Jump to content

Not sure if I'm infected...


Recommended Posts

My computer seems to be experiencing little hiccups, or skips every so often, and i haven't been able to figure out whats happening.

DDS (Ver_2012-11-20.01) - NTFS_x86

Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_03

Run by malfy at 1:46:42 on 2013-05-26

Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.2046.1306 [GMT -5:00]

.

.

============== Running Processes ================

.

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\Program Files\Windows Media Player\WMPNetwk.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\System32\alg.exe

C:\WINDOWS\RTHDCPL.EXE

C:\WINDOWS\system32\RUNDLL32.EXE

C:\Documents and Settings\malfy\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\malfy\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\malfy\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\malfy\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

C:\WINDOWS\system32\wbem\wmiprvse.exe

C:\WINDOWS\System32\svchost.exe -k netsvcs

C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup

C:\WINDOWS\System32\svchost.exe -k NetworkService

C:\WINDOWS\system32\svchost.exe -k LocalService

C:\WINDOWS\System32\svchost.exe -k LocalService

C:\WINDOWS\System32\svchost.exe -k HTTPFilter

C:\WINDOWS\System32\svchost.exe -k imgsvc

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.google.com/

uProxyOverride = <local>;*.local

BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dll

BHO: JQSIEStartDetectorImpl Class: {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

uRun: [Driver Detective] c:\program files\pc drivers headquarters\driver detective\DriversHQ.DriverDetective.Client.exe /applicationMode:systemTray /showWelcome:false

mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup

mRun: [RTHDCPL] RTHDCPL.EXE

mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit

uPolicies-Explorer: NoDriveTypeAutoRun = dword:323

uPolicies-Explorer: NoDriveAutoRun = dword:67108863

uPolicies-Explorer: NoDrives = dword:0

mPolicies-Explorer: NoDriveAutoRun = dword:67108863

mPolicies-Explorer: NoDriveTypeAutoRun = dword:323

mPolicies-Explorer: NoDrives = dword:0

mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1

mPolicies-Explorer: NoDriveTypeAutoRun = dword:323

mPolicies-Explorer: NoDriveAutoRun = dword:67108863

LSP: %SYSTEMROOT%\system32\nvLsp.dll

DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} - hxxps://support.microsoft.com/OAS/ActiveX/MSDcode.cab

DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/C/0/C/C0CBBA88-A6F2-48D9-9B0E-1719D1177202/LegitCheckControl.cab

DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} - hxxp://housecall65.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab

DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} - hxxp://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.2.100.cab

DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} - hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.4.1.cab

DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1218583869453

DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1295404046625

DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} - hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab

DPF: {CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_03-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab

DPF: {FFBB3F3B-0A5A-4106-BE53-DFE1E2340CB1} - hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.2.1.cab

TCP: Interfaces\{0C6684EB-61AA-4B82-B667-7F52489E65F2} : DHCPNameServer = 192.168.1.1

SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll

LSA: Notification Packages = scecli nesibeba.dll

.

============= SERVICES / DRIVERS ===============

.

R2 LBeepKE;Logitech Beep Suppression Driver;c:\windows\system32\drivers\LBeepKE.sys [2011-4-28 10448]

R3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\drivers\RTL8192su.sys [2011-1-18 606056]

S2 aspnet_stateEventSystem;ASP.NET State Service aspnet_stateEventSystem; srv --> srv [?]

S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2011-4-9 1691480]

S3 audiobridge;Virtual Audio Bridge;c:\windows\system32\drivers\aubridge.sys [2007-7-23 22528]

S3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter;c:\windows\system32\drivers\LEqdUsb.sys [2010-8-24 40912]

S3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter;c:\windows\system32\drivers\LHidEqd.sys [2010-8-24 10448]

S3 maxidemo;Maxi_Vista_Demo_Driver;c:\windows\system32\drivers\maxidemo.sys --> c:\windows\system32\drivers\maxidemo.sys [?]

S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2009-10-8 22856]

S3 WsAudio_DeviceS(1);WsAudio_DeviceS(1);c:\windows\system32\drivers\WsAudio_DeviceS(1).sys [2009-11-27 25704]

S3 WsAudio_DeviceS(2);WsAudio_DeviceS(2);c:\windows\system32\drivers\WsAudio_DeviceS(2).sys [2009-11-27 25704]

S3 WsAudio_DeviceS(3);WsAudio_DeviceS(3);c:\windows\system32\drivers\WsAudio_DeviceS(3).sys [2009-11-27 25704]

S3 WsAudio_DeviceS(4);WsAudio_DeviceS(4);c:\windows\system32\drivers\WsAudio_DeviceS(4).sys [2009-11-27 25704]

S3 WsAudio_DeviceS(5);WsAudio_DeviceS(5);c:\windows\system32\drivers\WsAudio_DeviceS(5).sys [2009-11-27 25704]

S4 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2013-4-16 418376]

S4 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2009-10-8 701512]

S4 npggsvc;nProtect GameGuard Service;c:\windows\system32\gamemon.des -service --> c:\windows\system32\GameMon.des -service [?]

.

=============== File Associations ===============

.

FileExt: .js: JSFile=c:\windows\system32\Notepad.exe %1 [default=Edit - 'Open' doesn't exist]

.

=============== Created Last 30 ================

.

2013-05-26 02:17:59 -------- d-----w- c:\program files\CCleaner

2013-05-12 23:38:46 -------- d-----w- c:\documents and settings\malfy\local settings\application data\CPN

2013-05-12 23:38:24 -------- d-----w- c:\program files\Juicy Stakes 2.0

.

==================== Find3M ====================

.

2013-04-16 22:17:15 920064 ----a-w- c:\windows\system32\wininet.dll

2013-04-16 22:17:14 43520 ----a-w- c:\windows\system32\licmgr10.dll

2013-04-16 22:17:14 1469440 ----a-w- c:\windows\system32\inetcpl.cpl

2013-04-12 23:28:55 385024 ----a-w- c:\windows\system32\html.iec

2013-04-10 01:31:19 1876352 ----a-w- c:\windows\system32\win32k.sys

2013-04-04 19:50:32 22856 ----a-w- c:\windows\system32\drivers\mbam.sys

2013-03-08 08:36:22 293376 ----a-w- c:\windows\system32\winsrv.dll

2013-03-07 01:32:25 2149888 ----a-w- c:\windows\system32\ntoskrnl.exe

2013-03-07 00:50:30 2028544 ----a-w- c:\windows\system32\ntkrnlpa.exe

2013-02-27 07:56:51 2067456 ----a-w- c:\windows\system32\mstscax.dll

.

============= FINISH: 1:47:21.20 ===============

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2012-11-20.01)

.

Microsoft Windows XP Home Edition

Boot Device: \Device\HarddiskVolume1

Install Date: 4/30/2007 9:47:09 AM

System Uptime: 5/25/2013 11:12:20 PM (2 hours ago)

.

Motherboard: EVGA | | NFORCE 680i LT SLI

Processor: Intel® Core™2 CPU 6400 @ 2.13GHz | Socket 775 | 2133/266mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 149 GiB total, 122.45 GiB free.

D: is CDROM ()

E: is CDROM ()

.

==== Disabled Device Manager Items =============

.

Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}

Description: NVIDIA nForce Networking Controller

Device ID: {1A3E09BE-1E45-494B-9174-D7385B45BBF5}\NVNET_DEV0373\4&19933FE2&2&00

Manufacturer: NVIDIA

Name: NVIDIA nForce 10/100/1000 Mbps Ethernet #2

PNP Device ID: {1A3E09BE-1E45-494B-9174-D7385B45BBF5}\NVNET_DEV0373\4&19933FE2&2&00

Service: NVENETFD

.

==== System Restore Points ===================

.

RP251: 4/16/2013 9:11:12 PM - Removed Project64 1.6

RP252: 4/16/2013 9:12:19 PM - Removed Splashtop Streamer

RP253: 4/16/2013 9:13:46 PM - Removed Transparent Windows

RP254: 4/16/2013 9:14:05 PM - Removed Ventrilo Server

RP255: 4/16/2013 9:14:25 PM - Removed Ventrilo Client

RP256: 4/16/2013 9:35:01 PM - Removed Jitbit Macro Recorder.

RP257: 4/16/2013 9:36:52 PM - Configured NETGEAR WG311v3 PCI Adapter

RP258: 4/16/2013 9:39:34 PM - Removed WIDCOMM Bluetooth Software

RP259: 4/16/2013 9:41:13 PM - Configured NETGEAR WG311v3 PCI Adapter

RP260: 4/17/2013 3:00:22 AM - Software Distribution Service 3.0

RP261: 4/21/2013 4:15:23 AM - System Checkpoint

RP262: 4/22/2013 5:24:40 PM - System Checkpoint

RP263: 4/27/2013 7:36:33 PM - System Checkpoint

RP264: 5/8/2013 2:02:12 AM - System Checkpoint

RP265: 5/12/2013 4:31:09 AM - System Checkpoint

RP266: 5/15/2013 11:55:41 PM - Software Distribution Service 3.0

RP267: 5/18/2013 11:10:44 PM - System Checkpoint

.

==== Installed Programs ======================

.

