Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Malware or Adware help needed!


  • This topic is locked This topic is locked
21 replies to this topic

#1 Vecc1982

Vecc1982

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:08 PM

Posted 31 March 2014 - 07:36 PM

Hello experts! My friend's laptop that I have borrowed is infected with either malware/adware. It takes me to different websites that either want me to get rid of virus or update something. I have video pop ups, advertising pop ups, and sometimes sound plays for an advertisement without the video so I can't even close out of it. Please help!



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,323 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:08 PM

Posted 31 March 2014 - 08:04 PM

Hello Vecc
I moved this to the Am I Infected forum as this one has log requirements.
 
Let's do these next and see if we can clean it.
 
What browser do you use?


Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
[list]
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Vecc1982

Vecc1982
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:08 PM

Posted 31 March 2014 - 08:36 PM

I use Google Chrome. MiniToolBox by Farbar  Version: 23-01-2014

Ran by Seth (administrator) on 31-03-2014 at 21:20:24
Running from "C:\Documents and Settings\Seth\My Documents\Downloads"
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
 
Windows IP Configuration
 
 
 
Successfully flushed the DNS Resolver Cache.
 
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
 
127.0.0.1       localhost
 
========================= IP Configuration: ================================
 
Dell Wireless 1390 WLAN Mini-Card = Wireless Network Connection (Connected)
Broadcom 440x 10/100 Integrated Controller = Local Area Connection (Media disconnected)
 
 
# ---------------------------------- 
# Interface IP Configuration         
# ---------------------------------- 
pushd interface ip
 
 
# Interface IP Configuration for "Local Area Connection"
 
set address name="Local Area Connection" source=dhcp 
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp
 
# Interface IP Configuration for "Wireless Network Connection"
 
set address name="Wireless Network Connection" source=dhcp 
set dns name="Wireless Network Connection" source=dhcp register=PRIMARY
set wins name="Wireless Network Connection" source=dhcp
 
 
popd
# End of interface IP configuration
 
 
 
 
Windows IP Configuration
 
 
 
        Host Name . . . . . . . . . . . . : isg-ssgdell1501
 
        Primary Dns Suffix  . . . . . . . : 
 
        Node Type . . . . . . . . . . . . : Broadcast
 
        IP Routing Enabled. . . . . . . . : No
 
        WINS Proxy Enabled. . . . . . . . : No
 
 
 
Ethernet adapter Local Area Connection:
 
 
 
        Media State . . . . . . . . . . . : Media disconnected
 
        Description . . . . . . . . . . . : Broadcom 440x 10/100 Integrated Controller
 
        Physical Address. . . . . . . . . : 00-15-C5-CF-FD-84
 
 
 
Ethernet adapter Wireless Network Connection:
 
 
 
        Connection-specific DNS Suffix  . : 
 
        Description . . . . . . . . . . . : Dell Wireless 1390 WLAN Mini-Card
 
        Physical Address. . . . . . . . . : 00-1A-92-1C-74-8D
 
        Dhcp Enabled. . . . . . . . . . . : Yes
 
        Autoconfiguration Enabled . . . . : Yes
 
        IP Address. . . . . . . . . . . . : 192.168.1.161
 
        Subnet Mask . . . . . . . . . . . : 255.255.255.0
 
        Default Gateway . . . . . . . . . : 192.168.1.1
 
        DHCP Server . . . . . . . . . . . : 192.168.1.1
 
        DNS Servers . . . . . . . . . . . : 192.168.1.1
 
        Lease Obtained. . . . . . . . . . : Monday, March 31, 2014 8:01:09 PM
 
        Lease Expires . . . . . . . . . . : Tuesday, April 01, 2014 8:01:09 PM
 
Server:  router.asus.com
Address:  192.168.1.1
 
Name:    google.com
Addresses:  74.125.196.113, 74.125.196.138, 74.125.196.101, 74.125.196.102
 74.125.196.100, 74.125.196.139
 
 
 
Pinging google.com [74.125.196.139] with 32 bytes of data:
 
 
 
Reply from 74.125.196.139: bytes=32 time=36ms TTL=35
 
Reply from 74.125.196.139: bytes=32 time=38ms TTL=35
 
 
 
Ping statistics for 74.125.196.139:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 36ms, Maximum = 38ms, Average = 37ms
 
Server:  router.asus.com
Address:  192.168.1.1
 
Name:    yahoo.com
Addresses:  98.139.183.24, 98.138.253.109, 206.190.36.45
 
 
 
Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
 
 
 
Reply from 206.190.36.45: bytes=32 time=124ms TTL=37
 
Reply from 206.190.36.45: bytes=32 time=123ms TTL=37
 
 
 
Ping statistics for 206.190.36.45:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 123ms, Maximum = 124ms, Average = 123ms
 
 
 
Pinging 127.0.0.1 with 32 bytes of data:
 
 
 
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
 
 
Ping statistics for 127.0.0.1:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
 
===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 15 c5 cf fd 84 ...... Broadcom 440x 10/100 Integrated Controller - Packet Scheduler Miniport
0x3 ...00 1a 92 1c 74 8d ...... Dell Wireless 1390 WLAN Mini-Card - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1   192.168.1.161  25
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1  1
      169.254.0.0      255.255.0.0    192.168.1.161   192.168.1.161  20
      192.168.1.0    255.255.255.0    192.168.1.161   192.168.1.161  25
    192.168.1.161  255.255.255.255        127.0.0.1       127.0.0.1  25
    192.168.1.255  255.255.255.255    192.168.1.161   192.168.1.161  25
        224.0.0.0        240.0.0.0    192.168.1.161   192.168.1.161  25
  255.255.255.255  255.255.255.255    192.168.1.161               2  1
  255.255.255.255  255.255.255.255    192.168.1.161   192.168.1.161  1
Default Gateway:       192.168.1.1
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\system32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (02/18/2013 00:59:53 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/02/18 11:59:53.921]: [00000360]: GetDeviceIpAddress: GetAddressByName [BRWF07BCB2DBE4E] Error
 
Error: (02/18/2013 00:59:19 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/02/18 11:59:19.406]: [00000360]: GetDeviceIpAddress: GetAddressByName [BRWF07BCB2DBE4E] Error
 
Error: (02/18/2013 00:58:44 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/02/18 11:58:44.890]: [00000360]: GetDeviceIpAddress: GetAddressByName [BRWF07BCB2DBE4E] Error
 
Error: (02/18/2013 00:58:10 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/02/18 11:58:10.375]: [00000360]: GetDeviceIpAddress: GetAddressByName [BRWF07BCB2DBE4E] Error
 
Error: (02/18/2013 00:57:35 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/02/18 11:57:35.500]: [00000360]: GetDeviceIpAddress: GetAddressByName [BRWF07BCB2DBE4E] Error
 
Error: (02/18/2013 00:57:00 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/02/18 11:57:00.984]: [00000360]: GetDeviceIpAddress: GetAddressByName [BRWF07BCB2DBE4E] Error
 
Error: (02/18/2013 00:56:26 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/02/18 11:56:26.484]: [00000360]: GetDeviceIpAddress: GetAddressByName [BRWF07BCB2DBE4E] Error
 
Error: (02/18/2013 00:55:51 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/02/18 11:55:51.968]: [00000360]: GetDeviceIpAddress: GetAddressByName [BRWF07BCB2DBE4E] Error
 
Error: (02/18/2013 00:55:17 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/02/18 11:55:17.453]: [00000360]: GetDeviceIpAddress: GetAddressByName [BRWF07BCB2DBE4E] Error
 
Error: (02/18/2013 00:54:42 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2013/02/18 11:54:42.953]: [00000360]: GetDeviceIpAddress: GetAddressByName [BRWF07BCB2DBE4E] Error
 
 
System errors:
=============
Error: (06/10/2013 07:30:11 PM) (Source: 0) (User: )
Description: \Device\Harddisk1\D
 
Error: (06/05/2013 01:54:59 PM) (Source: Service Control Manager) (User: )
Description: The Apple Mobile Device service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.
 
Error: (06/05/2013 01:54:57 PM) (Source: Service Control Manager) (User: )
Description: The Bonjour Service service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (06/05/2013 01:54:49 PM) (Source: Service Control Manager) (User: )
Description: The Application Layer Gateway Service service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (06/05/2013 01:21:17 AM) (Source: 0) (User: )
Description: \Device\ACPIEC
 
Error: (05/30/2013 06:14:00 PM) (Source: 0) (User: )
Description: 3
 
Error: (05/28/2013 07:35:21 PM) (Source: Service Control Manager) (User: )
Description: The DisplayLinkManager service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 1628 milliseconds: Restart the service.
 
Error: (05/28/2013 07:35:11 PM) (Source: Service Control Manager) (User: )
Description: The Application Layer Gateway Service service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (05/28/2013 07:34:52 PM) (Source: Service Control Manager) (User: )
Description: The DisplayLinkManager service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 1000 milliseconds: Restart the service.
 
Error: (05/28/2013 07:34:40 PM) (Source: Service Control Manager) (User: )
Description: The Apple Mobile Device service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.
 
 
Microsoft Office Sessions:
=========================
Error: (06/17/2012 02:37:10 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 216 seconds with 120 seconds of active time.  This session ended with a crash.
 
 
=========================== Installed Programs ============================
 
2007 Microsoft Office system (Version: 12.0.6612.1000)
32 Bit HP CIO Components Installer (Version: 6.1.2)
6500_E709_BasicWeb (Version: 140.0.000.000)
6500_E709_Help_BasicWeb (Version: 1.00.0000)
Adobe AIR (Version: 3.1.0.4880)
Adobe Flash Player 12 ActiveX (Version: 12.0.0.70)
Adobe Reader X (10.1.3) (Version: 10.1.3)
AMD Processor Driver (Version: 1.3.2.)
Apple Application Support (Version: 2.2.2)
Apple Mobile Device Support (Version: 6.0.0.59)
Apple Software Update (Version: 2.1.3.127)
ATI - Software Uninstall Utility (Version: 6.14.10.1014)
ATI Catalyst Control Center (Version: 1.2.2460.36742)
ATI Display Driver (Version: 8.282.2.1-060922a-036833C-Dell)
avast! Free Antivirus (Version: 9.0.2016)
Bonjour (Version: 3.0.0.10)
bpd_scan (Version: 3.00.0000)
BPDSoftware_Ini (Version: 1.00.0000)
Broadcom 440x 10/100 Integrated Controller (Version: 8.06.11)
Brother MFL-Pro Suite MFC-6490CW (Version: 1.2.13.0)
Brother MFL-Pro Suite MFC-J430W (Version: 1.0.10.0)
BufferChm (Version: 140.0.213.000)
CCleaner (Version: 4.00)
Dell Wireless WLAN Card (Version: 4.10.47.3)
DisplayLink Core Software (Version: 5.3.24474.0)
DisplayLink Graphics (Version: 5.3.24566.0)
Dropbox (Version: 2.4.11)
Evernote v. 5.1.2 (Version: 5.1.2.2387)
GIMP (Version: 2.6.11)
Google Chrome (Version: 32.0.1700.76)
Google Talk Plugin (Version: 4.9.1.16010)
High Definition Audio Driver Package - KB835221 (Version: 20040219.000000)
HP Officejet 6500 E709 Series (Version: 14.0)
HP Photosmart Plus B210 series Basic Device Software (Version: 22.50.231.0)
HP Photosmart Plus B210 series Help (Version: 140.0.54.54)
Logitech Touch Mouse Server 1.0 (Version: 1.0)
LOGO!Soft Comfort V6.1 (Version: 6.1.0.0)
LOGO!Soft Comfort V7.0  (Version: 7.0.0.0)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2698023)
Microsoft .NET Framework 1.1 Security Update (KB2833941)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Professional Hybrid 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.30214.0)
Microsoft Software Update for Web Folders  (English) 12 (Version: 12.0.6612.1000)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB2721691) (Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
Network (Version: 140.0.215.000)
QuickTime (Version: 7.72.80.56)
Scan (Version: 140.0.167.000)
SigmaTel Audio (Version: 5.10.4820.0)
Silicon Laboratories CP210x USB to UART Bridge (Driver Removal)
Silicon Laboratories CP210x VCP Drivers for Windows XP/2003 Server/Vista/7 (Version: 6.2.00)
Skype™ 6.11 (Version: 6.11.102)
Synaptics Pointing Device Driver (Version: 8.2.4.6)
Toolbox (Version: 140.0.428.000)
Tweak UI
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2878234) 32-Bit Edition
Update for Windows Internet Explorer 8 (KB2598845) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2661254-v2) (Version: 2)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB2736233) (Version: 1)
Update for Windows XP (KB2749655) (Version: 1)
Update for Windows XP (KB2863058) (Version: 1)
Update for Windows XP (KB2904266) (Version: 1)
Update for Windows XP (KB2934207) (Version: 1)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955704) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
VLC media player 2.1.2 (Version: 2.1.2)
WebFldrs XP (Version: 9.50.7523)
WebReg (Version: 140.0.213.017)
Windows Driver Package - Ricoh Company Memorystick Host Controller (07/09/2005 1.00.01.12) (Version: 07/09/2005 1.00.01.12)
Windows Driver Package - Ricoh Company MMC Host Controller (07/14/2005 1.00.00.06) (Version: 07/14/2005 1.00.00.06)
Windows Driver Package - Ricoh Company xD-Picture Card/SmartMedia Host Controller (07/14/2005 1.00.02.04) (Version: 07/14/2005 1.00.02.04)
Windows Genuine Advantage Notifications (KB905474) (Version: 1.9.0040.0)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Media Format 11 runtime
Windows Media Player 11
Windows XP Service Pack 3 (Version: 20080414.031525)
XPS Essentials Pack (Version: 1.0.6000)
XPS Essentials Pack 1.0
 
