrv.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] mcd.sys : C:\WINDOWS\system32\drivers\mcd.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] nikedrv.sys : C:\WINDOWS\system32\drivers\nikedrv.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] nwlnkflt.sys : C:\WINDOWS\system32\drivers\nwlnkflt.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] nwlnkfwd.sys : C:\WINDOWS\system32\drivers\nwlnkfwd.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] nwlnknb.sys : C:\WINDOWS\system32\drivers\nwlnknb.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] nwlnkspx.sys : C:\WINDOWS\system32\drivers\nwlnkspx.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] rawwan.sys : C:\WINDOWS\system32\drivers\rawwan.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] rio8drv.sys : C:\WINDOWS\system32\drivers\rio8drv.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] riodrv.sys : C:\WINDOWS\system32\drivers\riodrv.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] RMCast.sys : C:\WINDOWS\system32\drivers\RMCast.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] rootmdm.sys : C:\WINDOWS\system32\drivers\rootmdm.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] smclib.sys : C:\WINDOWS\system32\drivers\smclib.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] tosdvd.sys : C:\WINDOWS\system32\drivers\tosdvd.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] tsbvcap.sys : C:\WINDOWS\system32\drivers\tsbvcap.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] usbcamd.sys : C:\WINDOWS\system32\drivers\usbcamd.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] usbcamd2.sys : C:\WINDOWS\system32\drivers\usbcamd2.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] vdmindvd.sys : C:\WINDOWS\system32\drivers\vdmindvd.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] ws2ifsl.sys : C:\WINDOWS\system32\drivers\ws2ifsl.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] mnmdd.sys : C:\WINDOWS\system32\drivers\mnmdd.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] fsvga.sys : C:\WINDOWS\system32\drivers\fsvga.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] isapnp.sys : C:\WINDOWS\system32\drivers\isapnp.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] acpiec.sys : C:\WINDOWS\system32\drivers\acpiec.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] oprghdlr.sys : C:\WINDOWS\system32\drivers\oprghdlr.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] pciide.sys : C:\WINDOWS\system32\drivers\pciide.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] hidusb.sys : C:\WINDOWS\system32\drivers\hidusb.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] usbd.sys : C:\WINDOWS\system32\drivers\usbd.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] atapi.sys : C:\WINDOWS\system32\drivers\atapi.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] disk.sys : C:\WINDOWS\system32\drivers\disk.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] classpnp.sys : C:\WINDOWS\system32\drivers\classpnp.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] dmio.sys : C:\WINDOWS\system32\drivers\dmio.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] pciidex.sys : C:\WINDOWS\system32\drivers\pciidex.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] ksecdd.sys : C:\WINDOWS\system32\drivers\ksecdd.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] mountmgr.sys : C:\WINDOWS\system32\drivers\mountmgr.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] mrxdav.sys : C:\WINDOWS\system32\drivers\mrxdav.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] tdi.sys : C:\WINDOWS\system32\drivers\tdi.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] ndis.sys : C:\WINDOWS\system32\drivers\ndis.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] mrxsmb.sys : C:\WINDOWS\system32\drivers\mrxsmb.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] rdbss.sys : C:\WINDOWS\system32\drivers\rdbss.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] msfs.sys : C:\WINDOWS\system32\drivers\msfs.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] mup.sys : C:\WINDOWS\system32\drivers\mup.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] netbios.sys : C:\WINDOWS\system32\drivers\netbios.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] npfs.sys : C:\WINDOWS\system32\drivers\npfs.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] volsnap.sys : C:\WINDOWS\system32\drivers\volsnap.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] p3.sys : C:\WINDOWS\system32\drivers\p3.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] videoprt.sys : C:\WINDOWS\system32\drivers\videoprt.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] modem.sys : C:\WINDOWS\system32\drivers\modem.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] fdc.sys : C:\WINDOWS\system32\drivers\fdc.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] serial.sys : C:\WINDOWS\system32\drivers\serial.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] serenum.sys : C:\WINDOWS\system32\drivers\serenum.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] parport.sys : C:\WINDOWS\system32\drivers\parport.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] rasl2tp.sys : C:\WINDOWS\system32\drivers\rasl2tp.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] ndiswan.sys : C:\WINDOWS\system32\drivers\ndiswan.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] raspppoe.sys : C:\WINDOWS\system32\drivers\raspppoe.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] raspptp.sys : C:\WINDOWS\system32\drivers\raspptp.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] psched.sys : C:\WINDOWS\system32\drivers\psched.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] msgpc.sys : C:\WINDOWS\system32\drivers\msgpc.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] swenum.sys : C:\WINDOWS\system32\drivers\swenum.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] flpydisk.sys : C:\WINDOWS\system32\drivers\flpydisk.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] sfloppy.sys : C:\WINDOWS\system32\drivers\sfloppy.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] vga.sys : C:\WINDOWS\system32\drivers\vga.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] ipsec.sys : C:\WINDOWS\system32\drivers\ipsec.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] tcpip.sys : C:\WINDOWS\system32\drivers\tcpip.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] netbt.sys : C:\WINDOWS\system32\drivers\netbt.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] wanarp.sys : C:\WINDOWS\system32\drivers\wanarp.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] imapi.sys : C:\WINDOWS\system32\drivers\imapi.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] fastfat.sys : C:\WINDOWS\system32\drivers\fastfat.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] dxg.sys : C:\WINDOWS\system32\drivers\dxg.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] afd.sys : C:\WINDOWS\system32\drivers\afd.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] srv.sys : C:\WINDOWS\system32\drivers\srv.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] ndisuio.sys : C:\WINDOWS\system32\drivers\ndisuio.sys [-] --> CANNOT FIX
[Faked.Drv][FILE] diskdump.sys : C:\WINDOWS\system32\drivers\diskdump.sys [-] --> CANNOT FIX

