Jump to content

enable malicious website blocking--blocked


Recommended Posts

  • Staff

Greetings and Welcome to The Forums!!

My name is Gringo and I'll be glad to help you with your malware problems.

I have put together somethings for you to keep in mind while I am helping you to make things go easier and faster for both of us


  • Please do not run any tools unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.

    [*]Please do not attach logs or use code boxes, just copy and paste the text.

    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.

    [*]Please read every post completely before doing anything.

    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.

    [*]Please provide feedback about your experience as we go.

    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.

NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.

These are the programs I would like you to run next, if you have any problems with these just skip it and run the next one.

-Security Check-

  • Download Security Check by screen317 from
here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

-AdwCleaner-

  • Please download
AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next answer.
  • You can find the logfile at C:\AdwCleaner[s1].txt as well.

--RogueKiller--

  • Download & SAVE to your Desktop RogueKiller or from here
    • Quit all programs that you may have started.
    • Please disconnect any USB or external drives from the computer before you run this scan!
    • For Vista or Windows 7, right-click and select "Run as Administrator to start"
    • For Windows XP, double-click to start.
    • Wait until Prescan has finished ...
    • Then Click on "Scan" button
    • Wait until the Status box shows "Scan Finished"
    • click on "delete"
    • Wait until the Status box shows "Deleting Finished"
    • Click on "Report" and copy/paste the content of the Notepad into your next reply.
    • The log should be found in RKreport[1].txt on your Desktop
    • Exit/Close RogueKiller+

Gringo

Link to post
Share on other sites

Scans as requested>

Results of screen317's Security Check version 0.99.54

Windows XP x64

Out of date service pack!!

Internet Explorer 8

``````````````Antivirus/Firewall Check:``````````````

Windows Firewall Enabled!

Microsoft Security Essentials

Antivirus up to date!

`````````Anti-malware/Other Utilities Check:`````````

Spybot - Search & Destroy

Malwarebytes Anti-Malware version 1.65.1.1000

Java 6 Update 37

Java version out of Date!

Adobe Flash Player 11.4.402.287

Adobe Reader 9 Adobe Reader out of Date!

Mozilla Firefox (16.0.2)

````````Process Check: objlist.exe by Laurent````````

Microsoft Security Essentials msseces.exe

Windows Defender MSMpEng.exe

Malwarebytes' Anti-Malware mbamscheduler.exe