========================= Memory info: ===================================
 
Percentage of memory in use: 67%
Total physical RAM: 1917.97 MB
Available physical RAM: 615.24 MB
Total Pagefile: 5861 MB
Available Pagefile: 4606.61 MB
Total Virtual: 2047.88 MB
Available Virtual: 1974.2 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:149.04 GB) (Free:54.6 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\ISG-SSGDELL1501
 
Administrator            ASPNET                   Guest                    
HelpAssistant            Seth                     SUPPORT_388945a0         
 
 
**** End of log ****
 
 
Here is the TDSSKiller log:
21:29:17.0640 0x0cd0  TDSS rootkit removing tool 3.0.0.26 Mar 24 2014 07:28:43
21:29:32.0281 0x0cd0  ============================================================
21:29:32.0296 0x0cd0  Current date / time: 2014/03/31 21:29:32.0281
21:29:32.0296 0x0cd0  SystemInfo:
21:29:32.0296 0x0cd0  
21:29:32.0296 0x0cd0  OS Version: 5.1.2600 ServicePack: 3.0
21:29:32.0296 0x0cd0  Product type: Workstation
21:29:32.0296 0x0cd0  ComputerName: ISG-SSGDELL1501
21:29:32.0296 0x0cd0  UserName: Seth
21:29:32.0296 0x0cd0  Windows directory: C:\WINDOWS
21:29:32.0296 0x0cd0  System windows directory: C:\WINDOWS
21:29:32.0296 0x0cd0  Processor architecture: Intel x86
21:29:32.0296 0x0cd0  Number of processors: 2
21:29:32.0296 0x0cd0  Page size: 0x1000
21:29:32.0296 0x0cd0  Boot type: Normal boot
21:29:32.0296 0x0cd0  ============================================================
21:29:35.0562 0x0cd0  KLMD registered as C:\WINDOWS\system32\drivers\81942970.sys
21:29:36.0234 0x0cd0  System UUID: {36B9E063-4C39-4C24-65A5-9832638D4EC4}
21:29:37.0718 0x0cd0  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
21:29:37.0734 0x0cd0  ============================================================
21:29:37.0734 0x0cd0  \Device\Harddisk0\DR0:
21:29:37.0734 0x0cd0  MBR partitions:
21:29:37.0734 0x0cd0  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x12A14BC1
21:29:37.0734 0x0cd0  ============================================================
21:29:37.0765 0x0cd0  C: <-> \Device\Harddisk0\DR0\Partition1
21:29:37.0765 0x0cd0  ============================================================
21:29:37.0765 0x0cd0  Initialize success
21:29:37.0765 0x0cd0  ============================================================
21:29:54.0156 0x04e4  ============================================================
21:29:54.0156 0x04e4  Scan started
21:29:54.0156 0x04e4  Mode: Manual; 
21:29:54.0156 0x04e4  ============================================================
21:29:54.0156 0x04e4  KSN ping started
21:29:56.0843 0x04e4  KSN ping finished: true
21:29:58.0093 0x04e4  ================ Scan system memory ========================
21:30:01.0484 0x04e4  System memory - ok
21:30:01.0484 0x04e4  ================ Scan services =============================
21:30:01.0593 0x04e4  Abiosdsk - ok
21:30:01.0609 0x04e4  abp480n5 - ok
21:30:01.0656 0x04e4  [ 8FD99680A539792A30E97944FDAECF17, 594F8E0C3695400B0C09A797AF6BDFAC6F750ECD67D0EE803914C572B1DCC43C ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:30:01.0671 0x04e4  ACPI - ok
21:30:01.0750 0x04e4  [ 9859C0F6936E723E4892D7141B1327D5, 5E8F6A2FC4DF2E5E92A1D66ECC2810E08B42B64E9CD0DF4AD3F78EA8558B90AF ] ACPIEC          C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
21:30:01.0750 0x04e4  ACPIEC - ok
21:30:01.0765 0x04e4  adpu160m - ok
21:30:01.0812 0x04e4  [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec             C:\WINDOWS\system32\drivers\aec.sys
21:30:01.0812 0x04e4  aec - ok
21:30:01.0890 0x04e4  [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
21:30:01.0890 0x04e4  AFD - ok
21:30:01.0906 0x04e4  Aha154x - ok
21:30:01.0906 0x04e4  aic78u2 - ok
21:30:01.0921 0x04e4  aic78xx - ok
21:30:01.0968 0x04e4  [ A9A3DAA780CA6C9671A19D52456705B4, 67C959144B57AE0BBF1D82DBED197F32CDB06FECD883A80C441A0202FE83FAB4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
21:30:01.0968 0x04e4  Alerter - ok
21:30:02.0000 0x04e4  [ 8C515081584A38AA007909CD02020B3D, A5E13CA10F702928E0DE84C74D0EA8ACCB117FD76FBABC55220C75C4FFD596DC ] ALG             C:\WINDOWS\System32\alg.exe
21:30:02.0000 0x04e4  ALG - ok
21:30:02.0000 0x04e4  AliIde - ok
21:30:02.0078 0x04e4  [ EFBB0956BAED786E137351B5CA272AEF, 613E34D31C21F5CA9AEDC4BF64B8EE365DA355F914738C4FD638DB3EBE75FBB5 ] AmdK8           C:\WINDOWS\system32\DRIVERS\AmdK8.sys
21:30:02.0078 0x04e4  AmdK8 - ok
21:30:02.0078 0x04e4  amsint - ok
21:30:02.0218 0x04e4  [ A5299D04ED225D64CF07A568A3E1BF8C, 6F7E73893127BADC8C9815E9BCC0EB5F6584E254D0D09A0B6A680704C71E0A90 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:30:02.0218 0x04e4  Apple Mobile Device - ok
21:30:02.0281 0x04e4  [ D8849F77C0B66226335A59D26CB4EDC6, 4990031453204C57E36E850252A39B05D6ECDAB9E71A8136FB4900F17E59C9CA ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
21:30:02.0296 0x04e4  AppMgmt - ok
21:30:02.0296 0x04e4  asc - ok
21:30:02.0312 0x04e4  asc3350p - ok
21:30:02.0312 0x04e4  asc3550 - ok
21:30:02.0453 0x04e4  [ 0E5E4957549056E2BF2C49F4F6B601AD, F7F19FDC906B719A3516D30A9B4A2262C8CC5B36B94E3D4195C345EC4610FF2B ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
21:30:02.0468 0x04e4  aspnet_state - ok
21:30:02.0515 0x04e4  [ B347D2FEAE2D063943F16EC98634AB89, 2CA74745232607571ED088270B3B3FA555628455A257A6E52F133D650D861FD4 ] aswMonFlt       C:\WINDOWS\system32\drivers\aswMonFlt.sys
21:30:02.0515 0x04e4  aswMonFlt - ok
21:30:02.0531 0x04e4  [ 71A7C3DB37ED3F6118AC7FEB50574C35, D14BFFF9E1FA77ACB4F011C68645D3961E3278ED445D574F49653BA45F0332E2 ] aswRdr          C:\WINDOWS\system32\drivers\aswRdr.sys
21:30:02.0546 0x04e4  aswRdr - ok
21:30:02.0562 0x04e4  [ 84B4C00AE8CDFC52CF68F322D821F34C, 9971A8ECDF2B81F4AA59E7680639A8B798430E1FDF5A39C6E05E522BF2DEF3F8 ] aswRvrt         C:\WINDOWS\system32\drivers\aswRvrt.sys
21:30:02.0562 0x04e4  aswRvrt - ok
21:30:02.0656 0x04e4  [ 3A50AD6AE8D8A0F78F03316F5B93FE45, 6F3952EDA23E5FD7CACE152D3DA3B1F1238E9B9976CDD5193D21424463BAA0E9 ] aswSnx          C:\WINDOWS\system32\drivers\aswSnx.sys
21:30:02.0718 0x04e4  aswSnx - ok
21:30:02.0796 0x04e4  [ B6381B4DC603C558419641BA969930E0, F6586B6D055C62942CD0E5702FFCC6F4DB7424DC551EB0041876C3544994EB59 ] aswSP           C:\WINDOWS\system32\drivers\aswSP.sys
21:30:02.0828 0x04e4  aswSP - ok
21:30:02.0859 0x04e4  [ 4A90E597A9AF787C4CEA0DE95C1F74A7, 07A80674038F2C78DA5868CB4350C1E8618E3EAAA3E894E32FDF5C876D5280F4 ] aswTdi          C:\WINDOWS\system32\drivers\aswTdi.sys
21:30:02.0875 0x04e4  aswTdi - ok
21:30:02.0921 0x04e4  [ 680448905E27BBC6587ADB28597640D6, A55297D872162178FDCF2C64C2357DCE1D98418AB84CF5E8621DED73C7484629 ] aswVmm          C:\WINDOWS\system32\drivers\aswVmm.sys
21:30:02.0937 0x04e4  aswVmm - ok
21:30:02.0984 0x04e4  [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:30:02.0984 0x04e4  AsyncMac - ok
21:30:03.0031 0x04e4  [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
21:30:03.0031 0x04e4  atapi - ok
21:30:03.0046 0x04e4  Atdisk - ok
21:30:03.0140 0x04e4  [ 3DE89D7A2BF4E1880DF6A7E5AB8F97E1, 3A7593F2F8F6A202E4B0F817620B332996F8C91667D977002278983BB5455BD8 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
21:30:03.0187 0x04e4  Ati HotKey Poller - ok
21:30:03.0390 0x04e4  [ 9E050C4E49A26FF181B70BEC61AE048E, 6DD0BD7848B48232069DDA855AC66159518F486844FA29BFBDE3D9542AD45E5A ] ati2mtag        C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
21:30:03.0500 0x04e4  ati2mtag - ok
21:30:03.0531 0x04e4  [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:30:03.0531 0x04e4  Atmarpc - ok
21:30:03.0593 0x04e4  [ DEF7A7882BEC100FE0B2CE2549188F9D, 462C95B63D0A1058291A2DC8CBFCB13D7D74CCD1CA43B613A7EB43D49E3276F8 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
21:30:03.0593 0x04e4  AudioSrv - ok
21:30:03.0640 0x04e4  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
21:30:03.0656 0x04e4  audstub - ok
21:30:03.0796 0x04e4  [ BEA8D0FA8805CC2E6BB49728166699C7, 9A574A1E79DC2D472877443A92ACDA57A1206A2DAB3AF9110C844944EDC9D797 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
21:30:03.0812 0x04e4  avast! Antivirus - ok
21:30:03.0890 0x04e4  [ 30D20FC98BCFD52E1DA778CF19B223D4, 4B035071CEF9BBD32EEA16E6A14F9908DCB89687632E8CB8420FA8EE0DB075C4 ] BCM43XX         C:\WINDOWS\system32\DRIVERS\bcmwl5.sys
21:30:03.0953 0x04e4  BCM43XX - ok
21:30:04.0000 0x04e4  [ 6489310D11971F6BA6C7F49BE0BAF6E0, 24FB7D3DA7F372C30258AB476F0FAF43A73FF97417E86B0646105BA60B71E2AF ] bcm4sbxp        C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys
21:30:04.0000 0x04e4  bcm4sbxp - ok
21:30:04.0046 0x04e4  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
21:30:04.0062 0x04e4  Beep - ok
21:30:04.0156 0x04e4  [ 574738F61FCA2935F5265DC4E5691314, 3C7CCF064397186C3A3863DD2370AB6414A61B330097DCA4F299CA7BBAA3D1B4 ] BITS            C:\WINDOWS\system32\qmgr.dll
