Jump to content

Recommended Posts

Hello All,

I've been hijacked I think by some virus or malware. Symptons are but are not limited

to: commercials playing alongside of my youtube selections

redirecting my startup pages to www.iminent.com

blocking malwarebytes program from being installed and scanning

blocking my AVG from being installed

I will post the DSS diagnostic down below.

.

DDS (Ver_2011-08-26.01) - NTFSx86

Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_24

Run by dh at 8:19:13 on 2011-12-31

Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3574.2274 [GMT -5:00]

.

FW: AVG Firewall *Disabled*

.

============== Running Processes ===============

.

C:\WINDOWS\system32\svchost -k DcomLaunch

svchost.exe

C:\WINDOWS\System32\svchost.exe -k netsvcs

svchost.exe

svchost.exe

C:\WINDOWS\System32\WLTRYSVC.EXE

C:\WINDOWS\System32\bcmwltry.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\AVG\AVG PC Tuneup\BoostSpeed.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\WLTRAY.exe

C:\WINDOWS\system32\igfxsrvc.exe

C:\WINDOWS\system32\hkcmd.exe

C:\WINDOWS\system32\igfxpers.exe

C:\Program Files\DellTPad\Apoint.exe

C:\Program Files\SigmaTel\C-Major Audio\WDM\stsystra.exe

C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe

C:\Program Files\Dell\Dell Mobile Broadband\systray.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Program Files\AVG Secure Search\vprot.exe

C:\Program Files\Iminent\Iminent.exe

C:\Program Files\DellTPad\ApMsgFwd.exe

C:\Program Files\Iminent\Iminent.Messengers.exe

C:\Program Files\AVG\AVG2012\avgtray.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Program Files\Messenger\msmsgs.exe

C:\Documents and Settings\dh\Local Settings\Application Data\Soft32\Soft32 Updater\Soft32 Updater.exe

C:\Program Files\DellTPad\HidFind.exe

C:\Program Files\Shop To Win\ShopToWin.exe

C:\Program Files\DellTPad\Apntex.exe

C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe

C:\Program Files\PFU\ScanSnap\CardMinder\CardLauncher.exe

C:\Program Files\PFU\ScanSnap\Driver\PfuSsMon.exe

C:\Program Files\SentrilockCardUtility\SentriLockCardUtility.exe

C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe

C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe

C:\Documents and Settings\dh\Application Data\Dropbox\bin\Dropbox.exe

svchost.exe

C:\Program Files\Broadcom\ASFIPMon\AsfIpMon.exe

C:\Program Files\AVG\AVG2012\avgwdsvc.exe

C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE

C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe

C:\Program Files\SigmaTel\C-Major Audio\DellXPM_5515v131\WDM\StacSV.exe

C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe

C:\WINDOWS\system32\svchost.exe -k imgsvc

C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe

C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\9.0.1\ToolbarUpdater.exe

C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe

C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe

C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe

C:\WINDOWS\system32\wscntfy.exe

C:\WINDOWS\System32\svchost.exe -k HTTPFilter

C:\PROGRA~1\Yahoo!\Messenger\ymsgr_tray.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\Mozilla Firefox\plugin-container.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://search.iminent.com/?appId=7bb318c0-da75-48bf-98d4-b0c6711cb1f0&ref=homepage

uURLSearchHooks: H - No File

uURLSearchHooks: YTNavAssist.YTNavAssistPlugin Class: {81017ea9-9aa8-4a6a-9734-7af40e7d593f} - c:\progra~1\yahoo!\companion\installs\cpn0\YTNavAssist.dll

uURLSearchHooks: H - No File

mURLSearchHooks: H - No File

BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\progra~1\yahoo!\companion\installs\cpn0\yt.dll

BHO: vShare Plugin: {043c5167-00bb-4324-af7e-62013faedacf} - c:\program files\vshare\vshare_toolbar.dll

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll

BHO: Shop to Win: {3a90a078-4bb9-4568-9557-cdeefcae68a0} - c:\program files\shop to win 22\Shop to Win 22.dll

BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg2012\avgssie.dll

BHO: TBSB01620 Class: {58124a0b-dc32-4180-9bff-e0e21ae34026} - c:\program files\iminent toolbar\tbcore3.dll

BHO: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - c:\program files\avg secure search\9.0.0.18\AVG Secure Search_toolbar.dll

BHO: IMinent WebBooster (BHO): {a09ab6eb-31b5-454c-97ec-9b294d92ee2a} - c:\program files\iminent\Iminent.WebBooster.InternetExplorer.dll

BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.7.7018.1622\swg.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll

BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - c:\progra~1\yahoo!\companion\installs\cpn0\YTSingleInstance.dll

TB: vShare Plugin: {043c5167-00bb-4324-af7e-62013faedacf} - c:\program files\vshare\vshare_toolbar.dll

TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\progra~1\yahoo!\companion\installs\cpn0\yt.dll

TB: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - c:\program files\avg secure search\9.0.0.18\AVG Secure Search_toolbar.dll

TB: IMinent Toolbar: {977ae9cc-af83-45e8-9e03-e2798216e2d5} - c:\program files\iminent toolbar\tbcore3.dll

{e7df6bff-55a5-4eb7-a673-4ed3e9456d39}

uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe

uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"

uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background

uRun: [Messenger (Yahoo!)] "c:\progra~1\yahoo!\messenger\YahooMessenger.exe" -quiet

uRun: [Google Update] "c:\documents and settings\dh\local settings\application data\google\update\GoogleUpdate.exe" /c

uRun: [soft32 Updater.exe] c:\documents and settings\dh\local settings\application data\soft32\soft32 updater\Soft32 Updater.exe /SILENT

uRun: [shop To Win] c:\program files\shop to win\ShopToWin.exe

mRun: [broadcom Wireless Manager UI] c:\windows\system32\WLTRAY.exe

mRun: [igfxTray] c:\windows\system32\igfxtray.exe

mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe

mRun: [Persistence] c:\windows\system32\igfxpers.exe

mRun: [Apoint] c:\program files\delltpad\Apoint.exe

mRun: [sigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\stsystra.exe

mRun: [iTSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START

mRun: [systray] c:\program files\dell\dell mobile broadband\systray.exe

mRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"

mRun: [RIMBBLaunchAgent.exe] c:\program files\common files\research in motion\usb drivers\RIMBBLaunchAgent.exe

mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"

mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray

mRun: [vProt] "c:\program files\avg secure search\vprot.exe"

mRun: [iminent] c:\program files\iminent\Iminent.exe /warmup "F77F87E5-A6BD-4922-A530-EDF63D7E9F8C"

mRun: [iminentMessenger] c:\program files\iminent\Iminent.Messengers.exe /startup

mRun: [AVG_TRAY] "c:\program files\avg\avg2012\avgtray.exe"

mRunOnce: [innoSetupRegFile.0000000001] "c:\windows\is-5OAK1.exe" /REG /REGSVRMODE

StartupFolder: c:\docume~1\dh\startm~1\programs\startup\cyber-~1.lnk - c:\program files\sony\sony picture utility\volumewatcher\SPUVolumeWatcher.exe

StartupFolder: c:\docume~1\dh\startm~1\programs\startup\dropbox.lnk - c:\documents and settings\dh\application data\dropbox\bin\Dropbox.exe

StartupFolder: c:\docume~1\dh\startm~1\programs\startup\fujits~1.lnk - c:\program files\fujitsu\leadertech\fujitsuWebview-Release.exe

StartupFolder: c:\docume~1\dh\startm~1\programs\startup\onenot~1.lnk - c:\program files\microsoft office\office12\ONENOTEM.EXE

StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\blueto~1.lnk - c:\program files\toshiba\bluetooth toshiba stack\TosBtMng.exe

StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\cardmi~1.lnk - c:\program files\pfu\scansnap\cardminder\CardLauncher.exe

StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\conver~1.lnk - c:\program files\pfu\scansnap\organizer\PfuSsOrgOcrChk.exe

StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\scansn~1.lnk - c:\program files\pfu\scansnap\driver\PfuSsMon.exe

StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\sentri~1.lnk - c:\windows\installer\{c9b8d365-a6c3-4c4d-9624-0f0078feb1b4}\Icon037926361.exe

IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000

IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe

IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL

DPF: {83A4D5A6-E2C1-4EDD-AD48-1A1C50BD06EF} - hxxp://www.clearcapital.com/imageUpload/ImageUploader6.cab

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab

DPF: {8CFCF42C-1C64-47D6-AEEC-F9D001832ED3} - hxxp://xserv.dell.com/DellDriverScanner/DellSystem.CAB

DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

TCP: DhcpNameServer = 10.0.0.1

TCP: Interfaces\{944CCCD8-A889-4AA8-BFD0-F3A69209919C} : DhcpNameServer = 10.0.0.1

Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg2012\avgpp.dll

Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\common files\avg secure search\viprotocolinstaller\9.0.1\ViProtocol.dll

Handler: vsharechrome - {3F3A4B8A-86FC-43A4-BB00-6D7EBE9D4484} - c:\program files\vshare\vshare_toolbar.dll

Notify: igfxcui - igfxdev.dll

SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll

.

============= SERVICES / DRIVERS ===============

.

