Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Chrome cannot access Internet and Windows not booting to Safe Mode


  • Please log in to reply
24 replies to this topic

#1 mohandesai

mohandesai

  • Members
  • 37 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:04 PM

Posted 02 August 2013 - 08:13 PM

My Dell E521 with XP is behaving strangely and I'd appreciate some help to get it restored

 

1) Chrome is not able to access the internet but IE and Firefox can ! Chrome comes up with " Connection Refused" error

2) I am not able to boot Windows in Safe mode. I  used XP CD to recover the Boot.Ini file but it worked only temporarily

3) Scanned with Microsoft Extensions, AVG free but found no virus. 

4) Not able to update virus definitions

5) I am able to boot in Normal mode but am not sure what I am getting exposed to


Edited by mohandesai, 02 August 2013 - 08:14 PM.


BC AdBot (Login to Remove)

 


#2 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:04 PM

Posted 03 August 2013 - 02:11 AM

:welcome:

 

Let's have a look...

 

:step1: Install and run MBAM

:step2:  Running TDSSKiller to obtain log

 

Note: Don't cure or delete a threat, but choose skip for all instead.

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters

tds2.jpg

  • In the Additional options: Check Detect TDLFS file system
  • Click Start Scan and allow the scan process to run

tds4-1.jpg

  • Choose for all threats to Skip for all of them.
  • Click Continue
  • Please post the TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)

===================================================

 

:step3: ESET Online Scanner

==================

Note: If your AV is blocking Eset online scanner, please temporarily disable your AV.

 

I'd like us to scan your machine with ESET OnlineScan This process may may take several hours, that is normal.

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and » UNCHECK "Remove found threats" <== Important
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply. (If no malware was found you will not be presented with a log).
  • Click the Back button.
  • Click the Finish button.

===================================================


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#3 mohandesai

mohandesai
  • Topic Starter

  • Members
  • 37 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:04 PM

Posted 03 August 2013 - 02:03 PM

Here are results from MBAM and TDSS.  I could not run ESET online scanner because ESET was not able to connect online for Step 9 above. Is there a offline version? For MBAM, I updated the virus definitions by downloading the latest rules engine on a clean computer first

 

MBAM Logs

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
 
Database version: v2013.07.15.04
 
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Mohan :: WHITE_DELL [administrator]
 
8/3/2013 11:09:49 AM
mbam-log-2013-08-03 (11-09-49).txt
 
Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 413879
Time elapsed: 3 hour(s), 29 minute(s), 24 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 0
(No malicious items detected)
 
(end)
 

TDSS Logs

 