21:30:04.0265 0x04e4  BITS - ok
21:30:04.0390 0x04e4  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:30:04.0421 0x04e4  Bonjour Service - ok
21:30:04.0468 0x04e4  [ CFD4E51402DA9838B5A04AE680AF54A0, 5378F42B195B5832B00A05AD64E00473A45FFB86AC25C57241F26EA82B149FE1 ] Browser         C:\WINDOWS\System32\browser.dll
21:30:04.0484 0x04e4  Browser - ok
21:30:04.0578 0x04e4  [ EA7E57F87D6FEE5FD6C5F813C04E8CD2, 1EB84F4DEE3034FAFBEA2A3F84EECE036E803872DA94D54E958E9F2F09519E88 ] BrYNSvc         C:\Program Files\Browny02\BrYNSvc.exe
21:30:04.0609 0x04e4  BrYNSvc - ok
21:30:04.0625 0x04e4  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
21:30:04.0640 0x04e4  cbidf2k - ok
21:30:04.0687 0x04e4  [ 0BE5AEF125BE881C4F854C554F2B025C, 1770DD70B3F115A0EF460907DEDC1E4B7241C08615A98F194D61A49C3E2BAA54 ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
21:30:04.0687 0x04e4  CCDECODE - ok
21:30:04.0703 0x04e4  cd20xrnt - ok
21:30:04.0750 0x04e4  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
21:30:04.0750 0x04e4  Cdaudio - ok
21:30:04.0828 0x04e4  [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
21:30:04.0843 0x04e4  Cdfs - ok
21:30:04.0859 0x04e4  [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:30:04.0875 0x04e4  Cdrom - ok
21:30:04.0921 0x04e4  [ 84853B3FD012251690570E9E7E43343F, 65CACFA643E52A0C0E6B2D901228A8A0AD4993CAFA3C287E65395F4B7C521089 ] cercsr6         C:\WINDOWS\system32\drivers\cercsr6.sys
21:30:04.0921 0x04e4  cercsr6 - ok
21:30:04.0953 0x04e4  Changer - ok
21:30:04.0968 0x04e4  [ 1CFE720EB8D93A7158A4EBC3AB178BDE, 65D2A9D9A88F38D4AF323134C151BA0F4B3CD0F6A134AF86E7AC9D07319F1726 ] CiSvc           C:\WINDOWS\system32\cisvc.exe
21:30:04.0984 0x04e4  CiSvc - ok
21:30:05.0015 0x04e4  [ 34CBE729F38138217F9C80212A2A0C82, A9FD7A758D12E0818A11BEEF1CE772FEFA8373E92EF6C0DA8628CD4572CC9A43 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
21:30:05.0015 0x04e4  ClipSrv - ok
21:30:05.0062 0x04e4  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:30:05.0109 0x04e4  clr_optimization_v2.0.50727_32 - ok
21:30:05.0187 0x04e4  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:30:05.0203 0x04e4  clr_optimization_v4.0.30319_32 - ok
21:30:05.0265 0x04e4  [ 0F6C187D38D98F8DF904589A5F94D411, DB987093446216CEE913AC27503BF7E23E5A62DF169B355730285DAB64F6ED28 ] CmBatt          C:\WINDOWS\system32\DRIVERS\CmBatt.sys
21:30:05.0265 0x04e4  CmBatt - ok
21:30:05.0281 0x04e4  CmdIde - ok
21:30:05.0312 0x04e4  [ 6E4C9F21F0FAE8940661144F41B13203, 731202A0DD021FCF9287FEA631212603AAAC23F9E7F76B2882F913B18A971F1C ] Compbatt        C:\WINDOWS\system32\DRIVERS\compbatt.sys
21:30:05.0312 0x04e4  Compbatt - ok
21:30:05.0343 0x04e4  COMSysApp - ok
21:30:05.0359 0x04e4  Cpqarray - ok
21:30:05.0390 0x04e4  [ 3D4E199942E29207970E04315D02AD3B, 0825960894CF9C86CC8775BDD2A262948A09CA495AA7FE9F210FAF49E7086383 ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
21:30:05.0390 0x04e4  CryptSvc - ok
21:30:05.0406 0x04e4  dac2w2k - ok
21:30:05.0421 0x04e4  dac960nt - ok
21:30:05.0500 0x04e4  [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
21:30:05.0531 0x04e4  DcomLaunch - ok
21:30:05.0609 0x04e4  [ 5E38D7684A49CACFB752B046357E0589, F192AD4190BCFB6939A5CBC91648FE63168AF79A5E227A111DEAD6A92E42AB8D ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
21:30:05.0609 0x04e4  Dhcp - ok
21:30:05.0625 0x04e4  [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
21:30:05.0625 0x04e4  Disk - ok
21:30:05.0671 0x04e4  [ 6AB4B3859D87DC40DC93F1427C366DB8, 62E1B301D55F91F437AD3C007E708CDE8E0A9F7AFE802064597FF37D1E961988 ] DisplayLinkFilter C:\WINDOWS\system32\DRIVERS\DisplayLinkFilter.sys
21:30:05.0671 0x04e4  DisplayLinkFilter - ok
21:30:05.0671 0x04e4  [ A29E61AB672E3901B63D1DF7592613B5, 2855F6E7B5BABFC6E56744D62E480438019C6AE062072527D4A503C4DFEA00C4 ] DisplayLinkGA   C:\WINDOWS\system32\DRIVERS\DisplayLinkGAport.sys
21:30:05.0687 0x04e4  DisplayLinkGA - ok
21:30:05.0718 0x04e4  [ F974762414E831E3469FE4D14C378F2C, D699E8F74893467ADEDBC1251CC6F1DEE00D68F3C5450813760A453FCFE4AF5F ] DisplayLinkmirror C:\WINDOWS\system32\DRIVERS\DisplayLinkmirrorport.sys
21:30:05.0718 0x04e4  DisplayLinkmirror - ok
21:30:06.0156 0x04e4  [ CCA92983AA94FA2189DEC0CFA0C4085E, 72B99E1F113791D95B8523AD5B961AD01530866CB41A8EC41F75D4FC2525CD85 ] DisplayLinkService C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
21:30:06.0359 0x04e4  DisplayLinkService - ok
21:30:06.0421 0x04e4  [ 4900CE577FBAE754DA77B335CF0E83D2, C13374D543B6BA910A78377815BDECF69BB2CE7E9EDBD413EA46830EBEFC6456 ] DisplayLinkUsbPort C:\WINDOWS\system32\DRIVERS\DisplayLinkUsbPort_5.3.24474.0.sys
21:30:06.0437 0x04e4  DisplayLinkUsbPort - ok
21:30:06.0437 0x04e4  dmadmin - ok
21:30:06.0500 0x04e4  [ D992FE1274BDE0F84AD826ACAE022A41, C82BD6561A14F2932A761F5883A787B99031250EE5E9B7B5714AA045545C9B99 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
21:30:06.0546 0x04e4  dmboot - ok
21:30:06.0578 0x04e4  [ 7C824CF7BBDE77D95C08005717A95F6F, A73CB323B7A6410C3D3F258BF204E716ADF8C84C9E4F6562C57AB73DAED8CCDE ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
21:30:06.0593 0x04e4  dmio - ok
21:30:06.0625 0x04e4  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
21:30:06.0625 0x04e4  dmload - ok
21:30:06.0656 0x04e4  [ 57EDEC2E5F59F0335E92F35184BC8631, 61F6F0DC2D1A6C61D5EF0D5CC4BE0FFC217F1E61FDA3EA9F704709293656600F ] dmserver        C:\WINDOWS\System32\dmserver.dll
21:30:06.0656 0x04e4  dmserver - ok
21:30:06.0718 0x04e4  [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
21:30:06.0718 0x04e4  DMusic - ok
21:30:06.0765 0x04e4  [ 5F7E24FA9EAB896051FFB87F840730D2, 356EEFDCD54DECAD0170B34B993E4BF80DD039E2B2922D7A8D09B84031E9FC7A ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
21:30:06.0781 0x04e4  Dnscache - ok
21:30:06.0859 0x04e4  [ 0F0F6E687E5E15579EF4DA8DD6945814, 5C32D88119EB1465B2D719BEE2E05888D1A73454B5E33F2D4928DA710F8BFBA3 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
21:30:06.0875 0x04e4  Dot3svc - ok
21:30:06.0875 0x04e4  dpti2o - ok
21:30:06.0875 0x04e4  [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
21:30:06.0890 0x04e4  drmkaud - ok
21:30:06.0968 0x04e4  [ 2187855A7703ADEF0CEF9EE4285182CC, 8233CC11F637866C0074043835A785EA2B616739B6B1181B143A253CF2508CFD ] EapHost         C:\WINDOWS\System32\eapsvc.dll
21:30:06.0968 0x04e4  EapHost - ok
21:30:06.0968 0x04e4  [ BC93B4A066477954555966D77FEC9ECB, 27F5B780175EF46DA102EE33F7F33559C8B40C077EEA4405D579D9507F4B1C23 ] ERSvc           C:\WINDOWS\System32\ersvc.dll
21:30:06.0984 0x04e4  ERSvc - ok
21:30:07.0031 0x04e4  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] Eventlog        C:\WINDOWS\system32\services.exe
21:30:07.0046 0x04e4  Eventlog - ok
21:30:07.0125 0x04e4  [ D4991D98F2DB73C60D042F1AEF79EFAE, 58AF949EAEBF4FF3E3314DFB66CE4198BF65F0836B68CD27A6ED319742CCCCD2 ] EventSystem     C:\WINDOWS\system32\es.dll
21:30:07.0156 0x04e4  EventSystem - ok
21:30:07.0203 0x04e4  [ 3EF58F2EAE3AECAB45D682152DB2F67D, 61A0904D27572B1129B17CE073AEBF30E26398D8B9BD8279458D1A4363555467 ] exFat           C:\WINDOWS\system32\drivers\exFat.sys
21:30:07.0218 0x04e4  exFat - ok
21:30:07.0281 0x04e4  [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
21:30:07.0296 0x04e4  Fastfat - ok
21:30:07.0375 0x04e4  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
21:30:07.0406 0x04e4  FastUserSwitchingCompatibility - ok
21:30:07.0421 0x04e4  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys
21:30:07.0437 0x04e4  Fdc - ok
21:30:07.0453 0x04e4  [ D45926117EB9FA946A6AF572FBE1CAA3, 4C94EF009D778BE0BDF8F812F026B96F91F641BE30AA2531427A5E63DBD280DA ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
21:30:07.0468 0x04e4  Fips - ok
21:30:07.0484 0x04e4  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
21:30:07.0484 0x04e4  Flpydisk - ok
21:30:07.0546 0x04e4  [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
21:30:07.0546 0x04e4  FltMgr - ok
21:30:07.0640 0x04e4  [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
21:30:07.0640 0x04e4  FontCache3.0.0.0 - ok
21:30:07.0671 0x04e4  [ C865B83411D7347627A4BEEC22543FB1, 40F2232892CABF192903DA148ABD359F6FC0C5A21AC0B61EDC011C7CC4AA54BF ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:30:07.0671 0x04e4  Fs_Rec - ok
21:30:07.0718 0x04e4  [ 6AC26732762483366C3969C9E4D2259D, FF2C9A23CC17F380093F0BEA955B1925794271C2FEA16B9B7639668E6999BAE3 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:30:07.0734 0x04e4  Ftdisk - ok
21:30:07.0765 0x04e4  [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
21:30:07.0765 0x04e4  GEARAspiWDM - ok
21:30:07.0843 0x04e4  [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:30:07.0843 0x04e4  Gpc - ok
21:30:07.0859 0x04e4  [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