R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [2010-9-13 23120]

R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2010-9-7 32592]

R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2010-12-8 230608]

R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2010-9-7 40016]

R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2010-11-12 295248]

R1 NvtSp50;Novatel Wireless NDIS 5 Single-Packet Read Protocol Driver;c:\windows\system32\drivers\NvtSp50.sys [2008-6-10 22016]

R2 ASFIPmon;Broadcom ASF IP and SMBIOS Mailbox Monitor;c:\program files\broadcom\asfipmon\AsfIpMon.exe [2006-12-19 79432]

R2 avgwd;AVG WatchDog;c:\program files\avg\avg2012\avgwdsvc.exe [2011-8-2 192776]

R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2011-1-6 366152]

R2 vToolbarUpdater;vToolbarUpdater;c:\program files\common files\avg secure search\vtoolbarupdater\9.0.1\ToolbarUpdater.exe [2011-12-9 855904]

R3 Avgfwdx;Avgfwdx;c:\windows\system32\drivers\avgfwdx.sys [2011-5-23 30944]

R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\AVGIDSDriver.sys [2010-8-19 134608]

R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\AVGIDSFilter.sys [2010-8-19 24272]

R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\AVGIDSShim.sys [2010-8-19 16720]

R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-1-6 20464]

R3 NWDellModem;Dell Wireless Mobile Broadband Modem Driver;c:\windows\system32\drivers\nwdelmdm.sys [2007-11-2 166144]

R3 NWDellPort;Dell Wireless Mobile Broadband Status Port Driver;c:\windows\system32\drivers\nwdelser.sys [2007-11-2 166144]

S2 avgfws;AVG Firewall;c:\program files\avg\avg2012\avgfws.exe [2011-10-24 2398512]

S2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2012\AVGIDSAgent.exe [2011-10-12 4433248]

S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2011-1-9 136176]

S3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\avg\avg10\toolbar\ToolbarBroker.exe [2011-5-16 1025352]

S3 Avgfwfd;AVG network filter service;c:\windows\system32\drivers\avgfwdx.sys [2011-5-23 30944]

S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2011-1-9 136176]

S3 MBAMSwissArmy;MBAMSwissArmy;\??\c:\windows\system32\drivers\mbamswissarmy.sys --> c:\windows\system32\drivers\mbamswissarmy.sys [?]

S3 SCR3xx USB Smart Card Reader;SCR3xx USB Smart Card Reader;c:\windows\system32\drivers\SCR3XX2K.sys [2011-1-9 47488]

.

=============== Created Last 30 ================

.

2011-12-31 12:39:40 709968 ----a-w- c:\windows\is-5OAK1.exe

2011-12-18 19:12:55 -------- d-----w- c:\documents and settings\dh\application data\AVG

2011-12-09 13:22:49 -------- d-----w- c:\documents and settings\dh\application data\AVG Secure Search

2011-12-09 13:22:07 -------- d-----w- c:\documents and settings\dh\application data\Iminent

2011-12-09 13:21:56 -------- d-----w- c:\documents and settings\dh\application data\Toolbar4

2011-12-09 13:21:51 -------- d-----w- c:\program files\IMinent Toolbar

2011-12-09 13:21:47 -------- d-----w- c:\documents and settings\all users\application data\Iminent

2011-12-09 13:21:39 75264 ----a-w- c:\program files\mozilla firefox\extensions\webbooster@iminent.com\components_20\Iminent.WebBooster.XPCOM.20.dll

2011-12-09 13:21:39 73216 ----a-w- c:\program files\mozilla firefox\extensions\webbooster@iminent.com\components_20\Iminent.WebBooster.XPCOM.80.dll

2011-12-09 13:21:39 73216 ----a-w- c:\program files\mozilla firefox\extensions\webbooster@iminent.com\components_20\Iminent.WebBooster.XPCOM.70.dll

2011-12-09 13:21:39 73216 ----a-w- c:\program files\mozilla firefox\extensions\webbooster@iminent.com\components_20\Iminent.WebBooster.XPCOM.60.dll

2011-12-09 13:21:39 72704 ----a-w- c:\program files\mozilla firefox\extensions\webbooster@iminent.com\components_20\Iminent.WebBooster.XPCOM.50.dll

2011-12-09 13:21:39 67072 ----a-w- c:\program files\mozilla firefox\extensions\webbooster@iminent.com\components\Iminent.WebBooster.XPCOM.18.dll

2011-12-09 13:20:21 -------- d-----w- c:\program files\Iminent

2011-12-09 13:19:45 -------- d-----w- c:\documents and settings\dh\application data\FCSB000063945

2011-12-09 13:19:29 -------- d-----w- c:\program files\Shop to Win 22

2011-12-09 13:19:28 -------- d-----w- c:\program files\Shop To Win

2011-12-09 13:19:26 -------- d-----w- c:\documents and settings\dh\local settings\application data\Soft32

2011-12-09 13:19:21 1577776 ----a-w- C:\tdsskiller.exes=CRQEUWIiK0C9tjwdT4QErg&t=1323695913&ext=.exe

2011-12-09 13:19:20 -------- d-----w- c:\program files\Object

2011-12-09 05:05:49 -------- d-----w- c:\windows\system32\cache

2011-12-09 05:05:40 -------- d-----w- c:\documents and settings\all users\application data\AVG Secure Search

2011-12-05 00:41:04 -------- d--h--w- C:\tdsskiller

2011-12-03 15:59:06 166986792 ---ha-w- C:\avg_ipw_x86_all_2012_1873a4623.exe

2011-12-03 13:56:44 3856528 ---ha-w- C:\avg_isc_stb_all_2012_1873.exe

2011-12-02 04:25:38 -------- d-----w- c:\documents and settings\dh\application data\Dropbox

.

==================== Find3M ====================

.

2011-12-10 20:24:06 20464 ----a-w- c:\windows\system32\drivers\mbam.sys

2011-11-30 19:42:33 352256 ----a-w- c:\documents and settings\all users\application data\nX0GXD1UyTSFbi.exe

2011-10-16 12:58:26 414368 ---ha-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2011-10-10 14:22:41 692736 ---ha-w- c:\windows\system32\inetcomm.dll

2011-10-07 10:23:48 230608 ---ha-w- c:\windows\system32\drivers\avgldx86.sys

2011-10-04 10:21:42 16720 ---ha-w- c:\windows\system32\drivers\AVGIDSShim.sys

.

============= FINISH: 8:19:57.57 ===============

Any help I can get would be great! Thanks.

~Dev

dds123111.txt

Link to post
Share on other sites

Welcome to the forum.

Please go to your control panels add/remove programs and uninstall

c:\program files\vshare

---------------

Please download Farbar Service Scanner and run it on the computer with the issue.


  • Make sure the following options are checked:

    • Internet Services
    • Windows Firewall
    • System Restore

    [*]Press "Scan".

    [*]It will create a log (FSS.txt) in the same directory the tool is run.

    [*]Please copy and paste the log to your reply.

Please download and run RogueKiller.

Choose 1 to scan the system

Post back the report.

MrC

Link to post
Share on other sites

Thanks Mr. C!

Welcome to the forum.

Please go to your control panels add/remove programs and uninstall

c:\program files\vshare

---------------

Please download Farbar Service Scanner and run it on the computer with the issue.


  • Make sure the following options are checked:

    • Internet Services
    • Windows Firewall
    • System Restore

    [*]Press "Scan".

    [*]It will create a log (FSS.txt) in the same directory the tool is run.

    [*]Please copy and paste the log to your reply.

Please download and run RogueKiller.

Choose 1 to scan the system

Post back the report.

MrC

Link to post
Share on other sites

Here you go! Thanks again.

RogueKiller V6.2.2 [12/31/2011] by Tigzy

mail: tigzyRK<at>gmail<dot>com

Feedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/

Blog: http://tigzyrk.blogspot.com

Operating System: Windows XP (5.1.2600 Service Pack 3) 32 bits version

Started in : Normal mode

User: dh [Admin rights]

Mode: Scan -- Date : 01/03/2012 23:32:01

¤¤¤ Bad processes: 0 ¤¤¤

¤¤¤ Registry Entries: 1 ¤¤¤

[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver: [LOADED] ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤

127.0.0.1 localhost

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: +++++

--- User ---

[MBR] 97050dac1f7f2dad21dccf32f43736a5

[bSP] 11d467b9f31927f29d49c85858b51038 : Windows XP MBR Code

Partition table:

0 - [XXXXXX] FAT16 [HIDDEN!] Offset (sectors): 63 | Size: 82 Mo

1 - [ACTIVE] NTFS [VISIBLE] Offset (sectors): 160650 | Size: 79941 Mo

User = LL1 ... OK!

User = LL2 ... OK!

Finished : << RKreport[1].txt >>

RKreport[1].txt

Farbar Service Scanner

Ran by dh (administrator) on 03-01-2012 at 23:28:52

Microsoft Windows XP Professional Service Pack 3 (X86)

Boot Mode: Normal

****************************************************************

Internet Services:

============

Connection Status:

==============

Localhost is accessible.

LAN connected.

Google IP is accessible.

Yahoo IP is accessible.