`````````````````System Health check`````````````````

Total Fragmentation on Drive C: %

````````````````````End of Log``````````````````````

# AdwCleaner v2.007 - Logfile created 11/08/2012 at 22:54:48

# Updated 06/11/2012 by Xplode

# Operating system : Microsoft Windows XP Service Pack 2 (64 bits)

# User : Administrator - ASUSSMALL

# Boot Mode : Normal

# Running from : C:\Documents and Settings\Administrator\My Documents\Downloads\adwcleaner.exe

# Option [Delete]

***** [services] *****

***** [Files / Folders] *****

Folder Deleted : C:\Documents and Settings\All Users\Application Data\boost_interprocess

***** [Registry] *****

Key Deleted : HKCU\Software\Zugo

***** [internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry is clean.

-\\ Mozilla Firefox v16.0.2 (en-US)

Profile name : default

File : C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\1nbemqas.default\prefs.js

C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\1nbemqas.default\user.js ... Deleted !

Deleted : user_pref("browser.search.selectedEngineURL", "hxxp://mp3tubetoolbarsearch.com/?prt=mp3tubetb01ff&cl[...]

Deleted : user_pref("keyword.URL", "hxxp://mp3tubetoolbar.com/?tmp=nemo_results_removelink2&q=");

Deleted : user_pref("mp3tubetoolbar.configXml", "<?xml version=\"1.0\" encoding=\"UTF-8\" ?>\r\n<toolbarlayout[...]

Deleted : user_pref("mp3tubetoolbar.configXml_lastcheck", "21858999");

Deleted : user_pref("mp3tubetoolbar.startupPop", "no");

*************************

AdwCleaner[R1].txt - [1447 octets] - [08/11/2012 22:52:58]

AdwCleaner[R2].txt - [1507 octets] - [08/11/2012 22:53:51]

AdwCleaner[R3].txt - [1567 octets] - [08/11/2012 22:54:33]

AdwCleaner[s1].txt - [1636 octets] - [08/11/2012 22:54:48]

########## EOF - C:\AdwCleaner[s1].txt - [1696 octets] ##########

RogueKiller V8.2.3 [11/07/2012] by Tigzy

mail: tigzyRK<at>gmail<dot>com

Feedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/

Website: http://tigzy.geekstogo.com/roguekiller.php

Blog: http://tigzyrk.blogspot.com

Operating System: Windows XP 64 / Windows Home Server / Windows Server 2003 (5.2.3790 Service Pack 2) 32 bits version

Started in : Normal mode

User : Administrator [Admin rights]

Mode : Remove -- Date : 11/08/2012 23:00:15

¤¤¤ Bad processes : 1 ¤¤¤

¤¤¤ Registry Entries : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤

--> C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1 localhost

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: ST3750528AS +++++

--- User ---

[MBR] 8677ab1f487973bdc7963a91842d187c

[bSP] 0f2354a9e5c134b93acc2f2d2e25eb98 : Windows XP MBR Code

Partition table:

0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 214814 Mo

1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 439940025 | Size: 500587 Mo

User = LL1 ... OK!

User = LL2 ... OK!

Finished : << RKreport[2]_D_11082012_02d2300.txt >>

RKreport[1]_S_11082012_02d2259.txt ; RKreport[2]_D_11082012_02d2300.txt

Link to post
Share on other sites

  • Staff

Hello

I Would like you to do the following.

Please print out or make a copy in notpad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.

Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links. I want you to save it to the desktop and run it from there.

Link 1
Link 2
Link 3

1. Close any open browsers or any other programs that are open.

2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.

When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you recieve an error "Illegal operation attempted on a registery key that has been marked for deletion." Please restart the computer

"information and logs"

  • In your next post I need the following
  • Log from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now?

Gringo

Link to post
Share on other sites

  • Staff

Greetings

I want you to run these next,

tdsskiller:

Please read carefully and follow these steps.

  • Download TDSSKiller and save it to your Desktop.
  • doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

Please download aswMBR to your desktop.

  • Double click the aswMBR.exe icon to run it
  • it will ask to download extra definitions - ALLOW IT
  • Click the Scan button to start the scan
  • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.

If you have any problems running either one come back and let me know

please reply with the reports from TDSSKiller and aswMBR

Gringo

Link to post
Share on other sites

07:55:49.0421 1576 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35

07:55:50.0109 1576 ============================================================

07:55:50.0109 1576 Current date / time: 2012/11/09 07:55:50.0109

07:55:50.0109 1576 SystemInfo:

07:55:50.0109 1576

07:55:50.0109 1576 OS Version: 5.2.3790 ServicePack: 2.0

07:55:50.0109 1576 Product type: Workstation

07:55:50.0109 1576 ComputerName: ASUSSMALL

07:55:50.0109 1576 UserName: Administrator

07:55:50.0109 1576 Windows directory: C:\WINDOWS

07:55:50.0109 1576 System windows directory: C:\WINDOWS

07:55:50.0109 1576 Running under WOW64

07:55:50.0109 1576 Processor architecture: Intel x64

07:55:50.0109 1576 Number of processors: 2

07:55:50.0109 1576 Page size: 0x1000

07:55:50.0109 1576 Boot type: Normal boot

07:55:50.0109 1576 ============================================================

07:55:51.0062 1576 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000044

07:55:51.0078 1576 ============================================================

07:55:51.0078 1576 \Device\Harddisk0\DR0:

07:55:51.0078 1576 MBR partitions:

07:55:51.0078 1576 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1A38F37A

07:55:51.0078 1576 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1A38F3F8, BlocksNum 0x3D1B5F09

07:55:51.0078 1576 ============================================================

07:55:51.0125 1576 C: <-> \Device\Harddisk0\DR0\Partition1

07:55:51.0125 1576 D: <-> \Device\Harddisk0\DR0\Partition2

07:55:51.0125 1576 ============================================================

07:55:51.0125 1576 Initialize success

07:55:51.0125 1576 ============================================================

07:55:54.0375 2424 ============================================================

07:55:54.0375 2424 Scan started

07:55:54.0375 2424 Mode: Manual;

07:55:54.0375 2424 ============================================================

07:55:54.0609 2424 ================ Scan system memory ========================

07:55:54.0609 2424 System memory - ok

07:55:54.0609 2424 ================ Scan services =============================

07:55:54.0671 2424 Abiosdsk - ok

07:55:54.0703 2424 [ 0CC42D1FB637112DE6F6196DDAF83DEC ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys

07:55:54.0703 2424 ACPI - ok

07:55:54.0734 2424 [ A4D4F508BC6613442B0C32CDE443E382 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys

