Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Well, this is kind of worrisome.


  • Please log in to reply
5 replies to this topic

#1 UhOhThat'sBad

UhOhThat'sBad

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:08:11 PM

Posted 02 July 2013 - 08:53 PM

So, a relative of mine seems to have got his laptop infected with something. Not generally a big deal, I've been there. Only problem is, whatever he's infected with has turned off his ability to get on the internet (His Wi-Fi is messed up and doesn't let him see any networks or even open the network browsing window). 

 

Generally I'd run MalWarebytes, which I tried, but it won't run. Gives me a run-time error '339' and says 'Component 'ieframe.dll' or one of its dependencies not correctly registered: a file is missing or invalid". So that's out.

 

I stopped there as this seems rather serious - or rather it makes me uncomfortable because it's not my laptop and I haven't dealt with a malware issue in awhile.

 

Safemode makes no difference, his antivirus, AVG, doesn't work either.

 

Any suggestions/help would be greatly appreciated.



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:41 PM

Posted 02 July 2013 - 09:36 PM

Welcome to BC!!
 
For the connection try these...

Please click Start > Run, type inetcpl.cpl in the runbox and press enter.
Click the Connections tab and click the LAN settings option.
Verify if "Use a proxy..." is checked, if so, UNcheck it and click OK/OK to exit.
Now check if the internet is working again.

OR

Go to Start ... Run and type in cmd
A dos Window will appear.
Type in the dos window: netsh winsock reset
Click on the enter key.

Reboot your system to complete the process.

If needed : type these one line at a time, press enter after each line. See if it works after each.


netsh interface ipv4 reset
netsh interface ipv6 reset
ipconfig /flushdns


WIN7.. Please Download this file, Click Me
Right-click on winsockfix.bat and click on Run as Administrator.
 
 
 
If that went well.......
 
Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
 
Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)
Do not change the default options on scan results.
 
Please download AdwCleaner by Xplode onto your desktop.
Close all open programs and internet browsers.
Double click on adwcleaner.exe to run the tool.
Click on Delete.
Confirm each time with Ok.
You will be prompted to restart your computer. A text file will open after the restart.
Please post the contents of that logfile with your next reply.
You can find the logfile at C:\AdwCleaner[S1].txt as well.
 
Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 UhOhThat'sBad

UhOhThat'sBad
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:08:11 PM

Posted 02 July 2013 - 10:41 PM

Regarding the Internet - it works with a direct connection (Cable In) however, with WiFi, it doesn't allow him to open the network browsing window that shows you the wireless networks in your area that you can connect to.

 

Running inetcpl.cpl had no effect. It didn't open. The Winsock thing didn't do anything either.

 

I can another Laptop and a direct connection available - should I go ahead and run those other tests by transferring those programs via USB drive? (Making sure)

 

What this infection is, it seems to have messed with some .dll files. The aforementioned ieframes.dll issue and also another one mshtml.dll both return errors when using regsvr32.



#4 UhOhThat'sBad

UhOhThat'sBad
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:08:11 PM

Posted 02 July 2013 - 11:29 PM

Mini Tool Box Results:

 
MiniToolBox by Farbar  Version: 16-06-2013
Ran by * (administrator) on 03-07-2013 at 01:48:00
Running from "C:\Users\*\Desktop"
Windows Vista ™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
::1             localhost
 
127.0.0.1       localhost
 
========================= IP Configuration: ================================
 
Realtek RTL8102E Family PCI-E Fast Ethernet NIC (NDIS 6.0) = Local Area Connection (Media disconnected)
Atheros AR5007 802.11b/g WiFi Adapter = Wireless Network Connection (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : *
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
 
Wireless LAN adapter Wireless Network Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Atheros AR5007 802.11b/g WiFi Adapter
   Physical Address. . . . . . . . . : 00-25-56-77-68-F0
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Local Area Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Realtek RTL8102E Family PCI-E Fast Ethernet NIC (NDIS 6.0)
   Physical Address. . . . . . . . . : 00-1F-16-DB-72-4E
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 6:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : isatap.{3575FA99-E452-4C2C-9E04-5D3694207098}
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 7:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 02-00-54-55-4E-01
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 11:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : 6TO4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 12:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : isatap.{3575FA99-E452-4C2C-9E04-5D3694207098}
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 13:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : isatap.{ABA804B7-C7A4-4750-BA68-39F1BBCAC362}
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  UnKnown
Address:  127.0.0.1
 
Ping request could not find host google.com. Please check the name and try again.
 
Server:  UnKnown
Address:  127.0.0.1
 
Ping request could not find host yahoo.com. Please check the name and try again.
 
 
 
Pinging 127.0.0.1 with 32 bytes of data:
 
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
 
 
Ping statistics for 127.0.0.1:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
 
===========================================================================
Interface List
 11 ...00 25 56 77 68 f0 ...... Atheros AR5007 802.11b/g WiFi Adapter
 10 ...00 1f 16 db 72 4e ...... Realtek RTL8102E Family PCI-E Fast Ethernet NIC (NDIS 6.0)
  1 ........................... Software Loopback Interface 1
 16 ...00 00 00 00 00 00 00 e0  isatap.{3575FA99-E452-4C2C-9E04-5D3694207098}
 13 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
 12 ...00 00 00 00 00 00 00 e0  6TO4 Adapter
 14 ...00 00 00 00 00 00 00 e0  isatap.{3575FA99-E452-4C2C-9E04-5D3694207098}
 15 ...00 00 00 00 00 00 00 e0  isatap.{ABA804B7-C7A4-4750-BA68-39F1BBCAC362}
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
  1    306 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\winrnr.dll [19968] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (07/03/2013 01:03:45 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/03/2013 01:03:42 AM) (Source: Application Error) (User: )
Description: Faulting application SearchIndexer.exe, version 7.0.6002.18005, time stamp 0x49e02459, faulting module ntdll.dll, version 6.0.6002.18541, time stamp 0x4ec3e3d5, exception code 0xc000012f, fault offset 0x00009f5d,
process id 0x8ec, application start time 0xSearchIndexer.exe0.
 
Error: (07/03/2013 01:03:41 AM) (Source: Application Error) (User: )
Description: Faulting application SearchIndexer.exe, version 7.0.6002.18005, time stamp 0x49e02459, faulting module ntdll.dll, version 6.0.6002.18541, time stamp 0x4ec3e3d5, exception code 0xc000012f, fault offset 0x00009f5d,
process id 0x144, application start time 0xSearchIndexer.exe0.
 
Error: (07/03/2013 00:58:17 AM) (Source: Application Error) (User: )
Description: Faulting application SearchIndexer.exe, version 7.0.6002.18005, time stamp 0x49e02459, faulting module ntdll.dll, version 6.0.6002.18541, time stamp 0x4ec3e3d5, exception code 0xc000012f, fault offset 0x00009f5d,
process id 0x2f8, application start time 0xSearchIndexer.exe0.
 
Error: (07/03/2013 00:58:17 AM) (Source: Application Error) (User: )
Description: Faulting application SearchIndexer.exe, version 7.0.6002.18005, time stamp 0x49e02459, faulting module ntdll.dll, version 6.0.6002.18541, time stamp 0x4ec3e3d5, exception code 0xc000012f, fault offset 0x00009f5d,
process id 0xa80, application start time 0xSearchIndexer.exe0.
 
Error: (07/03/2013 00:57:55 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/03/2013 00:57:01 AM) (Source: Application Error) (User: )
Description: Faulting application SearchIndexer.exe, version 7.0.6002.18005, time stamp 0x49e02459, faulting module ntdll.dll, version 6.0.6002.18541, time stamp 0x4ec3e3d5, exception code 0xc000012f, fault offset 0x00009f5d,
process id 0x944, application start time 0xSearchIndexer.exe0.
 
Error: (07/03/2013 00:06:17 AM) (Source: Application Error) (User: )
Description: Faulting application SearchIndexer.exe, version 7.0.6002.18005, time stamp 0x49e02459, faulting module ntdll.dll, version 6.0.6002.18541, time stamp 0x4ec3e3d5, exception code 0xc000012f, fault offset 0x00009f5d,
process id 0xbe8, application start time 0xSearchIndexer.exe0.
 
Error: (07/03/2013 00:05:39 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/03/2013 00:05:02 AM) (Source: Application Error) (User: )
Description: Faulting application SearchIndexer.exe, version 7.0.6002.18005, time stamp 0x49e02459, faulting module ntdll.dll, version 6.0.6002.18541, time stamp 0x4ec3e3d5, exception code 0xc000012f, fault offset 0x00009f5d,
process id 0x9a8, application start time 0xSearchIndexer.exe0.
 