Windows Firewall:

=============

Firewall Disabled Policy:

==================

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

"EnableFirewall"=DWORD:0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

"EnableFirewall"=DWORD:0

System Restore:

============

System Restore Disabled Policy:

========================

File Check:

========

C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit

C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit

C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit

C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit

C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit

C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit

C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit

C:\WINDOWS\system32\netman.dll => MD5 is legit

C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit

C:\WINDOWS\system32\srsvc.dll => MD5 is legit

C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit

C:\WINDOWS\system32\svchost.exe => MD5 is legit

C:\WINDOWS\system32\rpcss.dll => MD5 is legit

C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:

=======

Avgfwfd(11) Avgtdix(8) Gpc(3) IPSec(5) NetBT(6) PSched(7) Tcpip(4)

0x0B0000000500000001000000020000000300000004000000090000000A0000000800000006000000070000000B000000

IpSec Tag value is correct.

**** End of log ****

Thanks Mr. C!

Link to post
Share on other sites

Mr. C,

Here you go! Thanks.

14:28:16.0375 3168 TDSS rootkit removing tool 2.6.25.0 Dec 23 2011 14:51:16

14:28:16.0656 3168 ============================================================

14:28:16.0656 3168 Current date / time: 2012/01/07 14:28:16.0656

14:28:16.0656 3168 SystemInfo:

14:28:16.0656 3168

14:28:16.0656 3168 OS Version: 5.1.2600 ServicePack: 3.0

14:28:16.0656 3168 Product type: Workstation

14:28:16.0656 3168 ComputerName: DHRE

14:28:16.0656 3168 UserName: dh

14:28:16.0656 3168 Windows directory: C:\WINDOWS

14:28:16.0656 3168 System windows directory: C:\WINDOWS

14:28:16.0656 3168 Processor architecture: Intel x86

14:28:16.0656 3168 Number of processors: 2

14:28:16.0656 3168 Page size: 0x1000

14:28:16.0656 3168 Boot type: Normal boot

14:28:16.0656 3168 ============================================================

14:28:19.0296 3168 Initialize success

14:29:47.0812 1552 ============================================================

14:29:47.0812 1552 Scan started

14:29:47.0812 1552 Mode: Manual; SigCheck; TDLFS;

14:29:47.0812 1552 ============================================================

14:29:48.0218 1552 Abiosdsk - ok

14:29:48.0250 1552 abp480n5 - ok

14:29:48.0359 1552 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys

14:29:50.0515 1552 ACPI - ok

14:29:50.0640 1552 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys

14:29:50.0828 1552 ACPIEC - ok

14:29:50.0828 1552 adpu160m - ok

14:29:50.0890 1552 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys

14:29:51.0000 1552 aec - ok

14:29:51.0062 1552 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys

14:29:51.0171 1552 AFD - ok

14:29:51.0187 1552 Aha154x - ok

14:29:51.0187 1552 aic78u2 - ok

14:29:51.0203 1552 aic78xx - ok

14:29:51.0218 1552 AliIde - ok

14:29:51.0218 1552 amsint - ok

14:29:51.0296 1552 ApfiltrService (350f19eb5fe4ec37a2414df56cde1aa8) C:\WINDOWS\system32\DRIVERS\Apfiltr.sys

14:29:51.0375 1552 ApfiltrService - ok

14:29:51.0484 1552 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys

14:29:51.0562 1552 Arp1394 - ok

14:29:51.0609 1552 asc - ok

14:29:51.0640 1552 asc3350p - ok

14:29:51.0687 1552 asc3550 - ok

14:29:51.0781 1552 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys

14:29:51.0890 1552 AsyncMac - ok

14:29:51.0968 1552 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys

14:29:52.0078 1552 atapi - ok

14:29:52.0093 1552 Atdisk - ok

14:29:52.0125 1552 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys

14:29:52.0218 1552 Atmarpc - ok

14:29:52.0359 1552 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys

14:29:52.0468 1552 audstub - ok

14:29:52.0531 1552 Avgfwdx (841b0a982065bffc7d7e84009f2fa76f) C:\WINDOWS\system32\DRIVERS\avgfwdx.sys

14:29:52.0546 1552 Avgfwdx - ok

14:29:52.0546 1552 Avgfwfd (841b0a982065bffc7d7e84009f2fa76f) C:\WINDOWS\system32\DRIVERS\avgfwdx.sys

14:29:52.0546 1552 Avgfwfd - ok

14:29:52.0656 1552 AVGIDSDriver (4fa401b33c1b50c816486f6951244a14) C:\WINDOWS\system32\DRIVERS\AVGIDSDriver.Sys

14:29:52.0984 1552 AVGIDSDriver - ok

14:29:53.0093 1552 AVGIDSEH (69578bc9d43d614c6b3455db4af19762) C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys

14:29:53.0093 1552 AVGIDSEH - ok

14:29:53.0140 1552 AVGIDSFilter (6df528406aa22201f392b9b19121cd6f) C:\WINDOWS\system32\DRIVERS\AVGIDSFilter.Sys

14:29:53.0140 1552 AVGIDSFilter - ok

14:29:53.0203 1552 AVGIDSShim (1e01c2166b5599802bcd61b9691f7476) C:\WINDOWS\system32\DRIVERS\AVGIDSShim.Sys

14:29:53.0218 1552 AVGIDSShim - ok

14:29:53.0296 1552 Avgldx86 (bf8118cd5e2255387b715b534d64acd1) C:\WINDOWS\system32\DRIVERS\avgldx86.sys

14:29:53.0296 1552 Avgldx86 - ok

14:29:53.0343 1552 Avgmfx86 (1c77ef67f196466adc9924cb288afe87) C:\WINDOWS\system32\DRIVERS\avgmfx86.sys

14:29:53.0343 1552 Avgmfx86 - ok

14:29:53.0359 1552 Avgrkx86 (f2038ed7284b79dcef581468121192a9) C:\WINDOWS\system32\DRIVERS\avgrkx86.sys

14:29:53.0359 1552 Avgrkx86 - ok

14:29:53.0421 1552 Avgtdix (a6d562b612216d8d02a35ebeb92366bd) C:\WINDOWS\system32\DRIVERS\avgtdix.sys

14:29:53.0437 1552 Avgtdix - ok

14:29:53.0515 1552 b57w2k (f96038aa1ec4013a93d2420fc689d1e9) C:\WINDOWS\system32\DRIVERS\b57xp32.sys

14:29:53.0593 1552 b57w2k - ok

14:29:53.0718 1552 BASFND (5c68ac6f3e5b3e6d6a78e97d05e42c3a) C:\Program Files\Broadcom\ASFIPMon\BASFND.sys

14:29:53.0765 1552 BASFND ( UnsignedFile.Multi.Generic ) - warning

14:29:53.0765 1552 BASFND - detected UnsignedFile.Multi.Generic (1)

14:29:54.0062 1552 BCM43XX (345d38f298368dd6b0df5c4f37457a22) C:\WINDOWS\system32\DRIVERS\bcmwl5.sys

14:29:54.0343 1552 BCM43XX - ok

14:29:54.0484 1552 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys

14:29:54.0593 1552 Beep - ok

14:29:54.0703 1552 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys

14:29:54.0796 1552 cbidf2k - ok

14:29:54.0859 1552 cd20xrnt - ok

14:29:54.0890 1552 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys

14:29:55.0000 1552 Cdaudio - ok

14:29:55.0140 1552 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys

14:29:55.0250 1552 Cdfs - ok

14:29:55.0312 1552 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys

14:29:55.0421 1552 Cdrom - ok

14:29:55.0484 1552 Changer - ok

14:29:55.0531 1552 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys

14:29:55.0625 1552 CmBatt - ok

14:29:55.0687 1552 CmdIde - ok

14:29:55.0718 1552 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys

14:29:55.0828 1552 Compbatt - ok

14:29:55.0906 1552 Cpqarray - ok

14:29:55.0984 1552 CSRBC (8e1945984e147562f9f08e1d344a69cc) C:\WINDOWS\system32\Drivers\csrbcxp.sys

14:29:56.0000 1552 CSRBC ( UnsignedFile.Multi.Generic ) - warning

14:29:56.0000 1552 CSRBC - detected UnsignedFile.Multi.Generic (1)

14:29:56.0062 1552 dac2w2k - ok

14:29:56.0093 1552 dac960nt - ok

14:29:56.0156 1552 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys

14:29:56.0250 1552 Disk - ok

14:29:56.0312 1552 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys

14:29:56.0437 1552 dmboot - ok

14:29:56.0484 1552 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys

14:29:56.0578 1552 dmio - ok

14:29:56.0671 1552 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys

14:29:56.0765 1552 dmload - ok

14:29:56.0843 1552 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys

14:29:56.0953 1552 DMusic - ok

14:29:57.0015 1552 dpti2o - ok

14:29:57.0078 1552 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys

14:29:57.0171 1552 drmkaud - ok

14:29:57.0218 1552 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys

14:29:57.0328 1552 Fastfat - ok

14:29:57.0375 1552 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys

14:29:57.0484 1552 Fdc - ok

14:29:57.0515 1552 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys

14:29:57.0625 1552 Fips - ok

14:29:57.0640 1552 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys

14:29:57.0734 1552 Flpydisk - ok

14:29:57.0781 1552 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys

14:29:57.0859 1552 FltMgr - ok

14:29:57.0921 1552 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys

14:29:58.0000 1552 Fs_Rec - ok

14:29:58.0062 1552 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys

14:29:58.0171 1552 Ftdisk - ok

14:29:58.0218 1552 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys

14:29:58.0281 1552 Gpc - ok

14:29:58.0421 1552 guardian2 (c0bdab85f3e8b2138c513255e2bcc4d8) C:\WINDOWS\system32\Drivers\oz776.sys