07:55:54.0734 2424 ACPIEC - ok

07:55:54.0796 2424 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

07:55:54.0796 2424 AdobeFlashPlayerUpdateSvc - ok

07:55:54.0796 2424 adpu160m - ok

07:55:54.0796 2424 adpu320 - ok

07:55:54.0843 2424 [ 92500BC3A6E241BBC357F532DD500A75 ] aec C:\WINDOWS\system32\drivers\aec.sys

07:55:54.0843 2424 aec - ok

07:55:54.0859 2424 [ AC7010DDE9111A1C65D7391ADA5C7257 ] AeLookupSvc C:\WINDOWS\System32\aelupsvc.dll

07:55:54.0859 2424 AeLookupSvc - ok

07:55:54.0890 2424 [ 886C37D055020D0D02C35AC5B84E76AB ] AFD C:\WINDOWS\System32\drivers\afd.sys

07:55:54.0890 2424 AFD - ok

07:55:54.0906 2424 aic78u2 - ok

07:55:54.0906 2424 aic78xx - ok

07:55:54.0921 2424 [ AFA2CF7CB731CA177CCCFFFFE5D88776 ] Alerter C:\WINDOWS\system32\alrsvc.dll

07:55:54.0921 2424 Alerter - ok

07:55:54.0937 2424 [ 2D21FF6D4CD30E679F1A294D5BA3D97B ] ALG C:\WINDOWS\System32\alg.exe

07:55:54.0937 2424 ALG - ok

07:55:54.0937 2424 AliIde - ok

07:55:55.0015 2424 [ AC75C8BDF6251E117FED0F8EC0E10D17 ] Ambfilt64 C:\WINDOWS\system32\drivers\Ambft64.sys

07:55:55.0046 2424 Ambfilt64 - ok

07:55:55.0046 2424 AmdIde - ok

07:55:55.0078 2424 [ 4F6B2DE8BC199C542F174844BB64485A ] AppMgmt C:\WINDOWS\System32\appmgmts.dll

07:55:55.0078 2424 AppMgmt - ok

07:55:55.0093 2424 arc - ok

07:55:55.0109 2424 [ 68726474C69B738EAC3A62E06B33ADDC ] AsIO C:\WINDOWS\syswow64\drivers\AsIO.sys

07:55:55.0109 2424 AsIO - ok

07:55:55.0156 2424 [ F9F0F095586009E5DA0C32E648AA99FA ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\aspnet_state.exe

07:55:55.0171 2424 aspnet_state - ok

07:55:55.0171 2424 [ 26D66E32E78D3059715B3A17BC679CD9 ] AsUpIO C:\WINDOWS\syswow64\drivers\AsUpIO.sys

07:55:55.0171 2424 AsUpIO - ok

07:55:55.0187 2424 [ 7380ACDD2D8E6621392E56D9A0467FE4 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys

07:55:55.0187 2424 AsyncMac - ok

07:55:55.0203 2424 [ 7A1814D0D112F50F828E25557A1ED29F ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys

07:55:55.0203 2424 atapi - ok

07:55:55.0203 2424 Atdisk - ok

07:55:55.0218 2424 [ 62D65FCE5695B53A2DDF92E83111EA06 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys

07:55:55.0218 2424 Atmarpc - ok

07:55:55.0234 2424 [ 0DA015AB1EE54988572CFC4B7644556A ] AudioSrv C:\WINDOWS\System32\audiosrv.dll

07:55:55.0234 2424 AudioSrv - ok

07:55:55.0250 2424 [ 1437089F59DBA75FEE4ED959077A938E ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys

07:55:55.0250 2424 audstub - ok

07:55:55.0265 2424 [ 8BA2E5CDFDE406DC4646AFB894804844 ] Beep C:\WINDOWS\system32\drivers\Beep.sys

07:55:55.0265 2424 Beep - ok

07:55:55.0296 2424 [ 749C15323919984A6E08BAD427D89936 ] BITS C:\WINDOWS\system32\qmgr.dll

07:55:55.0312 2424 BITS - ok

07:55:55.0328 2424 [ 3F12A27C914C83CACA78B6DBF4C39FA2 ] Browser C:\WINDOWS\System32\browser.dll

07:55:55.0328 2424 Browser - ok

07:55:55.0359 2424 [ 2367A4DDA10960624FE696BCEDFC995A ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys

07:55:55.0359 2424 CCDECODE - ok

07:55:55.0375 2424 [ 982563CF02CD6D4E5D8E0F4B5CBB9B6A ] CdaC15BA C:\WINDOWS\system32\DRIVERS\CdaC15BA.sys

07:55:55.0375 2424 CdaC15BA - ok

07:55:55.0390 2424 [ 9067D96899D98CA4535A76E8C8B2E3A5 ] CdaD10BA C:\WINDOWS\system32\DRIVERS\CdaD10BA.sys

07:55:55.0390 2424 CdaD10BA - ok

07:55:55.0406 2424 [ 4D99E36322FB51A8D1B2B6D6B69D9889 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys

07:55:55.0406 2424 Cdfs - ok

07:55:55.0421 2424 [ 11663FE50E499FFEE77979542B285F38 ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys

07:55:55.0421 2424 Cdrom - ok

07:55:55.0421 2424 Changer - ok

07:55:55.0437 2424 [ 46C54F209031AFA0F100D0703FC346DA ] CiSvc C:\WINDOWS\system32\cisvc.exe

07:55:55.0437 2424 CiSvc - ok

07:55:55.0453 2424 [ 74F11D0323666D9F615A2D3692590122 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe

07:55:55.0453 2424 ClipSrv - ok

07:55:55.0484 2424 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

07:55:55.0500 2424 clr_optimization_v2.0.50727_32 - ok

07:55:55.0500 2424 [ FA58B51ED71C9133E141164EAA7C54EB ] clr_optimization_v2.0.50727_64 C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

07:55:55.0500 2424 clr_optimization_v2.0.50727_64 - ok

07:55:55.0531 2424 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

07:55:55.0531 2424 clr_optimization_v4.0.30319_32 - ok

07:55:55.0546 2424 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

07:55:55.0546 2424 clr_optimization_v4.0.30319_64 - ok

07:55:55.0546 2424 CmdIde - ok

07:55:55.0562 2424 COMSysApp - ok

07:55:55.0593 2424 [ C9C25778EFE890BAA4087E32937016A0 ] cpuz132 C:\WINDOWS\system32\drivers\cpuz132_x64.sys

07:55:55.0593 2424 cpuz132 - ok

07:55:55.0625 2424 [ 641243746597FBD650E5000D95811EA3 ] cpuz133 C:\WINDOWS\system32\drivers\cpuz133_x64.sys

07:55:55.0625 2424 cpuz133 - ok

07:55:55.0625 2424 [ 423F7A6E3AF4C2A73C8C8AD945F72CBA ] crcdisk C:\WINDOWS\system32\DRIVERS\crcdisk.sys

07:55:55.0625 2424 crcdisk - ok

07:55:55.0640 2424 [ 8B0B3744C60936ACAE31012799DB3982 ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll

07:55:55.0640 2424 CryptSvc - ok

07:55:55.0687 2424 [ A6130365606F3D6332B014FC3DA931AA ] DcomLaunch C:\WINDOWS\system32\rpcss.dll

07:55:55.0687 2424 DcomLaunch - ok

07:55:55.0734 2424 [ DE4C841DDA8D5800515A5CA908580A36 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll

07:55:55.0734 2424 Dhcp - ok

07:55:55.0734 2424 [ 417D7B9C6F36685A417E54690F8BD7B2 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys

07:55:55.0734 2424 Disk - ok

07:55:55.0750 2424 dmadmin - ok

07:55:55.0765 2424 [ 19D704C92C2E2BD4DC99DB18A3523918 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys

07:55:55.0765 2424 dmboot - ok

07:55:55.0781 2424 [ B293CE1C9243219F6B9E5DBCAA75B962 ] dmio C:\WINDOWS\system32\drivers\dmio.sys

07:55:55.0781 2424 dmio - ok

07:55:55.0781 2424 [ C294E31D6CB7407A43C96EC1FEC1F8A4 ] dmload C:\WINDOWS\system32\drivers\dmload.sys

07:55:55.0781 2424 dmload - ok

07:55:55.0796 2424 [ 76F7E7922F428BE040F800920BB8FF3B ] dmserver C:\WINDOWS\System32\dmserver.dll

07:55:55.0796 2424 dmserver - ok

07:55:55.0812 2424 [ 19C1612C4F5D828935D2270C7AF13E6E ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll

07:55:55.0812 2424 Dnscache - ok

07:55:55.0843 2424 [ A1B065DF9F5FC7CA177DFB3AA30AA97E ] dot4 C:\WINDOWS\system32\DRIVERS\Dot4.sys

07:55:55.0843 2424 dot4 - ok

07:55:55.0843 2424 [ 220E12EA954F0A2001697976428A9CF9 ] Dot4Print C:\WINDOWS\system32\DRIVERS\Dot4Prt.sys

07:55:55.0843 2424 Dot4Print - ok

07:55:55.0859 2424 [ 0AC64F5F7718D4BC30AA081B1170423D ] dot4usb C:\WINDOWS\system32\DRIVERS\dot4usb.sys

07:55:55.0859 2424 dot4usb - ok

07:55:55.0859 2424 dpti2o - ok

07:55:55.0890 2424 [ 1CB7FB55D52D41731D66EBE3988E0806 ] epmntdrv C:\WINDOWS\system32\epmntdrv.sys