 
System errors:
=============
Error: (07/03/2013 01:05:55 AM) (Source: Service Control Manager) (User: )
Description: Security Center%%193
 
Error: (07/03/2013 01:03:46 AM) (Source: Service Control Manager) (User: )
Description: Windows Search%%1053
 
Error: (07/03/2013 01:03:46 AM) (Source: Service Control Manager) (User: )
Description: 30000Windows Search
 
Error: (07/03/2013 01:03:46 AM) (Source: Service Control Manager) (User: )
Description: Windows Search%%1053
 
Error: (07/03/2013 01:03:46 AM) (Source: Service Control Manager) (User: )
Description: 30000Windows Search
 
Error: (07/03/2013 01:03:46 AM) (Source: Service Control Manager) (User: )
Description: Windows Search%%1053
 
Error: (07/03/2013 01:03:46 AM) (Source: Service Control Manager) (User: )
Description: 30000Windows Search
 
Error: (07/03/2013 01:03:46 AM) (Source: Service Control Manager) (User: )
Description: ScRegSetValueExWFailureActions%%5
 
Error: (07/03/2013 01:03:46 AM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058
 
Error: (07/03/2013 01:03:46 AM) (Source: Service Control Manager) (User: )
Description: Windows Firewall5 (0x5)
 
 
Microsoft Office Sessions:
=========================
 
CodeIntegrity Errors:
===================================
  Date: 2013-07-02 23:49:56.175
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-07-02 23:49:55.726
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-07-02 23:49:55.269
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-07-02 23:49:54.817
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-07-02 23:49:54.346
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-07-02 23:49:53.894
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-07-02 23:49:52.425
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-07-02 23:49:51.975
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-07-02 23:49:51.512
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-07-02 23:49:51.060
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
 
 
=========================== Installed Programs ============================
 
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.1.377)
Activation Assistant for the 2007 Microsoft Office suites
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0)
ActiveCheck component for HP Active Support Library (Version: 3.0.0.2)
Adobe AIR (Version: 1.0.4990)
Adobe AIR (Version: 1.0.8.4990)
Adobe Shockwave Player (Version: 11.0)
Apple Application Support (Version: 2.2.2)
Apple Mobile Device Support (Version: 6.0.0.59)
Apple Software Update (Version: 2.1.3.127)
Ask Toolbar Updater (Version: 1.2.2.23821)
Atheros Driver Installation Program (Version: 7.7)
AVG 2013 (Version: 13.0.2617)
AVG 2013 (Version: 13.0.2741)
AVG 2013 (Version: 2013.0.2741)
Conexant HD Audio (Version: 4.58.0.0)
Coupon Printer for Windows (Version: 5.0.0.0)
ESU for Microsoft Vista (Version: 1.0.0)
FilmFanatic Toolbar
Freeze.com NetAssistant (Version: 3.8.3)
FromDocToPDF Toolbar
Google Chrome (Version: 27.0.1453.116)
Google Update Helper (Version: 1.3.21.145)
HDAUDIO Soft Data Fax Modem with SmartCP
HP Active Support Library (Version: 3.1.9.1)
HP Customer Experience Enhancements (Version: 5.7.0.2664)
HP Deskjet 1000 J110 series Basic Device Software (Version: 22.0.334.0)
HP Deskjet 1000 J110 series Help (Version: 140.0.65.65)
HP Deskjet 1000 J110 series Product Improvement Study (Version: 22.0.334.0)
HP Doc Viewer (Version: 1.03.0001)
HP DVD Play 3.7 (Version: 3.7.0.5723)
HP Help and Support (Version: 2.1.2.0)
HP Photo Creations (Version: 1.0.0.3341)
HP Quick Launch Buttons 6.40 H2 (Version: 6.40 H2)
HP Total Care Advisor (Version: 2.4.4941.2798)
HP Update (Version: 5.003.001.001)
HP User Guides 0118 (Version: 1.01.0000)
HP Wireless Assistant (Version: 3.00 K2)
HPAsset component for HP Active Support Library (Version: 3.0.2.2)
HPNetworkAssistant (Version: 1.1.70)
Incredibar Toolbar  on IE
Intel® Graphics Media Accelerator Driver
inTuneMP3 (Version: 1.5.0)
iTunes (Version: 10.7.0.21)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 35 (Version: 6.0.350)
Java™ 6 Update 7 (Version: 1.6.0.70)
LightScribe System Software  1.14.17.1 (Version: 1.14.17.1)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Media Go (Version: 2.4.256)
Media Go Video Playback Engine 1.116.110.02030 (Version: 1.116.110.02030)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Live Search Toolbar (Version: 3.0.541.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Works (Version: 9.7.0621)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
NetAssistant (Version: 3.8.3)
Norton Internet Security (Version: 16.0.0.125)
PrivitizeVPN (Version: 1.0.0)
QuickTime (Version: 7.72.80.56)
Realtek 8169 8168 8101E 8102E Ethernet Driver (Version: 1.00.0000)
Realtek USB 2.0 Card Reader (Version: 3.0.1.3)
Sony Ericsson Update Engine (Version: 2.13.6.201305161305)
SweetIM for Messenger 3.6 (Version: 3.6.0002)
SweetIM Toolbar for Internet Explorer 4.2 (Version: 4.2.0004)
Synaptics Pointing Device Driver (Version: 11.1.3.0)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
uTorrentControl2 Toolbar (Version: 6.8.9.0)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 46%
Total physical RAM: 1978.45 MB
Available physical RAM: 1050.29 MB
Total Pagefile: 4206.15 MB
Available Pagefile: 3062.41 MB
Total Virtual: 2047.88 MB
Available Virtual: 1953.74 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:222.17 GB) (Free:145.05 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:10.72 GB) (Free:1.81 GB) NTFS
4 Drive f: (KINGSTON) (Removable) (Total:7.45 GB) (Free:7.44 GB) FAT32
 
========================= Users: ========================================
 
User accounts for \\*
 
Administrator            *          Guest                    
 
 
**** End of log ****
 

 



#5 UhOhThat'sBad

UhOhThat'sBad
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:08:11 PM

Posted 02 July 2013 - 11:31 PM

TDSS Killer Log:

 