14:29:58.0437 1552 guardian2 - ok

14:29:58.0531 1552 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys

14:29:58.0640 1552 HDAudBus - ok

14:29:58.0687 1552 hpn - ok

14:29:58.0765 1552 HSFHWAZL (290cdbb05903742ea06b7203c5a662f5) C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys

14:29:58.0859 1552 HSFHWAZL - ok

14:29:59.0000 1552 HSF_DPV (7ab812355f98858b9ecdd46e6fcc221f) C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys

14:29:59.0109 1552 HSF_DPV - ok

14:29:59.0250 1552 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys

14:29:59.0343 1552 HTTP - ok

14:29:59.0343 1552 i2omgmt - ok

14:29:59.0359 1552 i2omp - ok

14:29:59.0421 1552 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys

14:29:59.0531 1552 i8042prt - ok

14:29:59.0968 1552 ialm (37eb2dc75d8f6451ae55071610dc24e1) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys

14:30:00.0546 1552 ialm - ok

14:30:00.0703 1552 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys

14:30:00.0812 1552 Imapi - ok

14:30:00.0937 1552 ini910u - ok

14:30:01.0093 1552 IntelIde - ok

14:30:01.0296 1552 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys

14:30:01.0437 1552 intelppm - ok

14:30:01.0500 1552 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys

14:30:01.0593 1552 Ip6Fw - ok

14:30:01.0656 1552 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys

14:30:01.0765 1552 IpFilterDriver - ok

14:30:01.0781 1552 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys

14:30:01.0859 1552 IpInIp - ok

14:30:01.0937 1552 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys

14:30:02.0031 1552 IpNat - ok

14:30:02.0093 1552 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys

14:30:02.0203 1552 IPSec - ok

14:30:02.0265 1552 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys

14:30:02.0328 1552 IRENUM - ok

14:30:02.0437 1552 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys

14:30:02.0546 1552 isapnp - ok

14:30:02.0593 1552 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys

14:30:02.0703 1552 Kbdclass - ok

14:30:02.0750 1552 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys

14:30:02.0859 1552 kmixer - ok

14:30:02.0953 1552 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys

14:30:03.0031 1552 KSecDD - ok

14:30:03.0046 1552 lbrtfdc - ok

14:30:03.0093 1552 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\WINDOWS\system32\drivers\mbam.sys

14:30:03.0093 1552 MBAMProtector - ok

14:30:03.0109 1552 MBAMSwissArmy - ok

14:30:03.0156 1552 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys

14:30:03.0203 1552 mdmxsdk - ok

14:30:03.0265 1552 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys

14:30:03.0343 1552 mnmdd - ok

14:30:03.0500 1552 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys

14:30:03.0609 1552 Modem - ok

14:30:03.0656 1552 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys

14:30:03.0734 1552 Mouclass - ok

14:30:03.0781 1552 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys

14:30:03.0875 1552 MountMgr - ok

14:30:03.0937 1552 mraid35x - ok

14:30:03.0968 1552 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys

14:30:04.0078 1552 MRxDAV - ok

14:30:04.0187 1552 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys

14:30:04.0265 1552 MRxSmb - ok

14:30:04.0312 1552 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys

14:30:04.0421 1552 Msfs - ok

14:30:04.0562 1552 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys

14:30:04.0640 1552 MSKSSRV - ok

14:30:04.0671 1552 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys

14:30:04.0750 1552 MSPCLOCK - ok

14:30:04.0765 1552 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys

14:30:05.0250 1552 MSPQM - ok

14:30:05.0312 1552 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys

14:30:05.0390 1552 mssmbios - ok

14:30:05.0421 1552 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys

14:30:05.0437 1552 Mup - ok

14:30:05.0500 1552 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys

14:30:05.0609 1552 NDIS - ok

14:30:05.0671 1552 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys

14:30:05.0750 1552 NdisTapi - ok

14:30:05.0890 1552 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys

14:30:06.0000 1552 Ndisuio - ok

14:30:06.0078 1552 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys

14:30:06.0156 1552 NdisWan - ok

14:30:06.0218 1552 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys

14:30:06.0281 1552 NDProxy - ok

14:30:06.0328 1552 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys

14:30:06.0421 1552 NetBIOS - ok

14:30:06.0468 1552 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys

14:30:06.0578 1552 NetBT - ok

14:30:06.0640 1552 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys

14:30:06.0750 1552 NIC1394 - ok

14:30:06.0843 1552 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys

14:30:06.0937 1552 Npfs - ok

14:30:07.0015 1552 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys

14:30:07.0140 1552 Ntfs - ok

14:30:07.0203 1552 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys

14:30:07.0281 1552 Null - ok

14:30:07.0312 1552 NvtSp50 (dfbbb46e406d6cd7bcb58af493ba80f8) C:\WINDOWS\system32\DRIVERS\NvtSp50.sys

14:30:07.0375 1552 NvtSp50 - ok

14:30:07.0453 1552 NWADI (2f49369ddcc5ca3cdcd944b637efacad) C:\WINDOWS\system32\DRIVERS\NWADIenum.sys

14:30:07.0515 1552 NWADI - ok

14:30:07.0640 1552 NWDellModem (c4ec827bc90f5f4fa8e772b254ce1b6c) C:\WINDOWS\system32\DRIVERS\nwdelmdm.sys

14:30:07.0718 1552 NWDellModem - ok

14:30:07.0734 1552 NWDellPort (c4ec827bc90f5f4fa8e772b254ce1b6c) C:\WINDOWS\system32\DRIVERS\nwdelser.sys

14:30:07.0750 1552 NWDellPort - ok

14:30:07.0781 1552 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys

14:30:07.0875 1552 NwlnkFlt - ok

14:30:07.0937 1552 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys

14:30:08.0046 1552 NwlnkFwd - ok

14:30:08.0109 1552 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys

14:30:08.0187 1552 ohci1394 - ok

14:30:08.0234 1552 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys

14:30:08.0343 1552 Parport - ok

14:30:08.0421 1552 Partizan - ok

14:30:08.0437 1552 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys

14:30:08.0531 1552 PartMgr - ok

14:30:08.0546 1552 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys

14:30:08.0640 1552 ParVdm - ok

14:30:08.0671 1552 PCASp50 (1961590aa191b6b7dcf18a6a693af7b8) C:\WINDOWS\system32\Drivers\PCASp50.sys

14:30:08.0687 1552 PCASp50 - ok

14:30:08.0703 1552 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys

14:30:08.0781 1552 PCI - ok

14:30:08.0796 1552 PCIDump - ok

14:30:08.0812 1552 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys

14:30:08.0906 1552 PCIIde - ok

14:30:08.0921 1552 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\DRIVERS\pcmcia.sys

14:30:09.0015 1552 Pcmcia - ok

14:30:09.0046 1552 PDCOMP - ok

14:30:09.0062 1552 PDFRAME - ok

14:30:09.0078 1552 PDRELI - ok

14:30:09.0078 1552 PDRFRAME - ok

14:30:09.0093 1552 perc2 - ok

14:30:09.0109 1552 perc2hib - ok

14:30:09.0203 1552 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys

14:30:09.0312 1552 PptpMiniport - ok

14:30:09.0312 1552 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys

14:30:09.0406 1552 PSched - ok

14:30:09.0406 1552 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys

14:30:09.0484 1552 Ptilink - ok

14:30:09.0500 1552 ql1080 - ok

14:30:09.0515 1552 Ql10wnt - ok

14:30:09.0515 1552 ql12160 - ok

14:30:09.0531 1552 ql1240 - ok

14:30:09.0546 1552 ql1280 - ok

14:30:09.0578 1552 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys

14:30:09.0687 1552 RasAcd - ok

14:30:09.0828 1552 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys

14:30:09.0906 1552 Rasl2tp - ok

14:30:09.0953 1552 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys

14:30:10.0031 1552 RasPppoe - ok

14:30:10.0046 1552 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys

14:30:10.0109 1552 Raspti - ok

14:30:10.0156 1552 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys

14:30:10.0281 1552 Rdbss - ok

14:30:10.0281 1552 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys

14:30:10.0375 1552 RDPCDD - ok

14:30:10.0421 1552 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys

14:30:10.0500 1552 rdpdr - ok

14:30:10.0578 1552 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys

14:30:10.0640 1552 RDPWD - ok

14:30:10.0703 1552 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys

14:30:10.0812 1552 redbook - ok

14:30:11.0078 1552 RimUsb (616eac1b0e48b236a5a9b8ae07fdb81c) C:\WINDOWS\system32\Drivers\RimUsb.sys

14:30:11.0156 1552 RimUsb - ok

14:30:11.0312 1552 RimVSerPort (2c4fb2e9f039287767c384e46ee91030) C:\WINDOWS\system32\DRIVERS\RimSerial.sys