07:55:55.0890 2424 epmntdrv - ok

07:55:55.0890 2424 [ B063A36E4E027A9DBE2B019EBBBEAE86 ] ERSvc C:\WINDOWS\System32\ersvc.dll

07:55:55.0890 2424 ERSvc - ok

07:55:55.0906 2424 [ FB949ED2C93C878A189039F3D7730942 ] EuGdiDrv C:\WINDOWS\system32\EuGdiDrv.sys

07:55:55.0906 2424 EuGdiDrv - ok

07:55:55.0921 2424 [ 1E07EE3F50DFF2FE9B0A9D196E82698F ] Eventlog C:\WINDOWS\system32\services.exe

07:55:55.0921 2424 Eventlog - ok

07:55:55.0953 2424 [ CDEF30A1DCFFCAF6A4E8B7812AE79C95 ] EventSystem C:\WINDOWS\system32\es.dll

07:55:55.0953 2424 EventSystem - ok

07:55:55.0984 2424 [ 7C713B9F6F968F135D3D819492882CDD ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys

07:55:55.0984 2424 Fastfat - ok

07:55:56.0000 2424 [ EE07F2A9423199FF95BFDD33BACF066C ] Fax C:\WINDOWS\system32\fxssvc.exe

07:55:56.0015 2424 Fax - ok

07:55:56.0031 2424 [ 7E35D423FF10AB5B8AF1D3DE86236690 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys

07:55:56.0031 2424 Fdc - ok

07:55:56.0062 2424 [ 73EA9000F8FB2E060954EB7C3377A3C7 ] Fips C:\WINDOWS\system32\drivers\Fips.sys

07:55:56.0062 2424 Fips - ok

07:55:56.0062 2424 [ 8AC77974378EAC3548330951A5DEEEBF ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys

07:55:56.0062 2424 Flpydisk - ok

07:55:56.0062 2424 [ 087DB260F98056AC40261ACAE4240882 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys

07:55:56.0078 2424 FltMgr - ok

07:55:56.0109 2424 [ 8A4DCD28D2BE12946F6D5D308B0942A6 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe

07:55:56.0109 2424 FontCache3.0.0.0 - ok

07:55:56.0125 2424 [ 70DF80567A55A97894B4E8952EC5E7FC ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys

07:55:56.0125 2424 Fs_Rec - ok

07:55:56.0140 2424 [ E90AA7C073519DD8571670818CB85CCB ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys

07:55:56.0140 2424 Ftdisk - ok

07:55:56.0140 2424 [ 865D4D0B4E3730EF8040000CFB846D9F ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys

07:55:56.0140 2424 Gpc - ok

07:55:56.0171 2424 [ D36E47728CDBC8D17A77D36A6CBC29BB ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys

07:55:56.0187 2424 HDAudBus - ok

07:55:56.0203 2424 [ 40E274B64843813A81C42687592339D7 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll

07:55:56.0218 2424 helpsvc - ok

07:55:56.0218 2424 [ 9648AD494BE12B39ACC2DB638E2340A0 ] HidServ C:\WINDOWS\System32\hidserv.dll

07:55:56.0218 2424 HidServ - ok

07:55:56.0234 2424 [ F32BEC5614A61BBB2BEDE070D279F88B ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys

07:55:56.0234 2424 hidusb - ok

07:55:56.0265 2424 [ B54738DF11D0E06072BF9C332DB1D254 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys

07:55:56.0265 2424 HTTP - ok

07:55:56.0281 2424 [ 1A782D5CA033F553F0BE54546EBF3B4F ] HTTPFilter C:\WINDOWS\System32\lsass.exe

07:55:56.0281 2424 HTTPFilter - ok

07:55:56.0281 2424 i2omgmt - ok

07:55:56.0281 2424 [ 50FD608643D9B56C4C75C0784513F77E ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys

07:55:56.0281 2424 i8042prt - ok

07:55:56.0343 2424 [ F48F60EEE36720BBF88E945D802ECB05 ] ialm C:\WINDOWS\system32\DRIVERS\igxpmp64.sys

07:55:56.0406 2424 ialm - ok

07:55:56.0406 2424 IASJet - ok

07:55:56.0453 2424 [ 501CF65702D7F64C38DB360F7EB07ADC ] idsvc C:\WINDOWS\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

07:55:56.0468 2424 idsvc - ok

07:55:56.0468 2424 iirsp - ok

07:55:56.0468 2424 [ D2E541613B72FF9FCEDF37B166930706 ] imapi C:\WINDOWS\system32\DRIVERS\imapi.sys

07:55:56.0468 2424 imapi - ok

07:55:56.0500 2424 [ 9014C144CD95EEE1F5884664A4BFB4D8 ] ImapiService C:\WINDOWS\system32\imapi.exe

07:55:56.0500 2424 ImapiService - ok

07:55:56.0609 2424 [ 42BDAC681D13FFE0F74E882F3475C732 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKHDA64.SYS

07:55:56.0687 2424 IntcAzAudAddService - ok

07:55:56.0687 2424 [ 8D875F7FD8DAA9AFC102841D15C668ED ] IntcHdmiAddService C:\WINDOWS\system32\drivers\IntcHdmi.sys

07:55:56.0687 2424 IntcHdmiAddService - ok

07:55:56.0703 2424 IntelIde - ok

07:55:56.0718 2424 [ F8DEF5F83DEF3D1EE89BC851BFB6A886 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys

07:55:56.0718 2424 intelppm - ok

07:55:56.0734 2424 [ 6601A43EE389D0ADB11AAEDE9A98036B ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys

07:55:56.0734 2424 Ip6Fw - ok

07:55:56.0750 2424 [ 1B1B4654A5492A42D2E1BF5B2B22D32B ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys

07:55:56.0750 2424 IpFilterDriver - ok

07:55:56.0750 2424 IpInIp - ok

07:55:56.0765 2424 [ 088ECB04137DF1F52EC10C29D57A8CCA ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys

07:55:56.0765 2424 IpNat - ok

07:55:56.0765 2424 [ DB841EC6F027C780002EF47AABFDDF86 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys

07:55:56.0765 2424 IPSec - ok

07:55:56.0781 2424 [ 8B7015EA0171242CCA03C2FB48CCC771 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys

07:55:56.0781 2424 IRENUM - ok

07:55:56.0796 2424 [ D994162E4D8E931FC16A892A87852BBB ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys

07:55:56.0796 2424 isapnp - ok

07:55:56.0859 2424 [ B591E761161D1EF547D76EF236EAA6A5 ] JavaQuickStarterService C:\Program Files (x86)\Java\jre7\bin\jqs.exe

07:55:56.0859 2424 JavaQuickStarterService - ok

07:55:56.0875 2424 [ E85095372008A9194C7ED6206CB782DA ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys

07:55:56.0875 2424 Kbdclass - ok

07:55:56.0875 2424 [ F96D8CEC38EFD64AAF41976D214FC54E ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys

07:55:56.0875 2424 kbdhid - ok

07:55:56.0906 2424 [ 1B280B3B4C10CC2E3EC3AEC17EB6B658 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys

07:55:56.0906 2424 kmixer - ok

07:55:56.0921 2424 [ EDCDC587073AC4BE72C5A66FE30ACA00 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys

07:55:56.0921 2424 KSecDD - ok

07:55:56.0937 2424 [ 5CB302B6CAACE41AF70C34B56EB3DB23 ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys

07:55:56.0937 2424 ksthunk - ok

07:55:56.0953 2424 [ 1C0BB341A5E2820DD84A688FD3D086A4 ] L1e C:\WINDOWS\system32\DRIVERS\l1e51x64.sys

07:55:56.0953 2424 L1e - ok

07:55:56.0984 2424 [ 4D8E9A805ADD244B5C511147A5D9BB8C ] lanmanserver C:\WINDOWS\System32\srvsvc.dll

07:55:56.0984 2424 lanmanserver - ok

07:55:57.0015 2424 [ BF4105D3EB357652A4EA73F170715ACD ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll

07:55:57.0015 2424 lanmanworkstation - ok

07:55:57.0031 2424 [ 80DB42573F8EF6CBB6A7A0FF6966A352 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll

07:55:57.0031 2424 LmHosts - ok

07:55:57.0062 2424 [ A014E25D95F7091000B60FF8A1C2E988 ] lvpopf64 C:\WINDOWS\system32\DRIVERS\lvpopf64.sys

07:55:57.0078 2424 lvpopf64 - ok

07:55:57.0093 2424 [ 0C85B2B6FB74B36A251792D45E0EF860 ] LVRS64 C:\WINDOWS\system32\DRIVERS\lvrs64.sys

07:55:57.0093 2424 LVRS64 - ok

