Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Please help me be sure my computer is clean

Started by wharriss , Jan 23 2013 01:32 PM

Please log in to reply

#1
wharriss

Posted 23 January 2013 - 01:32 PM

Member

Member
105 posts

Hi folks
I am new to this forum but I have been working with moderator rshaffer in the operating systems windows xp forum.

http://www.geekstogo...s-in-safe-mode/

The condensed story is that my 2003 model HP Pavillion a320n windows xp SP3 must have gotten some viruses and a lot of corrupted files because it got to where it wouldn't boot in normal or safe mode. The only way I could shut it down was by pulling the power cord which I did many times trying to run various bootable programs.

Finally, I gave up and did a complete reinstall of windows xp, to the configuration I bought it in (from Best Buy) brought it up to SP3, installed and ran AVG. It immediately found 2 instances of Trojan: JS/Tracur.gen.
I also installed rkill, Malwarebytes, and Superantispyeare. I have run the AVG, MBAM, Superantispyware, with rkill in both safe and normal modes and the computer seems to be clean.

But I would like for the experts on this forum to help me run whatever is necessary to be sure the PC is clean.

I read your instructions to run OTL. I tried all three option listed. I even ran rkill before running the OTL when I found that all three would start scanning for several minutes until OTL got to "scanning foxfire settings". That's where the program became "not responding" in task manager and I even had some trouble shutting it down.

I have MBAM on desktop and it would run- found no malicious items
I also ran AVG and it found no issues
I ran these again immediately after I found OTL wouldn't complete the scan

Where do I go from here???
Here is the log from rkill

Rkill 2.4.6 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingc...opic308364.html

Program started at: 01/23/2013 01:55:30 PM in x86 mode.
Windows Version: Microsoft Windows XP Service Pack 3

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* No issues found.

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* HOSTS file entries found:

127.0.0.1 localhost

Program finished at: 01/23/2013 01:56:03 PM
Execution time: 0 hours(s), 0 minute(s), and 33 seconds(s)

#2
RKinner

Posted 23 January 2013 - 02:03 PM

Malware Expert

Expert
24,625 posts

Use IE and go to http://eset.com/onlinescan and click on ESET online Scanner. Accept the terms then press Start (If you get a warning from your browser tell it you want to run it).

# Check Scan Archives
# Push the Start button.
# ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
# When the scan completes, push LIST OF THREATS FOUND
# Push EXPORT TO TEXT FILE , and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
# Push the BACK button.
# Push Finish
# Once the scan is completed, you may close the window.
# Use Notepad to open the logfile located at C:\Program Files\EsetOnlineScanner\log.txt
# Copy and paste that log as a reply.

Let's also try the bitdefender quickscan.

http://quickscan.bitdefender.com/

When it finishes there is a View Report option at the bottom. Click on it and copy and paste the report (even if it says nothing found).

Ron

#3
wharriss

Posted 23 January 2013 - 06:04 PM

Member

Topic Starter
Member
105 posts

Ron
I ran eset online scanner, It seemed to work just fine. It took about an hour and when finished, it said "no threats found" There was no option to list any type file for text export.

Then I ran Bitdefender Quickscan and the results were also "Good News: We found no active infections on your PC.
Again, no option to View Report to copy was there.

I'm sure I didn't overlook seeing any option to view and post log results in either of the scans. I assume they don't give that option unless there is a threat found, (but I am learning that viruses are very cunning)

It's strange. Wonder why I can't get past "scan foxfire settings" in OTL scan? Something must be wrong there.

Reckon I could uninstall Foxfire and try to run OTL again. Another thing worth mentioning is that I have not been to visit any possible unsafe websites since I had to reinstall windows and had to download and install firefox 18. However, I do have xmarks add on on the firefox browser and it has imported all the bookmarks that I have ever bookmarked from all my computers over the past few years. Could a virus be on a website bookmark?

Thanks for reading. Awaiting further instructions.

Thanks
Winston

#4
RKinner

Posted 23 January 2013 - 06:21 PM

Malware Expert

Expert
24,625 posts

I've asked old timer about the problem with OTL and Firefox. Yours is the second PC that has that problem. I beat the other one to death and never found a reason for it. Waiting to hear back from him.

In the meantime we can run a few other tests just to make sure.

Please download DDS from http://download.blee...om/sUBs/dds.com or http://download.blee...om/sUBs/dds.scr
and save it to your desktop.

* Disable any script blocking protection
* Double click dds.pif to run the tool. (Vista and Win 7 please right click and Run As Admin)
* When done, two DDS.txt's will open.
* Save both reports to your desktop.

---------------------------------------------------
Please include the contents of the following in your next reply:

DDS.txt
Attach.txt.

Download aswMBR.exe to your desktop.
Right click aswMBR.exe and Run as Administrator
uncheck trace disk IO calls
Click the "Scan" button to start scan (Accept the Avast Engine)
On completion of the scan if the Fix button is enabled (not the FixMBR button) press it and then run a new scan and click save log, save it to your desktop and post in your next reply
If the Fix button is not enabled then just click save log, save it to your desktop and post in your next reply

ComboFix

:!: It must be saved to your desktop, do not run it from your browser:!:

:!: Disable your Antivirus software when downloading or running Combofix. If it has Script Blocking features, please disable these as well. See: http://www.bleepingc...opic114351.html

Download and Save this file -- to your Desktop -- from either of these two sources:
http://download.blee...Bs/ComboFix.exe
http://subs.geekstogo.com/ComboFix.exe

Rightclick on ComboFix and select Run As Administrator to start the program.

* :!: Important: Have no other programs running. Your Task Bar should be clear of any program entries including your Browser.

* A window may open with a series of Disclaimers. Accept the Disclaimers to start the fix.

A caution - Do not run Combofix more than once. Do not touch your mouse/keyboard until the scan has completed, as this may cause the process to stall or your computer to lock. The scan will temporarily disable your desktop, and if interrupted may leave your desktop disabled. If this occurs, please reboot to restore the desktop. Even when ComboFix appears to be doing nothing, look at your Drive light. If it is flashing, Combofix is still at work.

A file will be created at => C:\Combofix.txt. I'll need to see that in your reply.

Download TDSSKiller:
http://support.kaspe.../tdsskiller.exe
Save it to your desktop then run it by right clicking and Run As Admin.

If TDSSKiller alerts you that the system needs to reboot, please consent.

Run TDSSKiller again but this time:
before you hit the Scan hit Change Parameters and check the two items under Additional Options. OK then Scan.
In this mode it is prone to false positives so do not change the SKIP option to DELETE unless it says TDSS.
When done, a log file should be created on your C: drive named "TDSSKiller.txt" please copy and paste the contents in your next reply.

Get the free version of Speccy:

http://www.filehippo...download_speccy (Look in the upper right for the Download
Latest Version button) Download, Save and Install it. Run Speccy. When it finishes (the little icon in the bottom left will stop moving), File, Save as Text File, (to your desktop) note the name it gives. OK. Open the file in notepad and delete the line that gives the serial number of your Operating System. (It will be near the top about 10 lines down.) Attach the file to your next post.

Get Process Explorer

http://live.sysinter...com/procexp.exe
Save it to your desktop then run it (Vista or Win7 - right click and Run As Administrator).

View, Select Column, check Verified Signer, OK
Options, Verify Image Signatures

Click twice on the CPU column header to sort things by CPU usage with the big hitters at the top.

Wait a minute then:

File, Save As, Save. Open the file Procexp.txt on your desktop and copy and paste the text to a reply.

Download the adwCleaner

Run the Tool
Windows Vista and Windows 7 users:
Right click in the adwCleaner.exe and select the option
Select the Delete button.
When the scan completes, it will open a notepad windows.
Please, copy the content of this file in your next reply.

Open IE then click on the gear then Click the Safety button, point to SmartScreen Filter, and then click Turn Off SmartScreen Filter. In the Microsoft? SmartScreen Filter dialog box, click OK.

#5
wharriss

Posted 23 January 2013 - 11:01 PM

Member

Topic Starter
Member
105 posts

Reports from DDS

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702
Run by Owner at 22:00:10 on 2013-01-23
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1471.335 [GMT -5:00]
.
AV: AVG Anti-Virus 2013 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
.
============== Running Processes ================
.
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Softex\OmniPass\Omniserv.exe
C:\Program Files\Softex\OmniPass\OPXPApp.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\alg.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe
C:\Program Files\HP\HP Software Update\HPWuSchd.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\Multimedia Card Reader\shwicon2k.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\interMute\SpamSubtract\SpamSubtract.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\System32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalService
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://finance.yahoo.com/
uSearch Bar = hxxp://srch-us9.hpwis.com/
uSearch Page = hxxp://srch-us9.hpwis.com/
uDefault_Page_URL = hxxp://us9.hpwis.com/
uDefault_Search_URL = hxxp://srch-us9.hpwis.com/
mSearch Bar = hxxp://srch-us9.hpwis.com/
uProxyOverride = localhost
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: <No Name>: {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - c:\program files\microsoft money\system\mnyside.dll
BHO: CNavExtBho Class: {BDF3E430-B101-42AD-A544-FADC6B084872} -
BHO: WeCareReminder Class: {D824F0DE-3D60-4F57-9EB1-66033ECD8ABB} - c:\documents and settings\all users\application data\wecarereminder\IEHelperv2.5.0.dll
BHO: {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - <orphaned>
TB: HP View: {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\program files\hewlett-packard\digital imaging\bin\hpdtlk02.dll
TB: <No Name>: - LocalServer32 - <no file>
TB: HP View: {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\program files\hewlett-packard\digital imaging\bin\hpdtlk02.dll
EB: {32683183-48a0-441b-a342-7c2a440a9478} - <orphaned>
EB: hp view: {8F4902B6-6C04-4ade-8052-AA58578A21BD} - c:\windows\system32\shdocvw.dll
uRun: [BackupNotify] c:\program files\hewlett-packard\digital imaging\bin\backupnotify.exe
uRun: [NVIEW] rundll32.exe nview.dll,nViewLoadHook
uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background
uRun: [Itibiti.exe] c:\program files\itibiti soft phone\Itibiti.exe
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [hpsysdrv] c:\windows\system\hpsysdrv.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [CamMonitor] c:\program files\hewlett-packard\digital imaging\\unload\hpqcmon.exe
mRun: [HP Software Update] "c:\program files\hp\hp software update\HPWuSchd.exe"
mRun: [HPHUPD05] c:\program files\hewlett-packard\{45b6180b-dcab-4093-8ee8-6164457517f0}\hphupd05.exe
mRun: [HPHmon05] c:\windows\system32\hphmon05.exe
mRun: [KBD] c:\hp\kbd\KBD.EXE
mRun: [StorageGuard] "c:\program files\common files\sonic\update manager\sgtray.exe" /r
mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe" -osboot
mRun: [AutoTKit] c:\hp\bin\AUTOTKIT.EXE
mRun: [Recguard] c:\windows\sminst\RECGUARD.EXE
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
mRun: [PS2] c:\windows\system32\ps2.exe
mRun: [Sunkist2k] c:\program files\multimedia card reader\shwicon2k.exe
mRun: [AVG_UI] "c:\program files\avg\avg2013\avgui.exe" /TRAYONLY
mRun: [AlcxMonitor] ALCXMNTR.EXE
mRun: [QuickFinder Scheduler] "c:\program files\wordperfect office 11\programs\QFSCHD110.EXE"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
StartupFolder: c:\docume~1\owner\startm~1\programs\startup\spamsu~1.lnk - c:\program files\intermute\spamsubtract\SpamSubtract.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hewlett-packard\digital imaging\bin\hpqtra08.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\quicke~1.lnk - c:\program files\quicken\bagent.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\update~1.lnk - c:\program files\updates from hp\137903\program\BackWeb-137903.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - c:\windows\system32\msjava.dll
IE: {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - {DD6687B5-CB43-4211-BFC9-2942CCBDCB3E} - c:\program files\microsoft money\system\mnyside.dll
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
LSP: SpSubLSP.dll
DPF: DirectAnimation Java Classes - file://c:\windows\java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cab
DPF: {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} - hxxp://quickscan.bitdefender.com/qsax/qsax.cab
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/products/plugin/1.4/jinstall-14_02-windows-i586.cab
DPF: {CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/products/plugin/1.4/jinstall-14_02-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
TCP: NameServer = 209.18.47.61 209.18.47.62
TCP: Interfaces\{71E0B485-8793-4C90-B0BB-4E041D1C2FBB} : DHCPNameServer = 209.18.47.61 209.18.47.62
Notify: igfxcui - igfxsrvc.dll
Notify: OPXPGina - c:\program files\softex\omnipass\opxpgina.dll
SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\program files\superantispyware\SASSEH.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\owner\application data\mozilla\firefox\profiles\nnyvx7il.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://finance.yahoo.com/|about:home
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?ei=UTF-8&fr=w3i&type=W3i_DS,157,0_0,Search,20130104,6902,0,64,0&p=
FF - plugin: c:\program files\adobe\reader 11.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\real\realone player\netscape6\nppl3260.dll
FF - plugin: c:\program files\real\realone player\netscape6\nprjplug.dll
FF - plugin: c:\program files\real\realone player\netscape6\nprpjplug.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_5_502_146.dll
FF - ExtSQL: 2013-01-23 12:13; [email protected]; c:\documents and settings\owner\application data\mozilla\firefox\profiles\nnyvx7il.default\extensions\[email protected]
.
---- FIREFOX POLICIES ----
FF - user.js: yahoo.ytff.general.dontshowhpoffer - true
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [2012-10-15 55776]
R0 Avglogx;AVG Logging Driver;c:\windows\system32\drivers\avglogx.sys [2012-9-21 177376]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2012-11-15 94048]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2012-9-14 35552]
R1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [2012-10-22 179936]
R1 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [2012-9-21 19936]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2012-10-2 159712]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2012-9-21 164832]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCore.exe [2012-7-11 116608]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2013\avgidsagent.exe [2012-11-15 5814904]
R2 avgwd;AVG WatchDog;c:\program files\avg\avg2013\avgwdsvc.exe [2012-10-22 196664]
R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2013-1-22 398184]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2013-1-22 682344]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-1-22 21104]
S2 mrtRate;mrtRate; [x]
.
=============== Created Last 30 ================
.
2013-01-23 23:28:33 -------- d-----w- c:\documents and settings\owner\application data\QuickScan
2013-01-23 22:36:31 -------- d-----w- c:\program files\ESET
2013-01-23 04:33:07 -------- d-sh--w- c:\documents and settings\owner\PrivacIE
2013-01-23 04:25:28 -------- d-----w- c:\documents and settings\owner\local settings\application data\Google
2013-01-23 04:25:25 -------- d-----w- c:\documents and settings\owner\application data\SUPERAntiSpyware.com
2013-01-23 04:25:10 -------- d-----w- c:\program files\SUPERAntiSpyware
2013-01-23 04:25:10 -------- d-----w- c:\documents and settings\all users\application data\SUPERAntiSpyware.com
2013-01-22 18:09:06 -------- d-----w- c:\documents and settings\all users\application data\WeCareReminder
2013-01-22 18:05:29 -------- d-----w- c:\documents and settings\all users\application data\APN
2013-01-22 13:12:31 -------- d-----w- c:\program files\common files\Borland Shared
2013-01-22 13:12:13 -------- d-----w- c:\windows\ShellNew
2013-01-22 13:11:51 -------- d-----w- c:\program files\WordPerfect Office 11
2013-01-22 13:11:51 -------- d-----w- c:\program files\common files\Corel
2013-01-22 13:00:18 -------- dc-h--w- c:\windows\ie8
2013-01-22 12:07:00 -------- d-sh--w- c:\documents and settings\owner\IETldCache
2013-01-22 08:15:14 521728 -c----w- c:\windows\system32\dllcache\jsdbgui.dll
2013-01-22 08:12:16 6144 -c----w- c:\windows\system32\dllcache\iecompat.dll
2013-01-22 08:11:04 -------- d-----w- c:\windows\ie8updates
2013-01-22 08:10:10 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2013-01-22 08:10:08 630272 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2013-01-22 08:10:08 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2013-01-22 08:10:07 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2013-01-22 08:10:07 2000384 -c----w- c:\windows\system32\dllcache\iertutil.dll
2013-01-22 08:10:04 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2013-01-22 08:10:04 11111424 -c----w- c:\windows\system32\dllcache\ieframe.dll
2013-01-22 07:51:54 -------- d-----w- c:\windows\wt
2013-01-22 07:22:29 -------- d-----w- c:\program files\MSXML 4.0
2013-01-22 07:02:09 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2013-01-22 07:01:37 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2013-01-22 07:00:15 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2013-01-22 06:59:25 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2013-01-22 06:58:43 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll
2013-01-22 06:58:27 536576 -c----w- c:\windows\system32\dllcache\msado15.dll
2013-01-22 06:58:07 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2013-01-22 06:58:06 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2013-01-22 06:58:01 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys
2013-01-22 06:56:11 331776 -c----w- c:\windows\system32\dllcache\msadce.dll
2013-01-22 06:55:13 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2013-01-22 06:54:54 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe
2013-01-22 06:54:26 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2013-01-22 06:54:18 153088 -c----w- c:\windows\system32\dllcache\triedit.dll
2013-01-22 06:45:53 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2013-01-22 06:43:45 284160 -c----w- c:\windows\system32\dllcache\pdh.dll
2013-01-22 06:43:31 401408 -c----w- c:\windows\system32\dllcache\rpcss.dll
2013-01-22 06:43:27 110592 -c----w- c:\windows\system32\dllcache\services.exe
2013-01-22 06:43:21 473600 -c----w- c:\windows\system32\dllcache\fastprox.dll
2013-01-22 06:43:16 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe
2013-01-22 06:43:10 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll
2013-01-22 06:42:58 617472 -c----w- c:\windows\system32\dllcache\advapi32.dll
2013-01-22 06:38:48 -------- d-----w- c:\documents and settings\owner\application data\Malwarebytes
2013-01-22 06:38:29 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes
2013-01-22 06:38:26 21104 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-01-22 06:38:26 139784 -c----w- c:\windows\system32\dllcache\rdpwd.sys
2013-01-22 06:38:26 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2013-01-22 06:37:25 290560 -c----w- c:\windows\system32\dllcache\atmfd.dll
2013-01-22 06:34:35 758784 -c--a-w- c:\windows\system32\dllcache\vgx.dll
2013-01-22 06:33:53 718336 -c----w- c:\windows\system32\dllcache\ntdll.dll
2013-01-22 06:33:50 2192896 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2013-01-22 06:33:50 2148864 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2013-01-22 06:33:49 2069632 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe
2013-01-22 06:33:49 2027520 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2013-01-22 06:33:08 218112 -c----w- c:\windows\system32\dllcache\wordpad.exe
2013-01-22 06:32:38 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys
2013-01-22 06:32:24 3072 -c----w- c:\windows\system32\dllcache\iacenc.dll
2013-01-22 06:32:24 3072 ------w- c:\windows\system32\iacenc.dll
2013-01-22 06:27:46 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2013-01-22 06:27:34 590848 -c----w- c:\windows\system32\dllcache\rpcrt4.dll
2013-01-22 06:27:33 5120 ----a-w- c:\windows\system32\xpsp4res.dll
2013-01-22 06:25:40 -------- d-----w- c:\windows\system32\PreInstall
2013-01-22 06:25:35 -------- d--h--w- c:\windows\$hf_mig$
2013-01-22 06:19:10 21504 ----a-w- c:\windows\system32\hidserv.dll
2013-01-22 06:19:08 14592 ----a-w- c:\windows\system32\drivers\kbdhid.sys
2013-01-22 06:12:51 -------- d-----w- C:\I386
2013-01-22 06:10:18 -------- d-----w- c:\documents and settings\owner\local settings\application data\Mozilla
2013-01-22 06:03:17 -------- d-----r- C:\Program Files
2013-01-22 06:03:13 -------- d-----r- c:\documents and settings\all users\Documents
2013-01-22 06:02:48 -------- d-----r- c:\windows\Offline Web Pages
2013-01-22 06:01:57 -------- d-----w- c:\documents and settings\owner\application data\AVG2013
2013-01-22 06:01:19 -------- dcsh--r- c:\windows\system32\dllcache
2013-01-22 06:01:04 -------- d-----w- c:\documents and settings\owner\application data\TuneUp Software
2013-01-22 06:00:29 -------- d--h--w- C:\$AVG
2013-01-22 06:00:29 -------- d-----w- c:\documents and settings\all users\application data\AVG2013
2013-01-22 05:59:57 -------- d-----w- c:\program files\AVG
2013-01-22 05:57:13 -------- d--h--w- c:\documents and settings\all users\application data\Common Files
2013-01-22 05:57:13 -------- d-----w- c:\documents and settings\owner\local settings\application data\MFAData
2013-01-22 05:57:13 -------- d-----w- c:\documents and settings\owner\local settings\application data\Avg2013
2013-01-22 05:57:13 -------- d-----w- c:\documents and settings\all users\application data\MFAData
2013-01-22 05:40:43 -------- d-----w- c:\windows\system32\SoftwareDistribution
2013-01-22 05:39:57 221184 ----a-w- c:\windows\system32\wmpns.dll
2013-01-22 05:39:24 -------- d-----w- c:\windows\system32\wbem\AutoRecover
2013-01-22 05:31:54 -------- d-----w- c:\windows\ServicePackFiles
2013-01-22 05:28:56 39936 ----a-w- c:\windows\system32\perfctrs.dll
2013-01-22 05:27:25 9728 -c--a-w- c:\windows\system32\dllcache\label.exe
2013-01-22 05:25:59 98304 ----a-w- c:\windows\system32\ahui.exe
2013-01-22 05:08:27 74248 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-01-22 05:08:27 697864 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-01-22 04:41:13 -------- d-s---w- c:\documents and settings\owner\UserData
2013-01-22 04:36:03 -------- d-sh--r- C:\cmdcons
2013-01-22 04:35:58 -------- d-----w- c:\windows\setup.pss
2013-01-22 04:32:13 -------- d-----w- c:\program files\Java Web Start
2013-01-22 04:32:10 229487 ----a-w- c:\windows\system32\jpicpl32.cpl
2013-01-22 04:30:54 212480 ----a-w- c:\windows\PCDLIB32.DLL
2013-01-22 04:30:49 -------- d-----w- c:\program files\Encarta Online
2013-01-22 04:29:48 60160 -c--a-w- c:\windows\system32\dllcache\drmk.sys
2013-01-22 04:29:48 60160 ----a-w- c:\windows\system32\drivers\drmk.sys
2013-01-22 04:29:48 146048 -c--a-w- c:\windows\system32\dllcache\portcls.sys
2013-01-22 04:29:48 146048 ----a-w- c:\windows\system32\drivers\portcls.sys
2013-01-22 04:29:27 -------- d-----w- c:\program files\Multimedia Card Reader
2013-01-22 04:29:23 -------- d-----w- c:\windows\Downloaded Installations
.
==================== Find3M ====================
.
2013-01-22 05:34:59 126976 ----a-w- c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\pavilion\xphnabs3en\plugin\bin\ContentUpdater.exe
2013-01-22 05:34:51 106496 ----a-w- c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\pavilion\xphnabs3en\plugin\bin\PluginCtrl.dll
2013-01-22 05:34:34 77824 ----a-w- c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\pavilion\xphnabs3en\plugin\bin\WinVerifyTrust.dll
2013-01-22 05:34:31 49152 ----a-w- c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\pavilion\xphnabs3en\plugin\bin\PCHI18N.dll
2013-01-22 05:34:30 122880 ----a-w- c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\pavilion\xphnabs3en\plugin\bin\SearchCtrl.dll
2013-01-22 05:34:28 159744 ----a-w- c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\pavilion\xphnabs3en\plugin\bin\PCHButton.exe
2012-12-16 12:23:59 290560 ----a-w- c:\windows\system32\atmfd.dll
2012-11-13 01:25:12 1866368 ----a-w- c:\windows\system32\win32k.sys
2012-11-06 02:01:39 1371648 ------w- c:\windows\system32\msxml6.dll
2012-11-02 02:02:42 375296 ----a-w- c:\windows\system32\dpnet.dll
2012-11-01 12:17:54 916992 ----a-w- c:\windows\system32\wininet.dll
2012-11-01 12:17:54 43520 ------w- c:\windows\system32\licmgr10.dll
2012-11-01 12:17:54 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-11-01 00:35:34 385024 ------w- c:\windows\system32\html.iec
.
============= FINISH: 22:01:17.09 ===============