21:30:07.0859 0x04e4  HDAudBus - ok
21:30:07.0968 0x04e4  [ 4FCCA060DFE0C51A09DD5C3843888BCD, D82417706B517F2610DDF7C86BE03A72EFA9A2A389DF5C8F8ADEAB8144E2C80A ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
21:30:07.0968 0x04e4  helpsvc - ok
21:30:08.0000 0x04e4  [ DEB04DA35CC871B6D309B77E1443C796, F66A15C9528D661940F1F4CA453B3E95036D68C74C3B8AB53644211DBD3D2F32 ] HidServ         C:\WINDOWS\System32\hidserv.dll
21:30:08.0000 0x04e4  HidServ - ok
21:30:08.0046 0x04e4  [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:30:08.0046 0x04e4  HidUsb - ok
21:30:08.0093 0x04e4  [ 8878BD685E490239777BFE51320B88E9, C5C3ECF6B049B6736E35B39518A8F830B45C45A88FFE8E3A6B7922AD946597E2 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
21:30:08.0109 0x04e4  hkmsvc - ok
21:30:08.0125 0x04e4  hpn - ok
21:30:08.0250 0x04e4  [ 56FC98F1014EA8DC51B92839C32759EC, 2F6D21ACE7901E1EC3DEFB96021E131CBEC9821240434A927D2435BBC59E80DC ] HPSLPSVC        C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
21:30:08.0312 0x04e4  HPSLPSVC - ok
21:30:08.0359 0x04e4  [ D03D10F7DED688FECF50F8FBF1EA9B8A, C19A733571BA831E24EE45EDB730FFFDBA22638F138A32A794BEAB8D8B71D8DD ] HPZid412        C:\WINDOWS\system32\DRIVERS\HPZid412.sys
21:30:08.0375 0x04e4  HPZid412 - ok
21:30:08.0421 0x04e4  [ 89F41658929393487B6B7D13C8528CE3, 5D06A11225A83F3F33417148BE53654080C88BFA876FEB486A7E43410AC99F23 ] HPZipr12        C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
21:30:08.0437 0x04e4  HPZipr12 - ok
21:30:08.0484 0x04e4  [ ABCB05CCDBF03000354B9553820E39F8, 6361B5A57CDE23AC5E987ACECF3BEE7AD51134C6E5BF4F833E512C9BC4B86877 ] HPZius12        C:\WINDOWS\system32\DRIVERS\HPZius12.sys
21:30:08.0484 0x04e4  HPZius12 - ok
21:30:08.0546 0x04e4  [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
21:30:08.0562 0x04e4  HTTP - ok
21:30:08.0625 0x04e4  [ 6100A808600F44D999CEBDEF8841C7A3, 61A75118C327812C60622010985A2E80E79B6FD9030A5732390EE5426E4AF6C9 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
21:30:08.0625 0x04e4  HTTPFilter - ok
21:30:08.0640 0x04e4  i2omgmt - ok
21:30:08.0640 0x04e4  i2omp - ok
21:30:08.0703 0x04e4  [ 4A0B06AA8943C1E332520F7440C0AA30, DB2452390CCFE67E0C5FEB4FD42CA24ABE2DDD40D0B22DD5F5B8F70416863918 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:30:08.0718 0x04e4  i8042prt - ok
21:30:08.0843 0x04e4  [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc           c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:30:08.0890 0x04e4  idsvc - ok
21:30:08.0921 0x04e4  [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
21:30:08.0937 0x04e4  Imapi - ok
21:30:09.0000 0x04e4  [ 30DEAF54A9755BB8546168CFE8A6B5E1, 3936228CD3125C763ABFCB93E86E4B43838202BCC0913A28E84AC0263B43EE0D ] ImapiService    C:\WINDOWS\system32\imapi.exe
21:30:09.0015 0x04e4  ImapiService - ok
21:30:09.0015 0x04e4  ini910u - ok
21:30:09.0031 0x04e4  IntelIde - ok
21:30:09.0078 0x04e4  [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
21:30:09.0078 0x04e4  Ip6Fw - ok
21:30:09.0109 0x04e4  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:30:09.0109 0x04e4  IpFilterDriver - ok
21:30:09.0156 0x04e4  [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:30:09.0156 0x04e4  IpInIp - ok
21:30:09.0203 0x04e4  [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:30:09.0203 0x04e4  IpNat - ok
21:30:09.0218 0x04e4  [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:30:09.0234 0x04e4  IPSec - ok
21:30:09.0250 0x04e4  [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
21:30:09.0265 0x04e4  IRENUM - ok
21:30:09.0296 0x04e4  [ 05A299EC56E52649B1CF2FC52D20F2D7, 2654619DB3E6D6C385B63AB02F87D4241C4F0250CC31383D1B3586917166C2DC ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:30:09.0296 0x04e4  isapnp - ok
21:30:09.0312 0x04e4  [ 463C1EC80CD17420A542B7F36A36F128, E3B11BA26AFEAFB50B0FC168EA07F6049DA6B88BCDDEEE20310602D7FC27A3A7 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:30:09.0312 0x04e4  Kbdclass - ok
21:30:09.0328 0x04e4  [ 9EF487A186DEA361AA06913A75B3FA99, B94EBA4EC6D85E11C81AF9927E9EF0AF2E6FE134CFF1FDB0535B7C5A794B4261 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:30:09.0343 0x04e4  kbdhid - ok
21:30:09.0375 0x04e4  [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
21:30:09.0375 0x04e4  kmixer - ok
21:30:09.0421 0x04e4  [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
21:30:09.0421 0x04e4  KSecDD - ok
21:30:09.0468 0x04e4  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527, 0044F03132596A494448CCE5F3D6ECC12617BB4CF6BAE348F79D4DC40ACD6EE0 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
21:30:09.0484 0x04e4  lanmanserver - ok
21:30:09.0546 0x04e4  [ A8888A5327621856C0CEC4E385F69309, B08B63300D824E35E31EEEA2C4C086DFA2C2A964CEDAE512E74D3D88AADAA2C1 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
21:30:09.0562 0x04e4  lanmanworkstation - ok
21:30:09.0562 0x04e4  lbrtfdc - ok
21:30:09.0640 0x04e4  [ A7DB739AE99A796D91580147E919CC59, EDF4E039BA277B0E6D66FEB0B28096E67D682C09DFC18ECECF062D9DCFB75ACF ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
21:30:09.0671 0x04e4  LmHosts - ok
21:30:09.0843 0x04e4  [ 4470E3C1E0C3378E4CAB137893C12C3A, CA8E66356F0E671D5454E561E7EAD74DE25DCF53BE452369F96ECACFA8709489 ] MBAMProtector   C:\WINDOWS\system32\drivers\mbam.sys
21:30:09.0890 0x04e4  MBAMProtector - ok
21:30:10.0093 0x04e4  [ 65085456FD9A74D7F1A999520C299ECB, EA564BC913EF1B8A4CAA9242FC70F525B68CF1F3CA462F63B0B7215B93FE8530 ] MBAMScheduler   C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
21:30:10.0109 0x04e4  MBAMScheduler - ok
21:30:10.0203 0x04e4  [ E0D7732F2D2E24B2DB3F67B6750295B8, AA5CA86AF1ACEC900F60339016B3DC55472DB40ADB99186005A7ABE67B7D66FC ] MBAMService     C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
21:30:10.0234 0x04e4  MBAMService - ok
21:30:10.0234 0x04e4  mdmxsdk - ok
21:30:10.0265 0x04e4  [ 986B1FF5814366D71E0AC5755C88F2D3, E6AF051174531C24B38E73987755D366ABEC595476C6D17793E8DCCC73F55340 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
21:30:10.0281 0x04e4  Messenger - ok
21:30:10.0312 0x04e4  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
21:30:10.0328 0x04e4  mnmdd - ok
21:30:10.0359 0x04e4  [ D18F1F0C101D06A1C1ADF26EED16FCDD, BA0837C7780BD8262E143E2935AFA63BE59C3C39EF56CB8608EED0F50AF070D4 ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
21:30:10.0375 0x04e4  mnmsrvc - ok
21:30:10.0406 0x04e4  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1, B342CC9EC3729AB1AB4B5E2E99F890C1E0CA649162DE91F6768AB857B719E97B ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
21:30:10.0406 0x04e4  Modem - ok
21:30:10.0437 0x04e4  [ 35C9E97194C8CFB8430125F8DBC34D04, 0C0FCE6B0A23FB0ECB92E1663E1C72D2DD5B177D82E04782957690B69530DB39 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:30:10.0437 0x04e4  Mouclass - ok
21:30:10.0484 0x04e4  [ B1C303E17FB9D46E87A98E4BA6769685, 161A45488522055D0F0474ABEDA04DDD0B5DAC2411AF9154B15190BBD66E7153 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:30:10.0484 0x04e4  mouhid - ok
21:30:10.0515 0x04e4  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
21:30:10.0515 0x04e4  MountMgr - ok
21:30:10.0531 0x04e4  mraid35x - ok
21:30:10.0546 0x04e4  [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:30:10.0546 0x04e4  MRxDAV - ok
21:30:10.0640 0x04e4  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:30:10.0656 0x04e4  MRxSmb - ok
21:30:10.0671 0x04e4  [ A137F1470499A205ABBB9AAFB3B6F2B1, FB4951727543030D9E6ED74149C3FAACE2CA9DA8C1B5F616301B30B858C724E8 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
21:30:10.0687 0x04e4  MSDTC - ok
21:30:10.0703 0x04e4  [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
21:30:10.0703 0x04e4  Msfs - ok
21:30:10.0703 0x04e4  MSIServer - ok
21:30:10.0750 0x04e4  [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:30:10.0750 0x04e4  MSKSSRV - ok
21:30:10.0750 0x04e4  [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:30:10.0750 0x04e4  MSPCLOCK - ok
21:30:10.0781 0x04e4  [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
21:30:10.0796 0x04e4  MSPQM - ok
21:30:10.0828 0x04e4  [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:30:10.0828 0x04e4  mssmbios - ok
21:30:10.0875 0x04e4  [ E53736A9E30C45FA9E7B5EAC55056D1D, 38602F280BF69EBA3706AD175AFC1AEB561A8302B4B61E3FECB3C27D7A9BDB41 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
21:30:10.0875 0x04e4  MSTEE - ok
21:30:10.0906 0x04e4  [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
21:30:10.0921 0x04e4  Mup - ok
21:30:10.0968 0x04e4  [ 5B50F1B2A2ED47D560577B221DA734DB, C16A554B6E1A7F5F98C94DFA88163E0F7426506BF2F51FD351B1A05FC0DB3BC5 ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
21:30:10.0984 0x04e4  NABTSFEC - ok