14:30:11.0359 1552 RimVSerPort - ok

14:30:11.0406 1552 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys

14:30:11.0515 1552 ROOTMODEM - ok

14:30:11.0578 1552 SCR3xx USB Smart Card Reader (a2b0f1ad2919b13c7eb0fc743492bfd1) C:\WINDOWS\system32\DRIVERS\SCR3XX2K.sys

14:30:11.0625 1552 SCR3xx USB Smart Card Reader - ok

14:30:11.0750 1552 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys

14:30:11.0828 1552 Secdrv - ok

14:30:11.0921 1552 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys

14:30:12.0015 1552 serenum - ok

14:30:12.0062 1552 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys

14:30:12.0171 1552 Serial - ok

14:30:12.0203 1552 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys

14:30:12.0296 1552 Sfloppy - ok

14:30:12.0312 1552 Simbad - ok

14:30:12.0359 1552 SONYPVU1 (a1eceeaa5c5e74b2499eb51d38185b84) C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS

14:30:12.0437 1552 SONYPVU1 - ok

14:30:12.0453 1552 Sparrow - ok

14:30:12.0484 1552 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys

14:30:12.0562 1552 splitter - ok

14:30:12.0578 1552 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys

14:30:12.0687 1552 sr - ok

14:30:12.0765 1552 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys

14:30:12.0859 1552 Srv - ok

14:30:13.0062 1552 STHDA (951801dfb54d86f611f0af47825476f9) C:\WINDOWS\system32\drivers\sthda.sys

14:30:13.0140 1552 STHDA - ok

14:30:13.0218 1552 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys

14:30:13.0328 1552 swenum - ok

14:30:13.0406 1552 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys

14:30:13.0515 1552 swmidi - ok

14:30:13.0531 1552 symc810 - ok

14:30:13.0531 1552 symc8xx - ok

14:30:13.0546 1552 sym_hi - ok

14:30:13.0562 1552 sym_u3 - ok

14:30:13.0609 1552 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys

14:30:13.0718 1552 sysaudio - ok

14:30:13.0781 1552 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys

14:30:13.0921 1552 Tcpip - ok

14:30:14.0062 1552 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys

14:30:14.0156 1552 TDPIPE - ok

14:30:14.0187 1552 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys

14:30:14.0250 1552 TDTCP - ok

14:30:14.0312 1552 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys

14:30:14.0406 1552 TermDD - ok

14:30:14.0421 1552 TosIde - ok

14:30:14.0484 1552 tosporte (8d624d3bd1f2d78bd1c01a2d4e954b4e) C:\WINDOWS\system32\DRIVERS\tosporte.sys

14:30:14.0546 1552 tosporte - ok

14:30:14.0625 1552 tosrfbd (399c5e4db7bdd5a83a7d26c96389b85a) C:\WINDOWS\system32\DRIVERS\tosrfbd.sys

14:30:14.0640 1552 tosrfbd - ok

14:30:14.0656 1552 tosrfbnp (181e217a7a326817d97946d045b3cb46) C:\WINDOWS\system32\Drivers\tosrfbnp.sys

14:30:14.0703 1552 tosrfbnp - ok

14:30:14.0750 1552 Tosrfcom (e90ace3b4fa7a85f992bc21eb779c407) C:\WINDOWS\system32\Drivers\tosrfcom.sys

14:30:14.0781 1552 Tosrfcom - ok

14:30:14.0875 1552 Tosrfhid (efc95c0dc6f96b228f58319776006548) C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys

14:30:14.0921 1552 Tosrfhid - ok

14:30:14.0968 1552 tosrfnds (c52fd27b9adf3a1f22cb90e6bcf9b0cb) C:\WINDOWS\system32\DRIVERS\tosrfnds.sys

14:30:14.0984 1552 tosrfnds - ok

14:30:15.0140 1552 Tosrfusb (98c04a6432ce9c2ad328f57b9384d348) C:\WINDOWS\system32\DRIVERS\tosrfusb.sys

14:30:15.0218 1552 Tosrfusb - ok

14:30:15.0281 1552 TrueSight (f69641efdb19acb4753b0155f7fdeed5) c:\windows\system32\drivers\TrueSight.sys

14:30:15.0296 1552 TrueSight ( UnsignedFile.Multi.Generic ) - warning

14:30:15.0296 1552 TrueSight - detected UnsignedFile.Multi.Generic (1)

14:30:15.0343 1552 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys

14:30:15.0453 1552 Udfs - ok

14:30:15.0468 1552 ultra - ok

14:30:15.0531 1552 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys

14:30:15.0656 1552 Update - ok

14:30:15.0750 1552 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys

14:30:15.0859 1552 usbccgp - ok

14:30:15.0937 1552 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys

14:30:16.0046 1552 usbehci - ok

14:30:16.0109 1552 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys

14:30:16.0203 1552 usbhub - ok

14:30:16.0265 1552 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys

14:30:16.0359 1552 usbscan - ok

14:30:16.0406 1552 usbstor (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS

14:30:16.0515 1552 usbstor - ok

14:30:16.0562 1552 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys

14:30:16.0625 1552 usbuhci - ok

14:30:16.0656 1552 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys

14:30:17.0234 1552 VgaSave - ok

14:30:17.0250 1552 ViaIde - ok

14:30:17.0296 1552 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys

14:30:17.0406 1552 VolSnap - ok

14:30:17.0484 1552 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys

14:30:17.0546 1552 Wanarp - ok

14:30:17.0656 1552 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys

14:30:17.0671 1552 Wdf01000 - ok

14:30:17.0687 1552 WDICA - ok

14:30:17.0734 1552 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys

14:30:17.0812 1552 wdmaud - ok

14:30:17.0890 1552 winachsf (a8596cf86d445269a42ecc08b7066a4c) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys

14:30:18.0000 1552 winachsf - ok

14:30:18.0078 1552 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys

14:30:18.0140 1552 WmiAcpi - ok

14:30:18.0171 1552 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0

14:30:18.0625 1552 \Device\Harddisk0\DR0 - ok

14:30:18.0625 1552 Boot (0x1200) (fe9993a2991e069e459dd8e492defed0) \Device\Harddisk0\DR0\Partition0

14:30:18.0625 1552 \Device\Harddisk0\DR0\Partition0 - ok

14:30:18.0625 1552 ============================================================

14:30:18.0625 1552 Scan finished

14:30:18.0625 1552 ============================================================

14:30:18.0734 1564 Detected object count: 3

14:30:18.0734 1564 Actual detected object count: 3

14:47:55.0796 1564 BASFND ( UnsignedFile.Multi.Generic ) - skipped by user

14:47:55.0796 1564 BASFND ( UnsignedFile.Multi.Generic ) - User select action: Skip

14:47:55.0796 1564 CSRBC ( UnsignedFile.Multi.Generic ) - skipped by user

14:47:55.0796 1564 CSRBC ( UnsignedFile.Multi.Generic ) - User select action: Skip

14:47:55.0796 1564 TrueSight ( UnsignedFile.Multi.Generic ) - skipped by user

14:47:55.0796 1564 TrueSight ( UnsignedFile.Multi.Generic ) - User select action: Skip

14:48:54.0578 2908 ============================================================

14:48:54.0578 2908 Scan started

14:48:54.0578 2908 Mode: Manual; SigCheck; TDLFS;

14:48:54.0578 2908 ============================================================

14:48:54.0875 2908 Abiosdsk - ok

14:48:54.0906 2908 abp480n5 - ok

14:48:55.0015 2908 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys

14:48:55.0203 2908 ACPI - ok

14:48:55.0296 2908 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys

14:48:55.0375 2908 ACPIEC - ok

14:48:55.0390 2908 adpu160m - ok

14:48:55.0437 2908 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys

14:48:55.0546 2908 aec - ok

14:48:55.0703 2908 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys

14:48:55.0750 2908 AFD - ok

14:48:55.0796 2908 Aha154x - ok

14:48:55.0828 2908 aic78u2 - ok

14:48:55.0859 2908 aic78xx - ok

14:48:55.0890 2908 AliIde - ok

14:48:55.0937 2908 amsint - ok

14:48:56.0031 2908 ApfiltrService (350f19eb5fe4ec37a2414df56cde1aa8) C:\WINDOWS\system32\DRIVERS\Apfiltr.sys

14:48:56.0078 2908 ApfiltrService - ok

14:48:56.0109 2908 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys

14:48:56.0187 2908 Arp1394 - ok

14:48:56.0234 2908 asc - ok

14:48:56.0281 2908 asc3350p - ok

14:48:56.0343 2908 asc3550 - ok

14:48:56.0390 2908 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys

14:48:56.0500 2908 AsyncMac - ok

14:48:56.0578 2908 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys

14:48:56.0687 2908 atapi - ok

14:48:56.0703 2908 Atdisk - ok

14:48:56.0718 2908 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys

14:48:56.0812 2908 Atmarpc - ok

14:48:56.0875 2908 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys

14:48:56.0968 2908 audstub - ok

14:48:57.0015 2908 Avgfwdx (841b0a982065bffc7d7e84009f2fa76f) C:\WINDOWS\system32\DRIVERS\avgfwdx.sys