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume2
Install Date: 1/21/2013 11:32:38 PM
System Uptime: 1/23/2013 11:44:18 AM (11 hours ago)
.
Motherboard: ASUSTeK Computer INC. | | A7N8X-LA
Processor: AMD Athlon™ XP 2800+ | Socket A | 2079/166mhz
.
==== Disk Partitions =========================
.
A: is Removable
C: is FIXED (NTFS) - 107 GiB total, 91.144 GiB free.
D: is FIXED (FAT32) - 5 GiB total, 0.96 GiB free.
E: is CDROM ()
F: is CDROM ()
G: is Removable
H: is Removable
I: is Removable
J: is Removable
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP1: 1/21/2013 11:32:43 PM - System Checkpoint
RP2: 1/21/2013 11:39:40 PM - Removed ArcSoft ShowBiz 2
RP3: 1/21/2013 11:40:25 PM - Configured easy Internet sign-up
RP4: 1/22/2013 12:01:58 AM - Removed HP Organize
RP5: 1/22/2013 12:28:38 AM - Installed Windows XP Service Pack 3.
RP6: 1/22/2013 12:51:16 AM - Removed IntelliMover Data Transfer Demo
RP7: 1/22/2013 12:51:28 AM - Removed IntelliMover Data Transfer Demo
RP8: 1/22/2013 12:59:56 AM - Installed AVG 2013
RP9: 1/22/2013 1:00:15 AM - Installed AVG 2013
RP10: 1/22/2013 1:25:16 AM - Software Distribution Service 3.0
RP11: 1/22/2013 2:20:42 AM - Software Distribution Service 3.0
RP12: 1/22/2013 8:01:16 AM - Installed Windows Internet Explorer 8.
RP13: 1/22/2013 8:02:07 AM - Software Distribution Service 3.0
RP14: 1/22/2013 11:17:50 PM - Software Distribution Service 3.0
RP15: 1/23/2013 5:04:12 PM - Installed Windows XP KB2618444.
.
==== Installed Programs ======================
.
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Reader XI (11.0.01)
AVG 2013
CreativeProjects
Director
ESET Online Scanner v3
Hotfix for Windows XP (KB2779562)
Hotfix for Windows XP (KB952287)
HP Deskjet Preloaded Printer Drivers
HP Instant Support
HP Photo & Imaging 3.0
HP Photo and Imaging 2.0 - Photosmart Cameras
HP Software Update
HPImageZone
HPIZ Fix2
hpmdtab
HpSdpAppCoreApp
HPSystemDiagnostics
InstantShare
Intel® Extreme Graphics Driver
InterVideo WinDVD Player
Itibiti RTC
Java 2 Runtime Environment, SE v1.4.1_02
Java Web Start
KBD
Malwarebytes Anti-Malware version 1.70.0.1100
Mars Rover from Hewlett-Packard Desktops (remove only)
Memories Disc Creator 2.0
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2742597)
Microsoft Money 2003
Microsoft Money 2003 System Pack
Microsoft Plus! Digital Media Edition
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Visual J# .NET Redistributable Package 1.1
Microsoft Works 7.0
Mozilla Firefox 18.0.1 (x86 en-US)
Mozilla Maintenance Service
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Multimedia Card Reader
NVIDIA Ethernet Driver
NVIDIA Gart Driver
NVIDIA Windows 2000/XP Display Drivers
OmniPass
PC-Doctor for Windows
PhotoGallery
Photosmart 140,240,7200,7600,7700,7900 Series
PrintScreen
PSShortcutsP
QFolder
Quicken 2003 New User Edition
QuickProjects
RealOne Player
RecordNow!
S3Display
S3Gamma2
S3Info2
S3Overlay
SavetheChildren Reminder by We-Care.com v4.1.21.4
Security Update for Microsoft Windows (KB2564958)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2618444)
Security Update for Windows Internet Explorer 8 (KB2744842)
Security Update for Windows Internet Explorer 8 (KB2761465)
Security Update for Windows Internet Explorer 8 (KB2799329)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2491683)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2510581)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2544521)
Security Update for Windows XP (KB2544893-v2)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2570947)
Security Update for Windows XP (KB2584146)
Security Update for Windows XP (KB2585542)
Security Update for Windows XP (KB2592799)
Security Update for Windows XP (KB2598479)
Security Update for Windows XP (KB2603381)
Security Update for Windows XP (KB2618451)
Security Update for Windows XP (KB2619339)
Security Update for Windows XP (KB2620712)
Security Update for Windows XP (KB2624667)
Security Update for Windows XP (KB2631813)
Security Update for Windows XP (KB2646524)
Security Update for Windows XP (KB2653956)
Security Update for Windows XP (KB2655992)
Security Update for Windows XP (KB2659262)
Security Update for Windows XP (KB2661637)
Security Update for Windows XP (KB2676562)
Security Update for Windows XP (KB2686509)
Security Update for Windows XP (KB2691442)
Security Update for Windows XP (KB2698365)
Security Update for Windows XP (KB2705219-v2)
Security Update for Windows XP (KB2712808)
Security Update for Windows XP (KB2719985)
Security Update for Windows XP (KB2723135-v2)
Security Update for Windows XP (KB2724197)
Security Update for Windows XP (KB2727528)
Security Update for Windows XP (KB2753842-v2)
Security Update for Windows XP (KB2757638)
Security Update for Windows XP (KB2758857)
Security Update for Windows XP (KB2761465)
Security Update for Windows XP (KB2770660)
Security Update for Windows XP (KB2779030)
Security Update for Windows XP (KB2799329)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982665)
SkinsHP1
SkinsHP2
Sonic Update Manager
SpamSubtract
SUPERAntiSpyware
toolkit
TrayApp
Unload
Update for Windows Internet Explorer 8 (KB2598845)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB2661254-v2)
Update for Windows XP (KB2736233)
Update for Windows XP (KB2749655)
Update for Windows XP (KB898461)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB973815)
Updates from HP
WebFldrs XP
Weblink
Windows Internet Explorer 8
Windows XP Service Pack 3
WordPerfect Office 11
.
==== Event Viewer Messages From Past Week ========
.
1/23/2013 9:33:10 AM, error: Service Control Manager [7034] - The McAfee Security Scan Component Host Service service terminated unexpectedly. It has done this 1 time(s).
1/23/2013 11:45:20 AM, error: Dhcp [1002] - The IP address lease 192.168.1.106 for the Network Card with network address 000C6EBBB62C has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
1/22/2013 2:14:02 AM, error: Service Control Manager [7006] - The ScRegSetValueExW call failed for FailureActions with the following error: Access is denied.
1/22/2013 2:14:02 AM, error: Service Control Manager [7000] - The mrtRate service failed to start due to the following error: The system cannot find the file specified.
1/22/2013 12:43:23 AM, error: BITS [16391] - The BITS job list is not in a recognized format. It may have been created by a different version of BITS. The job list has been cleared.
1/22/2013 10:13:52 AM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
1/22/2013 10:13:46 AM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments "" in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
1/22/2013 10:13:10 AM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD AmdK7 AVGIDSDriver AVGIDSShim Avgldx86 Avgtdix Fips IPSec MRxSmb NetBIOS NetBT RasAcd Rdbss Tcpip WS2IFSL
1/22/2013 10:13:10 AM, error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the AFD Networking Support Environment service which failed to start because of the following error: A device attached to the system is not functioning.
1/22/2013 10:13:10 AM, error: Service Control Manager [7001] - The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error: A device attached to the system is not functioning.
1/22/2013 10:13:10 AM, error: Service Control Manager [7001] - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
1/22/2013 10:13:10 AM, error: Service Control Manager [7001] - The DHCP Client service depends on the NetBT service which failed to start because of the following error: A device attached to the system is not functioning.
1/22/2013 10:13:10 AM, error: Service Control Manager [7001] - The AVGIDSAgent service depends on the AVGIDSDriver service which failed to start because of the following error: A device attached to the system is not functioning.
.
==== End Of File ===========================

Attached Files

attach.zip 3.41KB 99 downloads
dds.txt 19.06KB 114 downloads

#6
wharriss

Posted 23 January 2013 - 11:10 PM

Member

Topic Starter
Member
105 posts

Here is MBR report MBR.txt

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-01-23 22:32:10
-----------------------------
22:32:10.546 OS Version: Windows 5.1.2600 Service Pack 3
22:32:10.546 Number of processors: 1 586 0xA00
22:32:10.562 ComputerName: YOUR-XHTR8HVC4P UserName: Owner
22:32:11.750 Initialize success
22:33:36.437 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T1L0-3
22:33:36.437 Disk 0 Vendor: SAMSUNG_SV1203N TQ100-23 Size: 114498MB BusType: 3
22:33:36.468 Disk 0 MBR read successfully
22:33:36.468 Disk 0 MBR scan
22:33:36.468 Disk 0 unknown MBR code
22:33:36.468 Disk 0 Partition 1 00 0B FAT32 RECOVERY 5426 MB offset 63
22:33:36.484 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 109058 MB offset 11113200
22:33:36.484 Disk 0 scanning sectors +234465840
22:33:36.562 Disk 0 scanning C:\WINDOWS\system32\drivers
22:33:44.703 Service scanning
22:34:11.359 Modules scanning
22:34:39.578 Scan finished successfully
22:35:24.656 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Owner\Desktop\MBR.dat"
22:35:24.671 The log file has been saved successfully to "C:\Documents and Settings\Owner\Desktop\aswMBR.txt"

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-01-24 00:03:03
-----------------------------
00:03:03.875 OS Version: Windows 5.1.2600 Service Pack 3
00:03:03.875 Number of processors: 1 586 0xA00
00:03:03.875 ComputerName: YOUR-XHTR8HVC4P UserName: Owner
00:03:06.828 Initialize success
00:03:29.765 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T1L0-3
00:03:29.765 Disk 0 Vendor: SAMSUNG_SV1203N TQ100-23 Size: 114498MB BusType: 3
00:03:29.781 Disk 0 MBR read successfully
00:03:29.796 Disk 0 MBR scan
00:03:29.796 Disk 0 unknown MBR code
00:03:29.796 Disk 0 Partition 1 00 0B FAT32 RECOVERY 5426 MB offset 63
00:03:29.796 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 109058 MB offset 11113200
00:03:29.812 Disk 0 scanning sectors +234465840
00:03:29.875 Disk 0 scanning C:\WINDOWS\system32\drivers
00:03:38.984 Service scanning
00:04:10.968 Modules scanning
00:04:32.453 Scan finished successfully
00:04:55.046 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Owner\Desktop\MBR.dat"
00:04:55.046 The log file has been saved successfully to "C:\Documents and Settings\Owner\Desktop\aswMBR.txt"

Here is MBR.dat

3ÿ¾ Ž×¼ z» ‹ÎŽÛŽÃüó¤êR z ‹õ±8dt
8DtƒÆâñé » ÿ0ÿ1 €ësóÃ½¾¿Î¸èÍÿÆ€ÆE‹ý¸ è¾ÿÆ ÆEÆE ö;u=ö;uM´Íu#Š:
Òt?þÊx;6Šl€Á´Íu 6:luóëå´ Í<rt€üDuÆE€ë¬
À´t » ±ÍëðÃÆ€ö;tÆEö;@t¾ÎèSÿ‹ý±€=€tƒÇâö‹6>è¿ÿ‹6@è¸ÿ´ ÍÍ€&;ù¸ C²€¾ ÍrÛf‹]f‰# Æ |´BÍrÇê | QDa~
Missing operating system

Master Boot Record Error

Press a key.
:ï²ÄÐ ï¿Þ? ±’© € ßïÿÿð’© @P
Uª

#7
wharriss

Posted 23 January 2013 - 11:19 PM

Member

Topic Starter
Member
105 posts

Next I ran combofix exactly per your instructions. It seemed to be running fine for about 5 minutes, then windows crashed. The computer turned off, rebooted itself and came up with the message that windows had recovered from a serious error.

Here is error reports

Attached Thumbnails

#8
RKinner

Posted 23 January 2013 - 11:26 PM

Malware Expert

Expert
24,625 posts

After you finish all of the scans:

Uninstall Java 2 Runtime Environment, SE v1.4.1_02

Old Java versions are really bad to have on your PC. Actually ALL Java programs are dangerous. Even the newest versions has security holes so unless you know you need it for something it's best not to have it on your PC.

I see a lot of services not starting. Let's run ESET's Services Repair.

Download ESET's Service Repair http://kb.eset.com/l...vicesRepair.exe and Save it then right click on it and Run As Admin.

1. Double-click My Computer, and then right-click the hard disk that you want to check. C:
2. Click Properties, and then click Tools.
3. Under Error-checking, click Check Now. A dialog box that shows the Check disk options is displayed,
4. Check both boxes and then click Start.
You will receive the following message:
The disk check could not be performed because the disk check utility needs exclusive access to some Windows files on the disk. These files can be accessed by restarting Windows. Do you want to schedule the disk check to occur the next time you restart the computer?
Click Yes to schedule the disk check, but don't restart yet.

Start, Run, eventvwr.msc, OK to bring up the Event Viewer. Right click on System and Clear All Events, No (we don't want to save the old log), OK. Repeat for Application.

Reboot.

The disk check will run and will probably take an hour or more to finish.

1. Please download the Event Viewer Tool by Vino Rosso
http://images.malwar...om/vino/VEW.exe
and save it to your Desktop:
2. Double-click VEW.exe
3. Under 'Select log to query', select:

* System
4. Under 'Select type to list', select:
* Error
* Warning

Then use the 'Number of events' as follows:

1. Click the radio button for 'Number of events'
Type 20 in the 1 to 20 box
Then click the Run button.
Notepad will open with the output log.

Please post the Output log in your next reply then repeat but select Application.

#9
RKinner

Posted 23 January 2013 - 11:29 PM

Malware Expert

Expert
24,625 posts

Just skip Combofix for now.

#10
wharriss

Posted 24 January 2013 - 12:04 AM

Member

Topic Starter
Member
105 posts

First scan with tdsskiller showed no problems
After checking the 2 extra parameters, it found 6 errors