01:50:02.0678 4456  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
01:50:02.0704 4456  ============================================================
01:50:02.0704 4456  Current date / time: 2013/07/03 01:50:02.0704
01:50:02.0704 4456  SystemInfo:
01:50:02.0704 4456  
01:50:02.0704 4456  OS Version: 6.0.6002 ServicePack: 2.0
01:50:02.0704 4456  Product type: Workstation
01:50:02.0704 4456  ComputerName: *
01:50:02.0705 4456  UserName: *
01:50:02.0705 4456  Windows directory: C:\Windows
01:50:02.0705 4456  System windows directory: C:\Windows
01:50:02.0705 4456  Processor architecture: Intel x86
01:50:02.0705 4456  Number of processors: 2
01:50:02.0705 4456  Page size: 0x1000
01:50:02.0705 4456  Boot type: Normal boot
01:50:02.0705 4456  ============================================================
01:50:03.0989 4456  Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x276E3, SectorsPerTrack: 0x3F, TracksPerCylinder: 0x30, Type 'K0', Flags 0x00000050
01:50:04.0013 4456  Drive \Device\Harddisk1\DR1 - Size: 0x1DE000000 (7.47 Gb), SectorSize: 0x200, Cylinders: 0x3CE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
01:50:04.0014 4456  ============================================================
01:50:04.0014 4456  \Device\Harddisk0\DR0:
01:50:04.0015 4456  MBR partitions:
01:50:04.0015 4456  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1BC55000
01:50:04.0015 4456  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1BC55800, BlocksNum 0x156E800
01:50:04.0015 4456  \Device\Harddisk1\DR1:
01:50:04.0016 4456  MBR partitions:
01:50:04.0016 4456  \Device\Harddisk1\DR1\Partition1: MBR, Type 0xC, StartLBA 0x890, BlocksNum 0xEEF770
01:50:04.0016 4456  ============================================================
01:50:04.0041 4456  C: <-> \Device\Harddisk0\DR0\Partition1
01:50:04.0087 4456  D: <-> \Device\Harddisk0\DR0\Partition2
01:50:04.0088 4456  ============================================================
01:50:04.0088 4456  Initialize success
01:50:04.0088 4456  ============================================================
01:50:28.0880 5736  ============================================================
01:50:28.0880 5736  Scan started
01:50:28.0880 5736  Mode: Manual; TDLFS; 
01:50:28.0880 5736  ============================================================
01:50:29.0330 5736  ================ Scan system memory ========================
01:50:29.0330 5736  System memory - ok
01:50:29.0331 5736  ================ Scan services =============================
01:50:29.0507 5736  [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI            C:\Windows\system32\drivers\acpi.sys
01:50:29.0513 5736  ACPI - ok
01:50:29.0540 5736  [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
01:50:29.0549 5736  adp94xx - ok
01:50:29.0561 5736  [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci         C:\Windows\system32\drivers\adpahci.sys
01:50:29.0569 5736  adpahci - ok
01:50:29.0586 5736  [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
01:50:29.0589 5736  adpu160m - ok
01:50:29.0602 5736  [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
01:50:29.0606 5736  adpu320 - ok
01:50:29.0633 5736  [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
01:50:29.0634 5736  AeLookupSvc - ok
01:50:29.0673 5736  [ 3911B972B55FEA0478476B2E777B29FA ] AFD             C:\Windows\system32\drivers\afd.sys
01:50:29.0679 5736  AFD - ok
01:50:29.0698 5736  [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440          C:\Windows\system32\drivers\agp440.sys
01:50:29.0701 5736  agp440 - ok
01:50:29.0724 5736  [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
01:50:29.0726 5736  aic78xx - ok
01:50:29.0746 5736  [ A1545B731579895D8CC44FC0481C1192 ] ALG             C:\Windows\System32\alg.exe
01:50:29.0747 5736  ALG - ok
01:50:29.0765 5736  [ 3D76FDA1A10ACC3DC84728F55C29B6D4 ] aliide          C:\Windows\system32\drivers\aliide.sys
01:50:29.0767 5736  aliide - ok
01:50:29.0788 5736  [ C47344BC706E5F0B9DCE369516661578 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
01:50:29.0790 5736  amdagp - ok
01:50:29.0796 5736  [ 5B92E7839F5A1FBC1B39DE67758AD6F8 ] amdide          C:\Windows\system32\drivers\amdide.sys
01:50:29.0799 5736  amdide - ok
01:50:29.0822 5736  [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
01:50:29.0824 5736  AmdK7 - ok
01:50:29.0843 5736  [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
01:50:29.0845 5736  AmdK8 - ok
01:50:29.0867 5736  [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo         C:\Windows\System32\appinfo.dll
01:50:29.0869 5736  Appinfo - ok
01:50:29.0933 5736  [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
01:50:29.0934 5736  Apple Mobile Device - ok
01:50:29.0949 5736  [ 5D2888182FB46632511ACEE92FDAD522 ] arc             C:\Windows\system32\drivers\arc.sys
01:50:29.0952 5736  arc - ok
01:50:29.0967 5736  [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
01:50:29.0970 5736  arcsas - ok
01:50:29.0991 5736  [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
01:50:29.0993 5736  AsyncMac - ok
01:50:30.0024 5736  [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi           C:\Windows\system32\drivers\atapi.sys
01:50:30.0025 5736  atapi - ok
01:50:30.0079 5736  [ 8AEFD56986964BBAE02B790971F2ABAF ] athr            C:\Windows\system32\DRIVERS\athr.sys
01:50:30.0100 5736  athr - ok
01:50:30.0138 5736  [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
01:50:30.0142 5736  AudioEndpointBuilder - ok
01:50:30.0151 5736  [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv        C:\Windows\System32\Audiosrv.dll
01:50:30.0154 5736  Audiosrv - ok
01:50:30.0218 5736  [ D45B7995761253A92AB071D576114F28 ] AVG Security Toolbar Service C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe
01:50:30.0222 5736  AVG Security Toolbar Service - ok
01:50:30.0397 5736  [ B41F0E54105801538D56623271A0AE49 ] AVGIDSAgent     C:\Program Files\AVG\AVG2013\avgidsagent.exe
01:50:30.0529 5736  AVGIDSAgent - ok
01:50:30.0571 5736  [ 2F47851015D8837976E481F6DAA46A67 ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdriverx.sys
01:50:30.0575 5736  AVGIDSDriver - ok
01:50:30.0617 5736  [ 303BDE0DCDC04CE597C6C1CD06C6F186 ] AVGIDSHX        C:\Windows\system32\DRIVERS\avgidshx.sys
01:50:30.0619 5736  AVGIDSHX - ok
01:50:30.0635 5736  [ A8DE230CC8536790CA07D37FBCD87A74 ] AVGIDSShim      C:\Windows\system32\DRIVERS\avgidsshimx.sys
01:50:30.0638 5736  AVGIDSShim - ok
01:50:30.0659 5736  [ D53D35031365A0ECCB1DC1BC1B15B18E ] Avgldx86        C:\Windows\system32\DRIVERS\avgldx86.sys
01:50:30.0665 5736  Avgldx86 - ok
01:50:30.0690 5736  [ 95889A9D23F3133250FA8AD13C982D58 ] Avglogx         C:\Windows\system32\DRIVERS\avglogx.sys
01:50:30.0695 5736  Avglogx - ok
01:50:30.0712 5736  [ 6DF7236D3A16C8417FF72F2EB2ADD244 ] Avgmfx86        C:\Windows\system32\DRIVERS\avgmfx86.sys
01:50:30.0715 5736  Avgmfx86 - ok
01:50:30.0730 5736  [ F3D57358DE0B8B3491013C615754A7C7 ] Avgrkx86        C:\Windows\system32\DRIVERS\avgrkx86.sys
01:50:30.0733 5736  Avgrkx86 - ok
01:50:30.0754 5736  [ BA73B38E9033FC6018DB736B635706AE ] Avgtdix         C:\Windows\system32\DRIVERS\avgtdix.sys
01:50:30.0759 5736  Avgtdix - ok
01:50:30.0805 5736  [ 0D2EB149AFF89A307E5D82D0A2B78439 ] avgwd           C:\Program Files\AVG\AVG2013\avgwdsvc.exe
01:50:30.0809 5736  avgwd - ok
01:50:30.0843 5736  [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep            C:\Windows\system32\drivers\Beep.sys
01:50:30.0845 5736  Beep - ok
01:50:30.0882 5736  [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE             C:\Windows\System32\bfe.dll
01:50:30.0890 5736  BFE - ok
01:50:30.0948 5736  [ 93952506C6D67330367F7E7934B6A02F ] BITS            C:\Windows\System32\qmgr.dll
01:50:30.0966 5736  BITS - ok
01:50:30.0982 5736  [ D4DF28447741FD3D953526E33A617397 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
01:50:30.0985 5736  blbdrive - ok
01:50:31.0024 5736  [ 35F376253F687BDE63976CCB3F2108CA ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
01:50:31.0027 5736  bowser - ok
01:50:31.0051 5736  [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
01:50:31.0053 5736  BrFiltLo - ok
01:50:31.0075 5736  [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
01:50:31.0077 5736  BrFiltUp - ok
01:50:31.0110 5736  [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser         C:\Windows\System32\browser.dll
01:50:31.0112 5736  Browser - ok
01:50:31.0135 5736  [ B304E75CFF293029EDDF094246747113 ] Brserid         C:\Windows\system32\drivers\brserid.sys
01:50:31.0140 5736  Brserid - ok
01:50:31.0161 5736  [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
01:50:31.0163 5736  BrSerWdm - ok
01:50:31.0183 5736  [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
01:50:31.0185 5736  BrUsbMdm - ok
01:50:31.0220 5736  [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
01:50:31.0222 5736  BrUsbSer - ok
01:50:31.0242 5736  [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
01:50:31.0244 5736  BTHMODEM - ok
01:50:31.0277 5736  [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