14:40:05.0968 2200  TDSS rootkit removing tool 2.8.18.0 Jun 10 2013 21:44:19

14:40:06.0468 2200  ============================================================
14:40:06.0468 2200  Current date / time: 2013/08/03 14:40:06.0468
14:40:06.0468 2200  SystemInfo:
14:40:06.0468 2200  
14:40:06.0468 2200  OS Version: 5.1.2600 ServicePack: 3.0
14:40:06.0468 2200  Product type: Workstation
14:40:06.0468 2200  ComputerName: WHITE_DELL
14:40:06.0500 2200  UserName: Mohan
14:40:06.0500 2200  Windows directory: C:\WINDOWS
14:40:06.0500 2200  System windows directory: C:\WINDOWS
14:40:06.0500 2200  Processor architecture: Intel x86
14:40:06.0500 2200  Number of processors: 2
14:40:06.0500 2200  Page size: 0x1000
14:40:06.0500 2200  Boot type: Normal boot
14:40:06.0500 2200  ============================================================
14:40:07.0953 2200  Drive \Device\Harddisk0\DR0 - Size: 0x2540BE4000 (149.01 Gb), SectorSize: 0x200, Cylinders: 0x4BFC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
14:40:07.0953 2200  ============================================================
14:40:07.0953 2200  \Device\Harddisk0\DR0:
14:40:07.0953 2200  MBR partitions:
14:40:07.0953 2200  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x123EC0EE
14:40:07.0953 2200  ============================================================
14:40:08.0125 2200  C: <-> \Device\Harddisk0\DR0\Partition1
14:40:08.0125 2200  ============================================================
14:40:08.0125 2200  Initialize success
14:40:08.0125 2200  ============================================================
14:41:26.0390 2976  ============================================================
14:41:26.0390 2976  Scan started
14:41:26.0390 2976  Mode: Manual; TDLFS; 
14:41:26.0390 2976  ============================================================
14:41:26.0859 2976  ================ Scan system memory ========================
14:41:26.0875 2976  System memory - ok
14:41:26.0875 2976  ================ Scan services =============================
14:41:27.0625 2976  Abiosdsk - ok
14:41:27.0656 2976  [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5        C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
14:41:27.0656 2976  abp480n5 - ok
14:41:27.0687 2976  [ 07CF5CC8BEB9B7EBB75E3FB61464C7AC ] ABVPN2K         C:\WINDOWS\system32\DRIVERS\abvpn2k.sys
14:41:27.0687 2976  ABVPN2K - ok
14:41:27.0734 2976  [ 8FD99680A539792A30E97944FDAECF17 ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
14:41:27.0734 2976  ACPI - ok
14:41:27.0781 2976  [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
14:41:27.0781 2976  ACPIEC - ok
14:41:27.0843 2976  [ 476BB014F3F68C0C15EDDD5B444DA8FF ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
14:41:27.0843 2976  AdobeFlashPlayerUpdateSvc - ok
14:41:27.0859 2976  [ 9A11864873DA202C996558B2106B0BBC ] adpu160m        C:\WINDOWS\system32\DRIVERS\adpu160m.sys
14:41:27.0875 2976  adpu160m - ok
14:41:27.0890 2976  [ 8BED39E3C35D6A489438B8141717A557 ] aec             C:\WINDOWS\system32\drivers\aec.sys
14:41:27.0890 2976  aec - ok
14:41:27.0921 2976  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
14:41:27.0921 2976  AFD - ok
14:41:27.0953 2976  [ 685443AFA5D1A94C5F47E4846B0E4C3D ] agnwifi         C:\WINDOWS\system32\DRIVERS\agnwifi.sys
14:41:27.0953 2976  agnwifi - ok
14:41:27.0984 2976  [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440          C:\WINDOWS\system32\DRIVERS\agp440.sys
14:41:27.0984 2976  agp440 - ok
14:41:28.0000 2976  [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ          C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
14:41:28.0000 2976  agpCPQ - ok
14:41:28.0031 2976  [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x         C:\WINDOWS\system32\DRIVERS\aha154x.sys
14:41:28.0031 2976  Aha154x - ok
14:41:28.0031 2976  [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2         C:\WINDOWS\system32\DRIVERS\aic78u2.sys
14:41:28.0031 2976  aic78u2 - ok
14:41:28.0046 2976  [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx         C:\WINDOWS\system32\DRIVERS\aic78xx.sys
14:41:28.0062 2976  aic78xx - ok
14:41:28.0093 2976  [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
14:41:28.0093 2976  Alerter - ok
14:41:28.0109 2976  [ 8C515081584A38AA007909CD02020B3D ] ALG             C:\WINDOWS\System32\alg.exe
14:41:28.0109 2976  ALG - ok
14:41:28.0125 2976  [ 1140AB9938809700B46BB88E46D72A96 ] AliIde          C:\WINDOWS\system32\DRIVERS\aliide.sys
14:41:28.0125 2976  AliIde - ok
14:41:28.0156 2976  [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541        C:\WINDOWS\system32\DRIVERS\alim1541.sys
14:41:28.0156 2976  alim1541 - ok
14:41:28.0187 2976  [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp          C:\WINDOWS\system32\DRIVERS\amdagp.sys
14:41:28.0187 2976  amdagp - ok
14:41:28.0218 2976  [ 0A4D13B388C814560BD69C3A496ECFA8 ] AmdK8           C:\WINDOWS\system32\DRIVERS\AmdK8.sys
14:41:28.0218 2976  AmdK8 - ok
14:41:28.0250 2976  [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint          C:\WINDOWS\system32\DRIVERS\amsint.sys
14:41:28.0250 2976  amsint - ok
14:41:28.0250 2976  AppMgmt - ok
14:41:28.0265 2976  [ 62D318E9A0C8FC9B780008E724283707 ] asc             C:\WINDOWS\system32\DRIVERS\asc.sys
14:41:28.0281 2976  asc - ok
14:41:28.0296 2976  [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p        C:\WINDOWS\system32\DRIVERS\asc3350p.sys
14:41:28.0296 2976  asc3350p - ok
14:41:28.0296 2976  [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550         C:\WINDOWS\system32\DRIVERS\asc3550.sys
14:41:28.0296 2976  asc3550 - ok
14:41:28.0343 2976  [ 54AB078660E536DA72B21A27F56B035B ] Aspi32          C:\WINDOWS\system32\drivers\Aspi32.sys
14:41:28.0343 2976  Aspi32 - ok
14:41:28.0578 2976  [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
14:41:28.0593 2976  aspnet_state - ok
14:41:28.0625 2976  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
14:41:28.0625 2976  AsyncMac - ok
14:41:28.0640 2976  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
14:41:28.0640 2976  atapi - ok
14:41:28.0656 2976  Atdisk - ok
14:41:28.0734 2976  [ D80A3FD3DB6F999F6D1C6D23A293851B ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
14:41:28.0750 2976  Ati HotKey Poller - ok
14:41:29.0109 2976  [ C832BF76F003999D2E91E5115583C69E ] ati2mtag        C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
14:41:29.0437 2976  ati2mtag - ok
14:41:29.0484 2976  [ B2A236DC65E90170A369164384EFB460 ] AtiHDAudioService C:\WINDOWS\system32\drivers\AtihdXP3.sys
14:41:29.0484 2976  AtiHDAudioService - ok
14:41:29.0531 2976  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
14:41:29.0531 2976  Atmarpc - ok
14:41:29.0562 2976  [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
14:41:29.0562 2976  AudioSrv - ok
14:41:29.0593 2976  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
14:41:29.0593 2976  audstub - ok
14:41:29.0625 2976  [ 84632BB018CDB66B366EAD809BB0A426 ] avpnnic         C:\WINDOWS\system32\DRIVERS\avpnnic.sys
14:41:29.0625 2976  avpnnic - ok
14:41:29.0750 2976  [ B3469F8BD7FB79395DD31E2B27F77C62 ] Basics Service  C:\Program Files\Seagate\Basics\Service\SyncServicesBasics.exe
14:41:29.0765 2976  Basics Service - ok
14:41:29.0812 2976  [ 78E7B52DA292FA90BAD2F887BBF22159 ] bcm4sbxp        C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys
14:41:29.0812 2976  bcm4sbxp - ok
14:41:29.0843 2976  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
14:41:29.0843 2976  Beep - ok
14:41:29.0890 2976  [ 574738F61FCA2935F5265DC4E5691314 ] BITS            C:\WINDOWS\system32\qmgr.dll
14:41:29.0906 2976  BITS - ok
14:41:29.0953 2976  [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser         C:\WINDOWS\System32\browser.dll
14:41:29.0953 2976  Browser - ok
14:41:29.0984 2976  [ 3DC7B0C7BE6164D3152513C0C208AD3B ] btaudio         C:\WINDOWS\system32\drivers\btaudio.sys
14:41:30.0000 2976  btaudio - ok
14:41:30.0031 2976  [ 2F9F111D31AA3FBBE5781D829A4524E6 ] BTDriver        C:\WINDOWS\system32\DRIVERS\btport.sys
14:41:30.0031 2976  BTDriver - ok
14:41:30.0062 2976  [ B279426E3C0C344893ED78A613A73BDE ] BthEnum         C:\WINDOWS\system32\DRIVERS\BthEnum.sys
14:41:30.0062 2976  BthEnum - ok
14:41:30.0078 2976  [ FCA6F069597B62D42495191ACE3FC6C1 ] BTHMODEM        C:\WINDOWS\system32\DRIVERS\bthmodem.sys
14:41:30.0078 2976  BTHMODEM - ok
14:41:30.0109 2976  [ 80602B8746D3738F5886CE3D67EF06B6 ] BthPan          C:\WINDOWS\system32\DRIVERS\bthpan.sys
14:41:30.0109 2976  BthPan - ok
14:41:30.0156 2976  [ 662BFD909447DD9CC15B1A1C366583B4 ] BTHPORT         C:\WINDOWS\system32\Drivers\BTHport.sys
14:41:30.0156 2976  BTHPORT - ok
14:41:30.0187 2976  [ F4C43C66471B87996D95DB7A3A664A37 ] BthServ         C:\WINDOWS\System32\bthserv.dll
14:41:30.0187 2976  BthServ - ok
14:41:30.0218 2976  [ 61364CD71EF63B0F038B7E9DF00F1EFA ] BTHUSB          C:\WINDOWS\system32\Drivers\BTHUSB.sys
14:41:30.0218 2976  BTHUSB - ok
14:41:30.0265 2976  [ 9F704F40CD50AE05BBFC492C0342E765 ] BTKRNL          C:\WINDOWS\system32\DRIVERS\btkrnl.sys
14:41:30.0281 2976  BTKRNL - ok
14:41:30.0421 2976  [ 7F9450547C5C1BC1FA9FD7E1059796CC ] btwdins         C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
14:41:30.0437 2976  btwdins - ok
14:41:30.0453 2976  [ 485020A1E1FC5C51A800CA69C618D881 ] BTWDNDIS        C:\WINDOWS\system32\DRIVERS\btwdndis.sys
14:41:30.0453 2976  BTWDNDIS - ok
14:41:30.0468 2976  [ C51D50CF24DA69A9C499E65B0EDB3BB7 ] btwhid          C:\WINDOWS\system32\DRIVERS\btwhid.sys
14:41:30.0468 2976  btwhid - ok
14:41:30.0500 2976  [ 5922BAE0CD84924B9CD7E6BB515EE070 ] btwmodem        C:\WINDOWS\system32\DRIVERS\btwmodem.sys
14:41:30.0500 2976  btwmodem - ok
14:41:30.0546 2976  [ 1166CB501E1C34750A91600579EFEAB3 ] BTWUSB          C:\WINDOWS\system32\Drivers\btwusb.sys
14:41:30.0546 2976  BTWUSB - ok
14:41:30.0578 2976  [ 248DFA5762DDE38DFDDBBD44149E9D7A ] BVRPMPR5        C:\WINDOWS\system32\drivers\BVRPMPR5.SYS
14:41:30.0578 2976  BVRPMPR5 - ok
14:41:30.0593 2976  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf           C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
14:41:30.0593 2976  cbidf - ok
14:41:30.0593 2976  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
14:41:30.0609 2976  cbidf2k - ok
14:41:30.0750 2976  [ 0A6786C95A6F8715AA4285E3C27F201F ] ccEvtMgr        C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
14:41:30.0750 2976  ccEvtMgr - ok
14:41:30.0812 2976  [ F4CBCA2089A8419BF3397A1BC248C54D ] ccProxy         C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
14:41:30.0812 2976  ccProxy - ok
14:41:30.0890 2976  [ 3B4898CF051BB04FB76E94361E336A83 ] ccSetMgr        C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
14:41:30.0890 2976  ccSetMgr - ok
14:41:30.0921 2976  [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt        C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
14:41:30.0921 2976  cd20xrnt - ok
14:41:30.0937 2976  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
14:41:30.0937 2976  Cdaudio - ok
14:41:30.0968 2976  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
14:41:30.0968 2976  Cdfs - ok
14:41:30.0984 2976  [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
14:41:30.0984 2976  Cdrom - ok
14:41:30.0984 2976  Changer - ok
14:41:31.0031 2976  [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc           C:\WINDOWS\system32\cisvc.exe
14:41:31.0031 2976  CiSvc - ok
14:41:31.0046 2976  [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
14:41:31.0046 2976  ClipSrv - ok
14:41:31.0078 2976  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:41:31.0078 2976  clr_optimization_v2.0.50727_32 - ok
14:41:31.0234 2976  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:41:31.0250 2976  clr_optimization_v4.0.30319_32 - ok
14:41:31.0312 2976  [ 5CD4492C782909D6E0D76539E597584B ] CM1083264TB     C:\WINDOWS\system32\drivers\CM108.sys
14:41:31.0343 2976  CM1083264TB - ok
14:41:31.0359 2976  [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde          C:\WINDOWS\system32\DRIVERS\cmdide.sys
14:41:31.0359 2976  CmdIde - ok
14:41:31.0375 2976  COMSysApp - ok
14:41:31.0390 2976  [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray        C:\WINDOWS\system32\DRIVERS\cpqarray.sys
14:41:31.0390 2976  Cpqarray - ok
14:41:31.0421 2976  [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
14:41:31.0421 2976  CryptSvc - ok
14:41:31.0453 2976  CrystalSysInfo - ok
14:41:31.0484 2976  [ 395269446A620A553FEC2E73A72E94A9 ] D-Link SharePort Helper C:\Program Files\D-Link\SharePort Utility\Spnuhelper.exe
14:41:31.0484 2976  D-Link SharePort Helper - ok
14:41:31.0515 2976  [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k         C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
14:41:31.0531 2976  dac2w2k - ok
14:41:31.0531 2976  [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt        C:\WINDOWS\system32\DRIVERS\dac960nt.sys
14:41:31.0531 2976  dac960nt - ok
14:41:31.0593 2976  [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
14:41:31.0609 2976  DcomLaunch - ok
14:41:31.0687 2976  [ 1F709C66D8AADFF35530C56EE261C462 ] DefWatch        C:\Program Files\Symantec Client Security\Symantec AntiVirus\DefWatch.exe
14:41:31.0703 2976  DefWatch - ok
14:41:31.0734 2976  [ 6216FD7FD227DE454238A702B218CEC7 ] dgderdrv        C:\WINDOWS\system32\drivers\dgderdrv.sys
14:41:31.0734 2976  dgderdrv - ok
14:41:31.0750 2976  [ A5034F77B278F07E224FE07CF98A8B76 ] DgiVecp         C:\WINDOWS\system32\Drivers\DgiVecp.sys
14:41:31.0750 2976  DgiVecp - ok
14:41:31.0765 2976  [ 6CC6C4B9D7B906A151AA094CA087B9F0 ] dg_ssudbus      C:\WINDOWS\system32\DRIVERS\ssudbus.sys
14:41:31.0765 2976  dg_ssudbus - ok
14:41:31.0796 2976  [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
14:41:31.0812 2976  Dhcp - ok
14:41:31.0828 2976  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
14:41:31.0828 2976  Disk - ok
14:41:31.0843 2976  dmadmin - ok
14:41:31.0859 2976  [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
14:41:31.0890 2976  dmboot - ok
14:41:31.0906 2976  [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
14:41:31.0921 2976  dmio - ok
14:41:31.0953 2976  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
14:41:31.0953 2976  dmload - ok
14:41:31.0968 2976  [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver        C:\WINDOWS\System32\dmserver.dll
14:41:31.0968 2976  dmserver - ok
14:41:32.0000 2976  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
14:41:32.0000 2976  DMusic - ok
14:41:32.0031 2976  [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
14:41:32.0031 2976  Dnscache - ok
14:41:32.0046 2976  [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
14:41:32.0062 2976  Dot3svc - ok
14:41:32.0078 2976  [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o          C:\WINDOWS\system32\DRIVERS\dpti2o.sys
14:41:32.0078 2976  dpti2o - ok
14:41:32.0093 2976  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
14:41:32.0093 2976  drmkaud - ok
14:41:32.0156 2976  [ 2AC2372FFAD9ADC85672CC8E8AE14BE9 ] DSproct         C:\Program Files\Dell Support\GTAction\triggers\DSproct.sys
14:41:32.0156 2976  DSproct - ok
14:41:32.0171 2976  [ 3FCA03CBCA11269F973B70FA483C88EF ] E100B           C:\WINDOWS\system32\DRIVERS\e100b325.sys
14:41:32.0187 2976  E100B - ok
14:41:32.0203 2976  [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost         C:\WINDOWS\System32\eapsvc.dll
14:41:32.0203 2976  EapHost - ok
14:41:32.0250 2976  [ 579A6B6135D32B857FAF0E3A974535D8 ] eeCtrl          C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
14:41:32.0250 2976  eeCtrl - ok
14:41:32.0281 2976  [ 028D50F059BD0D2CCB209E9011B9A9A4 ] EraserUtilRebootDrv C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
14:41:32.0281 2976  EraserUtilRebootDrv - ok
14:41:32.0312 2976  [ BC93B4A066477954555966D77FEC9ECB ] ERSvc           C:\WINDOWS\System32\ersvc.dll
14:41:32.0312 2976  ERSvc - ok
14:41:32.0359 2976  [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog        C:\WINDOWS\system32\services.exe
14:41:32.0359 2976  Eventlog - ok
14:41:32.0406 2976  [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem     C:\WINDOWS\system32\es.dll
14:41:32.0406 2976  EventSystem - ok
14:41:32.0453 2976  [ 38D332A6D56AF32635675F132548343E ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
14:41:32.0453 2976  Fastfat - ok
14:41:32.0500 2976  [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
14:41:32.0500 2976  FastUserSwitchingCompatibility - ok
14:41:32.0546 2976  [ E97D6A8684466DF94FF3BC24FB787A07 ] Fax             C:\WINDOWS\system32\fxssvc.exe
14:41:32.0546 2976  Fax - ok
14:41:32.0578 2976  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys
14:41:32.0578 2976  Fdc - ok
14:41:32.0593 2976  [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
14:41:32.0593 2976  Fips - ok
14:41:32.0609 2976  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        C:\WINDOWS\system32\DRIVERS\flpydisk.sys
14:41:32.0609 2976  Flpydisk - ok
14:41:32.0640 2976  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
14:41:32.0640 2976  FltMgr - ok
14:41:32.0703 2976  [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
14:41:32.0718 2976  FontCache3.0.0.0 - ok
14:41:32.0750 2976  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
14:41:32.0750 2976  Fs_Rec - ok
