Jump to content


 

Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

404 not found nginx and blue screen crash

Started by jameswest , Feb 17 2012 10:58 AM

  • Please log in to reply
16 replies to this topic

#1 jameswest

jameswest

    New Member

  • Members
  • Pip
  • 10 posts

Posted 17 February 2012 - 10:58 AM

I seem to be having the same problem that "trixiebell" recently posted. First it was just the "404 not found nginx" message for certain websites. Then my laptop started doing the blue screen crash with IRQL_not_less_or_equal or STOP and a bunch of numbers messages. Should I try the same thing as was advised before? I've found that the computer doesn't stay functional long enough to even download anything, and I can't install anything in Safe Mode, so where does that leave me? Any help would be greatly appreciated.

 

  • BC Ads
  • BleepingComputer.com

#2 narenxp

narenxp

    Forum Addict

  • BC Advisor
  • PipPipPipPipPipPip
  • 16,365 posts
  • Gender:Male
  • Location:India

Posted 17 February 2012 - 11:08 AM

Hi

You can copy the tools from a clean PC to infected one if you have download issues

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Allow kaspersky to cure infections.Please post the LOG report(log file should be in your C drive)

Restart the PC

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

#3 jameswest

jameswest

    New Member

  • Members
  • Pip
  • 10 posts

Posted 17 February 2012 - 11:27 AM

Ok, I'll give it a shot when I can. Thank you for your prompt response!

Edited by jameswest, 17 February 2012 - 11:40 AM.

#4 narenxp

narenxp

    Forum Addict

  • BC Advisor
  • PipPipPipPipPipPip
  • 16,365 posts
  • Gender:Male
  • Location:India

Posted 17 February 2012 - 11:43 AM

:thumbup2:

#5 jameswest

jameswest

    New Member

  • Members
  • Pip
  • 10 posts

Posted 20 February 2012 - 07:27 PM

Quick question....will these programs have the same success if ran in Safe Mode? That may be the only way I can run them because my computer is shutting down really quickly after log on.

#6 narenxp

narenxp

    Forum Addict

  • BC Advisor
  • PipPipPipPipPipPip
  • 16,365 posts
  • Gender:Male
  • Location:India

Posted 20 February 2012 - 07:52 PM

Go ahead,run these tools in safemode

good luck

#7 jameswest

jameswest

    New Member

  • Members
  • Pip
  • 10 posts

Posted 20 February 2012 - 08:10 PM

Ok, so I ran the TDSSKiller in Safe Mode because that's the only way I could. It found a Rootkit of some sort and cured it. It also called out a tdlfs something or other but suggested to skip it, so I did. I'm not sure where to find the log report. All I can find is the TDSSKiller_Quarantine folder. Is that the stuff you want? The computer seems to be running better already. I'm running the aswMBR program in normal start up with no problems so far. Here is the log from aswMBR:

aswMBR version 0.9.9.1618 Copyright© 2011 AVAST Software
Run date: 2012-02-20 16:41:17
-----------------------------
16:41:17.128 OS Version: Windows 6.1.7601 Service Pack 1
16:41:17.128 Number of processors: 2 586 0x170A
16:41:17.128 ComputerName: VADER UserName:
16:41:24.631 Initialize success
16:42:35.241 AVAST engine defs: 12022002
16:42:48.174 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
16:42:48.174 Disk 0 Vendor: ST932042 SD14 Size: 305245MB BusType: 3
16:42:48.189 Disk 0 MBR read successfully
16:42:48.189 Disk 0 MBR scan
16:42:48.189 Disk 0 Windows 7 default MBR code
16:42:48.205 Disk 0 Partition 1 00 1C Hidd FAT32 LBA MSDOS5.0 12001 MB offset 63
16:42:48.205 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 152617 MB offset 24579450
16:42:48.236 Disk 0 Partition - 00 0F Extended LBA 140623 MB offset 337140090
16:42:48.283 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 140623 MB offset 337140153
16:42:48.299 Disk 0 scanning sectors +625137345
16:42:48.408 Disk 0 scanning C:\Windows\system32\drivers
16:43:02.363 Service scanning
16:43:28.786 Service MpKslb1092e67 c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{56D67568-5C67-4AC6-9426-39AD4C864F16}\MpKslb1092e67.sys **LOCKED** 32
16:43:29.442 Service MpNWMon C:\Windows\system32\DRIVERS\MpNWMon.sys **LOCKED** 32
16:43:55.372 Modules scanning
16:44:17.353 Disk 0 trace - called modules:
16:44:17.353
16:44:35.215 AVAST engine scan C:\Windows
16:45:01.630 AVAST engine scan C:\Windows\system32
16:50:21.055 AVAST engine scan C:\Windows\system32\drivers
16:50:48.870 AVAST engine scan C:\Users\kidwonder
16:53:25.979 File: C:\Users\kidwonder\AppData\Local\Temp\7C91.tmp **INFECTED** Win32:Alureon-AQP [Rtk]
17:03:56.371 AVAST engine scan C:\ProgramData
17:05:07.133 File: C:\ProgramData\Microsoft\Windows\DRM\64EB.tmp **INFECTED** Win32:Alureon-AQP [Rtk]
17:05:41.096 Scan finished successfully
17:07:59.477 Disk 0 MBR has been saved successfully to "C:\Users\kidwonder\Desktop\MBR.dat"
17:07:59.477 The log file has been saved successfully to "C:\Users\kidwonder\Desktop\aswMBR.txt"


Thanks again for any help!

#8 narenxp

narenxp

    Forum Addict

  • BC Advisor
  • PipPipPipPipPipPip
  • 16,365 posts
  • Gender:Male
  • Location:India

Posted 20 February 2012 - 08:17 PM

Log file should be in your C drive(text file)

Run TDSSkiller once again-SELECT-TDSSfilesystem-DELETE it

Restart the PC


Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Post the clean log


Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#9 jameswest

jameswest

    New Member

  • Members
  • Pip
  • 10 posts

Posted 20 February 2012 - 11:55 PM

Oh, duh, here are the two TDSSKiller logs:

