Link to home
Create AccountLog in
Avatar of DonJem
DonJem

asked on

Cannot update Windows XP

Start menu> all programs > windows update is the standard way to update XP. At the windows update site, i have the option to choose express install or custom, choosing either one yields the same error message (attached). I ran the Microsoft Fix It as a recommend solution but got the (attached) error message. I enabled automatic updates scheduled to run everyday, though it hasn't. (ended up disabling it). I'm currently running sp2 with an obvious need to update to sp3, though there is no installer anywhere that I am aware of. (There is an IT version but don't need that, also, I tried but can't because I need sp3 already installed).  

I also followed the steps below except I don't know what "reset the proxy list" means

> Cleared the cookies
> Cleared the Temporary Internet Files as well as offline content
> Restored the defaults in the Security tab of Tools/Internet Options, for
> each zone.
> Restored the defaults in the Advanced tab of Tool/Internet Options.
> Under the Advanced Tab, uncheck Enable third-party browser extensions
> Click to select the Use HTTP 1.1 and the Use HTTP 1.1 through proxy
> connections
> checkbox.
>
> Reset the proxy list
> Open IE. Go to Tools Menu, Internet Options.
> Click the Connections tab, click the LAN Settings, and then click Advanced.
> Delete any entry in the Exceptions section.
> Quit IE
> Open a command prompt and run the following commands
> proxycfg -d
> proxycfg -u
> net stop wuauserv
> net start wuauserv

I'm on a standard LAN, running Sophos antivirus, performed a scan with 1 negative results. 1 Troj/Agent-INJ, performed a cleanup. (let me know if you would like to see the AV-log) Nothing has worked. I know I'm using an outdated OS but it's my only option for now. Suggestions?
updateError.bmp
FixitError.bmp
SOLUTION
Avatar of John
John
Flag of Canada image

Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
Avatar of Sudeep Sharma
Check it BITS (Background Intelligent Update Service) is running and set to Automatic.

Try Windows Update again.

If that doesn't work try the Fix It as well in below link.

http://support.microsoft.com/kb/959894

Further scan the system with TDSSKIller and post the logs.

TdssKiller
http://support.kaspersky.com/downloads/utils/tdsskiller.zip
or
http://support.kaspersky.com/downloads/utils/tdsskiller.exe

Tutorial on TDSSKiller:
http://support.kaspersky.com/viruses/solutions?qid=208280684

or you could also try FixTDSS.exe from Symantec

http://www.symantec.com/content/en/us/global/removal_tool/threat_writeups/FixTDSS.exe

Sudeep
ASKER CERTIFIED SOLUTION
Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
Avatar of DonJem
DonJem

ASKER

There is no sp3 download link on the web, it needs to be done with windows update. The problem had to have been solved by fixing windows update. There is one exception that I am aware of, I didn't think of it before, the msdn subscription site has iso for download, which I mounted and installed, and now am running sp3, and windows update is working.