14:41:32.0765 2976  [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
14:41:32.0765 2976  Ftdisk - ok
14:41:32.0796 2976  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
14:41:32.0796 2976  Gpc - ok
14:41:32.0875 2976  [ 626A24ED1228580B9518C01930936DF9 ] gupdate1c9d74d5435bc92 C:\Program Files\Google\Update\GoogleUpdate.exe
14:41:32.0875 2976  gupdate1c9d74d5435bc92 - ok
14:41:32.0875 2976  [ 626A24ED1228580B9518C01930936DF9 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
14:41:32.0875 2976  gupdatem - ok
14:41:32.0921 2976  [ 408DDD80EEDE47175F6844817B90213E ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
14:41:32.0921 2976  gusvc - ok
14:41:32.0953 2976  [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
14:41:32.0953 2976  HDAudBus - ok
14:41:33.0031 2976  [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
14:41:33.0031 2976  helpsvc - ok
14:41:33.0062 2976  [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ         C:\WINDOWS\System32\hidserv.dll
14:41:33.0062 2976  HidServ - ok
14:41:33.0093 2976  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
14:41:33.0093 2976  HidUsb - ok
14:41:33.0109 2976  [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
14:41:33.0125 2976  hkmsvc - ok
14:41:33.0140 2976  [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn             C:\WINDOWS\system32\DRIVERS\hpn.sys
14:41:33.0140 2976  hpn - ok
14:41:33.0171 2976  [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
14:41:33.0171 2976  HTTP - ok
14:41:33.0187 2976  [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
14:41:33.0203 2976  HTTPFilter - ok
14:41:33.0218 2976  [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt         C:\WINDOWS\system32\drivers\i2omgmt.sys
14:41:33.0218 2976  i2omgmt - ok
14:41:33.0250 2976  [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp           C:\WINDOWS\system32\DRIVERS\i2omp.sys
14:41:33.0250 2976  i2omp - ok
14:41:33.0281 2976  [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
14:41:33.0281 2976  i8042prt - ok
14:41:33.0375 2976  [ 6F95324909B502E2651442C1548AB12F ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
14:41:33.0390 2976  IDriverT - ok
14:41:33.0500 2976  [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc           c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
14:41:33.0531 2976  idsvc - ok
14:41:33.0562 2976  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
14:41:33.0562 2976  Imapi - ok
14:41:33.0593 2976  [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService    C:\WINDOWS\system32\imapi.exe
14:41:33.0593 2976  ImapiService - ok
14:41:33.0625 2976  [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u         C:\WINDOWS\system32\DRIVERS\ini910u.sys
14:41:33.0625 2976  ini910u - ok
14:41:33.0640 2976  [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde        C:\WINDOWS\system32\DRIVERS\intelide.sys
14:41:33.0640 2976  IntelIde - ok
14:41:33.0671 2976  [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
14:41:33.0671 2976  intelppm - ok
14:41:33.0687 2976  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
14:41:33.0687 2976  Ip6Fw - ok
14:41:33.0718 2976  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
14:41:33.0718 2976  IpFilterDriver - ok
14:41:33.0750 2976  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
14:41:33.0750 2976  IpInIp - ok
14:41:33.0765 2976  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
14:41:33.0765 2976  IpNat - ok
14:41:33.0781 2976  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
14:41:33.0781 2976  IPSec - ok
14:41:33.0796 2976  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
14:41:33.0796 2976  IRENUM - ok
14:41:33.0828 2976  [ 14E8ADECE6ED94C75A546055B474C9EE ] IsamFilter      C:\WINDOWS\system32\DRIVERS\isamfilter.sys
14:41:33.0828 2976  IsamFilter - ok
14:41:33.0921 2976  [ 40F0A280384CAD3AB48AAFBA4B94CDE4 ] ISAMSvc         C:\Program Files\C4ebreg\c4ebreg.exe
14:41:33.0953 2976  ISAMSvc - ok
14:41:33.0984 2976  [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
14:41:33.0984 2976  isapnp - ok
14:41:34.0046 2976  [ 1A31E0221EBE037D8ECEFF51E8B11D39 ] ISSIMon         c:\sdwork\issimsvc.exe
14:41:34.0062 2976  ISSIMon - ok
14:41:34.0156 2976  [ A59BA4C8C0698DDC9D805109B0F6C76C ] ISSVC           C:\Program Files\Symantec Client Security\Symantec Client Firewall\ISSVC.exe
14:41:34.0156 2976  ISSVC - ok
14:41:34.0187 2976  [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
14:41:34.0187 2976  Kbdclass - ok
14:41:34.0203 2976  [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
14:41:34.0203 2976  kbdhid - ok
14:41:34.0234 2976  [ 692BCF44383D056AED41B045A323D378 ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
14:41:34.0234 2976  kmixer - ok
14:41:34.0281 2976  [ B467646C54CC746128904E1654C750C1 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
14:41:34.0281 2976  KSecDD - ok
14:41:34.0312 2976  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
14:41:34.0312 2976  lanmanserver - ok
14:41:34.0343 2976  [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
14:41:34.0359 2976  lanmanworkstation - ok
14:41:34.0375 2976  [ BE2DC24D403643A2D1D98F33C7087B38 ] LBeepKE         C:\WINDOWS\system32\Drivers\LBeepKE.sys
14:41:34.0375 2976  LBeepKE - ok
14:41:34.0390 2976  lbrtfdc - ok
14:41:34.0484 2976  [ 910344E2A984010435AE84783B25E5EB ] LBTServ         C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
14:41:34.0484 2976  LBTServ - ok
14:41:34.0531 2976  [ 01CC7FB6E790EF044B411377F3A1FF41 ] LHidFilt        C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
14:41:34.0531 2976  LHidFilt - ok
14:41:34.0578 2976  [ A7DB739AE99A796D91580147E919CC59 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
14:41:34.0578 2976  LmHosts - ok
14:41:34.0609 2976  [ A2E7EAE8898D7B4B8C302B8F4E836BB5 ] LMouFilt        C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
14:41:34.0609 2976  LMouFilt - ok
14:41:34.0843 2976  [ 2098AF12149789FA6608422C8796F77C ] LNSUSvc         c:\notes\SUService.exe
14:41:35.0109 2976  LNSUSvc - ok
14:41:35.0125 2976  Lotus Notes Diagnostics - ok
14:41:35.0140 2976  [ 32933B07FC16D9F778BEE12545FA1B1A ] LPDSVC          C:\WINDOWS\system32\tcpsvcs.exe
14:41:35.0156 2976  LPDSVC - ok
14:41:35.0328 2976  [ EF1F4B00A8705511CA28C090D8F85A6B ] lxdvCATSCustConnectService C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxdvserv.exe
14:41:35.0328 2976  lxdvCATSCustConnectService - ok
14:41:35.0328 2976  lxdv_device - ok
14:41:35.0375 2976  [ 11F714F85530A2BD134074DC30E99FCA ] MDM             C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
14:41:35.0390 2976  MDM - ok
14:41:35.0421 2976  [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
14:41:35.0421 2976  Messenger - ok
14:41:35.0453 2976  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
14:41:35.0453 2976  mnmdd - ok
14:41:35.0484 2976  [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
14:41:35.0484 2976  mnmsrvc - ok
14:41:35.0531 2976  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
14:41:35.0531 2976  Modem - ok
14:41:35.0562 2976  [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
14:41:35.0562 2976  Mouclass - ok
14:41:35.0578 2976  [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
14:41:35.0578 2976  mouhid - ok
14:41:35.0609 2976  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
14:41:35.0609 2976  MountMgr - ok
14:41:35.0625 2976  [ 24406D75B40F0F6B3C1AC7031D734565 ] MpFilter        C:\WINDOWS\system32\DRIVERS\MpFilter.sys
14:41:35.0640 2976  MpFilter - ok
14:41:35.0796 2976  [ A69630D039C38018689190234F866D77 ] MpKsl08424c5c   c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{4BC9FDB5-8E72-4FCD-B1FD-A7EC5C961836}\MpKsl08424c5c.sys
14:41:35.0812 2976  MpKsl08424c5c - ok
14:41:35.0828 2976  [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x        C:\WINDOWS\system32\DRIVERS\mraid35x.sys
14:41:35.0828 2976  mraid35x - ok
14:41:35.0859 2976  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
14:41:35.0859 2976  MRxDAV - ok
14:41:35.0906 2976  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
14:41:35.0921 2976  MRxSmb - ok
14:41:35.0937 2976  [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
14:41:35.0953 2976  MSDTC - ok
14:41:35.0968 2976  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
14:41:35.0968 2976  Msfs - ok
14:41:35.0984 2976  MSIServer - ok
14:41:35.0984 2976  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
14:41:36.0000 2976  MSKSSRV - ok
14:41:36.0031 2976  [ 3EA6A1A744D79328AE7E2C6FAE4C4420 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
14:41:36.0031 2976  MsMpSvc - ok
14:41:36.0062 2976  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
14:41:36.0062 2976  MSPCLOCK - ok
14:41:36.0078 2976  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
14:41:36.0078 2976  MSPQM - ok
14:41:36.0093 2976  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
14:41:36.0093 2976  mssmbios - ok
14:41:36.0125 2976  [ 00C7B2306F1CA5389A1AC6D1DF9C2E25 ] msvad_simple    C:\WINDOWS\system32\drivers\povrtdev.sys
14:41:36.0125 2976  msvad_simple - ok
14:41:36.0156 2976  [ FF54EA1617D15711690D5EF054512C21 ] Multi-user Cleanup Service c:\notes\ntmulti.exe
14:41:36.0156 2976  Multi-user Cleanup Service - ok
14:41:36.0187 2976  [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
14:41:36.0203 2976  Mup - ok
14:41:36.0250 2976  [ 0102140028FAD045756796E1C685D695 ] napagent        C:\WINDOWS\System32\qagentrt.dll
14:41:36.0250 2976  napagent - ok
14:41:36.0281 2976  NasPmService - ok
14:41:36.0328 2976  NAVENG - ok
14:41:36.0328 2976  NAVEX15 - ok
14:41:36.0359 2976  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
14:41:36.0359 2976  NDIS - ok
14:41:36.0390 2976  [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
14:41:36.0390 2976  NdisTapi - ok
14:41:36.0406 2976  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
14:41:36.0406 2976  Ndisuio - ok
14:41:36.0421 2976  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
14:41:36.0421 2976  NdisWan - ok
14:41:36.0453 2976  [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
14:41:36.0453 2976  NDProxy - ok
14:41:36.0468 2976  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
14:41:36.0468 2976  NetBIOS - ok
14:41:36.0484 2976  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
14:41:36.0484 2976  NetBT - ok
14:41:36.0562 2976  [ FE719D7F9CE2E18A7459C1213001484F ] NetCfgSvr       C:\PROGRA~1\AT&TNE~1\NetCfgSv.EXE
14:41:36.0562 2976  NetCfgSvr - ok
14:41:36.0609 2976  [ B857BA82860D7FF85AE29B095645563B ] NetDDE          C:\WINDOWS\system32\netdde.exe
14:41:36.0609 2976  NetDDE - ok
14:41:36.0625 2976  [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
14:41:36.0625 2976  NetDDEdsdm - ok
14:41:36.0656 2976  [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon        C:\WINDOWS\system32\lsass.exe
14:41:36.0656 2976  Netlogon - ok
14:41:36.0671 2976  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman          C:\WINDOWS\System32\netman.dll
14:41:36.0687 2976  Netman - ok
14:41:36.0734 2976  [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:41:36.0750 2976  NetTcpPortSharing - ok
14:41:36.0781 2976  [ 943337D786A56729263071623BBB9DE5 ] Nla             C:\WINDOWS\System32\mswsock.dll
14:41:36.0796 2976  Nla - ok
14:41:36.0828 2976  [ 1E421A6BCF2203CC61B821ADA9DE878B ] nm              C:\WINDOWS\system32\DRIVERS\NMnt.sys
14:41:36.0828 2976  nm - ok
14:41:36.0859 2976  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
14:41:36.0859 2976  Npfs - ok
14:41:36.0890 2976  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
14:41:36.0890 2976  Ntfs - ok
14:41:36.0906 2976  [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
14:41:36.0906 2976  NtLmSsp - ok
14:41:36.0953 2976  [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
14:41:36.0953 2976  NtmsSvc - ok
14:41:36.0968 2976  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys
14:41:36.0968 2976  Null - ok
14:41:37.0187 2976  [ F8BE83F0C686533170F7537E94BF411A ] nv              C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
14:41:37.0343 2976  nv - ok
14:41:37.0375 2976  [ 75562456AA672BB5FE56D3C64C6D1C7D ] nvatabus        C:\WINDOWS\system32\drivers\nvatabus.sys
14:41:37.0375 2976  nvatabus - ok
14:41:37.0390 2976  [ 1D4781A5957300DC81B91161B45704BB ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
14:41:37.0390 2976  nvraid - ok
14:41:37.0406 2976  [ E9E110CDF6A063A5F9B841C36FB5CC95 ] NVSvc           C:\WINDOWS\system32\nvsvc32.exe
14:41:37.0421 2976  NVSvc - ok
14:41:37.0437 2976  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
14:41:37.0437 2976  NwlnkFlt - ok
14:41:37.0453 2976  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
14:41:37.0453 2976  NwlnkFwd - ok
14:41:37.0468 2976  [ 8B8B1BE2DBA4025DA6786C645F77F123 ] NwlnkIpx        C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys
14:41:37.0468 2976  NwlnkIpx - ok
14:41:37.0500 2976  [ 56D34A67C05E94E16377C60609741FF8 ] NwlnkNb         C:\WINDOWS\system32\DRIVERS\nwlnknb.sys
14:41:37.0500 2976  NwlnkNb - ok
14:41:37.0515 2976  [ C0BB7D1615E1ACBDC99757F6CEAF8CF0 ] NwlnkSpx        C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys
14:41:37.0515 2976  NwlnkSpx - ok
14:41:37.0546 2976  [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys
14:41:37.0546 2976  Parport - ok
14:41:37.0546 2976  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
14:41:37.0546 2976  PartMgr - ok
14:41:37.0578 2976  [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
14:41:37.0578 2976  ParVdm - ok
14:41:37.0609 2976  [ FD2041E9BA03DB7764B2248F02475079 ] pccsmcfd        C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
14:41:37.0609 2976  pccsmcfd - ok
14:41:37.0625 2976  [ A219903CCF74233761D92BEF471A07B1 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
14:41:37.0625 2976  PCI - ok
14:41:37.0625 2976  PCIDump - ok
14:41:37.0656 2976  [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
14:41:37.0656 2976  PCIIde - ok
14:41:37.0687 2976  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
14:41:37.0687 2976  Pcmcia - ok
14:41:37.0687 2976  PDCOMP - ok
14:41:37.0687 2976  PDFRAME - ok
14:41:37.0703 2976  PDRELI - ok
14:41:37.0703 2976  PDRFRAME - ok
14:41:37.0734 2976  [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2           C:\WINDOWS\system32\DRIVERS\perc2.sys
14:41:37.0734 2976  perc2 - ok
14:41:37.0750 2976  [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib        C:\WINDOWS\system32\DRIVERS\perc2hib.sys
14:41:37.0750 2976  perc2hib - ok
14:41:37.0781 2976  [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay        C:\WINDOWS\system32\services.exe
14:41:37.0796 2976  PlugPlay - ok
14:41:37.0812 2976  [ FA292805788528C083F416E151B60AB6 ] PMEM            C:\WINDOWS\system32\drivers\PMEMNT.SYS
14:41:37.0812 2976  PMEM - ok
14:41:37.0843 2976  [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
14:41:37.0843 2976  PolicyAgent - ok
14:41:37.0875 2976  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
14:41:37.0875 2976  PptpMiniport - ok
14:41:37.0890 2976  [ A32BEBAF723557681BFC6BD93E98BD26 ] Processor       C:\WINDOWS\system32\DRIVERS\processr.sys
14:41:37.0890 2976  Processor - ok
14:41:37.0890 2976  [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
14:41:37.0890 2976  ProtectedStorage - ok
14:41:37.0906 2976  [ 09298EC810B07E5D582CB3A3F9255424 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
14:41:37.0921 2976  PSched - ok
14:41:37.0953 2976  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
14:41:37.0953 2976  Ptilink - ok
14:41:37.0984 2976  [ 153D02480A0A2F45785522E814C634B6 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
14:41:37.0984 2976  PxHelp20 - ok
14:41:38.0000 2976  [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080          C:\WINDOWS\system32\DRIVERS\ql1080.sys
14:41:38.0000 2976  ql1080 - ok
14:41:38.0000 2976  [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt         C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
14:41:38.0000 2976  Ql10wnt - ok
14:41:38.0015 2976  [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160         C:\WINDOWS\system32\DRIVERS\ql12160.sys
14:41:38.0015 2976  ql12160 - ok
14:41:38.0031 2976  [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240          C:\WINDOWS\system32\DRIVERS\ql1240.sys
14:41:38.0031 2976  ql1240 - ok
14:41:38.0046 2976  [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280          C:\WINDOWS\system32\DRIVERS\ql1280.sys
14:41:38.0046 2976  ql1280 - ok
14:41:38.0062 2976  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
14:41:38.0062 2976  RasAcd - ok
14:41:38.0109 2976  [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
14:41:38.0109 2976  RasAuto - ok
14:41:38.0109 2976  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
14:41:38.0125 2976  Rasl2tp - ok
14:41:38.0156 2976  [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan          C:\WINDOWS\System32\rasmans.dll
14:41:38.0156 2976  RasMan - ok
14:41:38.0171 2976  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
14:41:38.0171 2976  RasPppoe - ok
14:41:38.0296 2976  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
14:41:38.0296 2976  Raspti - ok
14:41:38.0312 2976  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
14:41:38.0312 2976  Rdbss - ok
14:41:38.0359 2976  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