16:37:01.0190 1236 TDSS rootkit removing tool 2.7.13.0 Feb 15 2012 19:33:14
16:37:01.0237 1236 ============================================================
16:37:01.0237 1236 Current date / time: 2012/02/20 16:37:01.0237
16:37:01.0237 1236 SystemInfo:
16:37:01.0237 1236
16:37:01.0237 1236 OS Version: 6.1.7601 ServicePack: 1.0
16:37:01.0237 1236 Product type: Workstation
16:37:01.0237 1236 ComputerName: VADER
16:37:01.0237 1236 UserName: kidwonder
16:37:01.0237 1236 Windows directory: C:\Windows
16:37:01.0237 1236 System windows directory: C:\Windows
16:37:01.0237 1236 Processor architecture: Intel x86
16:37:01.0237 1236 Number of processors: 2
16:37:01.0237 1236 Page size: 0x1000
16:37:01.0237 1236 Boot type: Safe boot
16:37:01.0237 1236 ============================================================
16:37:01.0861 1236 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
16:37:01.0861 1236 Drive \Device\Harddisk1\DR3 - Size: 0x7C00000 (0.12 Gb), SectorSize: 0x200, Cylinders: 0xF, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:37:01.0861 1236 \Device\Harddisk0\DR0:
16:37:01.0861 1236 MBR used
16:37:01.0861 1236 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1770D7A, BlocksNum 0x12A14C00
16:37:01.0892 1236 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x141859B9, BlocksNum 0x112A7D08
16:37:01.0892 1236 \Device\Harddisk1\DR3:
16:37:01.0892 1236 MBR used
16:37:01.0892 1236 \Device\Harddisk1\DR3\Partition0: MBR, Type 0x6, StartLBA 0x20, BlocksNum 0x3DFE0
16:37:01.0954 1236 Initialize success
16:37:01.0954 1236 ============================================================
16:37:27.0414 1328 ============================================================
16:37:27.0414 1328 Scan started
16:37:27.0414 1328 Mode: Manual; TDLFS;
16:37:27.0414 1328 ============================================================
16:37:28.0209 1328 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
16:37:28.0209 1328 1394ohci - ok
16:37:28.0272 1328 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
16:37:28.0272 1328 ACPI - ok
16:37:28.0334 1328 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
16:37:28.0334 1328 AcpiPmi - ok
16:37:28.0490 1328 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
16:37:28.0490 1328 adp94xx - ok
16:37:28.0537 1328 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
16:37:28.0553 1328 adpahci - ok
16:37:28.0568 1328 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
16:37:28.0568 1328 adpu320 - ok
16:37:28.0646 1328 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
16:37:28.0646 1328 AFD - ok
16:37:28.0677 1328 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
16:37:28.0677 1328 agp440 - ok
16:37:28.0724 1328 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
16:37:28.0724 1328 aic78xx - ok
16:37:28.0771 1328 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
16:37:28.0787 1328 aliide - ok
16:37:28.0818 1328 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
16:37:28.0818 1328 amdagp - ok
16:37:28.0865 1328 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
16:37:28.0865 1328 amdide - ok
16:37:28.0911 1328 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
16:37:28.0911 1328 AmdK8 - ok
16:37:28.0927 1328 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
16:37:28.0943 1328 AmdPPM - ok
16:37:28.0974 1328 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
16:37:28.0989 1328 amdsata - ok
16:37:29.0036 1328 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
16:37:29.0036 1328 amdsbs - ok
16:37:29.0067 1328 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
16:37:29.0067 1328 amdxata - ok
16:37:29.0099 1328 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
16:37:29.0114 1328 AppID - ok
16:37:29.0161 1328 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
16:37:29.0161 1328 arc - ok
16:37:29.0192 1328 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
16:37:29.0192 1328 arcsas - ok
16:37:29.0301 1328 ASMMAP (7b4d08d2017ac06689d422e06c43f0aa) C:\Program Files\ATKGFNEX\ASMMAP.sys
16:37:29.0301 1328 ASMMAP - ok
16:37:29.0348 1328 ASPI (e54e27976e2c5a6465d44c10b1d87ac0) C:\Windows\System32\DRIVERS\ASPI32.sys
16:37:29.0348 1328 ASPI - ok
16:37:29.0395 1328 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
16:37:29.0395 1328 AsyncMac - ok
16:37:29.0473 1328 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
16:37:29.0473 1328 atapi - ok
16:37:29.0535 1328 athr (76bab0c824e2d05b940c4dd40a9b08bf) C:\Windows\system32\DRIVERS\athr.sys
16:37:29.0567 1328 athr - ok
16:37:29.0645 1328 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
16:37:29.0645 1328 b06bdrv - ok
16:37:29.0723 1328 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
16:37:29.0723 1328 b57nd60x - ok
16:37:29.0769 1328 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
16:37:29.0769 1328 Beep - ok
16:37:29.0832 1328 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
16:37:29.0832 1328 blbdrive - ok
16:37:29.0910 1328 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
16:37:29.0910 1328 bowser - ok
16:37:29.0957 1328 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:37:29.0957 1328 BrFiltLo - ok
16:37:29.0972 1328 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:37:29.0988 1328 BrFiltUp - ok
16:37:30.0050 1328 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
16:37:30.0050 1328 Brserid - ok
16:37:30.0066 1328 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
16:37:30.0066 1328 BrSerWdm - ok
16:37:30.0081 1328 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
16:37:30.0097 1328 BrUsbMdm - ok
16:37:30.0144 1328 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
16:37:30.0144 1328 BrUsbSer - ok
16:37:30.0191 1328 BthEnum (2865a5c8e98c70c605f417908cebb3a4) C:\Windows\system32\drivers\BthEnum.sys
16:37:30.0191 1328 BthEnum - ok
16:37:30.0222 1328 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
16:37:30.0222 1328 BTHMODEM - ok
16:37:30.0269 1328 BthPan (ad1872e5829e8a2c3b5b4b641c3eab0e) C:\Windows\system32\DRIVERS\bthpan.sys
16:37:30.0269 1328 BthPan - ok
16:37:30.0347 1328 BTHPORT (c2fbf6d271d9a94d839c416bf186ead9) C:\Windows\System32\Drivers\BTHport.sys
16:37:30.0347 1328 BTHPORT - ok
16:37:30.0425 1328 BTHUSB (c81e9413a25a439f436b1d4b6a0cf9e9) C:\Windows\System32\Drivers\BTHUSB.sys
16:37:30.0425 1328 BTHUSB - ok
16:37:30.0487 1328 btwaudio (463483285b2d2d345443aaee7b9391e7) C:\Windows\system32\drivers\btwaudio.sys
16:37:30.0487 1328 btwaudio - ok
16:37:30.0503 1328 btwavdt (4f82b6173ef8637cb26cf4e73b90f172) C:\Windows\system32\drivers\btwavdt.sys
16:37:30.0503 1328 btwavdt - ok
16:37:30.0549 1328 btwl2cap (ecb98391c756a7b9cfbae89d9d1235e1) C:\Windows\system32\DRIVERS\btwl2cap.sys
16:37:30.0549 1328 btwl2cap - ok
16:37:30.0565 1328 btwrchid (f771034f5b59a4a5054a2fa6f4e9f28b) C:\Windows\system32\DRIVERS\btwrchid.sys
16:37:30.0565 1328 btwrchid - ok
16:37:30.0627 1328 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
16:37:30.0627 1328 cdfs - ok
16:37:30.0674 1328 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\DRIVERS\cdrom.sys
16:37:30.0674 1328 cdrom - ok
16:37:30.0705 1328 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
16:37:30.0705 1328 circlass - ok
16:37:30.0752 1328 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
16:37:30.0752 1328 CLFS - ok
16:37:30.0799 1328 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
16:37:30.0799 1328 CmBatt - ok
16:37:30.0830 1328 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
16:37:30.0830 1328 cmdide - ok
16:37:30.0877 1328 CNG (6427525d76f61d0c519b008d3680e8e7) C:\Windows\system32\Drivers\cng.sys
16:37:30.0877 1328 CNG - ok
16:37:30.0893 1328 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
16:37:30.0893 1328 Compbatt - ok
16:37:30.0955 1328 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys
16:37:30.0955 1328 CompositeBus - ok
16:37:31.0002 1328 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
16:37:31.0002 1328 crcdisk - ok
16:37:31.0080 1328 dc3d (94010220445f181ade8e7ca9c3a98bf4) C:\Windows\system32\DRIVERS\dc3d.sys
16:37:31.0095 1328 dc3d - ok
16:37:31.0158 1328 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
16:37:31.0158 1328 DfsC - ok
16:37:31.0205 1328 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
16:37:31.0205 1328 discache - ok
16:37:31.0251 1328 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
16:37:31.0251 1328 Disk - ok
16:37:31.0298 1328 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
16:37:31.0298 1328 drmkaud - ok
16:37:31.0329 1328 dvd43llh (1fc1eed3ea0c3a0ecf8a95b97e1b4831) C:\Windows\system32\DRIVERS\dvd43llh.sys
16:37:31.0329 1328 dvd43llh - ok
16:37:31.0376 1328 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
16:37:31.0392 1328 DXGKrnl - ok
16:37:31.0501 1328 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
16:37:31.0579 1328 ebdrv - ok
16:37:31.0641 1328 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
16:37:31.0641 1328 elxstor - ok
16:37:31.0688 1328 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
16:37:31.0688 1328 ErrDev - ok
16:37:31.0735 1328 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
16:37:31.0735 1328 exfat - ok
16:37:31.0751 1328 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
16:37:31.0766 1328 fastfat - ok
16:37:31.0782 1328 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
16:37:31.0782 1328 fdc - ok
16:37:31.0813 1328 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
16:37:31.0813 1328 FileInfo - ok
16:37:31.0844 1328 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
16:37:31.0844 1328 Filetrace - ok
16:37:31.0860 1328 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
16:37:31.0860 1328 flpydisk - ok
16:37:31.0875 1328 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
16:37:31.0891 1328 FltMgr - ok
16:37:31.0922 1328 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
16:37:31.0922 1328 FsDepends - ok
16:37:31.0953 1328 fssfltr (17829180deebf703ec7f445ac3abea99) C:\Windows\system32\DRIVERS\fssfltr.sys
16:37:31.0953 1328 fssfltr - ok
16:37:32.0000 1328 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
16:37:32.0000 1328 Fs_Rec - ok
16:37:32.0047 1328 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
16:37:32.0047 1328 fvevol - ok
16:37:32.0078 1328 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
16:37:32.0078 1328 gagp30kx - ok
16:37:32.0125 1328 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:37:32.0125 1328 GEARAspiWDM - ok
16:37:32.0250 1328 ghaio (31b40f40e09513addc460f6a297ad474) C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys
16:37:32.0250 1328 ghaio - ok
16:37:32.0343 1328 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
16:37:32.0343 1328 hcw85cir - ok
16:37:32.0406 1328 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
16:37:32.0406 1328 HdAudAddService - ok
16:37:32.0453 1328 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys
16:37:32.0453 1328 HDAudBus - ok
16:37:32.0468 1328 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
16:37:32.0468 1328 HidBatt - ok
16:37:32.0499 1328 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
16:37:32.0499 1328 HidBth - ok
16:37:32.0562 1328 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
16:37:32.0562 1328 HidIr - ok
16:37:32.0609 1328 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\drivers\hidusb.sys
16:37:32.0609 1328 HidUsb - ok
16:37:32.0640 1328 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
16:37:32.0640 1328 HpSAMD - ok
16:37:32.0687 1328 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
16:37:32.0702 1328 HTTP - ok
16:37:32.0733 1328 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
16:37:32.0749 1328 hwpolicy - ok
16:37:32.0796 1328 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys
16:37:32.0796 1328 i8042prt - ok
16:37:32.0858 1328 iaStor (9f1220113a3a7f4f08042c699324d073) C:\Windows\system32\DRIVERS\iaStor.sys