14:48:57.0031 2908 Avgfwdx - ok

14:48:57.0031 2908 Avgfwfd (841b0a982065bffc7d7e84009f2fa76f) C:\WINDOWS\system32\DRIVERS\avgfwdx.sys

14:48:57.0031 2908 Avgfwfd - ok

14:48:57.0125 2908 AVGIDSDriver (4fa401b33c1b50c816486f6951244a14) C:\WINDOWS\system32\DRIVERS\AVGIDSDriver.Sys

14:48:57.0125 2908 AVGIDSDriver - ok

14:48:57.0218 2908 AVGIDSEH (69578bc9d43d614c6b3455db4af19762) C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys

14:48:57.0234 2908 AVGIDSEH - ok

14:48:57.0265 2908 AVGIDSFilter (6df528406aa22201f392b9b19121cd6f) C:\WINDOWS\system32\DRIVERS\AVGIDSFilter.Sys

14:48:57.0281 2908 AVGIDSFilter - ok

14:48:57.0375 2908 AVGIDSShim (1e01c2166b5599802bcd61b9691f7476) C:\WINDOWS\system32\DRIVERS\AVGIDSShim.Sys

14:48:57.0375 2908 AVGIDSShim - ok

14:48:57.0468 2908 Avgldx86 (bf8118cd5e2255387b715b534d64acd1) C:\WINDOWS\system32\DRIVERS\avgldx86.sys

14:48:57.0468 2908 Avgldx86 - ok

14:48:57.0484 2908 Avgmfx86 (1c77ef67f196466adc9924cb288afe87) C:\WINDOWS\system32\DRIVERS\avgmfx86.sys

14:48:57.0500 2908 Avgmfx86 - ok

14:48:57.0500 2908 Avgrkx86 (f2038ed7284b79dcef581468121192a9) C:\WINDOWS\system32\DRIVERS\avgrkx86.sys

14:48:57.0515 2908 Avgrkx86 - ok

14:48:57.0531 2908 Avgtdix (a6d562b612216d8d02a35ebeb92366bd) C:\WINDOWS\system32\DRIVERS\avgtdix.sys

14:48:57.0546 2908 Avgtdix - ok

14:48:57.0640 2908 b57w2k (f96038aa1ec4013a93d2420fc689d1e9) C:\WINDOWS\system32\DRIVERS\b57xp32.sys

14:48:57.0687 2908 b57w2k - ok

14:48:57.0812 2908 BASFND (5c68ac6f3e5b3e6d6a78e97d05e42c3a) C:\Program Files\Broadcom\ASFIPMon\BASFND.sys

14:48:57.0843 2908 BASFND ( UnsignedFile.Multi.Generic ) - warning

14:48:57.0843 2908 BASFND - detected UnsignedFile.Multi.Generic (1)

14:48:58.0125 2908 BCM43XX (345d38f298368dd6b0df5c4f37457a22) C:\WINDOWS\system32\DRIVERS\bcmwl5.sys

14:48:58.0265 2908 BCM43XX - ok

14:48:58.0343 2908 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys

14:48:58.0437 2908 Beep - ok

14:48:58.0484 2908 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys

14:48:58.0593 2908 cbidf2k - ok

14:48:58.0593 2908 cd20xrnt - ok

14:48:58.0609 2908 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys

14:48:58.0687 2908 Cdaudio - ok

14:48:58.0750 2908 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys

14:48:58.0859 2908 Cdfs - ok

14:48:58.0953 2908 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys

14:48:59.0062 2908 Cdrom - ok

14:48:59.0125 2908 Changer - ok

14:48:59.0187 2908 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys

14:48:59.0265 2908 CmBatt - ok

14:48:59.0312 2908 CmdIde - ok

14:48:59.0359 2908 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys

14:48:59.0453 2908 Compbatt - ok

14:48:59.0515 2908 Cpqarray - ok

14:48:59.0609 2908 CSRBC (8e1945984e147562f9f08e1d344a69cc) C:\WINDOWS\system32\Drivers\csrbcxp.sys

14:48:59.0625 2908 CSRBC ( UnsignedFile.Multi.Generic ) - warning

14:48:59.0625 2908 CSRBC - detected UnsignedFile.Multi.Generic (1)

14:48:59.0671 2908 dac2w2k - ok

14:48:59.0703 2908 dac960nt - ok

14:48:59.0812 2908 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys

14:48:59.0906 2908 Disk - ok

14:49:00.0046 2908 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys

14:49:00.0171 2908 dmboot - ok

14:49:00.0281 2908 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys

14:49:00.0375 2908 dmio - ok

14:49:00.0453 2908 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys

14:49:00.0546 2908 dmload - ok

14:49:00.0609 2908 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys

14:49:00.0718 2908 DMusic - ok

14:49:00.0828 2908 dpti2o - ok

14:49:00.0828 2908 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys

14:49:00.0921 2908 drmkaud - ok

14:49:01.0015 2908 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys

14:49:01.0125 2908 Fastfat - ok

14:49:01.0171 2908 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys

14:49:01.0265 2908 Fdc - ok

14:49:01.0328 2908 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys

14:49:01.0437 2908 Fips - ok

14:49:01.0437 2908 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys

14:49:01.0515 2908 Flpydisk - ok

14:49:01.0578 2908 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys

14:49:01.0656 2908 FltMgr - ok

14:49:01.0671 2908 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys

14:49:01.0750 2908 Fs_Rec - ok

14:49:01.0765 2908 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys

14:49:01.0875 2908 Ftdisk - ok

14:49:01.0921 2908 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys

14:49:01.0984 2908 Gpc - ok

14:49:02.0140 2908 guardian2 (c0bdab85f3e8b2138c513255e2bcc4d8) C:\WINDOWS\system32\Drivers\oz776.sys

14:49:02.0140 2908 guardian2 - ok

14:49:02.0187 2908 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys

14:49:02.0296 2908 HDAudBus - ok

14:49:02.0312 2908 hpn - ok

14:49:02.0375 2908 HSFHWAZL (290cdbb05903742ea06b7203c5a662f5) C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys

14:49:02.0421 2908 HSFHWAZL - ok

14:49:02.0500 2908 HSF_DPV (7ab812355f98858b9ecdd46e6fcc221f) C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys

14:49:02.0562 2908 HSF_DPV - ok

14:49:02.0640 2908 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys

14:49:02.0687 2908 HTTP - ok

14:49:02.0781 2908 i2omgmt - ok

14:49:02.0796 2908 i2omp - ok

14:49:02.0843 2908 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys

14:49:02.0953 2908 i8042prt - ok

14:49:03.0359 2908 ialm (37eb2dc75d8f6451ae55071610dc24e1) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys

14:49:03.0640 2908 ialm - ok

14:49:03.0687 2908 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys

14:49:03.0781 2908 Imapi - ok

14:49:03.0796 2908 ini910u - ok

14:49:03.0812 2908 IntelIde - ok

14:49:03.0890 2908 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys

14:49:03.0968 2908 intelppm - ok

14:49:04.0000 2908 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys

14:49:04.0078 2908 Ip6Fw - ok

14:49:04.0203 2908 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys

14:49:04.0312 2908 IpFilterDriver - ok

14:49:04.0312 2908 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys

14:49:04.0390 2908 IpInIp - ok

14:49:04.0453 2908 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys

14:49:04.0546 2908 IpNat - ok

14:49:04.0609 2908 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys

14:49:04.0718 2908 IPSec - ok

14:49:04.0734 2908 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys

14:49:04.0812 2908 IRENUM - ok

14:49:04.0859 2908 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys

14:49:04.0968 2908 isapnp - ok

14:49:05.0031 2908 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys

14:49:05.0140 2908 Kbdclass - ok

14:49:05.0171 2908 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys

14:49:05.0281 2908 kmixer - ok

14:49:05.0312 2908 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys

14:49:05.0328 2908 KSecDD - ok

14:49:05.0343 2908 lbrtfdc - ok

14:49:05.0375 2908 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\WINDOWS\system32\drivers\mbam.sys

14:49:05.0375 2908 MBAMProtector - ok

14:49:05.0484 2908 MBAMSwissArmy - ok

14:49:05.0531 2908 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys

14:49:05.0578 2908 mdmxsdk - ok

14:49:05.0593 2908 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys

14:49:05.0671 2908 mnmdd - ok

14:49:05.0734 2908 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys

14:49:06.0234 2908 Modem - ok

14:49:06.0265 2908 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys

14:49:06.0343 2908 Mouclass - ok

14:49:06.0359 2908 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys

14:49:06.0468 2908 MountMgr - ok

14:49:06.0468 2908 mraid35x - ok

14:49:06.0515 2908 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys

14:49:06.0625 2908 MRxDAV - ok

14:49:06.0703 2908 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys

14:49:06.0750 2908 MRxSmb - ok

14:49:06.0843 2908 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys

14:49:06.0921 2908 Msfs - ok

14:49:06.0953 2908 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys

14:49:07.0046 2908 MSKSSRV - ok

14:49:07.0093 2908 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys

14:49:07.0156 2908 MSPCLOCK - ok

14:49:07.0187 2908 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys

14:49:07.0265 2908 MSPQM - ok

14:49:07.0328 2908 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys

14:49:07.0390 2908 mssmbios - ok

14:49:07.0437 2908 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys

14:49:07.0453 2908 Mup - ok

14:49:07.0515 2908 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys

14:49:07.0609 2908 NDIS - ok

14:49:07.0671 2908 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys

14:49:07.0718 2908 NdisTapi - ok

14:49:07.0843 2908 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys

14:49:07.0953 2908 Ndisuio - ok

14:49:07.0984 2908 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys

14:49:08.0078 2908 NdisWan - ok

14:49:08.0140 2908 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys

14:49:08.0187 2908 NDProxy - ok

14:49:08.0234 2908 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys

14:49:08.0328 2908 NetBIOS - ok

14:49:08.0375 2908 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys

14:49:08.0484 2908 NetBT - ok

14:49:08.0546 2908 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys

14:49:08.0656 2908 NIC1394 - ok

14:49:08.0703 2908 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys

14:49:08.0812 2908 Npfs - ok

14:49:08.0921 2908 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys

14:49:09.0046 2908 Ntfs - ok

14:49:09.0125 2908 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys

14:49:09.0187 2908 Null - ok

14:49:09.0234 2908 NvtSp50 (dfbbb46e406d6cd7bcb58af493ba80f8) C:\WINDOWS\system32\DRIVERS\NvtSp50.sys