14:41:38.0359 2976  RDPCDD - ok
14:41:38.0390 2976  [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
14:41:38.0390 2976  rdpdr - ok
14:41:38.0421 2976  [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
14:41:38.0421 2976  RDPWD - ok
14:41:38.0453 2976  [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
14:41:38.0484 2976  RDSessMgr - ok
14:41:38.0531 2976  [ F828DD7E1419B6653894A8F97A0094C5 ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
14:41:38.0546 2976  redbook - ok
14:41:38.0593 2976  [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
14:41:38.0625 2976  RemoteAccess - ok
14:41:38.0671 2976  [ 851C30DF2807FCFA21E4C681A7D6440E ] RFCOMM          C:\WINDOWS\system32\DRIVERS\rfcomm.sys
14:41:38.0687 2976  RFCOMM - ok
14:41:38.0734 2976  [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] ROOTMODEM       C:\WINDOWS\system32\Drivers\RootMdm.sys
14:41:38.0734 2976  ROOTMODEM - ok
14:41:38.0765 2976  [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator      C:\WINDOWS\system32\locator.exe
14:41:38.0765 2976  RpcLocator - ok
14:41:38.0796 2976  [ 6B27A5C03DFB94B4245739065431322C ] RpcSs           C:\WINDOWS\system32\rpcss.dll
14:41:38.0796 2976  RpcSs - ok
14:41:38.0843 2976  [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP            C:\WINDOWS\system32\rsvp.exe
14:41:38.0843 2976  RSVP - ok
14:41:38.0843 2976  SABKUTIL - ok
14:41:38.0875 2976  [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs           C:\WINDOWS\system32\lsass.exe
14:41:38.0875 2976  SamSs - ok
14:41:38.0921 2976  [ 3525FDCFC567E807A337C61AFF366BE8 ] SavRoam         C:\Program Files\Symantec Client Security\Symantec AntiVirus\SavRoam.exe
14:41:38.0921 2976  SavRoam - ok
14:41:38.0984 2976  [ 12B6E269EF8AC8EA36122544C8A1B6D8 ] SAVRT           C:\Program Files\Symantec Client Security\Symantec AntiVirus\savrt.sys
14:41:39.0000 2976  SAVRT - ok
14:41:39.0031 2976  [ 97E5B6F3F95465E1F59360B59D8EC64E ] SAVRTPEL        C:\Program Files\Symantec Client Security\Symantec AntiVirus\Savrtpel.sys
14:41:39.0031 2976  SAVRTPEL - ok
14:41:39.0062 2976  [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
14:41:39.0078 2976  SCardSvr - ok
14:41:39.0125 2976  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule        C:\WINDOWS\system32\schedsvc.dll
14:41:39.0140 2976  Schedule - ok
14:41:39.0171 2976  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
14:41:39.0171 2976  Secdrv - ok
14:41:39.0203 2976  [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon        C:\WINDOWS\System32\seclogon.dll
14:41:39.0203 2976  seclogon - ok
14:41:39.0234 2976  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS            C:\WINDOWS\system32\sens.dll
14:41:39.0234 2976  SENS - ok
14:41:39.0265 2976  [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
14:41:39.0265 2976  serenum - ok
14:41:39.0281 2976  [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys
14:41:39.0281 2976  Serial - ok
14:41:39.0421 2976  [ F31E9531AF225CA25350D5E87E999B31 ] ServiceLayer    C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
14:41:39.0421 2976  ServiceLayer - ok
14:41:39.0453 2976  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
14:41:39.0453 2976  Sfloppy - ok
14:41:39.0484 2976  [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
14:41:39.0500 2976  SharedAccess - ok
14:41:39.0531 2976  [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
14:41:39.0531 2976  ShellHWDetection - ok
14:41:39.0531 2976  Simbad - ok
14:41:39.0593 2976  [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp          C:\WINDOWS\system32\DRIVERS\sisagp.sys
14:41:39.0593 2976  sisagp - ok
14:41:40.0109 2976  [ AE40D1BC6FB02A5625516AD74CA9A309 ] Skype C2C Service C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe
14:41:40.0562 2976  Skype C2C Service - ok
14:41:40.0640 2976  [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
14:41:40.0656 2976  SkypeUpdate - ok
14:41:40.0734 2976  [ 0D411EEA92751C1ECD8453892F41E726 ] SNDSrvc         C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
14:41:40.0734 2976  SNDSrvc - ok
14:41:40.0765 2976  [ 60C377BE6B3CC83F6A8584934B181D2E ] SNMP            C:\WINDOWS\System32\snmp.exe
14:41:40.0765 2976  SNMP - ok
14:41:40.0765 2976  [ 80A050795A107A76C2B1CD4CFBE010E6 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
14:41:40.0781 2976  SNMPTRAP - ok
14:41:40.0796 2976  [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow         C:\WINDOWS\system32\DRIVERS\sparrow.sys
14:41:40.0796 2976  Sparrow - ok
14:41:40.0890 2976  [ 677B10906838D3BFB1C07AC9087E4BF7 ] SPBBCDrv        C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
14:41:40.0906 2976  SPBBCDrv - ok
14:41:41.0046 2976  [ C830007369E18A54AED23B5BB3AFA2BA ] SPBBCSvc        C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
14:41:41.0156 2976  SPBBCSvc - ok
14:41:41.0171 2976  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
14:41:41.0171 2976  splitter - ok
14:41:41.0203 2976  [ 60784F891563FB1B767F70117FC2428F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
14:41:41.0203 2976  Spooler - ok
14:41:41.0218 2976  [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
14:41:41.0218 2976  sr - ok
14:41:41.0265 2976  srescan - ok
14:41:41.0281 2976  [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice       C:\WINDOWS\system32\srsvc.dll
14:41:41.0296 2976  srservice - ok
14:41:41.0328 2976  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
14:41:41.0328 2976  Srv - ok
14:41:41.0359 2976  [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
14:41:41.0359 2976  SSDPSRV - ok
14:41:41.0390 2976  [ 359FEE084F1173FFFFD7F9CCBD43D47F ] ssudmdm         C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
14:41:41.0390 2976  ssudmdm - ok
14:41:41.0468 2976  [ 8990440E4B2A7CA5A56A1833B03741FD ] STHDA           C:\WINDOWS\system32\drivers\sthda.sys
14:41:41.0500 2976  STHDA - ok
14:41:41.0546 2976  [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
14:41:41.0562 2976  stisvc - ok
14:41:41.0578 2976  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
14:41:41.0578 2976  swenum - ok
14:41:41.0593 2976  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
14:41:41.0609 2976  swmidi - ok
14:41:41.0609 2976  SwPrv - ok
14:41:41.0640 2976  [ 69C10737BFFA69EE1AF44F27E0098BED ] sxuptp          C:\WINDOWS\system32\DRIVERS\sxuptp.sys
14:41:41.0656 2976  sxuptp - ok
14:41:41.0796 2976  [ 8FDAADF204A4F29214DA1B03342E2735 ] Symantec AntiVirus C:\Program Files\Symantec Client Security\Symantec AntiVirus\Rtvscan.exe
14:41:41.0828 2976  Symantec AntiVirus - ok
14:41:41.0859 2976  [ 1FF3217614018630D0A6758630FC698C ] symc810         C:\WINDOWS\system32\DRIVERS\symc810.sys
14:41:41.0859 2976  symc810 - ok
14:41:41.0859 2976  [ 070E001D95CF725186EF8B20335F933C ] symc8xx         C:\WINDOWS\system32\DRIVERS\symc8xx.sys
14:41:41.0859 2976  symc8xx - ok
14:41:41.0875 2976  [ 99F158D37B42FCA00B3F5AB5B3EFEBB7 ] SYMDNS          C:\WINDOWS\System32\Drivers\SYMDNS.SYS
14:41:41.0875 2976  SYMDNS - ok
14:41:41.0921 2976  [ DE6D1102D55926354171AE4E73936725 ] SymEvent        C:\Program Files\Symantec\SYMEVENT.SYS
14:41:41.0921 2976  SymEvent - ok
14:41:41.0953 2976  [ 29AE12DB354A89382A43A8FCB6AB0AB5 ] SYMFW           C:\WINDOWS\System32\Drivers\SYMFW.SYS
14:41:41.0953 2976  SYMFW - ok
14:41:42.0000 2976  [ 728D1DFF8573B5DD18DA536FA733EB11 ] SYMIDS          C:\WINDOWS\System32\Drivers\SYMIDS.SYS
14:41:42.0000 2976  SYMIDS - ok
14:41:42.0031 2976  [ B1F616C31575DA1535C2A7823C112182 ] SYMNDIS         C:\WINDOWS\System32\Drivers\SYMNDIS.SYS
14:41:42.0031 2976  SYMNDIS - ok
14:41:42.0046 2976  [ 6C0A85982F4E0D672B85A2BFB50A24B5 ] SYMREDRV        C:\WINDOWS\System32\Drivers\SYMREDRV.SYS
14:41:42.0046 2976  SYMREDRV - ok
14:41:42.0093 2976  [ 768F00CA60302DA7CA682B58C52A3A05 ] SymSecurePort   C:\Program Files\Symantec Client Security\Symantec Client Firewall\SymSPort.exe
14:41:42.0093 2976  SymSecurePort - ok
14:41:42.0140 2976  [ CDDA3BA3F7D5B63FF9F85CB478C11473 ] SYMTDI          C:\WINDOWS\System32\Drivers\SYMTDI.SYS
14:41:42.0156 2976  SYMTDI - ok
14:41:42.0171 2976  [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi          C:\WINDOWS\system32\DRIVERS\sym_hi.sys
14:41:42.0171 2976  sym_hi - ok
14:41:42.0171 2976  [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3          C:\WINDOWS\system32\DRIVERS\sym_u3.sys
14:41:42.0171 2976  sym_u3 - ok
14:41:42.0187 2976  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
14:41:42.0187 2976  sysaudio - ok
14:41:42.0234 2976  [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
14:41:42.0234 2976  SysmonLog - ok
14:41:42.0265 2976  [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
14:41:42.0281 2976  TapiSrv - ok
14:41:42.0328 2976  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
14:41:42.0328 2976  Tcpip - ok
14:41:42.0359 2976  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
14:41:42.0359 2976  TDPIPE - ok
14:41:42.0375 2976  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
14:41:42.0375 2976  TDTCP - ok
14:41:42.0390 2976  [ 88155247177638048422893737429D9E ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
14:41:42.0390 2976  TermDD - ok
14:41:42.0421 2976  [ FF3477C03BE7201C294C35F684B3479F ] TermService     C:\WINDOWS\System32\termsrv.dll
14:41:42.0421 2976  TermService - ok
14:41:42.0437 2976  [ 99BC0B50F511924348BE19C7C7313BBF ] Themes          C:\WINDOWS\System32\shsvcs.dll
14:41:42.0437 2976  Themes - ok
14:41:42.0468 2976  [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde          C:\WINDOWS\system32\DRIVERS\toside.sys
14:41:42.0468 2976  TosIde - ok
14:41:42.0484 2976  [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks          C:\WINDOWS\system32\trkwks.dll
14:41:42.0484 2976  TrkWks - ok
14:41:42.0515 2976  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
14:41:42.0515 2976  Udfs - ok
14:41:42.0531 2976  [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra           C:\WINDOWS\system32\DRIVERS\ultra.sys
14:41:42.0546 2976  ultra - ok
14:41:42.0562 2976  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
14:41:42.0578 2976  Update - ok
14:41:42.0593 2976  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost        C:\WINDOWS\System32\upnphost.dll
14:41:42.0593 2976  upnphost - ok
14:41:42.0609 2976  [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS             C:\WINDOWS\System32\ups.exe
14:41:42.0609 2976  UPS - ok
14:41:42.0625 2976  USBAAPL - ok
14:41:42.0656 2976  [ E919708DB44ED8543A7C017953148330 ] usbaudio        C:\WINDOWS\system32\drivers\usbaudio.sys
14:41:42.0656 2976  usbaudio - ok
14:41:42.0671 2976  [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
14:41:42.0671 2976  usbccgp - ok
14:41:42.0703 2976  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
14:41:42.0703 2976  usbehci - ok
14:41:42.0718 2976  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
14:41:42.0734 2976  usbhub - ok
14:41:42.0750 2976  [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci         C:\WINDOWS\system32\DRIVERS\usbohci.sys
14:41:42.0750 2976  usbohci - ok
14:41:42.0765 2976  [ A717C8721046828520C9EDF31288FC00 ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
14:41:42.0765 2976  usbprint - ok
14:41:42.0781 2976  [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
14:41:42.0781 2976  usbscan - ok
14:41:42.0812 2976  [ 1C888B000C2F9492F4B15B5B6B84873E ] usbser          C:\WINDOWS\system32\drivers\usbser.sys
14:41:42.0812 2976  usbser - ok
14:41:42.0843 2976  [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
14:41:42.0843 2976  USBSTOR - ok
14:41:42.0859 2976  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
14:41:42.0859 2976  usbuhci - ok
14:41:42.0875 2976  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
14:41:42.0875 2976  VgaSave - ok
14:41:42.0906 2976  [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp          C:\WINDOWS\system32\DRIVERS\viaagp.sys
14:41:42.0906 2976  viaagp - ok
14:41:42.0937 2976  [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde          C:\WINDOWS\system32\DRIVERS\viaide.sys
14:41:42.0937 2976  ViaIde - ok
14:41:42.0968 2976  [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
14:41:42.0968 2976  VolSnap - ok
14:41:43.0031 2976  [ AF83FADF8BC5DBDF481D14F5A08FC2FF ] vsdatant        C:\WINDOWS\system32\vsdatant.sys
14:41:43.0031 2976  vsdatant - ok
14:41:43.0078 2976  [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS             C:\WINDOWS\System32\vssvc.exe
14:41:43.0078 2976  VSS - ok
14:41:43.0125 2976  [ D4BAA1AC8DCEA1382E81AA6FE48CDD7C ] w300bus         C:\WINDOWS\system32\DRIVERS\w300bus.sys
14:41:43.0125 2976  w300bus - ok
14:41:43.0140 2976  [ 12D415AB0DDD86C42CDC5F120A381F24 ] w300mdfl        C:\WINDOWS\system32\DRIVERS\w300mdfl.sys
14:41:43.0140 2976  w300mdfl - ok
14:41:43.0171 2976  [ F470D5E61EE7F951883F70D676551C89 ] w300mdm         C:\WINDOWS\system32\DRIVERS\w300mdm.sys
14:41:43.0171 2976  w300mdm - ok
14:41:43.0171 2976  [ 1B575B7384E22F5B278D3D7FC1BAE682 ] w300mgmt        C:\WINDOWS\system32\DRIVERS\w300mgmt.sys
14:41:43.0171 2976  w300mgmt - ok
14:41:43.0187 2976  [ A2BC36924AE02CA1E01EC39C99AFEA09 ] w300obex        C:\WINDOWS\system32\DRIVERS\w300obex.sys
14:41:43.0187 2976  w300obex - ok
14:41:43.0203 2976  [ 54AF4B1D5459500EF0937F6D33B1914F ] w32time         C:\WINDOWS\system32\w32time.dll
14:41:43.0203 2976  w32time - ok
14:41:43.0234 2976  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
14:41:43.0234 2976  Wanarp - ok
14:41:43.0250 2976  wanatw - ok
14:41:43.0296 2976  [ D918617B46457B9AC28027722E30F647 ] Wdf01000        C:\WINDOWS\system32\Drivers\wdf01000.sys
14:41:43.0312 2976  Wdf01000 - ok
14:41:43.0312 2976  WDICA - ok
14:41:43.0328 2976  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
14:41:43.0328 2976  wdmaud - ok
14:41:43.0359 2976  [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient       C:\WINDOWS\System32\webclnt.dll
14:41:43.0375 2976  WebClient - ok
14:41:43.0468 2976  [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
14:41:43.0468 2976  winmgmt - ok
14:41:43.0500 2976  [ FD600B032E741EB6AAB509FC630F7C42 ] WinUSB          C:\WINDOWS\system32\DRIVERS\WinUSB.sys
14:41:43.0500 2976  WinUSB - ok
14:41:43.0531 2976  [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
14:41:43.0531 2976  WmdmPmSN - ok
14:41:43.0562 2976  [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
14:41:43.0562 2976  WmiApSrv - ok
14:41:43.0656 2976  [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc   C:\Program Files\Windows Media Player\WMPNetwk.exe
14:41:43.0703 2976  WMPNetworkSvc - ok
14:41:43.0734 2976  [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb          C:\WINDOWS\system32\DRIVERS\wpdusb.sys
14:41:43.0734 2976  WpdUsb - ok
14:41:43.0984 2976  [ 120F3B596F79FC990B7D808857A8B3BC ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
14:41:44.0000 2976  WPFFontCache_v0400 - ok
14:41:44.0015 2976  [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys
14:41:44.0015 2976  WS2IFSL - ok
14:41:44.0046 2976  [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
14:41:44.0046 2976  wscsvc - ok
14:41:44.0078 2976  [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
14:41:44.0078 2976  wuauserv - ok
14:41:44.0109 2976  [ EAA6324F51214D2F6718977EC9CE0DEF ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
14:41:44.0109 2976  WudfPf - ok
14:41:44.0125 2976  [ F91FF1E51FCA30B3C3981DB7D5924252 ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
14:41:44.0125 2976  WudfRd - ok
14:41:44.0156 2976  [ DDEE3682FE97037C45F4D7AB467CB8B6 ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
14:41:44.0156 2976  WudfSvc - ok
14:41:44.0203 2976  [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
14:41:44.0203 2976  WZCSVC - ok
14:41:44.0234 2976  [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
14:41:44.0234 2976  xmlprov - ok
14:41:44.0234 2976  ================ Scan global ===============================
14:41:44.0265 2976  [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
14:41:44.0296 2976  [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
14:41:44.0312 2976  [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
14:41:44.0343 2976  [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
14:41:44.0343 2976  [Global] - ok
14:41:44.0343 2976  ================ Scan MBR ==================================
14:41:44.0359 2976  [ 5CB90281D1A59B251F6603134774EEC3 ] \Device\Harddisk0\DR0
14:41:44.0562 2976  \Device\Harddisk0\DR0 ( TDSS File System ) - warning
14:41:44.0562 2976  \Device\Harddisk0\DR0 - detected TDSS File System (1)
14:41:44.0562 2976  ================ Scan VBR ==================================
14:41:44.0562 2976  [ 26A2E83B28A8A296AA7B2A89E0E3D0EC ] \Device\Harddisk0\DR0\Partition1
14:41:44.0562 2976  \Device\Harddisk0\DR0\Partition1 - ok
14:41:44.0562 2976  ============================================================
14:41:44.0562 2976  Scan finished
14:41:44.0562 2976  ============================================================
14:41:44.0578 3700  Detected object count: 1
14:41:44.0578 3700  Actual detected object count: 1
14:41:57.0796 3700  \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
14:41:57.0796 3700  \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip 
14:42:06.0765 2536  Deinitialize success
 