Adobe Flash Player 10 ActiveX

Adobe Flash Player 10 Plugin

Adobe Reader 8.1.0

Adobe Shockwave Player 11.5

Apple Application Support

Apple Mobile Device Support

Apple Software Update

Azureus

Bonjour

CCleaner

Critical Update for Windows Media Player 11 (KB959772)

Direct Show Ogg Vorbis Filter (remove only)

Driver Detective

eReg

ffdshow [rev 3096] [2009-10-06]

Google Chrome

Haali Media Splitter

Heroes of Newerth

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)

Hotfix for Windows Internet Explorer 7 (KB947864)

Hotfix for Windows Media Format 11 SDK (KB929399)

Hotfix for Windows Media Player 11 (KB939683)

Hotfix for Windows XP (KB2443685)

Hotfix for Windows XP (KB2570791)

Hotfix for Windows XP (KB2633952)

Hotfix for Windows XP (KB2779562)

Hotfix for Windows XP (KB952287)

Hotfix for Windows XP (KB954550-v5)

Hotfix for Windows XP (KB961118)

Hotfix for Windows XP (KB970653-v3)

J2SE Runtime Environment 5.0 Update 3

Java Auto Updater

Java™ 6 Update 2

Java™ 6 Update 26

Java™ 6 Update 3

Juicy Stakes 2.0

Malwarebytes Anti-Malware version 1.75.0.1300

Microsoft .NET Framework 2.0 Service Pack 2

Microsoft .NET Framework 3.0 Service Pack 2

Microsoft .NET Framework 3.5 SP1

Microsoft Compression Client Pack 1.0 for Windows XP

Microsoft Internationalized Domain Names Mitigation APIs

Microsoft Kernel-Mode Driver Framework Feature Pack 1.9

Microsoft National Language Support Downlevel APIs

Microsoft Silverlight

Microsoft User-Mode Driver Framework Feature Pack 1.0

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219

Microsoft_VC80_ATL_x86

Microsoft_VC80_CRT_x86

Microsoft_VC80_MFC_x86

Microsoft_VC80_MFCLOC_x86

Microsoft_VC90_ATL_x86

Microsoft_VC90_CRT_x86

Microsoft_VC90_MFC_x86

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

MSXML4 Parser

NETGEAR WG311v3 PCI Adapter

NVIDIA Drivers

NVIDIA ForceWare Network Access Manager

QuickTime

Realtek High Definition Audio Driver

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)

Security Update for Microsoft Windows (KB2564958)

Security Update for Windows Internet Explorer 7 (KB928090)

Security Update for Windows Internet Explorer 7 (KB929969)

Security Update for Windows Internet Explorer 7 (KB931768)

Security Update for Windows Internet Explorer 7 (KB933566)

Security Update for Windows Internet Explorer 7 (KB937143)

Security Update for Windows Internet Explorer 7 (KB938127)

Security Update for Windows Internet Explorer 7 (KB939653)

Security Update for Windows Internet Explorer 7 (KB942615)

Security Update for Windows Internet Explorer 7 (KB944533)

Security Update for Windows Internet Explorer 7 (KB950759)

Security Update for Windows Internet Explorer 7 (KB953838)

Security Update for Windows Internet Explorer 7 (KB956390)

Security Update for Windows Internet Explorer 7 (KB958215)

Security Update for Windows Internet Explorer 7 (KB960714)

Security Update for Windows Internet Explorer 7 (KB961260)

Security Update for Windows Internet Explorer 8 (KB2416400)

Security Update for Windows Internet Explorer 8 (KB2482017)

Security Update for Windows Internet Explorer 8 (KB2497640)

Security Update for Windows Internet Explorer 8 (KB2510531)

Security Update for Windows Internet Explorer 8 (KB2530548)

Security Update for Windows Internet Explorer 8 (KB2544521)

Security Update for Windows Internet Explorer 8 (KB2559049)

Security Update for Windows Internet Explorer 8 (KB2586448)

Security Update for Windows Internet Explorer 8 (KB2618444)

Security Update for Windows Internet Explorer 8 (KB2647516)

Security Update for Windows Internet Explorer 8 (KB2675157)

Security Update for Windows Internet Explorer 8 (KB2699988)

Security Update for Windows Internet Explorer 8 (KB2722913)

Security Update for Windows Internet Explorer 8 (KB2817183)

Security Update for Windows Internet Explorer 8 (KB2829530)

Security Update for Windows Internet Explorer 8 (KB2847204)

Security Update for Windows Internet Explorer 8 (KB969897)

Security Update for Windows Internet Explorer 8 (KB971961)

Security Update for Windows Internet Explorer 8 (KB972260)

Security Update for Windows Internet Explorer 8 (KB981332)

Security Update for Windows Media Player (KB2378111)

Security Update for Windows Media Player (KB952069)

Security Update for Windows Media Player (KB954155)

Security Update for Windows Media Player (KB968816)

Security Update for Windows Media Player (KB973540)

Security Update for Windows Media Player (KB975558)

Security Update for Windows Media Player (KB978695)

Security Update for Windows Media Player 11 (KB936782)

Security Update for Windows Media Player 11 (KB954154)

Security Update for Windows Media Player 8 (KB917734)

Security Update for Windows Media Player 9 (KB917734)

Security Update for Windows XP (KB2079403)

Security Update for Windows XP (KB2115168)

Security Update for Windows XP (KB2121546)

Security Update for Windows XP (KB2229593)

Security Update for Windows XP (KB2259922)

Security Update for Windows XP (KB2286198)

Security Update for Windows XP (KB2296011)

Security Update for Windows XP (KB2296199)

Security Update for Windows XP (KB2347290)

Security Update for Windows XP (KB2360937)

Security Update for Windows XP (KB2387149)

Security Update for Windows XP (KB2393802)

Security Update for Windows XP (KB2412687)

Security Update for Windows XP (KB2419632)

Security Update for Windows XP (KB2423089)

Security Update for Windows XP (KB2436673)

Security Update for Windows XP (KB2440591)

Security Update for Windows XP (KB2443105)

Security Update for Windows XP (KB2476490)

Security Update for Windows XP (KB2476687)

Security Update for Windows XP (KB2478960)

Security Update for Windows XP (KB2478971)

Security Update for Windows XP (KB2479628)

Security Update for Windows XP (KB2479943)

Security Update for Windows XP (KB2481109)

Security Update for Windows XP (KB2483185)

Security Update for Windows XP (KB2485376)

Security Update for Windows XP (KB2485663)

Security Update for Windows XP (KB2503658)

Security Update for Windows XP (KB2503665)

Security Update for Windows XP (KB2506212)

Security Update for Windows XP (KB2506223)

Security Update for Windows XP (KB2507618)

Security Update for Windows XP (KB2507938)

Security Update for Windows XP (KB2508272)

Security Update for Windows XP (KB2508429)

Security Update for Windows XP (KB2509553)

Security Update for Windows XP (KB2511455)

Security Update for Windows XP (KB2524375)

Security Update for Windows XP (KB2535512)

Security Update for Windows XP (KB2536276-v2)

Security Update for Windows XP (KB2536276)

Security Update for Windows XP (KB2544893-v2)

Security Update for Windows XP (KB2544893)

Security Update for Windows XP (KB2555917)

Security Update for Windows XP (KB2562937)

Security Update for Windows XP (KB2566454)

Security Update for Windows XP (KB2567053)

Security Update for Windows XP (KB2567680)

Security Update for Windows XP (KB2570222)

Security Update for Windows XP (KB2570947)

Security Update for Windows XP (KB2584146)

Security Update for Windows XP (KB2585542)

Security Update for Windows XP (KB2592799)

Security Update for Windows XP (KB2598479)

Security Update for Windows XP (KB2603381)

Security Update for Windows XP (KB2618451)

Security Update for Windows XP (KB2619339)

Security Update for Windows XP (KB2620712)

Security Update for Windows XP (KB2621440)

Security Update for Windows XP (KB2624667)

Security Update for Windows XP (KB2631813)

Security Update for Windows XP (KB2633171)

Security Update for Windows XP (KB2639417)

Security Update for Windows XP (KB2641653)

Security Update for Windows XP (KB2646524)

Security Update for Windows XP (KB2647518)

Security Update for Windows XP (KB2653956)

Security Update for Windows XP (KB2655992)

Security Update for Windows XP (KB2659262)

Security Update for Windows XP (KB2660465)

Security Update for Windows XP (KB2661637)

Security Update for Windows XP (KB2676562)

Security Update for Windows XP (KB2685939)

Security Update for Windows XP (KB2686509)

Security Update for Windows XP (KB2691442)

Security Update for Windows XP (KB2695962)

Security Update for Windows XP (KB2698365)

Security Update for Windows XP (KB2705219)

Security Update for Windows XP (KB2707511)

Security Update for Windows XP (KB2709162)

Security Update for Windows XP (KB2712808)

Security Update for Windows XP (KB2718523)

Security Update for Windows XP (KB2719985)

Security Update for Windows XP (KB2723135)

Security Update for Windows XP (KB2727528)

Security Update for Windows XP (KB2731847)

Security Update for Windows XP (KB2753842-v2)

Security Update for Windows XP (KB2757638)

Security Update for Windows XP (KB2758857)

Security Update for Windows XP (KB2770660)

Security Update for Windows XP (KB2780091)

Security Update for Windows XP (KB2802968)

Security Update for Windows XP (KB2807986)

Security Update for Windows XP (KB2808735)

Security Update for Windows XP (KB2813170)

Security Update for Windows XP (KB2813345)

Security Update for Windows XP (KB2820197)

Security Update for Windows XP (KB2820917)

Security Update for Windows XP (KB2829361)

Security Update for Windows XP (KB923561)

Security Update for Windows XP (KB938464)

Security Update for Windows XP (KB941569)

Security Update for Windows XP (KB946648)

Security Update for Windows XP (KB950760)

Security Update for Windows XP (KB950762)

Security Update for Windows XP (KB950974)

Security Update for Windows XP (KB951066)

Security Update for Windows XP (KB951376-v2)

Security Update for Windows XP (KB951376)

Security Update for Windows XP (KB951698)

Security Update for Windows XP (KB951748)

Security Update for Windows XP (KB952004)

Security Update for Windows XP (KB952954)