07:55:57.0171 2424 [ FF3A488924B0032B1A9CA6948C1FA9E8 ] LVUVC64 C:\WINDOWS\system32\DRIVERS\lvuvc64.sys

07:55:57.0203 2424 LVUVC64 - ok

07:55:57.0218 2424 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys

07:55:57.0234 2424 MBAMProtector - ok

07:55:57.0234 2424 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

07:55:57.0234 2424 MBAMScheduler - ok

07:55:57.0265 2424 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

07:55:57.0265 2424 MBAMService - ok

07:55:57.0296 2424 [ 34EF8CBEA95EF5108A1349FC22D87513 ] Messenger C:\WINDOWS\System32\msgsvc.dll

07:55:57.0296 2424 Messenger - ok

07:55:57.0296 2424 [ AD6BC1EFA0C1B53409947F06DE87FC89 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys

07:55:57.0296 2424 mnmdd - ok

07:55:57.0296 2424 mnmsrvc - ok

07:55:57.0312 2424 [ 9A67A96A0CBC2BC658ABF8C9B5EE065A ] Modem C:\WINDOWS\system32\drivers\Modem.sys

07:55:57.0312 2424 Modem - ok

07:55:57.0375 2424 [ 48796EB50E697A39D19D865E5CBDDAE2 ] Monfilt64 C:\WINDOWS\system32\drivers\Monft64.sys

07:55:57.0406 2424 Monfilt64 - ok

07:55:57.0437 2424 [ 12ACF32EDF03E46805347817ACB9F64C ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys

07:55:57.0437 2424 Mouclass - ok

07:55:57.0453 2424 [ A0C4E4A79C5D6F418315C33177F2B5BC ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys

07:55:57.0453 2424 mouhid - ok

07:55:57.0453 2424 [ 7E9CC7E4282A8E7A480560A6F817C177 ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys

07:55:57.0453 2424 MountMgr - ok

07:55:57.0500 2424 [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

07:55:57.0500 2424 MozillaMaintenance - ok

07:55:57.0515 2424 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys

07:55:57.0515 2424 MpFilter - ok

07:55:57.0515 2424 mraid35x - ok

07:55:57.0546 2424 [ 3D33208E5A7414D8633D34D24F119173 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys

07:55:57.0546 2424 MRxDAV - ok

07:55:57.0578 2424 [ 9385E695B33068B90CF419186ECAA3DE ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys

07:55:57.0593 2424 MRxSmb - ok

07:55:57.0609 2424 [ D42976785BA169C2361F97CC6A20681F ] MSDTC C:\WINDOWS\system32\msdtc.exe

07:55:57.0609 2424 MSDTC - ok

07:55:57.0609 2424 [ 983F4AB7A50D56CD33E2061EE733BD55 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys

07:55:57.0609 2424 Msfs - ok

07:55:57.0625 2424 MSIServer - ok

07:55:57.0640 2424 [ 308EC6FBEF38871CB2C4CACE9C8F4808 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys

07:55:57.0640 2424 MSKSSRV - ok

07:55:57.0656 2424 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe

07:55:57.0656 2424 MsMpSvc - ok

07:55:57.0671 2424 [ 8D3226738479719AAB3B6D2617D7A55C ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys

07:55:57.0671 2424 MSPCLOCK - ok

07:55:57.0687 2424 [ 058D63E8D000AE678D4549BFA8EB0DEB ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys

07:55:57.0687 2424 MSPQM - ok

07:55:57.0703 2424 [ 5992D1F9ED64017A76AFEE2B79F5CFB9 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys

07:55:57.0703 2424 mssmbios - ok

07:55:57.0734 2424 [ 6C679FAB17592620DE60DC7700A039EA ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys

07:55:57.0734 2424 MSTEE - ok

07:55:57.0765 2424 [ CAC3BB575E4A0417BFF28D3196E44D3A ] MTsensor C:\WINDOWS\system32\DRIVERS\ASACPI.sys

07:55:57.0765 2424 MTsensor - ok

07:55:57.0765 2424 [ 5902C8E565FE346076786F43103EF02E ] Mup C:\WINDOWS\system32\drivers\Mup.sys

07:55:57.0781 2424 Mup - ok

07:55:57.0812 2424 [ 933012D216D0022A500CC6C0DFA16428 ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys

07:55:57.0812 2424 NABTSFEC - ok

07:55:57.0812 2424 [ 6FE83D05AEBEF7930D7CE91568DC99DF ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys

07:55:57.0828 2424 NDIS - ok

07:55:57.0843 2424 [ FEBEB8BF62B229CE9DA98C32BF3D26A3 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys

07:55:57.0843 2424 NdisIP - ok

07:55:57.0859 2424 [ 389CFAB53AA9807EA4536CB0B03609C3 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys

07:55:57.0859 2424 NdisTapi - ok

07:55:57.0875 2424 [ 49C1207C1AE8C6958F1C1747132814C2 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys

07:55:57.0875 2424 Ndisuio - ok

07:55:57.0890 2424 [ 6157A7AEAE6D2B948FF2E872FFAC765B ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys

07:55:57.0890 2424 NdisWan - ok

07:55:57.0906 2424 [ 01B8ACF7C9AFA9005DB6378077137BCE ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys

07:55:57.0906 2424 NDProxy - ok

07:55:57.0953 2424 [ 2AAE889742376EDC5C3203DFB74F28FD ] Nero BackItUp Scheduler 3 C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe

07:55:57.0968 2424 Nero BackItUp Scheduler 3 - ok

07:55:57.0968 2424 [ B1CEE06471A069149B11FADA23FF00FD ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys

07:55:57.0968 2424 NetBIOS - ok

07:55:58.0000 2424 [ FEDAAFB6CD700B9E0787C94D81C07DB5 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys

07:55:58.0000 2424 NetBT - ok

07:55:58.0031 2424 [ FB13279D8C89ADD5B0F7497C45BCF1C3 ] NetDDE C:\WINDOWS\system32\netdde.exe

07:55:58.0031 2424 NetDDE - ok

07:55:58.0031 2424 [ FB13279D8C89ADD5B0F7497C45BCF1C3 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe

07:55:58.0031 2424 NetDDEdsdm - ok

07:55:58.0046 2424 [ 1A782D5CA033F553F0BE54546EBF3B4F ] Netlogon C:\WINDOWS\system32\lsass.exe

07:55:58.0046 2424 Netlogon - ok

07:55:58.0062 2424 [ F28FD9DBA68A85D6EE4225A83F127D2B ] Netman C:\WINDOWS\System32\netman.dll

07:55:58.0062 2424 Netman - ok

07:55:58.0093 2424 [ 8BC776595238AB62072AA6BEB17DDF59 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe

07:55:58.0093 2424 NetTcpPortSharing - ok

07:55:58.0109 2424 [ BA13C3C32A69DC37653C9543E065950E ] Nla C:\WINDOWS\System32\mswsock.dll

07:55:58.0125 2424 Nla - ok

07:55:58.0156 2424 [ CB992AE1506985D9167E85883B4C3240 ] NMIndexingService C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe

07:55:58.0171 2424 NMIndexingService - ok

07:55:58.0171 2424 [ 81819038621A2C524781EC503D400287 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys

07:55:58.0171 2424 Npfs - ok

07:55:58.0203 2424 [ C8904B5F90AB2236692E83D491C4D426 ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys

07:55:58.0218 2424 Ntfs - ok

07:55:58.0218 2424 [ 1A782D5CA033F553F0BE54546EBF3B4F ] NtLmSsp C:\WINDOWS\system32\lsass.exe

07:55:58.0218 2424 NtLmSsp - ok

07:55:58.0250 2424 [ A398462077F68A41B4DFF9FB7E8FC7B8 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll

07:55:58.0250 2424 NtmsSvc - ok

07:55:58.0265 2424 [ 501039187C444FA7AB9D97B6A6C667B3 ] Null C:\WINDOWS\system32\drivers\Null.sys

07:55:58.0265 2424 Null - ok

07:55:58.0312 2424 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE

07:55:58.0312 2424 odserv - ok

07:55:58.0328 2424 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE

07:55:58.0328 2424 ose - ok