21:30:11.0046 0x04e4  [ 0102140028FAD045756796E1C685D695, 5335B8278418CA200E2772124F0602C3E15A5CAF2D5CC59F6785DFAABF339B09 ] napagent        C:\WINDOWS\System32\qagentrt.dll
21:30:11.0062 0x04e4  napagent - ok
21:30:11.0125 0x04e4  [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
21:30:11.0140 0x04e4  NDIS - ok
21:30:11.0156 0x04e4  [ 7FF1F1FD8609C149AA432F95A8163D97, 18CD1FF5AC1EF8A38D1EC53014F2BADD28D9CDF4ECE2EBC2313D08903776F323 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
21:30:11.0171 0x04e4  NdisIP - ok
21:30:11.0203 0x04e4  [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:30:11.0203 0x04e4  NdisTapi - ok
21:30:11.0218 0x04e4  [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:30:11.0218 0x04e4  Ndisuio - ok
21:30:11.0234 0x04e4  [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:30:11.0234 0x04e4  NdisWan - ok
21:30:11.0281 0x04e4  [ 2F597BB467E05B1FE3830EABD821B8E0, 141497F5A49D47CCE3C9289644F4BD838DCB238F6D8E847FC006652E21FE02AC ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
21:30:11.0281 0x04e4  NDProxy - ok
21:30:11.0328 0x04e4  [ 69C503C004F49AEE8B8E3067CC047BA7, 0E7A2FB0CC7669E6400EDA4D2220BBB1A85CF3D3529739DA5AE2C073FFA08313 ] Net Driver HPZ12 C:\WINDOWS\system32\HPZinw12.dll
21:30:11.0328 0x04e4  Net Driver HPZ12 - ok
21:30:11.0343 0x04e4  [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
21:30:11.0359 0x04e4  NetBIOS - ok
21:30:11.0375 0x04e4  [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
21:30:11.0390 0x04e4  NetBT - ok
21:30:11.0453 0x04e4  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDE          C:\WINDOWS\system32\netdde.exe
21:30:11.0468 0x04e4  NetDDE - ok
21:30:11.0468 0x04e4  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
21:30:11.0484 0x04e4  NetDDEdsdm - ok
21:30:11.0546 0x04e4  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] Netlogon        C:\WINDOWS\system32\lsass.exe
21:30:11.0546 0x04e4  Netlogon - ok
21:30:11.0562 0x04e4  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE, 4E0A67B3CC897E80D4B342FFE8B7B4CC4F6CA2EF2D34C136027A098B2E1C6166 ] Netman          C:\WINDOWS\System32\netman.dll
21:30:11.0578 0x04e4  Netman - ok
21:30:11.0625 0x04e4  [ D34612C5D02D026535B3095D620626AE, 1BBCCCBF49EB8807240A77DCB43C25C21682073CC5356594E2C4F53EF36BF657 ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:30:11.0625 0x04e4  NetTcpPortSharing - ok
21:30:11.0687 0x04e4  [ 943337D786A56729263071623BBB9DE5, B631B47C869FE4ACF46E4AA272435D9A9CA536E3349E3FFBB8602636FEE7AFD4 ] Nla             C:\WINDOWS\System32\mswsock.dll
21:30:11.0703 0x04e4  Nla - ok
21:30:11.0734 0x04e4  [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
21:30:11.0734 0x04e4  Npfs - ok
21:30:11.0796 0x04e4  [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
21:30:11.0859 0x04e4  Ntfs - ok
21:30:11.0875 0x04e4  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
21:30:11.0875 0x04e4  NtLmSsp - ok
21:30:11.0968 0x04e4  [ 156F64A3345BD23C600655FB4D10BC08, 9611BE411586E068D9297D77102DB3BE48AA67F1BAD6F61A84F83FC3043FA9CD ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
21:30:12.0031 0x04e4  NtmsSvc - ok
21:30:12.0062 0x04e4  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys
21:30:12.0062 0x04e4  Null - ok
21:30:12.0109 0x04e4  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:30:12.0109 0x04e4  NwlnkFlt - ok
21:30:12.0140 0x04e4  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:30:12.0140 0x04e4  NwlnkFwd - ok
21:30:12.0312 0x04e4  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:30:12.0359 0x04e4  odserv - ok
21:30:12.0406 0x04e4  [ CEC7E2C6C1FA00C7AB2F5434F848AE51, 399CF962689652F6B3906F40D20EE7BBDA856CD56031A65C5A1E8718016FCE90 ] OMCI            C:\WINDOWS\SYSTEM32\DRIVERS\OMCI.SYS
21:30:12.0437 0x04e4  OMCI - ok
21:30:12.0703 0x04e4  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:30:12.0703 0x04e4  ose - ok
21:30:12.0781 0x04e4  [ 5575FAF8F97CE5E713D108C2A58D7C7C, 96D4595D19A78CCBE8B325A08780AC077AE5CC99642ACD72FB47AEAE8D344D3B ] Parport         C:\WINDOWS\system32\drivers\Parport.sys
21:30:12.0781 0x04e4  Parport - ok
21:30:12.0796 0x04e4  [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
21:30:12.0812 0x04e4  PartMgr - ok
21:30:12.0859 0x04e4  [ 70E98B3FD8E963A6A46A2E6247E0BEA1, 6771313EC41B3B5BFD398F60706E40BE71617046880CC352DD110B001AFC22A1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
21:30:12.0875 0x04e4  ParVdm - ok
21:30:12.0875 0x04e4  [ A219903CCF74233761D92BEF471A07B1, D4E6C360A1D2FCA4D17C991B834D68BF20F5111DD06B1FAB8B22984804CEC269 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
21:30:12.0890 0x04e4  PCI - ok
21:30:12.0890 0x04e4  PCIDump - ok
21:30:12.0890 0x04e4  [ CCF5F451BB1A5A2A522A76E670000FF0, D63F7E5A39653EC9CCE94B7D84B2D3EBD4F54533BD65701020198724042C9257 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
21:30:12.0906 0x04e4  PCIIde - ok
21:30:12.0937 0x04e4  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1, 0BA3DB21DC7C641C181E2635B5C9B73965FDCDCD3EBBBE48FCFEC1C8C987F617 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
21:30:12.0937 0x04e4  Pcmcia - ok
21:30:12.0953 0x04e4  PDCOMP - ok
21:30:12.0953 0x04e4  PDFRAME - ok
21:30:12.0953 0x04e4  PDRELI - ok
21:30:12.0968 0x04e4  PDRFRAME - ok
21:30:12.0968 0x04e4  perc2 - ok
21:30:12.0984 0x04e4  perc2hib - ok
21:30:13.0015 0x04e4  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] PlugPlay        C:\WINDOWS\system32\services.exe
21:30:13.0031 0x04e4  PlugPlay - ok
21:30:13.0046 0x04e4  [ 12B4549D515CB26BB8D375038017CA65, B09ED2BED994D2B04862BBF62EF56F110235D3489D3B1762432F22A3A8F97BB8 ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.dll
21:30:13.0062 0x04e4  Pml Driver HPZ12 - ok
21:30:13.0062 0x04e4  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
21:30:13.0062 0x04e4  PolicyAgent - ok
21:30:13.0093 0x04e4  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:30:13.0093 0x04e4  PptpMiniport - ok
21:30:13.0109 0x04e4  [ A32BEBAF723557681BFC6BD93E98BD26, 35039BA72A29F87B2CA37DCDE4EFDAABBDEAD8CE3EB8652ACC665994118145A6 ] Processor       C:\WINDOWS\system32\DRIVERS\processr.sys
21:30:13.0109 0x04e4  Processor - ok
21:30:13.0125 0x04e4  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
21:30:13.0125 0x04e4  ProtectedStorage - ok
21:30:13.0140 0x04e4  [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
21:30:13.0140 0x04e4  PSched - ok
21:30:13.0171 0x04e4  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:30:13.0171 0x04e4  Ptilink - ok
21:30:13.0187 0x04e4  ql1080 - ok
21:30:13.0187 0x04e4  Ql10wnt - ok
21:30:13.0203 0x04e4  ql12160 - ok
21:30:13.0203 0x04e4  ql1240 - ok
21:30:13.0218 0x04e4  ql1280 - ok
21:30:13.0250 0x04e4  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:30:13.0250 0x04e4  RasAcd - ok
21:30:13.0296 0x04e4  [ AD188BE7BDF94E8DF4CA0A55C00A5073, C7D76CB579FAEBCCC2873499441BACDD6BD6668ACF5ED7F31862656E96E2B20C ] RasAuto         C:\WINDOWS\System32\rasauto.dll
21:30:13.0312 0x04e4  RasAuto - ok
21:30:13.0343 0x04e4  [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:30:13.0343 0x04e4  Rasl2tp - ok
21:30:13.0406 0x04e4  [ 76A9A3CBEADD68CC57CDA5E1D7448235, 4AFD048C5D2306AB8DE46F3AA60AC0213333DDA3B09A9E91F7585DB6EB978EC8 ] RasMan          C:\WINDOWS\System32\rasmans.dll
21:30:13.0421 0x04e4  RasMan - ok
21:30:13.0421 0x04e4  [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:30:13.0421 0x04e4  RasPppoe - ok
21:30:13.0437 0x04e4  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
21:30:13.0437 0x04e4  Raspti - ok
21:30:13.0484 0x04e4  [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:30:13.0500 0x04e4  Rdbss - ok
21:30:13.0500 0x04e4  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:30:13.0500 0x04e4  RDPCDD - ok
21:30:13.0531 0x04e4  [ 15CABD0F7C00C47C70124907916AF3F1, 66B5C978B7FB6359AD8BAC9F568FE9D469E358FEAB07B1F129BA9E85F1DF723E ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
21:30:13.0546 0x04e4  rdpdr - ok
21:30:13.0593 0x04e4  [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
21:30:13.0593 0x04e4  RDPWD - ok
21:30:13.0625 0x04e4  [ 3C37BF86641BDA977C3BF8A840F3B7FA, AB9A6E54DBA3F4561CD4837372BECCE0D73943D02E3288F944333039375AC08C ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
21:30:13.0640 0x04e4  RDSessMgr - ok
21:30:13.0687 0x04e4  [ F828DD7E1419B6653894A8F97A0094C5, E6150E1F598BA4CFEDB8FF075BC0D576518C331B864388F1CAE8812EFF106ECF ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
21:30:13.0687 0x04e4  redbook - ok
21:30:13.0734 0x04e4  [ 7E699FF5F59B5D9DE5390E3C34C67CF5, 3FCF0442D80AB181FED4303E570378736AA1F8718C0B8B70F689A1E45200FFE4 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
21:30:13.0750 0x04e4  RemoteAccess - ok
21:30:13.0796 0x04e4  [ 5B19B557B0C188210A56A6B699D90B8F, 0FA880B81AE615206FD1738B83428AAA491D54B24168339DE6E87FDE8C6C14B0 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