Security Update for Windows XP (KB953839)

Security Update for Windows XP (KB954211)

Security Update for Windows XP (KB954459)

Security Update for Windows XP (KB954600)

Security Update for Windows XP (KB955069)

Security Update for Windows XP (KB956391)

Security Update for Windows XP (KB956572)

Security Update for Windows XP (KB956744)

Security Update for Windows XP (KB956802)

Security Update for Windows XP (KB956803)

Security Update for Windows XP (KB956841)

Security Update for Windows XP (KB956844)

Security Update for Windows XP (KB957095)

Security Update for Windows XP (KB957097)

Security Update for Windows XP (KB958644)

Security Update for Windows XP (KB958687)

Security Update for Windows XP (KB958690)

Security Update for Windows XP (KB958869)

Security Update for Windows XP (KB959426)

Security Update for Windows XP (KB960225)

Security Update for Windows XP (KB960715)

Security Update for Windows XP (KB960803)

Security Update for Windows XP (KB960859)

Security Update for Windows XP (KB961371)

Security Update for Windows XP (KB961373)

Security Update for Windows XP (KB961501)

Security Update for Windows XP (KB968537)

Security Update for Windows XP (KB969059)

Security Update for Windows XP (KB969898)

Security Update for Windows XP (KB970238)

Security Update for Windows XP (KB970430)

Security Update for Windows XP (KB971557)

Security Update for Windows XP (KB971633)

Security Update for Windows XP (KB971657)

Security Update for Windows XP (KB972270)

Security Update for Windows XP (KB973346)

Security Update for Windows XP (KB973354)

Security Update for Windows XP (KB973507)

Security Update for Windows XP (KB973869)

Security Update for Windows XP (KB973904)

Security Update for Windows XP (KB974112)

Security Update for Windows XP (KB974318)

Security Update for Windows XP (KB974392)

Security Update for Windows XP (KB974571)

Security Update for Windows XP (KB975025)

Security Update for Windows XP (KB975467)

Security Update for Windows XP (KB975560)

Security Update for Windows XP (KB975562)

Security Update for Windows XP (KB975713)

Security Update for Windows XP (KB977816)

Security Update for Windows XP (KB977914)

Security Update for Windows XP (KB978037)

Security Update for Windows XP (KB978338)

Security Update for Windows XP (KB978542)

Security Update for Windows XP (KB978601)

Security Update for Windows XP (KB978706)

Security Update for Windows XP (KB979309)

Security Update for Windows XP (KB979482)

Security Update for Windows XP (KB979687)

Security Update for Windows XP (KB980195)

Security Update for Windows XP (KB980232)

Security Update for Windows XP (KB980436)

Security Update for Windows XP (KB981322)

Security Update for Windows XP (KB981852)

Security Update for Windows XP (KB981997)

Security Update for Windows XP (KB982132)

Security Update for Windows XP (KB982214)

Security Update for Windows XP (KB982665)

Update for Microsoft .NET Framework 3.5 SP1 (KB963707)

Update for Windows Internet Explorer 8 (KB976662)

Update for Windows XP (KB2141007)

Update for Windows XP (KB2345886)

Update for Windows XP (KB2467659)

Update for Windows XP (KB2541763)

Update for Windows XP (KB2607712)

Update for Windows XP (KB2616676)

Update for Windows XP (KB2641690)

Update for Windows XP (KB2661254-v2)

Update for Windows XP (KB2718704)

Update for Windows XP (KB2736233)

Update for Windows XP (KB2749655)

Update for Windows XP (KB951072-v2)

Update for Windows XP (KB951978)

Update for Windows XP (KB955759)

Update for Windows XP (KB955839)

Update for Windows XP (KB967715)

Update for Windows XP (KB968389)

Update for Windows XP (KB971029)

Update for Windows XP (KB971737)

Update for Windows XP (KB973687)

Update for Windows XP (KB973815)

VC80CRTRedist - 8.0.50727.6195

Vuze

WebFldrs XP

Windows Genuine Advantage Notifications (KB905474)

Windows Genuine Advantage Validation Tool (KB892130)

Windows Internet Explorer 7

Windows Internet Explorer 8

Windows Media Format 11 runtime

Windows Media Player 11

Windows XP Service Pack 3

WinRAR archiver

XML Paper Specification Shared Components Pack 1.0

.

==== Event Viewer Messages From Past Week ========

.

5/25/2013 8:09:40 PM, error: System Error [1003] - Error code 1000008e, parameter1 c0000005, parameter2 bf86601e, parameter3 ac6a7ae4, parameter4 00000000.

5/22/2013 8:20:51 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: BCM43XX

5/22/2013 8:20:26 PM, error: Service Control Manager [7023] - The Network Security service terminated with the following error: The specified module could not be found.

5/22/2013 8:20:26 PM, error: Service Control Manager [7000] - The npkcrypt service failed to start due to the following error: The system cannot find the path specified.

.

==== End Of File ===========================

Link to post
Share on other sites

Hello malfy.

Can you give a bit more detail on "little hiccups". What application seems to have the most issues?

More important, tell me why this pc seems to -not- have an installed active Antivirus program?

Download and install an antivirus program, and make sure that you keep it updated

New viruses come out every minute, so it is essential that you have the latest signatures for your antivirus program to provide you with the best possible protection from malicious software.

Two good antivirus programs free for non-commercial home use are Avira Free Antivirus and Microsoft Security Essentials

Choose one of them.

Note: You should only have one antivirus installed at a time. Having more than one antivirus program installed at once is likely to cause conflicts and may well decrease your overall protection as well as impairing the performance of your PC.

Your logs showed some peer-to-peer filesharing apps: Azureus

I do not recommend the use of P-2-P programs since such filesharing/downloading from unknown sources is one of the leading causes of transmission of malware.

Risks of File-Sharing Technology.

P2P file sharing: Know the risks

Forum policy on peer-to-peer-programs:

If you're using Peer 2 Peer software such as uTorrent or similar you must either fully uninstall it or completely disable it from running while being assisted here.

Failure to remove or disable such software will result in your topic being closed and no further assistance being provided.

http://forums.malwarebytes.org/index.php?showtopic=97700

  • Download & SAVE to your Desktop Tigzy's RogueKiller >> from here << or
    >> from here <<
  • Quit all programs that you may have started.
  • Please disconnect any USB or external storage drives from the computer before you run this scan! i_arrow-l.gif
  • For Vista or Windows 7 / 8, do a right-click on the program, select Run as Administrator to start, & when prompted Allow to run.
    For Windows XP, double-click to start.
  • When prompted to accept the EULA, please do so.
  • Wait until Prescan has finished ... i_arrow-l.gif
  • Then Click on Scan button at upper right of screen.
  • Wait until the Status box shows "Scan Finished"
  • Click on Report and copy/paste the content of the Notepad into your next reply.
  • The log should be found in RKreport[1].txt on your Desktop
  • Do NOT press any Fix button.
  • Exit/Close RogueKiller

Download Security Check by screen317 from >>here<<.

  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

Link to post
Share on other sites

I disabled antivirus to see if it was a cause for the "skips." They happen about every 10-15 seconds and seem to be a .5 sec lag, when playing games or watching/streaming video, but not when just browsing on the desktop or on the web. I had played games on this computer for years, and it never used to have this problem before, I thought it used to be a much faster computer than its running right now. Also i noticed that when I boot the machine the very first screen reports the ram speed at 800mhz but when i run an application called cpu-z it says its only at 400mhz... dunno if its accurate or means anything....

RogueKiller V8.5.4 [Mar 18 2013] by Tigzy

mail : tigzyRK<at>gmail<dot>com

Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/

Website : http://tigzy.geekstogo.com/roguekiller.php

Blog : http://tigzyrk.blogspot.com/

Operating System : Windows XP (5.1.2600 Service Pack 3) 32 bits version

Started in : Normal mode

User : malfy [Admin rights]

Mode : Scan -- Date : 05/26/2013 20:36:53

| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 4 ¤¤¤

[HJPOL] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND

[HJ SMENU] HKCU\[...]\Advanced : Start_ShowRecentDocs (0) -> FOUND

[HJ SMENU] HKCU\[...]\Advanced : Start_ShowPrinters (0) -> FOUND

[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤

--> C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1 localhost

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: ST316081 1AS SCSI Disk Device +++++

--- User ---

[MBR] 9b97dee5089473b6dfccd57853c6450f

[bSP] c57ff3fb1414cef235532b8a2ebb7d6f : Windows XP MBR Code

Partition table:

0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 152617 Mo

User = LL1 ... OK!

Error reading LL2 MBR!

Finished : << RKreport[1]_S_05262013_02d2036.txt >>

RKreport[1]_S_05262013_02d2036.txt

Results of screen317's Security Check version 0.99.64

Windows XP Service Pack 3 x86

Internet Explorer 8

``````````````Antivirus/Firewall Check:``````````````

Windows Firewall Enabled!

AVG 2013

`````````Anti-malware/Other Utilities Check:`````````

Malwarebytes Anti-Malware version 1.75.0.1300

CCleaner

Java 6 Update 26

Java 6 Update 2

Java 6 Update 3

Java version out of Date!

Adobe Flash Player 10 Flash Player out of Date!

Adobe Flash Player 10.1.52.14 Flash Player out of Date!