01:50:31.0281 5736  cdfs - ok
01:50:31.0317 5736  [ 6B4BFFB9BECD728097024276430DB314 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
01:50:31.0319 5736  cdrom - ok
01:50:31.0346 5736  [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc     C:\Windows\System32\certprop.dll
01:50:31.0348 5736  CertPropSvc - ok
01:50:31.0361 5736  [ E5D4133F37219DBCFE102BC61072589D ] circlass        C:\Windows\system32\drivers\circlass.sys
01:50:31.0363 5736  circlass - ok
01:50:31.0392 5736  [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS            C:\Windows\system32\CLFS.sys
01:50:31.0399 5736  CLFS - ok
01:50:31.0457 5736  [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
01:50:31.0460 5736  clr_optimization_v2.0.50727_32 - ok
01:50:31.0538 5736  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
01:50:31.0542 5736  clr_optimization_v4.0.30319_32 - ok
01:50:31.0560 5736  [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
01:50:31.0563 5736  CmBatt - ok
01:50:31.0583 5736  [ D36372A6EA6805EFBE8884D10772313F ] cmdide          C:\Windows\system32\drivers\cmdide.sys
01:50:31.0585 5736  cmdide - ok
01:50:31.0620 5736  [ 1ADF6F4852E7D7E2E8AC481BDB970586 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT32.sys
01:50:31.0626 5736  CnxtHdAudService - ok
01:50:31.0676 5736  [ 7795F8CEBC284A426B53F541E538695F ] Com4QLBEx       C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
01:50:31.0680 5736  Com4QLBEx - ok
01:50:31.0688 5736  [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
01:50:31.0691 5736  Compbatt - ok
01:50:31.0704 5736  COMSysApp - ok
01:50:31.0729 5736  [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
01:50:31.0732 5736  crcdisk - ok
01:50:31.0762 5736  [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
01:50:31.0765 5736  Crusoe - ok
01:50:31.0797 5736  [ 58CEF2D243575512657452B9E89A2E1F ] CryptSvc        C:\Windows\system32\cryptsvc.dll
01:50:31.0800 5736  CryptSvc - ok
01:50:31.0852 5736  [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch      C:\Windows\system32\rpcss.dll
01:50:31.0863 5736  DcomLaunch - ok
01:50:31.0903 5736  [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
01:50:31.0905 5736  DfsC - ok
01:50:31.0981 5736  [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR            C:\Windows\system32\DFSR.exe
01:50:32.0024 5736  DFSR - ok
01:50:32.0057 5736  [ 9028559C132146FB75EB7ACF384B086A ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
01:50:32.0061 5736  Dhcp - ok
01:50:32.0103 5736  [ 5D4AEFC3386920236A548271F8F1AF6A ] disk            C:\Windows\system32\drivers\disk.sys
01:50:32.0106 5736  disk - ok
01:50:32.0142 5736  [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache        C:\Windows\System32\dnsrslvr.dll
01:50:32.0144 5736  Dnscache - ok
01:50:32.0179 5736  [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc         C:\Windows\System32\dot3svc.dll
01:50:32.0183 5736  dot3svc - ok
01:50:32.0215 5736  [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS             C:\Windows\system32\dps.dll
01:50:32.0218 5736  DPS - ok
01:50:32.0249 5736  [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
01:50:32.0251 5736  drmkaud - ok
01:50:32.0291 5736  [ 5DE0FAEC9E5D1AAE74F8568897891A01 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
01:50:32.0305 5736  DXGKrnl - ok
01:50:32.0333 5736  [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
01:50:32.0337 5736  E1G60 - ok
01:50:32.0379 5736  [ C0B95E40D85CD807D614E264248A45B9 ] EapHost         C:\Windows\System32\eapsvc.dll
01:50:32.0381 5736  EapHost - ok
01:50:32.0431 5736  [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache          C:\Windows\system32\drivers\ecache.sys
01:50:32.0435 5736  Ecache - ok
01:50:32.0493 5736  [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
01:50:32.0498 5736  ehRecvr - ok
01:50:32.0512 5736  [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched         C:\Windows\ehome\ehsched.exe
01:50:32.0515 5736  ehSched - ok
01:50:32.0529 5736  [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart         C:\Windows\ehome\ehstart.dll
01:50:32.0530 5736  ehstart - ok
01:50:32.0558 5736  [ 23B62471681A124889978F6295B3F4C6 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
01:50:32.0567 5736  elxstor - ok
01:50:32.0626 5736  [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
01:50:32.0635 5736  EMDMgmt - ok
01:50:32.0650 5736  [ 3DB974F3935483555D7148663F726C61 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
01:50:32.0652 5736  ErrDev - ok
01:50:32.0698 5736  [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem     C:\Windows\system32\es.dll
01:50:32.0703 5736  EventSystem - ok
01:50:32.0742 5736  [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat           C:\Windows\system32\drivers\exfat.sys
01:50:32.0747 5736  exfat - ok
01:50:32.0778 5736  [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
01:50:32.0782 5736  fastfat - ok
01:50:32.0813 5736  [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
01:50:32.0816 5736  fdc - ok
01:50:32.0840 5736  [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost         C:\Windows\system32\fdPHost.dll
01:50:32.0842 5736  fdPHost - ok
01:50:32.0857 5736  [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub        C:\Windows\system32\fdrespub.dll
01:50:32.0861 5736  FDResPub - ok
01:50:32.0887 5736  [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
01:50:32.0893 5736  FileInfo - ok
01:50:32.0908 5736  [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
01:50:32.0910 5736  Filetrace - ok
01:50:32.0931 5736  [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
01:50:32.0933 5736  flpydisk - ok
01:50:32.0973 5736  [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
01:50:32.0976 5736  FltMgr - ok
01:50:33.0023 5736  [ 8CE364388C8ECA59B14B539179276D44 ] FontCache       C:\Windows\system32\FntCache.dll
01:50:33.0039 5736  FontCache - ok
01:50:33.0090 5736  [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
01:50:33.0092 5736  FontCache3.0.0.0 - ok
01:50:33.0152 5736  [ 622FCF264119F7DF127BE353F796B319 ] FromDocToPDF_65Service C:\PROGRA~1\FROMDO~2\bar\1.bin\65barsvc.exe
01:50:33.0154 5736  FromDocToPDF_65Service - ok
01:50:33.0184 5736  [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
01:50:33.0186 5736  Fs_Rec - ok
01:50:33.0216 5736  [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
01:50:33.0219 5736  gagp30kx - ok
01:50:33.0264 5736  [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
01:50:33.0267 5736  GEARAspiWDM - ok
01:50:33.0322 5736  [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc           C:\Windows\System32\gpsvc.dll
01:50:33.0336 5736  gpsvc - ok
01:50:33.0389 5736  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
01:50:33.0393 5736  gupdate - ok
01:50:33.0405 5736  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
01:50:33.0407 5736  gupdatem - ok
01:50:33.0456 5736  [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
01:50:33.0461 5736  HdAudAddService - ok
01:50:33.0506 5736  [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
01:50:33.0518 5736  HDAudBus - ok
01:50:33.0531 5736  [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth          C:\Windows\system32\drivers\hidbth.sys
01:50:33.0534 5736  HidBth - ok
01:50:33.0551 5736  [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr           C:\Windows\system32\drivers\hidir.sys
01:50:33.0554 5736  HidIr - ok
01:50:33.0606 5736  [ 84067081F3318162797385E11A8F0582 ] hidserv         C:\Windows\system32\hidserv.dll
01:50:33.0609 5736  hidserv - ok
01:50:33.0638 5736  [ CCA4B519B17E23A00B826C55716809CC ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
01:50:33.0640 5736  HidUsb - ok
01:50:33.0663 5736  [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc          C:\Windows\system32\kmsvc.dll
01:50:33.0667 5736  hkmsvc - ok
01:50:33.0712 5736  [ A19B0BB5A7EB6DF2DD4A0711D36955EE ] HP Health Check Service c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
01:50:33.0715 5736  HP Health Check Service - ok
01:50:33.0749 5736  [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
01:50:33.0751 5736  HpCISSs - ok
01:50:33.0782 5736  [ 35956140E686D53BF676CF0C778880FC ] HpqKbFiltr      C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
01:50:33.0784 5736  HpqKbFiltr - ok
01:50:33.0804 5736  [ 1665C7121A026DF10C903DB9BC5E9D43 ] hpqwmiex        C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
01:50:33.0808 5736  hpqwmiex - ok
01:50:33.0855 5736  [ CC267848CB3508E72762BE65734E764D ] HSF_DPV         C:\Windows\system32\DRIVERS\HSX_DPV.sys
01:50:33.0878 5736  HSF_DPV - ok
01:50:33.0901 5736  [ A2882945CC4B6E3E4E9E825590438888 ] HSXHWAZL        C:\Windows\system32\DRIVERS\HSXHWAZL.sys
01:50:33.0908 5736  HSXHWAZL - ok
01:50:33.0958 5736  [ F870AA3E254628EBEAFE754108D664DE ] HTTP            C:\Windows\system32\drivers\HTTP.sys
01:50:33.0967 5736  HTTP - ok
01:50:33.0993 5736  [ C6B032D69650985468160FC9937CF5B4 ] i2omp           C:\Windows\system32\drivers\i2omp.sys
01:50:33.0995 5736  i2omp - ok