21:30:13.0812 0x04e4  RemoteRegistry - ok
21:30:13.0859 0x04e4  [ 24ED7AF20651F9FA1F249482E7C1F165, 6F7BD68CBA0CACDCB6B43A401887A190FD825B4EE1974D07271224CB225A8DC2 ] rimmptsk        C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
21:30:13.0875 0x04e4  rimmptsk - ok
21:30:13.0921 0x04e4  [ AAED593F84AFA419BBAE8572AF87CF6A, CC0FFC5A69394C8830DC66320DA01A820BBF41AD7E57D0FC343561DC5EF9A360 ] RpcLocator      C:\WINDOWS\system32\locator.exe
21:30:13.0921 0x04e4  RpcLocator - ok
21:30:13.0984 0x04e4  [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] RpcSs           C:\WINDOWS\system32\rpcss.dll
21:30:14.0015 0x04e4  RpcSs - ok
21:30:14.0046 0x04e4  [ 471B3F9741D762ABE75E9DEEA4787E47, D9ADE42965EC22AEB4B2AD21D429C3C8232A60AA9853DEFDA7AED86A13FE8623 ] RSVP            C:\WINDOWS\system32\rsvp.exe
21:30:14.0062 0x04e4  RSVP - ok
21:30:14.0078 0x04e4  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] SamSs           C:\WINDOWS\system32\lsass.exe
21:30:14.0093 0x04e4  SamSs - ok
21:30:14.0156 0x04e4  [ 86D007E7A654B9A71D1D7D856B104353, 7B1DE53D637A5FC9619D5D07C48927AFEC89D959207F6F2E2F45DD054EEA04C7 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
21:30:14.0171 0x04e4  SCardSvr - ok
21:30:14.0187 0x04e4  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA, 0B582F47BD70732BAC48B8B86E5D06CE7F299A20E8177F3F2E6F28217C3FB605 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
21:30:14.0203 0x04e4  Schedule - ok
21:30:14.0250 0x04e4  [ 043C6F8F0051E9E4F5019FD20854D2AA, 1E3463326A94DB5EAC3DC72242554A314EF06F3EED182734EF28C988D96C119E ] SCR3XX2K        C:\WINDOWS\system32\DRIVERS\SCR3XX2K.sys
21:30:14.0250 0x04e4  SCR3XX2K - ok
21:30:14.0281 0x04e4  [ 8D04819A3CE51B9EB47E5689B44D43C4, B0588AF967A7611F05BC8A8AD0C945DBB7BF995D7DA5C28FD0D007E33BF1F502 ] sdbus           C:\WINDOWS\system32\DRIVERS\sdbus.sys
21:30:14.0281 0x04e4  sdbus - ok
21:30:14.0328 0x04e4  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:30:14.0328 0x04e4  Secdrv - ok
21:30:14.0359 0x04e4  [ CBE612E2BB6A10E3563336191EDA1250, C331797DC3569F0E715766561DE2562F60B924378842246C35D2B1CF867E9D96 ] seclogon        C:\WINDOWS\System32\seclogon.dll
21:30:14.0375 0x04e4  seclogon - ok
21:30:14.0390 0x04e4  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0, 7105B026F966A992430F86C3698ABE15EC73E4772F1A3E362E29FD5247A5DCA6 ] SENS            C:\WINDOWS\system32\sens.dll
21:30:14.0390 0x04e4  SENS - ok
21:30:14.0421 0x04e4  [ CCA207A8896D4C6A0C9CE29A4AE411A7, 5999B39242283CD803319AADCA171CCCC6E2A40FB2FAFA51B1D29F3FF2DD8D6C ] Serial          C:\WINDOWS\system32\drivers\Serial.sys
21:30:14.0421 0x04e4  Serial - ok
21:30:14.0484 0x04e4  [ 0FA803C64DF0914B41F807EA276BF2A6, 847B1CD47ADF9E4AE298E74CC53A7F9DB4E58F43919D3A2BBFFE07244134778D ] sffdisk         C:\WINDOWS\system32\DRIVERS\sffdisk.sys
21:30:14.0484 0x04e4  sffdisk - ok
21:30:14.0500 0x04e4  [ C17C331E435ED8737525C86A7557B3AC, F1DEB2CA5D8E02280782B354A31E148E3A2F2B5F57AD6C575875DE20F6D3C930 ] sffp_sd         C:\WINDOWS\system32\DRIVERS\sffp_sd.sys
21:30:14.0500 0x04e4  sffp_sd - ok
21:30:14.0531 0x04e4  [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
21:30:14.0531 0x04e4  Sfloppy - ok
21:30:14.0609 0x04e4  [ 83F41D0D89645D7235C051AB1D9523AC, B681F33EEAA511D6A2DCB9FBAA407B739184C9FF6067C6B7E51F1FC37E9D4DD7 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
21:30:14.0640 0x04e4  SharedAccess - ok
21:30:14.0671 0x04e4  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
21:30:14.0687 0x04e4  ShellHWDetection - ok
21:30:14.0734 0x04e4  [ 3EAD8E1668CE42A0AFE41D56E7157BCF, 90A1AA6372356046B28C079954458F42849779FFC48C93AF0549A7673B276EB3 ] silabenm        C:\WINDOWS\system32\DRIVERS\silabenm.sys
21:30:14.0734 0x04e4  silabenm - ok
21:30:14.0765 0x04e4  [ B77C60B4A7848057BDCD0AA07299E8F3, B59F9C0459DADC1D5DD90541B9D4BE69855C16E3ADCD46ACFFAC622347E1F51E ] silabser        C:\WINDOWS\system32\DRIVERS\silabser.sys
21:30:14.0781 0x04e4  silabser - ok
21:30:14.0781 0x04e4  Simbad - ok
21:30:14.0843 0x04e4  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
21:30:14.0859 0x04e4  SkypeUpdate - ok
21:30:14.0906 0x04e4  [ 866D538EBE33709A5C9F5C62B73B7D14, BC94BEB7C17B4FCAC8B5D0D5006A203BC209E0504EECE149651D8691935696CD ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
21:30:14.0906 0x04e4  SLIP - ok
21:30:14.0921 0x04e4  Sparrow - ok
21:30:14.0968 0x04e4  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
21:30:14.0968 0x04e4  splitter - ok
21:30:15.0031 0x04e4  [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
21:30:15.0031 0x04e4  Spooler - ok
21:30:15.0062 0x04e4  [ 76BB022C2FB6902FD5BDD4F78FC13A5D, 6031CB2344D7277FC703480EB43CF856A0F8F818EA98FF26A2CA532336CD2DFA ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
21:30:15.0062 0x04e4  sr - ok
21:30:15.0140 0x04e4  [ 3805DF0AC4296A34BA4BF93B346CC378, B57A14F1B7B0997E619DDD62B73157AA2399A9852166FB58139CBB358A88F6F3 ] srservice       C:\WINDOWS\system32\srsvc.dll
21:30:15.0156 0x04e4  srservice - ok
21:30:15.0218 0x04e4  [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
21:30:15.0250 0x04e4  Srv - ok
21:30:15.0265 0x04e4  [ 0A5679B3714EDAB99E357057EE88FCA6, 01E1A101FFF48402C77E385A78FEF27876E04533B60EB1C18558A737E57E5FA8 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
21:30:15.0281 0x04e4  SSDPSRV - ok
21:30:15.0406 0x04e4  [ 8990440E4B2A7CA5A56A1833B03741FD, 55FE82DAE2D15D02AB12777045E2A3FE71560E53ECF1B1C03C25A603D5D90EBB ] STHDA           C:\WINDOWS\system32\drivers\sthda.sys
21:30:15.0468 0x04e4  STHDA - ok
21:30:15.0515 0x04e4  [ A9573045BAA16EAB9B1085205B82F1ED, 6A4D68BCD4968C17451EB1C4AB420FFA844D089845520D222BC4A2BD14583C56 ] StillCam        C:\WINDOWS\system32\DRIVERS\serscan.sys
21:30:15.0515 0x04e4  StillCam - ok
21:30:15.0593 0x04e4  [ 8BAD69CBAC032D4BBACFCE0306174C30, 2AA0DA710FCBFF38FE8DA91EE02E7A4503269347E61F8D3246FCA3384BBA2305 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
21:30:15.0625 0x04e4  stisvc - ok
21:30:15.0671 0x04e4  [ 77813007BA6265C4B6098187E6ED79D2, 93939120E803C46FBFD577C8FC2E6C7E71C0460E01D25CB29579490640AB50C7 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
21:30:15.0671 0x04e4  streamip - ok
21:30:15.0718 0x04e4  [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
21:30:15.0718 0x04e4  swenum - ok
21:30:15.0734 0x04e4  [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
21:30:15.0734 0x04e4  swmidi - ok
21:30:15.0750 0x04e4  SwPrv - ok
21:30:15.0750 0x04e4  symc810 - ok
21:30:15.0765 0x04e4  symc8xx - ok
21:30:15.0765 0x04e4  sym_hi - ok
21:30:15.0781 0x04e4  sym_u3 - ok
21:30:15.0828 0x04e4  [ FA2DAA32BED908023272A0F77D625DAE, 7A9A38360D694229BB8B9D3F4C0BEDCD6872F7F074CA81F1425E36C85F602B59 ] SynTP           C:\WINDOWS\system32\DRIVERS\SynTP.sys
21:30:15.0843 0x04e4  SynTP - ok
21:30:15.0890 0x04e4  [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
21:30:15.0890 0x04e4  sysaudio - ok
21:30:15.0921 0x04e4  [ C7ABBC59B43274B1109DF6B24D617051, 4384CA0AA6CE9B603CF7DB775A3C721E46715D5B120B94FB57DEADAADE18535B ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
21:30:15.0937 0x04e4  SysmonLog - ok
21:30:15.0968 0x04e4  [ 3CB78C17BB664637787C9A1C98F79C38, F35C31F6B7F366CB949D1044B357C76DEC9170441C5E559802794F62B72FD255 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
21:30:16.0000 0x04e4  TapiSrv - ok
21:30:16.0062 0x04e4  [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:30:16.0078 0x04e4  Tcpip - ok
21:30:16.0109 0x04e4  [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
21:30:16.0109 0x04e4  TDPIPE - ok
21:30:16.0140 0x04e4  [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
21:30:16.0140 0x04e4  TDTCP - ok
21:30:16.0171 0x04e4  [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
21:30:16.0171 0x04e4  TermDD - ok
21:30:16.0250 0x04e4  [ FF3477C03BE7201C294C35F684B3479F, D6246521539BA4ACD022D26983182F5E323D2EF1EA7C54265A248C43A1CE5202 ] TermService     C:\WINDOWS\System32\termsrv.dll
21:30:16.0265 0x04e4  TermService - ok
21:30:16.0296 0x04e4  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] Themes          C:\WINDOWS\System32\shsvcs.dll
21:30:16.0312 0x04e4  Themes - ok
21:30:16.0359 0x04e4  [ DB7205804759FF62C34E3EFD8A4CC76A, 13A4248F528CE98ACA66898E56822E4FC49B11F491FF1F61A687BA601BF0A802 ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
21:30:16.0375 0x04e4  TlntSvr - ok
21:30:16.0390 0x04e4  TosIde - ok
21:30:16.0421 0x04e4  [ 55BCA12F7F523D35CA3CB833C725F54E, 849FB1AE31B143B14B298BBC0D91230693D41DEB95F46516878F53A7F4186C38 ] TrkWks          C:\WINDOWS\system32\trkwks.dll
21:30:16.0437 0x04e4  TrkWks - ok
21:30:16.0468 0x04e4  [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
21:30:16.0484 0x04e4  Udfs - ok
21:30:16.0484 0x04e4  UIUSys - ok
21:30:16.0500 0x04e4  ultra - ok