Here is one log file

16:13:37.0296 3188 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
16:13:37.0734 3188 ============================================================
16:13:37.0734 3188 Current date / time: 2013/01/23 16:13:37.0734
16:13:37.0734 3188 SystemInfo:
16:13:37.0734 3188
16:13:37.0734 3188 OS Version: 5.1.2600 ServicePack: 3.0
16:13:37.0734 3188 Product type: Workstation
16:13:37.0734 3188 ComputerName: YOUR-XHTR8HVC4P
16:13:37.0734 3188 UserName: Owner
16:13:37.0734 3188 Windows directory: C:\WINDOWS
16:13:37.0734 3188 System windows directory: C:\WINDOWS
16:13:37.0734 3188 Processor architecture: Intel x86
16:13:37.0734 3188 Number of processors: 1
16:13:37.0734 3188 Page size: 0x1000
16:13:37.0734 3188 Boot type: Normal boot
16:13:37.0734 3188 ============================================================
16:13:40.0875 3188 Drive \Device\Harddisk0\DR0 - Size: 0x1BF4290000 (111.82 Gb), SectorSize: 0x200, Cylinders: 0x3C94, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000054
16:13:40.0921 3188 ============================================================
16:13:40.0921 3188 \Device\Harddisk0\DR0:
16:13:41.0000 3188 MBR partitions:
16:13:41.0000 3188 \Device\Harddisk0\DR0\Partition1: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0xA992B1
16:13:41.0000 3188 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xA992F0, BlocksNum 0xD501740
16:13:41.0000 3188 ============================================================
16:13:41.0046 3188 C: <-> \Device\Harddisk0\DR0\Partition2
16:13:41.0046 3188 D: <-> \Device\Harddisk0\DR0\Partition1
16:13:41.0046 3188 ============================================================
16:13:41.0046 3188 Initialize success
16:13:41.0046 3188 ============================================================
16:13:50.0375 2884 ============================================================
16:13:50.0375 2884 Scan started
16:13:50.0375 2884 Mode: Manual;
16:13:50.0375 2884 ============================================================
16:13:50.0734 2884 ================ Scan system memory ========================
16:13:50.0734 2884 System memory - ok
16:13:50.0750 2884 ================ Scan services =============================
16:13:50.0859 2884 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
16:13:50.0859 2884 !SASCORE - ok
16:13:51.0015 2884 Abiosdsk - ok
16:13:51.0031 2884 abp480n5 - ok
16:13:51.0078 2884 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
16:13:51.0078 2884 ACPI - ok
16:13:51.0109 2884 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
16:13:51.0125 2884 ACPIEC - ok
16:13:51.0125 2884 adpu160m - ok
16:13:51.0171 2884 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
16:13:51.0171 2884 aec - ok
16:13:51.0203 2884 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
16:13:51.0203 2884 AFD - ok
16:13:51.0218 2884 [ 0EBB674888CBDEFD5773341C16DD6A07 ] AFS2K C:\WINDOWS\system32\drivers\AFS2K.sys
16:13:51.0218 2884 AFS2K - ok
16:13:51.0265 2884 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
16:13:51.0265 2884 agp440 - ok
16:13:51.0281 2884 Aha154x - ok
16:13:51.0296 2884 aic78u2 - ok
16:13:51.0312 2884 aic78xx - ok
16:13:51.0421 2884 [ 8D6C30E515717248E0E52B85FD7AC466 ] ALCXWDM C:\WINDOWS\system32\drivers\ALCXWDM.SYS
16:13:51.0437 2884 ALCXWDM - ok
16:13:51.0484 2884 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
16:13:51.0484 2884 Alerter - ok
16:13:51.0531 2884 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
16:13:51.0531 2884 ALG - ok
16:13:51.0546 2884 AliIde - ok
16:13:51.0593 2884 [ 8FCE268CDBDD83B23419D1F35F42C7B1 ] AmdK7 C:\WINDOWS\system32\DRIVERS\amdk7.sys
16:13:51.0593 2884 AmdK7 - ok
16:13:51.0609 2884 amsint - ok
16:13:51.0625 2884 AppMgmt - ok
16:13:51.0656 2884 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
16:13:51.0656 2884 Arp1394 - ok
16:13:51.0671 2884 asc - ok
16:13:51.0671 2884 asc3350p - ok
16:13:51.0687 2884 asc3550 - ok
16:13:51.0812 2884 [ E1A1206A4FB19B675E947B29CCD25FBA ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
16:13:51.0812 2884 aspnet_state - ok
16:13:51.0859 2884 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
16:13:51.0859 2884 AsyncMac - ok
16:13:51.0890 2884 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
16:13:51.0890 2884 atapi - ok
16:13:51.0906 2884 Atdisk - ok
16:13:51.0937 2884 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
16:13:51.0953 2884 Atmarpc - ok
16:13:51.0984 2884 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
16:13:51.0984 2884 AudioSrv - ok
16:13:52.0031 2884 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
16:13:52.0031 2884 audstub - ok
16:13:52.0296 2884 [ 4AFC14AFA58878FAA1D249E7E90EA54B ] AVGIDSAgent C:\Program Files\AVG\AVG2013\avgidsagent.exe
16:13:52.0343 2884 AVGIDSAgent - ok
16:13:52.0406 2884 [ 7BB2C605094DBCA536D127B434214862 ] AVGIDSDriver C:\WINDOWS\system32\DRIVERS\avgidsdriverx.sys
16:13:52.0406 2884 AVGIDSDriver - ok
16:13:52.0437 2884 [ 8F50F98686C9A397A19FCBAE284DB1C5 ] AVGIDSHX C:\WINDOWS\system32\DRIVERS\avgidshx.sys
16:13:52.0453 2884 AVGIDSHX - ok
16:13:52.0484 2884 [ A8DE230CC8536790CA07D37FBCD87A74 ] AVGIDSShim C:\WINDOWS\system32\DRIVERS\avgidsshimx.sys
16:13:52.0484 2884 AVGIDSShim - ok
16:13:52.0515 2884 [ D53D35031365A0ECCB1DC1BC1B15B18E ] Avgldx86 C:\WINDOWS\system32\DRIVERS\avgldx86.sys
16:13:52.0515 2884 Avgldx86 - ok
16:13:52.0562 2884 [ 95889A9D23F3133250FA8AD13C982D58 ] Avglogx C:\WINDOWS\system32\DRIVERS\avglogx.sys
16:13:52.0562 2884 Avglogx - ok
16:13:52.0609 2884 [ AF7AA9BA434CD28833A66E90993E8DFD ] Avgmfx86 C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
16:13:52.0609 2884 Avgmfx86 - ok
16:13:52.0656 2884 [ F3D57358DE0B8B3491013C615754A7C7 ] Avgrkx86 C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
16:13:52.0656 2884 Avgrkx86 - ok
16:13:52.0703 2884 [ BA73B38E9033FC6018DB736B635706AE ] Avgtdix C:\WINDOWS\system32\DRIVERS\avgtdix.sys
16:13:52.0703 2884 Avgtdix - ok
16:13:52.0750 2884 [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] avgwd C:\Program Files\AVG\AVG2013\avgwdsvc.exe
16:13:52.0750 2884 avgwd - ok
16:13:52.0796 2884 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
16:13:52.0796 2884 Beep - ok
16:13:52.0859 2884 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\System32\qmgr.dll
16:13:52.0859 2884 BITS - ok
16:13:52.0921 2884 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
16:13:52.0921 2884 Browser - ok
16:13:52.0953 2884 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
16:13:52.0953 2884 cbidf2k - ok
16:13:52.0968 2884 cd20xrnt - ok
16:13:53.0000 2884 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
16:13:53.0000 2884 Cdaudio - ok
16:13:53.0046 2884 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
16:13:53.0046 2884 Cdfs - ok
16:13:53.0078 2884 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
16:13:53.0078 2884 Cdrom - ok
16:13:53.0093 2884 Changer - ok
16:13:53.0140 2884 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
16:13:53.0140 2884 CiSvc - ok
16:13:53.0156 2884 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
16:13:53.0156 2884 ClipSrv - ok
16:13:53.0171 2884 CmdIde - ok
16:13:53.0187 2884 COMSysApp - ok
16:13:53.0203 2884 Cpqarray - ok
16:13:53.0234 2884 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
16:13:53.0250 2884 CryptSvc - ok
16:13:53.0250 2884 dac2w2k - ok
16:13:53.0265 2884 dac960nt - ok
16:13:53.0312 2884 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
16:13:53.0312 2884 DcomLaunch - ok
16:13:53.0359 2884 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
16:13:53.0359 2884 Dhcp - ok
16:13:53.0390 2884 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
16:13:53.0390 2884 Disk - ok
16:13:53.0406 2884 dmadmin - ok
16:13:53.0515 2884 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
16:13:53.0515 2884 dmboot - ok
16:13:53.0578 2884 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
16:13:53.0578 2884 dmio - ok
16:13:53.0609 2884 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
16:13:53.0609 2884 dmload - ok
16:13:53.0656 2884 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
16:13:53.0656 2884 dmserver - ok
16:13:53.0687 2884 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
16:13:53.0687 2884 DMusic - ok
16:13:53.0718 2884 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
16:13:53.0718 2884 Dnscache - ok
16:13:53.0765 2884 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
16:13:53.0765 2884 Dot3svc - ok
16:13:53.0781 2884 dpti2o - ok
16:13:53.0828 2884 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
16:13:53.0828 2884 drmkaud - ok
16:13:53.0859 2884 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
16:13:53.0859 2884 EapHost - ok
16:13:53.0890 2884 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
16:13:53.0890 2884 ERSvc - ok
16:13:53.0921 2884 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
16:13:53.0921 2884 Eventlog - ok
16:13:53.0984 2884 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\System32\es.dll
16:13:53.0984 2884 EventSystem - ok
16:13:54.0015 2884 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
16:13:54.0015 2884 Fastfat - ok
16:13:54.0062 2884 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
16:13:54.0062 2884 FastUserSwitchingCompatibility - ok
16:13:54.0109 2884 [ E97D6A8684466DF94FF3BC24FB787A07 ] Fax C:\WINDOWS\system32\fxssvc.exe
16:13:54.0109 2884 Fax - ok
16:13:54.0156 2884 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
16:13:54.0156 2884 Fdc - ok
16:13:54.0171 2884 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
16:13:54.0171 2884 Fips - ok
16:13:54.0203 2884 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
16:13:54.0203 2884 Flpydisk - ok
16:13:54.0250 2884 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
16:13:54.0250 2884 FltMgr - ok
16:13:54.0281 2884 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
16:13:54.0281 2884 Fs_Rec - ok
16:13:54.0312 2884 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
16:13:54.0312 2884 Ftdisk - ok
16:13:54.0343 2884 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
16:13:54.0343 2884 Gpc - ok
16:13:54.0437 2884 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
16:13:54.0437 2884 helpsvc - ok
16:13:54.0468 2884 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
16:13:54.0468 2884 HidServ - ok
16:13:54.0531 2884 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
16:13:54.0531 2884 HidUsb - ok
16:13:54.0593 2884 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
16:13:54.0593 2884 hkmsvc - ok
16:13:54.0609 2884 hpn - ok
16:13:54.0656 2884 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
16:13:54.0656 2884 HTTP - ok
16:13:54.0687 2884 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
16:13:54.0687 2884 HTTPFilter - ok
16:13:54.0703 2884 i2omgmt - ok
16:13:54.0718 2884 i2omp - ok
16:13:54.0765 2884 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
16:13:54.0765 2884 i8042prt - ok
16:13:54.0796 2884 [ 1406D6EF4436AEE970EFE13193123965 ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
16:13:54.0812 2884 ialm - ok
16:13:54.0828 2884 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
16:13:54.0828 2884 Imapi - ok
16:13:54.0890 2884 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\System32\imapi.exe
16:13:54.0890 2884 ImapiService - ok
16:13:54.0906 2884 ini910u - ok
16:13:54.0937 2884 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\System32\DRIVERS\intelide.sys
16:13:54.0953 2884 IntelIde - ok
16:13:54.0984 2884 [ 3BB22519A194418D5FEC05D800A19AD0 ] ip6fw C:\WINDOWS\system32\drivers\ip6fw.sys
16:13:54.0984 2884 ip6fw - ok
16:13:55.0031 2884 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
16:13:55.0031 2884 IpFilterDriver - ok
16:13:55.0062 2884 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
16:13:55.0062 2884 IpInIp - ok
16:13:55.0093 2884 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
16:13:55.0093 2884 IpNat - ok
16:13:55.0125 2884 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
16:13:55.0125 2884 IPSec - ok
16:13:55.0140 2884 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
16:13:55.0140 2884 IRENUM - ok
16:13:55.0187 2884 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
16:13:55.0187 2884 isapnp - ok
16:13:55.0218 2884 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
16:13:55.0218 2884 Kbdclass - ok
16:13:55.0234 2884 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
16:13:55.0234 2884 kbdhid - ok
16:13:55.0281 2884 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
16:13:55.0281 2884 kmixer - ok
16:13:55.0312 2884 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
16:13:55.0312 2884 KSecDD - ok
16:13:55.0359 2884 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
16:13:55.0359 2884 lanmanserver - ok
16:13:55.0421 2884 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
16:13:55.0437 2884 lanmanworkstation - ok
16:13:55.0453 2884 lbrtfdc - ok
16:13:55.0500 2884 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
16:13:55.0500 2884 LmHosts - ok
16:13:55.0578 2884 [ FA2ED4A054360F3F873C15420F1F19CC ] ltmodem5 C:\WINDOWS\system32\DRIVERS\ltmdmnt.sys
16:13:55.0578 2884 ltmodem5 - ok
16:13:55.0625 2884 [ 629CABB0421668C9D3D402A3C3D77E14 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
16:13:55.0625 2884 MBAMProtector - ok
16:13:55.0687 2884 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
16:13:55.0687 2884 MBAMScheduler - ok
16:13:55.0750 2884 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
16:13:55.0750 2884 MBAMService - ok
16:13:55.0796 2884 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
16:13:55.0796 2884 Messenger - ok
16:13:55.0828 2884 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
16:13:55.0828 2884 mnmdd - ok
16:13:55.0875 2884 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\System32\mnmsrvc.exe
16:13:55.0875 2884 mnmsrvc - ok
16:13:55.0921 2884 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
16:13:55.0921 2884 Modem - ok
16:13:55.0937 2884 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
16:13:55.0937 2884 Mouclass - ok
16:13:55.0968 2884 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
16:13:55.0968 2884 MountMgr - ok
16:13:56.0015 2884 [ 9C3758018DED02F4AE53CCA1C5F084A2 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
16:13:56.0015 2884 MozillaMaintenance - ok
16:13:56.0031 2884 mraid35x - ok
16:13:56.0046 2884 mrtRate - ok
16:13:56.0078 2884 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
16:13:56.0093 2884 MRxDAV - ok
16:13:56.0171 2884 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
16:13:56.0171 2884 MRxSmb - ok
16:13:56.0203 2884 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\System32\msdtc.exe
16:13:56.0218 2884 MSDTC - ok
16:13:56.0234 2884 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
16:13:56.0234 2884 Msfs - ok
16:13:56.0250 2884 MSIServer - ok
16:13:56.0281 2884 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
16:13:56.0281 2884 MSKSSRV - ok
16:13:56.0312 2884 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
16:13:56.0312 2884 MSPCLOCK - ok
16:13:56.0343 2884 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
16:13:56.0343 2884 MSPQM - ok
16:13:56.0375 2884 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
16:13:56.0375 2884 mssmbios - ok
16:13:56.0406 2884 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
16:13:56.0406 2884 Mup - ok
16:13:56.0484 2884 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
16:13:56.0484 2884 napagent - ok
16:13:56.0531 2884 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
16:13:56.0531 2884 NDIS - ok
16:13:56.0562 2884 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
16:13:56.0562 2884 NdisTapi - ok
16:13:56.0609 2884 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
16:13:56.0609 2884 Ndisuio - ok
16:13:56.0625 2884 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
16:13:56.0640 2884 NdisWan - ok
16:13:56.0671 2884 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
16:13:56.0671 2884 NDProxy - ok
16:13:56.0703 2884 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
16:13:56.0718 2884 NetBIOS - ok
16:13:56.0734 2884 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
16:13:56.0734 2884 NetBT - ok
16:13:56.0796 2884 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
16:13:56.0796 2884 NetDDE - ok
16:13:56.0812 2884 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
16:13:56.0812 2884 NetDDEdsdm - ok
16:13:56.0843 2884 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\System32\lsass.exe
16:13:56.0859 2884 Netlogon - ok
16:13:56.0890 2884 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
16:13:56.0906 2884 Netman - ok
16:13:56.0953 2884 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
16:13:56.0953 2884 NIC1394 - ok
16:13:57.0000 2884 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
16:13:57.0000 2884 Nla - ok
16:13:57.0031 2884 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
16:13:57.0031 2884 Npfs - ok
16:13:57.0093 2884 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
16:13:57.0093 2884 Ntfs - ok
16:13:57.0125 2884 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\System32\lsass.exe
16:13:57.0125 2884 NtLmSsp - ok
16:13:57.0171 2884 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
16:13:57.0171 2884 NtmsSvc - ok
16:13:57.0218 2884 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
16:13:57.0218 2884 Null - ok
16:13:57.0296 2884 [ 5D701FCA6F7DB7A8A7D21F80A84D291A ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
16:13:57.0312 2884 nv - ok
16:13:57.0359 2884 [ 2AFA043B0243137D0EDC8CFB8305551B ] NVENET C:\WINDOWS\system32\DRIVERS\NVENET.sys
16:13:57.0359 2884 NVENET - ok
16:13:57.0375 2884 [ 26712CF8BE48BC767854927435C0B6A9 ] NVSvc C:\WINDOWS\System32\nvsvc32.exe
16:13:57.0390 2884 NVSvc - ok
16:13:57.0437 2884 [ 29291C3A7256337327051CC37E4FC09A ] nv_agp C:\WINDOWS\system32\DRIVERS\nv_agp.sys
16:13:57.0437 2884 nv_agp - ok
16:13:57.0484 2884 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
16:13:57.0484 2884 NwlnkFlt - ok
16:13:57.0515 2884 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
16:13:57.0515 2884 NwlnkFwd - ok
16:13:57.0531 2884 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
16:13:57.0531 2884 ohci1394 - ok
16:13:57.0609 2884 [ 7FA2A1A45435DC851790C0FD5F54612B ] omniserv C:\Program Files\Softex\OmniPass\Omniserv.exe
16:13:57.0609 2884 omniserv - ok
16:13:57.0640 2884 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
16:13:57.0656 2884 Parport - ok
16:13:57.0671 2884 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
16:13:57.0671 2884 PartMgr - ok
16:13:57.0718 2884 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
16:13:57.0718 2884 ParVdm - ok
16:13:57.0734 2884 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
16:13:57.0734 2884 PCI - ok
16:13:57.0750 2884 PCIDump - ok
16:13:57.0781 2884 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
16:13:57.0781 2884 PCIIde - ok
16:13:57.0828 2884 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
16:13:57.0828 2884 Pcmcia - ok
16:13:57.0843 2884 PDCOMP - ok
16:13:57.0859 2884 PDFRAME - ok
16:13:57.0875 2884 PDRELI - ok
16:13:57.0890 2884 PDRFRAME - ok
16:13:57.0906 2884 perc2 - ok
16:13:57.0921 2884 perc2hib - ok
16:13:57.0984 2884 [ ED2E7F396B4098608C95BC3806BDF6FC ] pfc C:\WINDOWS\system32\drivers\pfc.sys
16:13:57.0984 2884 pfc - ok
16:13:58.0015 2884 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
16:13:58.0015 2884 PlugPlay - ok
16:13:58.0031 2884 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\System32\lsass.exe
16:13:58.0031 2884 PolicyAgent - ok
16:13:58.0078 2884 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
16:13:58.0078 2884 PptpMiniport - ok
16:13:58.0109 2884 [ A32BEBAF723557681BFC6BD93E98BD26 ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
16:13:58.0125 2884 Processor - ok
16:13:58.0125 2884 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
16:13:58.0140 2884 ProtectedStorage - ok
16:13:58.0171 2884 [ BFFDB363485501A38F0BCA83AEC810DB ] Ps2 C:\WINDOWS\system32\DRIVERS\PS2.sys
16:13:58.0171 2884 Ps2 - ok
16:13:58.0187 2884 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
16:13:58.0187 2884 PSched - ok
16:13:58.0218 2884 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
16:13:58.0234 2884 Ptilink - ok
16:13:58.0265 2884 [ 80C824C78DD1CAC1833AE5DCCA02B327 ] PxHelp20 C:\WINDOWS\system32\DRIVERS\PxHelp20.sys
16:13:58.0265 2884 PxHelp20 - ok
16:13:58.0281 2884 ql1080 - ok
16:13:58.0296 2884 Ql10wnt - ok
16:13:58.0312 2884 ql12160 - ok
16:13:58.0312 2884 ql1240 - ok
16:13:58.0328 2884 ql1280 - ok
16:13:58.0375 2884 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
16:13:58.0375 2884 RasAcd - ok
16:13:58.0437 2884 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
16:13:58.0437 2884 RasAuto - ok
16:13:58.0468 2884 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
16:13:58.0468 2884 Rasl2tp - ok
16:13:58.0515 2884 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
16:13:58.0515 2884 RasMan - ok
16:13:58.0546 2884 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
16:13:58.0546 2884 RasPppoe - ok
16:13:58.0593 2884 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
16:13:58.0593 2884 Raspti - ok
16:13:58.0625 2884 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
16:13:58.0625 2884 Rdbss - ok
16:13:58.0671 2884 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
16:13:58.0671 2884 RDPCDD - ok
16:13:58.0734 2884 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
16:13:58.0734 2884 RDPWD - ok
16:13:58.0781 2884 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
16:13:58.0781 2884 RDSessMgr - ok
16:13:58.0828 2884 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
16:13:58.0828 2884 redbook - ok
16:13:58.0875 2884 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
16:13:58.0875 2884 RemoteAccess - ok
16:13:58.0921 2884 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\System32\locator.exe
16:13:58.0921 2884 RpcLocator - ok
16:13:58.0953 2884 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\system32\rpcss.dll
16:13:58.0968 2884 RpcSs - ok
16:13:59.0015 2884 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\System32\rsvp.exe
16:13:59.0015 2884 RSVP - ok
16:13:59.0046 2884 [ 2EF9C0DC26B30B2318B1FC3FAA1F0AE7 ] rtl8139 C:\WINDOWS\system32\DRIVERS\R8139n51.SYS
16:13:59.0046 2884 rtl8139 - ok
16:13:59.0109 2884 [ 0DBCC071A268E0340A2BA6BDD98BACE4 ] S3Psddr C:\WINDOWS\system32\DRIVERS\s3gnbm.sys
16:13:59.0109 2884 S3Psddr - ok
16:13:59.0140 2884 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
16:13:59.0140 2884 SamSs - ok
16:13:59.0187 2884 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
16:13:59.0187 2884 SASDIFSV - ok
16:13:59.0203 2884 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
16:13:59.0203 2884 SASKUTIL - ok
16:13:59.0234 2884 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
16:13:59.0250 2884 SCardSvr - ok
16:13:59.0296 2884 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
16:13:59.0296 2884 Schedule - ok
16:13:59.0359 2884 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
16:13:59.0359 2884 Secdrv - ok
16:13:59.0390 2884 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
16:13:59.0390 2884 seclogon - ok
16:13:59.0421 2884 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
16:13:59.0437 2884 SENS - ok
16:13:59.0453 2884 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] Serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
16:13:59.0468 2884 Serenum - ok
16:13:59.0500 2884 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
16:13:59.0500 2884 Serial - ok
16:13:59.0546 2884 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
16:13:59.0546 2884 Sfloppy - ok
16:13:59.0609 2884 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
16:13:59.0609 2884 SharedAccess - ok
16:13:59.0640 2884 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
16:13:59.0640 2884 ShellHWDetection - ok
16:13:59.0656 2884 Simbad - ok
16:13:59.0703 2884 [ BDFEF5C5D41BA377852389E8F07104EA ] SiS315 C:\WINDOWS\system32\DRIVERS\sisgrp.sys
16:13:59.0703 2884 SiS315 - ok
16:13:59.0734 2884 [ 923D23638C616EECB0D811461161D0B8 ] SISAGP C:\WINDOWS\system32\DRIVERS\SISAGPX.sys
16:13:59.0734 2884 SISAGP - ok
16:13:59.0765 2884 [ 7E9E5823AFBB5AF2851ABB1659FF627D ] SiSkp C:\WINDOWS\system32\DRIVERS\srvkp.sys
16:13:59.0765 2884 SiSkp - ok
16:13:59.0781 2884 Sparrow - ok
16:13:59.0812 2884 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
16:13:59.0812 2884 splitter - ok
16:13:59.0859 2884 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
16:13:59.0859 2884 Spooler - ok
16:13:59.0890 2884 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
16:13:59.0890 2884 sr - ok
16:13:59.0937 2884 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\System32\srsvc.dll
16:13:59.0937 2884 srservice - ok
16:13:59.0984 2884 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
16:13:59.0984 2884 Srv - ok
16:14:00.0015 2884 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
16:14:00.0031 2884 SSDPSRV - ok
16:14:00.0078 2884 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
16:14:00.0078 2884 stisvc - ok
16:14:00.0125 2884 [ A3DF1466AAFDC62B21765072C5EDAA9A ] SunkFilt C:\WINDOWS\System32\Drivers\sunkfilt.sys
16:14:00.0125 2884 SunkFilt - ok
16:14:00.0140 2884 Sunkfiltp - ok
16:14:00.0187 2884 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
16:14:00.0203 2884 swenum - ok
16:14:00.0218 2884 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
16:14:00.0218 2884 swmidi - ok
16:14:00.0234 2884 SwPrv - ok
16:14:00.0265 2884 symc810 - ok
16:14:00.0281 2884 symc8xx - ok
16:14:00.0296 2884 sym_hi - ok
16:14:00.0312 2884 sym_u3 - ok
16:14:00.0328 2884 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
16:14:00.0328 2884 sysaudio - ok
16:14:00.0375 2884 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
16:14:00.0375 2884 SysmonLog - ok
16:14:00.0421 2884 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
16:14:00.0437 2884 TapiSrv - ok
16:14:00.0515 2884 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
16:14:00.0515 2884 Tcpip - ok
16:14:00.0546 2884 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
16:14:00.0546 2884 TDPIPE - ok
16:14:00.0578 2884 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
16:14:00.0578 2884 TDTCP - ok
16:14:00.0609 2884 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
16:14:00.0609 2884 TermDD - ok
16:14:00.0640 2884 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
16:14:00.0656 2884 TermService - ok
16:14:00.0687 2884 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
16:14:00.0687 2884 Themes - ok
16:14:00.0703 2884 TosIde - ok
16:14:00.0750 2884 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
16:14:00.0750 2884 TrkWks - ok
16:14:00.0796 2884 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
16:14:00.0796 2884 Udfs - ok
16:14:00.0812 2884 ultra - ok
16:14:00.0875 2884 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
16:14:00.0875 2884 Update - ok
16:14:00.0906 2884 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
16:14:00.0906 2884 upnphost - ok
16:14:00.0937 2884 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
16:14:00.0953 2884 UPS - ok
16:14:01.0000 2884 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
16:14:01.0000 2884 usbccgp - ok
16:14:01.0046 2884 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
16:14:01.0046 2884 usbehci - ok
16:14:01.0062 2884 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
16:14:01.0062 2884 usbhub - ok
16:14:01.0093 2884 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
16:14:01.0093 2884 usbohci - ok
16:14:01.0140 2884 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
16:14:01.0140 2884 USBSTOR - ok
16:14:01.0171 2884 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
16:14:01.0171 2884 usbuhci - ok
16:14:01.0203 2884 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
16:14:01.0203 2884 VgaSave - ok
16:14:01.0250 2884 [ 0E3E3FAE3A0A58B8D936A8E841A17D16 ] viaagp1 C:\WINDOWS\system32\DRIVERS\viaagp1.sys
16:14:01.0250 2884 viaagp1 - ok
16:14:01.0281 2884 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\System32\DRIVERS\viaide.sys
16:14:01.0281 2884 ViaIde - ok
16:14:01.0296 2884 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
16:14:01.0296 2884 VolSnap - ok
16:14:01.0343 2884 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
16:14:01.0359 2884 VSS - ok
16:14:01.0390 2884 [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time C:\WINDOWS\System32\w32time.dll
16:14:01.0406 2884 W32Time - ok
16:14:01.0437 2884 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
16:14:01.0437 2884 Wanarp - ok
16:14:01.0453 2884 WDICA - ok
16:14:01.0500 2884 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
16:14:01.0500 2884 wdmaud - ok
16:14:01.0546 2884 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
16:14:01.0546 2884 WebClient - ok
16:14:01.0625 2884 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
16:14:01.0625 2884 winmgmt - ok
16:14:01.0687 2884 [ C7E39EA41233E9F5B86C8DA3A9F1E4A8 ] WmdmPmSN C:\WINDOWS\System32\mspmsnsv.dll
16:14:01.0687 2884 WmdmPmSN - ok
16:14:01.0734 2884 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\System32\wbem\wmiapsrv.exe
16:14:01.0734 2884 WmiApSrv - ok
16:14:01.0781 2884 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
16:14:01.0781 2884 WS2IFSL - ok
16:14:01.0828 2884 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
16:14:01.0828 2884 wscsvc - ok
16:14:01.0859 2884 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
16:14:01.0859 2884 wuauserv - ok
16:14:01.0921 2884 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
16:14:01.0937 2884 WZCSVC - ok
16:14:01.0968 2884 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
16:14:01.0968 2884 xmlprov - ok
16:14:02.0015 2884 [ FD1F4E9CF06C71C8D73A24ACF18D8296 ] {6080A529-897E-4629-A488-ABA0C29B635E} C:\WINDOWS\system32\drivers\ialmsbw.sys
16:14:02.0015 2884 {6080A529-897E-4629-A488-ABA0C29B635E} - ok
16:14:02.0046 2884 [ D4D7331D33D1FA73E588E5CE0D90A4C1 ] {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} C:\WINDOWS\system32\drivers\ialmkchw.sys
16:14:02.0046 2884 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} - ok
16:14:02.0062 2884 ================ Scan global ===============================
16:14:02.0093 2884 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
16:14:02.0140 2884 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
16:14:02.0171 2884 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
16:14:02.0203 2884 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
16:14:02.0203 2884 [Global] - ok
16:14:02.0218 2884 ================ Scan MBR ==================================
16:14:02.0234 2884 [ B716B775FCBDABF0E2DDFF76F15C6790 ] \Device\Harddisk0\DR0
16:14:02.0453 2884 \Device\Harddisk0\DR0 - ok
16:14:02.0453 2884 ================ Scan VBR ==================================
16:14:02.0500 2884 [ 8DAEE129650261950222E32F79544AD9 ] \Device\Harddisk0\DR0\Partition1
16:14:02.0500 2884 \Device\Harddisk0\DR0\Partition1 - ok
16:14:02.0515 2884 [ 65999491C4E5E0B506A4FAD468C419C5 ] \Device\Harddisk0\DR0\Partition2
16:14:02.0531 2884 \Device\Harddisk0\DR0\Partition2 - ok
16:14:02.0531 2884 ============================================================
16:14:02.0531 2884 Scan finished
16:14:02.0531 2884 ============================================================
16:14:02.0546 3144 Detected object count: 0
16:14:02.0546 3144 Actual detected object count: 0
16:14:07.0187 2008 Deinitialize success