16:37:32.0858 1328 iaStor - ok
16:37:32.0889 1328 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
16:37:32.0889 1328 iaStorV - ok
16:37:32.0936 1328 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
16:37:32.0936 1328 iirsp - ok
16:37:33.0045 1328 IntcAzAudAddService (d3a0a2b1543eed8c9370eff3ae5abcfd) C:\Windows\system32\drivers\RTKVHDA.sys
16:37:33.0092 1328 IntcAzAudAddService - ok
16:37:33.0123 1328 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
16:37:33.0123 1328 intelide - ok
16:37:33.0155 1328 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
16:37:33.0155 1328 intelppm - ok
16:37:33.0170 1328 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:37:33.0170 1328 IpFilterDriver - ok
16:37:33.0217 1328 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
16:37:33.0217 1328 IPMIDRV - ok
16:37:33.0248 1328 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
16:37:33.0248 1328 IPNAT - ok
16:37:33.0311 1328 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
16:37:33.0311 1328 IRENUM - ok
16:37:33.0357 1328 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
16:37:33.0357 1328 isapnp - ok
16:37:33.0389 1328 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
16:37:33.0404 1328 iScsiPrt - ok
16:37:33.0451 1328 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\drivers\kbdclass.sys
16:37:33.0451 1328 kbdclass - ok
16:37:33.0498 1328 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\drivers\kbdhid.sys
16:37:33.0498 1328 kbdhid - ok
16:37:33.0560 1328 kbfiltr (7f2b8d0b31fb4a797e5786ef124c5a80) C:\Windows\system32\DRIVERS\kbfiltr.sys
16:37:33.0560 1328 kbfiltr - ok
16:37:33.0623 1328 ksaud (9272a8404ce073d1502ad52c5a1024e3) C:\Windows\system32\drivers\ksaud.sys
16:37:33.0623 1328 ksaud - ok
16:37:33.0669 1328 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\Windows\system32\Drivers\ksecdd.sys
16:37:33.0669 1328 KSecDD - ok
16:37:33.0685 1328 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\Windows\system32\Drivers\ksecpkg.sys
16:37:33.0685 1328 KSecPkg - ok
16:37:33.0716 1328 L1C (1c2af919fde8ed307135b6487af4d7f8) C:\Windows\system32\DRIVERS\L1C60x86.sys
16:37:33.0716 1328 L1C - ok
16:37:33.0810 1328 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
16:37:33.0810 1328 lltdio - ok
16:37:33.0857 1328 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
16:37:33.0857 1328 LSI_FC - ok
16:37:33.0888 1328 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
16:37:33.0888 1328 LSI_SAS - ok
16:37:33.0903 1328 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:37:33.0903 1328 LSI_SAS2 - ok
16:37:33.0935 1328 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:37:33.0935 1328 LSI_SCSI - ok
16:37:33.0966 1328 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
16:37:33.0966 1328 luafv - ok
16:37:34.0028 1328 lullaby (50126b9e0a0dc0675866493a488f6731) C:\Windows\system32\DRIVERS\lullaby.sys
16:37:34.0028 1328 lullaby - ok
16:37:34.0075 1328 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
16:37:34.0075 1328 megasas - ok
16:37:34.0137 1328 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
16:37:34.0137 1328 MegaSR - ok
16:37:34.0184 1328 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
16:37:34.0184 1328 Modem - ok
16:37:34.0215 1328 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
16:37:34.0215 1328 monitor - ok
16:37:34.0262 1328 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\drivers\mouclass.sys
16:37:34.0262 1328 mouclass - ok
16:37:34.0309 1328 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
16:37:34.0309 1328 mouhid - ok
16:37:34.0371 1328 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
16:37:34.0371 1328 mountmgr - ok
16:37:34.0403 1328 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\Windows\system32\DRIVERS\MpFilter.sys
16:37:34.0403 1328 MpFilter - ok
16:37:34.0434 1328 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
16:37:34.0434 1328 mpio - ok
16:37:34.0543 1328 MpKsl0f2f71ae - ok
16:37:34.0543 1328 MpKsl2fe4885f - ok
16:37:34.0574 1328 MpKslc00e1cbe - ok
16:37:34.0590 1328 MpNWMon (2c3489660d4a8d514c123c3f0d67df46) C:\Windows\system32\DRIVERS\MpNWMon.sys
16:37:34.0590 1328 MpNWMon - ok
16:37:34.0637 1328 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
16:37:34.0637 1328 mpsdrv - ok
16:37:34.0668 1328 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
16:37:34.0668 1328 MRxDAV - ok
16:37:34.0715 1328 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
16:37:34.0715 1328 mrxsmb - ok
16:37:34.0761 1328 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:37:34.0761 1328 mrxsmb10 - ok
16:37:34.0777 1328 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:37:34.0777 1328 mrxsmb20 - ok
16:37:34.0808 1328 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
16:37:34.0808 1328 msahci - ok
16:37:34.0855 1328 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
16:37:34.0855 1328 msdsm - ok
16:37:34.0902 1328 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
16:37:34.0902 1328 Msfs - ok
16:37:34.0917 1328 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
16:37:34.0933 1328 mshidkmdf - ok
16:37:34.0933 1328 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
16:37:34.0949 1328 msisadrv - ok
16:37:34.0995 1328 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
16:37:34.0995 1328 MSKSSRV - ok
16:37:35.0058 1328 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
16:37:35.0073 1328 MSPCLOCK - ok
16:37:35.0089 1328 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
16:37:35.0089 1328 MSPQM - ok
16:37:35.0120 1328 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
16:37:35.0136 1328 MsRPC - ok
16:37:35.0167 1328 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys
16:37:35.0167 1328 mssmbios - ok
16:37:35.0198 1328 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
16:37:35.0198 1328 MSTEE - ok
16:37:35.0229 1328 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
16:37:35.0229 1328 MTConfig - ok
16:37:35.0261 1328 MTsensor (bb16693616427eac1a436e106ea8d318) C:\Windows\system32\DRIVERS\ATKACPI.sys
16:37:35.0261 1328 MTsensor - ok
16:37:35.0276 1328 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
16:37:35.0276 1328 Mup - ok
16:37:35.0323 1328 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
16:37:35.0339 1328 NativeWifiP - ok
16:37:35.0401 1328 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
16:37:35.0417 1328 NDIS - ok
16:37:35.0448 1328 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
16:37:35.0448 1328 NdisCap - ok
16:37:35.0479 1328 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
16:37:35.0479 1328 NdisTapi - ok
16:37:35.0541 1328 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
16:37:35.0557 1328 Ndisuio - ok
16:37:35.0588 1328 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
16:37:35.0588 1328 NdisWan - ok
16:37:35.0651 1328 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
16:37:35.0651 1328 NDProxy - ok
16:37:35.0697 1328 Ndxsm5wnpt - ok
16:37:35.0744 1328 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
16:37:35.0744 1328 NetBIOS - ok
16:37:35.0791 1328 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
16:37:35.0807 1328 NetBT - ok
16:37:35.0994 1328 NETw5s32 (ef51b405ad8acaae6f0231290d20f516) C:\Windows\system32\DRIVERS\NETw5s32.sys
16:37:36.0134 1328 NETw5s32 - ok
16:37:36.0259 1328 netw5v32 (58218ec6b61b1169cf54aab0d00f5fe2) C:\Windows\system32\DRIVERS\netw5v32.sys
16:37:36.0353 1328 netw5v32 - ok
16:37:36.0399 1328 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
16:37:36.0399 1328 nfrd960 - ok
16:37:36.0431 1328 NisDrv (7b01c6172cfd0b10116175e09200d4b4) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
16:37:36.0431 1328 NisDrv - ok
16:37:36.0493 1328 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
16:37:36.0493 1328 Npfs - ok
16:37:36.0509 1328 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
16:37:36.0509 1328 nsiproxy - ok
16:37:36.0587 1328 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
16:37:36.0618 1328 Ntfs - ok
16:37:36.0649 1328 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
16:37:36.0649 1328 Null - ok
16:37:36.0696 1328 NVHDA (0e40ef12bc029ff8b13043f157452c47) C:\Windows\system32\drivers\nvhda32v.sys
16:37:36.0696 1328 NVHDA - ok
16:37:36.0930 1328 nvlddmkm (bd409de5681c74c1de51d72427dc202d) C:\Windows\system32\DRIVERS\nvlddmkm.sys
16:37:37.0148 1328 nvlddmkm - ok
16:37:37.0179 1328 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
16:37:37.0179 1328 nvraid - ok
16:37:37.0195 1328 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
16:37:37.0195 1328 nvstor - ok
16:37:37.0257 1328 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
16:37:37.0257 1328 nv_agp - ok
16:37:37.0289 1328 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
16:37:37.0289 1328 ohci1394 - ok
16:37:37.0367 1328 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
16:37:37.0382 1328 Parport - ok
16:37:37.0413 1328 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys
16:37:37.0413 1328 partmgr - ok
16:37:37.0429 1328 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
16:37:37.0445 1328 Parvdm - ok
16:37:37.0491 1328 pavboot (3adb8bd6154a3ef87496e8fce9c22493) C:\Windows\system32\drivers\pavboot.sys
16:37:37.0491 1328 pavboot - ok
16:37:37.0538 1328 PcaSp60 (dd74552152055a8493872930a64e70dc) C:\Windows\system32\DRIVERS\PcaSp60.sys
16:37:37.0538 1328 PcaSp60 - ok
16:37:37.0585 1328 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
16:37:37.0585 1328 pci - ok
16:37:37.0616 1328 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
16:37:37.0616 1328 pciide - ok
16:37:37.0647 1328 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
16:37:37.0647 1328 pcmcia - ok
16:37:37.0725 1328 pcouffin (5b6c11de7e839c05248ced8825470fef) C:\Windows\system32\Drivers\pcouffin.sys
16:37:37.0725 1328 pcouffin - ok
16:37:37.0741 1328 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
16:37:37.0741 1328 pcw - ok
16:37:37.0772 1328 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
16:37:37.0772 1328 PEAUTH - ok
16:37:37.0850 1328 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
16:37:37.0866 1328 PptpMiniport - ok
16:37:37.0897 1328 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
16:37:37.0897 1328 Processor - ok
16:37:37.0944 1328 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
16:37:37.0944 1328 Psched - ok
16:37:38.0006 1328 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
16:37:38.0037 1328 ql2300 - ok
16:37:38.0069 1328 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
16:37:38.0069 1328 ql40xx - ok
16:37:38.0100 1328 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
16:37:38.0100 1328 QWAVEdrv - ok
16:37:38.0131 1328 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
16:37:38.0131 1328 RasAcd - ok
16:37:38.0162 1328 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
16:37:38.0162 1328 RasAgileVpn - ok
16:37:38.0178 1328 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
16:37:38.0178 1328 Rasl2tp - ok
16:37:38.0240 1328 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
16:37:38.0240 1328 RasPppoe - ok
16:37:38.0256 1328 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
16:37:38.0271 1328 RasSstp - ok
16:37:38.0318 1328 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
16:37:38.0318 1328 rdbss - ok
16:37:38.0349 1328 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
16:37:38.0349 1328 rdpbus - ok
16:37:38.0396 1328 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
16:37:38.0396 1328 RDPCDD - ok
16:37:38.0427 1328 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
16:37:38.0427 1328 RDPENCDD - ok
16:37:38.0443 1328 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
16:37:38.0443 1328 RDPREFMP - ok
16:37:38.0490 1328 RDPWD (288b06960d78428ff89e811632684e20) C:\Windows\system32\drivers\RDPWD.sys