I am posting my logs though: 6 threats found

18:05:11.0312 4708  TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
18:05:11.0953 4708  ============================================================
18:05:11.0953 4708  Current date / time: 2012/11/09 18:05:11.0953
18:05:11.0953 4708  SystemInfo:
18:05:11.0953 4708  
18:05:11.0968 4708  OS Version: 5.1.2600 ServicePack: 3.0
18:05:11.0968 4708  Product type: Workstation
18:05:11.0968 4708  ComputerName: YOUR-8EBB1BCEDF
18:05:11.0968 4708  UserName: User
18:05:11.0968 4708  Windows directory: C:\WINDOWS
18:05:11.0968 4708  System windows directory: C:\WINDOWS
18:05:11.0968 4708  Processor architecture: Intel x86
18:05:11.0968 4708  Number of processors: 1
18:05:11.0968 4708  Page size: 0x1000
18:05:11.0968 4708  Boot type: Normal boot
18:05:11.0968 4708  ============================================================
18:05:15.0031 4708  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
18:05:15.0093 4708  ============================================================
18:05:15.0093 4708  \Device\Harddisk0\DR0:
18:05:15.0093 4708  MBR partitions:
18:05:15.0093 4708  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x74701AC1
18:05:15.0093 4708  ============================================================
18:05:15.0156 4708  C: <-> \Device\Harddisk0\DR0\Partition1
18:05:15.0156 4708  ============================================================
18:05:15.0156 4708  Initialize success
18:05:15.0156 4708  ============================================================
18:05:30.0015 0544  ============================================================
18:05:30.0015 0544  Scan started
18:05:30.0015 0544  Mode: Manual;
18:05:30.0015 0544  ============================================================
18:05:31.0875 0544  ================ Scan system memory ========================
18:05:36.0828 0544  System memory - ok
18:05:36.0828 0544  ================ Scan services =============================
18:05:37.0218 0544  Abiosdsk - ok
18:05:37.0234 0544  abp480n5 - ok
18:05:37.0421 0544  [ 8FD99680A539792A30E97944FDAECF17 ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:05:37.0421 0544  ACPI - ok
18:05:37.0515 0544  [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
18:05:37.0578 0544  ACPIEC - ok
18:05:37.0593 0544  adpu160m - ok
18:05:37.0703 0544  [ 8BED39E3C35D6A489438B8141717A557 ] aec             C:\WINDOWS\system32\drivers\aec.sys
18:05:37.0750 0544  aec - ok
18:05:37.0765 0544  [ 322D0E36693D6E24A2398BEE62A268CD ] AFD             C:\WINDOWS\System32\drivers\afd.sys
18:05:37.0765 0544  AFD - ok
18:05:37.0781 0544  Aha154x - ok
18:05:37.0796 0544  aic78u2 - ok
18:05:37.0796 0544  aic78xx - ok
18:05:37.0875 0544  [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
18:05:37.0875 0544  Alerter - ok
18:05:38.0140 0544  [ 8C515081584A38AA007909CD02020B3D ] ALG             C:\WINDOWS\System32\alg.exe
18:05:38.0140 0544  ALG - ok
18:05:38.0156 0544  AliIde - ok
18:05:38.0171 0544  amsint - ok
18:05:38.0250 0544  [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
18:05:38.0281 0544  AppMgmt - ok
18:05:38.0343 0544  [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394         C:\WINDOWS\system32\DRIVERS\arp1394.sys
18:05:38.0375 0544  Arp1394 - ok
18:05:38.0390 0544  asc - ok
18:05:38.0406 0544  asc3350p - ok
18:05:38.0421 0544  asc3550 - ok
18:05:38.0640 0544  [ D33C507942299753868204CC7642FA27 ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
18:05:38.0734 0544  aspnet_state - ok
18:05:38.0812 0544  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:05:38.0843 0544  AsyncMac - ok
18:05:38.0953 0544  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
18:05:38.0953 0544  atapi - ok
18:05:38.0968 0544  Atdisk - ok
18:05:39.0062 0544  [ 5784A06FDC2AC7954225A1A79E1A8F00 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
18:05:39.0109 0544  Ati HotKey Poller - ok
18:05:39.0406 0544  [ 3DB26BB04C5F787F50258D703645E18F ] ATI Smart       C:\WINDOWS\system32\ati2sgag.exe
18:05:39.0500 0544  ATI Smart - ok
18:05:40.0093 0544  [ DD222CE49E79F15D2312A5E1F42E716E ] ati2mtag        C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
18:05:40.0171 0544  ati2mtag - ok
18:05:40.0218 0544  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:05:40.0250 0544  Atmarpc - ok
18:05:40.0281 0544  [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
18:05:40.0296 0544  AudioSrv - ok
18:05:40.0359 0544  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
18:05:40.0390 0544  audstub - ok
18:05:40.0546 0544  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
18:05:40.0546 0544  Beep - ok
18:05:40.0734 0544  [ 574738F61FCA2935F5265DC4E5691314 ] BITS            C:\WINDOWS\system32\qmgr.dll
18:05:40.0734 0544  BITS - ok
18:05:40.0781 0544  [ A06CE3399D16DB864F55FAEB1F1927A9 ] Browser         C:\WINDOWS\System32\browser.dll
18:05:40.0781 0544  Browser - ok
18:05:40.0843 0544  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
18:05:40.0890 0544  cbidf2k - ok
18:05:40.0906 0544  cd20xrnt - ok
18:05:40.0937 0544  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
18:05:40.0937 0544  Cdaudio - ok
18:05:41.0000 0544  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
18:05:41.0031 0544  Cdfs - ok
18:05:41.0078 0544  [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:05:41.0109 0544  Cdrom - ok
18:05:41.0156 0544  Changer - ok
18:05:41.0312 0544  [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc           C:\WINDOWS\system32\cisvc.exe
18:05:41.0359 0544  CiSvc - ok
18:05:41.0375 0544  [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
18:05:41.0375 0544  ClipSrv - ok
18:05:41.0390 0544  [ 3C4D595E7F9B747325AEF28B4ADCAAE5 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:05:42.0437 0544  clr_optimization_v2.0.50727_32 - ok
18:05:42.0640 0544  CmdIde - ok
18:05:42.0875 0544  COMSysApp - ok
18:05:43.0218 0544  Cpqarray - ok
18:05:43.0265 0544  [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
18:05:43.0265 0544  CryptSvc - ok
18:05:43.0281 0544  dac2w2k - ok
18:05:43.0312 0544  dac960nt - ok
18:05:43.0421 0544  [ 2589FE6015A316C0F5D5112B4DA7B509 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
18:05:43.0546 0544  DcomLaunch - ok
18:05:43.0546 0544  [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
18:05:43.0562 0544  Dhcp - ok
18:05:43.0593 0544  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
18:05:43.0609 0544  Disk - ok
18:05:43.0640 0544  dmadmin - ok
18:05:43.0750 0544  [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
18:05:43.0796 0544  dmboot - ok
18:05:43.0828 0544  [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
18:05:43.0843 0544  dmio - ok
18:05:43.0843 0544  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
18:05:43.0859 0544  dmload - ok
18:05:43.0906 0544  [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver        C:\WINDOWS\System32\dmserver.dll
18:05:43.0921 0544  dmserver - ok
18:05:43.0937 0544  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
18:05:43.0953 0544  DMusic - ok
18:05:43.0984 0544  [ 474B4DC3983173E4B4C9740B0DAC98A6 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
18:05:43.0984 0544  Dnscache - ok
18:05:44.0187 0544  [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
18:05:44.0187 0544  Dot3svc - ok
18:05:44.0218 0544  dpti2o - ok
18:05:44.0265 0544  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
18:05:44.0265 0544  drmkaud - ok
18:05:44.0312 0544  [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost         C:\WINDOWS\System32\eapsvc.dll
18:05:44.0312 0544  EapHost - ok
18:05:44.0421 0544  [ 95D859F8B4DA8E1871FF4381FF974AAD ] ehRecvr         C:\WINDOWS\eHome\ehRecvr.exe
18:05:44.0421 0544  ehRecvr - ok
18:05:44.0453 0544  [ A53243709439AC2A4C216B817F8D7411 ] ehSched         C:\WINDOWS\eHome\ehSched.exe
18:05:44.0468 0544  ehSched - ok
18:05:44.0484 0544  [ BC93B4A066477954555966D77FEC9ECB ] ERSvc           C:\WINDOWS\System32\ersvc.dll
18:05:44.0484 0544  ERSvc - ok
18:05:44.0500 0544  [ 0E776ED5F7CC9F94299E70461B7B8185 ] Eventlog        C:\WINDOWS\system32\services.exe
18:05:44.0546 0544  Eventlog - ok
18:05:44.0562 0544  [ 19A799805B24990867B00C120D300C3A ] EventSystem     C:\WINDOWS\system32\es.dll
18:05:44.0578 0544  EventSystem - ok
18:05:44.0640 0544  [ 38D332A6D56AF32635675F132548343E ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
18:05:44.0656 0544  Fastfat - ok
18:05:44.0703 0544  [ 1926899BF9FFE2602B63074971700412 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
18:05:44.0703 0544  FastUserSwitchingCompatibility - ok
18:05:44.0812 0544  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys
18:05:44.0843 0544  Fdc - ok
18:05:44.0890 0544  [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
18:05:44.0890 0544  Fips - ok
18:05:44.0921 0544  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
18:05:44.0921 0544  Flpydisk - ok
18:05:45.0203 0544  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
18:05:45.0234 0544  FltMgr - ok
18:05:45.0250 0544  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:05:45.0250 0544  Fs_Rec - ok
18:05:45.0281 0544  [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:05:45.0296 0544  Ftdisk - ok
18:05:45.0656 0544  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:05:45.0671 0544  Gpc - ok
18:05:46.0109 0544  [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
18:05:46.0125 0544  HDAudBus - ok
18:05:46.0265 0544  [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
18:05:46.0281 0544  helpsvc - ok
18:05:46.0750 0544  [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ         C:\WINDOWS\System32\hidserv.dll
18:05:47.0125 0544  HidServ - ok
18:05:47.0250 0544  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
18:05:47.0250 0544  HidUsb - ok
18:05:47.0343 0544  [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
18:05:47.0359 0544  hkmsvc - ok
18:05:47.0375 0544  hpn - ok
18:05:48.0375 0544  [ 128EF741B2293C36810561092B566B1C ] HSFHWBS2        C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
18:05:48.0656 0544  HSFHWBS2 - ok
18:05:48.0906 0544  [ 9A0D0C461EF2B3D80CB7875B4B995E47 ] HSF_DP          C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
18:05:49.0031 0544  HSF_DP - ok
18:05:52.0343 0544  [ BEF7D9760E0B00973E0F7EFCE68875C1 ] hshld           C:\Program Files\Hotspot Shield\bin\openvpnas.exe
18:05:52.0437 0544  hshld - ok
18:05:52.0890 0544  [ 01947D3CBAFCFEF066E1EB45DADC182D ] HssSrv          C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