Here is another

00:20:26.0218 2488 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
00:20:27.0203 2488 ============================================================
00:20:27.0203 2488 Current date / time: 2013/01/24 00:20:27.0203
00:20:27.0203 2488 SystemInfo:
00:20:27.0203 2488
00:20:27.0203 2488 OS Version: 5.1.2600 ServicePack: 3.0
00:20:27.0203 2488 Product type: Workstation
00:20:27.0203 2488 ComputerName: YOUR-XHTR8HVC4P
00:20:27.0203 2488 UserName: Owner
00:20:27.0203 2488 Windows directory: C:\WINDOWS
00:20:27.0203 2488 System windows directory: C:\WINDOWS
00:20:27.0203 2488 Processor architecture: Intel x86
00:20:27.0203 2488 Number of processors: 1
00:20:27.0203 2488 Page size: 0x1000
00:20:27.0203 2488 Boot type: Normal boot
00:20:27.0203 2488 ============================================================
00:20:30.0265 2488 Drive \Device\Harddisk0\DR0 - Size: 0x1BF4290000 (111.82 Gb), SectorSize: 0x200, Cylinders: 0x3C94, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000054
00:20:30.0328 2488 ============================================================
00:20:30.0328 2488 \Device\Harddisk0\DR0:
00:20:30.0328 2488 MBR partitions:
00:20:30.0328 2488 \Device\Harddisk0\DR0\Partition1: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0xA992B1
00:20:30.0328 2488 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xA992F0, BlocksNum 0xD501740
00:20:30.0328 2488 ============================================================
00:20:30.0437 2488 C: <-> \Device\Harddisk0\DR0\Partition2
00:20:30.0437 2488 D: <-> \Device\Harddisk0\DR0\Partition1
00:20:30.0437 2488 ============================================================
00:20:30.0437 2488 Initialize success
00:20:30.0437 2488 ============================================================
00:20:44.0125 2208 ============================================================
00:20:44.0125 2208 Scan started
00:20:44.0125 2208 Mode: Manual;
00:20:44.0125 2208 ============================================================
00:20:44.0953 2208 ================ Scan system memory ========================
00:20:44.0968 2208 System memory - ok
00:20:44.0968 2208 ================ Scan services =============================
00:20:45.0062 2208 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
00:20:45.0078 2208 !SASCORE - ok
00:20:45.0218 2208 Abiosdsk - ok
00:20:45.0234 2208 abp480n5 - ok
00:20:45.0281 2208 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
00:20:45.0281 2208 ACPI - ok
00:20:45.0328 2208 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
00:20:45.0328 2208 ACPIEC - ok
00:20:45.0343 2208 adpu160m - ok
00:20:45.0375 2208 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
00:20:45.0375 2208 aec - ok
00:20:45.0421 2208 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
00:20:45.0421 2208 AFD - ok
00:20:45.0437 2208 [ 0EBB674888CBDEFD5773341C16DD6A07 ] AFS2K C:\WINDOWS\system32\drivers\AFS2K.sys
00:20:45.0437 2208 AFS2K - ok
00:20:45.0484 2208 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
00:20:45.0500 2208 agp440 - ok
00:20:45.0500 2208 Aha154x - ok
00:20:45.0515 2208 aic78u2 - ok
00:20:45.0562 2208 aic78xx - ok
00:20:45.0687 2208 [ 8D6C30E515717248E0E52B85FD7AC466 ] ALCXWDM C:\WINDOWS\system32\drivers\ALCXWDM.SYS
00:20:45.0718 2208 ALCXWDM - ok
00:20:45.0781 2208 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
00:20:45.0781 2208 Alerter - ok
00:20:45.0812 2208 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
00:20:45.0812 2208 ALG - ok
00:20:45.0828 2208 AliIde - ok
00:20:45.0875 2208 [ 8FCE268CDBDD83B23419D1F35F42C7B1 ] AmdK7 C:\WINDOWS\system32\DRIVERS\amdk7.sys
00:20:45.0875 2208 AmdK7 - ok
00:20:45.0890 2208 amsint - ok
00:20:45.0906 2208 AppMgmt - ok
00:20:45.0921 2208 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
00:20:45.0921 2208 Arp1394 - ok
00:20:45.0937 2208 asc - ok
00:20:45.0953 2208 asc3350p - ok
00:20:45.0968 2208 asc3550 - ok
00:20:46.0109 2208 [ E1A1206A4FB19B675E947B29CCD25FBA ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
00:20:46.0109 2208 aspnet_state - ok
00:20:46.0156 2208 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
00:20:46.0156 2208 AsyncMac - ok
00:20:46.0203 2208 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
00:20:46.0203 2208 atapi - ok
00:20:46.0218 2208 Atdisk - ok
00:20:46.0265 2208 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
00:20:46.0265 2208 Atmarpc - ok
00:20:46.0312 2208 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
00:20:46.0312 2208 AudioSrv - ok
00:20:46.0359 2208 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
00:20:46.0359 2208 audstub - ok
00:20:46.0640 2208 [ 4AFC14AFA58878FAA1D249E7E90EA54B ] AVGIDSAgent C:\Program Files\AVG\AVG2013\avgidsagent.exe
00:20:46.0703 2208 AVGIDSAgent - ok
00:20:46.0765 2208 [ 7BB2C605094DBCA536D127B434214862 ] AVGIDSDriver C:\WINDOWS\system32\DRIVERS\avgidsdriverx.sys
00:20:46.0765 2208 AVGIDSDriver - ok
00:20:46.0796 2208 [ 8F50F98686C9A397A19FCBAE284DB1C5 ] AVGIDSHX C:\WINDOWS\system32\DRIVERS\avgidshx.sys
00:20:46.0796 2208 AVGIDSHX - ok
00:20:46.0843 2208 [ A8DE230CC8536790CA07D37FBCD87A74 ] AVGIDSShim C:\WINDOWS\system32\DRIVERS\avgidsshimx.sys
00:20:46.0843 2208 AVGIDSShim - ok
00:20:46.0875 2208 [ D53D35031365A0ECCB1DC1BC1B15B18E ] Avgldx86 C:\WINDOWS\system32\DRIVERS\avgldx86.sys
00:20:46.0890 2208 Avgldx86 - ok
00:20:46.0937 2208 [ 95889A9D23F3133250FA8AD13C982D58 ] Avglogx C:\WINDOWS\system32\DRIVERS\avglogx.sys
00:20:46.0937 2208 Avglogx - ok
00:20:46.0984 2208 [ AF7AA9BA434CD28833A66E90993E8DFD ] Avgmfx86 C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
00:20:46.0984 2208 Avgmfx86 - ok
00:20:47.0031 2208 [ F3D57358DE0B8B3491013C615754A7C7 ] Avgrkx86 C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
00:20:47.0031 2208 Avgrkx86 - ok
00:20:47.0078 2208 [ BA73B38E9033FC6018DB736B635706AE ] Avgtdix C:\WINDOWS\system32\DRIVERS\avgtdix.sys
00:20:47.0078 2208 Avgtdix - ok
00:20:47.0125 2208 [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] avgwd C:\Program Files\AVG\AVG2013\avgwdsvc.exe
00:20:47.0125 2208 avgwd - ok
00:20:47.0171 2208 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
00:20:47.0171 2208 Beep - ok
00:20:47.0234 2208 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
00:20:47.0234 2208 BITS - ok
00:20:47.0296 2208 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
00:20:47.0296 2208 Browser - ok
00:20:47.0406 2208 catchme - ok
00:20:47.0437 2208 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
00:20:47.0437 2208 cbidf2k - ok
00:20:47.0453 2208 cd20xrnt - ok
00:20:47.0500 2208 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
00:20:47.0500 2208 Cdaudio - ok
00:20:47.0546 2208 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
00:20:47.0546 2208 Cdfs - ok
00:20:47.0578 2208 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
00:20:47.0578 2208 Cdrom - ok
00:20:47.0593 2208 Changer - ok
00:20:47.0640 2208 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
00:20:47.0640 2208 CiSvc - ok
00:20:47.0671 2208 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
00:20:47.0687 2208 ClipSrv - ok
00:20:47.0687 2208 CmdIde - ok
00:20:47.0703 2208 COMSysApp - ok
00:20:47.0734 2208 Cpqarray - ok
00:20:47.0765 2208 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
00:20:47.0781 2208 CryptSvc - ok
00:20:47.0796 2208 dac2w2k - ok
00:20:47.0812 2208 dac960nt - ok
00:20:47.0859 2208 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
00:20:47.0859 2208 DcomLaunch - ok
00:20:47.0906 2208 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
00:20:47.0906 2208 Dhcp - ok
00:20:47.0953 2208 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
00:20:47.0953 2208 Disk - ok
00:20:47.0968 2208 dmadmin - ok
00:20:48.0078 2208 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
00:20:48.0093 2208 dmboot - ok
00:20:48.0156 2208 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
00:20:48.0156 2208 dmio - ok
00:20:48.0187 2208 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
00:20:48.0187 2208 dmload - ok
00:20:48.0234 2208 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
00:20:48.0234 2208 dmserver - ok
00:20:48.0265 2208 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
00:20:48.0265 2208 DMusic - ok
00:20:48.0296 2208 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
00:20:48.0296 2208 Dnscache - ok
00:20:48.0343 2208 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
00:20:48.0343 2208 Dot3svc - ok
00:20:48.0359 2208 dpti2o - ok
00:20:48.0406 2208 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
00:20:48.0406 2208 drmkaud - ok
00:20:48.0437 2208 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
00:20:48.0437 2208 EapHost - ok
00:20:48.0468 2208 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
00:20:48.0468 2208 ERSvc - ok
00:20:48.0500 2208 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
00:20:48.0500 2208 Eventlog - ok
00:20:48.0578 2208 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\System32\es.dll
00:20:48.0578 2208 EventSystem - ok
00:20:48.0593 2208 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
00:20:48.0593 2208 Fastfat - ok
00:20:48.0656 2208 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
00:20:48.0656 2208 FastUserSwitchingCompatibility - ok
00:20:48.0703 2208 [ E97D6A8684466DF94FF3BC24FB787A07 ] Fax C:\WINDOWS\system32\fxssvc.exe
00:20:48.0734 2208 Fax - ok
00:20:48.0781 2208 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
00:20:48.0781 2208 Fdc - ok
00:20:48.0796 2208 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
00:20:48.0796 2208 Fips - ok
00:20:48.0828 2208 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
00:20:48.0828 2208 Flpydisk - ok
00:20:48.0875 2208 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
00:20:48.0875 2208 FltMgr - ok
00:20:48.0906 2208 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
00:20:48.0906 2208 Fs_Rec - ok
00:20:48.0953 2208 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
00:20:48.0953 2208 Ftdisk - ok
00:20:49.0000 2208 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
00:20:49.0000 2208 Gpc - ok
00:20:49.0062 2208 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
00:20:49.0062 2208 helpsvc - ok
00:20:49.0093 2208 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
00:20:49.0093 2208 HidServ - ok
00:20:49.0140 2208 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
00:20:49.0140 2208 HidUsb - ok
00:20:49.0203 2208 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
00:20:49.0203 2208 hkmsvc - ok
00:20:49.0218 2208 hpn - ok
00:20:49.0281 2208 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
00:20:49.0281 2208 HTTP - ok
00:20:49.0312 2208 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
00:20:49.0312 2208 HTTPFilter - ok
00:20:49.0328 2208 i2omgmt - ok
00:20:49.0343 2208 i2omp - ok
00:20:49.0390 2208 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
00:20:49.0390 2208 i8042prt - ok
00:20:49.0421 2208 [ 1406D6EF4436AEE970EFE13193123965 ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
00:20:49.0437 2208 ialm - ok
00:20:49.0453 2208 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
00:20:49.0453 2208 Imapi - ok
00:20:49.0515 2208 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
00:20:49.0515 2208 ImapiService - ok
00:20:49.0531 2208 ini910u - ok
00:20:49.0562 2208 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\System32\DRIVERS\intelide.sys
00:20:49.0578 2208 IntelIde - ok
00:20:49.0609 2208 [ 3BB22519A194418D5FEC05D800A19AD0 ] ip6fw C:\WINDOWS\system32\drivers\ip6fw.sys
00:20:49.0609 2208 ip6fw - ok
00:20:49.0671 2208 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
00:20:49.0671 2208 IpFilterDriver - ok
00:20:49.0718 2208 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
00:20:49.0718 2208 IpInIp - ok
00:20:49.0765 2208 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
00:20:49.0765 2208 IpNat - ok
00:20:49.0781 2208 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
00:20:49.0781 2208 IPSec - ok
00:20:49.0812 2208 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
00:20:49.0812 2208 IRENUM - ok
00:20:49.0859 2208 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
00:20:49.0859 2208 isapnp - ok
00:20:49.0875 2208 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
00:20:49.0875 2208 Kbdclass - ok
00:20:49.0890 2208 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
00:20:49.0890 2208 kbdhid - ok
00:20:49.0937 2208 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
00:20:49.0937 2208 kmixer - ok
00:20:49.0984 2208 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
00:20:49.0984 2208 KSecDD - ok
00:20:50.0031 2208 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
00:20:50.0046 2208 lanmanserver - ok
00:20:50.0093 2208 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
00:20:50.0093 2208 lanmanworkstation - ok
00:20:50.0109 2208 lbrtfdc - ok
00:20:50.0171 2208 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
00:20:50.0171 2208 LmHosts - ok
00:20:50.0234 2208 [ FA2ED4A054360F3F873C15420F1F19CC ] ltmodem5 C:\WINDOWS\system32\DRIVERS\ltmdmnt.sys
00:20:50.0250 2208 ltmodem5 - ok
00:20:50.0296 2208 [ 629CABB0421668C9D3D402A3C3D77E14 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
00:20:50.0296 2208 MBAMProtector - ok
00:20:50.0359 2208 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
00:20:50.0359 2208 MBAMScheduler - ok
00:20:50.0421 2208 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
00:20:50.0421 2208 MBAMService - ok
00:20:50.0468 2208 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
00:20:50.0468 2208 Messenger - ok
00:20:50.0515 2208 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
00:20:50.0515 2208 mnmdd - ok
00:20:50.0562 2208 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\System32\mnmsrvc.exe
00:20:50.0562 2208 mnmsrvc - ok
00:20:50.0609 2208 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
00:20:50.0609 2208 Modem - ok
00:20:50.0656 2208 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
00:20:50.0656 2208 Mouclass - ok
00:20:50.0671 2208 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
00:20:50.0671 2208 MountMgr - ok
00:20:50.0718 2208 [ 9C3758018DED02F4AE53CCA1C5F084A2 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
00:20:50.0718 2208 MozillaMaintenance - ok
00:20:50.0734 2208 mraid35x - ok
00:20:50.0750 2208 mrtRate - ok
00:20:50.0796 2208 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
00:20:50.0796 2208 MRxDAV - ok
00:20:50.0875 2208 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
00:20:50.0875 2208 MRxSmb - ok
00:20:50.0937 2208 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\System32\msdtc.exe
00:20:50.0937 2208 MSDTC - ok
00:20:50.0984 2208 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
00:20:50.0984 2208 Msfs - ok
00:20:51.0000 2208 MSIServer - ok
00:20:51.0031 2208 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
00:20:51.0031 2208 MSKSSRV - ok
00:20:51.0062 2208 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
00:20:51.0062 2208 MSPCLOCK - ok
00:20:51.0109 2208 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
00:20:51.0109 2208 MSPQM - ok
00:20:51.0140 2208 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
00:20:51.0140 2208 mssmbios - ok
00:20:51.0171 2208 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
00:20:51.0171 2208 Mup - ok
00:20:51.0218 2208 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
00:20:51.0234 2208 napagent - ok
00:20:51.0281 2208 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
00:20:51.0296 2208 NDIS - ok
00:20:51.0312 2208 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
00:20:51.0312 2208 NdisTapi - ok
00:20:51.0343 2208 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
00:20:51.0343 2208 Ndisuio - ok
00:20:51.0375 2208 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
00:20:51.0375 2208 NdisWan - ok
00:20:51.0406 2208 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
00:20:51.0406 2208 NDProxy - ok
00:20:51.0437 2208 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
00:20:51.0437 2208 NetBIOS - ok
00:20:51.0468 2208 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
00:20:51.0468 2208 NetBT - ok
00:20:51.0531 2208 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
00:20:51.0531 2208 NetDDE - ok
00:20:51.0546 2208 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
00:20:51.0546 2208 NetDDEdsdm - ok
00:20:51.0593 2208 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\System32\lsass.exe
00:20:51.0593 2208 Netlogon - ok
00:20:51.0656 2208 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
00:20:51.0656 2208 Netman - ok
00:20:51.0703 2208 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
00:20:51.0703 2208 NIC1394 - ok
00:20:51.0750 2208 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
00:20:51.0750 2208 Nla - ok
00:20:51.0781 2208 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
00:20:51.0781 2208 Npfs - ok
00:20:51.0843 2208 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
00:20:51.0843 2208 Ntfs - ok
00:20:51.0875 2208 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\System32\lsass.exe
00:20:51.0875 2208 NtLmSsp - ok
00:20:51.0921 2208 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
00:20:51.0921 2208 NtmsSvc - ok
00:20:51.0984 2208 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
00:20:51.0984 2208 Null - ok
00:20:52.0078 2208 [ 5D701FCA6F7DB7A8A7D21F80A84D291A ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
00:20:52.0093 2208 nv - ok
00:20:52.0125 2208 [ 2AFA043B0243137D0EDC8CFB8305551B ] NVENET C:\WINDOWS\system32\DRIVERS\NVENET.sys
00:20:52.0125 2208 NVENET - ok
00:20:52.0156 2208 [ 26712CF8BE48BC767854927435C0B6A9 ] NVSvc C:\WINDOWS\System32\nvsvc32.exe
00:20:52.0156 2208 NVSvc - ok
00:20:52.0203 2208 [ 29291C3A7256337327051CC37E4FC09A ] nv_agp C:\WINDOWS\system32\DRIVERS\nv_agp.sys
00:20:52.0203 2208 nv_agp - ok
00:20:52.0250 2208 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
00:20:52.0250 2208 NwlnkFlt - ok
00:20:52.0281 2208 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
00:20:52.0281 2208 NwlnkFwd - ok
00:20:52.0296 2208 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
00:20:52.0296 2208 ohci1394 - ok
00:20:52.0375 2208 [ 7FA2A1A45435DC851790C0FD5F54612B ] omniserv C:\Program Files\Softex\OmniPass\Omniserv.exe
00:20:52.0375 2208 omniserv - ok
00:20:52.0421 2208 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
00:20:52.0437 2208 Parport - ok
00:20:52.0453 2208 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
00:20:52.0453 2208 PartMgr - ok
00:20:52.0500 2208 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
00:20:52.0500 2208 ParVdm - ok
00:20:52.0531 2208 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
00:20:52.0531 2208 PCI - ok
00:20:52.0546 2208 PCIDump - ok
00:20:52.0578 2208 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
00:20:52.0578 2208 PCIIde - ok
00:20:52.0656 2208 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
00:20:52.0671 2208 Pcmcia - ok
00:20:52.0671 2208 PDCOMP - ok
00:20:52.0687 2208 PDFRAME - ok
00:20:52.0703 2208 PDRELI - ok
00:20:52.0718 2208 PDRFRAME - ok
00:20:52.0734 2208 perc2 - ok
00:20:52.0750 2208 perc2hib - ok
00:20:53.0078 2208 [ F042EE4C8D66248D9B86DCF52ABAE416 ] PEVSystemStart C:\ComboFix\pev.3XE
00:20:53.0078 2208 PEVSystemStart - ok
00:20:53.0125 2208 [ ED2E7F396B4098608C95BC3806BDF6FC ] pfc C:\WINDOWS\system32\drivers\pfc.sys
00:20:53.0125 2208 pfc - ok
00:20:53.0171 2208 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
00:20:53.0171 2208 PlugPlay - ok
00:20:53.0203 2208 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
00:20:53.0203 2208 PolicyAgent - ok
00:20:53.0250 2208 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
00:20:53.0250 2208 PptpMiniport - ok
00:20:53.0296 2208 [ A32BEBAF723557681BFC6BD93E98BD26 ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
00:20:53.0296 2208 Processor - ok
00:20:53.0312 2208 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
00:20:53.0312 2208 ProtectedStorage - ok
00:20:53.0359 2208 [ BFFDB363485501A38F0BCA83AEC810DB ] Ps2 C:\WINDOWS\system32\DRIVERS\PS2.sys
00:20:53.0359 2208 Ps2 - ok
00:20:53.0359 2208 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
00:20:53.0375 2208 PSched - ok
00:20:53.0421 2208 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
00:20:53.0421 2208 Ptilink - ok
00:20:53.0453 2208 [ 80C824C78DD1CAC1833AE5DCCA02B327 ] PxHelp20 C:\WINDOWS\system32\DRIVERS\PxHelp20.sys
00:20:53.0453 2208 PxHelp20 - ok
00:20:53.0468 2208 ql1080 - ok
00:20:53.0484 2208 Ql10wnt - ok
00:20:53.0500 2208 ql12160 - ok
00:20:53.0515 2208 ql1240 - ok
00:20:53.0531 2208 ql1280 - ok
00:20:53.0562 2208 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
00:20:53.0562 2208 RasAcd - ok
00:20:53.0640 2208 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
00:20:53.0640 2208 RasAuto - ok
00:20:53.0671 2208 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
00:20:53.0671 2208 Rasl2tp - ok
00:20:53.0718 2208 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
00:20:53.0734 2208 RasMan - ok
00:20:53.0750 2208 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
00:20:53.0750 2208 RasPppoe - ok
00:20:53.0796 2208 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
00:20:53.0796 2208 Raspti - ok
00:20:53.0812 2208 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
00:20:53.0828 2208 Rdbss - ok
00:20:53.0875 2208 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
00:20:53.0875 2208 RDPCDD - ok
00:20:53.0921 2208 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
00:20:53.0937 2208 RDPWD - ok
00:20:53.0984 2208 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
00:20:53.0984 2208 RDSessMgr - ok
00:20:54.0046 2208 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
00:20:54.0046 2208 redbook - ok
00:20:54.0109 2208 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
00:20:54.0109 2208 RemoteAccess - ok
00:20:54.0156 2208 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\System32\locator.exe
00:20:54.0156 2208 RpcLocator - ok
00:20:54.0218 2208 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\system32\rpcss.dll
00:20:54.0218 2208 RpcSs - ok
00:20:54.0265 2208 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\System32\rsvp.exe
00:20:54.0281 2208 RSVP - ok
00:20:54.0312 2208 [ 2EF9C0DC26B30B2318B1FC3FAA1F0AE7 ] rtl8139 C:\WINDOWS\system32\DRIVERS\R8139n51.SYS
00:20:54.0312 2208 rtl8139 - ok
00:20:54.0375 2208 [ 0DBCC071A268E0340A2BA6BDD98BACE4 ] S3Psddr C:\WINDOWS\system32\DRIVERS\s3gnbm.sys
00:20:54.0375 2208 S3Psddr - ok
00:20:54.0406 2208 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
00:20:54.0406 2208 SamSs - ok
00:20:54.0437 2208 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
00:20:54.0437 2208 SASDIFSV - ok
00:20:54.0468 2208 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
00:20:54.0468 2208 SASKUTIL - ok
00:20:54.0500 2208 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
00:20:54.0500 2208 SCardSvr - ok
00:20:54.0546 2208 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
00:20:54.0562 2208 Schedule - ok
00:20:54.0609 2208 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
00:20:54.0609 2208 Secdrv - ok
00:20:54.0640 2208 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
00:20:54.0640 2208 seclogon - ok
00:20:54.0671 2208 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
00:20:54.0687 2208 SENS - ok
00:20:54.0703 2208 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] Serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
00:20:54.0718 2208 Serenum - ok
00:20:54.0734 2208 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
00:20:54.0734 2208 Serial - ok
00:20:54.0765 2208 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
00:20:54.0765 2208 Sfloppy - ok
00:20:54.0828 2208 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
00:20:54.0828 2208 SharedAccess - ok
00:20:54.0859 2208 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
00:20:54.0875 2208 ShellHWDetection - ok
00:20:54.0875 2208 Simbad - ok
00:20:54.0937 2208 [ BDFEF5C5D41BA377852389E8F07104EA ] SiS315 C:\WINDOWS\system32\DRIVERS\sisgrp.sys
00:20:54.0937 2208 SiS315 - ok
00:20:54.0984 2208 [ 923D23638C616EECB0D811461161D0B8 ] SISAGP C:\WINDOWS\system32\DRIVERS\SISAGPX.sys
00:20:54.0984 2208 SISAGP - ok
00:20:55.0015 2208 [ 7E9E5823AFBB5AF2851ABB1659FF627D ] SiSkp C:\WINDOWS\system32\DRIVERS\srvkp.sys
00:20:55.0015 2208 SiSkp - ok
00:20:55.0031 2208 Sparrow - ok
00:20:55.0078 2208 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
00:20:55.0078 2208 splitter - ok
00:20:55.0125 2208 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
00:20:55.0125 2208 Spooler - ok
00:20:55.0171 2208 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
00:20:55.0171 2208 sr - ok
00:20:55.0218 2208 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
00:20:55.0218 2208 srservice - ok
00:20:55.0265 2208 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
00:20:55.0265 2208 Srv - ok
00:20:55.0312 2208 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
00:20:55.0312 2208 SSDPSRV - ok
00:20:55.0359 2208 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
00:20:55.0359 2208 stisvc - ok
00:20:55.0421 2208 [ A3DF1466AAFDC62B21765072C5EDAA9A ] SunkFilt C:\WINDOWS\System32\Drivers\sunkfilt.sys
00:20:55.0421 2208 SunkFilt - ok
00:20:55.0437 2208 Sunkfiltp - ok
00:20:55.0484 2208 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
00:20:55.0500 2208 swenum - ok
00:20:55.0515 2208 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
00:20:55.0515 2208 swmidi - ok
00:20:55.0531 2208 SwPrv - ok
00:20:55.0562 2208 symc810 - ok
00:20:55.0578 2208 symc8xx - ok
00:20:55.0593 2208 sym_hi - ok
00:20:55.0609 2208 sym_u3 - ok
00:20:55.0625 2208 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
00:20:55.0625 2208 sysaudio - ok
00:20:55.0687 2208 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
00:20:55.0687 2208 SysmonLog - ok
00:20:55.0734 2208 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
00:20:55.0734 2208 TapiSrv - ok
00:20:55.0781 2208 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
00:20:55.0781 2208 Tcpip - ok
00:20:55.0828 2208 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
00:20:55.0828 2208 TDPIPE - ok
00:20:55.0843 2208 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
00:20:55.0843 2208 TDTCP - ok
00:20:55.0875 2208 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
00:20:55.0875 2208 TermDD - ok
00:20:55.0921 2208 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
00:20:55.0921 2208 TermService - ok
00:20:55.0968 2208 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
00:20:55.0968 2208 Themes - ok
00:20:55.0984 2208 TosIde - ok
00:20:56.0015 2208 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
00:20:56.0031 2208 TrkWks - ok
00:20:56.0078 2208 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
00:20:56.0078 2208 Udfs - ok
00:20:56.0093 2208 ultra - ok
00:20:56.0156 2208 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
00:20:56.0171 2208 Update - ok
00:20:56.0218 2208 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
00:20:56.0218 2208 upnphost - ok
00:20:56.0250 2208 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
00:20:56.0250 2208 UPS - ok
00:20:56.0328 2208 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
00:20:56.0328 2208 usbccgp - ok
00:20:56.0375 2208 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
00:20:56.0375 2208 usbehci - ok
00:20:56.0390 2208 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
00:20:56.0406 2208 usbhub - ok
00:20:56.0421 2208 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
00:20:56.0421 2208 usbohci - ok
00:20:56.0468 2208 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
00:20:56.0468 2208 USBSTOR - ok
00:20:56.0500 2208 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
00:20:56.0500 2208 usbuhci - ok
00:20:56.0531 2208 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
00:20:56.0531 2208 VgaSave - ok
00:20:56.0578 2208 [ 0E3E3FAE3A0A58B8D936A8E841A17D16 ] viaagp1 C:\WINDOWS\system32\DRIVERS\viaagp1.sys
00:20:56.0593 2208 viaagp1 - ok
00:20:56.0609 2208 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\System32\DRIVERS\viaide.sys
00:20:56.0609 2208 ViaIde - ok
00:20:56.0640 2208 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
00:20:56.0640 2208 VolSnap - ok
00:20:56.0718 2208 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
00:20:56.0718 2208 VSS - ok
00:20:56.0765 2208 [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time C:\WINDOWS\system32\w32time.dll
00:20:56.0765 2208 W32Time - ok
00:20:56.0812 2208 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
00:20:56.0812 2208 Wanarp - ok
00:20:56.0828 2208 WDICA - ok
00:20:56.0875 2208 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
00:20:56.0875 2208 wdmaud - ok
00:20:56.0906 2208 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
00:20:56.0906 2208 WebClient - ok
00:20:57.0015 2208 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
00:20:57.0015 2208 winmgmt - ok
00:20:57.0078 2208 [ C7E39EA41233E9F5B86C8DA3A9F1E4A8 ] WmdmPmSN C:\WINDOWS\System32\mspmsnsv.dll
00:20:57.0078 2208 WmdmPmSN - ok
00:20:57.0156 2208 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\System32\wbem\wmiapsrv.exe
00:20:57.0156 2208 WmiApSrv - ok
00:20:57.0203 2208 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
00:20:57.0203 2208 WS2IFSL - ok
00:20:57.0250 2208 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
00:20:57.0250 2208 wscsvc - ok
00:20:57.0281 2208 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
00:20:57.0281 2208 wuauserv - ok
00:20:57.0359 2208 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
00:20:57.0375 2208 WZCSVC - ok
00:20:57.0406 2208 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
00:20:57.0406 2208 xmlprov - ok
00:20:57.0453 2208 [ FD1F4E9CF06C71C8D73A24ACF18D8296 ] {6080A529-897E-4629-A488-ABA0C29B635E} C:\WINDOWS\system32\drivers\ialmsbw.sys
00:20:57.0453 2208 {6080A529-897E-4629-A488-ABA0C29B635E} - ok
00:20:57.0484 2208 [ D4D7331D33D1FA73E588E5CE0D90A4C1 ] {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} C:\WINDOWS\system32\drivers\ialmkchw.sys
00:20:57.0484 2208 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} - ok
00:20:57.0500 2208 ================ Scan global ===============================
00:20:57.0531 2208 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
00:20:57.0578 2208 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
00:20:57.0640 2208 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
00:20:57.0671 2208 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
00:20:57.0671 2208 [Global] - ok
00:20:57.0687 2208 ================ Scan MBR ==================================
00:20:57.0703 2208 [ B716B775FCBDABF0E2DDFF76F15C6790 ] \Device\Harddisk0\DR0
00:20:57.0906 2208 \Device\Harddisk0\DR0 - ok
00:20:57.0921 2208 ================ Scan VBR ==================================
00:20:57.0921 2208 [ 7A527582474762DC8B91AEA598FBA17B ] \Device\Harddisk0\DR0\Partition1
00:20:57.0921 2208 \Device\Harddisk0\DR0\Partition1 - ok
00:20:57.0937 2208 [ 65999491C4E5E0B506A4FAD468C419C5 ] \Device\Harddisk0\DR0\Partition2
00:20:57.0937 2208 \Device\Harddisk0\DR0\Partition2 - ok
00:20:57.0937 2208 ============================================================
00:20:57.0937 2208 Scan finished
00:20:57.0937 2208 ============================================================
00:20:57.0968 2152 Detected object count: 0