16:37:38.0490 1328 RDPWD - ok
16:37:38.0521 1328 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
16:37:38.0521 1328 rdyboost - ok
16:37:38.0583 1328 RFCOMM (cb928d9e6daf51879dd6ba8d02f01321) C:\Windows\system32\DRIVERS\rfcomm.sys
16:37:38.0583 1328 RFCOMM - ok
16:37:38.0646 1328 rimmptsk (a5b12a4b3b774432db9b9fa221190e59) C:\Windows\system32\DRIVERS\rimmptsk.sys
16:37:38.0661 1328 rimmptsk - ok
16:37:38.0693 1328 rimsptsk (c398bca91216755b098679a8da8a2300) C:\Windows\system32\DRIVERS\rimsptsk.sys
16:37:38.0708 1328 rimsptsk - ok
16:37:38.0771 1328 rismxdp (2a2554cb24506e0a0508fc395c4a1b42) C:\Windows\system32\DRIVERS\rixdptsk.sys
16:37:38.0771 1328 rismxdp - ok
16:37:38.0817 1328 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
16:37:38.0817 1328 rspndr - ok
16:37:38.0864 1328 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
16:37:38.0864 1328 sbp2port - ok
16:37:38.0927 1328 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
16:37:38.0927 1328 scfilter - ok
16:37:38.0973 1328 sdbus (0328be1c7f1cba23848179f8762e391c) C:\Windows\system32\drivers\sdbus.sys
16:37:38.0973 1328 sdbus - ok
16:37:39.0020 1328 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
16:37:39.0020 1328 secdrv - ok
16:37:39.0067 1328 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
16:37:39.0067 1328 Serenum - ok
16:37:39.0129 1328 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
16:37:39.0129 1328 Serial - ok
16:37:39.0161 1328 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
16:37:39.0161 1328 sermouse - ok
16:37:39.0207 1328 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
16:37:39.0207 1328 sffdisk - ok
16:37:39.0223 1328 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
16:37:39.0223 1328 sffp_mmc - ok
16:37:39.0254 1328 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
16:37:39.0254 1328 sffp_sd - ok
16:37:39.0254 1328 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
16:37:39.0254 1328 sfloppy - ok
16:37:39.0301 1328 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
16:37:39.0301 1328 sisagp - ok
16:37:39.0363 1328 SiSGbeLH (6f0c643c7f49f2091b01d014eae72e1a) C:\Windows\system32\DRIVERS\SiSGB6.sys
16:37:39.0363 1328 SiSGbeLH - ok
16:37:39.0395 1328 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:37:39.0410 1328 SiSRaid2 - ok
16:37:39.0426 1328 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
16:37:39.0426 1328 SiSRaid4 - ok
16:37:39.0457 1328 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
16:37:39.0457 1328 Smb - ok
16:37:39.0551 1328 SNP2UVC (060f51141b20b8156804446a04ab8b2a) C:\Windows\system32\DRIVERS\snp2uvc.sys
16:37:39.0582 1328 SNP2UVC - ok
16:37:39.0613 1328 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
16:37:39.0613 1328 spldr - ok
16:37:39.0660 1328 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
16:37:39.0675 1328 srv - ok
16:37:39.0707 1328 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
16:37:39.0707 1328 srv2 - ok
16:37:39.0753 1328 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
16:37:39.0753 1328 srvnet - ok
16:37:39.0816 1328 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
16:37:39.0816 1328 stexstor - ok
16:37:39.0863 1328 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys
16:37:39.0863 1328 swenum - ok
16:37:39.0909 1328 SynTP (55f6e55cc2430ca8713387106fa79817) C:\Windows\system32\DRIVERS\SynTP.sys
16:37:39.0909 1328 SynTP - ok
16:37:40.0003 1328 Tcpip (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\drivers\tcpip.sys
16:37:40.0034 1328 Tcpip - ok
16:37:40.0097 1328 TCPIP6 (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\DRIVERS\tcpip.sys
16:37:40.0097 1328 TCPIP6 - ok
16:37:40.0143 1328 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
16:37:40.0143 1328 tcpipreg - ok
16:37:40.0190 1328 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
16:37:40.0190 1328 TDPIPE - ok
16:37:40.0221 1328 TDTCP (2c10395baa4847f83042813c515cc289) C:\Windows\system32\drivers\tdtcp.sys
16:37:40.0221 1328 TDTCP - ok
16:37:40.0268 1328 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
16:37:40.0268 1328 tdx - ok
16:37:40.0315 1328 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys
16:37:40.0315 1328 TermDD - ok
16:37:40.0377 1328 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
16:37:40.0377 1328 tssecsrv - ok
16:37:40.0440 1328 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
16:37:40.0440 1328 TsUsbFlt - ok
16:37:40.0502 1328 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
16:37:40.0502 1328 tunnel - ok
16:37:40.0549 1328 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
16:37:40.0549 1328 uagp35 - ok
16:37:40.0580 1328 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
16:37:40.0580 1328 udfs - ok
16:37:40.0611 1328 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
16:37:40.0611 1328 uliagpkx - ok
16:37:40.0643 1328 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\drivers\umbus.sys
16:37:40.0643 1328 umbus - ok
16:37:40.0674 1328 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
16:37:40.0674 1328 UmPass - ok
16:37:40.0721 1328 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
16:37:40.0721 1328 USBAAPL - ok
16:37:40.0752 1328 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
16:37:40.0752 1328 usbccgp - ok
16:37:40.0783 1328 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
16:37:40.0783 1328 usbcir - ok
16:37:40.0814 1328 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys
16:37:40.0814 1328 usbehci - ok
16:37:40.0845 1328 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
16:37:40.0861 1328 usbhub - ok
16:37:40.0877 1328 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\drivers\usbohci.sys
16:37:40.0877 1328 usbohci - ok
16:37:41.0033 1328 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
16:37:41.0033 1328 usbprint - ok
16:37:41.0126 1328 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
16:37:41.0126 1328 usbscan - ok
16:37:41.0157 1328 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:37:41.0157 1328 USBSTOR - ok
16:37:41.0189 1328 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\DRIVERS\usbuhci.sys
16:37:41.0189 1328 usbuhci - ok
16:37:41.0235 1328 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\Windows\System32\Drivers\usbvideo.sys
16:37:41.0235 1328 usbvideo - ok
16:37:41.0267 1328 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
16:37:41.0267 1328 vdrvroot - ok
16:37:41.0298 1328 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
16:37:41.0313 1328 vga - ok
16:37:41.0329 1328 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
16:37:41.0329 1328 VgaSave - ok
16:37:41.0360 1328 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
16:37:41.0360 1328 vhdmp - ok
16:37:41.0423 1328 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
16:37:41.0423 1328 viaagp - ok
16:37:41.0454 1328 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
16:37:41.0454 1328 ViaC7 - ok
16:37:41.0501 1328 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
16:37:41.0501 1328 viaide - ok
16:37:41.0532 1328 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
16:37:41.0547 1328 volmgr - ok
16:37:41.0563 1328 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
16:37:41.0563 1328 volmgrx - ok
16:37:41.0625 1328 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
16:37:41.0625 1328 volsnap - ok
16:37:41.0657 1328 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
16:37:41.0657 1328 vsmraid - ok
16:37:41.0703 1328 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys
16:37:41.0703 1328 vwifibus - ok
16:37:41.0735 1328 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
16:37:41.0750 1328 vwififlt - ok
16:37:41.0781 1328 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\Windows\system32\DRIVERS\vwifimp.sys
16:37:41.0781 1328 vwifimp - ok
16:37:41.0797 1328 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
16:37:41.0813 1328 WacomPen - ok
16:37:41.0844 1328 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
16:37:41.0844 1328 WANARP - ok
16:37:41.0844 1328 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
16:37:41.0859 1328 Wanarpv6 - ok
16:37:41.0891 1328 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
16:37:41.0891 1328 Wd - ok
16:37:41.0937 1328 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
16:37:41.0937 1328 Wdf01000 - ok
16:37:42.0000 1328 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
16:37:42.0000 1328 WfpLwf - ok
16:37:42.0031 1328 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
16:37:42.0031 1328 WIMMount - ok
16:37:42.0109 1328 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUsb.sys
16:37:42.0109 1328 WinUsb - ok
16:37:42.0171 1328 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
16:37:42.0171 1328 WmiAcpi - ok
16:37:42.0234 1328 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
16:37:42.0234 1328 ws2ifsl - ok
16:37:42.0281 1328 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
16:37:42.0281 1328 WudfPf - ok
16:37:42.0327 1328 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
16:37:42.0327 1328 WUDFRd - ok
16:37:42.0374 1328 MBR (0x1B8) (c0dcf0ac171db02db8b0014c5d767cf1) \Device\Harddisk0\DR0
16:37:42.0405 1328 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - infected
16:37:42.0405 1328 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.b (0)
16:37:42.0483 1328 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
16:37:42.0483 1328 \Device\Harddisk0\DR0 - detected TDSS File System (1)
16:37:42.0499 1328 MBR (0x1B8) (65e858a8a0293be11a920b0bc99d695e) \Device\Harddisk1\DR3
16:37:43.0279 1328 \Device\Harddisk1\DR3 - ok
16:37:43.0357 1328 Boot (0x1200) (0ef7e870aa4b79d4c5786117c5649f8c) \Device\Harddisk0\DR0\Partition0
16:37:43.0357 1328 \Device\Harddisk0\DR0\Partition0 - ok
16:37:43.0373 1328 Boot (0x1200) (dca6452e1f59336d7ffded675d9aff49) \Device\Harddisk0\DR0\Partition1
16:37:43.0373 1328 \Device\Harddisk0\DR0\Partition1 - ok
16:37:43.0373 1328 Boot (0x1200) (d9039f4e8fee03a80e816935062a6e31) \Device\Harddisk1\DR3\Partition0
16:37:43.0373 1328 \Device\Harddisk1\DR3\Partition0 - ok
16:37:43.0373 1328 ============================================================
16:37:43.0373 1328 Scan finished
16:37:43.0373 1328 ============================================================
16:37:43.0404 1220 Detected object count: 2
16:37:43.0404 1220 Actual detected object count: 2
16:38:02.0654 1220 \Device\Harddisk0\DR0\# - copied to quarantine
16:38:02.0654 1220 \Device\Harddisk0\DR0 - copied to quarantine
16:38:02.0732 1220 \Device\Harddisk0\DR0\TDLFS\phm - copied to quarantine
16:38:02.0748 1220 \Device\Harddisk0\DR0\TDLFS\ph.dll - copied to quarantine
16:38:02.0763 1220 \Device\Harddisk0\DR0\TDLFS\phx.dll - copied to quarantine
16:38:02.0763 1220 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
16:38:02.0779 1220 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
16:38:02.0795 1220 \Device\Harddisk0\DR0\TDLFS\phd - copied to quarantine
16:38:02.0810 1220 \Device\Harddisk0\DR0\TDLFS\phdx - copied to quarantine
16:38:02.0810 1220 \Device\Harddisk0\DR0\TDLFS\phs - copied to quarantine
16:38:02.0826 1220 \Device\Harddisk0\DR0\TDLFS\phdata - copied to quarantine
16:38:02.0826 1220 \Device\Harddisk0\DR0\TDLFS\phld - copied to quarantine
16:38:02.0826 1220 \Device\Harddisk0\DR0\TDLFS\phln - copied to quarantine
16:38:02.0826 1220 \Device\Harddisk0\DR0\TDLFS\phlx - copied to quarantine
16:38:02.0841 1220 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - will be cured on reboot
16:38:02.0841 1220 \Device\Harddisk0\DR0 - ok
16:38:02.0841 1220 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - User select action: Cure
16:38:02.0841 1220 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
16:38:02.0841 1220 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
16:38:06.0055 1240 Deinitialize success