07:55:58.0343 2424 [ 7DDAA09186DA9F1D304E819B5A6BBC5A ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys

07:55:58.0359 2424 Parport - ok

07:55:58.0359 2424 [ 5F9A703240468A0C35A629D17FFCA847 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys

07:55:58.0359 2424 PartMgr - ok

07:55:58.0359 2424 [ 5B2C8D6971D8DF4937C2FA013CD4C00D ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys

07:55:58.0359 2424 PCI - ok

07:55:58.0375 2424 [ F1978C7849A0047306DB3B8BB94F0764 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys

07:55:58.0375 2424 PCIIde - ok

07:55:58.0390 2424 [ 037F3A19F49A4C6A320C4154EBD6EE9D ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys

07:55:58.0390 2424 Pcmcia - ok

07:55:58.0406 2424 PDCOMP - ok

07:55:58.0406 2424 PDFRAME - ok

07:55:58.0406 2424 PDRELI - ok

07:55:58.0406 2424 PDRFRAME - ok

07:55:58.0453 2424 [ 875E4E0661F3A5994DF9E5E3A0A4F96B ] PLFlash DeviceIoControl Service C:\WINDOWS\SysWOW64\IoctlSvc.exe

07:55:58.0453 2424 PLFlash DeviceIoControl Service - ok

07:55:58.0468 2424 [ 1E07EE3F50DFF2FE9B0A9D196E82698F ] PlugPlay C:\WINDOWS\system32\services.exe

07:55:58.0468 2424 PlugPlay - ok

07:55:58.0484 2424 [ 1A782D5CA033F553F0BE54546EBF3B4F ] PolicyAgent C:\WINDOWS\system32\lsass.exe

07:55:58.0484 2424 PolicyAgent - ok

07:55:58.0484 2424 [ E176F640EE6BF550F61FAA9CE9A683F4 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys

07:55:58.0484 2424 PptpMiniport - ok

07:55:58.0484 2424 [ 1A782D5CA033F553F0BE54546EBF3B4F ] ProtectedStorage C:\WINDOWS\system32\lsass.exe

07:55:58.0484 2424 ProtectedStorage - ok

07:55:58.0500 2424 [ 01AAE06E543C0956AC247546A8F2DAFE ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys

07:55:58.0500 2424 PSched - ok

07:55:58.0515 2424 [ 35E39A969D227C2A56C1DC98361D8E35 ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys

07:55:58.0515 2424 Ptilink - ok

07:55:58.0531 2424 [ D646A315E6386DAC1D96C8CE8A4BFEE7 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys

07:55:58.0531 2424 RasAcd - ok

07:55:58.0546 2424 [ 3F573D0C001B982C3180860366783BC0 ] RasAuto C:\WINDOWS\System32\rasauto.dll

07:55:58.0546 2424 RasAuto - ok

07:55:58.0562 2424 [ D81FDC53EE9C0F68D709E504342D1D74 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys

07:55:58.0562 2424 Rasl2tp - ok

07:55:58.0578 2424 [ 47F7838F77A42F85C763899AB1B77D14 ] RasMan C:\WINDOWS\System32\rasmans.dll

07:55:58.0578 2424 RasMan - ok

07:55:58.0593 2424 [ 31FA5AB662C58CC5CF92396224F6B29A ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys

07:55:58.0593 2424 RasPppoe - ok

07:55:58.0593 2424 [ 701493F9A6EDE759AF8D3FA7C08BAB3B ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys

07:55:58.0593 2424 Raspti - ok

07:55:58.0609 2424 [ F1C8347F0E437E145B2E30A6F29E45BD ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys

07:55:58.0625 2424 Rdbss - ok

07:55:58.0625 2424 [ C013379D04060318C3B2E4967D82739A ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys

07:55:58.0625 2424 RDPCDD - ok

07:55:58.0640 2424 [ 0482A9BE0BE2098A12A61464306BF24B ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys

07:55:58.0640 2424 rdpdr - ok

07:55:58.0656 2424 [ 7B586DB3E86E407F6A43E83586AF4F32 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys

07:55:58.0656 2424 RDPWD - ok

07:55:58.0671 2424 [ A72BE0B07655141AB4EABECF0D66528A ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe

07:55:58.0671 2424 RDSessMgr - ok

07:55:58.0687 2424 [ 1D793394201000D2D56E848C18FE9A62 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys

07:55:58.0703 2424 redbook - ok

07:55:58.0703 2424 [ 60C8A5D4954CCE7D280369DFF5068019 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll

07:55:58.0718 2424 RemoteAccess - ok

07:55:58.0734 2424 [ B2D55CE8C7C946C625B687F75040AD3F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll

07:55:58.0734 2424 RemoteRegistry - ok

07:55:58.0750 2424 [ 414059372A3F51F5BBE4D21A0381B381 ] Revoflt C:\WINDOWS\system32\DRIVERS\revoflt.sys

07:55:58.0750 2424 Revoflt - ok

07:55:58.0781 2424 [ 809785CF7BE1B857F3B52D9B1AF10817 ] RpcLocator C:\WINDOWS\system32\locator.exe

07:55:58.0781 2424 RpcLocator - ok

07:55:58.0812 2424 [ A6130365606F3D6332B014FC3DA931AA ] RpcSs C:\WINDOWS\system32\rpcss.dll

07:55:58.0812 2424 RpcSs - ok

07:55:58.0828 2424 [ 1A782D5CA033F553F0BE54546EBF3B4F ] SamSs C:\WINDOWS\system32\lsass.exe

07:55:58.0828 2424 SamSs - ok

07:55:58.0843 2424 [ A2069FFA2A6FEBB3818F180373C84A89 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe

07:55:58.0843 2424 SCardSvr - ok

07:55:58.0875 2424 [ 71CD398385835C08613C65E5BF91E7FA ] Schedule C:\WINDOWS\system32\schedsvc.dll

07:55:58.0875 2424 Schedule - ok

07:55:58.0906 2424 [ 3EA8A16169C26AFBEB544E0E48421186 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys

07:55:58.0906 2424 Secdrv - ok

07:55:58.0906 2424 [ B4E054549321372D995E4DB9A5304E77 ] seclogon C:\WINDOWS\System32\seclogon.dll

07:55:58.0906 2424 seclogon - ok

07:55:58.0921 2424 [ 222C0A6C354D6A90700956C60574A09A ] SENS C:\WINDOWS\system32\sens.dll

07:55:58.0921 2424 SENS - ok

07:55:58.0937 2424 [ 111B29F3FCF9FB61C903A01E3706F7DC ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys

07:55:58.0937 2424 serenum - ok

07:55:58.0953 2424 [ C0DC97399576FCCFF5FE877EC2D8DACC ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys

07:55:58.0953 2424 Serial - ok

07:55:58.0968 2424 [ C6EACC8920A31B8D5842D1F7A28E2113 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys

07:55:58.0968 2424 Sfloppy - ok

07:55:58.0984 2424 [ D71A8153D3CF0ED527F6BA1F087FAA22 ] SharedAccess C:\WINDOWS\system32\ipnathlp.dll

07:55:59.0000 2424 SharedAccess - ok

07:55:59.0015 2424 [ 15DE8EAE99A0F4E313E83ABA5B849FAA ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll

07:55:59.0031 2424 ShellHWDetection - ok

07:55:59.0031 2424 Simbad - ok

07:55:59.0078 2424 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe

07:55:59.0078 2424 SkypeUpdate - ok

07:55:59.0093 2424 [ 6763442AF574D3D42CBFB8008B7A140F ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys

07:55:59.0109 2424 SLIP - ok

07:55:59.0125 2424 [ 17EC29105989101DB536C49E1279A0EB ] splitter C:\WINDOWS\system32\drivers\splitter.sys

07:55:59.0125 2424 splitter - ok

07:55:59.0125 2424 [ 206FD327B4AAD3AEAA8E0D7D03F2044A ] Spooler C:\WINDOWS\system32\spoolsv.exe

07:55:59.0125 2424 Spooler - ok

07:55:59.0156 2424 [ DAE1D5553D42A06034001D6EF4F5CB36 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys

07:55:59.0156 2424 sr - ok

07:55:59.0187 2424 [ 7B6DA719973755BD091131E53AD6EC23 ] srservice C:\WINDOWS\system32\srsvc.dll

07:55:59.0187 2424 srservice - ok

07:55:59.0218 2424 [ 2A08328562D0BA596B699EEB90B511D1 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys

07:55:59.0218 2424 Srv - ok

07:55:59.0218 2424 [ 94AD81C8EE2385EDDB08C7E34FEDB7A8 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll

07:55:59.0234 2424 SSDPSRV - ok

07:55:59.0250 2424 [ F6D4F452DB507820F726525A1425F0CC ] stisvc C:\WINDOWS\system32\wiaservc.dll

07:55:59.0265 2424 stisvc - ok

07:55:59.0281 2424 [ 90C7874FF6BABF98A801C7AEBE3AD5A6 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys

07:55:59.0281 2424 streamip - ok

07:55:59.0281 2424 [ B6536185FEEB8F0C86AD3BF2FBAB4F2F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys

07:55:59.0281 2424 swenum - ok

07:55:59.0296 2424 [ 8E9E35B36A27AD154A5F92397CDE343C ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys

07:55:59.0296 2424 swmidi - ok

07:55:59.0328 2424 [ 2E54746998139CB708B83974F1AC09F3 ] swprv C:\WINDOWS\System32\swprv.dll

07:55:59.0343 2424 swprv - ok

07:55:59.0343 2424 symc8xx - ok

07:55:59.0343 2424 symmpi - ok

07:55:59.0343 2424 sym_hi - ok

07:55:59.0359 2424 sym_u3 - ok

07:55:59.0359 2424 [ 2E843F129DAF4C789DF7ACD40E26208F ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys

07:55:59.0359 2424 sysaudio - ok

07:55:59.0375 2424 [ D3FFFEA8C94BA3C1CEAC9694AC390472 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe

07:55:59.0375 2424 SysmonLog - ok

07:55:59.0390 2424 [ FAFEFC85FC929B81571BFF315C93E299 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll

07:55:59.0390 2424 TapiSrv - ok

07:55:59.0437 2424 [ 34D970B38E9E835009E1AD07C5422B58 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys

07:55:59.0437 2424 Tcpip - ok

07:55:59.0468 2424 [ DA1E9CD22238FA4DB565EF41C7312E1B ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys

07:55:59.0468 2424 TDPIPE - ok

07:55:59.0484 2424 [ 47D24EBB1C442DCC18D89B8B89BAFB49 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys

07:55:59.0484 2424 TDTCP - ok

07:55:59.0484 2424 [ 8AB9AD44907D4C57AD10E175C8720ECF ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys

07:55:59.0484 2424 TermDD - ok

07:55:59.0500 2424 [ F4849A4962779132B02CA4BBF696F434 ] TermService C:\WINDOWS\System32\termsrv.dll

07:55:59.0515 2424 TermService - ok

07:55:59.0515 2424 [ 15DE8EAE99A0F4E313E83ABA5B849FAA ] Themes C:\WINDOWS\System32\shsvcs.dll

07:55:59.0515 2424 Themes - ok

07:55:59.0531 2424 [ 0FDF294D30CA53391485132854151B26 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe

07:55:59.0546 2424 TlntSvr - ok

07:55:59.0546 2424 TosIde - ok

07:55:59.0546 2424 [ 483FFCD8E5080198D87EEED44246E6A9 ] TrkWks C:\WINDOWS\system32\trkwks.dll

07:55:59.0546 2424 TrkWks - ok

07:55:59.0578 2424 [ A6DD2DFCC44EC61D18AA645620CD8F63 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys

07:55:59.0578 2424 Udfs - ok

07:55:59.0578 2424 ultra - ok

07:55:59.0593 2424 [ 67A95B9D129ED5399E7965CD09CF30E7 ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe

07:55:59.0609 2424 UMVPFSrv - ok

07:55:59.0609 2424 [ 1446762923434D2A9C315325CF4770C8 ] Update C:\WINDOWS\system32\DRIVERS\update.sys

07:55:59.0625 2424 Update - ok

07:55:59.0640 2424 [ 325FB38C323C63C7F57885B4DFB1B91E ] UPHClean C:\Program Files (x86)\UPHClean\uphclean.exe

07:55:59.0656 2424 UPHClean - ok

07:55:59.0687 2424 [ 78C605CB6E0CE966D3347FF7CAF3F8AC ] upnphost C:\WINDOWS\System32\upnphost.dll

07:55:59.0687 2424 upnphost - ok

07:55:59.0718 2424 [ 3EC1501AA03CECD66ED093428FBC8B0E ] UPS C:\WINDOWS\System32\ups.exe

07:55:59.0718 2424 UPS - ok

07:55:59.0734 2424 [ 88354BA123549C6B0016592866063837 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys

07:55:59.0734 2424 usbaudio - ok

07:55:59.0750 2424 [ 3421B0691A0E365A020836369A296F0C ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys

07:55:59.0750 2424 usbccgp - ok

07:55:59.0765 2424 [ AE6521A1C79FC955FF26BE9CA5521B51 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys

07:55:59.0765 2424 usbehci - ok

07:55:59.0765 2424 [ D63CB1B59D54F9C2BB8A4107584A664F ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys

07:55:59.0781 2424 usbhub - ok

07:55:59.0796 2424 [ 040F6F425A6CC4FB156470502CAFB31B ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys

07:55:59.0796 2424 usbprint - ok

07:55:59.0796 2424 [ 280894F834F5B9910DADFF7568F37B31 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys

07:55:59.0796 2424 usbscan - ok

07:55:59.0812 2424 [ EDCE8A162E8023FD1751E08E23E41948 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS

07:55:59.0812 2424 USBSTOR - ok

07:55:59.0828 2424 [ 4B7B4A2CC997C482A0AA7CA663AF62A0 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys

07:55:59.0828 2424 usbuhci - ok

07:55:59.0843 2424 [ 64FF08340D138E99F8E3796853AF7EF4 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys

07:55:59.0843 2424 usbvideo - ok

07:55:59.0875 2424 [ B1E327AEA4ECF42DDF7C579B0FB0DE4C ] vds C:\WINDOWS\System32\vds.exe

07:55:59.0875 2424 vds - ok

07:55:59.0906 2424 [ B40CFD2FFDD838B0CE0C35EE449407BD ] vga C:\WINDOWS\system32\DRIVERS\vgapnp.sys

07:55:59.0906 2424 vga - ok

07:55:59.0921 2424 [ 78EBFE6F11F10DB8237B910E9158CA91 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys

07:55:59.0921 2424 VgaSave - ok

07:55:59.0921 2424 ViaIde - ok

07:55:59.0953 2424 [ FD6D28D1BBF31C719D9C5EC2D20FB5C2 ] VolSnap C:\WINDOWS\system32\DRIVERS\volsnap.sys

07:55:59.0953 2424 VolSnap - ok

07:56:00.0000 2424 [ 0A05DE966B412D6289632AC05FC6ADA2 ] VSS C:\WINDOWS\System32\vssvc.exe

07:56:00.0031 2424 VSS - ok

07:56:00.0046 2424 [ 6FE371026674BAF189F7A81746A67C87 ] W32Time C:\WINDOWS\system32\w32time.dll

07:56:00.0062 2424 W32Time - ok

07:56:00.0078 2424 [ D2A01D73FE4A455C1D741B48C56763B2 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys

07:56:00.0078 2424 Wanarp - ok

07:56:00.0093 2424 WDICA - ok

07:56:00.0109 2424 [ DAFF7E89C84079022B9606F83E1BD29A ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys

07:56:00.0109 2424 wdmaud - ok

07:56:00.0125 2424 [ FE8590FA0367A29BC7ED7BFC4962AD1C ] WebClient C:\WINDOWS\System32\webclnt.dll

07:56:00.0125 2424 WebClient - ok

07:56:00.0140 2424 WinHttpAutoProxySvc - ok

07:56:00.0187 2424 [ 881271D649E778690A365D73B8958509 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll

07:56:00.0203 2424 winmgmt - ok

07:56:00.0218 2424 [ BEEE2C812019D6D8E7E22F37E6F1F560 ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll

07:56:00.0218 2424 WmdmPmSN - ok

07:56:00.0250 2424 [ B51966DB20D5C700228DFE222FDF9E67 ] Wmi C:\WINDOWS\System32\advapi32.dll

07:56:00.0265 2424 Wmi - ok

07:56:00.0281 2424 [ 56980BE8B5A6861B5D9175EABA8AC7DC ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe

07:56:00.0296 2424 WmiApSrv - ok

07:56:00.0359 2424 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files (x86)\Windows Media Player\WMPNetwk.exe

07:56:00.0359 2424 WMPNetworkSvc - ok

07:56:00.0437 2424 [ 991E2C2CF3BC204C2BB2EE1476149E4E ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe

07:56:00.0453 2424 WPFFontCache_v0400 - ok