00:20:57.0968 2152 Actual detected object count: 0
00:21:31.0281 3896 ============================================================
00:21:31.0281 3896 Scan started
00:21:31.0281 3896 Mode: Manual; SigCheck; TDLFS;
00:21:31.0281 3896 ============================================================
00:21:32.0140 3896 ================ Scan system memory ========================
00:21:32.0140 3896 System memory - ok
00:21:32.0140 3896 ================ Scan services =============================
00:21:32.0250 3896 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
00:21:32.0375 3896 !SASCORE - ok
00:21:32.0531 3896 Abiosdsk - ok
00:21:32.0546 3896 abp480n5 - ok
00:21:32.0593 3896 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
00:21:32.0750 3896 ACPI - ok
00:21:32.0796 3896 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
00:21:32.0953 3896 ACPIEC - ok
00:21:32.0968 3896 adpu160m - ok
00:21:33.0015 3896 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
00:21:33.0171 3896 aec - ok
00:21:33.0203 3896 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
00:21:33.0218 3896 AFD - ok
00:21:33.0250 3896 [ 0EBB674888CBDEFD5773341C16DD6A07 ] AFS2K C:\WINDOWS\system32\drivers\AFS2K.sys
00:21:33.0296 3896 AFS2K - ok
00:21:33.0328 3896 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
00:21:33.0500 3896 agp440 - ok
00:21:33.0515 3896 Aha154x - ok
00:21:33.0515 3896 aic78u2 - ok
00:21:33.0546 3896 aic78xx - ok
00:21:33.0656 3896 [ 8D6C30E515717248E0E52B85FD7AC466 ] ALCXWDM C:\WINDOWS\system32\drivers\ALCXWDM.SYS
00:21:33.0781 3896 ALCXWDM - ok
00:21:33.0828 3896 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
00:21:33.0968 3896 Alerter - ok
00:21:34.0015 3896 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
00:21:34.0171 3896 ALG - ok
00:21:34.0187 3896 AliIde - ok
00:21:34.0234 3896 [ 8FCE268CDBDD83B23419D1F35F42C7B1 ] AmdK7 C:\WINDOWS\system32\DRIVERS\amdk7.sys
00:21:34.0390 3896 AmdK7 - ok
00:21:34.0390 3896 amsint - ok
00:21:34.0406 3896 AppMgmt - ok
00:21:34.0421 3896 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
00:21:34.0593 3896 Arp1394 - ok
00:21:34.0609 3896 asc - ok
00:21:34.0609 3896 asc3350p - ok
00:21:34.0625 3896 asc3550 - ok
00:21:34.0734 3896 [ E1A1206A4FB19B675E947B29CCD25FBA ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
00:21:34.0765 3896 aspnet_state ( UnsignedFile.Multi.Generic ) - warning
00:21:34.0765 3896 aspnet_state - detected UnsignedFile.Multi.Generic (1)
00:21:34.0812 3896 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
00:21:34.0984 3896 AsyncMac - ok
00:21:35.0015 3896 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
00:21:35.0171 3896 atapi - ok
00:21:35.0187 3896 Atdisk - ok
00:21:35.0234 3896 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
00:21:35.0390 3896 Atmarpc - ok
00:21:35.0406 3896 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
00:21:35.0593 3896 AudioSrv - ok
00:21:35.0640 3896 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
00:21:35.0828 3896 audstub - ok
00:21:36.0125 3896 [ 4AFC14AFA58878FAA1D249E7E90EA54B ] AVGIDSAgent C:\Program Files\AVG\AVG2013\avgidsagent.exe
00:21:36.0390 3896 AVGIDSAgent - ok
00:21:36.0453 3896 [ 7BB2C605094DBCA536D127B434214862 ] AVGIDSDriver C:\WINDOWS\system32\DRIVERS\avgidsdriverx.sys
00:21:36.0515 3896 AVGIDSDriver - ok
00:21:36.0562 3896 [ 8F50F98686C9A397A19FCBAE284DB1C5 ] AVGIDSHX C:\WINDOWS\system32\DRIVERS\avgidshx.sys
00:21:36.0593 3896 AVGIDSHX - ok
00:21:36.0625 3896 [ A8DE230CC8536790CA07D37FBCD87A74 ] AVGIDSShim C:\WINDOWS\system32\DRIVERS\avgidsshimx.sys
00:21:36.0640 3896 AVGIDSShim - ok
00:21:36.0687 3896 [ D53D35031365A0ECCB1DC1BC1B15B18E ] Avgldx86 C:\WINDOWS\system32\DRIVERS\avgldx86.sys
00:21:36.0718 3896 Avgldx86 - ok
00:21:36.0750 3896 [ 95889A9D23F3133250FA8AD13C982D58 ] Avglogx C:\WINDOWS\system32\DRIVERS\avglogx.sys
00:21:36.0781 3896 Avglogx - ok
00:21:36.0812 3896 [ AF7AA9BA434CD28833A66E90993E8DFD ] Avgmfx86 C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
00:21:36.0828 3896 Avgmfx86 - ok
00:21:36.0875 3896 [ F3D57358DE0B8B3491013C615754A7C7 ] Avgrkx86 C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
00:21:36.0890 3896 Avgrkx86 - ok
00:21:36.0937 3896 [ BA73B38E9033FC6018DB736B635706AE ] Avgtdix C:\WINDOWS\system32\DRIVERS\avgtdix.sys
00:21:36.0953 3896 Avgtdix - ok
00:21:37.0000 3896 [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] avgwd C:\Program Files\AVG\AVG2013\avgwdsvc.exe
00:21:37.0031 3896 avgwd - ok
00:21:37.0078 3896 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
00:21:37.0281 3896 Beep - ok
00:21:37.0328 3896 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
00:21:37.0515 3896 BITS - ok
00:21:37.0562 3896 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
00:21:37.0625 3896 Browser - ok
00:21:37.0750 3896 catchme - ok
00:21:37.0796 3896 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
00:21:38.0000 3896 cbidf2k - ok
00:21:38.0015 3896 cd20xrnt - ok
00:21:38.0062 3896 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
00:21:38.0296 3896 Cdaudio - ok
00:21:38.0328 3896 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
00:21:38.0484 3896 Cdfs - ok
00:21:38.0515 3896 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
00:21:38.0671 3896 Cdrom - ok
00:21:38.0671 3896 Changer - ok
00:21:38.0718 3896 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
00:21:38.0875 3896 CiSvc - ok
00:21:38.0890 3896 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
00:21:39.0062 3896 ClipSrv - ok
00:21:39.0062 3896 CmdIde - ok
00:21:39.0078 3896 COMSysApp - ok
00:21:39.0109 3896 Cpqarray - ok
00:21:39.0140 3896 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
00:21:39.0406 3896 CryptSvc - ok
00:21:39.0406 3896 dac2w2k - ok
00:21:39.0453 3896 dac960nt - ok
00:21:39.0500 3896 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
00:21:39.0562 3896 DcomLaunch - ok
00:21:39.0609 3896 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
00:21:39.0765 3896 Dhcp - ok
00:21:39.0796 3896 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
00:21:39.0953 3896 Disk - ok
00:21:39.0968 3896 dmadmin - ok
00:21:40.0078 3896 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
00:21:40.0281 3896 dmboot - ok
00:21:40.0328 3896 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
00:21:40.0515 3896 dmio - ok
00:21:40.0546 3896 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
00:21:40.0781 3896 dmload - ok
00:21:40.0828 3896 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
00:21:40.0953 3896 dmserver - ok
00:21:40.0984 3896 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
00:21:41.0140 3896 DMusic - ok
00:21:41.0187 3896 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
00:21:41.0218 3896 Dnscache - ok
00:21:41.0250 3896 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
00:21:41.0437 3896 Dot3svc - ok
00:21:41.0453 3896 dpti2o - ok
00:21:41.0484 3896 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
00:21:41.0640 3896 drmkaud - ok
00:21:41.0671 3896 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
00:21:41.0843 3896 EapHost - ok
00:21:41.0875 3896 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
00:21:42.0015 3896 ERSvc - ok
00:21:42.0046 3896 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
00:21:42.0078 3896 Eventlog - ok
00:21:42.0140 3896 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\System32\es.dll
00:21:42.0187 3896 EventSystem - ok
00:21:42.0203 3896 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
00:21:42.0375 3896 Fastfat - ok
00:21:42.0421 3896 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
00:21:42.0468 3896 FastUserSwitchingCompatibility - ok
00:21:42.0515 3896 [ E97D6A8684466DF94FF3BC24FB787A07 ] Fax C:\WINDOWS\system32\fxssvc.exe
00:21:42.0671 3896 Fax - ok
00:21:42.0718 3896 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
00:21:42.0890 3896 Fdc - ok
00:21:42.0921 3896 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
00:21:43.0062 3896 Fips - ok
00:21:43.0078 3896 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
00:21:43.0265 3896 Flpydisk - ok
00:21:43.0312 3896 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
00:21:43.0484 3896 FltMgr - ok
00:21:43.0500 3896 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
00:21:43.0734 3896 Fs_Rec - ok
00:21:43.0781 3896 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
00:21:44.0015 3896 Ftdisk - ok
00:21:44.0062 3896 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
00:21:44.0203 3896 Gpc - ok
00:21:44.0265 3896 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
00:21:44.0453 3896 helpsvc - ok
00:21:44.0484 3896 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
00:21:44.0640 3896 HidServ - ok
00:21:44.0687 3896 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
00:21:44.0828 3896 HidUsb - ok
00:21:44.0859 3896 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
00:21:45.0031 3896 hkmsvc - ok
00:21:45.0046 3896 hpn - ok
00:21:45.0109 3896 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
00:21:45.0125 3896 HTTP - ok
00:21:45.0171 3896 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
00:21:45.0328 3896 HTTPFilter - ok
00:21:45.0343 3896 i2omgmt - ok
00:21:45.0343 3896 i2omp - ok
00:21:45.0390 3896 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
00:21:45.0718 3896 i8042prt - ok
00:21:45.0765 3896 [ 1406D6EF4436AEE970EFE13193123965 ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
00:21:45.0828 3896 ialm - ok
00:21:45.0859 3896 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
00:21:46.0000 3896 Imapi - ok
00:21:46.0046 3896 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
00:21:46.0203 3896 ImapiService - ok
00:21:46.0234 3896 ini910u - ok
00:21:46.0265 3896 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\System32\DRIVERS\intelide.sys
00:21:46.0453 3896 IntelIde - ok
00:21:46.0500 3896 [ 3BB22519A194418D5FEC05D800A19AD0 ] ip6fw C:\WINDOWS\system32\drivers\ip6fw.sys
00:21:46.0656 3896 ip6fw - ok
00:21:46.0718 3896 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
00:21:46.0937 3896 IpFilterDriver - ok
00:21:46.0968 3896 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
00:21:47.0125 3896 IpInIp - ok
00:21:47.0187 3896 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
00:21:47.0375 3896 IpNat - ok
00:21:47.0406 3896 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
00:21:47.0562 3896 IPSec - ok
00:21:47.0593 3896 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
00:21:47.0781 3896 IRENUM - ok
00:21:47.0828 3896 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
00:21:47.0984 3896 isapnp - ok
00:21:48.0000 3896 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
00:21:48.0187 3896 Kbdclass - ok
00:21:48.0203 3896 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
00:21:48.0359 3896 kbdhid - ok
00:21:48.0390 3896 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
00:21:48.0578 3896 kmixer - ok
00:21:48.0609 3896 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
00:21:48.0640 3896 KSecDD - ok
00:21:48.0687 3896 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
00:21:48.0718 3896 lanmanserver - ok
00:21:48.0765 3896 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
00:21:48.0796 3896 lanmanworkstation - ok
00:21:48.0812 3896 lbrtfdc - ok
00:21:48.0859 3896 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
00:21:49.0031 3896 LmHosts - ok
00:21:49.0078 3896 [ FA2ED4A054360F3F873C15420F1F19CC ] ltmodem5 C:\WINDOWS\system32\DRIVERS\ltmdmnt.sys
00:21:49.0140 3896 ltmodem5 - ok
00:21:49.0187 3896 [ 629CABB0421668C9D3D402A3C3D77E14 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
00:21:49.0218 3896 MBAMProtector - ok
00:21:49.0312 3896 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
00:21:49.0343 3896 MBAMScheduler - ok
00:21:49.0375 3896 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
00:21:49.0421 3896 MBAMService - ok
00:21:49.0468 3896 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
00:21:49.0625 3896 Messenger - ok
00:21:49.0656 3896 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
00:21:49.0890 3896 mnmdd - ok
00:21:49.0921 3896 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\System32\mnmsrvc.exe
00:21:50.0062 3896 mnmsrvc - ok
00:21:50.0109 3896 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
00:21:50.0265 3896 Modem - ok
00:21:50.0296 3896 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
00:21:50.0453 3896 Mouclass - ok
00:21:50.0484 3896 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
00:21:50.0640 3896 MountMgr - ok
00:21:50.0671 3896 [ 9C3758018DED02F4AE53CCA1C5F084A2 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
00:21:50.0703 3896 MozillaMaintenance - ok
00:21:50.0718 3896 mraid35x - ok
00:21:50.0734 3896 mrtRate - ok
00:21:50.0781 3896 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
00:21:50.0937 3896 MRxDAV - ok
00:21:50.0984 3896 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
00:21:51.0031 3896 MRxSmb - ok
00:21:51.0078 3896 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\System32\msdtc.exe
00:21:51.0250 3896 MSDTC - ok
00:21:51.0296 3896 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
00:21:51.0437 3896 Msfs - ok
00:21:51.0453 3896 MSIServer - ok
00:21:51.0484 3896 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
00:21:51.0640 3896 MSKSSRV - ok
00:21:51.0671 3896 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
00:21:51.0828 3896 MSPCLOCK - ok
00:21:51.0859 3896 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
00:21:52.0000 3896 MSPQM - ok
00:21:52.0031 3896 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
00:21:52.0156 3896 mssmbios - ok
00:21:52.0218 3896 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
00:21:52.0250 3896 Mup - ok
00:21:52.0312 3896 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
00:21:52.0500 3896 napagent - ok
00:21:52.0546 3896 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
00:21:52.0718 3896 NDIS - ok
00:21:52.0750 3896 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
00:21:52.0796 3896 NdisTapi - ok
00:21:52.0828 3896 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
00:21:53.0015 3896 Ndisuio - ok
00:21:53.0031 3896 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
00:21:53.0187 3896 NdisWan - ok
00:21:53.0218 3896 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
00:21:53.0265 3896 NDProxy - ok
00:21:53.0312 3896 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
00:21:53.0484 3896 NetBIOS - ok
00:21:53.0531 3896 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
00:21:53.0671 3896 NetBT - ok
00:21:53.0718 3896 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
00:21:53.0875 3896 NetDDE - ok
00:21:53.0875 3896 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
00:21:54.0046 3896 NetDDEdsdm - ok
00:21:54.0093 3896 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\System32\lsass.exe
00:21:54.0234 3896 Netlogon - ok
00:21:54.0328 3896 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
00:21:54.0500 3896 Netman - ok
00:21:54.0546 3896 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
00:21:54.0703 3896 NIC1394 - ok
00:21:54.0750 3896 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
00:21:54.0796 3896 Nla - ok
00:21:54.0828 3896 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
00:21:54.0953 3896 Npfs - ok
00:21:55.0046 3896 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
00:21:55.0218 3896 Ntfs - ok
00:21:55.0234 3896 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\System32\lsass.exe
00:21:55.0406 3896 NtLmSsp - ok
00:21:55.0453 3896 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
00:21:55.0609 3896 NtmsSvc - ok
00:21:55.0656 3896 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
00:21:55.0890 3896 Null - ok
00:21:55.0984 3896 [ 5D701FCA6F7DB7A8A7D21F80A84D291A ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
00:21:56.0078 3896 nv - ok
00:21:56.0109 3896 [ 2AFA043B0243137D0EDC8CFB8305551B ] NVENET C:\WINDOWS\system32\DRIVERS\NVENET.sys
00:21:56.0140 3896 NVENET - ok
00:21:56.0156 3896 [ 26712CF8BE48BC767854927435C0B6A9 ] NVSvc C:\WINDOWS\System32\nvsvc32.exe
00:21:56.0171 3896 NVSvc - ok
00:21:56.0218 3896 [ 29291C3A7256337327051CC37E4FC09A ] nv_agp C:\WINDOWS\system32\DRIVERS\nv_agp.sys
00:21:56.0265 3896 nv_agp - ok
00:21:56.0312 3896 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
00:21:56.0562 3896 NwlnkFlt - ok
00:21:56.0593 3896 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
00:21:56.0812 3896 NwlnkFwd - ok
00:21:56.0828 3896 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
00:21:56.0968 3896 ohci1394 - ok
00:21:57.0046 3896 [ 7FA2A1A45435DC851790C0FD5F54612B ] omniserv C:\Program Files\Softex\OmniPass\Omniserv.exe
00:21:57.0078 3896 omniserv ( UnsignedFile.Multi.Generic ) - warning
00:21:57.0078 3896 omniserv - detected UnsignedFile.Multi.Generic (1)
00:21:57.0109 3896 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
00:21:57.0296 3896 Parport - ok
00:21:57.0328 3896 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
00:21:57.0468 3896 PartMgr - ok
00:21:57.0500 3896 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
00:21:57.0734 3896 ParVdm - ok
00:21:57.0750 3896 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
00:21:57.0875 3896 PCI - ok
00:21:57.0890 3896 PCIDump - ok
00:21:57.0921 3896 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
00:21:58.0156 3896 PCIIde - ok
00:21:58.0218 3896 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
00:21:58.0484 3896 Pcmcia - ok
00:21:58.0500 3896 PDCOMP - ok
00:21:58.0515 3896 PDFRAME - ok
00:21:58.0531 3896 PDRELI - ok
00:21:58.0546 3896 PDRFRAME - ok
00:21:58.0562 3896 perc2 - ok
00:21:58.0578 3896 perc2hib - ok
00:21:58.0890 3896 [ F042EE4C8D66248D9B86DCF52ABAE416 ] PEVSystemStart C:\ComboFix\pev.3XE
00:21:58.0937 3896 PEVSystemStart ( UnsignedFile.Multi.Generic ) - warning
00:21:58.0937 3896 PEVSystemStart - detected UnsignedFile.Multi.Generic (1)
00:21:58.0984 3896 [ ED2E7F396B4098608C95BC3806BDF6FC ] pfc C:\WINDOWS\system32\drivers\pfc.sys
00:21:59.0015 3896 pfc ( UnsignedFile.Multi.Generic ) - warning
00:21:59.0015 3896 pfc - detected UnsignedFile.Multi.Generic (1)
00:21:59.0031 3896 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
00:21:59.0062 3896 PlugPlay - ok
00:21:59.0078 3896 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
00:21:59.0218 3896 PolicyAgent - ok
00:21:59.0265 3896 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
00:21:59.0421 3896 PptpMiniport - ok
00:21:59.0453 3896 [ A32BEBAF723557681BFC6BD93E98BD26 ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
00:21:59.0593 3896 Processor - ok
00:21:59.0609 3896 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
00:21:59.0765 3896 ProtectedStorage - ok
00:21:59.0796 3896 [ BFFDB363485501A38F0BCA83AEC810DB ] Ps2 C:\WINDOWS\system32\DRIVERS\PS2.sys
00:21:59.0843 3896 Ps2 - ok
00:21:59.0859 3896 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
00:22:00.0015 3896 PSched - ok
00:22:00.0046 3896 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
00:22:00.0250 3896 Ptilink - ok
00:22:00.0296 3896 [ 80C824C78DD1CAC1833AE5DCCA02B327 ] PxHelp20 C:\WINDOWS\system32\DRIVERS\PxHelp20.sys
00:22:00.0312 3896 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
00:22:00.0312 3896 PxHelp20 - detected UnsignedFile.Multi.Generic (1)
00:22:00.0312 3896 ql1080 - ok
00:22:00.0328 3896 Ql10wnt - ok
00:22:00.0343 3896 ql12160 - ok
00:22:00.0359 3896 ql1240 - ok
00:22:00.0375 3896 ql1280 - ok
00:22:00.0421 3896 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
00:22:00.0640 3896 RasAcd - ok
00:22:00.0687 3896 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
00:22:00.0828 3896 RasAuto - ok
00:22:00.0859 3896 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
00:22:01.0015 3896 Rasl2tp - ok
00:22:01.0062 3896 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
00:22:01.0187 3896 RasMan - ok
00:22:01.0218 3896 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
00:22:01.0406 3896 RasPppoe - ok
00:22:01.0453 3896 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
00:22:01.0671 3896 Raspti - ok
00:22:01.0703 3896 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
00:22:01.0843 3896 Rdbss - ok
00:22:01.0875 3896 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
00:22:02.0093 3896 RDPCDD - ok
00:22:02.0140 3896 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
00:22:02.0187 3896 RDPWD - ok
00:22:02.0234 3896 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
00:22:02.0375 3896 RDSessMgr - ok
00:22:02.0421 3896 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
00:22:02.0593 3896 redbook - ok
00:22:02.0625 3896 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
00:22:02.0781 3896 RemoteAccess - ok
00:22:02.0812 3896 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\System32\locator.exe
00:22:02.0937 3896 RpcLocator - ok
00:22:02.0968 3896 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\system32\rpcss.dll
00:22:03.0015 3896 RpcSs - ok
00:22:03.0078 3896 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\System32\rsvp.exe
00:22:03.0281 3896 RSVP - ok
00:22:03.0296 3896 [ 2EF9C0DC26B30B2318B1FC3FAA1F0AE7 ] rtl8139 C:\WINDOWS\system32\DRIVERS\R8139n51.SYS
00:22:03.0343 3896 rtl8139 - ok
00:22:03.0406 3896 [ 0DBCC071A268E0340A2BA6BDD98BACE4 ] S3Psddr C:\WINDOWS\system32\DRIVERS\s3gnbm.sys
00:22:03.0546 3896 S3Psddr - ok
00:22:03.0578 3896 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
00:22:03.0718 3896 SamSs - ok
00:22:03.0750 3896 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
00:22:03.0843 3896 SASDIFSV - ok
00:22:03.0843 3896 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
00:22:03.0890 3896 SASKUTIL - ok
00:22:03.0921 3896 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
00:22:04.0140 3896 SCardSvr - ok
00:22:04.0171 3896 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
00:22:04.0312 3896 Schedule - ok
00:22:04.0359 3896 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
00:22:04.0500 3896 Secdrv - ok
00:22:04.0546 3896 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
00:22:04.0687 3896 seclogon - ok
00:22:04.0718 3896 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
00:22:04.0859 3896 SENS - ok
00:22:04.0890 3896 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] Serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
00:22:05.0031 3896 Serenum - ok
00:22:05.0078 3896 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
00:22:05.0218 3896 Serial - ok
00:22:05.0234 3896 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
00:22:05.0375 3896 Sfloppy - ok
00:22:05.0437 3896 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
00:22:05.0609 3896 SharedAccess - ok
00:22:05.0640 3896 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
00:22:05.0671 3896 ShellHWDetection - ok
00:22:05.0687 3896 Simbad - ok
00:22:05.0734 3896 [ BDFEF5C5D41BA377852389E8F07104EA ] SiS315 C:\WINDOWS\system32\DRIVERS\sisgrp.sys
00:22:05.0765 3896 SiS315 - ok
00:22:05.0796 3896 [ 923D23638C616EECB0D811461161D0B8 ] SISAGP C:\WINDOWS\system32\DRIVERS\SISAGPX.sys
00:22:05.0937 3896 SISAGP - ok
00:22:05.0968 3896 [ 7E9E5823AFBB5AF2851ABB1659FF627D ] SiSkp C:\WINDOWS\system32\DRIVERS\srvkp.sys
00:22:06.0078 3896 SiSkp - ok
00:22:06.0078 3896 Sparrow - ok
00:22:06.0125 3896 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
00:22:06.0265 3896 splitter - ok
00:22:06.0312 3896 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
00:22:06.0343 3896 Spooler - ok
00:22:06.0375 3896 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
00:22:06.0531 3896 sr - ok
00:22:06.0578 3896 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
00:22:06.0734 3896 srservice - ok
00:22:06.0781 3896 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
00:22:06.0843 3896 Srv - ok
00:22:06.0875 3896 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
00:22:07.0031 3896 SSDPSRV - ok
00:22:07.0078 3896 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
00:22:07.0218 3896 stisvc - ok
00:22:07.0265 3896 [ A3DF1466AAFDC62B21765072C5EDAA9A ] SunkFilt C:\WINDOWS\System32\Drivers\sunkfilt.sys
00:22:07.0312 3896 SunkFilt ( UnsignedFile.Multi.Generic ) - warning
00:22:07.0312 3896 SunkFilt - detected UnsignedFile.Multi.Generic (1)
00:22:07.0328 3896 Sunkfiltp - ok
00:22:07.0375 3896 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
00:22:07.0531 3896 swenum - ok
00:22:07.0562 3896 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
00:22:07.0687 3896 swmidi - ok
00:22:07.0703 3896 SwPrv - ok
00:22:07.0718 3896 symc810 - ok
00:22:07.0734 3896 symc8xx - ok
00:22:07.0750 3896 sym_hi - ok
00:22:07.0765 3896 sym_u3 - ok
00:22:07.0796 3896 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
00:22:07.0937 3896 sysaudio - ok
00:22:07.0984 3896 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
00:22:08.0125 3896 SysmonLog - ok
00:22:08.0171 3896 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
00:22:08.0343 3896 TapiSrv - ok
00:22:08.0406 3896 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
00:22:08.0437 3896 Tcpip - ok
00:22:08.0484 3896 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
00:22:08.0671 3896 TDPIPE - ok
00:22:08.0703 3896 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
00:22:08.0859 3896 TDTCP - ok
00:22:08.0890 3896 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
00:22:09.0062 3896 TermDD - ok
00:22:09.0109 3896 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
00:22:09.0312 3896 TermService - ok
00:22:09.0343 3896 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
00:22:09.0375 3896 Themes - ok
00:22:09.0390 3896 TosIde - ok
00:22:09.0421 3896 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
00:22:09.0578 3896 TrkWks - ok
00:22:09.0609 3896 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
00:22:09.0750 3896 Udfs - ok
00:22:09.0765 3896 ultra - ok
00:22:09.0828 3896 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
00:22:10.0093 3896 Update - ok
00:22:10.0140 3896 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
00:22:10.0343 3896 upnphost - ok
00:22:10.0375 3896 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
00:22:10.0531 3896 UPS - ok
00:22:10.0593 3896 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
00:22:10.0734 3896 usbccgp - ok
00:22:10.0765 3896 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
00:22:10.0921 3896 usbehci - ok
00:22:10.0937 3896 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
00:22:11.0109 3896 usbhub - ok
00:22:11.0140 3896 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
00:22:11.0281 3896 usbohci - ok
00:22:11.0328 3896 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
00:22:11.0468 3896 USBSTOR - ok
00:22:11.0484 3896 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
00:22:11.0625 3896 usbuhci - ok
00:22:11.0671 3896 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
00:22:11.0812 3896 VgaSave - ok
00:22:11.0859 3896 [ 0E3E3FAE3A0A58B8D936A8E841A17D16 ] viaagp1 C:\WINDOWS\system32\DRIVERS\viaagp1.sys
00:22:11.0890 3896 viaagp1 - ok
00:22:11.0921 3896 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\System32\DRIVERS\viaide.sys
00:22:12.0062 3896 ViaIde - ok
00:22:12.0093 3896 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
00:22:12.0234 3896 VolSnap - ok
00:22:12.0375 3896 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
00:22:12.0500 3896 VSS - ok
00:22:12.0546 3896 [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time C:\WINDOWS\system32\w32time.dll
00:22:12.0687 3896 W32Time - ok
00:22:12.0734 3896 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
00:22:12.0875 3896 Wanarp - ok
00:22:12.0890 3896 WDICA - ok
00:22:12.0937 3896 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
00:22:13.0078 3896 wdmaud - ok
00:22:13.0125 3896 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
00:22:13.0265 3896 WebClient - ok
00:22:13.0359 3896 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
00:22:13.0500 3896 winmgmt - ok
00:22:13.0546 3896 [ C7E39EA41233E9F5B86C8DA3A9F1E4A8 ] WmdmPmSN C:\WINDOWS\System32\mspmsnsv.dll
00:22:13.0687 3896 WmdmPmSN - ok
00:22:13.0750 3896 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\System32\wbem\wmiapsrv.exe
00:22:13.0906 3896 WmiApSrv - ok
00:22:13.0953 3896 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
00:22:14.0187 3896 WS2IFSL - ok
00:22:14.0218 3896 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
00:22:14.0375 3896 wscsvc - ok
00:22:14.0406 3896 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
00:22:14.0546 3896 wuauserv - ok
00:22:14.0609 3896 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
00:22:14.0765 3896 WZCSVC - ok
00:22:14.0796 3896 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
00:22:14.0937 3896 xmlprov - ok
00:22:14.0984 3896 [ FD1F4E9CF06C71C8D73A24ACF18D8296 ] {6080A529-897E-4629-A488-ABA0C29B635E} C:\WINDOWS\system32\drivers\ialmsbw.sys
00:22:15.0031 3896 {6080A529-897E-4629-A488-ABA0C29B635E} - ok
00:22:15.0062 3896 [ D4D7331D33D1FA73E588E5CE0D90A4C1 ] {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} C:\WINDOWS\system32\drivers\ialmkchw.sys
00:22:15.0109 3896 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} - ok
00:22:15.0125 3896 ================ Scan global ===============================
00:22:15.0156 3896 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
00:22:15.0203 3896 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
00:22:15.0234 3896 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
00:22:15.0265 3896 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
00:22:15.0281 3896 [Global] - ok
00:22:15.0281 3896 ================ Scan MBR ==================================
00:22:15.0312 3896 [ B716B775FCBDABF0E2DDFF76F15C6790 ] \Device\Harddisk0\DR0
00:22:15.0640 3896 \Device\Harddisk0\DR0 - ok
00:22:15.0640 3896 ================ Scan VBR ==================================
00:22:15.0671 3896 [ 7A527582474762DC8B91AEA598FBA17B ] \Device\Harddisk0\DR0\Partition1
00:22:15.0671 3896 \Device\Harddisk0\DR0\Partition1 - ok
00:22:15.0703 3896 [ 65999491C4E5E0B506A4FAD468C419C5 ] \Device\Harddisk0\DR0\Partition2
00:22:15.0703 3896 \Device\Harddisk0\DR0\Partition2 - ok
00:22:15.0703 3896 ============================================================
00:22:15.0703 3896 Scan finished
00:22:15.0703 3896 ============================================================
00:22:15.0828 2236 Detected object count: 6
00:22:15.0828 2236 Actual detected object count: 6
00:30:36.0250 2236 aspnet_state ( UnsignedFile.Multi.Generic ) - skipped by user
00:30:36.0250 2236 aspnet_state ( UnsignedFile.Multi.Generic ) - User select action: Skip
00:30:36.0250 2236 omniserv ( UnsignedFile.Multi.Generic ) - skipped by user
00:30:36.0250 2236 omniserv ( UnsignedFile.Multi.Generic ) - User select action: Skip
00:30:36.0250 2236 PEVSystemStart ( UnsignedFile.Multi.Generic ) - skipped by user
00:30:36.0250 2236 PEVSystemStart ( UnsignedFile.Multi.Generic ) - User select action: Skip
00:30:36.0250 2236 pfc ( UnsignedFile.Multi.Generic ) - skipped by user
00:30:36.0250 2236 pfc ( UnsignedFile.Multi.Generic ) - User select action: Skip
00:30:36.0250 2236 PxHelp20 ( UnsignedFile.Multi.Generic ) - skipped by user
00:30:36.0250 2236 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Skip
00:30:36.0250 2236 SunkFilt ( UnsignedFile.Multi.Generic ) - skipped by user
00:30:36.0250 2236 SunkFilt ( UnsignedFile.Multi.Generic ) - User select action: Skip
00:35:26.0953 1792 Deinitialize success