17:32:21.0230 5596 TDSS rootkit removing tool 2.7.13.0 Feb 15 2012 19:33:14
17:32:21.0666 5596 ============================================================
17:32:21.0666 5596 Current date / time: 2012/02/20 17:32:21.0666
17:32:21.0666 5596 SystemInfo:
17:32:21.0666 5596
17:32:21.0666 5596 OS Version: 6.1.7601 ServicePack: 1.0
17:32:21.0666 5596 Product type: Workstation
17:32:21.0666 5596 ComputerName: VADER
17:32:21.0666 5596 UserName: kidwonder
17:32:21.0666 5596 Windows directory: C:\Windows
17:32:21.0666 5596 System windows directory: C:\Windows
17:32:21.0666 5596 Processor architecture: Intel x86
17:32:21.0666 5596 Number of processors: 2
17:32:21.0666 5596 Page size: 0x1000
17:32:21.0666 5596 Boot type: Normal boot
17:32:21.0666 5596 ============================================================
17:32:49.0388 5596 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
17:32:49.0497 5596 Drive \Device\Harddisk1\DR3 - Size: 0x7C00000 (0.12 Gb), SectorSize: 0x200, Cylinders: 0xF, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
17:32:49.0497 5596 \Device\Harddisk0\DR0:
17:32:49.0497 5596 MBR used
17:32:49.0497 5596 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1770D7A, BlocksNum 0x12A14C00
17:32:49.0512 5596 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x141859B9, BlocksNum 0x112A7D08
17:32:49.0512 5596 \Device\Harddisk1\DR3:
17:32:49.0512 5596 MBR used
17:32:49.0512 5596 \Device\Harddisk1\DR3\Partition0: MBR, Type 0x6, StartLBA 0x20, BlocksNum 0x3DFE0
17:32:49.0622 5596 Initialize success
17:32:49.0622 5596 ============================================================
17:33:00.0401 2056 ============================================================
17:33:00.0401 2056 Scan started
17:33:00.0401 2056 Mode: Manual; TDLFS;
17:33:00.0401 2056 ============================================================
17:33:10.0307 2056 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
17:33:10.0307 2056 1394ohci - ok
17:33:10.0588 2056 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
17:33:10.0588 2056 ACPI - ok
17:33:10.0775 2056 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
17:33:10.0775 2056 AcpiPmi - ok
17:33:11.0165 2056 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
17:33:11.0243 2056 adp94xx - ok
17:33:11.0430 2056 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
17:33:11.0430 2056 adpahci - ok
17:33:11.0680 2056 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
17:33:11.0680 2056 adpu320 - ok
17:33:12.0054 2056 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
17:33:12.0117 2056 AFD - ok
17:33:12.0585 2056 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
17:33:12.0585 2056 agp440 - ok
17:33:13.0006 2056 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
17:33:13.0006 2056 aic78xx - ok
17:33:13.0427 2056 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
17:33:13.0427 2056 aliide - ok
17:33:13.0614 2056 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
17:33:13.0614 2056 amdagp - ok
17:33:13.0786 2056 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
17:33:13.0802 2056 amdide - ok
17:33:14.0098 2056 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
17:33:14.0098 2056 AmdK8 - ok
17:33:14.0301 2056 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
17:33:14.0316 2056 AmdPPM - ok
17:33:14.0722 2056 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
17:33:14.0722 2056 amdsata - ok
17:33:14.0987 2056 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
17:33:15.0034 2056 amdsbs - ok
17:33:15.0221 2056 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
17:33:15.0221 2056 amdxata - ok
17:33:15.0518 2056 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
17:33:15.0518 2056 AppID - ok
17:33:15.0830 2056 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
17:33:15.0830 2056 arc - ok
17:33:15.0876 2056 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
17:33:15.0892 2056 arcsas - ok
17:33:16.0641 2056 ASMMAP (7b4d08d2017ac06689d422e06c43f0aa) C:\Program Files\ATKGFNEX\ASMMAP.sys
17:33:16.0641 2056 ASMMAP - ok
17:33:16.0844 2056 ASPI (e54e27976e2c5a6465d44c10b1d87ac0) C:\Windows\System32\DRIVERS\ASPI32.sys
17:33:16.0968 2056 ASPI - ok
17:33:17.0920 2056 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
17:33:17.0920 2056 AsyncMac - ok
17:33:18.0965 2056 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
17:33:18.0965 2056 atapi - ok
17:33:20.0057 2056 athr (76bab0c824e2d05b940c4dd40a9b08bf) C:\Windows\system32\DRIVERS\athr.sys
17:33:20.0151 2056 athr - ok
17:33:21.0134 2056 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
17:33:21.0274 2056 b06bdrv - ok
17:33:22.0241 2056 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
17:33:22.0506 2056 b57nd60x - ok
17:33:23.0520 2056 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
17:33:23.0520 2056 Beep - ok
17:33:24.0051 2056 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
17:33:24.0066 2056 blbdrive - ok
17:33:25.0268 2056 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
17:33:25.0268 2056 bowser - ok
17:33:25.0642 2056 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:33:25.0658 2056 BrFiltLo - ok
17:33:26.0406 2056 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:33:26.0406 2056 BrFiltUp - ok
17:33:27.0405 2056 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
17:33:27.0420 2056 Brserid - ok
17:33:27.0966 2056 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
17:33:27.0966 2056 BrSerWdm - ok
17:33:28.0887 2056 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
17:33:28.0902 2056 BrUsbMdm - ok
17:33:32.0225 2056 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
17:33:32.0241 2056 BrUsbSer - ok
17:33:33.0583 2056 BthEnum (2865a5c8e98c70c605f417908cebb3a4) C:\Windows\system32\drivers\BthEnum.sys
17:33:33.0583 2056 BthEnum - ok
17:33:33.0770 2056 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
17:33:33.0785 2056 BTHMODEM - ok
17:33:34.0066 2056 BthPan (ad1872e5829e8a2c3b5b4b641c3eab0e) C:\Windows\system32\DRIVERS\bthpan.sys
17:33:34.0066 2056 BthPan - ok
17:33:34.0487 2056 BTHPORT (c2fbf6d271d9a94d839c416bf186ead9) C:\Windows\System32\Drivers\BTHport.sys
17:33:34.0534 2056 BTHPORT - ok
17:33:34.0815 2056 BTHUSB (c81e9413a25a439f436b1d4b6a0cf9e9) C:\Windows\System32\Drivers\BTHUSB.sys
17:33:34.0831 2056 BTHUSB - ok
17:33:35.0080 2056 btwaudio (463483285b2d2d345443aaee7b9391e7) C:\Windows\system32\drivers\btwaudio.sys
17:33:35.0096 2056 btwaudio - ok
17:33:35.0517 2056 btwavdt (4f82b6173ef8637cb26cf4e73b90f172) C:\Windows\system32\drivers\btwavdt.sys
17:33:35.0517 2056 btwavdt - ok
17:33:35.0751 2056 btwl2cap (ecb98391c756a7b9cfbae89d9d1235e1) C:\Windows\system32\DRIVERS\btwl2cap.sys
17:33:35.0751 2056 btwl2cap - ok
17:33:35.0876 2056 btwrchid (f771034f5b59a4a5054a2fa6f4e9f28b) C:\Windows\system32\DRIVERS\btwrchid.sys
17:33:35.0876 2056 btwrchid - ok
17:33:36.0157 2056 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
17:33:36.0172 2056 cdfs - ok
17:33:36.0453 2056 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\DRIVERS\cdrom.sys
17:33:36.0453 2056 cdrom - ok
17:33:36.0656 2056 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
17:33:36.0656 2056 circlass - ok
17:33:36.0827 2056 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
17:33:36.0859 2056 CLFS - ok
17:33:37.0186 2056 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
17:33:37.0186 2056 CmBatt - ok
17:33:37.0420 2056 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
17:33:37.0420 2056 cmdide - ok
17:33:37.0670 2056 CNG (6427525d76f61d0c519b008d3680e8e7) C:\Windows\system32\Drivers\cng.sys
17:33:37.0701 2056 CNG - ok
17:33:38.0029 2056 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
17:33:38.0029 2056 Compbatt - ok
17:33:38.0325 2056 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys
17:33:38.0325 2056 CompositeBus - ok
17:33:38.0637 2056 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
17:33:38.0637 2056 crcdisk - ok
17:33:39.0339 2056 dc3d (94010220445f181ade8e7ca9c3a98bf4) C:\Windows\system32\DRIVERS\dc3d.sys
17:33:39.0339 2056 dc3d - ok
17:33:39.0573 2056 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
17:33:39.0573 2056 DfsC - ok
17:33:39.0854 2056 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
17:33:39.0854 2056 discache - ok
17:33:40.0113 2056 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
17:33:40.0113 2056 Disk - ok
17:33:40.0883 2056 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
17:33:40.0883 2056 drmkaud - ok
17:33:41.0103 2056 dvd43llh (1fc1eed3ea0c3a0ecf8a95b97e1b4831) C:\Windows\system32\DRIVERS\dvd43llh.sys
17:33:41.0113 2056 dvd43llh - ok
17:33:41.0523 2056 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
17:33:41.0653 2056 DXGKrnl - ok
17:33:42.0743 2056 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
17:33:42.0813 2056 ebdrv - ok
17:33:43.0123 2056 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
17:33:43.0143 2056 elxstor - ok
17:33:43.0273 2056 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
17:33:43.0283 2056 ErrDev - ok
17:33:43.0483 2056 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
17:33:43.0483 2056 exfat - ok
17:33:43.0653 2056 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
17:33:43.0663 2056 fastfat - ok
17:33:43.0853 2056 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
17:33:43.0853 2056 fdc - ok
17:33:44.0053 2056 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
17:33:44.0053 2056 FileInfo - ok
17:33:44.0683 2056 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
17:33:44.0683 2056 Filetrace - ok
17:33:44.0943 2056 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
17:33:44.0953 2056 flpydisk - ok
17:33:45.0203 2056 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
17:33:45.0213 2056 FltMgr - ok
17:33:45.0423 2056 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
17:33:45.0433 2056 FsDepends - ok
17:33:45.0683 2056 fssfltr (17829180deebf703ec7f445ac3abea99) C:\Windows\system32\DRIVERS\fssfltr.sys
17:33:45.0683 2056 fssfltr - ok
17:33:45.0933 2056 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
17:33:45.0933 2056 Fs_Rec - ok
17:33:46.0273 2056 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
17:33:46.0613 2056 fvevol - ok
17:33:46.0903 2056 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
17:33:46.0903 2056 gagp30kx - ok
17:33:47.0243 2056 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:33:47.0253 2056 GEARAspiWDM - ok
17:33:47.0473 2056 ghaio (31b40f40e09513addc460f6a297ad474) C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys
17:33:47.0483 2056 ghaio - ok
17:33:48.0933 2056 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
17:33:48.0933 2056 hcw85cir - ok
17:33:49.0293 2056 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
17:33:49.0333 2056 HdAudAddService - ok
17:33:49.0613 2056 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys
17:33:49.0613 2056 HDAudBus - ok
17:33:49.0843 2056 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
17:33:49.0853 2056 HidBatt - ok
17:33:50.0044 2056 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
17:33:50.0044 2056 HidBth - ok
17:33:50.0264 2056 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
17:33:50.0264 2056 HidIr - ok
17:33:51.0131 2056 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\drivers\hidusb.sys
17:33:51.0146 2056 HidUsb - ok
17:33:51.0412 2056 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
17:33:51.0427 2056 HpSAMD - ok
17:33:51.0757 2056 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
17:33:51.0807 2056 HTTP - ok
17:33:52.0227 2056 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
17:33:52.0247 2056 hwpolicy - ok
17:33:52.0787 2056 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys
17:33:52.0787 2056 i8042prt - ok
17:33:53.0057 2056 iaStor (9f1220113a3a7f4f08042c699324d073) C:\Windows\system32\DRIVERS\iaStor.sys
17:33:53.0057 2056 iaStor - ok
17:33:53.0377 2056 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
17:33:53.0437 2056 iaStorV - ok
17:33:53.0727 2056 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
17:33:53.0737 2056 iirsp - ok
17:33:54.0417 2056 IntcAzAudAddService (d3a0a2b1543eed8c9370eff3ae5abcfd) C:\Windows\system32\drivers\RTKVHDA.sys
17:33:54.0557 2056 IntcAzAudAddService - ok
17:33:54.0957 2056 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
17:33:54.0977 2056 intelide - ok
17:33:55.0157 2056 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
17:33:55.0157 2056 intelppm - ok
17:33:55.0307 2056 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:33:55.0307 2056 IpFilterDriver - ok
17:33:55.0965 2056 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
17:33:55.0975 2056 IPMIDRV - ok
17:33:56.0885 2056 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
17:33:56.0915 2056 IPNAT - ok
17:33:57.0505 2056 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
17:33:57.0505 2056 IRENUM - ok
17:33:57.0765 2056 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
17:33:57.0765 2056 isapnp - ok
17:33:58.0045 2056 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
17:33:58.0045 2056 iScsiPrt - ok
17:33:58.0515 2056 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\drivers\kbdclass.sys
17:33:58.0525 2056 kbdclass - ok
17:33:58.0898 2056 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\drivers\kbdhid.sys
17:33:58.0898 2056 kbdhid - ok
17:33:59.0179 2056 kbfiltr (7f2b8d0b31fb4a797e5786ef124c5a80) C:\Windows\system32\DRIVERS\kbfiltr.sys
17:33:59.0179 2056 kbfiltr - ok
17:33:59.0564 2056 ksaud (9272a8404ce073d1502ad52c5a1024e3) C:\Windows\system32\drivers\ksaud.sys
17:33:59.0624 2056 ksaud - ok
17:33:59.0924 2056 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\Windows\system32\Drivers\ksecdd.sys
17:33:59.0924 2056 KSecDD - ok
17:34:00.0174 2056 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\Windows\system32\Drivers\ksecpkg.sys
17:34:00.0184 2056 KSecPkg - ok
17:34:00.0794 2056 L1C (1c2af919fde8ed307135b6487af4d7f8) C:\Windows\system32\DRIVERS\L1C60x86.sys
17:34:00.0794 2056 L1C - ok
17:34:01.0094 2056 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
17:34:01.0094 2056 lltdio - ok
17:34:01.0364 2056 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
17:34:01.0364 2056 LSI_FC - ok
17:34:01.0534 2056 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
17:34:01.0534 2056 LSI_SAS - ok
17:34:01.0734 2056 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:34:01.0734 2056 LSI_SAS2 - ok
17:34:01.0914 2056 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:34:01.0914 2056 LSI_SCSI - ok
17:34:02.0184 2056 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
17:34:02.0194 2056 luafv - ok
17:34:02.0834 2056 lullaby (50126b9e0a0dc0675866493a488f6731) C:\Windows\system32\DRIVERS\lullaby.sys
17:34:02.0834 2056 lullaby - ok
17:34:03.0154 2056 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
17:34:03.0154 2056 megasas - ok
17:34:03.0464 2056 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
17:34:03.0504 2056 MegaSR - ok
17:34:03.0794 2056 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
17:34:03.0794 2056 Modem - ok
17:34:04.0024 2056 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
17:34:04.0034 2056 monitor - ok
17:34:04.0574 2056 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\drivers\mouclass.sys
17:34:04.0584 2056 mouclass - ok
17:34:05.0014 2056 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
17:34:05.0024 2056 mouhid - ok
17:34:05.0224 2056 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
17:34:05.0234 2056 mountmgr - ok
17:34:05.0434 2056 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\Windows\system32\DRIVERS\MpFilter.sys
17:34:05.0434 2056 MpFilter - ok
17:34:05.0644 2056 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
17:34:05.0654 2056 mpio - ok
17:34:05.0904 2056 MpNWMon (2c3489660d4a8d514c123c3f0d67df46) C:\Windows\system32\DRIVERS\MpNWMon.sys
17:34:05.0914 2056 MpNWMon - ok
17:34:06.0134 2056 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
17:34:06.0144 2056 mpsdrv - ok
17:34:06.0674 2056 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
17:34:06.0674 2056 MRxDAV - ok
17:34:06.0944 2056 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
17:34:06.0944 2056 mrxsmb - ok
17:34:07.0134 2056 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:34:07.0144 2056 mrxsmb10 - ok
17:34:07.0294 2056 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:34:07.0304 2056 mrxsmb20 - ok
17:34:07.0534 2056 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
17:34:07.0534 2056 msahci - ok
17:34:07.0814 2056 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
17:34:07.0814 2056 msdsm - ok
17:34:08.0054 2056 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
17:34:08.0054 2056 Msfs - ok
17:34:08.0264 2056 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
17:34:08.0274 2056 mshidkmdf - ok
17:34:09.0275 2056 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
17:34:09.0275 2056 msisadrv - ok
17:34:09.0645 2056 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
17:34:09.0645 2056 MSKSSRV - ok
17:34:09.0955 2056 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
17:34:09.0965 2056 MSPCLOCK - ok
17:34:10.0165 2056 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
17:34:10.0185 2056 MSPQM - ok
17:34:10.0943 2056 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
17:34:10.0958 2056 MsRPC - ok