ESET Scanner

 

ESET could not update the files online- so had to abort



#4 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:04 PM

Posted 03 August 2013 - 02:33 PM

:step1: Backdoor/Rootkit warning: TDSS

 

This computer is infected with a rootkit called TDSS. You will need to change all passwords after this and pay attention to do nothomebanking. Don't use the machine now for other goals then malware removal.

 

:step2: Rerun TDSSKiller This time: Delete >>TDSS file system.

 

==

 

14:41:57.0796 3700  \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
14:41:57.0796 3700  \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip 

 

==

 

:step3: Repeat scan with TDSSKiller and see if TDSS is gone.


Edited by GodfatherKing, 03 August 2013 - 02:33 PM.

If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#5 mohandesai

mohandesai
  • Topic Starter

  • Members
  • 37 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:04 PM

Posted 03 August 2013 - 04:24 PM

Here is the TDSS log after removal
 
17:21:13.0859 5260  TDSS rootkit removing tool 2.8.18.0 Jun 10 2013 21:44:19
17:21:13.0968 5260  ============================================================
17:21:13.0968 5260  Current date / time: 2013/08/03 17:21:13.0968
17:21:13.0968 5260  SystemInfo:
17:21:13.0968 5260  
17:21:13.0968 5260  OS Version: 5.1.2600 ServicePack: 3.0
17:21:13.0968 5260  Product type: Workstation
17:21:13.0968 5260  ComputerName: WHITE_DELL
17:21:13.0968 5260  UserName: Mohan
17:21:13.0968 5260  Windows directory: C:\WINDOWS
17:21:13.0968 5260  System windows directory: C:\WINDOWS
17:21:13.0968 5260  Processor architecture: Intel x86
17:21:13.0968 5260  Number of processors: 2
17:21:13.0968 5260  Page size: 0x1000
17:21:13.0968 5260  Boot type: Normal boot
17:21:13.0968 5260  ============================================================
17:21:15.0421 5260  Drive \Device\Harddisk0\DR0 - Size: 0x2540BE4000 (149.01 Gb), SectorSize: 0x200, Cylinders: 0x4BFC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
17:21:15.0437 5260  Drive \Device\Harddisk1\DR4 - Size: 0xEA108000 (3.66 Gb), SectorSize: 0x200, Cylinders: 0x1DD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
17:21:15.0437 5260  ============================================================
17:21:15.0437 5260  \Device\Harddisk0\DR0:
17:21:15.0437 5260  MBR partitions:
17:21:15.0437 5260  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x123EC0EE
17:21:15.0437 5260  \Device\Harddisk1\DR4:
17:21:15.0437 5260  MBR partitions:
17:21:15.0437 5260  \Device\Harddisk1\DR4\Partition1: MBR, Type 0xB, StartLBA 0x800, BlocksNum 0x6ED000
17:21:15.0437 5260  ============================================================
17:21:15.0546 5260  C: <-> \Device\Harddisk0\DR0\Partition1
17:21:15.0546 5260  ============================================================
17:21:15.0546 5260  Initialize success
17:21:15.0546 5260  ============================================================
17:21:24.0156 5532  ============================================================
17:21:24.0156 5532  Scan started
17:21:24.0156 5532  Mode: Manual; TDLFS; 
17:21:24.0156 5532  ============================================================
17:21:24.0687 5532  ================ Scan system memory ========================
17:21:24.0687 5532  System memory - ok
17:21:24.0687 5532  ================ Scan services =============================
17:21:25.0640 5532  Abiosdsk - ok
17:21:25.0687 5532  [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5        C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
17:21:25.0750 5532  abp480n5 - ok
17:21:25.0812 5532  [ 07CF5CC8BEB9B7EBB75E3FB61464C7AC ] ABVPN2K         C:\WINDOWS\system32\DRIVERS\abvpn2k.sys
17:21:25.0843 5532  ABVPN2K - ok
17:21:25.0906 5532  [ 8FD99680A539792A30E97944FDAECF17 ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
17:21:25.0906 5532  ACPI - ok
17:21:25.0937 5532  [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
17:21:25.0937 5532  ACPIEC - ok
17:21:25.0984 5532  [ 476BB014F3F68C0C15EDDD5B444DA8FF ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
17:21:26.0000 5532  AdobeFlashPlayerUpdateSvc - ok
17:21:26.0031 5532  [ 9A11864873DA202C996558B2106B0BBC ] adpu160m        C:\WINDOWS\system32\DRIVERS\adpu160m.sys
17:21:26.0046 5532  adpu160m - ok
17:21:26.0062 5532  [ 8BED39E3C35D6A489438B8141717A557 ] aec             C:\WINDOWS\system32\drivers\aec.sys
17:21:26.0062 5532  aec - ok
17:21:26.0109 5532  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
17:21:26.0125 5532  AFD - ok
17:21:26.0156 5532  [ 685443AFA5D1A94C5F47E4846B0E4C3D ] agnwifi         C:\WINDOWS\system32\DRIVERS\agnwifi.sys
17:21:26.0203 5532  agnwifi - ok
17:21:26.0218 5532  [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440          C:\WINDOWS\system32\DRIVERS\agp440.sys
17:21:26.0234 5532  agp440 - ok
17:21:26.0234 5532  [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ          C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
17:21:26.0250 5532  agpCPQ - ok
17:21:26.0265 5532  [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x         C:\WINDOWS\system32\DRIVERS\aha154x.sys
17:21:26.0265 5532  Aha154x - ok
17:21:26.0281 5532  [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2         C:\WINDOWS\system32\DRIVERS\aic78u2.sys
17:21:26.0281 5532  aic78u2 - ok
17:21:26.0296 5532  [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx         C:\WINDOWS\system32\DRIVERS\aic78xx.sys
17:21:26.0296 5532  aic78xx - ok
17:21:26.0328 5532  [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
17:21:26.0328 5532  Alerter - ok
17:21:26.0343 5532  [ 8C515081584A38AA007909CD02020B3D ] ALG             C:\WINDOWS\System32\alg.exe
17:21:26.0343 5532  ALG - ok
17:21:26.0359 5532  [ 1140AB9938809700B46BB88E46D72A96 ] AliIde          C:\WINDOWS\system32\DRIVERS\aliide.sys
17:21:26.0359 5532  AliIde - ok
17:21:26.0390 5532  [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541        C:\WINDOWS\system32\DRIVERS\alim1541.sys
17:21:26.0390 5532  alim1541 - ok
17:21:26.0421 5532  [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp          C:\WINDOWS\system32\DRIVERS\amdagp.sys
17:21:26.0421 5532  amdagp - ok
17:21:26.0453 5532  [ 0A4D13B388C814560BD69C3A496ECFA8 ] AmdK8           C:\WINDOWS\system32\DRIVERS\AmdK8.sys
17:21:26.0453 5532  AmdK8 - ok
17:21:26.0468 5532  [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint          C:\WINDOWS\system32\DRIVERS\amsint.sys
17:21:26.0484 5532  amsint - ok
17:21:26.0484 5532  AppMgmt - ok
17:21:26.0515 5532  [ 62D318E9A0C8FC9B780008E724283707 ] asc             C:\WINDOWS\system32\DRIVERS\asc.sys
17:21:26.0515 5532  asc - ok
17:21:26.0531 5532  [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p        C:\WINDOWS\system32\DRIVERS\asc3350p.sys
17:21:26.0531 5532  asc3350p - ok
17:21:26.0546 5532  [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550         C:\WINDOWS\system32\DRIVERS\asc3550.sys
17:21:26.0546 5532  asc3550 - ok
17:21:26.0593 5532  [ 54AB078660E536DA72B21A27F56B035B ] Aspi32          C:\WINDOWS\system32\drivers\Aspi32.sys
17:21:26.0593 5532  Aspi32 - ok
17:21:26.0734 5532  [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
17:21:26.0765 5532  aspnet_state - ok
17:21:26.0781 5532  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
17:21:26.0781 5532  AsyncMac - ok
17:21:26.0812 5532  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
17:21:26.0812 5532  atapi - ok
17:21:26.0812 5532  Atdisk - ok
17:21:26.0906 5532  [ D80A3FD3DB6F999F6D1C6D23A293851B ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
17:21:26.0921 5532  Ati HotKey Poller - ok
17:21:27.0250 5532  [ C832BF76F003999D2E91E5115583C69E ] ati2mtag        C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
17:21:27.0609 5532  ati2mtag - ok
17:21:27.0640 5532  [ B2A236DC65E90170A369164384EFB460 ] AtiHDAudioService C:\WINDOWS\system32\drivers\AtihdXP3.sys
17:21:27.0656 5532  AtiHDAudioService - ok
17:21:27.0703 5532  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
17:21:27.0718 5532  Atmarpc - ok
17:21:27.0750 5532  [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
17:21:27.0750 5532  AudioSrv - ok
17:21:27.0781 5532  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
17:21:27.0781 5532  audstub - ok
17:21:27.0812 5532  [ 84632BB018CDB66B366EAD809BB0A426 ] avpnnic         C:\WINDOWS\system32\DRIVERS\avpnnic.sys
17:21:27.0812 5532  avpnnic - ok
17:21:27.0937 5532  [ B3469F8BD7FB79395DD31E2B27F77C62 ] Basics Service  C:\Program Files\Seagate\Basics\Service\SyncServicesBasics.exe
17:21:27.0937 5532  Basics Service - ok
17:21:27.0984 5532  [ 78E7B52DA292FA90BAD2F887BBF22159 ] bcm4sbxp        C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys
17:21:28.0000 5532  bcm4sbxp - ok
17:21:28.0031 5532  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
17:21:28.0046 5532  Beep - ok
17:21:28.0078 5532  [ 574738F61FCA2935F5265DC4E5691314 ] BITS            C:\WINDOWS\system32\qmgr.dll
17:21:28.0125 5532  BITS - ok
17:21:28.0156 5532  [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser         C:\WINDOWS\System32\browser.dll
17:21:28.0156 5532  Browser - ok
17:21:28.0203 5532  [ 3DC7B0C7BE6164D3152513C0C208AD3B ] btaudio         C:\WINDOWS\system32\drivers\btaudio.sys
17:21:28.0234 5532  btaudio - ok
17:21:28.0265 5532  [ 2F9F111D31AA3FBBE5781D829A4524E6 ] BTDriver        C:\WINDOWS\system32\DRIVERS\btport.sys
17:21:28.0281 5532  BTDriver - ok
17:21:28.0296 5532  [ B279426E3C0C344893ED78A613A73BDE ] BthEnum         C:\WINDOWS\system32\DRIVERS\BthEnum.sys
17:21:28.0296 5532  BthEnum - ok
17:21:28.0328 5532  [ FCA6F069597B62D42495191ACE3FC6C1 ] BTHMODEM        C:\WINDOWS\system32\DRIVERS\bthmodem.sys
17:21:28.0328 5532  BTHMODEM - ok
17:21:28.0359 5532  [ 80602B8746D3738F5886CE3D67EF06B6 ] BthPan          C:\WINDOWS\system32\DRIVERS\bthpan.sys
17:21:28.0359 5532  BthPan - ok
17:21:28.0390 5532  [ 662BFD909447DD9CC15B1A1C366583B4 ] BTHPORT         C:\WINDOWS\system32\Drivers\BTHport.sys
17:21:28.0390 5532  BTHPORT - ok
17:21:28.0421 5532  [ F4C43C66471B87996D95DB7A3A664A37 ] BthServ         C:\WINDOWS\System32\bthserv.dll
17:21:28.0421 5532  BthServ - ok
17:21:28.0453 5532  [ 61364CD71EF63B0F038B7E9DF00F1EFA ] BTHUSB          C:\WINDOWS\system32\Drivers\BTHUSB.sys
17:21:28.0453 5532  BTHUSB - ok
17:21:28.0515 5532  [ 9F704F40CD50AE05BBFC492C0342E765 ] BTKRNL          C:\WINDOWS\system32\DRIVERS\btkrnl.sys
17:21:28.0578 5532  BTKRNL - ok
17:21:28.0687 5532  [ 7F9450547C5C1BC1FA9FD7E1059796CC ] btwdins         C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
17:21:28.0703 5532  btwdins - ok
17:21:28.0718 5532  [ 485020A1E1FC5C51A800CA69C618D881 ] BTWDNDIS        C:\WINDOWS\system32\DRIVERS\btwdndis.sys
17:21:28.0718 5532  BTWDNDIS - ok
17:21:28.0734 5532  [ C51D50CF24DA69A9C499E65B0EDB3BB7 ] btwhid          C:\WINDOWS\system32\DRIVERS\btwhid.sys
17:21:28.0734 5532  btwhid - ok
17:21:28.0765 5532  [ 5922BAE0CD84924B9CD7E6BB515EE070 ] btwmodem        C:\WINDOWS\system32\DRIVERS\btwmodem.sys
17:21:28.0765 5532  btwmodem - ok
17:21:28.0796 5532  [ 1166CB501E1C34750A91600579EFEAB3 ] BTWUSB          C:\WINDOWS\system32\Drivers\btwusb.sys
17:21:28.0796 5532  BTWUSB - ok
17:21:28.0828 5532  [ 248DFA5762DDE38DFDDBBD44149E9D7A ] BVRPMPR5        C:\WINDOWS\system32\drivers\BVRPMPR5.SYS
17:21:28.0828 5532  BVRPMPR5 - ok
17:21:28.0859 5532  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf           C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
17:21:28.0859 5532  cbidf - ok
17:21:28.0859 5532  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
17:21:28.0859 5532  cbidf2k - ok
17:21:29.0015 5532  [ 0A6786C95A6F8715AA4285E3C27F201F ] ccEvtMgr        C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
17:21:29.0015 5532  ccEvtMgr - ok
17:21:29.0078 5532  [ F4CBCA2089A8419BF3397A1BC248C54D ] ccProxy         C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
17:21:29.0078 5532  ccProxy - ok
17:21:29.0140 5532  [ 3B4898CF051BB04FB76E94361E336A83 ] ccSetMgr        C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
17:21:29.0140 5532  ccSetMgr - ok
17:21:29.0171 5532  [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt        C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
17:21:29.0171 5532  cd20xrnt - ok
17:21:29.0203 5532  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
17:21:29.0203 5532  Cdaudio - ok
17:21:29.0234 5532  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
17:21:29.0234 5532  Cdfs - ok
17:21:29.0250 5532  [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
17:21:29.0250 5532  Cdrom - ok
17:21:29.0250 5532  Changer - ok
17:21:29.0296 5532  [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc           C:\WINDOWS\system32\cisvc.exe
17:21:29.0296 5532  CiSvc - ok
17:21:29.0328 5532  [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
17:21:29.0328 5532  ClipSrv - ok
17:21:29.0343 5532  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:21:29.0484 5532  clr_optimization_v2.0.50727_32 - ok
17:21:29.0640 5532  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:21:29.0640 5532  clr_optimization_v4.0.30319_32 - ok
17:21:29.0703 5532  [ 5CD4492C782909D6E0D76539E597584B ] CM1083264TB     C:\WINDOWS\system32\drivers\CM108.sys
17:21:29.0812 5532  CM1083264TB - ok
17:21:29.0828 5532  [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde          C:\WINDOWS\system32\DRIVERS\cmdide.sys
17:21:29.0843 5532  CmdIde - ok
17:21:29.0843 5532  COMSysApp - ok
17:21:29.0859 5532  [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray        C:\WINDOWS\system32\DRIVERS\cpqarray.sys
17:21:29.0875 5532  Cpqarray - ok
17:21:29.0906 5532  [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
17:21:29.0906 5532  CryptSvc - ok
17:21:29.0921 5532  CrystalSysInfo - ok
17:21:29.0968 5532  [ 395269446A620A553FEC2E73A72E94A9 ] D-Link SharePort Helper C:\Program Files\D-Link\SharePort Utility\Spnuhelper.exe
17:21:29.0968 5532  D-Link SharePort Helper - ok
17:21:30.0000 5532  [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k         C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
17:21:30.0000 5532  dac2w2k - ok
17:21:30.0015 5532  [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt        C:\WINDOWS\system32\DRIVERS\dac960nt.sys
17:21:30.0031 5532  dac960nt - ok
17:21:30.0062 5532  [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
17:21:30.0093 5532  DcomLaunch - ok
17:21:30.0171 5532  [ 1F709C66D8AADFF35530C56EE261C462 ] DefWatch        C:\Program Files\Symantec Client Security\Symantec AntiVirus\DefWatch.exe
17:21:30.0187 5532  DefWatch - ok
17:21:30.0203 5532  [ 6216FD7FD227DE454238A702B218CEC7 ] dgderdrv        C:\WINDOWS\system32\drivers\dgderdrv.sys
17:21:30.0218 5532  dgderdrv - ok
17:21:30.0250 5532  [ A5034F77B278F07E224FE07CF98A8B76 ] DgiVecp         C:\WINDOWS\system32\Drivers\DgiVecp.sys
17:21:30.0281 5532  DgiVecp - ok
17:21:30.0312 5532  [ 6CC6C4B9D7B906A151AA094CA087B9F0 ] dg_ssudbus      C:\WINDOWS\system32\DRIVERS\ssudbus.sys
17:21:30.0328 5532  dg_ssudbus - ok
17:21:30.0375 5532  [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
17:21:30.0375 5532  Dhcp - ok
17:21:30.0390 5532  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
17:21:30.0390 5532  Disk - ok
17:21:30.0406 5532  dmadmin - ok
17:21:30.0437 5532  [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
17:21:30.0468 5532  dmboot - ok
17:21:30.0484 5532  [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
17:21:30.0484 5532  dmio - ok
17:21:30.0515 5532  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
17:21:30.0515 5532  dmload - ok
17:21:30.0562 5532  [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver        C:\WINDOWS\System32\dmserver.dll
17:21:30.0562 5532  dmserver - ok
17:21:30.0578 5532  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
17:21:30.0578 5532  DMusic - ok
17:21:30.0609 5532  [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
17:21:30.0609 5532  Dnscache - ok
17:21:30.0687 5532  [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
17:21:30.0734 5532  Dot3svc - ok
17:21:30.0765 5532  [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o          C:\WINDOWS\system32\DRIVERS\dpti2o.sys
17:21:30.0781 5532  dpti2o - ok
17:21:30.0796 5532  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
17:21:30.0812 5532  drmkaud - ok
17:21:30.0937 5532  [ 2AC2372FFAD9ADC85672CC8E8AE14BE9 ] DSproct         C:\Program Files\Dell Support\GTAction\triggers\DSproct.sys
17:21:30.0984 5532  DSproct - ok
17:21:31.0015 5532  [ 3FCA03CBCA11269F973B70FA483C88EF ] E100B           C:\WINDOWS\system32\DRIVERS\e100b325.sys
17:21:31.0046 5532  E100B - ok
17:21:31.0093 5532  [ 14EA0C26137744636EB25B3FF1F2B02E ] eamon           C:\WINDOWS\system32\DRIVERS\eamon.sys
17:21:31.0109 5532  eamon - ok
17:21:31.0187 5532  [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost         C:\WINDOWS\System32\eapsvc.dll
17:21:31.0218 5532  EapHost - ok
17:21:31.0375 5532  [ 579A6B6135D32B857FAF0E3A974535D8 ] eeCtrl          C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
17:21:31.0500 5532  eeCtrl - ok
17:21:31.0546 5532  [ 366369746D1818FDD8589D1F2C8A6D03 ] ehdrv           C:\WINDOWS\system32\DRIVERS\ehdrv.sys
17:21:31.0562 5532  ehdrv - ok
17:21:32.0234 5532  [ 7FE34FD5652C54BDA8D2DF8AC92E833A ] ekrn            C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
17:21:32.0250 5532  ekrn - ok
17:21:32.0312 5532  [ 8BED309AC2E0ACDB9DE6B645B1FBB871 ] epfwtdir        C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
17:21:32.0328 5532  epfwtdir - ok
17:21:32.0375 5532  [ 028D50F059BD0D2CCB209E9011B9A9A4 ] EraserUtilRebootDrv C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
17:21:32.0421 5532  EraserUtilRebootDrv - ok
17:21:32.0484 5532  [ BC93B4A066477954555966D77FEC9ECB ] ERSvc           C:\WINDOWS\System32\ersvc.dll
17:21:32.0484 5532  ERSvc - ok
17:21:32.0531 5532  [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog        C:\WINDOWS\system32\services.exe