18:05:53.0156 0544  HssSrv - ok
18:05:53.0234 0544  [ 5527CF1FF457E819112EAC7DC0AA69CB ] HssTrayService  C:\Program Files\Hotspot Shield\bin\HssTrayService.EXE
18:05:53.0343 0544  HssTrayService - ok
18:05:53.0718 0544  [ F4C1B3C4847BBA031ACFDCE5A3F0CFCB ] HssWd           C:\Program Files\Hotspot Shield\bin\hsswd.exe
18:05:53.0828 0544  HssWd - ok
18:05:54.0953 0544  [ F6AACF5BCE2893E0C1754AFEB672E5C9 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
18:05:54.0953 0544  HTTP - ok
18:05:56.0000 0544  [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
18:05:56.0015 0544  HTTPFilter - ok
18:05:56.0046 0544  i2omgmt - ok
18:05:56.0156 0544  i2omp - ok
18:05:56.0296 0544  [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:05:56.0312 0544  i8042prt - ok
18:05:56.0781 0544  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
18:05:56.0781 0544  Imapi - ok
18:05:56.0843 0544  [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService    C:\WINDOWS\system32\imapi.exe
18:05:56.0875 0544  ImapiService - ok
18:05:56.0953 0544  ini910u - ok
18:06:00.0437 0544  [ A30685283F90AE02F1CD50972C6065E3 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
18:06:00.0484 0544  IntcAzAudAddService - ok
18:06:00.0500 0544  IntelIde - ok
18:06:01.0296 0544  [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
18:06:01.0328 0544  intelppm - ok
18:06:01.0531 0544  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
18:06:01.0578 0544  Ip6Fw - ok
18:06:01.0843 0544  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:06:01.0968 0544  IpFilterDriver - ok
18:06:02.0093 0544  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:06:02.0156 0544  IpInIp - ok
18:06:02.0281 0544  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:06:02.0296 0544  IpNat - ok
18:06:02.0968 0544  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:06:02.0984 0544  IPSec - ok
18:06:03.0078 0544  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
18:06:03.0109 0544  IRENUM - ok
18:06:03.0187 0544  [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:06:03.0203 0544  isapnp - ok
18:06:03.0406 0544  [ B591E761161D1EF547D76EF236EAA6A5 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
18:06:03.0421 0544  JavaQuickStarterService - ok
18:06:03.0468 0544  [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:06:03.0484 0544  Kbdclass - ok
18:06:03.0500 0544  [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
18:06:03.0531 0544  kbdhid - ok
18:06:03.0640 0544  [ 692BCF44383D056AED41B045A323D378 ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
18:06:03.0640 0544  kmixer - ok
18:06:03.0718 0544  [ B467646C54CC746128904E1654C750C1 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
18:06:03.0718 0544  KSecDD - ok
18:06:03.0796 0544  [ F385F4B02C535BFFE1D70CAB80838123 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
18:06:03.0812 0544  lanmanserver - ok
18:06:03.0875 0544  [ 1B67B632786FEF1C1BBAEF46C2F3F2E6 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
18:06:03.0875 0544  lanmanworkstation - ok
18:06:03.0890 0544  lbrtfdc - ok
18:06:03.0968 0544  [ A7DB739AE99A796D91580147E919CC59 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
18:06:03.0968 0544  LmHosts - ok
18:06:04.0171 0544  [ DF0A511F38F16016BF658FCA0090CB87 ] McrdSvc         C:\WINDOWS\ehome\mcrdsvc.exe
18:06:04.0187 0544  McrdSvc - ok
18:06:04.0640 0544  [ 7CF1B716372B89568AE4C0FE769F5869 ] MDM             C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
18:06:04.0765 0544  MDM - ok
18:06:04.0859 0544  [ EEAEA6514BA7C9D273B5E87C4E1AAB30 ] mdmxsdk         C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
18:06:04.0921 0544  mdmxsdk - ok
18:06:05.0281 0544  [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
18:06:05.0343 0544  Messenger - ok
18:06:05.0843 0544  [ B7521F69C0A9B29D356157229376FB21 ] MHN             C:\WINDOWS\System32\mhn.dll
18:06:05.0937 0544  MHN - ok
18:06:05.0968 0544  [ 7F2F1D2815A6449D346FCCCBC569FBD6 ] MHNDRV          C:\WINDOWS\system32\DRIVERS\mhndrv.sys
18:06:06.0000 0544  MHNDRV - ok
18:06:06.0140 0544  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
18:06:06.0140 0544  mnmdd - ok
18:06:06.0171 0544  [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
18:06:06.0187 0544  mnmsrvc - ok
18:06:06.0234 0544  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
18:06:06.0250 0544  Modem - ok
18:06:06.0296 0544  [ 1992E0D143B09653AB0F9C5E04B0FD65 ] MODEMCSA        C:\WINDOWS\system32\drivers\MODEMCSA.sys
18:06:06.0328 0544  MODEMCSA - ok
18:06:06.0406 0544  [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:06:06.0406 0544  Mouclass - ok
18:06:06.0515 0544  [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
18:06:06.0546 0544  mouhid - ok
18:06:06.0593 0544  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
18:06:06.0609 0544  MountMgr - ok
18:06:06.0656 0544  [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
18:06:06.0703 0544  MozillaMaintenance - ok
18:06:06.0765 0544  mraid35x - ok
18:06:06.0968 0544  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:06:06.0968 0544  MRxDAV - ok
18:06:07.0140 0544  [ 68755F0FF16070178B54674FE5B847B0 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:06:07.0156 0544  MRxSmb - ok
18:06:07.0281 0544  [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
18:06:07.0281 0544  MSDTC - ok
18:06:07.0437 0544  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
18:06:07.0437 0544  Msfs - ok
18:06:07.0609 0544  MSIServer - ok
18:06:07.0781 0544  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:06:07.0828 0544  MSKSSRV - ok
18:06:07.0843 0544  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:06:07.0890 0544  MSPCLOCK - ok
18:06:07.0921 0544  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
18:06:07.0937 0544  MSPQM - ok
18:06:07.0953 0544  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:06:07.0968 0544  mssmbios - ok
18:06:07.0984 0544  [ 2F625D11385B1A94360BFC70AAEFDEE1 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
18:06:08.0000 0544  Mup - ok
18:06:08.0281 0544  [ 0102140028FAD045756796E1C685D695 ] napagent        C:\WINDOWS\System32\qagentrt.dll
18:06:08.0296 0544  napagent - ok
18:06:08.0406 0544  [ 89844C3D3A7AAE8999E229C88E452633 ] NBService       C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
18:06:08.0484 0544  NBService - ok
18:06:08.0546 0544  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
18:06:08.0546 0544  NDIS - ok
18:06:08.0593 0544  [ 1AB3D00C991AB086E69DB84B6C0ED78F ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:06:08.0609 0544  NdisTapi - ok
18:06:08.0687 0544  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:06:08.0687 0544  Ndisuio - ok
18:06:08.0687 0544  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:06:08.0703 0544  NdisWan - ok
18:06:08.0734 0544  [ 6215023940CFD3702B46ABC304E1D45A ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
18:06:08.0734 0544  NDProxy - ok
18:06:08.0750 0544  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
18:06:08.0750 0544  NetBIOS - ok
18:06:08.0765 0544  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
18:06:08.0781 0544  NetBT - ok
18:06:08.0796 0544  [ B857BA82860D7FF85AE29B095645563B ] NetDDE          C:\WINDOWS\system32\netdde.exe
18:06:08.0812 0544  NetDDE - ok
18:06:08.0812 0544  [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
18:06:08.0812 0544  NetDDEdsdm - ok
18:06:08.0859 0544  [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon        C:\WINDOWS\system32\lsass.exe
18:06:08.0859 0544  Netlogon - ok
18:06:08.0890 0544  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman          C:\WINDOWS\System32\netman.dll
18:06:09.0031 0544  Netman - ok
18:06:09.0140 0544  [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394         C:\WINDOWS\system32\DRIVERS\nic1394.sys
18:06:09.0156 0544  NIC1394 - ok
18:06:09.0187 0544  [ B4138E99236F0F57D4CF49BAE98A0746 ] Nla             C:\WINDOWS\System32\mswsock.dll
18:06:09.0203 0544  Nla - ok
18:06:09.0796 0544  [ 8DD0CDB0C700992D10169D8769EF5F43 ] NMIndexingService C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
18:06:10.0000 0544  NMIndexingService - ok
18:06:10.0015 0544  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
18:06:10.0031 0544  Npfs - ok
18:06:10.0125 0544  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
18:06:10.0187 0544  Ntfs - ok
18:06:10.0265 0544  [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
18:06:10.0265 0544  NtLmSsp - ok
18:06:10.0750 0544  [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
18:06:10.0812 0544  NtmsSvc - ok
18:06:10.0828 0544  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys
18:06:10.0890 0544  Null - ok
18:06:11.0468 0544  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:06:11.0531 0544  NwlnkFlt - ok
18:06:11.0546 0544  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:06:11.0593 0544  NwlnkFwd - ok
18:06:11.0750 0544  [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394        C:\WINDOWS\system32\DRIVERS\ohci1394.sys
18:06:11.0765 0544  ohci1394 - ok
18:06:11.0921 0544  [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:06:12.0000 0544  ose - ok
18:06:12.0046 0544  [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys
18:06:12.0062 0544  Parport - ok
18:06:12.0109 0544  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
18:06:12.0109 0544  PartMgr - ok
18:06:12.0171 0544  [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
18:06:12.0171 0544  ParVdm - ok
18:06:12.0203 0544  [ A219903CCF74233761D92BEF471A07B1 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
18:06:12.0203 0544  PCI - ok
18:06:12.0218 0544  PCIDump - ok
18:06:12.0250 0544  [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
18:06:12.0250 0544  PCIIde - ok
18:06:12.0312 0544  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
18:06:12.0343 0544  Pcmcia - ok
18:06:12.0359 0544  PDCOMP - ok
18:06:12.0359 0544  PDFRAME - ok
18:06:12.0375 0544  PDRELI - ok
18:06:12.0390 0544  PDRFRAME - ok
18:06:12.0406 0544  perc2 - ok
18:06:12.0484 0544  perc2hib - ok
18:06:12.0953 0544  [ 0E776ED5F7CC9F94299E70461B7B8185 ] PlugPlay        C:\WINDOWS\system32\services.exe
18:06:12.0953 0544  PlugPlay - ok
18:06:13.0093 0544  [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
18:06:13.0093 0544  PolicyAgent - ok
18:06:13.0234 0544  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:06:13.0234 0544  PptpMiniport - ok
18:06:13.0390 0544  [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