17:34:11.0255 2056 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys
17:34:11.0255 2056 mssmbios - ok
17:34:11.0529 2056 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
17:34:11.0529 2056 MSTEE - ok
17:34:11.0699 2056 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
17:34:11.0699 2056 MTConfig - ok
17:34:11.0929 2056 MTsensor (bb16693616427eac1a436e106ea8d318) C:\Windows\system32\DRIVERS\ATKACPI.sys
17:34:11.0929 2056 MTsensor - ok
17:34:12.0139 2056 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
17:34:12.0149 2056 Mup - ok
17:34:12.0669 2056 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
17:34:12.0869 2056 NativeWifiP - ok
17:34:13.0439 2056 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
17:34:13.0479 2056 NDIS - ok
17:34:14.0140 2056 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
17:34:14.0150 2056 NdisCap - ok
17:34:15.0540 2056 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
17:34:15.0540 2056 NdisTapi - ok
17:34:16.0160 2056 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
17:34:16.0170 2056 Ndisuio - ok
17:34:16.0718 2056 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
17:34:16.0718 2056 NdisWan - ok
17:34:17.0487 2056 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
17:34:17.0497 2056 NDProxy - ok
17:34:18.0137 2056 Ndxsm5wnpt - ok
17:34:19.0161 2056 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
17:34:19.0161 2056 NetBIOS - ok
17:34:19.0988 2056 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
17:34:20.0034 2056 NetBT - ok
17:34:22.0468 2056 NETw5s32 (ef51b405ad8acaae6f0231290d20f516) C:\Windows\system32\DRIVERS\NETw5s32.sys
17:34:22.0593 2056 NETw5s32 - ok
17:34:24.0683 2056 netw5v32 (58218ec6b61b1169cf54aab0d00f5fe2) C:\Windows\system32\DRIVERS\netw5v32.sys
17:34:24.0792 2056 netw5v32 - ok
17:34:26.0073 2056 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
17:34:26.0088 2056 nfrd960 - ok
17:34:26.0526 2056 NisDrv (7b01c6172cfd0b10116175e09200d4b4) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
17:34:26.0526 2056 NisDrv - ok
17:34:27.0368 2056 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
17:34:27.0368 2056 Npfs - ok
17:34:31.0067 2056 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
17:34:31.0082 2056 nsiproxy - ok
17:34:31.0347 2056 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
17:34:31.0379 2056 Ntfs - ok
17:34:31.0472 2056 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
17:34:31.0472 2056 Null - ok
17:34:31.0675 2056 NVHDA (0e40ef12bc029ff8b13043f157452c47) C:\Windows\system32\drivers\nvhda32v.sys
17:34:31.0675 2056 NVHDA - ok
17:34:33.0157 2056 nvlddmkm (bd409de5681c74c1de51d72427dc202d) C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:34:33.0375 2056 nvlddmkm - ok
17:34:33.0734 2056 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
17:34:33.0734 2056 nvraid - ok
17:34:33.0999 2056 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
17:34:33.0999 2056 nvstor - ok
17:34:34.0249 2056 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
17:34:34.0265 2056 nv_agp - ok
17:34:34.0592 2056 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
17:34:34.0608 2056 ohci1394 - ok
17:34:34.0920 2056 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
17:34:34.0920 2056 Parport - ok
17:34:35.0107 2056 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys
17:34:35.0123 2056 partmgr - ok
17:34:35.0232 2056 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
17:34:35.0232 2056 Parvdm - ok
17:34:35.0528 2056 pavboot (3adb8bd6154a3ef87496e8fce9c22493) C:\Windows\system32\drivers\pavboot.sys
17:34:35.0528 2056 pavboot - ok
17:34:35.0825 2056 PcaSp60 (dd74552152055a8493872930a64e70dc) C:\Windows\system32\DRIVERS\PcaSp60.sys
17:34:35.0840 2056 PcaSp60 - ok
17:34:36.0090 2056 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
17:34:36.0121 2056 pci - ok
17:34:36.0542 2056 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
17:34:36.0542 2056 pciide - ok
17:34:36.0854 2056 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
17:34:36.0854 2056 pcmcia - ok
17:34:37.0119 2056 pcouffin (5b6c11de7e839c05248ced8825470fef) C:\Windows\system32\Drivers\pcouffin.sys
17:34:37.0119 2056 pcouffin - ok
17:34:37.0478 2056 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
17:34:37.0478 2056 pcw - ok
17:34:37.0868 2056 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
17:34:37.0915 2056 PEAUTH - ok
17:34:38.0274 2056 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
17:34:38.0274 2056 PptpMiniport - ok
17:34:38.0882 2056 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
17:34:38.0882 2056 Processor - ok
17:34:39.0303 2056 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
17:34:39.0303 2056 Psched - ok
17:34:39.0615 2056 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
17:34:39.0678 2056 ql2300 - ok
17:34:39.0912 2056 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
17:34:39.0927 2056 ql40xx - ok
17:34:40.0083 2056 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
17:34:40.0083 2056 QWAVEdrv - ok
17:34:40.0349 2056 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
17:34:40.0364 2056 RasAcd - ok
17:34:40.0926 2056 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
17:34:40.0926 2056 RasAgileVpn - ok
17:34:41.0316 2056 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
17:34:41.0331 2056 Rasl2tp - ok
17:34:41.0519 2056 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
17:34:41.0519 2056 RasPppoe - ok
17:34:41.0753 2056 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
17:34:41.0753 2056 RasSstp - ok
17:34:41.0987 2056 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
17:34:42.0018 2056 rdbss - ok
17:34:42.0954 2056 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
17:34:42.0954 2056 rdpbus - ok
17:34:43.0250 2056 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
17:34:43.0250 2056 RDPCDD - ok
17:34:43.0469 2056 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
17:34:43.0469 2056 RDPENCDD - ok
17:34:43.0640 2056 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
17:34:43.0640 2056 RDPREFMP - ok
17:34:43.0843 2056 RDPWD (288b06960d78428ff89e811632684e20) C:\Windows\system32\drivers\RDPWD.sys
17:34:43.0843 2056 RDPWD - ok
17:34:44.0108 2056 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
17:34:44.0139 2056 rdyboost - ok
17:34:44.0795 2056 RFCOMM (cb928d9e6daf51879dd6ba8d02f01321) C:\Windows\system32\DRIVERS\rfcomm.sys
17:34:44.0795 2056 RFCOMM - ok
17:34:45.0107 2056 rimmptsk (a5b12a4b3b774432db9b9fa221190e59) C:\Windows\system32\DRIVERS\rimmptsk.sys
17:34:45.0107 2056 rimmptsk - ok
17:34:45.0356 2056 rimsptsk (c398bca91216755b098679a8da8a2300) C:\Windows\system32\DRIVERS\rimsptsk.sys
17:34:45.0356 2056 rimsptsk - ok
17:34:45.0668 2056 rismxdp (2a2554cb24506e0a0508fc395c4a1b42) C:\Windows\system32\DRIVERS\rixdptsk.sys
17:34:45.0668 2056 rismxdp - ok
17:34:45.0918 2056 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
17:34:45.0918 2056 rspndr - ok
17:34:46.0433 2056 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
17:34:46.0448 2056 sbp2port - ok
17:34:46.0885 2056 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
17:34:46.0901 2056 scfilter - ok
17:34:47.0275 2056 sdbus (0328be1c7f1cba23848179f8762e391c) C:\Windows\system32\drivers\sdbus.sys
17:34:47.0291 2056 sdbus - ok
17:34:47.0618 2056 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
17:34:47.0618 2056 secdrv - ok
17:34:47.0821 2056 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
17:34:47.0821 2056 Serenum - ok
17:34:48.0008 2056 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
17:34:48.0008 2056 Serial - ok
17:34:48.0211 2056 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
17:34:48.0211 2056 sermouse - ok
17:34:48.0539 2056 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
17:34:48.0539 2056 sffdisk - ok
17:34:48.0648 2056 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
17:34:48.0648 2056 sffp_mmc - ok
17:34:48.0944 2056 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
17:34:48.0960 2056 sffp_sd - ok
17:34:49.0178 2056 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
17:34:49.0194 2056 sfloppy - ok
17:34:49.0740 2056 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
17:34:49.0755 2056 sisagp - ok
17:34:50.0301 2056 SiSGbeLH (6f0c643c7f49f2091b01d014eae72e1a) C:\Windows\system32\DRIVERS\SiSGB6.sys
17:34:50.0301 2056 SiSGbeLH - ok
17:34:51.0035 2056 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:34:51.0035 2056 SiSRaid2 - ok
17:34:51.0222 2056 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
17:34:51.0222 2056 SiSRaid4 - ok
17:34:51.0487 2056 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
17:34:51.0487 2056 Smb - ok
17:34:52.0111 2056 SNP2UVC (060f51141b20b8156804446a04ab8b2a) C:\Windows\system32\DRIVERS\snp2uvc.sys
17:34:52.0173 2056 SNP2UVC - ok
17:34:52.0797 2056 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
17:34:52.0813 2056 spldr - ok
17:34:53.0265 2056 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
17:34:53.0328 2056 srv - ok
17:34:53.0640 2056 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
17:34:53.0687 2056 srv2 - ok
17:34:53.0905 2056 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
17:34:53.0905 2056 srvnet - ok
17:34:54.0498 2056 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
17:34:54.0498 2056 stexstor - ok
17:34:54.0794 2056 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys
17:34:54.0794 2056 swenum - ok
17:34:55.0059 2056 SynTP (55f6e55cc2430ca8713387106fa79817) C:\Windows\system32\DRIVERS\SynTP.sys
17:34:55.0059 2056 SynTP - ok
17:34:55.0481 2056 Tcpip (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\drivers\tcpip.sys
17:34:55.0527 2056 Tcpip - ok
17:34:55.0777 2056 TCPIP6 (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\DRIVERS\tcpip.sys
17:34:55.0808 2056 TCPIP6 - ok
17:34:56.0120 2056 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
17:34:56.0120 2056 tcpipreg - ok
17:34:56.0666 2056 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
17:34:56.0666 2056 TDPIPE - ok
17:34:57.0072 2056 TDTCP (2c10395baa4847f83042813c515cc289) C:\Windows\system32\drivers\tdtcp.sys
17:34:57.0072 2056 TDTCP - ok
17:34:57.0275 2056 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
17:34:57.0275 2056 tdx - ok
17:34:57.0493 2056 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys
17:34:57.0493 2056 TermDD - ok
17:34:57.0789 2056 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
17:34:57.0789 2056 tssecsrv - ok
17:34:58.0101 2056 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
17:34:58.0101 2056 TsUsbFlt - ok
17:34:58.0647 2056 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
17:34:58.0647 2056 tunnel - ok
17:34:58.0913 2056 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
17:34:58.0913 2056 uagp35 - ok
17:34:59.0100 2056 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
17:34:59.0115 2056 udfs - ok
17:34:59.0303 2056 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
17:34:59.0303 2056 uliagpkx - ok
17:34:59.0568 2056 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\drivers\umbus.sys
17:34:59.0583 2056 umbus - ok
17:34:59.0771 2056 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
17:34:59.0771 2056 UmPass - ok
17:35:00.0067 2056 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
17:35:00.0067 2056 USBAAPL - ok
17:35:00.0519 2056 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
17:35:00.0675 2056 usbccgp - ok
17:35:01.0003 2056 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
17:35:01.0003 2056 usbcir - ok
17:35:01.0377 2056 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys
17:35:01.0393 2056 usbehci - ok
17:35:01.0955 2056 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
17:35:01.0986 2056 usbhub - ok
17:35:02.0251 2056 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\drivers\usbohci.sys
17:35:02.0251 2056 usbohci - ok
17:35:02.0750 2056 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
17:35:02.0750 2056 usbprint - ok
17:35:03.0000 2056 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
17:35:03.0000 2056 usbscan - ok
17:35:03.0218 2056 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:35:03.0249 2056 USBSTOR - ok
17:35:03.0437 2056 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\DRIVERS\usbuhci.sys
17:35:03.0437 2056 usbuhci - ok
17:35:03.0717 2056 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\Windows\System32\Drivers\usbvideo.sys
17:35:03.0733 2056 usbvideo - ok
17:35:04.0014 2056 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
17:35:04.0014 2056 vdrvroot - ok
17:35:04.0404 2056 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
17:35:04.0419 2056 vga - ok
17:35:05.0012 2056 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
17:35:05.0028 2056 VgaSave - ok
17:35:05.0231 2056 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
17:35:05.0277 2056 vhdmp - ok
17:35:05.0527 2056 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
17:35:05.0543 2056 viaagp - ok
17:35:05.0730 2056 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
17:35:05.0730 2056 ViaC7 - ok
17:35:05.0917 2056 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
17:35:05.0917 2056 viaide - ok
17:35:06.0182 2056 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
17:35:06.0198 2056 volmgr - ok
17:35:06.0728 2056 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
17:35:06.0744 2056 volmgrx - ok
17:35:07.0134 2056 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
17:35:07.0134 2056 volsnap - ok
17:35:07.0430 2056 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
17:35:07.0446 2056 vsmraid - ok
17:35:08.0366 2056 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys
17:35:08.0366 2056 vwifibus - ok
17:35:09.0271 2056 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
17:35:09.0271 2056 vwififlt - ok
17:35:09.0989 2056 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\Windows\system32\DRIVERS\vwifimp.sys
17:35:10.0004 2056 vwifimp - ok
17:35:10.0878 2056 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
17:35:10.0878 2056 WacomPen - ok
17:35:11.0580 2056 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
17:35:11.0627 2056 WANARP - ok
17:35:11.0923 2056 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
17:35:11.0923 2056 Wanarpv6 - ok
17:35:13.0077 2056 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
17:35:13.0093 2056 Wd - ok
17:35:13.0982 2056 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
17:35:14.0029 2056 Wdf01000 - ok
17:35:15.0183 2056 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
17:35:15.0183 2056 WfpLwf - ok
17:35:15.0963 2056 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
17:35:15.0963 2056 WIMMount - ok
17:35:17.0243 2056 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUsb.sys
17:35:17.0243 2056 WinUsb - ok
17:35:17.0695 2056 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
17:35:17.0695 2056 WmiAcpi - ok
17:35:18.0319 2056 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
17:35:18.0335 2056 ws2ifsl - ok
17:35:19.0239 2056 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
17:35:19.0239 2056 WudfPf - ok
17:35:20.0004 2056 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
17:35:20.0004 2056 WUDFRd - ok
17:35:20.0144 2056 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
17:35:24.0731 2056 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
17:35:24.0731 2056 \Device\Harddisk0\DR0 - detected TDSS File System (1)
17:35:24.0746 2056 MBR (0x1B8) (65e858a8a0293be11a920b0bc99d695e) \Device\Harddisk1\DR3
17:35:25.0323 2056 \Device\Harddisk1\DR3 - ok
17:35:25.0448 2056 Boot (0x1200) (0ef7e870aa4b79d4c5786117c5649f8c) \Device\Harddisk0\DR0\Partition0
17:35:25.0448 2056 \Device\Harddisk0\DR0\Partition0 - ok
17:35:25.0464 2056 Boot (0x1200) (dca6452e1f59336d7ffded675d9aff49) \Device\Harddisk0\DR0\Partition1
17:35:25.0464 2056 \Device\Harddisk0\DR0\Partition1 - ok
17:35:25.0479 2056 Boot (0x1200) (d9039f4e8fee03a80e816935062a6e31) \Device\Harddisk1\DR3\Partition0
17:35:25.0479 2056 \Device\Harddisk1\DR3\Partition0 - ok
17:35:25.0479 2056 ============================================================
17:35:25.0479 2056 Scan finished
17:35:25.0479 2056 ============================================================
17:35:25.0526 5612 Detected object count: 1
17:35:25.0526 5612 Actual detected object count: 1
17:35:37.0960 5612 \Device\Harddisk0\DR0\TDLFS\phm - copied to quarantine
17:35:37.0991 5612 \Device\Harddisk0\DR0\TDLFS\ph.dll - copied to quarantine
17:35:38.0459 5612 \Device\Harddisk0\DR0\TDLFS\phx.dll - copied to quarantine
17:35:39.0098 5612 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
17:35:39.0176 5612 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
17:35:39.0395 5612 \Device\Harddisk0\DR0\TDLFS\phd - copied to quarantine
17:35:41.0844 5612 \Device\Harddisk0\DR0\TDLFS\phdx - copied to quarantine
17:35:41.0891 5612 \Device\Harddisk0\DR0\TDLFS\phs - copied to quarantine
17:35:41.0891 5612 \Device\Harddisk0\DR0\TDLFS\phdata - copied to quarantine
17:35:41.0922 5612 \Device\Harddisk0\DR0\TDLFS\phld - copied to quarantine
17:35:41.0938 5612 \Device\Harddisk0\DR0\TDLFS\phln - copied to quarantine
17:35:42.0062 5612 \Device\Harddisk0\DR0\TDLFS\phlx - copied to quarantine
17:35:42.0062 5612 \Device\Harddisk0\DR0\TDLFS - deleted
17:35:42.0062 5612 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete
17:36:21.0869 0684 Deinitialize success