Adobe Reader 8 Adobe Reader out of Date!

````````Process Check: objlist.exe by Laurent````````

AVG avgwdsvc.exe

AVG avgrsx.exe

AVG avgemc.exe

malfy My Documents Downloads SecurityCheck.exe

malfy LOCALS~1 temp RarSFX1\SecurityCheck\Objlist.exe

`````````````````System Health check`````````````````

Total Fragmentation on Drive C:: 4%

````````````````````End of Log``````````````````````

Link to post
Share on other sites

You should not disable your antivirus, especially when you are connected to the internet.

Now from time to time, I will ask you to disable your AVG when we run some tools. But I'll have you re-enable it when we finish a set of tasks.

I will focus mainly on seeing if there is malware, and if found, to remove such malware, as much as possible.

But keep in mind that lagging pc performance can very well be due to non-malware sources, such as insufiicient ram memory, insufficient free disk space, severe defragmentation on the HDD (though that one is not your case), too many startup apps, etc.

All those you can (and should) address later by yourself.

You have outdated & insescure apps: Java runtime, Flash Player, and Adobe Reader. We will address those soon.

For now, do the following, and post the log contents as you go along.

Task 1

  • Disable your anti-virus program, How To Temporarily Disable Your Anti-virus, Firewall And Anti-malware Programs
  • Please disconnect any USB or external storage drives from the computer before you run this scan! i_arrow-l.gif
  • For Vista or Windows 7 / 8, do a right-click on the RogueKiller.exe program icon, select Run as Administrator to start, & when prompted Allow to run.
    For Windows XP, double-click to start.
  • Wait until Prescan finishes. i_arrow-l.gif
  • On the RogueKiller console, click the Registry tab.
    Put a check next to all of these and uncheck the rest: (if found)
    [HJPOL] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND
    [HJ SMENU] HKCU\[...]\Advanced : Start_ShowRecentDocs (0) -> FOUND
    [HJ SMENU] HKCU\[...]\Advanced : Start_ShowPrinters (0) -> FOUND

    UN-check any -other - lines shown on your screen that are not listed in the above list.
  • Then click on Delete on the right hand column under Options.
  • When done, logoff & Restart the system.
  • The log will be found as RKreport
    Copy & Paste the contents into next reply.

Task 2

Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools

For directions on how, see How To Temporarily Disable Your Anti-virus, Firewall And Anti-malware Programs

Do NOT turn off the firewall

Please download Rkill by Grinler and save it to your desktop.

Link 2
Link 3
Link 4
Double-click on the Rkill desktop icon to run the tool.
If using Vista or Windows 7, right-click on it and Run As Administrator.
A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
If not, delete the file, then download and use the one provided in Link 2.
If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.
If the tool does not run from any of the links provided, please let me know.
If your antivirus program gives a prompt message, respond positive to allow RKILL to run.
If a malware-rogue gives a message regarding RKILL, proceed forward to running RKILL

IF you still have a problem running RKILL, you can download iExplore.exe or eXplorer.exe, which are renamed copies of rkill.com, and try them instead.

When all done, rkill.txt log file will be on your desktop. Copy & Paste contents of Rkill.txt into a reply.

More Information about Rkill can be found at this link: http://www.bleepingcomputer.com/forums/topic308364.html

Task 3

1. Download Malwarebytes Anti-Rootkit from http://www.malwarebytes.org/products/mbar/

2. Unzip the contents to a folder in a convenient location.

3. Open the folder where the contents were unzipped and run mbar.exe

IF your Windows is Windows 8 or 7 or Vista, do a RIGHT-Click on mbar.exe and select Run As Administrator and allow to run.

If your Windows is XP, double-click to start.

4. Follow the instructions in the wizard to update and allow the program to scan your computer for threats.

5. Click on the Cleanup button to remove any threats and reboot if prompted to do so.

6. Wait while the system shuts down and the cleanup process is performed.

7. Perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If they do, then click Cleanup once more and repeat the process.

Task 4

Download aswMBR.exe ( 511KB ) to your desktop.

On Windows 7 / 8 or Vista, RIGHT click on aswMBR.exe and select Run As Administrator to start.

On Windows XP, double click the exe to start.

IF prompted to update Avast definitions, answer NO.

aswmbr-1_zps5bcff15d.gif

On the following screen:

aswmbr-2_zpse79f2c16.gif

uncheck trace disk IO calls at the bottom left :excl:

Now, Click the "Scan" button to start scan.

Have patience as it scans.

On completion of the scan (Note if the Fix button is enabled (not the FixMBR button) and tell me)

Now click save log, save it to your desktop and Copy & Paste in your next reply.

Do NOT click any Fix button.

EXIT the tool.

Task 5

Please read carefully and follow these steps.

  • Download TDSSKiller and save it to your Desktop.
  • Double-Click on TDSSKiller.exe to run the application, then on Start Scan.
    If running Vista or Windows 7, do a RIGHT-Click and select Run as Administrator to start TDSSKILLER.exe.
  • If an infected file is detected, the default action will be Cure, click on Continue.
    TDSSKillerMal-1.png
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • If you get the warning about a file UnsignedFile.Multi.Generic or LockedFile.Multi.Generic please choose
    Skip and click on Continue
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
    TDSSKillerCompleted.png
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

Link to post
Share on other sites

Task 1

RogueKiller V8.5.4 [Mar 18 2013] by Tigzy

mail : tigzyRK<at>gmail<dot>com

Feedback : http://www.geekstogo...13-roguekiller/

Website : http://tigzy.geeksto...roguekiller.php

Blog : http://tigzyrk.blogspot.com/

Operating System : Windows XP (5.1.2600 Service Pack 3) 32 bits version

Started in : Normal mode

User : malfy [Admin rights]

Mode : Remove -- Date : 05/29/2013 20:02:21

| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 4 ¤¤¤

[HJPOL] HKLM\[...]\System : DisableRegistryTools (0) -> DELETED

[HJ SMENU] HKCU\[...]\Advanced : Start_ShowRecentDocs (0) -> REPLACED (1)

[HJ SMENU] HKCU\[...]\Advanced : Start_ShowPrinters (0) -> REPLACED (1)

[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NOT SELECTED

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤

--> C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1 localhost

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: ST316081 1AS SCSI Disk Device +++++

--- User ---

[MBR] 9b97dee5089473b6dfccd57853c6450f

[bSP] c57ff3fb1414cef235532b8a2ebb7d6f : Windows XP MBR Code

Partition table:

0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 152617 Mo

User = LL1 ... OK!

Error reading LL2 MBR!

Finished : << RKreport[2]_D_05292013_02d2002.txt >>

RKreport[1]_S_05292013_02d2001.txt ; RKreport[2]_D_05292013_02d2002.txt

Task 2

Rkill 2.5.0 by Lawrence Abrams (Grinler)

http://www.bleepingcomputer.com/

Copyright 2008-2013 BleepingComputer.com

More Information about Rkill can be found at this link:

http://www.bleepingc...opic308364.html

Program started at: 05/29/2013 08:09:44 PM in x86 mode.

Windows Version: Microsoft Windows XP Service Pack 3

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* No issues found.

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* HOSTS file entries found:

127.0.0.1 localhost

Program finished at: 05/29/2013 08:10:38 PM

Execution time: 0 hours(s), 0 minute(s), and 53 seconds(s)

Task 4

aswMBR version 0.9.9.1771 Copyright© 2011 AVAST Software

Run date: 2013-05-29 20:32:51

-----------------------------

20:32:51.640 OS Version: Windows 5.1.2600 Service Pack 3

20:32:51.640 Number of processors: 2 586 0xF02

20:32:51.640 ComputerName: DANNY UserName: malfy

20:32:53.015 Initialize success

20:33:05.203 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Scsi\nvgts1Port2Path1Target1Lun0

20:33:05.203 Disk 0 Vendor: ST316081 3.AA Size: 152627MB BusType: 3

20:33:05.328 Disk 0 MBR read successfully

20:33:05.328 Disk 0 MBR scan

20:33:05.343 Disk 0 Windows XP default MBR code

20:33:05.343 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 152617 MB offset 63

20:33:05.343 Disk 0 scanning sectors +312560640

20:33:05.406 Disk 0 scanning C:\WINDOWS\system32\drivers

20:33:15.125 Service scanning

20:33:18.203 Service GMSIPCI D:\INSTALL\GMSIPCI.SYS **LOCKED** 21

20:33:24.234 Modules scanning

20:33:30.171 Scan finished successfully

20:33:41.984 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\malfy\Desktop\MBR.dat"

20:33:41.984 The log file has been saved successfully to "C:\Documents and Settings\malfy\Desktop\aswMBR.txt"

Task 5

20:35:09.0875 2332 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42

20:35:11.0875 2332 ============================================================

20:35:11.0875 2332 Current date / time: 2013/05/29 20:35:11.0875

20:35:11.0875 2332 SystemInfo:

20:35:11.0875 2332

20:35:11.0875 2332 OS Version: 5.1.2600 ServicePack: 3.0

20:35:11.0875 2332 Product type: Workstation

20:35:11.0875 2332 ComputerName: DANNY

20:35:11.0875 2332 UserName: malfy

20:35:11.0875 2332 Windows directory: C:\WINDOWS

20:35:11.0875 2332 System windows directory: C:\WINDOWS