Attached Thumbnails

#11
wharriss

Posted 24 January 2013 - 12:10 AM

Member

Topic Starter
Member
105 posts

Here is the Speccy report

Summary
Operating System
Microsoft Windows XP Home Edition 32-bit SP3
CPU
AMD Athlon XP
Barton 0.13um Technology
RAM
2.00 GB Dual-Channel DDR @ 166MHz (2.5-3-3-7)
Motherboard
ASUSTeK Computer INC. A7N8X-LA (Socket A) 43 °C
Graphics
SDM-HS93 (1024x768@60Hz)
64MB NVIDIA GeForce4 MX Integrated GPU (ASUStek Computer Inc)
Hard Drives
112GB SAMSUNG SV1203N (PATA) 37 °C
Optical Drives
LITE-ON DVDRW SHW-1635S
LITE-ON LTR-48247S
Audio
Realtek AC'97 Audio
Operating System
Microsoft Windows XP Home Edition 32-bit SP3
Computer type: Desktop
Installation Date : 1/21/2013 11:32:38 PM
Serial Number:
Windows Security Center
Firewall Enabled
Windows Update
AutoUpdate Download Automatically and Install at Set Scheduled time
Schedule Frequency Every Day
Schedule Time 3:00 AM
Antivirus
Antivirus Enabled
Company Name AVG Technologies
Display Name AVG Anti-Virus 2013
Product Version 2013.0
Virus Signature Database Up to date
.NET Frameworks installed
v1.1 SP1
Internet Explorer
Version 8.0.6001.18702
Java
Java Runtime Environment
Path C:\Program Files\Java\j2re1.4.1_02\bin\java.exe
Version 4.1
Update 2
Build 06
Environment Variables
USERPROFILE C:\Documents and Settings\Owner
SystemRoot C:\WINDOWS
User Variables
TEMP C:\Documents and Settings\Owner\Local Settings\Temp
TMP C:\Documents and Settings\Owner\Local Settings\Temp
Machine Variables
ComSpec C:\WINDOWS\system32\cmd.exe
Path C:\WINDOWS\system32
C:\WINDOWS
C:\WINDOWS\system32\wbem
c:\Python22
C:\Program Files\PC-Doctor for Windows\services
windir C:\WINDOWS
OS Windows_NT
PROCESSOR_ARCHITECTURE x86
PROCESSOR_LEVEL 6
PROCESSOR_IDENTIFIER x86 Family 6 Model 10 Stepping 0, AuthenticAMD
PROCESSOR_REVISION 0a00
NUMBER_OF_PROCESSORS 1
PATHEXT .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
TEMP C:\WINDOWS\TEMP
TMP C:\WINDOWS\TEMP
FP_NO_HOST_CHECK NO
Power Profile
Active power scheme Energy Star
Hibernation Enabled
Turn Off Monitor after: (On AC Power) Never
Turn Off Hard Disk after: (On AC Power) Never
Suspend after: (On AC Power) 15 min
Screen saver Enabled
Uptime
Current Session
Current Time 1/24/2013 1:01:42 AM
Current Uptime 7,708 sec (0 d, 02 h, 08 m, 28 s)
Last Boot Time 1/23/2013 10:53:14 PM
TimeZone
TimeZone GMT -5:00 Hours
Language English (United States)
Location United States
Format English (United States)
Currency $
Date Format M/d/yyyy
Time Format h:mm:ss tt
Process List
alcxmntr.exe
Process ID 4088
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\WINDOWS\ALCXMNTR.EXE
Memory Usage 3.85 MB
Peak Memory Usage 3.85 MB
alg.exe
Process ID 3872
Path C:\WINDOWS\System32\alg.exe
Memory Usage 3.15 MB
Peak Memory Usage 3.16 MB
avgcsrvx.exe
Process ID 748
avgcsrvx.exe
Process ID 2908
avgemcx.exe
Process ID 2752
avgidsagent.exe
Process ID 1880
avgnsx.exe
Process ID 2652
avgrsx.exe
Process ID 704
avgui.exe
Process ID 4016
avgwdsvc.exe
Process ID 1912
csrss.exe
Process ID 956
User SYSTEM
Domain NT AUTHORITY
Path \??\C:\WINDOWS\system32\csrss.exe
Memory Usage 4.08 MB
Peak Memory Usage 4.51 MB
ctfmon.exe
Process ID 4012
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\WINDOWS\system32\ctfmon.exe
Memory Usage 4.25 MB
Peak Memory Usage 4.27 MB
explorer.exe
Process ID 2080
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\WINDOWS\Explorer.EXE
Memory Usage 31 MB
Peak Memory Usage 66 MB
firefox.exe
Process ID 3440
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\Program Files\Mozilla Firefox\firefox.exe
Memory Usage 258MB
Peak Memory Usage 292MB
hphmon05.exe
Process ID 2464
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\WINDOWS\System32\hphmon05.exe
Memory Usage 3.90 MB
Peak Memory Usage 3.95 MB
hpqcmon.exe
Process ID 2044
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\Program Files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe
Memory Usage 4.56 MB
Peak Memory Usage 4.56 MB
hpqtra08.exe
Process ID 2836
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
Memory Usage 4.79 MB
Peak Memory Usage 4.79 MB
hpsysdrv.exe
Process ID 3988
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\windows\system\hpsysdrv.exe
Memory Usage 2.88 MB
Peak Memory Usage 2.88 MB
hpwuschd.exe
Process ID 1340
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\Program Files\HP\HP Software Update\HPWuSchd.exe
Memory Usage 2.77 MB
Peak Memory Usage 2.77 MB
kbd.exe
Process ID 2576
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\HP\KBD\KBD.EXE
Memory Usage 7.47 MB
Peak Memory Usage 7.47 MB
lsass.exe
Process ID 1060
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\system32\lsass.exe
Memory Usage 1.77 MB
Peak Memory Usage 6.43 MB
mbamgui.exe
Process ID 1552
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
Memory Usage 7.26 MB
Peak Memory Usage 7.27 MB
mbamscheduler.exe
Process ID 1964
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
Memory Usage 5.70 MB
Peak Memory Usage 5.70 MB
mbamservice.exe
Process ID 2036
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
Memory Usage 99 MB
Peak Memory Usage 174MB
msmsgs.exe
Process ID 3124
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\Program Files\Messenger\msmsgs.exe
Memory Usage 3.92 MB
Peak Memory Usage 5.70 MB
nvsvc32.exe
Process ID 328
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\System32\nvsvc32.exe
Memory Usage 2.31 MB
Peak Memory Usage 3.32 MB
omniserv.exe
Process ID 392
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Softex\OmniPass\Omniserv.exe
Memory Usage 1.58 MB
Peak Memory Usage 1.58 MB
opxpapp.exe
Process ID 496
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Softex\OmniPass\OPXPApp.exe
Memory Usage 2.52 MB
Peak Memory Usage 4.31 MB
plugin-container.exe
Process ID 3828
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\Program Files\Mozilla Firefox\plugin-container.exe
Memory Usage 45 MB
Peak Memory Usage 58 MB
rundll32.exe
Process ID 2808
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\WINDOWS\system32\rundll32.exe
Memory Usage 4.80 MB
Peak Memory Usage 7.21 MB
sascore.exe
Process ID 1868
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
Memory Usage 2.11 MB
Peak Memory Usage 2.11 MB
services.exe
Process ID 1024
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\system32\services.exe
Memory Usage 4.22 MB
Peak Memory Usage 4.30 MB
shwicon2k.exe
Process ID 3576
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\Program Files\Multimedia Card Reader\shwicon2k.exe
Memory Usage 3.22 MB
Peak Memory Usage 3.22 MB
smss.exe
Process ID 648
User SYSTEM
Domain NT AUTHORITY
Path \SystemRoot\System32\smss.exe
Memory Usage 420KB
Peak Memory Usage 504KB
spamsubtract.exe
Process ID 3968
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\Program Files\interMute\SpamSubtract\SpamSubtract.exe
Memory Usage 3.61 MB
Peak Memory Usage 3.62 MB
speccy.exe
Process ID 2476
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\Program Files\Speccy\Speccy.exe
Memory Usage 35 MB
Peak Memory Usage 35 MB
spoolsv.exe
Process ID 1720
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\system32\spoolsv.exe
Memory Usage 4.69 MB
Peak Memory Usage 4.71 MB
superantispyware.exe
Process ID 2932
User Owner
Domain YOUR-XHTR8HVC4P
Path C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Memory Usage 40 MB
Peak Memory Usage 68 MB
svchost.exe
Process ID 1836
Path C:\WINDOWS\System32\svchost.exe
Memory Usage 3.80 MB
Peak Memory Usage 3.81 MB
svchost.exe
Process ID 1600
Path C:\WINDOWS\system32\svchost.exe
Memory Usage 4.08 MB
Peak Memory Usage 4.24 MB
svchost.exe
Process ID 1364
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\System32\svchost.exe
Memory Usage 25 MB
Peak Memory Usage 26 MB
svchost.exe
Process ID 1264
Path C:\WINDOWS\system32\svchost.exe
Memory Usage 4.66 MB
Peak Memory Usage 4.66 MB
svchost.exe
Process ID 1196
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\system32\svchost.exe
Memory Usage 4.72 MB
Peak Memory Usage 4.77 MB
svchost.exe
Process ID 156
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\System32\svchost.exe
Memory Usage 4.15 MB
Peak Memory Usage 4.21 MB
svchost.exe
Process ID 1464
Path C:\WINDOWS\System32\svchost.exe
Memory Usage 4.12 MB
Peak Memory Usage 4.16 MB
system
Process ID 4
Memory Usage 368KB
Peak Memory Usage 132MB
system idle process
Process ID 0
winlogon.exe
Process ID 980
User SYSTEM
Domain NT AUTHORITY
Path \??\C:\WINDOWS\system32\winlogon.exe
Memory Usage 4.27 MB
Peak Memory Usage 12 MB
wmiprvse.exe
Process ID 3648
Path C:\WINDOWS\system32\wbem\wmiprvse.exe
Memory Usage 8.15 MB
Peak Memory Usage 8.24 MB
wmiprvse.exe
Process ID 1152
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\system32\wbem\wmiprvse.exe
Memory Usage 4.91 MB
Peak Memory Usage 4.92 MB
Scheduler
1/24/2013 2:00 AM;At 2:00 AM every Mon, Tue, Wed, Thu, Fri, Sat, Sun of every week, starting 1/22/2013 SUPERAntiSpyware Scheduled Task d5461f6d-cebd-4812-b517-c079b1b30ec8
1/24/2013 7:25 AM;Every 8 hour(s) from 11:25 PM for 1439 minutes every day, starting 1/22/2013 SUPERAntiSpyware Scheduled Task 0e3eb492-cbf8-45c6-b942-0acf4ac16323
Hotfixes
1/23/2013 Update for Windows XP (KB2345886)
Install this update to help strengthen authentication credentials
in specific scenarios. After you install this item, you may have
to restart your computer.
1/23/2013 Update for Windows XP (KB970430)
Install this update to help strengthen authentication credentials
in specific scenarios. After you install this item, you may have
to restart your computer.
1/23/2013 Security Update for Microsoft .NET Framework 1.1 SP1 on Windows XP, Windows Vista, and Windows Server 2008 x86 (KB2742597)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/23/2013 Security Update for Windows XP (KB2510531)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/23/2013 Update for Microsoft XML Core Services 4.0 Service Pack 2 (KB973688)
Install this update to prevent applications from sending too
many HTTP requests while a well-known Document Type Definition
(DTD) is included. After you install this item, you may have
to restart your computer. Once you have installed this item,
it cannot be removed.
1/23/2013 Security Update for Internet Explorer 8 for Windows XP (KB2544521)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Internet Explorer 8 Dynamic Installer for Windows XP (KB2799329)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
1/22/2013 Cumulative Security Update for Internet Explorer 8 Dynamic Installer for Windows XP (KB2761465)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
1/22/2013 Cumulative Security Update for Internet Explorer 8 Dynamic Installer for Windows XP (KB2744842)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
1/22/2013 Cumulative Security Update for Internet Explorer 8 Dynamic Installer for Windows XP (KB2618444)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
1/22/2013 Update for Internet Explorer 8 Dynamic Installer Compatibility View List for Windows XP (KB2598845)
This Compatibility View List update helps make Web sites that
are designed for older browsers look better in Internet Explorer
8. When users install Internet Explorer 8, they will be given
a choice about opting-in to a list of sites that should be displayed
in Compatibility View. After you install this item, you may have
to restart Internet Explorer.
1/22/2013 Cumulative Security Update for Internet Explorer 8 Dynamic Installer for Windows XP (KB982381)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
1/22/2013 Security Update for Windows XP (KB951376)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your Microsoft Windows-based system
and gain control over it. You can help protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer.
1/22/2013 Security Update for Windows XP (KB952954)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your Microsoft Windows-based system
and gain control over it. You can help protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer.
1/22/2013 Security Update for Windows XP (KB959426)
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Internet Explorer 8 for Windows XP
Internet Explorer 8 is the latest version of the familiar Web
browser that you are most comfortable using. Internet Explorer
8 helps you get everything that you want from the Web faster,
easier, and more privately and securely than ever. After you
install this item, you may have to restart your computer.
1/22/2013 Security Update for Windows XP (KB946648)
A security issue has been identified that could allow an unauthenticated,
remote attacker to compromise a system that is running Windows
Messenger and gain access to information. You can help protect
your computer by installing this update from Microsoft. After
you install this item, you may have to restart your computer.
1/22/2013 Security Update for Windows XP (KB2387149)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2712808)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB960859)
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2479943)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2659262)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2564958)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2478971)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2758857)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2544893)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain access to
information. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system.
1/22/2013 Security Update for Windows XP (KB2491683)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2536276)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2646524)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2779030)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2585542)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain access to
information. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system.
1/22/2013 Security Update for Windows (KB923723)
A security issue has been identified in the Step-by-Step Interactive
Training application that could allow an attacker to compromise
your Windows-based system and gain control over it. You can help
protect your computer by installing this update from Microsoft.
After you install this item, you may have to restart your computer.
1/22/2013 Security Update for Windows XP (KB2631813)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2296011)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2691442)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2115168)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB975558)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Update for Windows XP (KB955759)
An issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Update for Windows XP (KB2779562)
Install this update to resolve issues caused by revised daylight
saving time and time zone laws in several countries. This update
enables your computer to automatically adjust the computer clock
on the correct date in 2012. After you install this item, you
may have to restart your computer.
1/22/2013 Security Update for Windows XP (KB2378111)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB974318)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Update for Windows XP (KB951978)
Install this update to resolve an issue in VBScript/JScript scripts
from CScript\WScript hosts, certain built-ins may not function
correctly when Standards and Formats in Regional Settings is
changed. After you install this item, you may have to restart
your computer.
1/22/2013 Security Update for Windows XP (KB969059)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2443105)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2655992)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain access to
information. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system.
1/22/2013 Security Update for Windows XP (KB2724197)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain access to information.
You can help protect your system by installing this update from
Microsoft. After you install this update, you may have to restart
your system.
1/22/2013 Security Update for Windows XP (KB2229593)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB950974)
A security issue has been identified in Event System on Microsoft
Windows based systems that could allow an attacker to compromise
your Microsoft Windows-based system and gain control over it.
You can help protect your computer by installing this update
from Microsoft. After you install this item, you may have to
restart your computer.
1/22/2013 Security Update for Windows XP (KB2481109)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB975713)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2485663)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2598479)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2440591)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 HP Memories Disc Creator - Software Update
HP Memories Disc Creator - Software Update
1/22/2013 Update Rollup for ActiveX Killbits for Windows XP (KB2736233)
Security issues have been identified in ActiveX controls that
could allow an attacker to compromise a system running Microsoft
Internet Explorer and gain control over it. You can help protect
your system by installing this update from Microsoft. After you
install this item, you may have to restart your computer.
1/22/2013 Security Update for Internet Explorer 6 for Windows XP (KB2799329)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
1/22/2013 Security Update for Windows XP (KB2686509)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB982132)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB971657)
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Update for Windows XP and Windows Server 2003 (KB2798897)
Install this update to resolve an issue which requires an update
to the untrusted certificate store on Windows systems and to
keep your systems up to date. After you install this update,
you may have to restart your system.
1/22/2013 Security Update for Windows XP (KB978338)
A security issue has been identified that could allow an attacker
to misrepresent a system action or behavior without the knowledge
of the user. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system.
1/22/2013 Security Update for Windows Media Format Runtime 9, 9.5 & 11 for Windows XP SP 3 (KB954155)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2507938)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB972270)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2510581)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB956744)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2476490)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB974112)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB956572)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2347290)
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB956844)
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2483185)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2624667)
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB979687)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB973869)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB975025)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2719985)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB952004)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB974571)
A security issue has been identified that could allow an attacker
to misrepresent a system action or behavior without the knowledge
of the user. You can help protect your system by installing this
update from Microsoft. After you install this update, you may
have to restart your system.
1/22/2013 Security Update for Windows XP (KB2592799)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB975560)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2753842)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB973507)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2770660)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Cumulative Security Update for Internet Explorer 6 for Windows XP (KB2761465)
Security issues have been identified that could allow an attacker
to compromise a system that is running Microsoft Internet Explorer
and gain control over it. You can help protect your system by
installing this update from Microsoft. After you install this
item, you may have to restart your computer.
1/22/2013 Security Update for Windows XP (KB2535512)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB977816)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB950762)
A security issue has been identified that could allow an unauthenticated,
remote attacker to cause the affected system to stop responding.
You can help protect your computer by installing this update
from Microsoft. After you install this item, you may have to
restart your computer.
1/22/2013 Security Update for Windows XP (KB2570947)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB981322)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Update for Windows XP (KB952287)
Install this update to resolve an issue in which a malfunction
or data loss occurs when using Microsoft Data Access Components
(MDAC) components on computers that are running Windows XP SP2
or XP SP3. After you install this item, you may have to restart
your computer.
1/22/2013 Security Update for Windows Media Format Runtime 9, 9.5 & 11 for Windows XP SP3 (KB978695)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2603381)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB973904)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2757638)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP Service Pack 3 (KB973540)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2419632)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2508429)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2653956)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB974392)
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Update for Windows XP (KB2749655)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
1/22/2013 Update for Windows XP (KB971029)
Install this update to restrict AutoRun entries in the AutoPlay
dialog to only CD and DVD drives. After you install this item,
you may have to restart your computer.
1/22/2013 Security Update for Windows XP (KB2506212)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP Service Pack 3 (KB952069)
A security issue has been identified that could allow an authenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB977914)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2698365)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Realtek AC'97 Audio
Update for Realtek AC'97 Audio
1/22/2013 Security Update for Windows XP (KB2619339)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2705219)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB978542)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB979309)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2727528)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB979482)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB978706)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB981997)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2723135)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB960803)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB973815)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Microsoft .NET Framework 1.1 Service Pack 1
Microsoft .NET Framework 1.1 Service Pack 1 resolves various
issues found after the initial release of .NET Framework 1.1.
These include both security- and non-security-related issues.
After you install this item, you may have to restart your computer.
Once you have installed this item, it cannot be removed.
1/22/2013 Cumulative Security Update for ActiveX Killbits for Windows XP (KB2618451)
Security issues have been identified in ActiveX controls that
could allow an attacker to compromise a system running Microsoft
Internet Explorer and gain control over it. You can help protect
your system by installing this update from Microsoft. After you
install this item, you may have to restart your computer.
1/22/2013 Update for Windows XP (KB2661254)
Install this update to keep your system up to date by increasing
the minimum level of encryption on Windows systems. After you
install this item, you may have to restart your system.
1/22/2013 Security Update for Windows XP (KB956802)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2509553)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2676562)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Windows Malicious Software Removal Tool - January 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
1/22/2013 Security Update for Microsoft XML Core Services 4.0 Service Pack 2 (KB954430)
A security issue has been identified in Microsoft XML Core Services
(MSXML) that could allow an attacker to compromise your Windows-based
system and gain control over it. You can help protect your computer
by installing this update from Microsoft. After you install this
item, you may have to restart your computer. Once you have installed
this item, it cannot be removed.
1/22/2013 Security Update for Windows XP (KB982665)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Internet Explorer 6 for Windows XP (KB2544521)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2478960)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2393802)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB923561)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2620712)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2566454)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2661637)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2584146)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Update for Windows XP (KB968389)
Install this update to help strengthen authentication credentials
in specific scenarios. After you install this item, you may have
to restart your computer.