01:50:34.0011 5736  [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
01:50:34.0014 5736  i8042prt - ok
01:50:34.0044 5736  [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
01:50:34.0050 5736  iaStorV - ok
01:50:34.0102 5736  [ 6F95324909B502E2651442C1548AB12F ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
01:50:34.0106 5736  IDriverT - ok
01:50:34.0182 5736  [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
01:50:34.0203 5736  idsvc - ok
01:50:34.0449 5736  [ 8266AE06DF974E5BA047B3E9E9E70B3F ] igfx            C:\Windows\system32\DRIVERS\igdkmd32.sys
01:50:34.0650 5736  igfx - ok
01:50:34.0685 5736  [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
01:50:34.0687 5736  iirsp - ok
01:50:34.0724 5736  [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT          C:\Windows\System32\ikeext.dll
01:50:34.0733 5736  IKEEXT - ok
01:50:34.0769 5736  [ C7E7E43CBD34D3B0A0156B51B917DFCC ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
01:50:34.0773 5736  IntcHdmiAddService - ok
01:50:34.0790 5736  [ DD512A049BD7B4BCE8A83554C5EFF2C1 ] intelide        C:\Windows\system32\drivers\intelide.sys
01:50:34.0792 5736  intelide - ok
01:50:34.0823 5736  [ 224191001E78C89DFA78924C3EA595FF ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
01:50:34.0825 5736  intelppm - ok
01:50:34.0852 5736  [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
01:50:34.0855 5736  IPBusEnum - ok
01:50:34.0868 5736  [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
01:50:34.0870 5736  IpFilterDriver - ok
01:50:34.0907 5736  [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
01:50:34.0913 5736  iphlpsvc - ok
01:50:34.0921 5736  IpInIp - ok
01:50:34.0941 5736  [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
01:50:34.0945 5736  IPMIDRV - ok
01:50:34.0959 5736  [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
01:50:34.0963 5736  IPNAT - ok
01:50:35.0026 5736  [ BC0EA61246F8D940FBC5F652D337D6BD ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
01:50:35.0042 5736  iPod Service - ok
01:50:35.0068 5736  [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
01:50:35.0070 5736  IRENUM - ok
01:50:35.0085 5736  [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
01:50:35.0088 5736  isapnp - ok
01:50:35.0137 5736  [ 232FA340531D940AAC623B121A595034 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
01:50:35.0140 5736  iScsiPrt - ok
01:50:35.0159 5736  [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
01:50:35.0162 5736  iteatapi - ok
01:50:35.0172 5736  [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid         C:\Windows\system32\drivers\iteraid.sys
01:50:35.0175 5736  iteraid - ok
01:50:35.0192 5736  [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
01:50:35.0194 5736  kbdclass - ok
01:50:35.0210 5736  [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
01:50:35.0213 5736  kbdhid - ok
01:50:35.0240 5736  [ A3E186B4B935905B829219502557314E ] KeyIso          C:\Windows\system32\lsass.exe
01:50:35.0243 5736  KeyIso - ok
01:50:35.0274 5736  [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
01:50:35.0284 5736  KSecDD - ok
01:50:35.0324 5736  [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm           C:\Windows\system32\msdtckrm.dll
01:50:35.0334 5736  KtmRm - ok
01:50:35.0376 5736  [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer    C:\Windows\system32\srvsvc.dll
01:50:35.0381 5736  LanmanServer - ok
01:50:35.0410 5736  [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
01:50:35.0416 5736  LanmanWorkstation - ok
01:50:35.0458 5736  [ ABF90FC5A127F481219B873C1B8DFC1C ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
01:50:35.0460 5736  LightScribeService - ok
01:50:35.0475 5736  [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
01:50:35.0478 5736  lltdio - ok
01:50:35.0520 5736  [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
01:50:35.0527 5736  lltdsvc - ok
01:50:35.0552 5736  [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts         C:\Windows\System32\lmhsvc.dll
01:50:35.0555 5736  lmhosts - ok
01:50:35.0584 5736  [ C7E15E82879BF3235B559563D4185365 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
01:50:35.0588 5736  LSI_FC - ok
01:50:35.0603 5736  [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
01:50:35.0606 5736  LSI_SAS - ok
01:50:35.0619 5736  [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
01:50:35.0622 5736  LSI_SCSI - ok
01:50:35.0634 5736  [ 8F5C7426567798E62A3B3614965D62CC ] luafv           C:\Windows\system32\drivers\luafv.sys
01:50:35.0637 5736  luafv - ok
01:50:35.0671 5736  [ F2BD1DFC573A5857A8ED61822831627E ] mbamchameleon   C:\Windows\system32\drivers\mbamchameleon.sys
01:50:35.0674 5736  mbamchameleon - ok
01:50:35.0720 5736  [ 0DB7527DB188C7D967A37BB51BBF3963 ] MBAMSwissArmy   C:\Windows\system32\drivers\mbamswissarmy.sys
01:50:35.0721 5736  MBAMSwissArmy - ok
01:50:35.0750 5736  [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
01:50:35.0753 5736  Mcx2Svc - ok
01:50:35.0777 5736  [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk         C:\Windows\system32\DRIVERS\mdmxsdk.sys
01:50:35.0778 5736  mdmxsdk - ok
01:50:35.0798 5736  [ 0001CE609D66632FA17B84705F658879 ] megasas         C:\Windows\system32\drivers\megasas.sys
01:50:35.0800 5736  megasas - ok
01:50:35.0824 5736  [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR          C:\Windows\system32\drivers\megasr.sys
01:50:35.0835 5736  MegaSR - ok
01:50:35.0847 5736  [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS           C:\Windows\system32\mmcss.dll
01:50:35.0851 5736  MMCSS - ok
01:50:35.0864 5736  [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem           C:\Windows\system32\drivers\modem.sys
01:50:35.0866 5736  Modem - ok
01:50:35.0882 5736  [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
01:50:35.0884 5736  monitor - ok
01:50:35.0904 5736  [ 5BF6A1326A335C5298477754A506D263 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
01:50:35.0906 5736  mouclass - ok
01:50:35.0922 5736  [ 93B8D4869E12CFBE663915502900876F ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
01:50:35.0924 5736  mouhid - ok
01:50:35.0935 5736  [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
01:50:35.0938 5736  MountMgr - ok
01:50:35.0945 5736  [ 511D011289755DD9F9A7579FB0B064E6 ] mpio            C:\Windows\system32\drivers\mpio.sys
01:50:35.0949 5736  mpio - ok
01:50:35.0965 5736  [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
01:50:35.0968 5736  mpsdrv - ok
01:50:36.0005 5736  [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc          C:\Windows\system32\mpssvc.dll
01:50:36.0016 5736  MpsSvc - ok
01:50:36.0045 5736  [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
01:50:36.0048 5736  Mraid35x - ok
01:50:36.0074 5736  [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
01:50:36.0078 5736  MRxDAV - ok
01:50:36.0110 5736  [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
01:50:36.0113 5736  mrxsmb - ok
01:50:36.0141 5736  [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
01:50:36.0145 5736  mrxsmb10 - ok
01:50:36.0154 5736  [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
01:50:36.0157 5736  mrxsmb20 - ok
01:50:36.0197 5736  [ 5457DCFA7C0DA43522F4D9D4049C1472 ] msahci          C:\Windows\system32\drivers\msahci.sys
01:50:36.0199 5736  msahci - ok
01:50:36.0205 5736  [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
01:50:36.0208 5736  msdsm - ok
01:50:36.0231 5736  [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC           C:\Windows\System32\msdtc.exe
01:50:36.0235 5736  MSDTC - ok
01:50:36.0247 5736  [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
01:50:36.0249 5736  Msfs - ok
01:50:36.0273 5736  [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
01:50:36.0275 5736  msisadrv - ok
01:50:36.0304 5736  [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
01:50:36.0307 5736  MSiSCSI - ok
01:50:36.0312 5736  msiserver - ok
01:50:36.0353 5736  [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
01:50:36.0355 5736  MSKSSRV - ok
01:50:36.0388 5736  [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
01:50:36.0390 5736  MSPCLOCK - ok
01:50:36.0407 5736  [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
01:50:36.0409 5736  MSPQM - ok
01:50:36.0449 5736  [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
01:50:36.0453 5736  MsRPC - ok
01:50:36.0474 5736  [ E384487CB84BE41D09711C30CA79646C ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
01:50:36.0475 5736  mssmbios - ok
01:50:36.0481 5736  [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
01:50:36.0483 5736  MSTEE - ok
01:50:36.0502 5736  [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup             C:\Windows\system32\Drivers\mup.sys
01:50:36.0504 5736  Mup - ok
01:50:36.0554 5736  [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent        C:\Windows\system32\qagentRT.dll
01:50:36.0560 5736  napagent - ok
01:50:36.0594 5736  [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
01:50:36.0597 5736  NativeWifiP - ok
01:50:36.0646 5736  [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS            C:\Windows\system32\drivers\ndis.sys