17:21:32.0546 5532  Eventlog - ok
17:21:32.0609 5532  [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem     C:\WINDOWS\system32\es.dll
17:21:32.0625 5532  EventSystem - ok
17:21:32.0671 5532  [ 38D332A6D56AF32635675F132548343E ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
17:21:32.0703 5532  Fastfat - ok
17:21:32.0765 5532  [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
17:21:32.0828 5532  FastUserSwitchingCompatibility - ok
17:21:32.0937 5532  [ E97D6A8684466DF94FF3BC24FB787A07 ] Fax             C:\WINDOWS\system32\fxssvc.exe
17:21:33.0046 5532  Fax - ok
17:21:33.0109 5532  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys
17:21:33.0140 5532  Fdc - ok
17:21:33.0171 5532  [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
17:21:33.0187 5532  Fips - ok
17:21:33.0234 5532  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        C:\WINDOWS\system32\DRIVERS\flpydisk.sys
17:21:33.0250 5532  Flpydisk - ok
17:21:33.0296 5532  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
17:21:33.0296 5532  FltMgr - ok
17:21:33.0390 5532  [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
17:21:33.0468 5532  FontCache3.0.0.0 - ok
17:21:33.0500 5532  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
17:21:33.0515 5532  Fs_Rec - ok
17:21:33.0546 5532  [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
17:21:33.0562 5532  Ftdisk - ok
17:21:33.0593 5532  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
17:21:33.0609 5532  Gpc - ok
17:21:33.0734 5532  [ 626A24ED1228580B9518C01930936DF9 ] gupdate1c9d74d5435bc92 C:\Program Files\Google\Update\GoogleUpdate.exe
17:21:33.0734 5532  gupdate1c9d74d5435bc92 - ok
17:21:33.0765 5532  [ 626A24ED1228580B9518C01930936DF9 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
17:21:33.0765 5532  gupdatem - ok
17:21:33.0812 5532  [ 408DDD80EEDE47175F6844817B90213E ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
17:21:33.0875 5532  gusvc - ok
17:21:33.0937 5532  [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
17:21:34.0015 5532  HDAudBus - ok
17:21:34.0140 5532  [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
17:21:34.0140 5532  helpsvc - ok
17:21:34.0203 5532  [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ         C:\WINDOWS\System32\hidserv.dll
17:21:34.0203 5532  HidServ - ok
17:21:34.0250 5532  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
17:21:34.0265 5532  HidUsb - ok
17:21:34.0312 5532  [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
17:21:34.0328 5532  hkmsvc - ok
17:21:34.0343 5532  [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn             C:\WINDOWS\system32\DRIVERS\hpn.sys
17:21:34.0359 5532  hpn - ok
17:21:34.0390 5532  [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
17:21:34.0390 5532  HTTP - ok
17:21:34.0406 5532  [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
17:21:34.0406 5532  HTTPFilter - ok
17:21:34.0453 5532  [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt         C:\WINDOWS\system32\drivers\i2omgmt.sys
17:21:34.0453 5532  i2omgmt - ok
17:21:34.0468 5532  [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp           C:\WINDOWS\system32\DRIVERS\i2omp.sys
17:21:34.0484 5532  i2omp - ok
17:21:34.0515 5532  [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
17:21:34.0515 5532  i8042prt - ok
17:21:34.0609 5532  [ 6F95324909B502E2651442C1548AB12F ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
17:21:34.0687 5532  IDriverT - ok
17:21:34.0781 5532  [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc           c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
17:21:34.0812 5532  idsvc - ok
17:21:34.0843 5532  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
17:21:34.0843 5532  Imapi - ok
17:21:34.0875 5532  [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService    C:\WINDOWS\system32\imapi.exe
17:21:34.0875 5532  ImapiService - ok
17:21:34.0906 5532  [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u         C:\WINDOWS\system32\DRIVERS\ini910u.sys
17:21:34.0906 5532  ini910u - ok
17:21:34.0921 5532  [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde        C:\WINDOWS\system32\DRIVERS\intelide.sys
17:21:34.0921 5532  IntelIde - ok
17:21:34.0953 5532  [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
17:21:34.0968 5532  intelppm - ok
17:21:34.0968 5532  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
17:21:34.0968 5532  Ip6Fw - ok
17:21:35.0000 5532  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
17:21:35.0000 5532  IpFilterDriver - ok
17:21:35.0031 5532  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
17:21:35.0031 5532  IpInIp - ok
17:21:35.0046 5532  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
17:21:35.0046 5532  IpNat - ok
17:21:35.0062 5532  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
17:21:35.0062 5532  IPSec - ok
17:21:35.0078 5532  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
17:21:35.0093 5532  IRENUM - ok
17:21:35.0125 5532  [ 14E8ADECE6ED94C75A546055B474C9EE ] IsamFilter      C:\WINDOWS\system32\DRIVERS\isamfilter.sys
17:21:35.0125 5532  IsamFilter - ok
17:21:35.0218 5532  [ 40F0A280384CAD3AB48AAFBA4B94CDE4 ] ISAMSvc         C:\Program Files\C4ebreg\c4ebreg.exe
17:21:35.0218 5532  ISAMSvc - ok
17:21:35.0250 5532  [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
17:21:35.0250 5532  isapnp - ok
17:21:35.0328 5532  [ 1A31E0221EBE037D8ECEFF51E8B11D39 ] ISSIMon         c:\sdwork\issimsvc.exe
17:21:35.0328 5532  ISSIMon - ok
17:21:35.0421 5532  [ A59BA4C8C0698DDC9D805109B0F6C76C ] ISSVC           C:\Program Files\Symantec Client Security\Symantec Client Firewall\ISSVC.exe
17:21:35.0421 5532  ISSVC - ok
17:21:35.0468 5532  [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
17:21:35.0531 5532  Kbdclass - ok
17:21:35.0578 5532  [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
17:21:35.0593 5532  kbdhid - ok
17:21:35.0640 5532  [ 692BCF44383D056AED41B045A323D378 ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
17:21:35.0671 5532  kmixer - ok
17:21:35.0703 5532  [ B467646C54CC746128904E1654C750C1 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
17:21:35.0718 5532  KSecDD - ok
17:21:35.0750 5532  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
17:21:35.0750 5532  lanmanserver - ok
17:21:35.0781 5532  [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
17:21:35.0781 5532  lanmanworkstation - ok
17:21:35.0828 5532  [ BE2DC24D403643A2D1D98F33C7087B38 ] LBeepKE         C:\WINDOWS\system32\Drivers\LBeepKE.sys
17:21:35.0828 5532  LBeepKE - ok
17:21:35.0828 5532  lbrtfdc - ok
17:21:35.0906 5532  [ 910344E2A984010435AE84783B25E5EB ] LBTServ         C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
17:21:35.0921 5532  LBTServ - ok
17:21:35.0968 5532  [ 01CC7FB6E790EF044B411377F3A1FF41 ] LHidFilt        C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
17:21:35.0968 5532  LHidFilt - ok
17:21:36.0000 5532  [ A7DB739AE99A796D91580147E919CC59 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
17:21:36.0015 5532  LmHosts - ok
17:21:36.0031 5532  [ A2E7EAE8898D7B4B8C302B8F4E836BB5 ] LMouFilt        C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
17:21:36.0046 5532  LMouFilt - ok
17:21:36.0265 5532  [ 2098AF12149789FA6608422C8796F77C ] LNSUSvc         c:\notes\SUService.exe
17:21:36.0375 5532  LNSUSvc - ok
17:21:36.0390 5532  Lotus Notes Diagnostics - ok
17:21:36.0406 5532  [ 32933B07FC16D9F778BEE12545FA1B1A ] LPDSVC          C:\WINDOWS\system32\tcpsvcs.exe
17:21:36.0421 5532  LPDSVC - ok
17:21:36.0593 5532  [ EF1F4B00A8705511CA28C090D8F85A6B ] lxdvCATSCustConnectService C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxdvserv.exe
17:21:36.0625 5532  lxdvCATSCustConnectService - ok
17:21:36.0640 5532  lxdv_device - ok
17:21:36.0703 5532  [ 11F714F85530A2BD134074DC30E99FCA ] MDM             C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
17:21:36.0703 5532  MDM - ok
17:21:36.0750 5532  [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
17:21:36.0750 5532  Messenger - ok
17:21:36.0781 5532  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
17:21:36.0796 5532  mnmdd - ok
17:21:36.0828 5532  [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
17:21:36.0828 5532  mnmsrvc - ok
17:21:36.0859 5532  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
17:21:36.0859 5532  Modem - ok
17:21:36.0890 5532  [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
17:21:36.0890 5532  Mouclass - ok
17:21:36.0906 5532  [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
17:21:36.0906 5532  mouhid - ok
17:21:36.0937 5532  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
17:21:36.0937 5532  MountMgr - ok
17:21:36.0984 5532  [ 24406D75B40F0F6B3C1AC7031D734565 ] MpFilter        C:\WINDOWS\system32\DRIVERS\MpFilter.sys
17:21:36.0984 5532  MpFilter - ok
17:21:37.0156 5532  [ A69630D039C38018689190234F866D77 ] MpKsle20b85f9   c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{4BC9FDB5-8E72-4FCD-B1FD-A7EC5C961836}\MpKsle20b85f9.sys
17:21:37.0156 5532  MpKsle20b85f9 - ok
17:21:37.0187 5532  [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x        C:\WINDOWS\system32\DRIVERS\mraid35x.sys
17:21:37.0187 5532  mraid35x - ok
17:21:37.0218 5532  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
17:21:37.0234 5532  MRxDAV - ok
17:21:37.0281 5532  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
17:21:37.0296 5532  MRxSmb - ok
17:21:37.0328 5532  [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
17:21:37.0343 5532  MSDTC - ok
17:21:37.0390 5532  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
17:21:37.0390 5532  Msfs - ok
17:21:37.0390 5532  MSIServer - ok
17:21:37.0437 5532  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
17:21:37.0437 5532  MSKSSRV - ok
17:21:37.0484 5532  [ 3EA6A1A744D79328AE7E2C6FAE4C4420 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
17:21:37.0484 5532  MsMpSvc - ok
17:21:37.0500 5532  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
17:21:37.0515 5532  MSPCLOCK - ok
17:21:37.0546 5532  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
17:21:37.0546 5532  MSPQM - ok
17:21:37.0562 5532  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
17:21:37.0562 5532  mssmbios - ok
17:21:37.0593 5532  [ 00C7B2306F1CA5389A1AC6D1DF9C2E25 ] msvad_simple    C:\WINDOWS\system32\drivers\povrtdev.sys
17:21:37.0593 5532  msvad_simple - ok
17:21:37.0625 5532  [ FF54EA1617D15711690D5EF054512C21 ] Multi-user Cleanup Service c:\notes\ntmulti.exe
17:21:37.0625 5532  Multi-user Cleanup Service - ok
17:21:37.0656 5532  [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
17:21:37.0656 5532  Mup - ok
17:21:37.0703 5532  [ 0102140028FAD045756796E1C685D695 ] napagent        C:\WINDOWS\System32\qagentrt.dll
17:21:37.0718 5532  napagent - ok
17:21:37.0796 5532  NasPmService - ok
17:21:37.0843 5532  NAVENG - ok
17:21:37.0843 5532  NAVEX15 - ok
17:21:37.0875 5532  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
17:21:37.0875 5532  NDIS - ok
17:21:37.0906 5532  [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
17:21:37.0921 5532  NdisTapi - ok
17:21:37.0953 5532  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
17:21:37.0953 5532  Ndisuio - ok
17:21:37.0968 5532  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:21:37.0968 5532  NdisWan - ok
17:21:37.0984 5532  [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
17:21:37.0984 5532  NDProxy - ok
17:21:38.0015 5532  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
17:21:38.0015 5532  NetBIOS - ok
17:21:38.0031 5532  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
17:21:38.0031 5532  NetBT - ok
17:21:38.0109 5532  [ FE719D7F9CE2E18A7459C1213001484F ] NetCfgSvr       C:\PROGRA~1\AT&TNE~1\NetCfgSv.EXE
17:21:38.0109 5532  NetCfgSvr - ok
17:21:38.0140 5532  [ B857BA82860D7FF85AE29B095645563B ] NetDDE          C:\WINDOWS\system32\netdde.exe
17:21:38.0156 5532  NetDDE - ok
17:21:38.0156 5532  [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
17:21:38.0171 5532  NetDDEdsdm - ok
17:21:38.0203 5532  [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon        C:\WINDOWS\system32\lsass.exe
17:21:38.0203 5532  Netlogon - ok
17:21:38.0218 5532  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman          C:\WINDOWS\System32\netman.dll
17:21:38.0218 5532  Netman - ok
17:21:38.0281 5532  [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:21:38.0296 5532  NetTcpPortSharing - ok
17:21:38.0328 5532  [ 943337D786A56729263071623BBB9DE5 ] Nla             C:\WINDOWS\System32\mswsock.dll
17:21:38.0343 5532  Nla - ok
17:21:38.0375 5532  [ 1E421A6BCF2203CC61B821ADA9DE878B ] nm              C:\WINDOWS\system32\DRIVERS\NMnt.sys
17:21:38.0375 5532  nm - ok
17:21:38.0406 5532  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
17:21:38.0406 5532  Npfs - ok
17:21:38.0437 5532  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
17:21:38.0484 5532  Ntfs - ok
17:21:38.0500 5532  [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
17:21:38.0500 5532  NtLmSsp - ok
17:21:38.0546 5532  [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
17:21:38.0562 5532  NtmsSvc - ok
17:21:38.0578 5532  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys
17:21:38.0578 5532  Null - ok
17:21:38.0781 5532  [ F8BE83F0C686533170F7537E94BF411A ] nv              C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
17:21:39.0000 5532  nv - ok
17:21:39.0031 5532  [ 75562456AA672BB5FE56D3C64C6D1C7D ] nvatabus        C:\WINDOWS\system32\drivers\nvatabus.sys
17:21:39.0109 5532  nvatabus - ok
17:21:39.0125 5532  [ 1D4781A5957300DC81B91161B45704BB ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
17:21:39.0171 5532  nvraid - ok
17:21:39.0203 5532  [ E9E110CDF6A063A5F9B841C36FB5CC95 ] NVSvc           C:\WINDOWS\system32\nvsvc32.exe
17:21:39.0203 5532  NVSvc - ok
17:21:39.0234 5532  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
17:21:39.0234 5532  NwlnkFlt - ok
17:21:39.0250 5532  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
17:21:39.0250 5532  NwlnkFwd - ok
17:21:39.0281 5532  [ 8B8B1BE2DBA4025DA6786C645F77F123 ] NwlnkIpx        C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys
17:21:39.0296 5532  NwlnkIpx - ok
17:21:39.0328 5532  [ 56D34A67C05E94E16377C60609741FF8 ] NwlnkNb         C:\WINDOWS\system32\DRIVERS\nwlnknb.sys
17:21:39.0328 5532  NwlnkNb - ok
17:21:39.0359 5532  [ C0BB7D1615E1ACBDC99757F6CEAF8CF0 ] NwlnkSpx        C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys
17:21:39.0359 5532  NwlnkSpx - ok
17:21:39.0375 5532  [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys
17:21:39.0390 5532  Parport - ok
17:21:39.0390 5532  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
17:21:39.0390 5532  PartMgr - ok
17:21:39.0406 5532  [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
17:21:39.0406 5532  ParVdm - ok
17:21:39.0437 5532  [ FD2041E9BA03DB7764B2248F02475079 ] pccsmcfd        C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
17:21:39.0437 5532  pccsmcfd - ok
17:21:39.0453 5532  [ A219903CCF74233761D92BEF471A07B1 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
17:21:39.0468 5532  PCI - ok
17:21:39.0468 5532  PCIDump - ok
17:21:39.0500 5532  [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
17:21:39.0500 5532  PCIIde - ok
17:21:39.0515 5532  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
17:21:39.0531 5532  Pcmcia - ok
17:21:39.0546 5532  PDCOMP - ok
17:21:39.0546 5532  PDFRAME - ok
17:21:39.0562 5532  PDRELI - ok
17:21:39.0562 5532  PDRFRAME - ok
17:21:39.0578 5532  [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2           C:\WINDOWS\system32\DRIVERS\perc2.sys
17:21:39.0593 5532  perc2 - ok
17:21:39.0609 5532  [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib        C:\WINDOWS\system32\DRIVERS\perc2hib.sys
17:21:39.0609 5532  perc2hib - ok
17:21:39.0640 5532  [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay        C:\WINDOWS\system32\services.exe
17:21:39.0640 5532  PlugPlay - ok
17:21:39.0671 5532  [ FA292805788528C083F416E151B60AB6 ] PMEM            C:\WINDOWS\system32\drivers\PMEMNT.SYS
17:21:39.0671 5532  PMEM - ok
17:21:39.0703 5532  [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
17:21:39.0703 5532  PolicyAgent - ok
17:21:39.0734 5532  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
17:21:39.0750 5532  PptpMiniport - ok
17:21:39.0750 5532  [ A32BEBAF723557681BFC6BD93E98BD26 ] Processor       C:\WINDOWS\system32\DRIVERS\processr.sys
17:21:39.0765 5532  Processor - ok
17:21:39.0765 5532  [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
17:21:39.0765 5532  ProtectedStorage - ok
17:21:39.0796 5532  [ 09298EC810B07E5D582CB3A3F9255424 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
17:21:39.0796 5532  PSched - ok
17:21:39.0828 5532  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
17:21:39.0828 5532  Ptilink - ok
17:21:39.0859 5532  [ 153D02480A0A2F45785522E814C634B6 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
17:21:39.0875 5532  PxHelp20 - ok
17:21:39.0890 5532  [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080          C:\WINDOWS\system32\DRIVERS\ql1080.sys
17:21:39.0906 5532  ql1080 - ok
17:21:39.0906 5532  [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt         C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
17:21:39.0906 5532  Ql10wnt - ok
17:21:39.0921 5532  [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160         C:\WINDOWS\system32\DRIVERS\ql12160.sys
17:21:39.0921 5532  ql12160 - ok
17:21:39.0921 5532  [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240          C:\WINDOWS\system32\DRIVERS\ql1240.sys
17:21:39.0921 5532  ql1240 - ok
17:21:39.0937 5532  [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280          C:\WINDOWS\system32\DRIVERS\ql1280.sys
17:21:39.0937 5532  ql1280 - ok
17:21:39.0968 5532  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
17:21:39.0968 5532  RasAcd - ok
17:21:40.0000 5532  [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