18:06:13.0390 0544  ProtectedStorage - ok
18:06:13.0406 0544  [ 09298EC810B07E5D582CB3A3F9255424 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
18:06:13.0406 0544  PSched - ok
18:06:13.0421 0544  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:06:13.0421 0544  Ptilink - ok
18:06:13.0500 0544  [ 617ACCADA2E0A0F43EC6030BBAC49513 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
18:06:13.0546 0544  PxHelp20 - ok
18:06:13.0546 0544  ql1080 - ok
18:06:13.0562 0544  Ql10wnt - ok
18:06:13.0578 0544  ql12160 - ok
18:06:13.0593 0544  ql1240 - ok
18:06:13.0609 0544  ql1280 - ok
18:06:13.0640 0544  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:06:13.0640 0544  RasAcd - ok
18:06:13.0796 0544  [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
18:06:13.0828 0544  RasAuto - ok
18:06:13.0843 0544  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:06:13.0859 0544  Rasl2tp - ok
18:06:13.0921 0544  [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan          C:\WINDOWS\System32\rasmans.dll
18:06:13.0937 0544  RasMan - ok
18:06:13.0953 0544  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:06:13.0953 0544  RasPppoe - ok
18:06:13.0984 0544  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
18:06:14.0000 0544  Raspti - ok
18:06:14.0046 0544  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:06:14.0062 0544  Rdbss - ok
18:06:14.0078 0544  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:06:14.0078 0544  RDPCDD - ok
18:06:14.0109 0544  [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
18:06:14.0140 0544  rdpdr - ok
18:06:14.0187 0544  [ 6728E45B66F93C08F11DE2E316FC70DD ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
18:06:14.0203 0544  RDPWD - ok
18:06:14.0234 0544  [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
18:06:14.0250 0544  RDSessMgr - ok
18:06:14.0281 0544  [ F828DD7E1419B6653894A8F97A0094C5 ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
18:06:14.0281 0544  redbook - ok
18:06:14.0343 0544  [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
18:06:14.0359 0544  RemoteAccess - ok
18:06:14.0406 0544  [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
18:06:14.0421 0544  RemoteRegistry - ok
18:06:14.0515 0544  [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator      C:\WINDOWS\system32\locator.exe
18:06:14.0531 0544  RpcLocator - ok
18:06:14.0562 0544  [ 2589FE6015A316C0F5D5112B4DA7B509 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
18:06:14.0562 0544  RpcSs - ok
18:06:14.0609 0544  [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP            C:\WINDOWS\system32\rsvp.exe
18:06:14.0609 0544  RSVP - ok
18:06:14.0625 0544  [ D507C1400284176573224903819FFDA3 ] rtl8139         C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
18:06:14.0656 0544  rtl8139 - ok
18:06:14.0671 0544  [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs           C:\WINDOWS\system32\lsass.exe
18:06:14.0687 0544  SamSs - ok
18:06:14.0718 0544  [ A0540477B5283DD06642A184756C63FF ] SAVAdminService C:\Program Files\Sophos\Sophos Anti-Virus\SAVAdminService.exe
18:06:14.0750 0544  SAVAdminService - ok
18:06:14.0765 0544  [ 8BCF84AEC77AEB4567116502D105162F ] SAVOnAccessControl C:\WINDOWS\system32\DRIVERS\savonaccesscontrol.sys
18:06:14.0781 0544  SAVOnAccessControl - ok
18:06:14.0781 0544  [ 8DFE54F1965C3B49C599CBB186C1EE8F ] SAVOnAccessFilter C:\WINDOWS\system32\DRIVERS\savonaccessfilter.sys
18:06:14.0796 0544  SAVOnAccessFilter - ok
18:06:14.0828 0544  [ B8A272D4E91EFB366E16BEA0FA42D7EE ] SAVService      C:\Program Files\Sophos\Sophos Anti-Virus\SavService.exe
18:06:14.0890 0544  SAVService - ok
18:06:14.0906 0544  [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
18:06:14.0921 0544  SCardSvr - ok
18:06:15.0031 0544  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule        C:\WINDOWS\system32\schedsvc.dll
18:06:15.0031 0544  Schedule - ok
18:06:15.0328 0544  [ 4F21774E1259A546B992D9EAACDFD778 ] sdcfilter       C:\WINDOWS\system32\DRIVERS\sdcfilter.sys
18:06:15.0421 0544  sdcfilter - ok
18:06:15.0453 0544  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:06:15.0703 0544  Secdrv - ok
18:06:16.0015 0544  [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon        C:\WINDOWS\System32\seclogon.dll
18:06:16.0015 0544  seclogon - ok
18:06:16.0171 0544  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS            C:\WINDOWS\system32\sens.dll
18:06:16.0203 0544  SENS - ok
18:06:16.0281 0544  [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial          C:\WINDOWS\system32\drivers\Serial.sys
18:06:16.0375 0544  Serial - ok
18:06:16.0406 0544  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
18:06:16.0421 0544  Sfloppy - ok
18:06:16.0875 0544  [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
18:06:16.0953 0544  SharedAccess - ok
18:06:16.0984 0544  [ 1926899BF9FFE2602B63074971700412 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
18:06:16.0984 0544  ShellHWDetection - ok
18:06:16.0984 0544  Simbad - ok
18:06:17.0109 0544  [ E407A8EEA2FD4BF560C05C0EBF1793B3 ] SKMScan         C:\WINDOWS\system32\DRIVERS\skmscan.sys
18:06:17.0140 0544  SKMScan - ok
18:06:17.0484 0544  [ 8A12AB5DE877B8F97D5EE70E16A5C9B2 ] Sophos AutoUpdate Service C:\Program Files\Sophos\AutoUpdate\ALsvc.exe
18:06:17.0609 0544  Sophos AutoUpdate Service - ok
18:06:18.0062 0544  [ 3BDF94E0827D13E44249A646F6C0EB7C ] SophosBootDriver C:\WINDOWS\system32\DRIVERS\SophosBootDriver.sys
18:06:18.0078 0544  SophosBootDriver - ok
18:06:18.0093 0544  Sparrow - ok
18:06:18.0218 0544  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
18:06:18.0281 0544  splitter - ok
18:06:18.0296 0544  [ D8E14A61ACC1D4A6CD0D38AEBAC7FA3B ] Spooler         C:\WINDOWS\system32\spoolsv.exe
18:06:18.0296 0544  Spooler - ok
18:06:18.0359 0544  [ 68103A2B441BBF3908EBB587F0704D6C ] sptd            C:\WINDOWS\System32\Drivers\sptd.sys
18:06:19.0156 0544  sptd - ok
18:06:19.0265 0544  [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
18:06:19.0265 0544  sr - ok
18:06:19.0343 0544  [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice       C:\WINDOWS\system32\srsvc.dll
18:06:19.0406 0544  srservice - ok
18:06:19.0921 0544  [ 5252605079810904E31C332E241CD59B ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
18:06:19.0921 0544  Srv - ok
18:06:20.0031 0544  [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
18:06:20.0125 0544  SSDPSRV - ok
18:06:20.0343 0544  [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
18:06:20.0390 0544  stisvc - ok
18:06:20.0421 0544  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
18:06:20.0421 0544  swenum - ok
18:06:21.0468 0544  [ ED5C98B3642744BA819002B983E9D2DF ] swi_service     C:\Program Files\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe
18:06:22.0765 0544  swi_service - ok
18:06:23.0109 0544  [ 47F4BC0CFEC373D1B40E8F7E6E78741F ] swi_update      C:\Documents and Settings\All Users\Application Data\Sophos\Web Intelligence\swi_update.exe
18:06:23.0250 0544  swi_update - ok
18:06:23.0296 0544  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
18:06:23.0296 0544  swmidi - ok
18:06:23.0312 0544  SwPrv - ok
18:06:23.0343 0544  symc810 - ok
18:06:23.0343 0544  symc8xx - ok
18:06:23.0359 0544  sym_hi - ok
18:06:23.0375 0544  sym_u3 - ok
18:06:23.0437 0544  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
18:06:23.0453 0544  sysaudio - ok
18:06:23.0484 0544  [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
18:06:23.0484 0544  SysmonLog - ok
18:06:23.0500 0544  [ FD90A16CEB10D4FDAA00AAF39B8FF58F ] taphss          C:\WINDOWS\system32\DRIVERS\taphss.sys
18:06:23.0546 0544  taphss - ok
18:06:23.0640 0544  [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
18:06:23.0656 0544  TapiSrv - ok
18:06:24.0093 0544  [ 93EA8D04EC73A85DB02EB8805988F733 ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:06:24.0093 0544  Tcpip - ok
18:06:24.0156 0544  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
18:06:24.0187 0544  TDPIPE - ok
18:06:24.0218 0544  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
18:06:24.0218 0544  TDTCP - ok
18:06:24.0234 0544  [ 88155247177638048422893737429D9E ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
18:06:24.0234 0544  TermDD - ok
18:06:24.0328 0544  [ FF3477C03BE7201C294C35F684B3479F ] TermService     C:\WINDOWS\System32\termsrv.dll
18:06:24.0375 0544  TermService - ok
18:06:24.0406 0544  [ 1926899BF9FFE2602B63074971700412 ] Themes          C:\WINDOWS\System32\shsvcs.dll
18:06:24.0406 0544  Themes - ok
18:06:24.0453 0544  [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
18:06:24.0468 0544  TlntSvr - ok
18:06:24.0484 0544  TosIde - ok
18:06:24.0531 0544  [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks          C:\WINDOWS\system32\trkwks.dll
18:06:24.0531 0544  TrkWks - ok
18:06:26.0468 0544  [ 966CCC57DBF0859B8EDF12A50259F142 ] TuneUp.Defrag   C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
18:06:26.0562 0544  TuneUp.Defrag - ok
18:06:26.0781 0544  [ 1336FEFBAD50CE9631414FACED46E939 ] TuneUp.UtilitiesSvc C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
18:06:26.0906 0544  TuneUp.UtilitiesSvc - ok
18:06:27.0046 0544  [ F2107C9D85EC0DF116939CCCE06AE697 ] TuneUpUtilitiesDrv C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys
18:06:27.0250 0544  TuneUpUtilitiesDrv - ok
18:06:27.0406 0544  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
18:06:27.0421 0544  Udfs - ok
18:06:27.0593 0544  ultra - ok
18:06:27.0781 0544  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
18:06:27.0796 0544  Update - ok
18:06:28.0062 0544  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost        C:\WINDOWS\System32\upnphost.dll
18:06:28.0062 0544  upnphost - ok
18:06:28.0234 0544  [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS             C:\WINDOWS\System32\ups.exe
18:06:28.0234 0544  UPS - ok
18:06:28.0296 0544  [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:06:28.0312 0544  usbccgp - ok
18:06:28.0343 0544  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:06:28.0343 0544  usbehci - ok
18:06:28.0359 0544  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:06:28.0359 0544  usbhub - ok
18:06:28.0406 0544  [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci         C:\WINDOWS\system32\DRIVERS\usbohci.sys
18:06:28.0437 0544  usbohci - ok
18:06:28.0562 0544  [ A717C8721046828520C9EDF31288FC00 ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
18:06:28.0609 0544  usbprint - ok