20:35:11.0875 2332 Processor architecture: Intel x86

20:35:11.0875 2332 Number of processors: 2

20:35:11.0875 2332 Page size: 0x1000

20:35:11.0875 2332 Boot type: Normal boot

20:35:11.0875 2332 ============================================================

20:35:12.0515 2332 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000058

20:35:12.0515 2332 ============================================================

20:35:12.0515 2332 \Device\Harddisk0\DR0:

20:35:12.0515 2332 MBR partitions:

20:35:12.0515 2332 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x12A14BC1

20:35:12.0515 2332 ============================================================

20:35:12.0546 2332 C: <-> \Device\Harddisk0\DR0\Partition1

20:35:12.0546 2332 ============================================================

20:35:12.0546 2332 Initialize success

20:35:12.0546 2332 ============================================================

20:35:21.0812 1396 ============================================================

20:35:21.0812 1396 Scan started

20:35:21.0812 1396 Mode: Manual;

20:35:21.0812 1396 ============================================================

20:35:21.0937 1396 ================ Scan system memory ========================

20:35:21.0937 1396 System memory - ok

20:35:21.0937 1396 ================ Scan services =============================

20:35:22.0031 1396 6to4 - ok

20:35:22.0046 1396 Abiosdsk - ok

20:35:22.0046 1396 abp480n5 - ok

20:35:22.0093 1396 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys

20:35:22.0093 1396 ACPI - ok

20:35:22.0125 1396 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys

20:35:22.0125 1396 ACPIEC - ok

20:35:22.0125 1396 adpu160m - ok

20:35:22.0140 1396 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys

20:35:22.0156 1396 aec - ok

20:35:22.0187 1396 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys

20:35:22.0187 1396 AFD - ok

20:35:22.0203 1396 Aha154x - ok

20:35:22.0203 1396 aic78u2 - ok

20:35:22.0203 1396 aic78xx - ok

20:35:22.0234 1396 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll

20:35:22.0234 1396 Alerter - ok

20:35:22.0250 1396 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe

20:35:22.0250 1396 ALG - ok

20:35:22.0265 1396 AliIde - ok

20:35:22.0328 1396 [ 267FC636801EDC5AB28E14036349E3BE ] Ambfilt C:\WINDOWS\system32\drivers\Ambfilt.sys

20:35:22.0375 1396 Ambfilt - ok

20:35:22.0375 1396 amsint - ok

20:35:22.0406 1396 [ 116BFF96077A4A724E0AAB800525CEB5 ] AN983 C:\WINDOWS\system32\DRIVERS\AN983.sys

20:35:22.0406 1396 AN983 - ok

20:35:22.0421 1396 AppMgmt - ok

20:35:22.0437 1396 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys

20:35:22.0437 1396 Arp1394 - ok

20:35:22.0437 1396 asc - ok

20:35:22.0453 1396 asc3350p - ok

20:35:22.0453 1396 asc3550 - ok

20:35:22.0546 1396 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe

20:35:22.0562 1396 aspnet_state - ok

20:35:22.0562 1396 aspnet_stateEventSystem - ok

20:35:22.0593 1396 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys

20:35:22.0593 1396 AsyncMac - ok

20:35:22.0625 1396 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys

20:35:22.0625 1396 atapi - ok

20:35:22.0625 1396 Atdisk - ok

20:35:22.0656 1396 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys

20:35:22.0656 1396 Atmarpc - ok

20:35:22.0687 1396 [ 3C391503E59C88DA73B8C74097147BC9 ] audiobridge C:\WINDOWS\system32\DRIVERS\aubridge.sys

20:35:22.0687 1396 audiobridge - ok

20:35:22.0718 1396 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll

20:35:22.0718 1396 AudioSrv - ok

20:35:22.0734 1396 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys

20:35:22.0734 1396 audstub - ok

20:35:23.0078 1396 [ 50185186719134FA8F307D269106A51C ] AVGIDSAgent C:\Program Files\AVG\AVG2013\avgidsagent.exe

20:35:23.0328 1396 AVGIDSAgent - ok

20:35:23.0375 1396 [ 4750A2A188D39034F5DDDDAE1BF38BF8 ] AVGIDSDriver C:\WINDOWS\system32\DRIVERS\avgidsdriverx.sys

20:35:23.0375 1396 AVGIDSDriver - ok

20:35:23.0421 1396 [ B0DEF92F4E1E6B9242E6C8FAB82703F7 ] AVGIDSHX C:\WINDOWS\system32\DRIVERS\avgidshx.sys

20:35:23.0421 1396 AVGIDSHX - ok

20:35:23.0437 1396 [ A426B2DC795531D99E2EE1952AEC051A ] AVGIDSShim C:\WINDOWS\system32\DRIVERS\avgidsshimx.sys

20:35:23.0437 1396 AVGIDSShim - ok

20:35:23.0484 1396 [ 08FA13787D77A75DC413E27FD92B44E8 ] Avgldx86 C:\WINDOWS\system32\DRIVERS\avgldx86.sys

20:35:23.0484 1396 Avgldx86 - ok

20:35:23.0500 1396 [ 3E587EE55C70E6DB78A98D7121D3052E ] Avglogx C:\WINDOWS\system32\DRIVERS\avglogx.sys

20:35:23.0515 1396 Avglogx - ok

20:35:23.0515 1396 [ 5AC56B2CF8EE751796C5A8FC5C631B66 ] Avgmfx86 C:\WINDOWS\system32\DRIVERS\avgmfx86.sys

20:35:23.0515 1396 Avgmfx86 - ok

20:35:23.0546 1396 [ C29E6070396E437FDE184D739CCBA2C7 ] Avgrkx86 C:\WINDOWS\system32\DRIVERS\avgrkx86.sys

20:35:23.0546 1396 Avgrkx86 - ok

20:35:23.0593 1396 [ 3A0977CB68AF13E2579E47EB8984056B ] avgwd C:\Program Files\AVG\AVG2013\avgwdsvc.exe

20:35:23.0609 1396 avgwd - ok

20:35:23.0640 1396 [ 438179ABE9B7A922A21B8D6369FF52FF ] BCM42RLY C:\WINDOWS\System32\BCM42RLY.SYS

20:35:23.0640 1396 BCM42RLY - ok

20:35:23.0656 1396 BCM43XX - ok

20:35:23.0671 1396 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys

20:35:23.0687 1396 Beep - ok

20:35:23.0703 1396 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll

20:35:23.0718 1396 BITS - ok

20:35:23.0734 1396 [ F934D1B230F84E1D19DD00AC5A7A83ED ] Bridge C:\WINDOWS\system32\DRIVERS\bridge.sys

20:35:23.0734 1396 Bridge - ok

20:35:23.0734 1396 [ F934D1B230F84E1D19DD00AC5A7A83ED ] BridgeMP C:\WINDOWS\system32\DRIVERS\bridge.sys

20:35:23.0734 1396 BridgeMP - ok

20:35:23.0765 1396 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll

20:35:23.0765 1396 Browser - ok

20:35:23.0765 1396 btaudio - ok

20:35:23.0781 1396 BTDriver - ok

20:35:23.0781 1396 BTWDNDIS - ok

20:35:23.0781 1396 btwhid - ok

20:35:23.0796 1396 BTWUSB - ok

20:35:23.0875 1396 catchme - ok

20:35:23.0906 1396 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys

20:35:23.0906 1396 cbidf2k - ok

20:35:23.0906 1396 cd20xrnt - ok

20:35:23.0921 1396 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys

20:35:23.0921 1396 Cdaudio - ok

20:35:23.0937 1396 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys

20:35:23.0953 1396 Cdfs - ok

20:35:23.0968 1396 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys

20:35:23.0968 1396 Cdrom - ok

20:35:23.0984 1396 Changer - ok

20:35:24.0000 1396 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe

20:35:24.0015 1396 CiSvc - ok

20:35:24.0031 1396 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe

20:35:24.0046 1396 ClipSrv - ok

20:35:24.0062 1396 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

20:35:24.0062 1396 clr_optimization_v2.0.50727_32 - ok

20:35:24.0062 1396 CmdIde - ok

20:35:24.0078 1396 COMSysApp - ok

20:35:24.0093 1396 Cpqarray - ok

20:35:24.0109 1396 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll

20:35:24.0109 1396 CryptSvc - ok

20:35:24.0109 1396 dac2w2k - ok

20:35:24.0109 1396 dac960nt - ok

20:35:24.0140 1396 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll

20:35:24.0156 1396 DcomLaunch - ok

20:35:24.0171 1396 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll

20:35:24.0187 1396 Dhcp - ok

20:35:24.0218 1396 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys

20:35:24.0218 1396 Disk - ok

20:35:24.0218 1396 dmadmin - ok

20:35:24.0265 1396 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys

20:35:24.0265 1396 dmboot - ok

20:35:24.0296 1396 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys

20:35:24.0296 1396 dmio - ok

20:35:24.0328 1396 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys

20:35:24.0328 1396 dmload - ok

20:35:24.0359 1396 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll

20:35:24.0359 1396 dmserver - ok

20:35:24.0375 1396 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys

20:35:24.0375 1396 DMusic - ok

20:35:24.0406 1396 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll

20:35:24.0406 1396 Dnscache - ok

20:35:24.0437 1396 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll

20:35:24.0453 1396 Dot3svc - ok

20:35:24.0453 1396 dpti2o - ok

20:35:24.0468 1396 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys

20:35:24.0468 1396 drmkaud - ok

20:35:24.0500 1396 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll

20:35:24.0500 1396 EapHost - ok

20:35:24.0531 1396 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll

20:35:24.0531 1396 ERSvc - ok

20:35:24.0562 1396 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe

20:35:24.0562 1396 Eventlog - ok

20:35:24.0593 1396 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\System32\es.dll

20:35:24.0593 1396 EventSystem - ok

20:35:24.0625 1396 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys

20:35:24.0625 1396 Fastfat - ok

20:35:24.0656 1396 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll

20:35:24.0656 1396 FastUserSwitchingCompatibility - ok

20:35:24.0671 1396 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys

20:35:24.0671 1396 Fdc - ok

20:35:24.0687 1396 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys

20:35:24.0687 1396 Fips - ok

20:35:24.0765 1396 [ BB0667B0171B632B97EA759515476F07 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

20:35:24.0781 1396 FLEXnet Licensing Service - ok

20:35:24.0796 1396 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys

20:35:24.0796 1396 Flpydisk - ok

20:35:24.0828 1396 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys

20:35:24.0828 1396 FltMgr - ok

20:35:24.0890 1396 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe

20:35:24.0890 1396 FontCache3.0.0.0 - ok

20:35:24.0890 1396 ForceWare Intelligent Application Manager (IAM) - ok

20:35:24.0906 1396 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys

20:35:24.0906 1396 Fs_Rec - ok

20:35:24.0906 1396 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys

20:35:24.0906 1396 Ftdisk - ok

20:35:24.0953 1396 [ AB8A6A87D9D7255C3884D5B9541A6E80 ] GEARAspiWDM C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys

20:35:24.0953 1396 GEARAspiWDM - ok

20:35:24.0968 1396 GMSIPCI - ok

20:35:25.0000 1396 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys

20:35:25.0000 1396 Gpc - ok

20:35:25.0015 1396 [ FC80052194D5708254A346568F0E77C0 ] GTNDIS5 C:\WINDOWS\system32\GTNDIS5.SYS

20:35:25.0015 1396 GTNDIS5 - ok

20:35:25.0046 1396 [ 3FCC124B6E08EE0E9351F717DD136939 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys

20:35:25.0046 1396 HDAudBus - ok

20:35:25.0093 1396 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll

20:35:25.0093 1396 helpsvc - ok

20:35:25.0109 1396 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll

20:35:25.0109 1396 HidServ - ok

20:35:25.0125 1396 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys

20:35:25.0125 1396 hidusb - ok

20:35:25.0156 1396 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll

20:35:25.0171 1396 hkmsvc - ok

20:35:25.0171 1396 hpn - ok

20:35:25.0265 1396 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys

20:35:25.0281 1396 HTTP - ok

20:35:25.0312 1396 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll

20:35:25.0328 1396 HTTPFilter - ok

20:35:25.0328 1396 i2omgmt - ok

20:35:25.0328 1396 i2omp - ok

20:35:25.0359 1396 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys

20:35:25.0359 1396 i8042prt - ok

20:35:25.0687 1396 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe

20:35:25.0968 1396 idsvc - ok

20:35:25.0984 1396 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys

20:35:25.0984 1396 Imapi - ok

20:35:26.0078 1396 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe

20:35:26.0109 1396 ImapiService - ok

20:35:26.0109 1396 ini910u - ok

20:35:27.0531 1396 [ 07CFD02E9BEDCF2D2CCF9F55B4E46616 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys

20:35:30.0453 1396 IntcAzAudAddService - ok

20:35:30.0453 1396 IntelIde - ok

20:35:30.0484 1396 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys

20:35:30.0484 1396 intelppm - ok

20:35:30.0500 1396 [ 3BB22519A194418D5FEC05D800A19AD0 ] ip6fw C:\WINDOWS\system32\drivers\ip6fw.sys

20:35:30.0515 1396 ip6fw - ok

20:35:30.0531 1396 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys

20:35:30.0531 1396 IpFilterDriver - ok

20:35:30.0546 1396 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys

20:35:30.0546 1396 IpInIp - ok

20:35:30.0578 1396 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys

20:35:30.0578 1396 IpNat - ok

20:35:30.0593 1396 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys

20:35:30.0593 1396 IPSec - ok

20:35:30.0609 1396 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys

20:35:30.0609 1396 IRENUM - ok

20:35:30.0640 1396 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys

20:35:30.0640 1396 isapnp - ok

20:35:30.0765 1396 [ 5739F2821D49975CEDE6BF0153D0CF01 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe

20:35:30.0765 1396 JavaQuickStarterService - ok

20:35:30.0796 1396 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys

20:35:30.0796 1396 Kbdclass - ok

20:35:30.0812 1396 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys

20:35:30.0812 1396 kbdhid - ok

20:35:30.0828 1396 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys

20:35:30.0828 1396 kmixer - ok

20:35:30.0859 1396 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys

20:35:30.0859 1396 KSecDD - ok

20:35:30.0906 1396 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll

20:35:30.0906 1396 lanmanserver - ok

20:35:30.0921 1396 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll

20:35:30.0937 1396 lanmanworkstation - ok

20:35:30.0968 1396 [ C99BA72106A858CB8B521BB4C02C93ED ] LBeepKE C:\WINDOWS\system32\Drivers\LBeepKE.sys

20:35:30.0968 1396 LBeepKE - ok

20:35:30.0968 1396 lbrtfdc - ok

20:35:31.0000 1396 [ EEE5A87EC378C9AD7CE91073FBD63465 ] LEqdUsb C:\WINDOWS\system32\Drivers\LEqdUsb.Sys

20:35:31.0000 1396 LEqdUsb - ok

20:35:31.0031 1396 [ 62663B385087F5977D8EBD1FDC67B639 ] LHidEqd C:\WINDOWS\system32\Drivers\LHidEqd.Sys

20:35:31.0031 1396 LHidEqd - ok

20:35:31.0062 1396 [ 318B3D608FBEC44B7E0C23BF759DCED5 ] LHidFilt C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys

20:35:31.0062 1396 LHidFilt - ok

20:35:31.0093 1396 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll

20:35:31.0093 1396 LmHosts - ok

20:35:31.0109 1396 [ 84AF069D219DF3C43DC6792B2BBD7BED ] LMouFilt C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys

20:35:31.0109 1396 LMouFilt - ok

20:35:31.0109 1396 maxidemo - ok

20:35:31.0156 1396 [ 4A5FFDF0FE830C448830BD4B02B02B4B ] mbamchameleon C:\WINDOWS\system32\drivers\mbamchameleon.sys

20:35:31.0156 1396 mbamchameleon - ok

20:35:31.0187 1396 [ 4470E3C1E0C3378E4CAB137893C12C3A ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys

20:35:31.0187 1396 MBAMProtector - ok

20:35:31.0265 1396 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe

20:35:31.0265 1396 MBAMScheduler - ok

20:35:31.0296 1396 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

20:35:31.0312 1396 MBAMService - ok

20:35:31.0312 1396 mcdbus - ok

20:35:31.0343 1396 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll

20:35:31.0343 1396 Messenger - ok

20:35:31.0375 1396 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys

20:35:31.0375 1396 mnmdd - ok

20:35:31.0406 1396 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\System32\mnmsrvc.exe

20:35:31.0406 1396 mnmsrvc - ok

20:35:31.0437 1396 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys

20:35:31.0437 1396 Modem - ok

20:35:31.0515 1396 [ C7D9F9717916B34C1B00DD4834AF485C ] Monfilt C:\WINDOWS\system32\drivers\Monfilt.sys

20:35:31.0546 1396 Monfilt - ok

20:35:31.0562 1396 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys

20:35:31.0562 1396 Mouclass - ok

20:35:31.0578 1396 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys

20:35:31.0578 1396 mouhid - ok

20:35:31.0609 1396 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys

20:35:31.0609 1396 MountMgr - ok

20:35:31.0609 1396 mraid35x - ok

20:35:31.0625 1396 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys

20:35:31.0625 1396 MRxDAV - ok

20:35:31.0640 1396 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys

20:35:31.0656 1396 MRxSmb - ok

20:35:31.0687 1396 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\System32\msdtc.exe

20:35:31.0687 1396 MSDTC - ok

20:35:31.0703 1396 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys

20:35:31.0703 1396 Msfs - ok

20:35:31.0703 1396 MSIServer - ok

20:35:31.0734 1396 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys

20:35:31.0734 1396 MSKSSRV - ok

20:35:31.0750 1396 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys

20:35:31.0750 1396 MSPCLOCK - ok

20:35:31.0750 1396 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys

20:35:31.0750 1396 MSPQM - ok

20:35:31.0765 1396 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys

20:35:31.0765 1396 mssmbios - ok

20:35:31.0781 1396 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys

20:35:31.0796 1396 Mup - ok

20:35:31.0828 1396 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll

20:35:31.0843 1396 napagent - ok

20:35:31.0875 1396 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys

20:35:31.0875 1396 NDIS - ok

20:35:31.0921 1396 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys

20:35:31.0921 1396 NdisTapi - ok

20:35:31.0937 1396 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys

20:35:31.0937 1396 Ndisuio - ok

20:35:31.0953 1396 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys

20:35:31.0953 1396 NdisWan - ok

20:35:32.0000 1396 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys

20:35:32.0000 1396 NDProxy - ok

20:35:32.0031 1396 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys

20:35:32.0031 1396 NetBIOS - ok

20:35:32.0046 1396 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys

20:35:32.0046 1396 NetBT - ok

20:35:32.0078 1396 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe

20:35:32.0078 1396 NetDDE - ok

20:35:32.0093 1396 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe

20:35:32.0093 1396 NetDDEdsdm - ok

20:35:32.0125 1396 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe

20:35:32.0125 1396 Netlogon - ok

20:35:32.0156 1396 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll

20:35:32.0156 1396 Netman - ok

20:35:32.0203 1396 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe

20:35:32.0203 1396 NetTcpPortSharing - ok

20:35:32.0218 1396 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys

20:35:32.0218 1396 NIC1394 - ok

20:35:32.0234 1396 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll

20:35:32.0234 1396 Nla - ok

20:35:32.0281 1396 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys

20:35:32.0281 1396 Npfs - ok

20:35:32.0281 1396 npggsvc - ok

20:35:32.0281 1396 npkcrypt - ok

20:35:32.0281 1396 nSvcIp - ok

20:35:32.0296 1396 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys

20:35:32.0312 1396 Ntfs - ok