01:50:36.0654 5736  NDIS - ok
01:50:36.0685 5736  [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
01:50:36.0687 5736  NdisTapi - ok
01:50:36.0695 5736  [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
01:50:36.0696 5736  Ndisuio - ok
01:50:36.0730 5736  [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
01:50:36.0733 5736  NdisWan - ok
01:50:36.0744 5736  [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
01:50:36.0746 5736  NDProxy - ok
01:50:36.0769 5736  [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
01:50:36.0771 5736  NetBIOS - ok
01:50:36.0802 5736  [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
01:50:36.0806 5736  netbt - ok
01:50:36.0812 5736  [ A3E186B4B935905B829219502557314E ] Netlogon        C:\Windows\system32\lsass.exe
01:50:36.0815 5736  Netlogon - ok
01:50:36.0841 5736  [ C8052711DAECC48B982434C5116CA401 ] Netman          C:\Windows\System32\netman.dll
01:50:36.0847 5736  Netman - ok
01:50:36.0870 5736  [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm        C:\Windows\System32\netprofm.dll
01:50:36.0877 5736  netprofm - ok
01:50:36.0908 5736  [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
01:50:36.0911 5736  NetTcpPortSharing - ok
01:50:37.0013 5736  [ 35D5458D9A1B26B2005ABFFBF4C1C5E7 ] NETw3v32        C:\Windows\system32\DRIVERS\NETw3v32.sys
01:50:37.0061 5736  NETw3v32 - ok
01:50:37.0092 5736  [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
01:50:37.0094 5736  nfrd960 - ok
01:50:37.0142 5736  [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc          C:\Windows\System32\nlasvc.dll
01:50:37.0147 5736  NlaSvc - ok
01:50:37.0171 5736  [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
01:50:37.0178 5736  Npfs - ok
01:50:37.0201 5736  [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi             C:\Windows\system32\nsisvc.dll
01:50:37.0204 5736  nsi - ok
01:50:37.0222 5736  [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
01:50:37.0224 5736  nsiproxy - ok
01:50:37.0290 5736  [ 2C1121F2B87E9A6B12485DF53CD848C7 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
01:50:37.0313 5736  Ntfs - ok
01:50:37.0338 5736  [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
01:50:37.0341 5736  ntrigdigi - ok
01:50:37.0365 5736  [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null            C:\Windows\system32\drivers\Null.sys
01:50:37.0367 5736  Null - ok
01:50:37.0416 5736  [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
01:50:37.0419 5736  nvraid - ok
01:50:37.0427 5736  [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
01:50:37.0431 5736  nvstor - ok
01:50:37.0453 5736  [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
01:50:37.0456 5736  nv_agp - ok
01:50:37.0466 5736  NwlnkFlt - ok
01:50:37.0480 5736  NwlnkFwd - ok
01:50:37.0551 5736  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
01:50:37.0559 5736  odserv - ok
01:50:37.0594 5736  [ 790E27C3DB53410B40FF9EF2FD10A1D9 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
01:50:37.0597 5736  ohci1394 - ok
01:50:37.0679 5736  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
01:50:37.0688 5736  ose - ok
01:50:37.0735 5736  [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
01:50:37.0752 5736  p2pimsvc - ok
01:50:37.0771 5736  [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc          C:\Windows\system32\p2psvc.dll
01:50:37.0782 5736  p2psvc - ok
01:50:37.0805 5736  [ 0FA9B5055484649D63C303FE404E5F4D ] Parport         C:\Windows\system32\drivers\parport.sys
01:50:37.0809 5736  Parport - ok
01:50:37.0843 5736  [ B9C2B89F08670E159F7181891E449CD9 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
01:50:37.0845 5736  partmgr - ok
01:50:37.0866 5736  [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
01:50:37.0868 5736  Parvdm - ok
01:50:37.0891 5736  [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc          C:\Windows\System32\pcasvc.dll
01:50:37.0896 5736  PcaSvc - ok
01:50:37.0929 5736  [ 941DC1D19E7E8620F40BBC206981EFDB ] pci             C:\Windows\system32\drivers\pci.sys
01:50:37.0933 5736  pci - ok
01:50:37.0947 5736  [ 1D8B3D8DF8EB7FCF2F0AC02F9F947802 ] pciide          C:\Windows\system32\drivers\pciide.sys
01:50:37.0950 5736  pciide - ok
01:50:37.0973 5736  [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
01:50:37.0978 5736  pcmcia - ok
01:50:38.0011 5736  [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
01:50:38.0032 5736  PEAUTH - ok
01:50:38.0121 5736  [ B1689DF169143F57053F795390C99DB3 ] pla             C:\Windows\system32\pla.dll
01:50:38.0153 5736  pla - ok
01:50:38.0183 5736  [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
01:50:38.0190 5736  PlugPlay - ok
01:50:38.0224 5736  [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
01:50:38.0234 5736  PNRPAutoReg - ok
01:50:38.0250 5736  [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
01:50:38.0260 5736  PNRPsvc - ok
01:50:38.0318 5736  [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
01:50:38.0327 5736  PolicyAgent - ok
01:50:38.0363 5736  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
01:50:38.0366 5736  PptpMiniport - ok
01:50:38.0403 5736  [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor       C:\Windows\system32\drivers\processr.sys
01:50:38.0406 5736  Processor - ok
01:50:38.0437 5736  [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc         C:\Windows\system32\profsvc.dll
01:50:38.0443 5736  ProfSvc - ok
01:50:38.0457 5736  [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
01:50:38.0460 5736  ProtectedStorage - ok
01:50:38.0493 5736  [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
01:50:38.0495 5736  PSched - ok
01:50:38.0534 5736  [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
01:50:38.0560 5736  ql2300 - ok
01:50:38.0581 5736  [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
01:50:38.0586 5736  ql40xx - ok
01:50:38.0611 5736  [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE           C:\Windows\system32\qwave.dll
01:50:38.0619 5736  QWAVE - ok
01:50:38.0630 5736  [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
01:50:38.0632 5736  QWAVEdrv - ok
01:50:38.0645 5736  [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
01:50:38.0647 5736  RasAcd - ok
01:50:38.0669 5736  [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto         C:\Windows\System32\rasauto.dll
01:50:38.0674 5736  RasAuto - ok
01:50:38.0694 5736  [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
01:50:38.0706 5736  Rasl2tp - ok
01:50:38.0745 5736  [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan          C:\Windows\System32\rasmans.dll
01:50:38.0752 5736  RasMan - ok
01:50:38.0785 5736  [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
01:50:38.0787 5736  RasPppoe - ok
01:50:38.0823 5736  [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
01:50:38.0827 5736  RasSstp - ok
01:50:38.0877 5736  [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
01:50:38.0884 5736  rdbss - ok
01:50:38.0899 5736  [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
01:50:38.0901 5736  RDPCDD - ok
01:50:38.0925 5736  [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
01:50:38.0931 5736  rdpdr - ok
01:50:38.0942 5736  [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
01:50:38.0944 5736  RDPENCDD - ok
01:50:38.0993 5736  [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
01:50:38.0998 5736  RDPWD - ok
01:50:39.0047 5736  [ 0D362785BEF9BDF5A6E1F4628D06716D ] Recovery Service for Windows C:\Program Files\SMINST\BLService.exe
01:50:39.0056 5736  Recovery Service for Windows - ok
01:50:39.0082 5736  [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess    C:\Windows\System32\mprdim.dll
01:50:39.0086 5736  RemoteAccess - ok
01:50:39.0120 5736  [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry  C:\Windows\system32\regsvc.dll
01:50:39.0126 5736  RemoteRegistry - ok
01:50:39.0168 5736  [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator      C:\Windows\system32\locator.exe
01:50:39.0171 5736  RpcLocator - ok
01:50:39.0197 5736  [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs           C:\Windows\system32\rpcss.dll
01:50:39.0208 5736  RpcSs - ok
01:50:39.0236 5736  [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
01:50:39.0239 5736  rspndr - ok
01:50:39.0265 5736  [ 125C504A34D0A2E152517E342E7E432C ] RTL8169         C:\Windows\system32\DRIVERS\Rtlh86.sys
01:50:39.0269 5736  RTL8169 - ok
01:50:39.0297 5736  [ 8DAB5975B5C7923D61506A48E251DBAD ] RTSTOR          C:\Windows\system32\drivers\RTSTOR.SYS
01:50:39.0299 5736  RTSTOR - ok
01:50:39.0313 5736  [ A3E186B4B935905B829219502557314E ] SamSs           C:\Windows\system32\lsass.exe
01:50:39.0316 5736  SamSs - ok
01:50:39.0335 5736  [ 3CE8F073A557E172B330109436984E30 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
01:50:39.0339 5736  sbp2port - ok
01:50:39.0373 5736  [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
01:50:39.0378 5736  SCardSvr - ok
01:50:39.0425 5736  [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule        C:\Windows\system32\schedsvc.dll