Malwarebytes log:

Malwarebytes Anti-Malware 1.60.1.1000
www.malwarebytes.org

Database version: v2012.02.21.01

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
kidwonder :: VADER [administrator]

2/20/2012 5:40:12 PM
mbam-log-2012-02-20 (19-48-39).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 287121
Time elapsed: 1 hour(s), 56 minute(s), 9 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 1
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (Adware.MyWebSearch) -> No action taken.

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 2
C:\ProgramData\Microsoft\Windows\DRM\64EB.tmp (Trojan.Agent) -> No action taken.
C:\Users\kidwonder\AppData\Local\Temp\7C91.tmp (Trojan.Agent) -> No action taken.

(end)
Those two items were cleaned. Guess I saved the log before I did that. Dammit...

ESET LIST:

C:\Program Files\ASUS\RT-N56U Wireless Router Utilities\QISWizard.exe probably unknown NewHeur_PE virus deleted - quarantined
C:\TDSSKiller_Quarantine\20.02.2012_16.37.01\mbr0000\tdlfs0000\tsk0002.dta Win64/Olmarik.AD trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\20.02.2012_16.37.01\mbr0000\tdlfs0000\tsk0003.dta Win32/Olmarik.AYH trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\20.02.2012_16.37.01\mbr0000\tdlfs0000\tsk0004.dta Win64/Olmarik.AE trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\20.02.2012_17.32.21\tdlfs0000\tsk0002.dta Win64/Olmarik.AD trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\20.02.2012_17.32.21\tdlfs0000\tsk0003.dta Win32/Olmarik.AYH trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\20.02.2012_17.32.21\tdlfs0000\tsk0004.dta Win64/Olmarik.AE trojan cleaned by deleting - quarantined
C:\Users\kidwonder\Downloads\Setup_FreeConverter.exe Win32/Adware.Toolbar.Dealio application deleted - quarantined
C:\Users\kidwonder\Downloads\winamp5572_full_emusic-7plus_en-us(2).exe Win32/OpenCandy application deleted - quarantined
C:\Users\kidwonder\Downloads\winamp5572_full_emusic-7plus_en-us.exe Win32/OpenCandy application deleted - quarantined

There's all of it! :) So what now? lol

#10 narenxp

narenxp

    Forum Addict

  • BC Advisor
  • PipPipPipPipPipPip
  • 16,365 posts
  • Gender:Male
  • Location:India

Posted 21 February 2012 - 12:27 AM

Hi

I want you to run TDSSkiller once again to make sure it comes out CLEAN

Those two items were cleaned. Guess I saved the log before I did that.


Run mbam scan once more,make sure that it comes out clean

Click on QUARANTINE tab-select all the infectionS-click on DELETE ALL

Download

FSS

Checkmark ALL THE BOXES

Click on "Scan".
Please copy and paste the log to your reply.


404 NGINX is usually a HOSTS hijack

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Edited by narenxp, 21 February 2012 - 12:28 AM.

#11 jameswest

jameswest

    New Member

  • Members
  • Pip
  • 10 posts

Posted 21 February 2012 - 12:34 AM

Alright. Here goes...