¤¤¤ Driver : [LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1       localhost


¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: Maxtor 4D040H2 +++++
--- User ---
[MBR] 1273d7a9157133bea1b3cdf2168b0f28
[BSP] d244bb9d883ae87a30471d7c64d5ed1a : Windows XP MBR Code
Partition table:
0 - [ACTIVE] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 63 | Size: 19022 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 38957625 | Size: 20057 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[2]_D_05102013_02d2018.txt >>
RKreport[1]_S_05102013_02d2017.txt ; RKreport[2]_D_05102013_02d2018.txt


 


Edited by ToriGirl75, 10 May 2013 - 10:20 PM.


#12 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:07:57 AM

Posted 10 May 2013 - 10:26 PM

Now try and run combofix for me please



gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#13 ToriGirl75

ToriGirl75
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Sonoma County, CA
  • Local time:03:57 AM

Posted 11 May 2013 - 12:09 AM

Hello,

 

Still can't run combofix. It hangs up at the same place again. Tried it two times after restarting computer.

 

Wave volume seems to be staying on, not mutting itself and explorer.exe hadn't pop up but still having internet issue, needing to restart computer a couple of times to get on the net even when connected.



#14 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:07:57 AM

Posted 11 May 2013 - 12:39 AM


Hello ToriGirl75

Ok lets try this, I want you to run combofix in safe mode but it is very important that when combofix reboots the computer for you to direct it back into safe mode so it can finish the scan.

Boot into Safe Mode

Reboot your computer in Safe Mode.
  • If the computer is running, shut down Windows, and then turn off the power.
  • Wait 30 seconds, and then turn the computer on.
  • Start tapping the F8 key. The Windows Advanced Options Menu appears. If you begin tapping the F8 key too soon, some computers display a "keyboard error" message. To resolve this, restart the computer and try again.
  • Ensure that the Safe Mode option is selected.
  • Press Enter. The computer then begins to start in Safe mode.
  • Login on your usual account.
after combofix has finished its scan please post the report back here.

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#15 ToriGirl75

ToriGirl75
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Sonoma County, CA
  • Local time:03:57 AM

Posted 12 May 2013 - 12:00 AM

Sorry for not getting back sooner...been taking care of a sick friend all day. Tried to run it in safe mode and it still hangs up at the same place. Tried again and same thing. )-:






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users