18:06:28.0656 0544  [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
18:06:28.0687 0544  usbscan - ok
18:06:28.0718 0544  [ A32426D9B14A089EAA1D922E0C5801A9 ] usbstor         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:06:28.0718 0544  usbstor - ok
18:06:28.0765 0544  [ 7C1BC505820498CC88BDCB4C696C9012 ] UxTuneUp        C:\WINDOWS\System32\uxtuneup.dll
18:06:28.0968 0544  UxTuneUp - ok
18:06:29.0015 0544  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
18:06:29.0031 0544  VgaSave - ok
18:06:29.0046 0544  ViaIde - ok
18:06:29.0078 0544  [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
18:06:29.0109 0544  VolSnap - ok
18:06:29.0125 0544  [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS             C:\WINDOWS\System32\vssvc.exe
18:06:29.0140 0544  VSS - ok
18:06:29.0281 0544  [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time         C:\WINDOWS\system32\w32time.dll
18:06:29.0296 0544  W32Time - ok
18:06:29.0437 0544  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:06:29.0437 0544  Wanarp - ok
18:06:29.0437 0544  WDICA - ok
18:06:29.0515 0544  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
18:06:29.0515 0544  wdmaud - ok
18:06:29.0562 0544  [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient       C:\WINDOWS\System32\webclnt.dll
18:06:29.0562 0544  WebClient - ok
18:06:29.0640 0544  [ CE545A84BF3411E7516FA8DA51AD9D93 ] winachsf        C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
18:06:29.0718 0544  winachsf - ok
18:06:29.0828 0544  [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
18:06:29.0828 0544  winmgmt - ok
18:06:29.0890 0544  [ F4DB1F1417FF329E8FF217D5C474D5D7 ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
18:06:29.0890 0544  WmdmPmSN - ok
18:06:29.0921 0544  [ BAB489A5FE26F2D0C910CF7AF7E4CF92 ] Wmi             C:\WINDOWS\System32\advapi32.dll
18:06:29.0953 0544  Wmi - ok
18:06:29.0968 0544  [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
18:06:30.0000 0544  WmiApSrv - ok
18:06:30.0140 0544  [ BB47DB10551657628268BEE11D025777 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\WMPNetwk.exe
18:06:30.0343 0544  WMPNetworkSvc - ok
18:06:30.0375 0544  [ D4162C1D8FE1DE8F1E6EF9BA4323D520 ] WpdUsb          C:\WINDOWS\system32\DRIVERS\wpdusb.sys
18:06:30.0468 0544  WpdUsb - ok
18:06:30.0515 0544  [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
18:06:30.0531 0544  wscsvc - ok
18:06:30.0562 0544  [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
18:06:30.0562 0544  wuauserv - ok
18:06:30.0625 0544  [ 443F0A35CB3BE5D176053DA39157A898 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
18:06:30.0703 0544  WudfPf - ok
18:06:30.0812 0544  [ E12D4C486D7EB4E0961C27558DC25AF7 ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
18:06:30.0843 0544  WudfRd - ok
18:06:30.0875 0544  [ 8A92B1F02571B634F50DB35A934989F6 ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
18:06:30.0906 0544  WudfSvc - ok
18:06:30.0937 0544  [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
18:06:30.0953 0544  WZCSVC - ok
18:06:31.0000 0544  [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
18:06:31.0031 0544  xmlprov - ok
18:06:31.0093 0544  [ 74EC37B9EAF9FCA015B933A526825C7A ] {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} C:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl
18:06:31.0609 0544  {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} - ok
18:06:31.0625 0544  ================ Scan global ===============================
18:06:31.0640 0544  [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
18:06:31.0687 0544  [ 1618F36D4F7F6CCCEB3EE44BA95BE85C ] C:\WINDOWS\system32\winsrv.dll
18:06:31.0703 0544  [ 1618F36D4F7F6CCCEB3EE44BA95BE85C ] C:\WINDOWS\system32\winsrv.dll
18:06:31.0718 0544  [ 0E776ED5F7CC9F94299E70461B7B8185 ] C:\WINDOWS\system32\services.exe
18:06:31.0718 0544  [Global] - ok
18:06:31.0718 0544  ================ Scan MBR ==================================
18:06:31.0734 0544  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
18:06:31.0953 0544  \Device\Harddisk0\DR0 - ok
18:06:31.0953 0544  ================ Scan VBR ==================================
18:06:31.0953 0544  [ 1B9676955073A0DFC7DBF98D5BA05A97 ] \Device\Harddisk0\DR0\Partition1
18:06:31.0953 0544  \Device\Harddisk0\DR0\Partition1 - ok
18:06:31.0968 0544  ============================================================
18:06:31.0968 0544  Scan finished
18:06:31.0968 0544  ============================================================
18:06:31.0984 5856  Detected object count: 0
18:06:31.0984 5856  Actual detected object count: 0
18:12:00.0843 3704  ============================================================
18:12:00.0843 3704  Scan started
18:12:00.0843 3704  Mode: Manual; SigCheck; TDLFS;
18:12:00.0843 3704  ============================================================
18:12:01.0625 3704  ================ Scan system memory ========================
18:12:03.0390 3704  System memory - ok
18:12:03.0406 3704  ================ Scan services =============================
18:12:03.0640 3704  Abiosdsk - ok
18:12:03.0656 3704  abp480n5 - ok
18:12:03.0703 3704  [ 8FD99680A539792A30E97944FDAECF17 ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:12:04.0203 3704  ACPI - ok
18:12:04.0281 3704  [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
18:12:04.0468 3704  ACPIEC - ok
18:12:04.0484 3704  adpu160m - ok
18:12:04.0546 3704  [ 8BED39E3C35D6A489438B8141717A557 ] aec             C:\WINDOWS\system32\drivers\aec.sys
18:12:04.0734 3704  aec - ok
18:12:04.0781 3704  [ 322D0E36693D6E24A2398BEE62A268CD ] AFD             C:\WINDOWS\System32\drivers\afd.sys
18:12:04.0937 3704  AFD - ok
18:12:04.0953 3704  Aha154x - ok
18:12:04.0968 3704  aic78u2 - ok
18:12:04.0984 3704  aic78xx - ok
18:12:05.0031 3704  [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
18:12:05.0203 3704  Alerter - ok
18:12:05.0218 3704  [ 8C515081584A38AA007909CD02020B3D ] ALG             C:\WINDOWS\System32\alg.exe
18:12:05.0421 3704  ALG - ok
18:12:05.0437 3704  AliIde - ok
18:12:05.0453 3704  amsint - ok
18:12:05.0531 3704  [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
18:12:05.0703 3704  AppMgmt - ok
18:12:05.0718 3704  [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394         C:\WINDOWS\system32\DRIVERS\arp1394.sys
18:12:05.0906 3704  Arp1394 - ok
18:12:05.0921 3704  asc - ok
18:12:05.0921 3704  asc3350p - ok
18:12:05.0953 3704  asc3550 - ok
18:12:06.0031 3704  [ D33C507942299753868204CC7642FA27 ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
18:12:06.0093 3704  aspnet_state - ok
18:12:06.0125 3704  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:12:06.0312 3704  AsyncMac - ok
18:12:06.0343 3704  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
18:12:06.0515 3704  atapi - ok
18:12:06.0531 3704  Atdisk - ok
18:12:06.0578 3704  [ 5784A06FDC2AC7954225A1A79E1A8F00 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
18:12:06.0953 3704  Ati HotKey Poller - ok
18:12:06.0984 3704  [ 3DB26BB04C5F787F50258D703645E18F ] ATI Smart       C:\WINDOWS\system32\ati2sgag.exe
18:12:07.0125 3704  ATI Smart ( UnsignedFile.Multi.Generic ) - warning
18:12:07.0125 3704  ATI Smart - detected UnsignedFile.Multi.Generic (1)
18:12:07.0171 3704  [ DD222CE49E79F15D2312A5E1F42E716E ] ati2mtag        C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
18:12:07.0281 3704  ati2mtag - ok
18:12:07.0328 3704  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:12:07.0578 3704  Atmarpc - ok
18:12:07.0625 3704  [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
18:12:07.0828 3704  AudioSrv - ok
18:12:07.0875 3704  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
18:12:08.0156 3704  audstub - ok
18:12:08.0171 3704  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
18:12:08.0375 3704  Beep - ok
18:12:08.0453 3704  [ 574738F61FCA2935F5265DC4E5691314 ] BITS            C:\WINDOWS\system32\qmgr.dll
18:12:08.0656 3704  BITS - ok
18:12:08.0718 3704  [ A06CE3399D16DB864F55FAEB1F1927A9 ] Browser         C:\WINDOWS\System32\browser.dll
18:12:08.0906 3704  Browser - ok
18:12:08.0937 3704  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
18:12:09.0187 3704  cbidf2k - ok
18:12:09.0187 3704  cd20xrnt - ok
18:12:09.0203 3704  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
18:12:09.0437 3704  Cdaudio - ok
18:12:09.0453 3704  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
18:12:09.0625 3704  Cdfs - ok
18:12:09.0640 3704  [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:12:09.0828 3704  Cdrom - ok
18:12:09.0828 3704  Changer - ok
18:12:09.0875 3704  [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc           C:\WINDOWS\system32\cisvc.exe
18:12:10.0046 3704  CiSvc - ok
18:12:10.0062 3704  [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
18:12:10.0234 3704  ClipSrv - ok
18:12:10.0265 3704  [ 3C4D595E7F9B747325AEF28B4ADCAAE5 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:12:10.0328 3704  clr_optimization_v2.0.50727_32 - ok
18:12:10.0328 3704  CmdIde - ok
18:12:10.0343 3704  COMSysApp - ok
18:12:10.0375 3704  Cpqarray - ok
18:12:10.0437 3704  [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
18:12:10.0593 3704  CryptSvc - ok
18:12:10.0609 3704  dac2w2k - ok
18:12:10.0625 3704  dac960nt - ok
18:12:10.0671 3704  [ 2589FE6015A316C0F5D5112B4DA7B509 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
18:12:10.0843 3704  DcomLaunch - ok
18:12:10.0859 3704  [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
18:12:11.0031 3704  Dhcp - ok
18:12:11.0046 3704  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
18:12:11.0203 3704  Disk - ok
18:12:11.0218 3704  dmadmin - ok
18:12:11.0312 3704  [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
18:12:11.0531 3704  dmboot - ok
18:12:11.0562 3704  [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
18:12:11.0734 3704  dmio - ok
18:12:11.0750 3704  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
18:12:11.0921 3704  dmload - ok
18:12:11.0984 3704  [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver        C:\WINDOWS\System32\dmserver.dll
18:12:12.0125 3704  dmserver - ok
18:12:12.0156 3704  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
18:12:12.0312 3704  DMusic - ok
18:12:12.0343 3704  [ 474B4DC3983173E4B4C9740B0DAC98A6 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
18:12:12.0500 3704  Dnscache - ok
18:12:12.0546 3704  [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
18:12:12.0750 3704  Dot3svc - ok
18:12:12.0750 3704  dpti2o - ok