01:50:39.0440 5736  Schedule - ok
01:50:39.0458 5736  [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc     C:\Windows\System32\certprop.dll
01:50:39.0460 5736  SCPolicySvc - ok
01:50:39.0479 5736  [ 126EA89BCC413EE45E3004FB0764888F ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
01:50:39.0483 5736  sdbus - ok
01:50:39.0510 5736  [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
01:50:39.0515 5736  SDRSVC - ok
01:50:39.0530 5736  [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
01:50:39.0532 5736  secdrv - ok
01:50:39.0549 5736  [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon        C:\Windows\system32\seclogon.dll
01:50:39.0554 5736  seclogon - ok
01:50:39.0568 5736  [ A9BBAB5759771E523F55563D6CBE140F ] SENS            C:\Windows\System32\sens.dll
01:50:39.0573 5736  SENS - ok
01:50:39.0589 5736  [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum         C:\Windows\system32\drivers\serenum.sys
01:50:39.0591 5736  Serenum - ok
01:50:39.0607 5736  [ C70D69A918B178D3C3B06339B40C2E1B ] Serial          C:\Windows\system32\drivers\serial.sys
01:50:39.0610 5736  Serial - ok
01:50:39.0623 5736  [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
01:50:39.0625 5736  sermouse - ok
01:50:39.0653 5736  [ D2193326F729B163125610DBF3E17D57 ] SessionEnv      C:\Windows\system32\sessenv.dll
01:50:39.0658 5736  SessionEnv - ok
01:50:39.0687 5736  [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
01:50:39.0689 5736  sffdisk - ok
01:50:39.0712 5736  [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
01:50:39.0714 5736  sffp_mmc - ok
01:50:39.0738 5736  [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
01:50:39.0741 5736  sffp_sd - ok
01:50:39.0763 5736  [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
01:50:39.0765 5736  sfloppy - ok
01:50:39.0830 5736  [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
01:50:39.0838 5736  SharedAccess - ok
01:50:39.0884 5736  [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
01:50:39.0891 5736  ShellHWDetection - ok
01:50:39.0913 5736  [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
01:50:39.0915 5736  sisagp - ok
01:50:39.0944 5736  [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
01:50:39.0947 5736  SiSRaid2 - ok
01:50:39.0963 5736  [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
01:50:39.0966 5736  SiSRaid4 - ok
01:50:40.0080 5736  [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc           C:\Windows\system32\SLsvc.exe
01:50:40.0141 5736  slsvc - ok
01:50:40.0177 5736  [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify      C:\Windows\system32\SLUINotify.dll
01:50:40.0181 5736  SLUINotify - ok
01:50:40.0212 5736  [ 7B75299A4D201D6A6533603D6914AB04 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
01:50:40.0216 5736  Smb - ok
01:50:40.0252 5736  [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
01:50:40.0256 5736  SNMPTRAP - ok
01:50:40.0278 5736  [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr           C:\Windows\system32\drivers\spldr.sys
01:50:40.0281 5736  spldr - ok
01:50:40.0321 5736  [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler         C:\Windows\System32\spoolsv.exe
01:50:40.0326 5736  Spooler - ok
01:50:40.0373 5736  [ 41987F9FC0E61ADF54F581E15029AD91 ] srv             C:\Windows\system32\DRIVERS\srv.sys
01:50:40.0382 5736  srv - ok
01:50:40.0417 5736  [ FF33AFF99564B1AA534F58868CBE41EF ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
01:50:40.0422 5736  srv2 - ok
01:50:40.0434 5736  [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
01:50:40.0438 5736  srvnet - ok
01:50:40.0486 5736  [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
01:50:40.0491 5736  SSDPSRV - ok
01:50:40.0503 5736  [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
01:50:40.0509 5736  SstpSvc - ok
01:50:40.0559 5736  [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc          C:\Windows\System32\wiaservc.dll
01:50:40.0568 5736  stisvc - ok
01:50:40.0595 5736  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
01:50:40.0597 5736  swenum - ok
01:50:40.0640 5736  [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv           C:\Windows\System32\swprv.dll
01:50:40.0647 5736  swprv - ok
01:50:40.0654 5736  [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
01:50:40.0657 5736  Symc8xx - ok
01:50:40.0677 5736  [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
01:50:40.0680 5736  Sym_hi - ok
01:50:40.0688 5736  [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
01:50:40.0691 5736  Sym_u3 - ok
01:50:40.0724 5736  [ 00B19F27858F56181EDB58B71A7C67A0 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
01:50:40.0737 5736  SynTP - ok
01:50:40.0799 5736  [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain         C:\Windows\system32\sysmain.dll
01:50:40.0812 5736  SysMain - ok
01:50:40.0835 5736  [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
01:50:40.0840 5736  TabletInputService - ok
01:50:40.0883 5736  [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv         C:\Windows\System32\tapisrv.dll
01:50:40.0892 5736  TapiSrv - ok
01:50:40.0913 5736  [ CB05822CD9CC6C688168E113C603DBE7 ] TBS             C:\Windows\System32\tbssvc.dll
01:50:40.0918 5736  TBS - ok
01:50:40.0964 5736  [ 548E198BAE21EFC21F8B5F0C1728AD27 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
01:50:40.0985 5736  Tcpip - ok
01:50:41.0010 5736  [ 548E198BAE21EFC21F8B5F0C1728AD27 ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
01:50:41.0021 5736  Tcpip6 - ok
01:50:41.0052 5736  [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
01:50:41.0055 5736  tcpipreg - ok
01:50:41.0083 5736  [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
01:50:41.0085 5736  TDPIPE - ok
01:50:41.0099 5736  [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
01:50:41.0101 5736  TDTCP - ok
01:50:41.0126 5736  [ 76B06EB8A01FC8624D699E7045303E54 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
01:50:41.0129 5736  tdx - ok
01:50:41.0161 5736  [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
01:50:41.0163 5736  TermDD - ok
01:50:41.0192 5736  [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService     C:\Windows\System32\termsrv.dll
01:50:41.0201 5736  TermService - ok
01:50:41.0217 5736  [ C7230FBEE14437716701C15BE02C27B8 ] Themes          C:\Windows\system32\shsvcs.dll
01:50:41.0223 5736  Themes - ok
01:50:41.0236 5736  [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER     C:\Windows\system32\mmcss.dll
01:50:41.0239 5736  THREADORDER - ok
01:50:41.0255 5736  [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks          C:\Windows\System32\trkwks.dll
01:50:41.0259 5736  TrkWks - ok
01:50:41.0315 5736  [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
01:50:41.0316 5736  TrustedInstaller - ok
01:50:41.0339 5736  [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
01:50:41.0341 5736  tssecsrv - ok
01:50:41.0367 5736  [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
01:50:41.0369 5736  tunmp - ok
01:50:41.0401 5736  [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
01:50:41.0403 5736  tunnel - ok
01:50:41.0429 5736  [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35          C:\Windows\system32\drivers\uagp35.sys
01:50:41.0433 5736  uagp35 - ok
01:50:41.0464 5736  [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
01:50:41.0470 5736  udfs - ok
01:50:41.0510 5736  [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
01:50:41.0515 5736  UI0Detect - ok
01:50:41.0535 5736  [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
01:50:41.0538 5736  uliagpkx - ok
01:50:41.0579 5736  [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci         C:\Windows\system32\drivers\uliahci.sys
01:50:41.0586 5736  uliahci - ok
01:50:41.0603 5736  [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata          C:\Windows\system32\drivers\ulsata.sys
01:50:41.0607 5736  UlSata - ok
01:50:41.0620 5736  [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
01:50:41.0624 5736  ulsata2 - ok
01:50:41.0636 5736  [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
01:50:41.0639 5736  umbus - ok
01:50:41.0656 5736  [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost        C:\Windows\System32\upnphost.dll
01:50:41.0664 5736  upnphost - ok
01:50:41.0691 5736  [ 73B41F4EAD65F355962168D766AF0F2E ] USBAAPL         C:\Windows\system32\Drivers\usbaapl.sys
01:50:41.0693 5736  USBAAPL - ok
01:50:41.0720 5736  [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
01:50:41.0724 5736  usbccgp - ok
01:50:41.0755 5736  [ E9476E6C486E76BC4898074768FB7131 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
01:50:41.0758 5736  usbcir - ok
01:50:41.0772 5736  [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
01:50:41.0775 5736  usbehci - ok
01:50:41.0810 5736  [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
01:50:41.0815 5736  usbhub - ok
01:50:41.0836 5736  [ 38DBC7DD6CC5A72011F187425384388B ] usbohci         C:\Windows\system32\drivers\usbohci.sys
01:50:41.0838 5736  usbohci - ok