17:21:40.0000 5532  RasAuto - ok
17:21:40.0031 5532  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
17:21:40.0031 5532  Rasl2tp - ok
17:21:40.0062 5532  [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan          C:\WINDOWS\System32\rasmans.dll
17:21:40.0062 5532  RasMan - ok
17:21:40.0078 5532  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
17:21:40.0078 5532  RasPppoe - ok
17:21:40.0109 5532  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
17:21:40.0109 5532  Raspti - ok
17:21:40.0140 5532  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
17:21:40.0156 5532  Rdbss - ok
17:21:40.0156 5532  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
17:21:40.0156 5532  RDPCDD - ok
17:21:40.0187 5532  [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
17:21:40.0187 5532  rdpdr - ok
17:21:40.0218 5532  [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
17:21:40.0234 5532  RDPWD - ok
17:21:40.0281 5532  [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
17:21:40.0281 5532  RDSessMgr - ok
17:21:40.0312 5532  [ F828DD7E1419B6653894A8F97A0094C5 ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
17:21:40.0312 5532  redbook - ok
17:21:40.0359 5532  [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
17:21:40.0359 5532  RemoteAccess - ok
17:21:40.0406 5532  [ 851C30DF2807FCFA21E4C681A7D6440E ] RFCOMM          C:\WINDOWS\system32\DRIVERS\rfcomm.sys
17:21:40.0406 5532  RFCOMM - ok
17:21:40.0437 5532  [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] ROOTMODEM       C:\WINDOWS\system32\Drivers\RootMdm.sys
17:21:40.0437 5532  ROOTMODEM - ok
17:21:40.0453 5532  [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator      C:\WINDOWS\system32\locator.exe
17:21:40.0468 5532  RpcLocator - ok
17:21:40.0500 5532  [ 6B27A5C03DFB94B4245739065431322C ] RpcSs           C:\WINDOWS\system32\rpcss.dll
17:21:40.0515 5532  RpcSs - ok
17:21:40.0546 5532  [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP            C:\WINDOWS\system32\rsvp.exe
17:21:40.0546 5532  RSVP - ok
17:21:40.0546 5532  SABKUTIL - ok
17:21:40.0578 5532  [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs           C:\WINDOWS\system32\lsass.exe
17:21:40.0578 5532  SamSs - ok
17:21:40.0656 5532  [ 3525FDCFC567E807A337C61AFF366BE8 ] SavRoam         C:\Program Files\Symantec Client Security\Symantec AntiVirus\SavRoam.exe
17:21:40.0656 5532  SavRoam - ok
17:21:40.0734 5532  [ 12B6E269EF8AC8EA36122544C8A1B6D8 ] SAVRT           C:\Program Files\Symantec Client Security\Symantec AntiVirus\savrt.sys
17:21:40.0750 5532  SAVRT - ok
17:21:40.0765 5532  [ 97E5B6F3F95465E1F59360B59D8EC64E ] SAVRTPEL        C:\Program Files\Symantec Client Security\Symantec AntiVirus\Savrtpel.sys
17:21:40.0765 5532  SAVRTPEL - ok
17:21:40.0796 5532  [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
17:21:40.0796 5532  SCardSvr - ok
17:21:40.0843 5532  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule        C:\WINDOWS\system32\schedsvc.dll
17:21:40.0843 5532  Schedule - ok
17:21:40.0875 5532  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
17:21:40.0875 5532  Secdrv - ok
17:21:40.0890 5532  [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon        C:\WINDOWS\System32\seclogon.dll
17:21:40.0890 5532  seclogon - ok
17:21:40.0921 5532  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS            C:\WINDOWS\system32\sens.dll
17:21:40.0921 5532  SENS - ok
17:21:40.0953 5532  [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
17:21:40.0953 5532  serenum - ok
17:21:40.0968 5532  [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys
17:21:40.0968 5532  Serial - ok
17:21:41.0109 5532  [ F31E9531AF225CA25350D5E87E999B31 ] ServiceLayer    C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
17:21:41.0140 5532  ServiceLayer - ok
17:21:41.0171 5532  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
17:21:41.0171 5532  Sfloppy - ok
17:21:41.0203 5532  [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
17:21:41.0203 5532  SharedAccess - ok
17:21:41.0234 5532  [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
17:21:41.0234 5532  ShellHWDetection - ok
17:21:41.0234 5532  Simbad - ok
17:21:41.0281 5532  [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp          C:\WINDOWS\system32\DRIVERS\sisagp.sys
17:21:41.0281 5532  sisagp - ok
17:21:41.0765 5532  [ AE40D1BC6FB02A5625516AD74CA9A309 ] Skype C2C Service C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe
17:21:41.0796 5532  Skype C2C Service - ok
17:21:41.0875 5532  [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
17:21:41.0875 5532  SkypeUpdate - ok
17:21:41.0953 5532  [ 0D411EEA92751C1ECD8453892F41E726 ] SNDSrvc         C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
17:21:41.0968 5532  SNDSrvc - ok
17:21:41.0984 5532  [ 60C377BE6B3CC83F6A8584934B181D2E ] SNMP            C:\WINDOWS\System32\snmp.exe
17:21:42.0000 5532  SNMP - ok
17:21:42.0000 5532  [ 80A050795A107A76C2B1CD4CFBE010E6 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
17:21:42.0000 5532  SNMPTRAP - ok
17:21:42.0031 5532  [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow         C:\WINDOWS\system32\DRIVERS\sparrow.sys
17:21:42.0031 5532  Sparrow - ok
17:21:42.0125 5532  [ 677B10906838D3BFB1C07AC9087E4BF7 ] SPBBCDrv        C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
17:21:42.0140 5532  SPBBCDrv - ok
17:21:42.0281 5532  [ C830007369E18A54AED23B5BB3AFA2BA ] SPBBCSvc        C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
17:21:42.0296 5532  SPBBCSvc - ok
17:21:42.0312 5532  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
17:21:42.0312 5532  splitter - ok
17:21:42.0343 5532  [ 60784F891563FB1B767F70117FC2428F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
17:21:42.0343 5532  Spooler - ok
17:21:42.0375 5532  [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
17:21:42.0375 5532  sr - ok
17:21:42.0421 5532  srescan - ok
17:21:42.0453 5532  [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice       C:\WINDOWS\system32\srsvc.dll
17:21:42.0468 5532  srservice - ok
17:21:42.0515 5532  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
17:21:42.0515 5532  Srv - ok
17:21:42.0531 5532  [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
17:21:42.0531 5532  SSDPSRV - ok
17:21:42.0578 5532  [ 359FEE084F1173FFFFD7F9CCBD43D47F ] ssudmdm         C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
17:21:42.0578 5532  ssudmdm - ok
17:21:42.0640 5532  [ 8990440E4B2A7CA5A56A1833B03741FD ] STHDA           C:\WINDOWS\system32\drivers\sthda.sys
17:21:42.0703 5532  STHDA - ok
17:21:42.0734 5532  [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
17:21:42.0734 5532  stisvc - ok
17:21:42.0750 5532  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
17:21:42.0750 5532  swenum - ok
17:21:42.0781 5532  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
17:21:42.0781 5532  swmidi - ok
17:21:42.0781 5532  SwPrv - ok
17:21:42.0828 5532  [ 69C10737BFFA69EE1AF44F27E0098BED ] sxuptp          C:\WINDOWS\system32\DRIVERS\sxuptp.sys
17:21:42.0859 5532  sxuptp - ok
17:21:42.0984 5532  [ 8FDAADF204A4F29214DA1B03342E2735 ] Symantec AntiVirus C:\Program Files\Symantec Client Security\Symantec AntiVirus\Rtvscan.exe
17:21:43.0015 5532  Symantec AntiVirus - ok
17:21:43.0046 5532  [ 1FF3217614018630D0A6758630FC698C ] symc810         C:\WINDOWS\system32\DRIVERS\symc810.sys
17:21:43.0046 5532  symc810 - ok
17:21:43.0046 5532  [ 070E001D95CF725186EF8B20335F933C ] symc8xx         C:\WINDOWS\system32\DRIVERS\symc8xx.sys
17:21:43.0046 5532  symc8xx - ok
17:21:43.0078 5532  [ 99F158D37B42FCA00B3F5AB5B3EFEBB7 ] SYMDNS          C:\WINDOWS\System32\Drivers\SYMDNS.SYS
17:21:43.0093 5532  SYMDNS - ok
17:21:43.0140 5532  [ DE6D1102D55926354171AE4E73936725 ] SymEvent        C:\Program Files\Symantec\SYMEVENT.SYS
17:21:43.0140 5532  SymEvent - ok
17:21:43.0187 5532  [ 29AE12DB354A89382A43A8FCB6AB0AB5 ] SYMFW           C:\WINDOWS\System32\Drivers\SYMFW.SYS
17:21:43.0203 5532  SYMFW - ok
17:21:43.0234 5532  [ 728D1DFF8573B5DD18DA536FA733EB11 ] SYMIDS          C:\WINDOWS\System32\Drivers\SYMIDS.SYS
17:21:43.0234 5532  SYMIDS - ok
17:21:43.0265 5532  [ B1F616C31575DA1535C2A7823C112182 ] SYMNDIS         C:\WINDOWS\System32\Drivers\SYMNDIS.SYS
17:21:43.0265 5532  SYMNDIS - ok
17:21:43.0296 5532  [ 6C0A85982F4E0D672B85A2BFB50A24B5 ] SYMREDRV        C:\WINDOWS\System32\Drivers\SYMREDRV.SYS
17:21:43.0296 5532  SYMREDRV - ok
17:21:43.0343 5532  [ 768F00CA60302DA7CA682B58C52A3A05 ] SymSecurePort   C:\Program Files\Symantec Client Security\Symantec Client Firewall\SymSPort.exe
17:21:43.0343 5532  SymSecurePort - ok
17:21:43.0390 5532  [ CDDA3BA3F7D5B63FF9F85CB478C11473 ] SYMTDI          C:\WINDOWS\System32\Drivers\SYMTDI.SYS
17:21:43.0390 5532  SYMTDI - ok
17:21:43.0406 5532  [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi          C:\WINDOWS\system32\DRIVERS\sym_hi.sys
17:21:43.0406 5532  sym_hi - ok
17:21:43.0406 5532  [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3          C:\WINDOWS\system32\DRIVERS\sym_u3.sys
17:21:43.0421 5532  sym_u3 - ok
17:21:43.0453 5532  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
17:21:43.0453 5532  sysaudio - ok
17:21:43.0484 5532  [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
17:21:43.0484 5532  SysmonLog - ok
17:21:43.0531 5532  [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
17:21:43.0531 5532  TapiSrv - ok
17:21:43.0578 5532  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
17:21:43.0593 5532  Tcpip - ok
17:21:43.0625 5532  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
17:21:43.0625 5532  TDPIPE - ok
17:21:43.0640 5532  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
17:21:43.0640 5532  TDTCP - ok
17:21:43.0656 5532  [ 88155247177638048422893737429D9E ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
17:21:43.0671 5532  TermDD - ok
17:21:43.0687 5532  [ FF3477C03BE7201C294C35F684B3479F ] TermService     C:\WINDOWS\System32\termsrv.dll
17:21:43.0703 5532  TermService - ok
17:21:43.0718 5532  [ 99BC0B50F511924348BE19C7C7313BBF ] Themes          C:\WINDOWS\System32\shsvcs.dll
17:21:43.0718 5532  Themes - ok
17:21:43.0750 5532  [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde          C:\WINDOWS\system32\DRIVERS\toside.sys
17:21:43.0750 5532  TosIde - ok
17:21:43.0765 5532  [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks          C:\WINDOWS\system32\trkwks.dll
17:21:43.0765 5532  TrkWks - ok
17:21:43.0796 5532  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
17:21:43.0796 5532  Udfs - ok
17:21:43.0812 5532  [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra           C:\WINDOWS\system32\DRIVERS\ultra.sys
17:21:43.0812 5532  ultra - ok
17:21:43.0843 5532  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
17:21:43.0859 5532  Update - ok
17:21:43.0875 5532  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost        C:\WINDOWS\System32\upnphost.dll
17:21:43.0875 5532  upnphost - ok
17:21:43.0890 5532  [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS             C:\WINDOWS\System32\ups.exe
17:21:43.0890 5532  UPS - ok
17:21:43.0906 5532  USBAAPL - ok
17:21:43.0937 5532  [ E919708DB44ED8543A7C017953148330 ] usbaudio        C:\WINDOWS\system32\drivers\usbaudio.sys
17:21:43.0937 5532  usbaudio - ok
17:21:43.0953 5532  [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
17:21:43.0953 5532  usbccgp - ok
17:21:43.0968 5532  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
17:21:43.0984 5532  usbehci - ok
17:21:44.0000 5532  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
17:21:44.0000 5532  usbhub - ok
17:21:44.0015 5532  [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci         C:\WINDOWS\system32\DRIVERS\usbohci.sys
17:21:44.0015 5532  usbohci - ok
17:21:44.0031 5532  [ A717C8721046828520C9EDF31288FC00 ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
17:21:44.0031 5532  usbprint - ok
17:21:44.0046 5532  [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
17:21:44.0046 5532  usbscan - ok
17:21:44.0078 5532  [ 1C888B000C2F9492F4B15B5B6B84873E ] usbser          C:\WINDOWS\system32\drivers\usbser.sys
17:21:44.0093 5532  usbser - ok
17:21:44.0109 5532  [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
17:21:44.0109 5532  USBSTOR - ok
17:21:44.0125 5532  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
17:21:44.0125 5532  usbuhci - ok
17:21:44.0140 5532  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
17:21:44.0156 5532  VgaSave - ok
17:21:44.0171 5532  [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp          C:\WINDOWS\system32\DRIVERS\viaagp.sys
17:21:44.0203 5532  viaagp - ok
17:21:44.0218 5532  [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde          C:\WINDOWS\system32\DRIVERS\viaide.sys
17:21:44.0234 5532  ViaIde - ok
17:21:44.0250 5532  [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
17:21:44.0250 5532  VolSnap - ok
17:21:44.0312 5532  [ AF83FADF8BC5DBDF481D14F5A08FC2FF ] vsdatant        C:\WINDOWS\system32\vsdatant.sys
17:21:44.0312 5532  vsdatant - ok
17:21:44.0359 5532  [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS             C:\WINDOWS\System32\vssvc.exe
17:21:44.0359 5532  VSS - ok
17:21:44.0406 5532  [ D4BAA1AC8DCEA1382E81AA6FE48CDD7C ] w300bus         C:\WINDOWS\system32\DRIVERS\w300bus.sys
17:21:44.0437 5532  w300bus - ok
17:21:44.0468 5532  [ 12D415AB0DDD86C42CDC5F120A381F24 ] w300mdfl        C:\WINDOWS\system32\DRIVERS\w300mdfl.sys
17:21:44.0484 5532  w300mdfl - ok
17:21:44.0500 5532  [ F470D5E61EE7F951883F70D676551C89 ] w300mdm         C:\WINDOWS\system32\DRIVERS\w300mdm.sys
17:21:44.0562 5532  w300mdm - ok
17:21:44.0578 5532  [ 1B575B7384E22F5B278D3D7FC1BAE682 ] w300mgmt        C:\WINDOWS\system32\DRIVERS\w300mgmt.sys
17:21:44.0625 5532  w300mgmt - ok
17:21:44.0656 5532  [ A2BC36924AE02CA1E01EC39C99AFEA09 ] w300obex        C:\WINDOWS\system32\DRIVERS\w300obex.sys
17:21:44.0703 5532  w300obex - ok
17:21:44.0718 5532  [ 54AF4B1D5459500EF0937F6D33B1914F ] w32time         C:\WINDOWS\system32\w32time.dll
17:21:44.0734 5532  w32time - ok
17:21:44.0750 5532  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
17:21:44.0750 5532  Wanarp - ok
17:21:44.0765 5532  wanatw - ok
17:21:44.0812 5532  [ D918617B46457B9AC28027722E30F647 ] Wdf01000        C:\WINDOWS\system32\Drivers\wdf01000.sys
17:21:44.0812 5532  Wdf01000 - ok
17:21:44.0828 5532  WDICA - ok
17:21:44.0843 5532  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
17:21:44.0843 5532  wdmaud - ok
17:21:44.0875 5532  [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient       C:\WINDOWS\System32\webclnt.dll
17:21:44.0890 5532  WebClient - ok
17:21:44.0984 5532  [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
17:21:44.0984 5532  winmgmt - ok
17:21:45.0015 5532  [ FD600B032E741EB6AAB509FC630F7C42 ] WinUSB          C:\WINDOWS\system32\DRIVERS\WinUSB.sys
17:21:45.0015 5532  WinUSB - ok
17:21:45.0046 5532  [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
17:21:45.0046 5532  WmdmPmSN - ok
17:21:45.0078 5532  [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
17:21:45.0140 5532  WmiApSrv - ok
17:21:45.0234 5532  [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc   C:\Program Files\Windows Media Player\WMPNetwk.exe
17:21:45.0234 5532  WMPNetworkSvc - ok
17:21:45.0265 5532  [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb          C:\WINDOWS\system32\DRIVERS\wpdusb.sys
17:21:45.0265 5532  WpdUsb - ok
17:21:45.0531 5532  [ 120F3B596F79FC990B7D808857A8B3BC ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
17:21:45.0703 5532  WPFFontCache_v0400 - ok
17:21:45.0734 5532  [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys
17:21:45.0750 5532  WS2IFSL - ok
17:21:45.0812 5532  [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
17:21:45.0812 5532  wscsvc - ok
17:21:45.0843 5532  [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
17:21:45.0843 5532  wuauserv - ok
17:21:45.0875 5532  [ EAA6324F51214D2F6718977EC9CE0DEF ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
17:21:45.0890 5532  WudfPf - ok
17:21:45.0906 5532  [ F91FF1E51FCA30B3C3981DB7D5924252 ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
17:21:45.0906 5532  WudfRd - ok
17:21:45.0937 5532  [ DDEE3682FE97037C45F4D7AB467CB8B6 ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
17:21:45.0953 5532  WudfSvc - ok
17:21:45.0984 5532  [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
17:21:46.0000 5532  WZCSVC - ok
17:21:46.0031 5532  [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
17:21:46.0031 5532  xmlprov - ok
17:21:46.0046 5532  ================ Scan global ===============================
17:21:46.0062 5532  [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
17:21:46.0109 5532  [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
17:21:46.0109 5532  [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
17:21:46.0156 5532  [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
17:21:46.0156 5532  [Global] - ok
17:21:46.0156 5532  ================ Scan MBR ==================================
17:21:46.0171 5532  [ 5CB90281D1A59B251F6603134774EEC3 ] \Device\Harddisk0\DR0
17:21:46.0421 5532  \Device\Harddisk0\DR0 - ok
17:21:46.0437 5532  [ 8CB37AFC263A219EBB7586F9C495114E ] \Device\Harddisk1\DR4
17:21:46.0984 5532  \Device\Harddisk1\DR4 - ok
17:21:46.0984 5532  ================ Scan VBR ==================================
17:21:47.0000 5532  [ 26A2E83B28A8A296AA7B2A89E0E3D0EC ] \Device\Harddisk0\DR0\Partition1
17:21:47.0000 5532  \Device\Harddisk0\DR0\Partition1 - ok
17:21:47.0000 5532  [ 650A89460A016F5ED73031170BC3EF9D ] \Device\Harddisk1\DR4\Partition1
17:21:47.0015 5532  \Device\Harddisk1\DR4\Partition1 - ok
17:21:47.0015 5532  ============================================================
17:21:47.0015 5532  Scan finished
17:21:47.0015 5532  ============================================================
17:21:47.0015 5524  Detected object count: 0
17:21:47.0015 5524  Actual detected object count: 0
17:21:54.0031 5256  Deinitialize success