21:30:16.0562 0x04e4  [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
21:30:16.0593 0x04e4  Update - ok
21:30:16.0656 0x04e4  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91, 7746916DB48E3F5B243B63C066596AD9037A494BF1AD935946DD04AC85D983DF ] upnphost        C:\WINDOWS\System32\upnphost.dll
21:30:16.0671 0x04e4  upnphost - ok
21:30:16.0703 0x04e4  [ 05365FB38FCA1E98F7A566AAAF5D1815, 16843048CEEC3DAA3B953A12FF1EE339E86783A08F2A56DA7F94AD9F9717D77D ] UPS             C:\WINDOWS\System32\ups.exe
21:30:16.0718 0x04e4  UPS - ok
21:30:16.0750 0x04e4  [ 73B41F4EAD65F355962168D766AF0F2E, AA33CAE55D4766C9F1E9F1B50EEAE1CA4BE968380C89892A46D2D25EAEEDC64D ] USBAAPL         C:\WINDOWS\system32\Drivers\usbaapl.sys
21:30:16.0765 0x04e4  USBAAPL - ok
21:30:16.0812 0x04e4  [ 65898A183FBF1D1F7759D5CCB364DCD4, 85E823123FDB4CA5F8255064E22A444627999055EC3419DFD001371893F36AB9 ] usbaudio        C:\WINDOWS\system32\drivers\usbaudio.sys
21:30:16.0828 0x04e4  usbaudio - ok
21:30:16.0875 0x04e4  [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:30:16.0875 0x04e4  usbccgp - ok
21:30:16.0906 0x04e4  [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:30:16.0921 0x04e4  usbehci - ok
21:30:16.0953 0x04e4  [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:30:16.0968 0x04e4  usbhub - ok
21:30:17.0000 0x04e4  [ 0DAECCE65366EA32B162F85F07C6753B, 3C33AC2FC95E876933F2016CF0CDA2745491679728684DA8DF95A515CE4804BD ] usbohci         C:\WINDOWS\system32\DRIVERS\usbohci.sys
21:30:17.0000 0x04e4  usbohci - ok
21:30:17.0062 0x04e4  [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
21:30:17.0062 0x04e4  usbprint - ok
21:30:17.0093 0x04e4  [ F8EDE2B6928970DCE3D5614C27D9E7F6, 6E5EBBC8B70C1D593634DAF0C190DEADFDA18C3CBC8F552A76F156F3869EF05B ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
21:30:17.0093 0x04e4  usbscan - ok
21:30:17.0140 0x04e4  [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:30:17.0140 0x04e4  USBSTOR - ok
21:30:17.0156 0x04e4  [ 813236B1183CFCF289E367BD5DE6E29E, 167FE18A96F330AEEC1A4C419770C15EFEB536D43838285E51E7A62E95DF4674 ] usbvideo        C:\WINDOWS\system32\Drivers\usbvideo.sys
21:30:17.0171 0x04e4  usbvideo - ok
21:30:17.0187 0x04e4  [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
21:30:17.0187 0x04e4  VgaSave - ok
21:30:17.0203 0x04e4  ViaIde - ok
21:30:17.0218 0x04e4  [ 4C8FCB5CC53AAB716D810740FE59D025, 010EAC43DBED700B73E4FC908FAAF9F6A0168EBBD5D86751E49BC33AAA18BFA4 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
21:30:17.0218 0x04e4  VolSnap - ok
21:30:17.0312 0x04e4  [ 7A9DB3A67C333BF0BD42E42B8596854B, D31A9A3B1AAAB373EDD73B674102395212FCB616F829E938B7B2B7BE7D4752C5 ] VSS             C:\WINDOWS\System32\vssvc.exe
21:30:17.0343 0x04e4  VSS - ok
21:30:17.0390 0x04e4  [ 54AF4B1D5459500EF0937F6D33B1914F, FA1876888BCB9C72A92369DBED4FF1A8666784523FB41E618FA0919490FCDDB9 ] W32Time         C:\WINDOWS\system32\w32time.dll
21:30:17.0421 0x04e4  W32Time - ok
21:30:17.0453 0x04e4  [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:30:17.0468 0x04e4  Wanarp - ok
21:30:17.0500 0x04e4  [ D6EFAF429FD30C5DF613D220E344CCE7, 807D4563E8AD4073688691078EB13AF240E14BA5E0C8506A48B3060A20B90082 ] WDC_SAM         C:\WINDOWS\system32\DRIVERS\wdcsam.sys
21:30:17.0515 0x04e4  WDC_SAM - ok
21:30:17.0609 0x04e4  [ D918617B46457B9AC28027722E30F647, 407284D3055DC11944D4EE7E4357E7CF9CAF8CA40CA50633AB6FD4A82CB7EEA6 ] Wdf01000        C:\WINDOWS\system32\Drivers\wdf01000.sys
21:30:17.0656 0x04e4  Wdf01000 - ok
21:30:17.0656 0x04e4  WDICA - ok
21:30:17.0734 0x04e4  [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
21:30:17.0750 0x04e4  wdmaud - ok
21:30:17.0781 0x04e4  [ 77A354E28153AD2D5E120A5A8687BC06, 8B2D37A4443501C0A8E70BC2079BE27F0A36FD07B561E6F68B40A72EABBC2DFE ] WebClient       C:\WINDOWS\System32\webclnt.dll
21:30:17.0796 0x04e4  WebClient - ok
21:30:17.0921 0x04e4  [ 2D0E4ED081963804CCC196A0929275B5, E1D75C7D7233D81DFDE13160B0C80138DF8B35230D04FB79B367A52FACF69BF8 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
21:30:17.0937 0x04e4  winmgmt - ok
21:30:17.0968 0x04e4  wltrysvc - ok
21:30:18.0015 0x04e4  [ 051B1BDECD6DEE18C771B5D5EC7F044D, E9D4870C7E4E6119B274CF788D564BE9C48EA63790F5D6A2E987EB6DF7C93200 ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
21:30:18.0031 0x04e4  WmdmPmSN - ok
21:30:18.0140 0x04e4  [ E76F8807070ED04E7408A86D6D3A6137, BFCF5361B7335760A7AE4B6958DE516A27AC60AA09135A46F0B49F588FAFE3A0 ] Wmi             C:\WINDOWS\System32\advapi32.dll
21:30:18.0187 0x04e4  Wmi - ok
21:30:18.0218 0x04e4  [ C42584FD66CE9E17403AEBCA199F7BDB, E3F2E1066F36AE5D33D4482239B2E556BE0C137923C9A120DFB36EC82F2E77B0 ] WmiAcpi         C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
21:30:18.0218 0x04e4  WmiAcpi - ok
21:30:18.0265 0x04e4  [ E0673F1106E62A68D2257E376079F821, 12992F18C9653050B10DC61D12988067933FCFDF02123D3A7EF5DE607A785DDC ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
21:30:18.0281 0x04e4  WmiApSrv - ok
21:30:18.0453 0x04e4  [ 6BAB4DC65515A098505F8B3D01FB6FE5, 52AA14777920753A8AF76072216A266F5D0036F112F671E7104E1F4C04AE499E ] WMPNetworkSvc   C:\Program Files\Windows Media Player\WMPNetwk.exe
21:30:18.0531 0x04e4  WMPNetworkSvc - ok
21:30:18.0671 0x04e4  [ 15673BD0B86150CB8E27766059C72A9B, 56C23289A8BFF4945EE532CF6D62D3EC81B827CA15A359F30A327789F9FE9CAF ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
21:30:18.0718 0x04e4  WPFFontCache_v0400 - ok
21:30:18.0781 0x04e4  [ 7C278E6408D1DCE642230C0585A854D5, DA46079A04F6E8E3441E4AE454AEAC02B3E935DE29CE7F6D4476F57867FCC12A ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
21:30:18.0875 0x04e4  wscsvc - ok
21:30:18.0906 0x04e4  [ C98B39829C2BBD34E454150633C62C78, 71B60EA3AD0E2637917D528C6A9E7ECF2949E3E5E91036AA5BBADA95BD725511 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
21:30:18.0921 0x04e4  WSTCODEC - ok
21:30:18.0953 0x04e4  [ 35321FB577CDC98CE3EB3A3EB9E4610A, C9A6F5CF282D8FCB3CDFCC4B306013480E78E1B664E1A60A4E27B161F9FFD4CD ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
21:30:18.0953 0x04e4  wuauserv - ok
21:30:19.0000 0x04e4  [ F15FEAFFFBB3644CCC80C5DA584E6311, 79B3E9AF35976CE49921E9BEA3BA3B4A8AF762FD3F284B62954038B5FFB32471 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:30:19.0000 0x04e4  WudfPf - ok
21:30:19.0015 0x04e4  [ 28B524262BCE6DE1F7EF9F510BA3985B, AEFF02B899801A63CBB262757C3D4369E38BFF0690BD085DE60E873DFBE3C3F4 ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:30:19.0015 0x04e4  WudfRd - ok
21:30:19.0046 0x04e4  [ 05231C04253C5BC30B26CBAAE680ED89, 5C03C2D7E0B573646D32F4093E2FF2C3BA391C39F5BA37D67F69D38E357FCC3D ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
21:30:19.0078 0x04e4  WudfSvc - ok
21:30:19.0140 0x04e4  [ 81DC3F549F44B1C1FFF022DEC9ECF30B, 3D14BFEA539F9CEB16555BD56C5E3C7C8F6692FC62C2789F8AAEA1C042E63940 ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
21:30:19.0171 0x04e4  WZCSVC - ok
21:30:19.0218 0x04e4  [ 295D21F14C335B53CB8154E5B1F892B9, 9418477C2E3EA93E93D931A4EDD4500DA568FAD6040204B5201D1080203B0BBC ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
21:30:19.0234 0x04e4  xmlprov - ok
21:30:19.0250 0x04e4  ================ Scan global ===============================
21:30:19.0281 0x04e4  [ 42F1F4C0AFB08410E5F02D4B13EBB623, 924C30587C51C0D1E1F47991969AF492A644552E15F2480EA991DCB74A3E68D5 ] C:\WINDOWS\system32\basesrv.dll
21:30:19.0359 0x04e4  [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
21:30:19.0390 0x04e4  [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
21:30:19.0437 0x04e4  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] C:\WINDOWS\system32\services.exe
21:30:19.0437 0x04e4  [ Global ] - ok
21:30:19.0437 0x04e4  ================ Scan MBR ==================================
21:30:19.0468 0x04e4  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
21:30:19.0640 0x04e4  \Device\Harddisk0\DR0 - ok
21:30:19.0640 0x04e4  ================ Scan VBR ==================================
21:30:19.0656 0x04e4  [ E99D01E612828B54864435BD298AD4DF ] \Device\Harddisk0\DR0\Partition1
21:30:19.0687 0x04e4  \Device\Harddisk0\DR0\Partition1 - ok
21:30:19.0687 0x04e4  Waiting for KSN requests completion. In queue: 210
21:30:20.0687 0x04e4  Waiting for KSN requests completion. In queue: 210
21:30:21.0687 0x04e4  Waiting for KSN requests completion. In queue: 210
21:30:22.0765 0x04e4  AV detected via SS1: avast! Antivirus, 5.0.150996960, enabled, updated
21:30:22.0781 0x04e4  Win FW state via NFM: enabled
21:30:25.0375 0x04e4  ============================================================
21:30:25.0375 0x04e4  Scan finished
21:30:25.0375 0x04e4  ============================================================
21:30:25.0390 0x10b4  Detected object count: 0
21:30:25.0390 0x10b4  Actual detected object count: 0
 Will continue others and send