01:50:41.0863 5736  [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
01:50:41.0865 5736  usbprint - ok
01:50:41.0900 5736  [ A508C9BD8724980512136B039BBA65E9 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
01:50:41.0902 5736  usbscan - ok
01:50:41.0935 5736  [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
01:50:41.0938 5736  USBSTOR - ok
01:50:41.0960 5736  [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
01:50:41.0962 5736  usbuhci - ok
01:50:41.0992 5736  [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
01:50:41.0996 5736  usbvideo - ok
01:50:42.0035 5736  [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms           C:\Windows\System32\uxsms.dll
01:50:42.0037 5736  UxSms - ok
01:50:42.0078 5736  [ CD88D1B7776DC17A119049742EC07EB4 ] vds             C:\Windows\System32\vds.exe
01:50:42.0088 5736  vds - ok
01:50:42.0136 5736  [ 87B06E1F30B749A114F74622D013F8D4 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
01:50:42.0138 5736  vga - ok
01:50:42.0155 5736  [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave         C:\Windows\System32\drivers\vga.sys
01:50:42.0156 5736  VgaSave - ok
01:50:42.0178 5736  [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp          C:\Windows\system32\drivers\viaagp.sys
01:50:42.0180 5736  viaagp - ok
01:50:42.0203 5736  [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7           C:\Windows\system32\drivers\viac7.sys
01:50:42.0205 5736  ViaC7 - ok
01:50:42.0226 5736  [ EA1AA6E3ABB3C194FEBA12A46DE8CF2C ] viaide          C:\Windows\system32\drivers\viaide.sys
01:50:42.0227 5736  viaide - ok
01:50:42.0242 5736  [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
01:50:42.0244 5736  volmgr - ok
01:50:42.0288 5736  [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
01:50:42.0296 5736  volmgrx - ok
01:50:42.0352 5736  [ 786DB5771F05EF300390399F626BF30A ] volsnap         C:\Windows\system32\drivers\volsnap.sys
01:50:42.0357 5736  volsnap - ok
01:50:42.0387 5736  [ 587253E09325E6BF226B299774B728A9 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
01:50:42.0390 5736  vsmraid - ok
01:50:42.0445 5736  [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS             C:\Windows\system32\vssvc.exe
01:50:42.0459 5736  VSS - ok
01:50:42.0478 5736  [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time         C:\Windows\system32\w32time.dll
01:50:42.0484 5736  W32Time - ok
01:50:42.0510 5736  [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
01:50:42.0513 5736  WacomPen - ok
01:50:42.0544 5736  [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
01:50:42.0547 5736  Wanarp - ok
01:50:42.0553 5736  [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
01:50:42.0555 5736  Wanarpv6 - ok
01:50:42.0596 5736  [ A3CD60FD826381B49F03832590E069AF ] wcncsvc         C:\Windows\System32\wcncsvc.dll
01:50:42.0609 5736  wcncsvc - ok
01:50:42.0631 5736  [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
01:50:42.0636 5736  WcsPlugInService - ok
01:50:42.0649 5736  [ 78FE9542363F297B18C027B2D7E7C07F ] Wd              C:\Windows\system32\drivers\wd.sys
01:50:42.0651 5736  Wd - ok
01:50:42.0719 5736  [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
01:50:42.0732 5736  Wdf01000 - ok
01:50:42.0759 5736  [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
01:50:42.0765 5736  WdiServiceHost - ok
01:50:42.0771 5736  [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost   C:\Windows\system32\wdi.dll
01:50:42.0776 5736  WdiSystemHost - ok
01:50:42.0809 5736  [ 04C37D8107320312FBAE09926103D5E2 ] WebClient       C:\Windows\System32\webclnt.dll
01:50:42.0816 5736  WebClient - ok
01:50:42.0856 5736  [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc          C:\Windows\system32\wecsvc.dll
01:50:42.0863 5736  Wecsvc - ok
01:50:42.0890 5736  [ 670FF720071ED741206D69BD995EA453 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
01:50:42.0896 5736  wercplsupport - ok
01:50:42.0922 5736  [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc          C:\Windows\System32\WerSvc.dll
01:50:42.0925 5736  WerSvc - ok
01:50:42.0969 5736  [ 0ACD399F5DB3DF1B58903CF4949AB5A8 ] winachsf        C:\Windows\system32\DRIVERS\HSX_CNXT.sys
01:50:42.0982 5736  winachsf - ok
01:50:43.0050 5736  [ 4575AA12561C5648483403541D0D7F2B ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
01:50:43.0055 5736  WinDefend - ok
01:50:43.0062 5736  WinHttpAutoProxySvc - ok
01:50:43.0117 5736  [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
01:50:43.0119 5736  Winmgmt - ok
01:50:43.0174 5736  [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM           C:\Windows\system32\WsmSvc.dll
01:50:43.0197 5736  WinRM - ok
01:50:43.0273 5736  [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc         C:\Windows\System32\wlansvc.dll
01:50:43.0288 5736  Wlansvc - ok
01:50:43.0321 5736  [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
01:50:43.0323 5736  WmiAcpi - ok
01:50:43.0373 5736  [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
01:50:43.0377 5736  wmiApSrv - ok
01:50:43.0452 5736  [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
01:50:43.0469 5736  WMPNetworkSvc - ok
01:50:43.0510 5736  [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
01:50:43.0517 5736  WPCSvc - ok
01:50:43.0553 5736  [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
01:50:43.0559 5736  WPDBusEnum - ok
01:50:43.0575 5736  [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys
01:50:43.0578 5736  WpdUsb - ok
01:50:43.0670 5736  [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
01:50:43.0685 5736  WPFFontCache_v0400 - ok
01:50:43.0708 5736  [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
01:50:43.0711 5736  ws2ifsl - ok
01:50:43.0747 5736  [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc          C:\Windows\System32\wscsvc.dll
01:50:43.0752 5736  wscsvc - ok
01:50:43.0758 5736  WSearch - ok
01:50:43.0854 5736  [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv        C:\Windows\system32\wuaueng.dll
01:50:43.0892 5736  wuauserv - ok
01:50:43.0954 5736  [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
01:50:43.0956 5736  WudfPf - ok
01:50:43.0979 5736  [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
01:50:43.0985 5736  WUDFRd - ok
01:50:44.0046 5736  [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
01:50:44.0052 5736  wudfsvc - ok
01:50:44.0103 5736  [ DAB33CFA9DD24251AAA389FF36B64D4B ] XAudio          C:\Windows\system32\DRIVERS\xaudio.sys
01:50:44.0105 5736  XAudio - ok
01:50:44.0136 5736  [ CD5F291A1161F15896D1A4D63DAFF5DF ] XAudioService   C:\Windows\system32\DRIVERS\xaudio.exe
01:50:44.0143 5736  XAudioService - ok
01:50:44.0197 5736  [ 7D1F3B131D503EF43EE594B5A2B9B427 ] yukonwlh        C:\Windows\system32\DRIVERS\yk60x86.sys
01:50:44.0203 5736  yukonwlh - ok
01:50:44.0218 5736  ================ Scan global ===============================
01:50:44.0268 5736  [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
01:50:44.0313 5736  [ A508314231C49AEE86987CEA3EAECAD1 ] C:\Windows\system32\winsrv.dll
01:50:44.0333 5736  [ A508314231C49AEE86987CEA3EAECAD1 ] C:\Windows\system32\winsrv.dll
01:50:44.0377 5736  [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
01:50:44.0384 5736  [Global] - ok
01:50:44.0384 5736  ================ Scan MBR ==================================
01:50:44.0402 5736  [ 588AE8F0C685C02BA11F30D9CD7E61A0 ] \Device\Harddisk0\DR0
01:50:44.0833 5736  \Device\Harddisk0\DR0 - ok
01:50:44.0840 5736  [ 66D0B28C8B44E531D0C19F436252ABAA ] \Device\Harddisk1\DR1
01:50:45.0114 5736  \Device\Harddisk1\DR1 - ok
01:50:45.0115 5736  ================ Scan VBR ==================================
01:50:45.0119 5736  [ 88EEAE6A8AF28485EA0AD59A0C9C73A2 ] \Device\Harddisk0\DR0\Partition1
01:50:45.0122 5736  \Device\Harddisk0\DR0\Partition1 - ok
01:50:45.0128 5736  [ 6F49F748987E3933BD4388D8DE09790C ] \Device\Harddisk0\DR0\Partition2
01:50:45.0130 5736  \Device\Harddisk0\DR0\Partition2 - ok
01:50:45.0140 5736  [ 0E5702431DD7505D5EC5D1BBFD243579 ] \Device\Harddisk1\DR1\Partition1
01:50:45.0143 5736  \Device\Harddisk1\DR1\Partition1 - ok
01:50:45.0143 5736  ============================================================
01:50:45.0143 5736  Scan finished
01:50:45.0143 5736  ============================================================
01:50:45.0161 1888  Detected object count: 0
01:50:45.0161 1888  Actual detected object count: 0
01:51:06.0571 5328  Deinitialize success
 

 



#6 UhOhThat'sBad

UhOhThat'sBad
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:08:11 PM

Posted 02 July 2013 - 11:33 PM

AdwCleaner Log (This one pretty much didn't work. It closed right away and deleted itself):

 

# AdwCleaner v2.303 - Logfile created 07/03/2013 at 01:52:33
# Updated 08/06/2013 by Xplode
# Operating system : Windows Vista ™ Home Premium Service Pack 2 (32 bits)
# User : * - *
# Boot Mode : Normal
# Running from : C:\Users\*\Desktop\AdwCleaner.exe
# Option [Delete]
 
 
***** [Services] *****
 
 
***** [Files / Folders] *****
 

 






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users