18:12:12.0796 3704  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
18:12:12.0937 3704  drmkaud - ok
18:12:12.0984 3704  [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost         C:\WINDOWS\System32\eapsvc.dll
18:12:13.0140 3704  EapHost - ok
18:12:13.0187 3704  [ 95D859F8B4DA8E1871FF4381FF974AAD ] ehRecvr         C:\WINDOWS\eHome\ehRecvr.exe
18:12:13.0265 3704  ehRecvr - ok
18:12:13.0296 3704  [ A53243709439AC2A4C216B817F8D7411 ] ehSched         C:\WINDOWS\eHome\ehSched.exe
18:12:13.0359 3704  ehSched - ok
18:12:13.0390 3704  [ BC93B4A066477954555966D77FEC9ECB ] ERSvc           C:\WINDOWS\System32\ersvc.dll
18:12:13.0546 3704  ERSvc - ok
18:12:13.0578 3704  [ 0E776ED5F7CC9F94299E70461B7B8185 ] Eventlog        C:\WINDOWS\system32\services.exe
18:12:13.0781 3704  Eventlog - ok
18:12:13.0828 3704  [ 19A799805B24990867B00C120D300C3A ] EventSystem     C:\WINDOWS\system32\es.dll
18:12:14.0000 3704  EventSystem - ok
18:12:14.0046 3704  [ 38D332A6D56AF32635675F132548343E ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
18:12:14.0203 3704  Fastfat - ok
18:12:14.0234 3704  [ 1926899BF9FFE2602B63074971700412 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
18:12:14.0406 3704  FastUserSwitchingCompatibility - ok
18:12:14.0421 3704  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys
18:12:14.0578 3704  Fdc - ok
18:12:14.0625 3704  [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
18:12:14.0796 3704  Fips - ok
18:12:14.0828 3704  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
18:12:15.0000 3704  Flpydisk - ok
18:12:15.0031 3704  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
18:12:15.0187 3704  FltMgr - ok
18:12:15.0187 3704  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:12:15.0375 3704  Fs_Rec - ok
18:12:15.0390 3704  [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:12:15.0593 3704  Ftdisk - ok
18:12:15.0609 3704  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:12:15.0765 3704  Gpc - ok
18:12:15.0890 3704  [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
18:12:16.0046 3704  HDAudBus - ok
18:12:16.0093 3704  [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
18:12:16.0250 3704  helpsvc - ok
18:12:16.0296 3704  [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ         C:\WINDOWS\System32\hidserv.dll
18:12:16.0453 3704  HidServ - ok
18:12:16.0468 3704  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
18:12:16.0609 3704  HidUsb - ok
18:12:16.0656 3704  [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
18:12:16.0843 3704  hkmsvc - ok
18:12:16.0859 3704  hpn - ok
18:12:16.0890 3704  [ 128EF741B2293C36810561092B566B1C ] HSFHWBS2        C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
18:12:16.0968 3704  HSFHWBS2 - ok
18:12:17.0015 3704  [ 9A0D0C461EF2B3D80CB7875B4B995E47 ] HSF_DP          C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
18:12:17.0125 3704  HSF_DP - ok
18:12:17.0218 3704  [ BEF7D9760E0B00973E0F7EFCE68875C1 ] hshld           C:\Program Files\Hotspot Shield\bin\openvpnas.exe
18:12:17.0375 3704  hshld - ok
18:12:17.0421 3704  [ 01947D3CBAFCFEF066E1EB45DADC182D ] HssSrv          C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
18:12:17.0500 3704  HssSrv - ok
18:12:17.0515 3704  [ 5527CF1FF457E819112EAC7DC0AA69CB ] HssTrayService  C:\Program Files\Hotspot Shield\bin\HssTrayService.EXE
18:12:17.0609 3704  HssTrayService - ok
18:12:17.0656 3704  [ F4C1B3C4847BBA031ACFDCE5A3F0CFCB ] HssWd           C:\Program Files\Hotspot Shield\bin\hsswd.exe
18:12:17.0718 3704  HssWd - ok
18:12:17.0812 3704  [ F6AACF5BCE2893E0C1754AFEB672E5C9 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
18:12:17.0953 3704  HTTP - ok
18:12:18.0000 3704  [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
18:12:18.0171 3704  HTTPFilter - ok
18:12:18.0171 3704  i2omgmt - ok
18:12:18.0203 3704  i2omp - ok
18:12:18.0218 3704  [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:12:18.0375 3704  i8042prt - ok
18:12:18.0390 3704  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
18:12:18.0562 3704  Imapi - ok
18:12:18.0593 3704  [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService    C:\WINDOWS\system32\imapi.exe
18:12:18.0750 3704  ImapiService - ok
18:12:18.0765 3704  ini910u - ok
18:12:18.0921 3704  [ A30685283F90AE02F1CD50972C6065E3 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
18:12:19.0515 3704  IntcAzAudAddService - ok
18:12:19.0531 3704  IntelIde - ok
18:12:19.0546 3704  [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
18:12:19.0703 3704  intelppm - ok
18:12:19.0765 3704  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
18:12:19.0953 3704  Ip6Fw - ok
18:12:20.0015 3704  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:12:20.0218 3704  IpFilterDriver - ok
18:12:20.0250 3704  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:12:20.0406 3704  IpInIp - ok
18:12:20.0421 3704  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:12:20.0593 3704  IpNat - ok
18:12:20.0609 3704  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:12:20.0781 3704  IPSec - ok
18:12:20.0812 3704  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
18:12:21.0000 3704  IRENUM - ok
18:12:21.0031 3704  [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:12:21.0171 3704  isapnp - ok
18:12:21.0218 3704  [ B591E761161D1EF547D76EF236EAA6A5 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
18:12:21.0343 3704  JavaQuickStarterService - ok
18:12:21.0359 3704  [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:12:21.0531 3704  Kbdclass - ok
18:12:21.0531 3704  [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
18:12:21.0718 3704  kbdhid - ok
18:12:21.0812 3704  [ 692BCF44383D056AED41B045A323D378 ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
18:12:21.0984 3704  kmixer - ok
18:12:22.0046 3704  [ B467646C54CC746128904E1654C750C1 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
18:12:22.0093 3704  KSecDD - ok
18:12:22.0140 3704  [ F385F4B02C535BFFE1D70CAB80838123 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
18:12:22.0312 3704  lanmanserver - ok
18:12:22.0343 3704  [ 1B67B632786FEF1C1BBAEF46C2F3F2E6 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
18:12:22.0484 3704  lanmanworkstation - ok
18:12:22.0500 3704  lbrtfdc - ok
18:12:22.0546 3704  [ A7DB739AE99A796D91580147E919CC59 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
18:12:22.0687 3704  LmHosts - ok
18:12:22.0703 3704  [ DF0A511F38F16016BF658FCA0090CB87 ] McrdSvc         C:\WINDOWS\ehome\mcrdsvc.exe
18:12:22.0781 3704  McrdSvc - ok
18:12:22.0843 3704  [ 7CF1B716372B89568AE4C0FE769F5869 ] MDM             C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
18:12:23.0046 3704  MDM ( UnsignedFile.Multi.Generic ) - warning
18:12:23.0046 3704  MDM - detected UnsignedFile.Multi.Generic (1)
18:12:23.0062 3704  [ EEAEA6514BA7C9D273B5E87C4E1AAB30 ] mdmxsdk         C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
18:12:23.0109 3704  mdmxsdk - ok
18:12:23.0156 3704  [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
18:12:23.0312 3704  Messenger - ok
18:12:23.0343 3704  [ B7521F69C0A9B29D356157229376FB21 ] MHN             C:\WINDOWS\System32\mhn.dll
18:12:23.0390 3704  MHN ( UnsignedFile.Multi.Generic ) - warning
18:12:23.0390 3704  MHN - detected UnsignedFile.Multi.Generic (1)
18:12:23.0421 3704  [ 7F2F1D2815A6449D346FCCCBC569FBD6 ] MHNDRV          C:\WINDOWS\system32\DRIVERS\mhndrv.sys
18:12:23.0453 3704  MHNDRV ( UnsignedFile.Multi.Generic ) - warning
18:12:23.0453 3704  MHNDRV - detected UnsignedFile.Multi.Generic (1)
18:12:23.0484 3704  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
18:12:23.0671 3704  mnmdd - ok
18:12:23.0703 3704  [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
18:12:23.0859 3704  mnmsrvc - ok
18:12:23.0875 3704  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
18:12:24.0031 3704  Modem - ok
18:12:24.0078 3704  [ 1992E0D143B09653AB0F9C5E04B0FD65 ] MODEMCSA        C:\WINDOWS\system32\drivers\MODEMCSA.sys
18:12:24.0281 3704  MODEMCSA - ok
18:12:24.0296 3704  [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:12:24.0453 3704  Mouclass - ok
18:12:24.0468 3704  [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
18:12:24.0671 3704  mouhid - ok
18:12:24.0687 3704  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
18:12:24.0843 3704  MountMgr - ok
18:12:24.0875 3704  [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
18:12:24.0953 3704  MozillaMaintenance - ok
18:12:24.0968 3704  mraid35x - ok
18:12:25.0046 3704  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:12:25.0218 3704  MRxDAV - ok
18:12:25.0234 3704  [ 68755F0FF16070178B54674FE5B847B0 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:12:25.0406 3704  MRxSmb - ok
18:12:25.0406 3704  [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
18:12:25.0562 3704  MSDTC - ok
18:12:25.0593 3704  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
18:12:25.0750 3704  Msfs - ok
18:12:25.0765 3704  MSIServer - ok
18:12:25.0812 3704  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:12:25.0968 3704  MSKSSRV - ok
18:12:26.0000 3704  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:12:26.0171 3704  MSPCLOCK - ok
18:12:26.0187 3704  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
18:12:26.0343 3704  MSPQM - ok
18:12:26.0359 3704  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:12:26.0500 3704  mssmbios - ok
18:12:26.0515 3704  [ 2F625D11385B1A94360BFC70AAEFDEE1 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
18:12:26.0734 3704  Mup - ok
18:12:26.0859 3704  [ 0102140028FAD045756796E1C685D695 ] napagent        C:\WINDOWS\System32\qagentrt.dll
18:12:27.0031 3704  napagent - ok
18:12:27.0078 3704  [ 89844C3D3A7AAE8999E229C88E452633 ] NBService       C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
18:12:27.0171 3704  NBService ( UnsignedFile.Multi.Generic ) - warning
18:12:27.0171 3704  NBService - detected UnsignedFile.Multi.Generic (1)
18:12:27.0203 3704  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
18:12:27.0359 3704  NDIS - ok
18:12:27.0390 3704  [ 1AB3D00C991AB086E69DB84B6C0ED78F ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:12:27.0546 3704  NdisTapi - ok
18:12:27.0562 3704  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:12:27.0718 3704  Ndisuio - ok
18:12:27.0734 3704  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:12:27.0906 3704  NdisWan - ok
18:12:27.0953 3704  [ 6215023940CFD3702B46ABC304E1D45A ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