07:56:00.0468 2424 [ 82960CE97C1898C28D7AE62BA6721D27 ] wscsvc C:\WINDOWS\system32\wscsvc.dll

07:56:00.0468 2424 wscsvc - ok

07:56:00.0500 2424 [ 478A0C5CC7DC817269654804E495B81A ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS

07:56:00.0500 2424 WSTCODEC - ok

07:56:00.0515 2424 [ EF7576AF44B484F7A3E6072D633BAB34 ] wuauserv C:\WINDOWS\system32\wuauserv.dll

07:56:00.0531 2424 wuauserv - ok

07:56:00.0562 2424 [ 3F98A4E57933963CF2A941BB48F9D47A ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys

07:56:00.0562 2424 WudfPf - ok

07:56:00.0562 2424 [ 881C0C35CDD09077B0E95EC2269CB44C ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys

07:56:00.0578 2424 WudfRd - ok

07:56:00.0578 2424 [ 9DCF6C499773B709DE8F70CD5013CB38 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll

07:56:00.0578 2424 WudfSvc - ok

07:56:00.0609 2424 [ F4EC5C736BBA9A27F9C36412C930B386 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll

07:56:00.0609 2424 WZCSVC - ok

07:56:00.0625 2424 [ A1ABA5A0B4F1FF9B83C50F92F8C080A2 ] xmlprov C:\WINDOWS\System32\xmlprov.dll

07:56:00.0640 2424 xmlprov - ok

07:56:00.0640 2424 ================ Scan global ===============================

07:56:00.0656 2424 [ 2AE60E46216266CDC9E20886E4CE3281 ] C:\WINDOWS\system32\basesrv.dll

07:56:00.0687 2424 [ 7233204EBC55628D6A160F9829304E2A ] C:\WINDOWS\system32\winsrv.dll

07:56:00.0703 2424 [ 7233204EBC55628D6A160F9829304E2A ] C:\WINDOWS\system32\winsrv.dll

07:56:00.0718 2424 [ 1E07EE3F50DFF2FE9B0A9D196E82698F ] C:\WINDOWS\system32\services.exe

07:56:00.0718 2424 [Global] - ok

07:56:00.0718 2424 ================ Scan MBR ==================================

07:56:00.0734 2424 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0

07:56:00.0875 2424 \Device\Harddisk0\DR0 - ok

07:56:00.0875 2424 ================ Scan VBR ==================================

07:56:00.0875 2424 [ D33E5F84EA03BC050693D28E5892736E ] \Device\Harddisk0\DR0\Partition1

07:56:00.0875 2424 \Device\Harddisk0\DR0\Partition1 - ok

07:56:00.0890 2424 [ 17599AEF0DD19E499476E87207C30248 ] \Device\Harddisk0\DR0\Partition2

07:56:00.0906 2424 \Device\Harddisk0\DR0\Partition2 - ok

07:56:00.0906 2424 ============================================================

07:56:00.0906 2424 Scan finished

07:56:00.0906 2424 ============================================================

07:56:00.0906 1908 Detected object count: 0

07:56:00.0906 1908 Actual detected object count: 0

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software

Run date: 2012-11-09 08:00:22

-----------------------------

08:00:22.859 OS Version: Windows x64 5.2.3790 Service Pack 2

08:00:22.859 Number of processors: 2 586 0x170A

08:00:22.875 ComputerName: ASUSSMALL UserName:

08:00:25.531 Initialize success

08:01:30.031 AVAST engine defs: 12110801

08:01:52.687 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-7

08:01:52.687 Disk 0 Vendor: ST3750528AS CC38 Size: 715404MB BusType: 3

08:01:52.687 Disk 0 MBR read successfully

08:01:52.687 Disk 0 MBR scan

08:01:52.687 Disk 0 Windows XP default MBR code

08:01:52.703 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 214814 MB offset 63

08:01:52.703 Disk 0 Partition - 00 0F Extended LBA 500587 MB offset 439940025

08:01:52.718 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 500587 MB offset 439940088

08:01:52.750 Disk 0 scanning C:\WINDOWS\system32\drivers

08:01:58.281 Service scanning

08:02:08.328 Modules scanning

08:02:08.328 Disk 0 trace - called modules:

08:02:08.328 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys atapi.sys pciide.sys PCIIDEX.SYS hal.dll

08:02:08.343 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffadfcebb4060]

08:02:08.343 3 CLASSPNP.SYS[fffffadfc92378c9] -> nt!IofCallDriver -> \Device\0000006c[0xfffffadfcf6db380]

08:02:08.343 5 ACPI.sys[fffffadfc93a9e69] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-7[0xfffffadfcebb4c30]

08:02:11.625 AVAST engine scan C:\WINDOWS

08:02:15.546 AVAST engine scan C:\WINDOWS\system32

08:04:09.875 AVAST engine scan C:\WINDOWS\system32\drivers

08:04:20.281 AVAST engine scan C:\Documents and Settings\Administrator

08:06:20.328 AVAST engine scan C:\Documents and Settings\All Users

08:06:39.328 Scan finished successfully

08:07:42.390 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Administrator\Desktop\MBR.dat"

08:07:42.390 The log file has been saved successfully to "C:\Documents and Settings\Administrator\Desktop\aswMBR.txt"

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software

Run date: 2012-11-09 08:00:22

-----------------------------

08:00:22.859 OS Version: Windows x64 5.2.3790 Service Pack 2

08:00:22.859 Number of processors: 2 586 0x170A

08:00:22.875 ComputerName: ASUSSMALL UserName:

08:00:25.531 Initialize success

08:01:30.031 AVAST engine defs: 12110801

08:01:52.687 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-7

08:01:52.687 Disk 0 Vendor: ST3750528AS CC38 Size: 715404MB BusType: 3

08:01:52.687 Disk 0 MBR read successfully

08:01:52.687 Disk 0 MBR scan

08:01:52.687 Disk 0 Windows XP default MBR code

08:01:52.703 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 214814 MB offset 63

08:01:52.703 Disk 0 Partition - 00 0F Extended LBA 500587 MB offset 439940025

08:01:52.718 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 500587 MB offset 439940088

08:01:52.750 Disk 0 scanning C:\WINDOWS\system32\drivers

08:01:58.281 Service scanning

08:02:08.328 Modules scanning

08:02:08.328 Disk 0 trace - called modules:

08:02:08.328 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys atapi.sys pciide.sys PCIIDEX.SYS hal.dll

08:02:08.343 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffadfcebb4060]

08:02:08.343 3 CLASSPNP.SYS[fffffadfc92378c9] -> nt!IofCallDriver -> \Device\0000006c[0xfffffadfcf6db380]

08:02:08.343 5 ACPI.sys[fffffadfc93a9e69] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-7[0xfffffadfcebb4c30]

08:02:11.625 AVAST engine scan C:\WINDOWS

08:02:15.546 AVAST engine scan C:\WINDOWS\system32

08:04:09.875 AVAST engine scan C:\WINDOWS\system32\drivers

08:04:20.281 AVAST engine scan C:\Documents and Settings\Administrator

08:06:20.328 AVAST engine scan C:\Documents and Settings\All Users

08:06:39.328 Scan finished successfully

08:07:42.390 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Administrator\Desktop\MBR.dat"

08:07:42.390 The log file has been saved successfully to "C:\Documents and Settings\Administrator\Desktop\aswMBR.txt"

08:08:46.640 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Administrator\Desktop\MBR.dat"

08:08:46.640 The log file has been saved successfully to "C:\Documents and Settings\Administrator\Desktop\aswMBR.txt"

Link to post
Share on other sites

Glad we could help. :)

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.