#6 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:04 PM

Posted 04 August 2013 - 01:56 AM

You may proceed with this step, in the first post above.  :step3: ESET Online Scanner


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#7 mohandesai

mohandesai
  • Topic Starter

  • Members
  • 37 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:04 PM

Posted 04 August 2013 - 10:12 AM

No internet connectivity through any of the browsers so am not able run ESET. Disabled MS Essentials 

Ping command to yahoo.com from Command Line works.

 

FYI- MS Essentials log reported that TDSS had quarantined Alureon virus. I deleted that and Disable MS Essentials- but no internet access.



#8 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:04 PM

Posted 04 August 2013 - 10:44 AM

Download Malwarebytes Anti-Rootkit from HERE to your Desktop.

  • Unzip downloaded file.
  • Open the folder where the contents were unzipped and run mbar.exe
  • Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
  • DO NOT click on the Cleanup button. Simply exit the program.
  • When done, please post the two logs produced they will be in the MBAR folder..... mbar-log-xxxxx.txt and system-log.txt

If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#9 mohandesai

mohandesai
  • Topic Starter

  • Members
  • 37 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:04 PM

Posted 04 August 2013 - 02:28 PM

MBAR Log

 

Malwarebytes Anti-Rootkit BETA 1.06.0.1004
www.malwarebytes.org
 
Database version: v2013.06.01.01
 
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Mohan :: WHITE_DELL [administrator]
 
8/4/2013 12:08:46 PM
mbar-log-2013-08-04 (12-08-46).txt
 
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUM | P2P
Scan options disabled: PUP
Objects scanned: 298170
Time elapsed: 1 hour(s), 19 minute(s), 56 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 0
(No malicious items detected)
 
Physical Sectors Detected: 0
(No malicious items detected)
 
(end)
 

System Log

 

---------------------------------------

Malwarebytes Anti-Rootkit BETA 1.06.0.1004
 
© Malwarebytes Corporation 2011-2012
 
OS version: 5.1.2600 Windows XP Service Pack 3 x86
 
Account is Administrative
 
Internet Explorer version: 8.0.6001.18702
 
File system is: NTFS
Disk drives: C:\ DRIVE_FIXED
CPU speed: 2.004000 GHz
Memory total: 3488002048, free: 2806190080
 
Connection refused
Initializing...
------------ Kernel report ------------
     08/04/2013 12:08:32
------------ Loaded modules -----------
\WINDOWS\system32\ntkrnlpa.exe
\WINDOWS\system32\hal.dll
\WINDOWS\system32\KDCOM.DLL
\WINDOWS\system32\BOOTVID.dll
ACPI.sys
\WINDOWS\system32\DRIVERS\WMILIB.SYS
pci.sys
isapnp.sys
pciide.sys
\WINDOWS\system32\DRIVERS\PCIIDEX.SYS
MountMgr.sys
ftdisk.sys
\WINDOWS\system32\drivers\CLASSPNP.SYS
PartMgr.sys
VolSnap.sys
atapi.sys
disk.sys
fltmgr.sys
MpFilter.sys
PxHelp20.sys
KSecDD.sys
Ntfs.sys
NDIS.sys
Mup.sys
\SystemRoot\system32\DRIVERS\AmdK8.sys
\SystemRoot\system32\DRIVERS\ati2mtag.sys
\SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
\SystemRoot\system32\DRIVERS\HDAudBus.sys
\SystemRoot\system32\DRIVERS\usbohci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\DRIVERS\cdrom.sys
\SystemRoot\system32\DRIVERS\redbook.sys
\SystemRoot\system32\DRIVERS\ks.sys
\SystemRoot\system32\DRIVERS\bcm4sbxp.sys
\SystemRoot\system32\DRIVERS\abvpn2k.sys
\SystemRoot\system32\DRIVERS\btkrnl.sys
\SystemRoot\system32\drivers\povrtdev.sys
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\system32\DRIVERS\audstub.sys
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\system32\DRIVERS\psched.sys
\SystemRoot\system32\DRIVERS\msgpc.sys
\SystemRoot\system32\DRIVERS\ptilink.sys
\SystemRoot\system32\DRIVERS\raspti.sys
\SystemRoot\system32\DRIVERS\termdd.sys
\SystemRoot\system32\DRIVERS\kbdclass.sys
\SystemRoot\system32\DRIVERS\mouclass.sys
\SystemRoot\system32\DRIVERS\swenum.sys
\SystemRoot\system32\DRIVERS\update.sys
\SystemRoot\system32\DRIVERS\mssmbios.sys
\SystemRoot\system32\DRIVERS\sxuptp.sys
\SystemRoot\system32\drivers\sthda.sys
\SystemRoot\system32\DRIVERS\btport.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\drivers\AtihdXP3.sys
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\System32\Drivers\i2omgmt.SYS
\??\C:\Program Files\Symantec\SYMEVENT.SYS
\??\C:\Program Files\Symantec Client Security\Symantec AntiVirus\Savrtpel.sys
\SystemRoot\System32\Drivers\Fs_Rec.SYS
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\system32\DRIVERS\HIDPARSE.SYS
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\Drivers\mnmdd.SYS
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\rasacd.sys
\SystemRoot\system32\DRIVERS\ipsec.sys
\SystemRoot\system32\DRIVERS\tcpip.sys
\SystemRoot\System32\Drivers\SYMTDI.SYS
\SystemRoot\system32\DRIVERS\ipnat.sys
\SystemRoot\system32\DRIVERS\usbccgp.sys
\SystemRoot\System32\Drivers\SYMREDRV.SYS
\SystemRoot\System32\Drivers\SYMDNS.SYS
\SystemRoot\System32\Drivers\SYMNDIS.SYS
\SystemRoot\System32\Drivers\SYMFW.SYS
\SystemRoot\system32\DRIVERS\hidusb.sys
\SystemRoot\system32\DRIVERS\HIDCLASS.SYS
\SystemRoot\system32\drivers\CM108.sys
\SystemRoot\System32\Drivers\SYMIDS.SYS
\SystemRoot\system32\DRIVERS\LHidFilt.Sys
\SystemRoot\system32\DRIVERS\WDFLDR.SYS
\SystemRoot\system32\DRIVERS\netbt.sys
\SystemRoot\System32\Drivers\wdf01000.sys
\SystemRoot\System32\drivers\ws2ifsl.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\system32\DRIVERS\kbdhid.sys
\SystemRoot\System32\drivers\afd.sys
\SystemRoot\system32\DRIVERS\mouhid.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\LMouFilt.Sys
\??\C:\WINDOWS\system32\vsdatant.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\System32\Drivers\Fips.SYS
\??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
\SystemRoot\System32\Drivers\Aspi32.SYS
\SystemRoot\System32\Drivers\Cdfs.SYS
\SystemRoot\System32\Drivers\dump_atapi.sys
\SystemRoot\System32\Drivers\dump_WMILIB.SYS
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\System32\watchdog.sys
\SystemRoot\System32\drivers\dxg.sys
\SystemRoot\System32\drivers\dxgthk.sys
\SystemRoot\System32\ati2dvag.dll
\SystemRoot\System32\ati2cqag.dll
\SystemRoot\System32\atikvmag.dll
\SystemRoot\System32\atiok3x2.dll
\SystemRoot\System32\ati3duag.dll
\SystemRoot\System32\ativvaxx.dll
\SystemRoot\System32\ATMFD.DLL
\SystemRoot\system32\DRIVERS\WudfPf.sys
\SystemRoot\system32\DRIVERS\nwlnkipx.sys
\SystemRoot\system32\DRIVERS\nwlnknb.sys
\SystemRoot\system32\DRIVERS\agnwifi.sys
\SystemRoot\system32\DRIVERS\nwlnkspx.sys
\SystemRoot\system32\DRIVERS\USBSTOR.SYS
\SystemRoot\System32\Drivers\Fastfat.SYS
\SystemRoot\system32\drivers\wdmaud.sys
\SystemRoot\system32\drivers\sysaudio.sys
\SystemRoot\system32\DRIVERS\mrxdav.sys
\SystemRoot\System32\Drivers\HTTP.sys
\SystemRoot\System32\Drivers\LBeepKE.sys
\SystemRoot\system32\DRIVERS\srv.sys
\??\C:\WINDOWS\system32\drivers\PMEMNT.SYS
\SystemRoot\system32\DRIVERS\nwlnkfwd.sys
\SystemRoot\system32\DRIVERS\nwlnkflt.sys
\??\C:\WINDOWS\system32\drivers\mbamchameleon.sys
\??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys
\WINDOWS\system32\ntdll.dll
----------- End -----------
Done!
<<<1>>>
Upper Device Name: \Device\Harddisk1\DR4
Upper Device Object: 0xffffffff8a85aab8
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\000000a2\
Lower Device Object: 0xffffffff8a8d47c0
Lower Device Driver Name: \Driver\USBSTOR\
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xffffffff8afadab8
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\Ide\IdeDeviceP0T0L0-3\
Lower Device Object: 0xffffffff8afc5940
Lower Device Driver Name: \Driver\atapi\
<<<2>>>
Device number: 0, partition: 2
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xffffffff8afadab8, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xffffffff8afc3e08, DeviceName: Unknown, DriverName: \Driver\PartMgr\
DevicePointer: 0xffffffff8afadab8, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
DevicePointer: 0xffffffff8af777a0, DeviceName: \Device\00000083\, DriverName: \Driver\ACPI\
DevicePointer: 0xffffffff8afc5940, DeviceName: \Device\Ide\IdeDeviceP0T0L0-3\, DriverName: \Driver\atapi\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
Device number: 0, partition: 2
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\WINDOWS\system32\drivers...
<<<2>>>
Device number: 0, partition: 2
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Done!
Drive 0
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: D0F4738C
 
Partition information:
 
    Partition 0 type is Other (0xde)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 63  Numsec = 80262
 
    Partition 1 type is Primary (0x7)
    Partition is ACTIVE.
    Partition starts at LBA: 80325  Numsec = 306102510
    Partition file system is NTFS
    Partition is bootable
 
    Partition 2 type is Other (0xdb)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 306198900  Numsec = 6297480
 
    Partition 3 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0
 
Disk Size: 160000000000 bytes
Sector size: 512 bytes
 
Scanning physical sectors of unpartitioned space on drive 0 (1-62-312480000-312500000)...
Done!
Physical Sector Size: 512
Drive: 1, DevicePointer: 0xffffffff8a85aab8, DeviceName: \Device\Harddisk1\DR4\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xffffffff8a877a10, DeviceName: Unknown, DriverName: \Driver\PartMgr\
DevicePointer: 0xffffffff8a85aab8, DeviceName: \Device\Harddisk1\DR4\, DriverName: \Driver\Disk\
DevicePointer: 0xffffffff8a8d47c0, DeviceName: \Device\000000a2\, DriverName: \Driver\USBSTOR\
------------ End ----------
Alternate DeviceName: \Device\Harddisk1\DR4\, DriverName: \Driver\Disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
Drive 1
Scanning MBR on drive 1...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 11C541EF
 
Partition information:
 
    Partition 0 type is Other (0xb)
    Partition is ACTIVE.
    Partition starts at LBA: 2048  Numsec = 7262208
    Partition file system is FAT32
    Partition is not bootable
 
    Partition 1 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0
 
    Partition 2 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0
 
    Partition 3 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0
 
Disk Size: 3926949888 bytes
Sector size: 512 bytes
 
Done!
Scan finished
=======================================
 
 
Removal queue found; removal started
Removing c:\documents and settings\all users\application data\malwarebytes' anti-malware (portable)\mbr_0_i.mbam...
Removing c:\documents and settings\all users\application data\malwarebytes' anti-malware (portable)\bootstrap_0_1_80325_i.mbam...
Removing c:\documents and settings\all users\application data\malwarebytes' anti-malware (portable)\mbr_0_r.mbam...
Removing c:\documents and settings\all users\application data\malwarebytes' anti-malware (portable)\mbr_1_i.mbam...
Removing c:\documents and settings\all users\application data\malwarebytes' anti-malware (portable)\bootstrap_1_0_2048_i.mbam...
Removing c:\documents and settings\all users\application data\malwarebytes' anti-malware (portable)\mbr_1_r.mbam...
Removal finished


#10 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:04 PM

Posted 05 August 2013 - 02:50 PM

Let's try Windows Repair for your issue with internet:

 

Download: http://www.bleepingcomputer.com/download/windows-repair-all-in-one-portable/

 

Put it on your desktop and run it. Then choose for (step3) SFC (System File Checker)

 

step-3-tab.jpg

 

 

Next, run start repairs, check the things you would to repair (in your case: repair Winsock). Let the program make a backup (a system restore point & registery backup) if asked.

 

start-repairs-tab.jpg


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#11 mohandesai

mohandesai
  • Topic Starter

  • Members
  • 37 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:04 PM

Posted 05 August 2013 - 08:48 PM

done- what next?



#12 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:04 PM

Posted 06 August 2013 - 03:02 AM

Are you able to run now the ESET scan and have internet?


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#13 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:04 PM

Posted 06 August 2013 - 04:31 AM

Run also this:

 

Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.

  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.

If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#14 mohandesai

mohandesai
  • Topic Starter

  • Members
  • 37 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:04 PM

Posted 06 August 2013 - 09:27 AM

No internet access. Below is FBAR log

 

Farbar Service Scanner Version: 04-08-2013
Ran by Mohan (administrator) on 06-08-2013 at 10:25:02
Running from "C:\Documents and Settings\Mohan\desktop"
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************
 
Internet Services:
============
 
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.
 
 
Windows Firewall:
=============
 
Firewall Disabled Policy: 
==================
 
 
System Restore:
============
Srservice Service is not running. Checking service configuration:
The start type of Srservice service is OK.
The ImagePath of Srservice service is OK.
The ServiceDll of Srservice: "C:\WINDOWS\system32\srsvc.dll".
 
sr Service is not running. Checking service configuration:
The start type of sr service is set to Disabled. The default start type is Boot.
The ImagePath of sr: "\SystemRoot\system32\DRIVERS\sr.sys".
 
 
System Restore Disabled Policy: 
========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=DWORD:1
 
 
Security Center:
============
 
 
Windows Update:
============
 
Windows Autoupdate Disabled Policy: 
============================
 
 
File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit
 
Extra List:
=======
ABVPN2K(11) epfwtdir(17) Gpc(6) IPSec(4) NetBT(5) NwlnkIpx(12) NwlnkNb(13) PSched(7) RFCOMM(14) SYMTDI(9) Tcpip(3) 
0x1200000004000000010000000200000003000000090000005A0000000F000000050000000600000007000000080000000A0000000B0000000C0000000D0000000E0000001000000011000000
IpSec Tag value is correct.
 
**** End of log ****


#15 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:04 PM

Posted 06 August 2013 - 09:56 AM

Which browser do you use to surf the internet?


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users