14:49:09.0250 2908 NvtSp50 - ok

14:49:09.0375 2908 NWADI (2f49369ddcc5ca3cdcd944b637efacad) C:\WINDOWS\system32\DRIVERS\NWADIenum.sys

14:49:09.0421 2908 NWADI - ok

14:49:09.0500 2908 NWDellModem (c4ec827bc90f5f4fa8e772b254ce1b6c) C:\WINDOWS\system32\DRIVERS\nwdelmdm.sys

14:49:09.0546 2908 NWDellModem - ok

14:49:09.0562 2908 NWDellPort (c4ec827bc90f5f4fa8e772b254ce1b6c) C:\WINDOWS\system32\DRIVERS\nwdelser.sys

14:49:09.0562 2908 NWDellPort - ok

14:49:09.0609 2908 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys

14:49:09.0703 2908 NwlnkFlt - ok

14:49:09.0796 2908 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys

14:49:09.0875 2908 NwlnkFwd - ok

14:49:09.0890 2908 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys

14:49:09.0953 2908 ohci1394 - ok

14:49:10.0000 2908 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys

14:49:10.0078 2908 Parport - ok

14:49:10.0078 2908 Partizan - ok

14:49:10.0109 2908 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys

14:49:10.0218 2908 PartMgr - ok

14:49:10.0234 2908 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys

14:49:10.0312 2908 ParVdm - ok

14:49:10.0343 2908 PCASp50 (1961590aa191b6b7dcf18a6a693af7b8) C:\WINDOWS\system32\Drivers\PCASp50.sys

14:49:10.0343 2908 PCASp50 - ok

14:49:10.0375 2908 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys

14:49:10.0453 2908 PCI - ok

14:49:10.0484 2908 PCIDump - ok

14:49:10.0531 2908 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys

14:49:10.0625 2908 PCIIde - ok

14:49:10.0671 2908 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\DRIVERS\pcmcia.sys

14:49:10.0765 2908 Pcmcia - ok

14:49:10.0781 2908 PDCOMP - ok

14:49:10.0796 2908 PDFRAME - ok

14:49:10.0796 2908 PDRELI - ok

14:49:10.0812 2908 PDRFRAME - ok

14:49:10.0828 2908 perc2 - ok

14:49:10.0828 2908 perc2hib - ok

14:49:10.0906 2908 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys

14:49:11.0015 2908 PptpMiniport - ok

14:49:11.0062 2908 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys

14:49:11.0171 2908 PSched - ok

14:49:11.0250 2908 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys

14:49:11.0343 2908 Ptilink - ok

14:49:11.0359 2908 ql1080 - ok

14:49:11.0375 2908 Ql10wnt - ok

14:49:11.0375 2908 ql12160 - ok

14:49:11.0390 2908 ql1240 - ok

14:49:11.0406 2908 ql1280 - ok

14:49:11.0437 2908 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys

14:49:11.0546 2908 RasAcd - ok

14:49:11.0593 2908 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys

14:49:11.0656 2908 Rasl2tp - ok

14:49:11.0671 2908 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys

14:49:11.0765 2908 RasPppoe - ok

14:49:11.0781 2908 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys

14:49:11.0859 2908 Raspti - ok

14:49:11.0921 2908 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys

14:49:12.0031 2908 Rdbss - ok

14:49:12.0046 2908 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys

14:49:12.0125 2908 RDPCDD - ok

14:49:12.0203 2908 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys

14:49:12.0296 2908 rdpdr - ok

14:49:12.0343 2908 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys

14:49:12.0375 2908 RDPWD - ok

14:49:12.0437 2908 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys

14:49:12.0531 2908 redbook - ok

14:49:12.0671 2908 RimUsb (616eac1b0e48b236a5a9b8ae07fdb81c) C:\WINDOWS\system32\Drivers\RimUsb.sys

14:49:12.0703 2908 RimUsb - ok

14:49:12.0828 2908 RimVSerPort (2c4fb2e9f039287767c384e46ee91030) C:\WINDOWS\system32\DRIVERS\RimSerial.sys

14:49:12.0843 2908 RimVSerPort - ok

14:49:12.0953 2908 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys

14:49:13.0062 2908 ROOTMODEM - ok

14:49:13.0203 2908 SCR3xx USB Smart Card Reader (a2b0f1ad2919b13c7eb0fc743492bfd1) C:\WINDOWS\system32\DRIVERS\SCR3XX2K.sys

14:49:13.0234 2908 SCR3xx USB Smart Card Reader - ok

14:49:13.0359 2908 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys

14:49:13.0453 2908 Secdrv - ok

14:49:13.0515 2908 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys

14:49:13.0625 2908 serenum - ok

14:49:13.0671 2908 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys

14:49:13.0781 2908 Serial - ok

14:49:13.0843 2908 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys

14:49:13.0953 2908 Sfloppy - ok

14:49:13.0968 2908 Simbad - ok

14:49:14.0000 2908 SONYPVU1 (a1eceeaa5c5e74b2499eb51d38185b84) C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS

14:49:14.0078 2908 SONYPVU1 - ok

14:49:14.0109 2908 Sparrow - ok

14:49:14.0140 2908 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys

14:49:14.0218 2908 splitter - ok

14:49:14.0234 2908 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys

14:49:14.0343 2908 sr - ok

14:49:14.0406 2908 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys

14:49:14.0468 2908 Srv - ok

14:49:14.0640 2908 STHDA (951801dfb54d86f611f0af47825476f9) C:\WINDOWS\system32\drivers\sthda.sys

14:49:14.0671 2908 STHDA - ok

14:49:14.0812 2908 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys

14:49:14.0937 2908 swenum - ok

14:49:15.0046 2908 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys

14:49:15.0140 2908 swmidi - ok

14:49:15.0156 2908 symc810 - ok

14:49:15.0171 2908 symc8xx - ok

14:49:15.0171 2908 sym_hi - ok

14:49:15.0187 2908 sym_u3 - ok

14:49:15.0234 2908 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys

14:49:15.0343 2908 sysaudio - ok

14:49:15.0406 2908 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys

14:49:15.0468 2908 Tcpip - ok

14:49:15.0562 2908 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys

14:49:15.0656 2908 TDPIPE - ok

14:49:15.0750 2908 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys

14:49:15.0828 2908 TDTCP - ok

14:49:15.0890 2908 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys

14:49:15.0984 2908 TermDD - ok

14:49:16.0046 2908 TosIde - ok

14:49:16.0125 2908 tosporte (8d624d3bd1f2d78bd1c01a2d4e954b4e) C:\WINDOWS\system32\DRIVERS\tosporte.sys

14:49:16.0140 2908 tosporte - ok

14:49:16.0218 2908 tosrfbd (399c5e4db7bdd5a83a7d26c96389b85a) C:\WINDOWS\system32\DRIVERS\tosrfbd.sys

14:49:16.0234 2908 tosrfbd - ok

14:49:16.0312 2908 tosrfbnp (181e217a7a326817d97946d045b3cb46) C:\WINDOWS\system32\Drivers\tosrfbnp.sys

14:49:16.0343 2908 tosrfbnp - ok

14:49:16.0390 2908 Tosrfcom (e90ace3b4fa7a85f992bc21eb779c407) C:\WINDOWS\system32\Drivers\tosrfcom.sys

14:49:16.0406 2908 Tosrfcom - ok

14:49:16.0406 2908 Tosrfhid (efc95c0dc6f96b228f58319776006548) C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys

14:49:16.0453 2908 Tosrfhid - ok

14:49:16.0468 2908 tosrfnds (c52fd27b9adf3a1f22cb90e6bcf9b0cb) C:\WINDOWS\system32\DRIVERS\tosrfnds.sys

14:49:16.0468 2908 tosrfnds - ok

14:49:16.0515 2908 Tosrfusb (98c04a6432ce9c2ad328f57b9384d348) C:\WINDOWS\system32\DRIVERS\tosrfusb.sys