1/22/2013 Security Update for Windows XP (KB2423089)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2360937)
A security issue has been identified that could allow an authenticated
local attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows XP (KB2719985)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Security Update for Windows Media Format Runtime 9, 9.5 & 11 for Windows XP SP3 (KB978695)
A security issue has been identified that could allow an unauthenticated
remote attacker to compromise your system and gain control over
it. You can help protect your system by installing this update
from Microsoft. After you install this update, you may have to
restart your system.
1/22/2013 Update for Windows XP (KB898461)
This update installs a permanent copy of Package Installer for
Windows to enable software updates to have a significantly smaller
download size. The Package Installer facilitates the install
of software updates for Microsoft Windows operating systems and
other Microsoft products. After you install this update, you
may have to restart your system.
System Folders
Path for burning CD C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\CD Burning
Application Data C:\Documents and Settings\All Users\Application Data
Public Desktop C:\Documents and Settings\All Users\Desktop
Documents C:\Documents and Settings\All Users\Documents
Global Favorites C:\Documents and Settings\All Users\Favorites
Music C:\Documents and Settings\All Users\Documents\My Music
Pictures C:\Documents and Settings\All Users\Documents\My Pictures
Start Menu Programs C:\Documents and Settings\All Users\Start Menu\Programs
Start Menu C:\Documents and Settings\All Users\Start Menu
Startup C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Templates C:\Documents and Settings\All Users\Templates
Videos C:\Documents and Settings\All Users\Documents\My Videos
Cookies C:\Documents and Settings\Owner\Cookies
Desktop C:\Documents and Settings\Owner\Desktop
Physical Desktop C:\Documents and Settings\Owner\Desktop
User Favorites C:\Documents and Settings\Owner\Favorites
Fonts C:\WINDOWS\Fonts
Internet History C:\Documents and Settings\Owner\Local Settings\History
Temporary Internet Files C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files
Local Application Data C:\Documents and Settings\Owner\Local Settings\Application Data
Windows Directory C:\WINDOWS
Windows/System C:\WINDOWS\system32
Program Files C:\Program Files
Services
Running Application Layer Gateway Service
Running Automatic Updates
Running AVG WatchDog
Running AVGIDSAgent
Running COM+ Event System
Running CryptSvc
Running DCOM Server Process Launcher
Running DHCP Client
Running Distributed Link Tracking Client
Running DNS Client
Running Error Reporting Service
Running Event Log
Running Fast User Switching Compatibility
Running Help and Support
Running HID Input Service
Running IPSEC Services
Running MBAMScheduler
Running MBAMService
Running Network Connections
Running Network Location Awareness (NLA)
Running NVIDIA Driver Helper Service
Running Plug and Play
Running Print Spooler
Running Protected Storage
Running Remote Access Connection Manager
Running Remote Procedure Call (RPC)
Running SAS Core Service
Running Secondary Logon
Running Security Accounts Manager
Running Security Center
Running Server
Running Shell Hardware Detection
Running Softex OmniPass Service
Running SSDP Discovery Service
Running System Event Notification
Running System Restore Service
Running Task Scheduler
Running TCP/IP NetBIOS Helper
Running Telephony
Running Terminal Services
Running Themes
Running WebClient
Running Windows Audio
Running Windows Firewall/Internet Connection Sharing (ICS)
Running Windows Image Acquisition (WIA)
Running Windows Management Instrumentation
Running Windows Time
Running Wireless Zero Configuration
Running Workstation
Stopped Alerter
Stopped Application Management
Stopped ASP.NET State Service
Stopped BITS
Stopped ClipBook
Stopped COM+ System Application
Stopped Computer Browser
Stopped Distributed Transaction Coordinator
Stopped Extensible Authentication Protocol Service
Stopped Fax
Stopped Health Key and Certificate Management Service
Stopped HTTP SSL
Stopped IMAPI CD-Burning COM Service
Stopped Indexing Service
Stopped Logical Disk Manager
Stopped Logical Disk Manager Administrative Service
Stopped Messenger
Stopped Mozilla Maintenance Service
Stopped MS Software Shadow Copy Provider
Stopped Net Logon
Stopped NetMeeting Remote Desktop Sharing
Stopped Network Access Protection Agent
Stopped Network DDE
Stopped Network DDE DSDM
Stopped Network Provisioning Service
Stopped NT LM Security Support Provider
Stopped Performance Logs and Alerts
Stopped PEVSystemStart
Stopped Portable Media Serial Number Service
Stopped QoS RSVP
Stopped Remote Access Auto Connection Manager
Stopped Remote Desktop Help Session Manager
Stopped Remote Procedure Call (RPC) Locator
Stopped Removable Storage
Stopped Routing and Remote Access
Stopped Smart Card
Stopped Uninterruptible Power Supply
Stopped Universal Plug and Play Device Host
Stopped Volume Shadow Copy
Stopped Windows Installer
Stopped Wired AutoConfig
Stopped WMI Performance Adapter
Security Options
@wsecedit.dll,-432 Enabled
@wsecedit.dll,-433 Disabled
@wsecedit.dll,-63 Disabled
@wsecedit.dll,-65 Administrator
@wsecedit.dll,-67 Guest
Accounts: Limit local account use of blank passwords to console logon only Disabled
Audit: Audit the access of global system objects Disabled
Audit: Audit the use of Backup and Restore privilege Disabled
Audit: Shut down system immediately if unable to log security audits Disabled
DCOM: Machine Access Restrictions in Security Descriptor Definition Language (SDDL) syntax Undefined
DCOM: Machine Launch Restrictions in Security Descriptor Definition Language (SDDL) syntax Undefined
Devices: Allow undock without having to log on Enabled
Devices: Allowed to format and eject removable media Administrators
Devices: Prevent users from installing printer drivers Disabled
Devices: Restrict CD-ROM access to locally logged-on user only Disabled
Devices: Restrict floppy access to locally logged-on user only Disabled
Devices: Unsigned driver installation behavior Warn but allow installation
Domain controller: Allow server operators to schedule tasks Undefined
Domain controller: LDAP server signing requirements Undefined
Domain controller: Refuse machine account password changes Undefined
Domain member: Digitally encrypt or sign secure channel data (always) Enabled
Domain member: Digitally encrypt secure channel data (when possible) Enabled
Domain member: Digitally sign secure channel data (when possible) Enabled
Domain member: Disable machine account password changes Disabled
Domain member: Maximum machine account password age 30 days
Domain member: Require strong (Windows 2000 or later) session key Disabled
Interactive logon: Display user information when the session is locked Undefined
Interactive logon: Do not display last user name Disabled
Interactive logon: Do not require CTRL+ALT+DEL Undefined
Interactive logon: Message text for users attempting to log on
Interactive logon: Message title for users attempting to log on
Interactive logon: Number of previous logons to cache (in case domain controller is not available) 10 logons
Interactive logon: Prompt user to change password before expiration 14 days
Interactive logon: Require Domain Controller authentication to unlock workstation Disabled
Interactive logon: Require smart card Undefined
Interactive logon: Smart card removal behavior No Action
Microsoft network client: Digitally sign communications (always) Disabled
Microsoft network client: Digitally sign communications (if server agrees) Enabled
Microsoft network client: Send unencrypted password to third-party SMB servers Disabled
Microsoft network server: Amount of idle time required before suspending session 15 minutes
Microsoft network server: Digitally sign communications (always) Disabled
Microsoft network server: Digitally sign communications (if client agrees) Disabled
Microsoft network server: Disconnect clients when logon hours expire Enabled
Network access: Do not allow anonymous enumeration of SAM accounts Enabled
Network access: Do not allow anonymous enumeration of SAM accounts and shares Disabled
Network access: Do not allow storage of credentials or .NET Passports for network authentication Disabled
Network access: Let Everyone permissions apply to anonymous users Disabled
Network access: Named Pipes that can be accessed anonymously COMNAP,COMNODE,SQL\QUERY,SPOOLSS,LLSRPC,browser
Network access: Remotely accessible registry paths System\CurrentControlSet\Control\ProductOptions,System\CurrentControlSet\Control\Print\Printers,System\CurrentControlSet\Control\Server Applications,System\CurrentControlSet\Services\Eventlog,Software\Microsoft\OLAP Server,Software\Microsoft\Windows NT\CurrentVersion,System\CurrentControlSet\Control\ContentIndex,System\CurrentControlSet\Control\Terminal Server,System\CurrentControlSet\Control\Terminal Server\UserConfig,System\CurrentControlSet\Control\Terminal Server\DefaultUserConfiguration
Network access: Shares that can be accessed anonymously COMCFG,DFS$
Network access: Sharing and security model for local accounts Classic - local users authenticate as themselves
Network security: Do not store LAN Manager hash value on next password change Disabled
Network security: LAN Manager authentication level Send LM & NTLM responses
Network security: LDAP client signing requirements Negotiate signing
Network security: Minimum session security for NTLM SSP based (including secure RPC) clients No minimum
Network security: Minimum session security for NTLM SSP based (including secure RPC) servers No minimum
Recovery console: Allow automatic administrative logon Enabled
Recovery console: Allow floppy copy and access to all drives and all folders Enabled
Shutdown: Allow system to be shut down without having to log on Enabled
Shutdown: Clear virtual memory pagefile Disabled
System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing Disabled
System objects: Default owner for objects created by members of the Administrators group Object creator
System objects: Require case insensitivity for non-Windows subsystems Enabled
System objects: Strengthen default permissions of internal system objects (e.g. Symbolic Links) Enabled
Device Tree
ACPI Uniprocessor PC
Microsoft ACPI-Compliant System
AMD Athlon XP 2800+
System board
ACPI Power Button
ACPI Fixed Feature Button
PCI bus
PCI standard host CPU bridge
NVIDIA nForce2 Memory Controller
NVIDIA nForce2 Memory Controller
NVIDIA nForce2 Memory Controller
NVIDIA nForce2 Memory Controller
NVIDIA nForce2 Memory Controller
NVIDIA nForce PCI System Management
NVIDIA nForce MCP Networking Controller
Realtek AC'97 Audio
PCI standard ISA bridge
ISAPNP Read Data Port
Programmable interrupt controller
Direct memory access controller
System timer
System CMOS/real time clock
System speaker
Numeric data processor
Motherboard resources
Motherboard resources
Logitech PS/2 Port Mouse
Motherboard resources
Communications Port (COM1)
Standard floppy disk controller
Floppy disk drive
ECP Printer Port (LPT1)
Printer Port Logical Interface
Standard OpenHCD USB Host Controller
USB Root Hub
USB Mass Storage Device
Generic USB SD Reader USB Device
Generic volume
Generic USB CF Reader USB Device
Generic volume
Generic USB SM Reader USB Device
Generic volume
Generic USB MS Reader USB Device
Generic volume
Standard OpenHCD USB Host Controller
USB Root Hub
USB Composite Device
USB Human Interface Device
HID Keyboard Device
USB Human Interface Device
HID-compliant consumer control device
Standard Enhanced PCI to USB Host Controller
USB Root Hub
PCI standard PCI-to-PCI bridge
Lucent Win Modem
Standard Dual Channel PCI IDE Controller
Primary IDE Channel
SAMSUNG SV1203N
Secondary IDE Channel
LITE-ON DVDRW SHW-1635S
LITE-ON LTR-48247S
OHCI Compliant IEEE 1394 Host Controller
1394 Net Adapter
NVIDIA nForce2 AGP Host to PCI Bridge
NVIDIA GeForce4 MX Integrated GPU
Plug and Play Monitor
CPU
AMD Athlon XP
Cores 1
Threads 1
Name AMD Athlon XP
Code Name Barton
Package Socket A (462)
Technology 0.13um
Specification AMD Athlon XP 2800+
Family 6
Extended Family 7
Model A
Extended Model A
Stepping 0
Instructions MMX (+), 3DNow! (+), SSE
Virtualization Not supported
Hyperthreading Not supported
Fan Speed 2393 RPM
Bus Speed 166.4 MHz
Rated Bus Speed 332.8 MHz
Caches
L1 Data Cache Size 64 KBytes
L1 Instructions Cache Size 64 KBytes
L2 Unified Cache Size 512 KBytes
Core 0
Core Speed 2079.7 MHz
Multiplier x 12.5
Bus Speed 166.4 MHz
Rated Bus Speed 332.8 MHz
Thread 1
APIC ID 0
RAM
Memory slots
Total memory slots 2
Used memory slots 2
Free memory slots 0
Memory
Type DDR
Size 1536 MBytes
Channels # Dual
DRAM Frequency 166.4 MHz
CAS# Latency (CL) 2.5 clocks
RAS# to CAS# Delay (tRCD) 3 clocks
RAS# Precharge (tRP) 3 clocks
Cycle Time (tRAS) 7 clocks
Physical Memory
Memory Usage 62 %
Total Physical 1.44 GB
Available Physical 557MB
Total Virtual 3.29 GB
Available Virtual 2.32 GB
SPD
Number Of SPD Modules 2
Slot #1
Type DDR
Size 512 MBytes
Manufacturer SpecTek Incorporated
Max Bandwidth PC2700 (166 MHz)
Serial Number 1200DFD6
Week/year 34 / 03
SPD Ext. EPP
JEDEC #2
Frequency 166.7 MHz
CAS# Latency 2.5
RAS# To CAS# 4
RAS# Precharge 4
tRAS 8
Voltage 2.500 V
JEDEC #1
Frequency 100.0 MHz
CAS# Latency 2.0
RAS# To CAS# 2
RAS# Precharge 2
tRAS 5
Voltage 2.500 V
Slot #2
Type DDR
Size 1024 MBytes
Manufacturer Crucial Technology
Max Bandwidth PC2700 (166 MHz)
Part Number CT12864Z335.M16TFY
Week/year 37 / 09
SPD Ext. EPP
JEDEC #2
Frequency 166.7 MHz
CAS# Latency 2.5
RAS# To CAS# 4
RAS# Precharge 4
tRAS 8
Voltage 2.500 V
JEDEC #1
Frequency 133.3 MHz
CAS# Latency 2.0
RAS# To CAS# 3
RAS# Precharge 3
tRAS 6
Voltage 2.500 V
Motherboard
Manufacturer ASUSTeK Computer INC.
Model A7N8X-LA (Socket A)
Version 0n81211RE101EXPLO10
Chipset Vendor NVIDIA
Chipset Model nForce2 IGP
Chipset Revision A2
Southbridge Vendor NVIDIA
Southbridge Model nForce2 MCP
Southbridge Revision A4
System Temperature 43 °C
BIOS
Brand American Megatrends Inc.
Version 3.13
Date 8/13/2003
PCI Data
Slot UNKNOWN
Slot Type UNKNOWN
Slot Usage Available
Bus Width 32 bit
Slot Designation AGP
Slot Number 0
Slot PCI
Slot Type PCI
Slot Usage Available
Bus Width 32 bit
Slot Designation PCI1
Slot Number 1
Slot PCI
Slot Type PCI
Slot Usage Available
Bus Width 32 bit
Slot Designation PCI2
Slot Number 2
Slot PCI
Slot Type PCI
Slot Usage In Use
Bus Width 32 bit
Slot Designation PCI3
Slot Number 3
Graphics
Monitor
Name SDM-HS93 on NVIDIA GeForce4 MX Integrated GPU
Current Resolution 1024x768 pixels
Work Resolution 1024x734 pixels
State enabled, primary, output devices support
Monitor Width 1024
Monitor Height 768
Monitor BPP 32 bits per pixel
Monitor Frequency 60 Hz
Device \\.\DISPLAY1\Monitor0
NVIDIA GeForce4 MX Integrated GPU
GPU Crush17
Device ID 10DE-01F0
Revision A4
Subvendor ASUStek Computer Inc (1043)
Current Performance Level Level 1
Technology 151 nm
Transistors 29 M
DirectX Support 7.0
OpenGL Support 1.2
GPU Clock 199 MHz
Memory Clock 334 MHz
Driver version 4.4.0.3
BIOS Version 4.1F.00.07.10
ROPs 2
Shaders Vertex 0/Pixel 0
Memory Type System
Memory 64 MB
Pixel Fillrate 0.4 GPixels/s
Texture Fillrate 0.8 GTexels/s
Count of performance levels : 1
Level 1
OpenGL
Version 1.4.0
Vendor NVIDIA Corporation
Renderer GeForce4 MX Integrated GPU/AGP/SSE/3DNOW!
GLU Version 1.2.2.0 Microsoft Corporation
Values
GL_MAX_LIGHTS 8
GL_MAX_TEXTURE_SIZE 2048
GL_MAX_TEXTURE_STACK_DEPTH 10
GL Extensions
GL_ARB_imaging
GL_ARB_multitexture
GL_ARB_point_parameters
GL_ARB_texture_compression
GL_ARB_texture_cube_map
GL_ARB_texture_env_add
GL_ARB_texture_env_combine
GL_ARB_texture_env_dot3
GL_ARB_texture_mirrored_repeat
GL_ARB_transpose_matrix
GL_ARB_vertex_buffer_object
GL_ARB_vertex_program
GL_ARB_window_pos
GL_S3_s3tc
GL_EXT_abgr
GL_EXT_bgra
GL_EXT_blend_color
GL_EXT_blend_minmax
GL_EXT_blend_subtract
GL_EXT_clip_volume_hint
GL_EXT_compiled_vertex_array
GL_EXT_draw_range_elements
GL_EXT_fog_coord
GL_EXT_multi_draw_arrays
GL_EXT_packed_pixels
GL_EXT_paletted_texture
GL_EXT_point_parameters
GL_EXT_rescale_normal
GL_EXT_secondary_color
GL_EXT_separate_specular_color
GL_EXT_shared_texture_palette
GL_EXT_stencil_wrap
GL_EXT_texture_compression_s3tc
GL_EXT_texture_cube_map
GL_EXT_texture_edge_clamp
GL_EXT_texture_env_add
GL_EXT_texture_env_combine
GL_EXT_texture_env_dot3
GL_EXT_texture_filter_anisotropic
GL_EXT_texture_lod
GL_EXT_texture_lod_bias
GL_EXT_texture_object
GL_EXT_vertex_array
GL_IBM_texture_mirrored_repeat
GL_KTX_buffer_region
GL_NV_blend_square
GL_NV_fence
GL_NV_fog_distance
GL_NV_light_max_exponent
GL_NV_packed_depth_stencil
GL_NV_pixel_data_range
GL_NV_point_sprite
GL_NV_register_combiners
GL_NV_texgen_reflection
GL_NV_texture_env_combine4
GL_NV_texture_rectangle
GL_NV_vertex_array_range
GL_NV_vertex_array_range2
GL_NV_vertex_program
GL_NV_vertex_program1_1
GL_NVX_ycrcb
GL_SGIS_generate_mipmap
GL_SGIS_multitexture
GL_SGIS_texture_lod
GL_WIN_swap_hint
WGL_EXT_swap_control
GL_EXT_bgra
Hard Drives
SAMSUNG SV1203N
Manufacturer SAMSUNG
Heads 16
Cylinders 16,383
Device type Fixed
ATA Standard ATA/ATAPI-7
Serial Number S01CJ10W931960
LBA Size 48-bit LBA
Power On Count 12385 times
Power On Time 224684.4 days
Features S.M.A.R.T., AAM
Transfer Mode Ultra DMA/133
Interface PATA
Capacity 112GB
Real size 120,060,444,672 bytes
RAID Type None
S.M.A.R.T
01 Read Error Rate 100 (100 worst) Data 0000000000
03 Spin-Up Time 071 (059) Data 0000001440
04 Start/Stop Count 076 (076) Data 000000603C
05 Reallocated Sectors Count 099 (099) Data 0000000003
07 Seek Error Rate 253 (253) Data 0000000000
08 Seek Time Performance 253 (253) Data 0000000000
09 Power-On Hours (POH) 092 (092) Data 0000524829
0A Spin Retry Count 253 (253) Data 0000000000
0C Device Power Cycle Count 088 (088) Data 0000003061
C2 Temperature 127 (082) Data 0000000025
C3 Hardware ECC Recovered 100 (100) Data 000EDAFC87
C4 Reallocation Event Count 253 (253) Data 0000000000
C5 Current Pending Sector Count 253 (253) Data 0000000000
C6 Uncorrectable Sector Count 253 (253) Data 0000000000
C7 UltraDMA CRC Error Count 100 (100) Data 0000000000
C8 Write Error Rate / Multi-Zone Error Rate 100 (100) Data 0000000000
C9 Soft Read Error Rate 100 (100) Data 0000000000
Temperature 37 °C
Temperature Range ok (less than 50 °C)
Status Good
Partition 0
Partition ID Disk #0, Partition #0
Disk Letter D:
File System FAT32
Volume Serial Number 22D140E3
Size 5.29GB
Used Space 4.33GB (82%)
Free Space 982MB (18%)
Partition 1
Partition ID Disk #0, Partition #1
Disk Letter C:
File System NTFS
Volume Serial Number 84F45609
Size 107GB
Used Space 15.5GB (15%)
Free Space 91GB (85%)
Optical Drives
LITE-ON DVDRW SHW-1635S
Media Type CD-ROM
Name LITE-ON DVDRW SHW-1635S
Availability Running/Full Power
Capabilities Random Access, Supports Removable Media
Config Manager Error Code Device is working properly
Config Manager User Config FALSE
Drive E:
Media Loaded FALSE
SCSI Bus 0
SCSI Logical Unit 0
SCSI Port 1
SCSI Target Id 0
Status OK
LITE-ON LTR-48247S
Media Type CD-ROM
Name LITE-ON LTR-48247S
Availability Running/Full Power
Capabilities Random Access, Supports Removable Media
Config Manager Error Code Device is working properly
Config Manager User Config FALSE
Drive F:
Media Loaded FALSE
SCSI Bus 0
SCSI Logical Unit 0
SCSI Port 1
SCSI Target Id 1
Status OK
Audio
Sound Card
Realtek AC'97 Audio
Playback Device
Realtek AC97 Audio
Recording Device
Realtek AC97 Audio
Peripherals
HID Keyboard Device
Device Kind Keyboard
Device Name HID Keyboard Device
Vendor Microsoft
Location Location 0
Driver
Date 7-1-2001
Version 5.1.2600.1106
File C:\WINDOWS\system32\DRIVERS\kbdhid.sys
File C:\WINDOWS\system32\DRIVERS\kbdclass.sys
Logitech PS/2 Port Mouse
Device Kind Mouse
Device Name Logitech PS/2 Port Mouse
Vendor Logitech
Location plugged into PS/2 mouse port
Driver
Date 7-1-2001
Version 5.1.2600.0
File C:\WINDOWS\system32\DRIVERS\i8042prt.sys
File C:\WINDOWS\system32\DRIVERS\mouclass.sys
Disk drive
Device Kind USB storage
Device Name Disk drive
Vendor GENERIC
Comment Generic USB CF Reader USB Device
Location Location 0
Driver
Date 7-1-2001
Version 5.1.2535.0
File C:\WINDOWS\system32\DRIVERS\disk.sys
Disk drive
Device Kind USB storage
Device Name Disk drive
Vendor GENERIC
Comment Generic USB MS Reader USB Device
Location Location 0
Driver
Date 7-1-2001
Version 5.1.2535.0
File C:\WINDOWS\system32\DRIVERS\disk.sys
Disk drive
Device Kind USB storage
Device Name Disk drive
Vendor GENERIC
Comment Generic USB SD Reader USB Device
Location Location 0
Driver
Date 7-1-2001
Version 5.1.2535.0
File C:\WINDOWS\system32\DRIVERS\disk.sys
Disk drive
Device Kind USB storage
Device Name Disk drive
Vendor GENERIC
Comment Generic USB SM Reader USB Device
Location Location 0
Driver
Date 7-1-2001
Version 5.1.2535.0
File C:\WINDOWS\system32\DRIVERS\disk.sys
Printers
Fax (Default Printer)
Printer Port SHRFAX:
Print Processor WinPrint
Availability Always
Priority 1
Duplex None
Print Quality 200 * 200 dpi Monochrome
Status Unknown
Driver
Driver Name Microsoft Shared Fax Driver (v4.00)
Driver Path C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\FXSDRV.DLL
Network
You are connected to the internet
Connected through NVIDIA nForce MCP Networking Controller - Packet Scheduler Miniport
IP Address 192.168.1.101
Subnet mask 255.255.255.0
Gateway server 192.168.1.1
Preferred DNS server 209.18.47.61
Alternate DNS server 209.18.47.62
DHCP Enabled
DHCP server 192.168.1.1
External IP Address 174.109.154.225
Adapter Type Ethernet
NetBIOS over TCP/IP Enabled via DHCP
NETBIOS Node Type Hybrid node
Link Speed 0 Bps
Computer Name
NetBIOS Name YOUR-XHTR8HVC4P
DNS Name your-xhtr8hvc4p
Membership Part of workgroup
Workgroup WORKGROUP
Remote Desktop
Disabled
Console
State Active
Domain YOUR-XHTR8HVC4P
WinInet Info
LAN Connection
Local system uses a local area network to connect to the Internet
Local system has RAS to connect to the Internet
Wi-Fi Info
Wi-Fi not enabled
WinHTTPInfo
WinHTTPSessionProxyType No proxy
Session Proxy
Session Proxy Bypass
Connect Retries 5
Connect Timeout (ms) 60,000
HTTP Version HTTP 1.1
Max Connects Per 1.0 Servers INFINITE
Max Connects Per Servers INFINITE
Max HTTP automatic redirects 10
Max HTTP status continue 10
Send Timeout (ms) 30,000
IEProxy Auto Detect No
IEProxy Auto Config
IEProxy
IEProxy Bypass
Default Proxy Config Access Type No proxy
Default Config Proxy
Default Config Proxy Bypass
Sharing and Discovery
File and printer sharing service Enabled
Simple File Sharing Disabled
Administrative Shares Enabled
Network access: Sharing and security model for local accounts Classic - local users authenticate as themselves
Adapters List
NVIDIA nForce MCP Networking Controller - Packet Scheduler Miniport
IP Address 192.168.1.101
Subnet mask 255.255.255.0
Gateway server 192.168.1.1
Network Shares
No network shares
Current TCP Connections
C:\Program Files\Mozilla Firefox\firefox.exe (3440)
Local 127.0.0.1:1056 ESTABLISHED Remote 127.0.0.1:1055 (Querying... )
Local 127.0.0.1:1055 ESTABLISHED Remote 127.0.0.1:1056 (Querying... )
Local 192.168.1.101:1362 ESTABLISHED Remote 76.13.115.185:80 (Querying... ) (HTTP)
Local 192.168.1.101:1442 ESTABLISHED Remote 108.171.164.204:80 (Querying... ) (HTTP)
Local 192.168.1.101:1443 ESTABLISHED Remote 74.125.137.113:80 (Querying... ) (HTTP)
Local 192.168.1.101:1445 ESTABLISHED Remote 108.171.164.204:80 (Querying... ) (HTTP)
Local 192.168.1.101:1446 ESTABLISHED Remote 74.125.139.95:80 (Querying... ) (HTTP)
Local 192.168.1.101:1448 ESTABLISHED Remote 54.240.160.218:80 (Querying... ) (HTTP)
Local 192.168.1.101:1449 ESTABLISHED Remote 54.240.160.218:80 (Querying... ) (HTTP)
Local 192.168.1.101:1450 ESTABLISHED Remote 54.240.160.218:80 (Querying... ) (HTTP)
Local 192.168.1.101:1453 ESTABLISHED Remote 54.240.160.218:80 (Querying... ) (HTTP)
Local 192.168.1.101:1454 ESTABLISHED Remote 31.13.65.7:80 (Querying... ) (HTTP)
Local 192.168.1.101:1459 ESTABLISHED Remote 107.14.46.17:80 (Querying... ) (HTTP)
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (2932)
Local 192.168.1.101:1161 CLOSE-WAIT Remote 72.21.81.253:80 (Querying... ) (HTTP)
System Process
Local 192.168.1.101:1377 TIME-WAIT Remote 74.125.137.155:80 (Querying... ) (HTTP)
Local 192.168.1.101:1382 TIME-WAIT Remote 74.125.134.102:80 (Querying... ) (HTTP)
Local 192.168.1.101:1384 TIME-WAIT Remote 173.194.37.45:80 (Querying... ) (HTTP)
Local 192.168.1.101:1394 TIME-WAIT Remote 31.13.78.71:80 (Querying... ) (HTTP)
Local 192.168.1.101:1398 TIME-WAIT Remote 173.194.37.45:80 (Querying... ) (HTTP)
Local 192.168.1.101:1399 TIME-WAIT Remote 24.25.26.131:80 (Querying... ) (HTTP)
Local 192.168.1.101:1414 TIME-WAIT Remote 173.194.32.47:80 (Querying... ) (HTTP)
Local 192.168.1.101:1415 TIME-WAIT Remote 74.125.139.104:80 (Querying... ) (HTTP)
Local 192.168.1.101:1422 TIME-WAIT Remote 107.14.46.40:80 (Querying... ) (HTTP)
Local 192.168.1.101:1439 TIME-WAIT Remote 206.190.130.76:80 (Querying... ) (HTTP)
Local 192.168.1.101:1444 TIME-WAIT Remote 74.125.137.113:80 (Querying... ) (HTTP)
Local 192.168.1.101:1447 TIME-WAIT Remote 23.37.15.139:80 (Querying... ) (HTTP)
Local 192.168.1.101:1451 TIME-WAIT Remote 24.25.26.137:80 (Querying... ) (HTTP)
Local 192.168.1.101:1455 TIME-WAIT Remote 54.240.160.218:80 (Querying... ) (HTTP)
Local 192.168.1.101:1456 TIME-WAIT Remote 54.240.160.218:80 (Querying... ) (HTTP)
Local 192.168.1.101:1457 TIME-WAIT Remote 31.13.65.7:80 (Querying... ) (HTTP)
Local 192.168.1.101:1458 TIME-WAIT Remote 107.14.46.40:80 (Querying... ) (HTTP)
Local 192.168.1.101:1367 TIME-WAIT Remote 74.125.140.95:80 (Querying... ) (HTTP)
Local 192.168.1.101:1374 TIME-WAIT Remote 74.125.137.155:80 (Querying... ) (HTTP)
Local 192.168.1.101:1460 TIME-WAIT Remote 107.14.46.17:80 (Querying... ) (HTTP)
Local 192.168.1.101:1380 TIME-WAIT Remote 54.240.160.46:80 (Querying... ) (HTTP)
Local 192.168.1.101:1381 TIME-WAIT Remote 54.240.160.46:80 (Querying... ) (HTTP)
System Process
Local 0.0.0.0:445 (Windows shares) LISTEN
Local 192.168.1.101:139 (NetBIOS session service) LISTEN
svchost.exe (1264)
Local 0.0.0.0:135 (DCE) LISTEN