20:35:32.0328 1396 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\System32\lsass.exe

20:35:32.0343 1396 NtLmSsp - ok

20:35:32.0375 1396 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll

20:35:32.0406 1396 NtmsSvc - ok

20:35:32.0421 1396 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys

20:35:32.0421 1396 Null - ok

20:35:32.0578 1396 [ 597A5167C509547FC691416887171079 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys

20:35:32.0718 1396 nv - ok

20:35:32.0765 1396 [ DC1F9954B5EDDD147AF7E5C420BE7B93 ] nvata C:\WINDOWS\system32\DRIVERS\nvata.sys

20:35:32.0765 1396 nvata - ok

20:35:32.0796 1396 [ 7D275ECDA4628318912F6C945D5CF963 ] NVENETFD C:\WINDOWS\system32\DRIVERS\NVENETFD.sys

20:35:32.0796 1396 NVENETFD - ok

20:35:32.0812 1396 [ EA98BFE4931BD13D747D647C1859796E ] nvgts C:\WINDOWS\system32\DRIVERS\nvgts.sys

20:35:32.0812 1396 nvgts - ok

20:35:32.0859 1396 [ B64AACEFAD2BE5BFF5353FE681253C67 ] nvnetbus C:\WINDOWS\system32\DRIVERS\nvnetbus.sys

20:35:32.0859 1396 nvnetbus - ok

20:35:32.0875 1396 [ 4A290F88C42DD1037A46CD1867308D82 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe

20:35:32.0875 1396 NVSvc - ok

20:35:32.0921 1396 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys

20:35:32.0921 1396 NwlnkFlt - ok

20:35:32.0937 1396 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys

20:35:32.0937 1396 NwlnkFwd - ok

20:35:32.0953 1396 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys

20:35:32.0953 1396 ohci1394 - ok

20:35:33.0000 1396 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\drivers\Parport.sys

20:35:33.0000 1396 Parport - ok

20:35:33.0015 1396 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys

20:35:33.0015 1396 PartMgr - ok

20:35:33.0031 1396 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys

20:35:33.0031 1396 ParVdm - ok

20:35:33.0062 1396 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys

20:35:33.0062 1396 PCI - ok

20:35:33.0062 1396 PCIDump - ok

20:35:33.0093 1396 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys

20:35:33.0093 1396 PCIIde - ok

20:35:33.0109 1396 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys

20:35:33.0109 1396 Pcmcia - ok

20:35:33.0109 1396 PDCOMP - ok

20:35:33.0109 1396 PDFRAME - ok

20:35:33.0125 1396 PDRELI - ok

20:35:33.0125 1396 PDRFRAME - ok

20:35:33.0125 1396 perc2 - ok

20:35:33.0140 1396 perc2hib - ok

20:35:33.0156 1396 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe

20:35:33.0156 1396 PlugPlay - ok

20:35:33.0171 1396 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe

20:35:33.0171 1396 PolicyAgent - ok

20:35:33.0203 1396 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys

20:35:33.0203 1396 PptpMiniport - ok

20:35:33.0218 1396 [ A32BEBAF723557681BFC6BD93E98BD26 ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys

20:35:33.0218 1396 Processor - ok

20:35:33.0218 1396 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe

20:35:33.0218 1396 ProtectedStorage - ok

20:35:33.0234 1396 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys

20:35:33.0234 1396 PSched - ok

20:35:33.0265 1396 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys

20:35:33.0265 1396 Ptilink - ok

20:35:33.0296 1396 [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys

20:35:33.0312 1396 PxHelp20 - ok

20:35:33.0312 1396 ql1080 - ok

20:35:33.0312 1396 Ql10wnt - ok

20:35:33.0312 1396 ql12160 - ok

20:35:33.0328 1396 ql1240 - ok

20:35:33.0328 1396 ql1280 - ok

20:35:33.0359 1396 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys

20:35:33.0359 1396 RasAcd - ok

20:35:33.0390 1396 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll

20:35:33.0406 1396 RasAuto - ok

20:35:33.0421 1396 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys

20:35:33.0421 1396 Rasl2tp - ok

20:35:33.0453 1396 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll

20:35:33.0453 1396 RasMan - ok

20:35:33.0468 1396 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys

20:35:33.0468 1396 RasPppoe - ok

20:35:33.0468 1396 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys

20:35:33.0468 1396 Raspti - ok

20:35:33.0500 1396 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys

20:35:33.0515 1396 Rdbss - ok

20:35:33.0531 1396 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys

20:35:33.0531 1396 RDPCDD - ok

20:35:33.0562 1396 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys

20:35:33.0562 1396 RDPWD - ok

20:35:33.0593 1396 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe

20:35:33.0609 1396 RDSessMgr - ok

20:35:33.0640 1396 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys

20:35:33.0640 1396 redbook - ok

20:35:33.0671 1396 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll

20:35:33.0671 1396 RemoteAccess - ok

20:35:33.0703 1396 [ F17713D108ACA124A139FDE877EEF68A ] RimUsb C:\WINDOWS\system32\Drivers\RimUsb.sys

20:35:33.0703 1396 RimUsb - ok

20:35:33.0703 1396 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\System32\locator.exe

20:35:33.0718 1396 RpcLocator - ok

20:35:33.0750 1396 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\System32\rpcss.dll

20:35:33.0750 1396 RpcSs - ok

20:35:33.0765 1396 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\System32\rsvp.exe

20:35:33.0781 1396 RSVP - ok

20:35:33.0828 1396 [ 7436BFD3A542CF6FF55097200031B293 ] RT73 C:\WINDOWS\system32\DRIVERS\rt73.sys

20:35:33.0828 1396 RT73 - ok

20:35:33.0859 1396 [ BA11D5F61A74E156BF6F33DDDD1AD1CE ] RTL8192su C:\WINDOWS\system32\DRIVERS\RTL8192su.sys

20:35:33.0875 1396 RTL8192su - ok

20:35:33.0890 1396 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe

20:35:33.0890 1396 SamSs - ok

20:35:33.0921 1396 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe

20:35:33.0937 1396 SCardSvr - ok

20:35:33.0968 1396 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll

20:35:33.0968 1396 Schedule - ok

20:35:34.0000 1396 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys

20:35:34.0000 1396 Secdrv - ok

20:35:34.0015 1396 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll

20:35:34.0031 1396 seclogon - ok

20:35:34.0031 1396 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll

20:35:34.0031 1396 SENS - ok

20:35:34.0062 1396 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys

20:35:34.0062 1396 serenum - ok

20:35:34.0078 1396 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys

20:35:34.0078 1396 Serial - ok

20:35:34.0093 1396 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys

20:35:34.0093 1396 Sfloppy - ok

20:35:34.0125 1396 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll

20:35:34.0125 1396 SharedAccess - ok

20:35:34.0156 1396 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll

20:35:34.0156 1396 ShellHWDetection - ok

20:35:34.0156 1396 Simbad - ok

20:35:34.0156 1396 Sparrow - ok

20:35:34.0187 1396 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys

20:35:34.0187 1396 splitter - ok

20:35:34.0203 1396 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe

20:35:34.0218 1396 Spooler - ok

20:35:34.0234 1396 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys

20:35:34.0234 1396 sr - ok

20:35:34.0265 1396 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\System32\srsvc.dll

20:35:34.0265 1396 srservice - ok

20:35:34.0281 1396 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys

20:35:34.0296 1396 Srv - ok

20:35:34.0328 1396 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll

20:35:34.0328 1396 SSDPSRV - ok

20:35:34.0343 1396 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll

20:35:34.0359 1396 stisvc - ok

20:35:34.0390 1396 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys

20:35:34.0390 1396 swenum - ok

20:35:34.0406 1396 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys

20:35:34.0406 1396 swmidi - ok

20:35:34.0406 1396 SwPrv - ok

20:35:34.0421 1396 symc810 - ok

20:35:34.0421 1396 symc8xx - ok

20:35:34.0421 1396 sym_hi - ok

20:35:34.0437 1396 sym_u3 - ok

20:35:34.0453 1396 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys

20:35:34.0453 1396 sysaudio - ok

20:35:34.0484 1396 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe

20:35:34.0500 1396 SysmonLog - ok

20:35:34.0515 1396 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll

20:35:34.0515 1396 TapiSrv - ok

20:35:34.0562 1396 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys

20:35:34.0562 1396 Tcpip - ok

20:35:34.0578 1396 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys

20:35:34.0578 1396 TDPIPE - ok

20:35:34.0593 1396 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys

20:35:34.0593 1396 TDTCP - ok

20:35:34.0625 1396 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys

20:35:34.0625 1396 TermDD - ok

20:35:34.0640 1396 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll

20:35:34.0656 1396 TermService - ok

20:35:34.0671 1396 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll

20:35:34.0671 1396 Themes - ok

20:35:34.0687 1396 [ DF8444A8FA8FD38D8848BDD40A8403B3 ] tmcomm C:\WINDOWS\system32\drivers\tmcomm.sys

20:35:34.0703 1396 tmcomm - ok

20:35:34.0703 1396 TosIde - ok

20:35:34.0703 1396 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll

20:35:34.0718 1396 TrkWks - ok

20:35:34.0734 1396 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys

20:35:34.0734 1396 Udfs - ok

20:35:34.0734 1396 ultra - ok

20:35:34.0750 1396 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys

20:35:34.0750 1396 Update - ok

20:35:34.0781 1396 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll

20:35:34.0781 1396 upnphost - ok

20:35:34.0796 1396 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe

20:35:34.0812 1396 UPS - ok

20:35:34.0812 1396 USBAAPL - ok

20:35:34.0843 1396 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys

20:35:34.0843 1396 usbaudio - ok

20:35:34.0859 1396 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys

20:35:34.0859 1396 usbccgp - ok

20:35:34.0875 1396 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys

20:35:34.0875 1396 usbehci - ok

20:35:34.0906 1396 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys

20:35:34.0906 1396 usbhub - ok

20:35:34.0921 1396 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys

20:35:34.0921 1396 usbohci - ok

20:35:34.0953 1396 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys

20:35:34.0953 1396 usbprint - ok

20:35:34.0984 1396 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys

20:35:34.0984 1396 usbscan - ok

20:35:35.0015 1396 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS

20:35:35.0015 1396 USBSTOR - ok

20:35:35.0031 1396 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys

20:35:35.0031 1396 VgaSave - ok

20:35:35.0046 1396 ViaIde - ok

20:35:35.0078 1396 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys

20:35:35.0078 1396 VolSnap - ok

20:35:35.0109 1396 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe

20:35:35.0125 1396 VSS - ok

20:35:35.0140 1396 [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time C:\WINDOWS\system32\w32time.dll

20:35:35.0156 1396 W32Time - ok

20:35:35.0156 1396 W8335XP - ok

20:35:35.0171 1396 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys

20:35:35.0171 1396 Wanarp - ok

20:35:35.0203 1396 [ D918617B46457B9AC28027722E30F647 ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys

20:35:35.0218 1396 Wdf01000 - ok

20:35:35.0218 1396 WDICA - ok

20:35:35.0234 1396 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys

20:35:35.0234 1396 wdmaud - ok

20:35:35.0250 1396 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll

20:35:35.0250 1396 WebClient - ok

20:35:35.0312 1396 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll

20:35:35.0312 1396 winmgmt - ok

20:35:35.0343 1396 [ 5D410936831F7FB58EFF941EAC3F6D3D ] WmBEnum C:\WINDOWS\system32\drivers\WmBEnum.sys

20:35:35.0343 1396 WmBEnum - ok

20:35:35.0375 1396 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll

20:35:35.0375 1396 WmdmPmSN - ok

20:35:35.0406 1396 [ 7A13CFDE92956CA61A0927D766C5AD4F ] WmFilter C:\WINDOWS\system32\drivers\WmFilter.sys

20:35:35.0406 1396 WmFilter - ok

20:35:35.0421 1396 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\System32\wbem\wmiapsrv.exe

20:35:35.0453 1396 WmiApSrv - ok

20:35:35.0500 1396 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe

20:35:35.0515 1396 WMPNetworkSvc - ok

20:35:35.0546 1396 [ 6F04646BC690F8BBFC344BE32A60796D ] WmVirHid C:\WINDOWS\system32\drivers\WmVirHid.sys

20:35:35.0546 1396 WmVirHid - ok

20:35:35.0562 1396 [ 1D6CA43D562333F4DFB40BCEF2453F3A ] WmXlCore C:\WINDOWS\system32\drivers\WmXlCore.sys

20:35:35.0562 1396 WmXlCore - ok

20:35:35.0593 1396 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys

20:35:35.0593 1396 WpdUsb - ok

20:35:35.0609 1396 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys

20:35:35.0625 1396 WS2IFSL - ok

20:35:35.0640 1396 [ 4160CBE59D9B5BE22E4C3897E8DB9D56 ] WsAudio_DeviceS(1) C:\WINDOWS\system32\drivers\WsAudio_DeviceS(1).sys

20:35:35.0640 1396 WsAudio_DeviceS(1) - ok

20:35:35.0640 1396 [ 4160CBE59D9B5BE22E4C3897E8DB9D56 ] WsAudio_DeviceS(2) C:\WINDOWS\system32\drivers\WsAudio_DeviceS(2).sys

20:35:35.0640 1396 WsAudio_DeviceS(2) - ok

20:35:35.0656 1396 [ 4160CBE59D9B5BE22E4C3897E8DB9D56 ] WsAudio_DeviceS(3) C:\WINDOWS\system32\drivers\WsAudio_DeviceS(3).sys

20:35:35.0656 1396 WsAudio_DeviceS(3) - ok

20:35:35.0687 1396 [ 4160CBE59D9B5BE22E4C3897E8DB9D56 ] WsAudio_DeviceS(4) C:\WINDOWS\system32\drivers\WsAudio_DeviceS(4).sys

20:35:35.0687 1396 WsAudio_DeviceS(4) - ok

20:35:35.0703 1396 [ 4160CBE59D9B5BE22E4C3897E8DB9D56 ] WsAudio_DeviceS(5) C:\WINDOWS\system32\drivers\WsAudio_DeviceS(5).sys

20:35:35.0703 1396 WsAudio_DeviceS(5) - ok

20:35:35.0718 1396 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll

20:35:35.0734 1396 wscsvc - ok

20:35:35.0734 1396 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll

20:35:35.0750 1396 wuauserv - ok

20:35:35.0796 1396 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys

20:35:35.0796 1396 WudfPf - ok

20:35:35.0812 1396 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys

20:35:35.0828 1396 WudfRd - ok

20:35:35.0843 1396 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll

20:35:35.0843 1396 WudfSvc - ok

20:35:35.0875 1396 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll

20:35:35.0875 1396 WZCSVC - ok

20:35:35.0890 1396 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll

20:35:35.0906 1396 xmlprov - ok

20:35:35.0937 1396 [ F5E5F944E63A9B5F6E76C2EBB2AC462F ] xusb21 C:\WINDOWS\system32\DRIVERS\xusb21.sys

20:35:35.0937 1396 xusb21 - ok

20:35:35.0953 1396 ================ Scan global ===============================

20:35:35.0968 1396 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll

20:35:36.0015 1396 [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll

20:35:36.0015 1396 [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll

20:35:36.0062 1396 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe

20:35:36.0062 1396 [Global] - ok

20:35:36.0062 1396 ================ Scan MBR ==================================

20:35:36.0078 1396 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0

20:35:36.0265 1396 \Device\Harddisk0\DR0 - ok

20:35:36.0265 1396 ================ Scan VBR ==================================

20:35:36.0281 1396 [ 7A0CF8B9ED8AA6B71592AD247912FEEC ] \Device\Harddisk0\DR0\Partition1

20:35:36.0281 1396 \Device\Harddisk0\DR0\Partition1 - ok

20:35:36.0281 1396 ============================================================

20:35:36.0281 1396 Scan finished

20:35:36.0281 1396 ============================================================

20:35:36.0281 1668 Detected object count: 0

20:35:36.0281 1668 Actual detected object count: 0

Link to post
Share on other sites

You did not report back on Task # 3 for MBAR run.

Did you do it? if not, then please do it. If you did run, then what was the result?

AND

Give me an idea of how the system is now.

The Tdsskiller & aswMBR results are very good.

Download Dr.Web CureIt to the desktop.

The download is nearly 104.6 MB in size

  • Turn OFF your antivirus program.
    How To Temporarily Disable Your Anti-virus, Firewall And Anti-malware Programs
  • Turn off any other add-on security app {if you have them} like MBAM File System Protection.
  • If this system is Windows 8/7 or VISTA, then Right-click on Drweb-cureit-9_zpsa6b7b265.gifdrweb-cureit.exe and select Run as Administrator.
  • Otherwise, on Windows XP, doubleclick on Drweb-cureit-9_zpsa6b7b265.gifdrweb-cureit.exe file to start the tool.
  • You will see a screen similar to this:
    Drweb-cureit-1_zps34a2f747.gif
    Click the checkbox to participate, and then click on Continue button.
  • Next
    Drweb-cureit-2_zpsee7bdcb6.gif
    Click on Select onjects for scanning
  • Next
    Drweb-cureit-3_zps137b4332.gif
    Put a checkmark by clicking on the boxes as shown.
    Do not select Temporary files or System Restore points.
    Then click on Start scanning button
  • The scan in progress will be shown like this
    Drweb-cureit-4_zps211037d0.gif
  • IF something is detected, you will see a screen similar to this
    Drweb-cureit-5_zpsd7be6acf.gif
    For each item "detected", click on the Action column down arrow, like this
    Drweb-cureit-8_zpsb099f9d5.gif
    Your options will be Cure or Ignore
    IF you see an item that you are very sure is ok, then un-check the checkbox for that item.
    Typically, you will keep the Cure default.
    Then click on the Neutralize button.
  • When the actions are completed, you will see this
    Drweb-cureit-7_zpsd290a127.gif
  • Click on the green Open Report line. It will pop-up the report in NOTEPAD.
    Save the report to your desktop. The report will be called Cureit.log
  • Close Dr.Web Cureit.
  • Reboot your computer to allow files that were in use to be moved/deleted during reboot.
  • After reboot, attach the log Cureit.log you saved previously in your next reply.

Re-Enable your antivirus program when all done.

Link to post
Share on other sites

You didn't ask me to report anything for Task 3, but anyway MBAR had 0 results and did not ask for a reboot.

Dr.Web CureIt had 0 threats found, and no option to save a report.

The system still has the small skips or lags when playing a game or watching a video. I'm thinking it may be related to my video hardware or something like that. It's an older computer and I might just need to open it up and clean it out.

Link to post
Share on other sites

Here are some recommended articles:

See Miekiemoes' Help! My computer is slow!

http://users.telenet.be/bluepatchy/miekiemoes/slowcomputer.html

MS Speed up your pc - Win7 / Vista

http://windows.microsoft.com/en-US/windows/explore/speed-up-your-pc

What to do if your Computer is running slowly

http://www.malwareremoval.com/tutorials/runningslowly.php

See Quietman7's Slow Computer/browser? Check Here First

http://www.bleepingcomputer.com/forums/topic87058.html

Link to post
Share on other sites

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.