18:12:28.0109 3704  NDProxy - ok
18:12:28.0125 3704  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
18:12:28.0265 3704  NetBIOS - ok
18:12:28.0296 3704  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
18:12:28.0437 3704  NetBT - ok
18:12:28.0468 3704  [ B857BA82860D7FF85AE29B095645563B ] NetDDE          C:\WINDOWS\system32\netdde.exe
18:12:28.0625 3704  NetDDE - ok
18:12:28.0640 3704  [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
18:12:28.0796 3704  NetDDEdsdm - ok
18:12:28.0828 3704  [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon        C:\WINDOWS\system32\lsass.exe
18:12:29.0000 3704  Netlogon - ok
18:12:29.0046 3704  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman          C:\WINDOWS\System32\netman.dll
18:12:29.0203 3704  Netman - ok
18:12:29.0218 3704  [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394         C:\WINDOWS\system32\DRIVERS\nic1394.sys
18:12:29.0390 3704  NIC1394 - ok
18:12:29.0406 3704  [ B4138E99236F0F57D4CF49BAE98A0746 ] Nla             C:\WINDOWS\System32\mswsock.dll
18:12:29.0562 3704  Nla - ok
18:12:29.0609 3704  [ 8DD0CDB0C700992D10169D8769EF5F43 ] NMIndexingService C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
18:12:29.0656 3704  NMIndexingService ( UnsignedFile.Multi.Generic ) - warning
18:12:29.0656 3704  NMIndexingService - detected UnsignedFile.Multi.Generic (1)
18:12:29.0671 3704  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
18:12:29.0828 3704  Npfs - ok
18:12:29.0875 3704  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
18:12:30.0093 3704  Ntfs - ok
18:12:30.0093 3704  [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
18:12:30.0265 3704  NtLmSsp - ok
18:12:30.0312 3704  [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
18:12:30.0468 3704  NtmsSvc - ok
18:12:30.0515 3704  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys
18:12:30.0703 3704  Null - ok
18:12:30.0734 3704  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:12:30.0937 3704  NwlnkFlt - ok
18:12:30.0953 3704  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:12:31.0140 3704  NwlnkFwd - ok
18:12:31.0171 3704  [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394        C:\WINDOWS\system32\DRIVERS\ohci1394.sys
18:12:31.0343 3704  ohci1394 - ok
18:12:31.0375 3704  [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:12:31.0437 3704  ose - ok
18:12:31.0468 3704  [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys
18:12:31.0593 3704  Parport - ok
18:12:31.0609 3704  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
18:12:31.0765 3704  PartMgr - ok
18:12:31.0828 3704  [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
18:12:32.0000 3704  ParVdm - ok
18:12:32.0015 3704  [ A219903CCF74233761D92BEF471A07B1 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
18:12:32.0156 3704  PCI - ok
18:12:32.0171 3704  PCIDump - ok
18:12:32.0187 3704  [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
18:12:32.0375 3704  PCIIde - ok
18:12:32.0421 3704  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
18:12:32.0578 3704  Pcmcia - ok
18:12:32.0593 3704  PDCOMP - ok
18:12:32.0609 3704  PDFRAME - ok
18:12:32.0625 3704  PDRELI - ok
18:12:32.0640 3704  PDRFRAME - ok
18:12:32.0656 3704  perc2 - ok
18:12:32.0671 3704  perc2hib - ok
18:12:32.0734 3704  [ 0E776ED5F7CC9F94299E70461B7B8185 ] PlugPlay        C:\WINDOWS\system32\services.exe
18:12:32.0937 3704  PlugPlay - ok
18:12:32.0968 3704  [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
18:12:33.0125 3704  PolicyAgent - ok
18:12:33.0140 3704  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:12:33.0281 3704  PptpMiniport - ok
18:12:33.0296 3704  [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
18:12:33.0468 3704  ProtectedStorage - ok
18:12:33.0484 3704  [ 09298EC810B07E5D582CB3A3F9255424 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
18:12:33.0640 3704  PSched - ok
18:12:33.0656 3704  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:12:33.0828 3704  Ptilink - ok
18:12:33.0859 3704  [ 617ACCADA2E0A0F43EC6030BBAC49513 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
18:12:33.0921 3704  PxHelp20 - ok
18:12:33.0937 3704  ql1080 - ok
18:12:33.0953 3704  Ql10wnt - ok
18:12:33.0968 3704  ql12160 - ok
18:12:33.0984 3704  ql1240 - ok
18:12:34.0000 3704  ql1280 - ok
18:12:34.0015 3704  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:12:34.0187 3704  RasAcd - ok
18:12:34.0250 3704  [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
18:12:34.0390 3704  RasAuto - ok
18:12:34.0421 3704  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:12:34.0562 3704  Rasl2tp - ok
18:12:34.0625 3704  [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan          C:\WINDOWS\System32\rasmans.dll
18:12:34.0765 3704  RasMan - ok
18:12:34.0781 3704  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:12:34.0937 3704  RasPppoe - ok
18:12:34.0937 3704  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
18:12:35.0125 3704  Raspti - ok
18:12:35.0140 3704  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:12:35.0281 3704  Rdbss - ok
18:12:35.0296 3704  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:12:35.0484 3704  RDPCDD - ok
18:12:35.0500 3704  [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
18:12:35.0656 3704  rdpdr - ok
18:12:35.0718 3704  [ 6728E45B66F93C08F11DE2E316FC70DD ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
18:12:35.0859 3704  RDPWD - ok
18:12:35.0875 3704  [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
18:12:36.0031 3704  RDSessMgr - ok
18:12:36.0062 3704  [ F828DD7E1419B6653894A8F97A0094C5 ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
18:12:36.0203 3704  redbook - ok
18:12:36.0234 3704  [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
18:12:36.0390 3704  RemoteAccess - ok
18:12:36.0437 3704  [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
18:12:36.0593 3704  RemoteRegistry - ok
18:12:36.0593 3704  [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator      C:\WINDOWS\system32\locator.exe
18:12:36.0750 3704  RpcLocator - ok
18:12:36.0781 3704  [ 2589FE6015A316C0F5D5112B4DA7B509 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
18:12:36.0937 3704  RpcSs - ok
18:12:36.0968 3704  [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP            C:\WINDOWS\system32\rsvp.exe
18:12:37.0156 3704  RSVP - ok
18:12:37.0187 3704  [ D507C1400284176573224903819FFDA3 ] rtl8139         C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
18:12:37.0281 3704  rtl8139 - ok
18:12:37.0312 3704  [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs           C:\WINDOWS\system32\lsass.exe
18:12:37.0484 3704  SamSs - ok
18:12:37.0531 3704  [ A0540477B5283DD06642A184756C63FF ] SAVAdminService C:\Program Files\Sophos\Sophos Anti-Virus\SAVAdminService.exe
18:12:37.0593 3704  SAVAdminService - ok
18:12:37.0609 3704  [ 8BCF84AEC77AEB4567116502D105162F ] SAVOnAccessControl C:\WINDOWS\system32\DRIVERS\savonaccesscontrol.sys
18:12:37.0656 3704  SAVOnAccessControl - ok
18:12:37.0671 3704  [ 8DFE54F1965C3B49C599CBB186C1EE8F ] SAVOnAccessFilter C:\WINDOWS\system32\DRIVERS\savonaccessfilter.sys
18:12:37.0703 3704  SAVOnAccessFilter - ok
18:12:37.0718 3704  [ B8A272D4E91EFB366E16BEA0FA42D7EE ] SAVService      C:\Program Files\Sophos\Sophos Anti-Virus\SavService.exe
18:12:37.0781 3704  SAVService - ok
18:12:37.0781 3704  [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
18:12:37.0937 3704  SCardSvr - ok
18:12:37.0968 3704  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule        C:\WINDOWS\system32\schedsvc.dll
18:12:38.0109 3704  Schedule - ok
18:12:38.0156 3704  [ 4F21774E1259A546B992D9EAACDFD778 ] sdcfilter       C:\WINDOWS\system32\DRIVERS\sdcfilter.sys
18:12:38.0250 3704  sdcfilter - ok
18:12:38.0281 3704  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:12:38.0468 3704  Secdrv - ok
18:12:38.0500 3704  [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon        C:\WINDOWS\System32\seclogon.dll
18:12:38.0640 3704  seclogon - ok
18:12:38.0671 3704  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS            C:\WINDOWS\system32\sens.dll
18:12:38.0828 3704  SENS - ok
18:12:38.0875 3704  [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial          C:\WINDOWS\system32\drivers\Serial.sys
18:12:39.0031 3704  Serial - ok
18:12:39.0046 3704  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
18:12:39.0203 3704  Sfloppy - ok
18:12:39.0281 3704  [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
18:12:39.0453 3704  SharedAccess - ok
18:12:39.0484 3704  [ 1926899BF9FFE2602B63074971700412 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
18:12:39.0625 3704  ShellHWDetection - ok
18:12:39.0640 3704  Simbad - ok
18:12:39.0671 3704  [ E407A8EEA2FD4BF560C05C0EBF1793B3 ] SKMScan         C:\WINDOWS\system32\DRIVERS\skmscan.sys
18:12:39.0703 3704  SKMScan - ok
18:12:39.0750 3704  [ 8A12AB5DE877B8F97D5EE70E16A5C9B2 ] Sophos AutoUpdate Service C:\Program Files\Sophos\AutoUpdate\ALsvc.exe
18:12:39.0796 3704  Sophos AutoUpdate Service - ok
18:12:39.0843 3704  [ 3BDF94E0827D13E44249A646F6C0EB7C ] SophosBootDriver C:\WINDOWS\system32\DRIVERS\SophosBootDriver.sys
18:12:39.0921 3704  SophosBootDriver - ok
18:12:39.0937 3704  Sparrow - ok
18:12:39.0968 3704  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
18:12:40.0109 3704  splitter - ok
18:12:40.0140 3704  [ D8E14A61ACC1D4A6CD0D38AEBAC7FA3B ] Spooler         C:\WINDOWS\system32\spoolsv.exe
18:12:40.0312 3704  Spooler - ok
18:12:40.0359 3704  [ 68103A2B441BBF3908EBB587F0704D6C ] sptd            C:\WINDOWS\System32\Drivers\sptd.sys
18:12:40.0953 3704  sptd - ok
18:12:40.0953 3704  [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
18:12:41.0109 3704  sr - ok
18:12:41.0187 3704  [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice       C:\WINDOWS\system32\srsvc.dll
18:12:41.0328 3704  srservice - ok
18:12:41.0343 3704  [ 5252605079810904E31C332E241CD59B ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
18:12:41.0546 3704  Srv - ok
18:12:41.0578 3704  [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
18:12:41.0734 3704  SSDPSRV - ok
18:12:41.0796 3704  [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
18:12:41.0953 3704  stisvc - ok
18:12:42.0000 3704  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
18:12:42.0125 3704  swenum - ok
18:12:42.0218 3704  [ ED5C98B3642744BA819002B983E9D2DF ] swi_service     C:\Program Files\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe
18:12:42.0828 3704  swi_service - ok
18:12:42.0906 3704  [ 47F4BC0CFEC373D1B40E8F7E6E78741F ] swi_update      C:\Documents and Settings\All Users\Application Data\Sophos\Web Intelligence\swi_update.exe
18:12:43.0031 3704  swi_update - ok
18:12:43.0062 3704  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
18:12:43.0234 3704  swmidi - ok
18:12:43.0234 3704  SwPrv - ok
18:12:43.0265 3704  symc810 - ok
18:12:43.0281 3704  symc8xx - ok
18:12:43.0296 3704  sym_hi - ok
18:12:43.0312 3704  sym_u3 - ok
18:12:43.0359 3704  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
18:12:43.0515 3704  sysaudio - ok
18:12:43.0515 3704  [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
18:12:43.0671 3704  SysmonLog - ok
18:12:43.0687 3704  [ FD90A16CEB10D4FDAA00AAF39B8FF58F ] taphss          C:\WINDOWS\system32\DRIVERS\taphss.sys
18:12:43.0734 3704  taphss - ok
18:12:43.0828 3704  [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
18:12:44.0000 3704  TapiSrv - ok
18:12:44.0031 3704  [ 93EA8D04EC73A85DB02EB8805988F733 ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:12:44.0187 3704  Tcpip - ok
18:12:44.0218 3704  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
18:12:44.0421 3704  TDPIPE - ok
18:12:44.0437 3704  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
18:12:44.0593 3704  TDTCP - ok
18:12:44.0609 3704  [ 88155247177638048422893737429D9E ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
18:12:44.0781 3704  TermDD - ok
18:12:44.0859 3704  [ FF3477C03BE7201C294C35F684B3479F ] TermService     C:\WINDOWS\System32\termsrv.dll
18:12:45.0031 3704  TermService - ok
18:12:45.0046 3704  [ 1926899BF9FFE2602B63074971700412 ] Themes          C:\WINDOWS\System32\shsvcs.dll
18:12:45.0203 3704  Themes - ok
18:12:45.0218 3704  [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
18:12:45.0421 3704  TlntSvr - ok
18:12:45.0437 3704  TosIde - ok
18:12:45.0500 3704  [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks          C:\WINDOWS\system32\trkwks.dll
18:12:45.0687 3704  TrkWks - ok
18:12:45.0843 3704  [ 966CCC57DBF0859B8EDF12A50259F142 ] TuneUp.Defrag   C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
18:12:45.0890 3704  TuneUp.Defrag - ok
18:12:45.0968 3704  [ 1336FEFBAD50CE9631414FACED46E939 ] TuneUp.UtilitiesSvc C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
18:12:46.0656 3704  TuneUp.UtilitiesSvc - ok
18:12:46.0671 3704  [ F2107C9D85EC0DF116939CCCE06AE697 ] TuneUpUtilitiesDrv C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys
18:12:47.0296 3704  TuneUpUtilitiesDrv - ok
18:12:47.0343 3704  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
18:12:47.0546 3704  Udfs - ok
18:12:47.0562 3704  ultra - ok
18:12:47.0609 3704  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
18:12:47.0812 3704  Update - ok
18:12:47.0890 3704  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost        C:\WINDOWS\System32\upnphost.dll
18:12:48.0062 3704  upnphost - ok
18:12:48.0078 3704  [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS             C:\WINDOWS\System32\ups.exe
18:12:48.0234 3704  UPS - ok
18:12:48.0265 3704  [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:12:48.0406 3704  usbccgp - ok
18:12:48.0421 3704  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:12:48.0593 3704  usbehci - ok
18:12:48.0625 3704  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:12:48.0765 3704  usbhub - ok
18:12:48.0796 3704  [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci         C:\WINDOWS\system32\DRIVERS\usbohci.sys
18:12:48.0968 3704  usbohci - ok
18:12:48.0984 3704  [ A717C8721046828520C9EDF31288FC00 ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
18:12:49.0187 3704  usbprint - ok
18:12:49.0218 3704  [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
18:12:49.0406 3704  usbscan - ok
18:12:49.0421 3704  [ A32426D9B14A089EAA1D922E0C5801A9 ] usbstor         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:12:49.0562 3704  usbstor - ok
18:12:49.0609 3704  [ 7C1BC505820498CC88BDCB4C696C9012 ] UxTuneUp        C:\WINDOWS\System32\uxtuneup.dll
18:12:49.0656 3704  UxTuneUp - ok
18:12:49.0671 3704  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
18:12:49.0812 3704  VgaSave - ok
18:12:49.0828 3704  ViaIde - ok
18:12:49.0859 3704  [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
18:12:50.0015 3704  VolSnap - ok
18:12:50.0031 3704  [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS             C:\WINDOWS\System32\vssvc.exe
18:12:50.0187 3704  VSS - ok
18:12:50.0203 3704  [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time         C:\WINDOWS\system32\w32time.dll
18:12:50.0359 3704  W32Time - ok
18:12:50.0390 3704  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:12:50.0515 3704  Wanarp - ok
18:12:50.0531 3704  WDICA - ok
18:12:50.0578 3704  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
18:12:50.0734 3704  wdmaud - ok
18:12:50.0781 3704  [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient       C:\WINDOWS\System32\webclnt.dll
18:12:50.0921 3704  WebClient - ok
18:12:50.0968 3704  [ CE545A84BF3411E7516FA8DA51AD9D93 ] winachsf        C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
18:12:51.0046 3704  winachsf - ok
18:12:51.0140 3704  [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
18:12:51.0328 3704  winmgmt - ok
18:12:51.0375 3704  [ F4DB1F1417FF329E8FF217D5C474D5D7 ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
18:12:51.0421 3704  WmdmPmSN - ok
18:12:51.0453 3704  [ BAB489A5FE26F2D0C910CF7AF7E4CF92 ] Wmi             C:\WINDOWS\System32\advapi32.dll
18:12:51.0625 3704  Wmi - ok
18:12:51.0656 3704  [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
18:12:51.0828 3704  WmiApSrv - ok
18:12:51.0921 3704  [ BB47DB10551657628268BEE11D025777 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\WMPNetwk.exe
18:12:52.0046 3704  WMPNetworkSvc - ok
18:12:52.0078 3704  [ D4162C1D8FE1DE8F1E6EF9BA4323D520 ] WpdUsb          C:\WINDOWS\system32\DRIVERS\wpdusb.sys
18:12:52.0140 3704  WpdUsb - ok
18:12:52.0187 3704  [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
18:12:52.0359 3704  wscsvc - ok
18:12:52.0390 3704  [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
18:12:52.0546 3704  wuauserv - ok
18:12:52.0562 3704  [ 443F0A35CB3BE5D176053DA39157A898 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
18:12:52.0656 3704  WudfPf - ok
18:12:52.0671 3704  [ E12D4C486D7EB4E0961C27558DC25AF7 ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
18:12:52.0734 3704  WudfRd - ok
18:12:52.0812 3704  [ 8A92B1F02571B634F50DB35A934989F6 ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
18:12:52.0875 3704  WudfSvc - ok
18:12:52.0921 3704  [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
18:12:53.0078 3704  WZCSVC - ok
18:12:53.0125 3704  [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
18:12:53.0281 3704  xmlprov - ok
18:12:53.0343 3704  [ 74EC37B9EAF9FCA015B933A526825C7A ] {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} C:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl
18:12:53.0859 3704  {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} - ok
18:12:53.0890 3704  ================ Scan global ===============================
18:12:53.0937 3704  [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
18:12:53.0953 3704  [ 1618F36D4F7F6CCCEB3EE44BA95BE85C ] C:\WINDOWS\system32\winsrv.dll
18:12:53.0984 3704  [ 1618F36D4F7F6CCCEB3EE44BA95BE85C ] C:\WINDOWS\system32\winsrv.dll
18:12:54.0000 3704  [ 0E776ED5F7CC9F94299E70461B7B8185 ] C:\WINDOWS\system32\services.exe
18:12:54.0000 3704  [Global] - ok
18:12:54.0015 3704  ================ Scan MBR ==================================
18:12:54.0015 3704  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
18:12:54.0312 3704  \Device\Harddisk0\DR0 - ok
18:12:54.0328 3704  ================ Scan VBR ==================================
18:12:54.0328 3704  [ 1B9676955073A0DFC7DBF98D5BA05A97 ] \Device\Harddisk0\DR0\Partition1
18:12:54.0328 3704  \Device\Harddisk0\DR0\Partition1 - ok
18:12:54.0343 3704  ============================================================
18:12:54.0343 3704  Scan finished
18:12:54.0343 3704  ============================================================
18:12:54.0468 4020  Detected object count: 6
18:12:54.0468 4020  Actual detected object count: 6
18:13:14.0500 4020  C:\WINDOWS\system32\ati2sgag.exe - copied to quarantine
18:13:14.0593 4020  ATI Smart ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
18:13:14.0687 4020  C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe - copied to quarantine
18:13:14.0859 4020  MDM ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
18:13:14.0906 4020  C:\WINDOWS\System32\mhn.dll - copied to quarantine
18:13:14.0953 4020  MHN ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
18:13:14.0984 4020  C:\WINDOWS\system32\DRIVERS\mhndrv.sys - copied to quarantine
18:13:15.0031 4020  MHNDRV ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
18:13:15.0140 4020  C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe - copied to quarantine
18:13:15.0187 4020  NBService ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
18:13:15.0218 4020  C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe - copied to quarantine
18:13:15.0265 4020  NMIndexingService ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
I am glad you got SP3 installed and updates running. Actually there is a link.

http://windows.microsoft.com/en-CA/windows/service-packs-download#sptabs=xp

and I downloaded it sometime ago (when I used XP) and still have the download file. The link for SP3 is at the top and separate from the SP 1 and SP 2 links.

With respect to threats, two things:

1. Install and run one good antivirus tool and scan for viruses. Then run online malwarebytes to see if you can remove more.

2. If you have a rootkit virus, they can be the very devil to eridicate and many people with rootkit malware wind up re-installing Windows.

Good luck. .... Thinkpads_User
Avatar of DonJem

ASKER

the link you provided is for IT professionals/delopers and requires you to already have sp3 (I beleive)

no specific suggestions on the logs?
It is kind of a moot point since you now have SP3, but I downloaded the file just now and it is bit-wise identical to the file I downloaded in 2008. Like I say, it does not really matter.

In terms of specific suggestions, you have valid files in quarantine, so you need a good virus tool to clean things up. Hence my two suggestions.  

.... Thinkpads_User