Here is first log:



#4 Vecc1982

Vecc1982
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:08 PM

Posted 31 March 2014 - 09:37 PM

Ok, so I attempted the adwcleaner. It scanned, I attempted to clean as instructed and it became unresponsive after attempts. Tried a second time with same result. Not sure whether to continue without that step or not. Please let me know whether to proceed with other steps.



#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,323 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:08 PM

Posted 01 April 2014 - 08:21 PM

Very sorry I was out all day.
Did you try right clicking the icon and selecting Run as Administrator?
Skip it do the rest and try again after.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 Vecc1982

Vecc1982
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:08 PM

Posted 01 April 2014 - 09:12 PM

No problem, thanks for the help. Ok, will continue directions. Also received a message on computer last night with blue screen background saying:"A problem has been detected and Windows has been shut down to prevent damage to computer. If this is the first time you've seen this stop error screen, restart your computer, if this screen appears again, follow these steps..." I can continue the rest of message if needed. 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.3 (03.23.2014:1)
OS: Microsoft Windows XP x86
Ran by Seth on Tue 04/01/2014 at 21:39:08.48
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\yahoopartnertoolbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\freeze.com
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
Successfully deleted: [Folder] "C:\Documents and Settings\All Users\application data\premium"
Successfully deleted: [Folder] "C:\Documents and Settings\Seth\Application Data\mywordtool"
Successfully deleted: [Folder] "C:\Program Files\optimizer pro"
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 04/01/2014 at 21:48:27.15
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 



#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,323 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:08 PM

Posted 01 April 2014 - 09:24 PM

Probably the shut down was from the Registry changing removing Optimizer Pro.


Edited by boopme, 01 April 2014 - 09:24 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 Vecc1982

Vecc1982
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:08 PM

Posted 02 April 2014 - 01:01 PM

Here is the ESET results, going to attempt Adware cleaner again.

 

C:\Documents and Settings\All Users\Documents\Aphoenix\Forms\Ours-AS, Blank, etc\OffercastInstaller_AVR_U-0087-01-PlateauLines-0805-01-en_.exe a variant of Win32/Bundled.Toolbar.Ask.D potentially unsafe application deleted - quarantined
C:\Documents and Settings\Seth\Desktop\vlcmediaplayer-setup.exe Win32/DownloadAdmin.G potentially unwanted application deleted - quarantined
C:\Documents and Settings\Seth\Local Settings\Temp\166b72ae.ftf.ftf a variant of Win32/SProtector.D potentially unwanted application deleted - quarantined
C:\Documents and Settings\Seth\Local Settings\Temp\is-MPJG2.tmp\OptProCrash.dll a variant of Win32/SProtector.E potentially unwanted application deleted - quarantined
C:\Documents and Settings\Seth\My Documents\Downloads\ccsetup316.exe Win32/Bundled.Toolbar.Google.E potentially unsafe application deleted - quarantined
C:\Documents and Settings\Seth\My Documents\Downloads\ccsetup318.exe Win32/Bundled.Toolbar.Google.E potentially unsafe application deleted - quarantined
C:\Documents and Settings\Seth\My Documents\Downloads\ccsetup400.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Documents and Settings\Seth\My Documents\Downloads\FreemakeVideoConverterSetup.exe Win32/OpenCandy potentially unsafe application deleted - quarantined
C:\WINDOWS\Temp\166b72ae.ftf.ftf a variant of Win32/SProtector.D potentially unwanted application deleted - quarantined
C:\Documents and Settings\Seth\Local Settings\Temp\{08C952AA-0039-4063-9B81-006E3DEE478D}\setup.exe multiple threats cleaned by deleting - quarantined
 


#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,323 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:08 PM

Posted 02 April 2014 - 01:18 PM

If Adw fails again,let me know and run MBAM.

Download and install:

Please download Malwarebytes Anti-Malware to your desktop.
  • Double-click mb3-setup-1878.1878-3.5.1.2522.exe and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to the following:
    • Launch Malwarebytes Anti-Malware
    • A 14 day trial of the Premium features is pre-selected. You may deselect this if you wish, and it will not diminish the scanning and removal capabilities of the program.
  • Click Finish.
  • On the Dashboard, click the 'Update Now >>' link
  • After the update completes, click the 'Scan Now >>' button.
  • Or, on the Dashboard, click the Scan Now >> button.
  • If an update is available, click the Update Now button.
  • A Threat Scan will begin.
  • When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.
  • In most cases, a restart will be required.
  • Wait for the prompt to restart the computer to appear, then click on Yes.
  • How to get logs:
    (Export log to save as txt)
    • After the restart once you are back at your desktop, open MBAM once more.
    • Click on the History tab > Application Logs.
    • Double click on the scan log which shows the Date and time of the scan just performed.
    • Click 'Export'.
    • Click 'Text file (*.txt)'
    • In the Save File dialog box which appears, click on Desktop.
    • In the File name: box type a name for your scan log.
    • A message box named 'File Saved' should appear stating "Your file has been successfully exported".
    • Click Ok
    • Attach that saved log to your next reply.
    (Copy to clipboard for pasting into forum replies or tickets)
    • After the restart once you are back at your desktop, open MBAM once more.
    • Click on the History tab > Application Logs.
    • Double click on the scan log which shows the Date and time of the scan just performed.
    • Click 'Copy to Clipboard'
    • Paste the contents of the clipboard into your reply.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 Vecc1982

Vecc1982
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:08 PM

Posted 02 April 2014 - 06:26 PM

Ok, Adware was unresponsive again, it completed scan, found multiple threats but when deleting them it freezes up. Here is Malwarebytes scan results:

Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 4/2/2014
Scan Time: 3:35:35 PM
Logfile: Malware report.txt
Administrator: Yes
 
Version: 2.00.0.1000
Malware Database: v2014.04.02.07
Rootkit Database: v2014.03.27.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Chameleon: Disabled
 
OS: Windows XP Service Pack 3
CPU: x86
File System: NTFS
User: Seth
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 223199
Time Elapsed: 12 min, 34 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 0
(No malicious items detected)
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)


#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,323 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:08 PM

Posted 02 April 2014 - 06:53 PM

Ok, I posted the Author of the tool about it.. We'll do a bug check.
 
Lets just see an RKIll log as it may help.
 
Please download Rkill by Grinler and save it to your desktop.
  • Link 1
  • Link 2
    • Double-click on the Rkill desktop icon to run the tool.
    • If using Vista, right-click on it and Run As Administrator.
    • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
    • If not, delete the file, then download and use the one provided in Link 2.
    • If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.
    • If the tool does not run from any of the links provided, please let me know.
  • Do not reboot the computer, you will need to run the application again.
Try it again please.

Edited by boopme, 02 April 2014 - 06:54 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 Vecc1982

Vecc1982
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:08 PM

Posted 02 April 2014 - 07:06 PM

Do you want me to try the Adware again? Just random video commercials pop up. Also when I click on the link, a new box opens sending me to different website for virus protection.

 

 

Here are RKill results:

Rkill 2.6.5 by Lawrence Abrams (Grinler)
Copyright 2008-2014 BleepingComputer.com
More Information about Rkill can be found at this link:
 
Program started at: 04/02/2014 08:00:37 PM in x86 mode.
Windows Version: Microsoft Windows XP Service Pack 3
 
Checking for Windows services to stop:
 
 * No malware services found to stop.
 
Checking for processes to terminate:
 
 * C:\WINDOWS\System32\WLTRYSVC.EXE (PID: 1844) [WD-HEUR]
 * C:\WINDOWS\System32\bcmwltry.exe (PID: 1856) [WD-HEUR]
 
2 proccesses terminated!
 
Checking Registry for malware related settings:
 
 * No issues found in the Registry.
 
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
 
Performing miscellaneous checks:
 
 * Reparse Point/Junctions Found (Most likely legitimate)!
 
     * C:\WINDOWS\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a => C:\WINDOWS\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_4.0.0.0_x-ww_29b51492 [Dir]
 
Checking Windows Service Integrity: 
 
 * No issues found.
 
Searching for Missing Digital Signatures: 
 
 * No issues found.
 
Checking HOSTS File: 
 
 * HOSTS file entries found: 
 
  127.0.0.1       localhost
 
Program finished at: 04/02/2014 08:02:12 PM
Execution time: 0 hours(s), 1 minute(s), and 34 seconds(s)


#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,323 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:08 PM

Posted 02 April 2014 - 07:59 PM

Yes run it again..
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#14 Vecc1982

Vecc1982
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:08 PM

Posted 02 April 2014 - 08:52 PM

Ok, results of Adware:

 

# AdwCleaner v3.023 - Report created 02/04/2014 at 21:50:27
# Updated 01/04/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Seth - ISG-SSGDELL1501
# Running from : C:\Documents and Settings\Seth\My Documents\Downloads\AdwCleaner.exe
# Option : Scan
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Found : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Found : HKCU\Software\wscontb
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v8.0.6001.18702
 
Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://search.findwide.com/?guid={73673A59-C3EE-4737-8ED6-6C6CEA911CCF}&serpv=22
 
-\\ Google Chrome v
 
[ File : C:\Documents and Settings\LocalService\Local Settings\Application Data\Google\Chrome\User Data\Default\preferences ]
 
 
[ File : C:\Documents and Settings\Seth\Local Settings\Application Data\Google\Chrome\User Data\Default\preferences ]
 
 
*************************
 
AdwCleaner[R0].txt - [1780 octets] - [31/03/2014 20:15:11]
AdwCleaner[R1].txt - [1840 octets] - [31/03/2014 21:40:12]
AdwCleaner[R2].txt - [1959 octets] - [31/03/2014 22:18:36]
AdwCleaner[R3].txt - [1789 octets] - [02/04/2014 14:06:38]
AdwCleaner[R4].txt - [1366 octets] - [02/04/2014 21:24:52]
AdwCleaner[R5].txt - [1381 octets] - [02/04/2014 21:50:27]
AdwCleaner[S0].txt - [374 octets] - [31/03/2014 21:44:42]
AdwCleaner[S1].txt - [374 octets] - [31/03/2014 22:21:21]
AdwCleaner[S2].txt - [370 octets] - [02/04/2014 14:10:05]
AdwCleaner[S3].txt - [1437 octets] - [02/04/2014 21:28:39]
 
########## EOF - C:\AdwCleaner\AdwCleaner[R5].txt - [1678 octets] ##########


#15 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,323 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:08 PM

Posted 02 April 2014 - 09:55 PM

I take it the issue still exists.

Please download aswMBR ( 4.5MB ) to your desktop.

  • Double click the aswMBR.exe icon, and click Run.
  • When asked if you'd like to "download the latest Avast! virus definitions", click Yes.
  • Click the Scan button to start the scan.
  • On completion of the scan, click the save log button, save it to your desktop, then copy and paste it in your next reply.
  •  

>>>>

 

It may also be caused by a Chrome plug In.. Either disable all and see if it stops or go one by one to see who is the culprit.

How To Disable Individual Plug-ins in Google Chrome


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users