#12
wharriss

Posted 24 January 2013 - 12:19 AM

Member

Topic Starter
Member
105 posts

Here is the Process Explorer log

Process PID CPU Private Bytes Working Set Description Company Name Verified Signer
System Idle Process 0 98.44 0 K 16 K
procexp.exe 2324 1.56 13,056 K 19,592 K Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
Interrupts n/a < 0.01 0 K 0 K Hardware Interrupts and DPCs
wmiprvse.exe 3956 2,296 K 4,900 K WMI Microsoft Corporation (Verified) Microsoft Windows Component Publisher
winlogon.exe 980 5,888 K 4,436 K Windows NT Logon Application Microsoft Corporation (Verified) Microsoft Windows Component Publisher
System 4 0 K 368 K
svchost.exe 1196 2,968 K 4,820 K Generic Host Process for Win32 Services Microsoft Corporation (Verified) Microsoft Windows Component Publisher
svchost.exe 1264 2,136 K 4,828 K Generic Host Process for Win32 Services Microsoft Corporation (Verified) Microsoft Windows Component Publisher
svchost.exe 1364 14,136 K 25,548 K Generic Host Process for Win32 Services Microsoft Corporation (Verified) Microsoft Windows Component Publisher
svchost.exe 1464 1,820 K 4,216 K Generic Host Process for Win32 Services Microsoft Corporation (Verified) Microsoft Windows Component Publisher
svchost.exe 1600 1,676 K 4,180 K Generic Host Process for Win32 Services Microsoft Corporation (Verified) Microsoft Windows Component Publisher
svchost.exe 1836 1,312 K 3,888 K Generic Host Process for Win32 Services Microsoft Corporation (Verified) Microsoft Windows Component Publisher
svchost.exe 156 2,408 K 4,252 K Generic Host Process for Win32 Services Microsoft Corporation (Verified) Microsoft Windows Component Publisher
SUPERAntiSpyware.exe 2932 130,716 K 1,172 K SUPERAntiSpyware Application SUPERAntiSpyware.com (Verified) SuperAdBlocker.com
spoolsv.exe 1720 3,108 K 4,812 K Spooler SubSystem App Microsoft Corporation (Verified) Microsoft Windows Component Publisher
SpamSubtract.exe 3968 1,072 K 3,700 K SpamSubtract interMute, Inc. (Unable to verify) interMute, Inc.
smss.exe 648 168 K 420 K Windows NT Session Manager Microsoft Corporation (Verified) Microsoft Windows Component Publisher
shwicon2k.exe 3576 908 K 3,300 K Sunkist Alcor Micro, Corp. (Unable to verify) Alcor Micro, Corp.
services.exe 1024 1,752 K 4,340 K Services and Controller app Microsoft Corporation (Verified) Microsoft Windows Component Publisher
SASCore.exe 1868 604 K 2,156 K Core Service SUPERAntiSpyware.com (Verified) SuperAdBlocker.com
rundll32.exe 2808 2,612 K 4,920 K Run a DLL as an App Microsoft Corporation (Verified) Microsoft Windows Component Publisher
plugin-container.exe 3828 42,268 K 45,616 K Plugin Container for Firefox Mozilla Corporation (Verified) Mozilla Corporation
OPXPApp.exe 496 948 K 2,584 K (Unable to verify) (null)
omniServ.exe 392 756 K 1,620 K (Unable to verify) (null)
nvsvc32.exe 328 568 K 2,368 K NVIDIA Driver Helper Service, Version 44.03 NVIDIA Corporation (Verified) Microsoft Windows Hardware Compatibility Publisher
msmsgs.exe 3124 1,620 K 4,016 K Windows Messenger Microsoft Corporation (Verified) Microsoft Windows Component Publisher
mbamservice.exe 2036 102,580 K 102,284 K Malwarebytes Anti-Malware Malwarebytes Corporation (Verified) Malwarebytes Corporation
mbamscheduler.exe 1964 3,184 K 5,840 K Malwarebytes Anti-Malware Malwarebytes Corporation (Verified) Malwarebytes Corporation
mbamgui.exe 1552 4,160 K 7,440 K Malwarebytes Anti-Malware Malwarebytes Corporation (Verified) Malwarebytes Corporation
lsass.exe 1060 3,976 K 988 K LSA Shell (Export Version) Microsoft Corporation (Verified) Microsoft Windows Component Publisher
kbd.exe 2576 4,300 K 7,696 K KBD EXE Hewlett-Packard Company (Unable to verify) Hewlett-Packard Company
hpwuSchd.exe 1340 840 K 2,832 K hpwuSchd Hewlett-Packard (Unable to verify) Hewlett-Packard
hpsysdrv.exe 3988 928 K 2,948 K hpsysdrv Hewlett-Packard Company (Unable to verify) Hewlett-Packard Company
hpqtra08.exe 2836 1,332 K 4,900 K HP Digital Imaging Monitor (CUE) Hewlett-Packard Co. (Unable to verify) Hewlett-Packard Co.
HpqCmon.exe 2044 1,656 K 4,668 K HpqCmon MFC Application (Unable to verify)
hphmon05.exe 2464 1,124 K 3,996 K HPHmon05 Hewlett-Packard (Unable to verify) Hewlett-Packard
firefox.exe 3440 228,600 K 237,228 K Firefox Mozilla Corporation (Verified) Mozilla Corporation
explorer.exe 2080 35,832 K 31,584 K Windows Explorer Microsoft Corporation (Verified) Microsoft Windows Component Publisher
ctfmon.exe 4012 1,136 K 4,360 K CTF Loader Microsoft Corporation (Verified) Microsoft Windows Component Publisher
csrss.exe 956 1,652 K 4,232 K Client Server Runtime Process Microsoft Corporation (Verified) Microsoft Windows Component Publisher
avgwdsvc.exe 1912 6,908 K 16,160 K AVG Watchdog Service AVG Technologies CZ, s.r.o. (Verified) AVG Technologies CZ
avgui.exe 4016 5,936 K 9,696 K AVG User Interface AVG Technologies CZ, s.r.o. (Verified) AVG Technologies CZ
avgrsx.exe 704 2,784 K 448 K AVG Resident Shield Service AVG Technologies CZ, s.r.o. (Verified) AVG Technologies CZ
avgnsx.exe 2652 4,544 K 752 K AVG Online Shield Service AVG Technologies CZ, s.r.o. (Verified) AVG Technologies CZ
avgidsagent.exe 1880 26,708 K 28,276 K AVG Identity Protection Service AVG Technologies CZ, s.r.o. (Verified) AVG Technologies CZ
avgemcx.exe 2752 2,424 K 7,148 K AVG E-mail Scanner AVG Technologies CZ, s.r.o. (Verified) AVG Technologies CZ
avgcsrvx.exe 748 16,684 K 312 K AVG Scanning Core Module - Server Part AVG Technologies CZ, s.r.o. (Verified) AVG Technologies CZ
avgcsrvx.exe 2908 15,640 K 408 K AVG Scanning Core Module - Server Part AVG Technologies CZ, s.r.o. (Verified) AVG Technologies CZ
alg.exe 3872 1,028 K 3,228 K Application Layer Gateway Service Microsoft Corporation (Verified) Microsoft Windows Component Publisher
ALCXMNTR.EXE 4088 2,244 K 3,944 K Realtek Audio - Event Monitor Realtek Semiconductor Corp. (Verified) Microsoft Windows Hardware Compatibility Publisher

#13
wharriss

Posted 24 January 2013 - 12:32 AM

Member

Topic Starter
Member
105 posts

Here is the adwCleaner log

# AdwCleaner v2.107 - Logfile created 01/24/2013 at 01:23:46
# Updated 21/01/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Owner - YOUR-XHTR8HVC4P
# Boot Mode : Normal
# Running from : C:\Documents and Settings\Owner\Desktop\adwcleaner.exe
# Option [Delete]

***** [Services] *****

***** [Files / Folders] *****

File Deleted : C:\DOCUME~1\Owner\LOCALS~1\Temp\Uninstall.exe
Folder Deleted : C:\Documents and Settings\All Users\Application Data\APN
Folder Deleted : C:\Documents and Settings\All Users\Application Data\WeCareReminder

***** [Registry] *****

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D824F0DE-3D60-4F57-9EB1-66033ECD8ABB}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D824F0DE-3D60-4F57-9EB1-66033ECD8ABB}
Key Deleted : HKCU\Software\wecarereminder
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4FBBF769-ECEB-420A-B536-133B1D505C36}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\IEHelperv2.5.0.DLL
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D824F0DE-3D60-4F57-9EB1-66033ECD8ABB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F773BB94-6C19-4643-A570-0E429103D1C3}
Key Deleted : HKLM\SOFTWARE\Classes\IEHelperv250.WeCareReminder
Key Deleted : HKLM\SOFTWARE\Classes\IEHelperv250.WeCareReminder.1
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F773BB94-6C19-4643-A570-0E429103D1C3}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B12920CF-BE13-4C09-890D-1B6EFFFE2FBE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AC5B6CDA-8F90-4740-9A8C-28AC5D3C73FE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D824F0DE-3D60-4F57-9EB1-66033ECD8ABB}
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry is clean.

-\\ Mozilla Firefox v18.0.1 (en-US)

File : C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\nnyvx7il.default\prefs.js

C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\nnyvx7il.default\user.js ... Deleted !

Deleted : user_pref("extensions.wecarereminder.merchHash", "{\"AFFILIATES\":{\"1-Sale-A-Day\":{\"name\":\"1 Sa[...]

-\\ Google Chrome v [Unable to get version]

File : C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [2735 octets] - [24/01/2013 01:23:46]

########## EOF - C:\AdwCleaner[S1].txt - [2795 octets] ##########

#14
RKinner

Posted 24 January 2013 - 01:02 AM

Malware Expert

Expert
24,625 posts

The things that TDSSKiller found are just false positives. Nothing to worry about.

Temperatures on the CPU and the hard drive are both acceptable. Process Explorer shows nothing is stealing CPU time and I don't see anything strange running.
adwcleaner just removed a little adware. Probably courtesy of your PC maker.

Make sure you do the stuff in my earlier post. (#8) Combofix is very sensitive to hard drive errors so the crash may mean just that it hit a bad spot on the drive.

#15
wharriss

Posted 24 January 2013 - 08:39 AM

Member

Topic Starter
Member
105 posts

Good Morning

I have uninstalled all references to Java in the add/remove programs

I ran the Services Repair scan, which had no log to report that I could see, correct??

I ran chkdsk and watched it run through stage 4. It repaired a bad cluster in only one file. I went to bed, but it appears to have finished running successfully this morning.

Here is the Vino' Event Viewer log

Vino's Event Viewer v01c run on Windows XP in English
Report run at 24/01/2013 9:02:35 AM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 24/01/2013 7:56:47 AM
Type: error Category: 0
Event: 7006 Source: Service Control Manager
The ScRegSetValueExW call failed for FailureActions with the following error: Access is denied.

Log: 'System' Date/Time: 24/01/2013 7:56:47 AM
Type: error Category: 0
Event: 7000 Source: Service Control Manager
The mrtRate service failed to start due to the following error: The system cannot find the file specified.

Log: 'System' Date/Time: 24/01/2013 7:56:47 AM
Type: error Category: 0
Event: 7006 Source: Service Control Manager
The ScRegSetValueExW call failed for FailureActions with the following error: Access is denied.

Log: 'System' Date/Time: 24/01/2013 3:57:51 AM
Type: error Category: 0
Event: 7006 Source: Service Control Manager
The ScRegSetValueExW call failed for FailureActions with the following error: Access is denied.

Log: 'System' Date/Time: 24/01/2013 3:57:51 AM
Type: error Category: 0
Event: 7000 Source: Service Control Manager
The mrtRate service failed to start due to the following error: The system cannot find the file specified.

Log: 'System' Date/Time: 24/01/2013 3:57:51 AM
Type: error Category: 0
Event: 7006 Source: Service Control Manager
The ScRegSetValueExW call failed for FailureActions with the following error: Access is denied.

Log: 'System' Date/Time: 24/01/2013 3:24:28 AM
Type: error Category: 0
Event: 7000 Source: Service Control Manager
The mrtRate service failed to start due to the following error: The system cannot find the file specified.

Log: 'System' Date/Time: 24/01/2013 3:24:28 AM
Type: error Category: 0
Event: 7006 Source: Service Control Manager
The ScRegSetValueExW call failed for FailureActions with the following error: Access is denied.

Log: 'System' Date/Time: 24/01/2013 3:04:13 AM
Type: error Category: 0
Event: 7006 Source: Service Control Manager
The ScRegSetValueExW call failed for FailureActions with the following error: Access is denied.

Log: 'System' Date/Time: 24/01/2013 3:04:12 AM
Type: error Category: 0
Event: 7000 Source: Service Control Manager
The mrtRate service failed to start due to the following error: The system cannot find the file specified.

Log: 'System' Date/Time: 24/01/2013 3:04:12 AM
Type: error Category: 0
Event: 7006 Source: Service Control Manager
The ScRegSetValueExW call failed for FailureActions with the following error: Access is denied.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~