14:49:16.0562 2908 Tosrfusb - ok

14:49:16.0687 2908 TrueSight (f69641efdb19acb4753b0155f7fdeed5) c:\windows\system32\drivers\TrueSight.sys

14:49:16.0703 2908 TrueSight ( UnsignedFile.Multi.Generic ) - warning

14:49:16.0703 2908 TrueSight - detected UnsignedFile.Multi.Generic (1)

14:49:16.0843 2908 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys

14:49:16.0953 2908 Udfs - ok

14:49:16.0953 2908 ultra - ok

14:49:17.0015 2908 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys

14:49:17.0140 2908 Update - ok

14:49:17.0187 2908 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys

14:49:17.0296 2908 usbccgp - ok

14:49:17.0343 2908 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys

14:49:17.0437 2908 usbehci - ok

14:49:17.0500 2908 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys

14:49:17.0609 2908 usbhub - ok

14:49:17.0734 2908 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys

14:49:17.0796 2908 usbscan - ok

14:49:17.0828 2908 usbstor (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS

14:49:17.0937 2908 usbstor - ok

14:49:18.0125 2908 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys

14:49:18.0203 2908 usbuhci - ok

14:49:18.0218 2908 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys

14:49:18.0328 2908 VgaSave - ok

14:49:18.0343 2908 ViaIde - ok

14:49:18.0375 2908 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys

14:49:18.0484 2908 VolSnap - ok

14:49:18.0531 2908 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys

14:49:18.0640 2908 Wanarp - ok

14:49:18.0796 2908 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys

14:49:18.0812 2908 Wdf01000 - ok

14:49:18.0828 2908 WDICA - ok

14:49:18.0890 2908 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys

14:49:19.0000 2908 wdmaud - ok

14:49:19.0078 2908 winachsf (a8596cf86d445269a42ecc08b7066a4c) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys

14:49:19.0156 2908 winachsf - ok

14:49:19.0296 2908 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys

14:49:19.0375 2908 WmiAcpi - ok

14:49:19.0421 2908 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0

14:49:19.0859 2908 \Device\Harddisk0\DR0 - ok

14:49:19.0859 2908 Boot (0x1200) (fe9993a2991e069e459dd8e492defed0) \Device\Harddisk0\DR0\Partition0

14:49:19.0859 2908 \Device\Harddisk0\DR0\Partition0 - ok

14:49:19.0859 2908 ============================================================

14:49:19.0859 2908 Scan finished

14:49:19.0859 2908 ============================================================

14:49:19.0875 1428 Detected object count: 3

14:49:19.0875 1428 Actual detected object count: 3

14:50:15.0593 1428 HKLM\SYSTEM\ControlSet001\services\BASFND - will be deleted on reboot

14:50:15.0593 1428 HKLM\SYSTEM\ControlSet003\services\BASFND - will be deleted on reboot

14:50:15.0593 1428 C:\Program Files\Broadcom\ASFIPMon\BASFND.sys - will be deleted on reboot

14:50:15.0593 1428 BASFND ( UnsignedFile.Multi.Generic ) - User select action: Delete

14:50:15.0593 1428 HKLM\SYSTEM\ControlSet001\services\CSRBC - will be deleted on reboot

14:50:15.0593 1428 HKLM\SYSTEM\ControlSet003\services\CSRBC - will be deleted on reboot

14:50:15.0593 1428 C:\WINDOWS\system32\Drivers\csrbcxp.sys - will be deleted on reboot

14:50:15.0593 1428 CSRBC ( UnsignedFile.Multi.Generic ) - User select action: Delete

14:50:15.0593 1428 HKLM\SYSTEM\ControlSet001\services\TrueSight - will be deleted on reboot

14:50:15.0593 1428 HKLM\SYSTEM\ControlSet003\services\TrueSight - will be deleted on reboot

14:50:15.0609 1428 c:\windows\system32\drivers\TrueSight.sys - will be deleted on reboot

14:50:15.0609 1428 TrueSight ( UnsignedFile.Multi.Generic ) - User select action: Delete

14:50:26.0578 1980 Deinitialize success

Link to post
Share on other sites

These are all good files and the default setting was to skip these:

BASFND.sys

csrbcxp.sys

TrueSight.sys

We have to replace them now.

Please download SystemLook from one of the links below and save it to your Desktop.

Download Mirror #1

Download Mirror #2


  • Double-click SystemLook.exe to run it.
  • Copy the content of the following codebox into the main textfield:
    :filefind
    BASFND.sys
    csrbcxp.sys
    TrueSight.sys


  • Click the Look button to start the scan.
  • When finished, a notepad window will open with the results of the scan. Please post this log in your next reply.

Note: The log can also be found on your Desktop entitled SystemLook.txt

MrC

Link to post
Share on other sites

Here it is!

SystemLook 30.07.11 by jpshortstuff

Log created at 19:18 on 07/01/2012 by dh

Administrator - Elevation successful

========== filefind ==========

Searching for "BASFND.sys "

C:\Program Files\Broadcom\ASFConfig\BASFND.sys --a---- 10480 bytes [19:21 19/12/2006] [19:21 19/12/2006] 5C68AC6F3E5B3E6D6A78E97D05E42C3A

Searching for "csrbcxp.sys "

C:\dell\drivers\R181542\x32\DFU\Driver\csrbcxp.sys --a---- 31744 bytes [17:36 06/01/2011] [16:50 04/09/2007] 8E1945984E147562F9F08E1D344A69CC

C:\dell\drivers\R181542\x64\DFU\Driver\csrbcxp.sys --a---- 36352 bytes [17:36 06/01/2011] [15:22 16/01/2007] 07ACD5A961C31E5A3B8BC0D10811796C

Searching for "TrueSight.sys"

No files found.

-= EOF =-

These are all good files and the default setting was to skip these:

BASFND.sys

csrbcxp.sys

TrueSight.sys

We have to replace them now.

Please download SystemLook from one of the links below and save it to your Desktop.

Download Mirror #1

Download Mirror #2


  • Double-click SystemLook.exe to run it.
  • Copy the content of the following codebox into the main textfield:
    :filefind
    BASFND.sys
    csrbcxp.sys
    TrueSight.sys


  • Click the Look button to start the scan.
  • When finished, a notepad window will open with the results of the scan. Please post this log in your next reply.

Note: The log can also be found on your Desktop entitled SystemLook.txt

MrC

Link to post
Share on other sites

OK.......

BASFND.sys> is still where it belongs.

TrueSight.sys > I don't know what this belongs to, but you'll have reinstall the app if it doesn't work.

csrbcxp.sys > there's a copy on the machine that we can replace:

Please download OTL from one of the links below:

http://oldtimer.geekstogo.com/OTL.exe

http://oldtimer.geekstogo.com/OTL.com (<---renamed version)

Save it to your desktop.

Run OTL

  • Under the Custom Scans/Fixes box at the bottom, paste in the following

    :files
    C:\WINDOWS\system32\Drivers\csrbcxp.sys|C:\dell\drivers\R181542\x32\DFU\Driver\csrbcxp.sys /replace


  • Then click the Run Fix button at the top
  • Let the program run unhindered, when done it will say "Fix Complete press ok to open the log"
  • Please post that log in your next reply. Note: If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes. In this case, after the reboot, open Notepad (Start->All Programs->Accessories->Notepad), click File->Open, in the File Name box enter *.log and press the Enter key, navigate to the C:\_OTL\MovedFiles folder, and open the newest .log file present, and copy/paste the contents of that document back here in your next post.

MrC

Link to post
Share on other sites

========== FILES ==========

File C:\WINDOWS\system32\Drivers\csrbcxp.sys successfully replaced with C:\dell\drivers\R181542\x32\DFU\Driver\csrbcxp.sys

OTL by OldTimer - Version 3.2.31.0 log created on 01082012_123021

OK.......

BASFND.sys> is still where it belongs.

TrueSight.sys > I don't know what this belongs to, but you'll have reinstall the app if it doesn't work.

csrbcxp.sys > there's a copy on the machine that we can replace:

Please download OTL from one of the links below:

http://oldtimer.geekstogo.com/OTL.exe

http://oldtimer.geekstogo.com/OTL.com (<---renamed version)

Save it to your desktop.

Run OTL

  • Under the Custom Scans/Fixes box at the bottom, paste in the following

    :files
    C:\WINDOWS\system32\Drivers\csrbcxp.sys|C:\dell\drivers\R181542\x32\DFU\Driver\csrbcxp.sys /replace


  • Then click the Run Fix button at the top
  • Let the program run unhindered, when done it will say "Fix Complete press ok to open the log"
  • Please post that log in your next reply. Note: If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes. In this case, after the reboot, open Notepad (Start->All Programs->Accessories->Notepad), click File->Open, in the File Name box enter *.log and press the Enter key, navigate to the C:\_OTL\MovedFiles folder, and open the newest .log file present, and copy/paste the contents of that document back here in your next post.

MrC

Link to post
Share on other sites

Please visit this webpage for download links, and instructions for running ComboFix

http://www.bleepingcomputer.com/combofix/how-to-use-combofix

Ensure you have disabled all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Make sure you run ComboFix from your desktop.

Please include the C:\ComboFix.txt in your next reply for further review.

MrC

Link to post
Share on other sites

  • 2 weeks later...

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.