#12 jameswest

jameswest

    New Member

  • Members
  • Pip
  • 10 posts

Posted 21 February 2012 - 01:43 AM

21:34:18.0297 3112 TDSS rootkit removing tool 2.7.13.0 Feb 15 2012 19:33:14
21:34:18.0859 3112 ============================================================
21:34:18.0859 3112 Current date / time: 2012/02/20 21:34:18.0859
21:34:18.0859 3112 SystemInfo:
21:34:18.0859 3112
21:34:18.0859 3112 OS Version: 6.1.7601 ServicePack: 1.0
21:34:18.0874 3112 Product type: Workstation
21:34:18.0874 3112 ComputerName: VADER
21:34:18.0874 3112 UserName: kidwonder
21:34:18.0874 3112 Windows directory: C:\Windows
21:34:18.0874 3112 System windows directory: C:\Windows
21:34:18.0874 3112 Processor architecture: Intel x86
21:34:18.0874 3112 Number of processors: 2
21:34:18.0874 3112 Page size: 0x1000
21:34:18.0874 3112 Boot type: Normal boot
21:34:18.0874 3112 ============================================================
21:34:19.0670 3112 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
21:34:19.0670 3112 \Device\Harddisk0\DR0:
21:34:19.0670 3112 MBR used
21:34:19.0670 3112 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1770D7A, BlocksNum 0x12A14C00
21:34:19.0701 3112 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x141859B9, BlocksNum 0x112A7D08
21:34:19.0763 3112 Initialize success
21:34:19.0763 3112 ============================================================
21:34:37.0285 4668 ============================================================
21:34:37.0285 4668 Scan started
21:34:37.0285 4668 Mode: Manual; TDLFS;
21:34:37.0285 4668 ============================================================
21:34:37.0904 4668 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
21:34:37.0920 4668 1394ohci - ok
21:34:37.0936 4668 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
21:34:37.0951 4668 ACPI - ok
21:34:37.0998 4668 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
21:34:38.0014 4668 AcpiPmi - ok
21:34:38.0138 4668 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
21:34:38.0138 4668 adp94xx - ok
21:34:38.0185 4668 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
21:34:38.0185 4668 adpahci - ok
21:34:38.0201 4668 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
21:34:38.0201 4668 adpu320 - ok
21:34:38.0279 4668 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
21:34:38.0279 4668 AFD - ok
21:34:38.0310 4668 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
21:34:38.0310 4668 agp440 - ok
21:34:38.0341 4668 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
21:34:38.0341 4668 aic78xx - ok
21:34:38.0404 4668 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
21:34:38.0404 4668 aliide - ok
21:34:38.0419 4668 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
21:34:38.0419 4668 amdagp - ok
21:34:38.0450 4668 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
21:34:38.0450 4668 amdide - ok
21:34:38.0482 4668 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
21:34:38.0497 4668 AmdK8 - ok
21:34:38.0528 4668 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
21:34:38.0528 4668 AmdPPM - ok
21:34:38.0575 4668 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
21:34:38.0575 4668 amdsata - ok
21:34:38.0606 4668 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
21:34:38.0606 4668 amdsbs - ok
21:34:38.0622 4668 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
21:34:38.0622 4668 amdxata - ok
21:34:38.0669 4668 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
21:34:38.0669 4668 AppID - ok
21:34:38.0716 4668 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
21:34:38.0716 4668 arc - ok
21:34:38.0731 4668 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
21:34:38.0731 4668 arcsas - ok
21:34:38.0825 4668 ASMMAP (7b4d08d2017ac06689d422e06c43f0aa) C:\Program Files\ATKGFNEX\ASMMAP.sys
21:34:38.0825 4668 ASMMAP - ok
21:34:38.0872 4668 ASPI (e54e27976e2c5a6465d44c10b1d87ac0) C:\Windows\System32\DRIVERS\ASPI32.sys
21:34:38.0872 4668 ASPI - ok
21:34:38.0887 4668 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
21:34:38.0903 4668 AsyncMac - ok
21:34:38.0934 4668 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
21:34:38.0934 4668 atapi - ok
21:34:38.0996 4668 athr (76bab0c824e2d05b940c4dd40a9b08bf) C:\Windows\system32\DRIVERS\athr.sys
21:34:39.0012 4668 athr - ok
21:34:39.0074 4668 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
21:34:39.0090 4668 b06bdrv - ok
21:34:39.0121 4668 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
21:34:39.0137 4668 b57nd60x - ok
21:34:39.0168 4668 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
21:34:39.0168 4668 Beep - ok
21:34:39.0199 4668 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
21:34:39.0215 4668 blbdrive - ok
21:34:39.0246 4668 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
21:34:39.0246 4668 bowser - ok
21:34:39.0277 4668 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:34:39.0277 4668 BrFiltLo - ok
21:34:39.0293 4668 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:34:39.0293 4668 BrFiltUp - ok
21:34:39.0324 4668 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
21:34:39.0324 4668 Brserid - ok
21:34:39.0340 4668 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
21:34:39.0340 4668 BrSerWdm - ok
21:34:39.0355 4668 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
21:34:39.0355 4668 BrUsbMdm - ok
21:34:39.0386 4668 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
21:34:39.0386 4668 BrUsbSer - ok
21:34:39.0433 4668 BthEnum (2865a5c8e98c70c605f417908cebb3a4) C:\Windows\system32\drivers\BthEnum.sys
21:34:39.0433 4668 BthEnum - ok
21:34:39.0449 4668 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
21:34:39.0449 4668 BTHMODEM - ok
21:34:39.0480 4668 BthPan (ad1872e5829e8a2c3b5b4b641c3eab0e) C:\Windows\system32\DRIVERS\bthpan.sys
21:34:39.0480 4668 BthPan - ok
21:34:39.0558 4668 BTHPORT (c2fbf6d271d9a94d839c416bf186ead9) C:\Windows\System32\Drivers\BTHport.sys
21:34:39.0558 4668 BTHPORT - ok
21:34:39.0605 4668 BTHUSB (c81e9413a25a439f436b1d4b6a0cf9e9) C:\Windows\System32\Drivers\BTHUSB.sys
21:34:39.0605 4668 BTHUSB - ok
21:34:39.0667 4668 btwaudio (463483285b2d2d345443aaee7b9391e7) C:\Windows\system32\drivers\btwaudio.sys
21:34:39.0667 4668 btwaudio - ok
21:34:39.0683 4668 btwavdt (4f82b6173ef8637cb26cf4e73b90f172) C:\Windows\system32\drivers\btwavdt.sys
21:34:39.0683 4668 btwavdt - ok
21:34:39.0714 4668 btwl2cap (ecb98391c756a7b9cfbae89d9d1235e1) C:\Windows\system32\DRIVERS\btwl2cap.sys
21:34:39.0714 4668 btwl2cap - ok
21:34:39.0730 4668 btwrchid (f771034f5b59a4a5054a2fa6f4e9f28b) C:\Windows\system32\DRIVERS\btwrchid.sys
21:34:39.0730 4668 btwrchid - ok
21:34:39.0792 4668 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
21:34:39.0808 4668 cdfs - ok
21:34:39.0839 4668 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\DRIVERS\cdrom.sys
21:34:39.0854 4668 cdrom - ok
21:34:39.0886 4668 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
21:34:39.0886 4668 circlass - ok
21:34:39.0932 4668 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
21:34:39.0932 4668 CLFS - ok
21:34:39.0979 4668 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
21:34:40.0026 4668 CmBatt - ok
21:34:40.0057 4668 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
21:34:40.0057 4668 cmdide - ok
21:34:40.0088 4668 CNG (6427525d76f61d0c519b008d3680e8e7) C:\Windows\system32\Drivers\cng.sys
21:34:40.0088 4668 CNG - ok
21:34:40.0135 4668 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
21:34:40.0135 4668 Compbatt - ok
21:34:40.0182 4668 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys
21:34:40.0198 4668 CompositeBus - ok
21:34:40.0213 4668 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
21:34:40.0213 4668 crcdisk - ok
21:34:40.0276 4668 dc3d (94010220445f181ade8e7ca9c3a98bf4) C:\Windows\system32\DRIVERS\dc3d.sys
21:34:40.0291 4668 dc3d - ok
21:34:40.0322 4668 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
21:34:40.0322 4668 DfsC - ok
21:34:40.0354 4668 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
21:34:40.0354 4668 discache - ok
21:34:40.0385 4668 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
21:34:40.0400 4668 Disk - ok
21:34:40.0416 4668 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
21:34:40.0416 4668 drmkaud - ok
21:34:40.0447 4668 dvd43llh (1fc1eed3ea0c3a0ecf8a95b97e1b4831) C:\Windows\system32\DRIVERS\dvd43llh.sys
21:34:40.0447 4668 dvd43llh - ok
21:34:40.0494 4668 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
21:34:40.0510 4668 DXGKrnl - ok
21:34:40.0603 4668 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
21:34:40.0666 4668 ebdrv - ok
21:34:40.0728 4668 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
21:34:40.0728 4668 elxstor - ok
21:34:40.0790 4668 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
21:34:40.0806 4668 ErrDev - ok
21:34:40.0853 4668 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
21:34:40.0853 4668 exfat - ok
21:34:40.0884 4668 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
21:34:40.0884 4668 fastfat - ok
21:34:40.0900 4668 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
21:34:40.0900 4668 fdc - ok
21:34:40.0931 4668 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
21:34:40.0931 4668 FileInfo - ok
21:34:40.0946 4668 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
21:34:40.0946 4668 Filetrace - ok
21:34:40.0962 4668 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
21:34:40.0962 4668 flpydisk - ok
21:34:41.0009 4668 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
21:34:41.0009 4668 FltMgr - ok
21:34:41.0040 4668 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
21:34:41.0040 4668 FsDepends - ok
21:34:41.0071 4668 fssfltr (17829180deebf703ec7f445ac3abea99) C:\Windows\system32\DRIVERS\fssfltr.sys
21:34:41.0087 4668 fssfltr - ok
21:34:41.0118 4668 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
21:34:41.0118 4668 Fs_Rec - ok
21:34:41.0180 4668 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
21:34:41.0180 4668 fvevol - ok
21:34:41.0212 4668 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
21:34:41.0227 4668 gagp30kx - ok
21:34:41.0274 4668 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:34:41.0274 4668 GEARAspiWDM - ok
21:34:41.0368 4668 ghaio (31b40f40e09513addc460f6a297ad474) C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys
21:34:41.0368 4668 ghaio - ok
21:34:41.0477 4668 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
21:34:41.0477 4668 hcw85cir - ok
21:34:41.0539 4668 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
21:34:41.0539 4668 HdAudAddService - ok
21:34:41.0570 4668 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys
21:34:41.0570 4668 HDAudBus - ok
21:34:41.0602 4668 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
21:34:41.0602 4668 HidBatt - ok
21:34:41.0617 4668 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
21:34:41.0617 4668 HidBth - ok
21:34:41.0633 4668 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
21:34:41.0633 4668 HidIr - ok
21:34:41.0680 4668 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\drivers\hidusb.sys
21:34:41.0680 4668 HidUsb - ok
21:34:41.0726 4668 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
21:34:41.0726 4668 HpSAMD - ok
21:34:41.0773 4668 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
21:34:41.0789 4668 HTTP - ok
21:34:41.0836 4668 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
21:34:41.0836 4668 hwpolicy - ok
21:34:41.0867 4668 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys
21:34:41.0867 4668 i8042prt - ok
21:34:41.0929 4668 iaStor (9f1220113a3a7f4f08042c699324d073) C:\Windows\system32\DRIVERS\iaStor.sys
21:34:41.0929 4668 iaStor - ok
21:34:41.0960 4668 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
21:34:41.0976 4668 iaStorV - ok
21:34:42.0023 4668 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
21:34:42.0023 4668 iirsp - ok
21:34:42.0132 4668 IntcAzAudAddService (d3a0a2b1543eed8c9370eff3ae5abcfd) C:\Windows\system32\drivers\RTKVHDA.sys
21:34:42.0179 4668 IntcAzAudAddService - ok
21:34:42.0210 4668 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
21:34:42.0210 4668 intelide - ok
21:34:42.0257 4668 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
21:34:42.0257 4668 intelppm - ok
21:34:42.0272 4668 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:34:42.0272 4668 IpFilterDriver - ok
21:34:42.0319 4668 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
21:34:42.0319 4668 IPMIDRV - ok
21:34:42.0350 4668 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
21:34:42.0350 4668 IPNAT - ok
21:34:42.0413 4668 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
21:34:42.0413 4668 IRENUM - ok
21:34:42.0428 4668 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
21:34:42.0428 4668 isapnp - ok
21:34:42.0460 4668 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
21:34:42.0460 4668 iScsiPrt - ok
21:34:42.0491 4668 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\drivers\kbdclass.sys
21:34:42.0491 4668 kbdclass - ok
21:34:42.0506 4668 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\drivers\kbdhid.sys
21:34:42.0522 4668 kbdhid - ok
21:34:42.0569 4668 kbfiltr (7f2b8d0b31fb4a797e5786ef124c5a80) C:\Windows\system32\DRIVERS\kbfiltr.sys
21:34:42.0569 4668 kbfiltr - ok
21:34:42.0647 4668 ksaud (9272a8404ce073d1502ad52c5a1024e3) C:\Windows\system32\drivers\ksaud.sys
21:34:42.0662 4668 ksaud - ok
21:34:42.0678 4668 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\Windows\system32\Drivers\ksecdd.sys
21:34:42.0678 4668 KSecDD - ok
21:34:42.0709 4668 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\Windows\system32\Drivers\ksecpkg.sys
21:34:42.0709 4668 KSecPkg - ok
21:34:42.0725 4668 L1C (1c2af919fde8ed307135b6487af4d7f8) C:\Windows\system32\DRIVERS\L1C60x86.sys
21:34:42.0725 4668 L1C - ok
21:34:42.0787 4668 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
21:34:42.0803 4668 lltdio - ok
21:34:42.0834 4668 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
21:34:42.0834 4668 LSI_FC - ok
21:34:42.0865 4668 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
21:34:42.0865 4668 LSI_SAS - ok
21:34:42.0881 4668 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:34:42.0896 4668 LSI_SAS2 - ok
21:34:42.0912 4668 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:34:42.0912 4668 LSI_SCSI - ok
21:34:42.0943 4668 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
21:34:42.0943 4668 luafv - ok
21:34:42.0990 4668 lullaby (50126b9e0a0dc0675866493a488f6731) C:\Windows\system32\DRIVERS\lullaby.sys
21:34:42.0990 4668 lullaby - ok
21:34:43.0021 4668 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
21:34:43.0021 4668 megasas - ok
21:34:43.0068 4668 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
21:34:43.0068 4668 MegaSR - ok
21:34:43.0115 4668 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
21:34:43.0130 4668 Modem - ok
21:34:43.0162 4668 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
21:34:43.0162 4668 monitor - ok
21:34:43.0208 4668 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\drivers\mouclass.sys
21:34:43.0208 4668 mouclass - ok
21:34:43.0271 4668 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
21:34:43.0271 4668 mouhid - ok
21:34:43.0333 4668 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
21:34:43.0333 4668 mountmgr - ok
21:34:43.0380 4668 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\Windows\system32\DRIVERS\MpFilter.sys
21:34:43.0380 4668 MpFilter - ok
21:34:43.0411 4668 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
21:34:43.0427 4668 mpio - ok
21:34:43.0536 4668 MpKsl91903089 (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AEBED1B0-6A16-4C24-9AD8-BE34400C820F}\MpKsl91903089.sys
21:34:43.0536 4668 MpKsl91903089 - ok
21:34:43.0552 4668 MpNWMon (2c3489660d4a8d514c123c3f0d67df46) C:\Windows\system32\DRIVERS\MpNWMon.sys
21:34:43.0552 4668 MpNWMon - ok
21:34:43.0598 4668 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
21:34:43.0598 4668 mpsdrv - ok
21:34:43.0630 4668 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
21:34:43.0630 4668 MRxDAV - ok
21:34:43.0676 4668 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:34:43.0676 4668 mrxsmb - ok
21:34:43.0723 4668 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:34:43.0723 4668 mrxsmb10 - ok
21:34:43.0739 4668 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:34:43.0739 4668 mrxsmb20 - ok
21:34:43.0801 4668 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
21:34:43.0801 4668 msahci - ok
21:34:43.0832 4668 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
21:34:43.0832 4668 msdsm - ok
21:34:43.0895 4668 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
21:34:43.0895 4668 Msfs - ok
21:34:43.0926 4668 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
21:34:43.0926 4668 mshidkmdf - ok
21:34:43.0942 4668 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
21:34:43.0942 4668 msisadrv - ok
21:34:43.0989 4668 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
21:34:43.0989 4668 MSKSSRV - ok
21:34:44.0051 4668 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
21:34:44.0051 4668 MSPCLOCK - ok
21:34:44.0067 4668 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
21:34:44.0067 4668 MSPQM - ok
21:34:44.0098 4668 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
21:34:44.0098 4668 MsRPC - ok
21:34:44.0129 4668 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys
21:34:44.0129 4668 mssmbios - ok
21:34:44.0160 4668 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
21:34:44.0160 4668 MSTEE - ok
21:34:44.0176 4668 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
21:34:44.0176 4668 MTConfig - ok
21:34:44.0223 4668 MTsensor (bb16693616427eac1a436e106ea8d318) C:\Windows\system32\DRIVERS\ATKACPI.sys
21:34:44.0223 4668 MTsensor - ok
21:34:44.0238 4668 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
21:34:44.0238 4668 Mup - ok
21:34:44.0301 4668 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
21:34:44.0316 4668 NativeWifiP - ok
21:34:44.0347 4668 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
21:34:44.0363 4668 NDIS - ok
21:34:44.0410 4668 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
21:34:44.0410 4668 NdisCap - ok
21:34:44.0441 4668 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
21:34:44.0441 4668 NdisTapi - ok
21:34:44.0488 4668 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
21:34:44.0503 4668 Ndisuio - ok
21:34:44.0535 4668 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
21:34:44.0535 4668 NdisWan - ok
21:34:44.0581 4668 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
21:34:44.0581 4668 NDProxy - ok
21:34:44.0628 4668 Ndxsm5wnpt - ok
21:34:44.0659 4668 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
21:34:44.0659 4668 NetBIOS - ok
21:34:44.0706 4668 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
21:34:44.0706 4668 NetBT - ok
21:34:44.0893 4668 NETw5s32 (ef51b405ad8acaae6f0231290d20f516) C:\Windows\system32\DRIVERS\NETw5s32.sys
21:34:45.0003 4668 NETw5s32 - ok
21:34:45.0143 4668 netw5v32 (58218ec6b61b1169cf54aab0d00f5fe2) C:\Windows\system32\DRIVERS\netw5v32.sys
21:34:45.0237 4668 netw5v32 - ok
21:34:45.0283 4668 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
21:34:45.0283 4668 nfrd960 - ok
21:34:45.0315 4668 NisDrv (7b01c6172cfd0b10116175e09200d4b4) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
21:34:45.0315 4668 NisDrv - ok
21:34:45.0377 4668 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
21:34:45.0377 4668 Npfs - ok
21:34:45.0408 4668 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
21:34:45.0408 4668 nsiproxy - ok
21:34:45.0455 4668 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
21:34:45.0486 4668 Ntfs - ok
21:34:45.0502 4668 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
21:34:45.0502 4668 Null - ok
21:34:45.0549 4668 NVHDA (0e40ef12bc029ff8b13043f157452c47) C:\Windows\system32\drivers\nvhda32v.sys
21:34:45.0564 4668 NVHDA - ok
21:34:45.0783 4668 nvlddmkm (bd409de5681c74c1de51d72427dc202d) C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:34:45.0970 4668 nvlddmkm - ok
21:34:46.0017 4668 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
21:34:46.0017 4668 nvraid - ok
21:34:46.0048 4668 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
21:34:46.0048 4668 nvstor - ok
21:34:46.0063 4668 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
21:34:46.0079 4668 nv_agp - ok
21:34:46.0110 4668 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
21:34:46.0110 4668 ohci1394 - ok
21:34:46.0157 4668 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
21:34:46.0157 4668 Parport - ok
21:34:46.0204 4668 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys
21:34:46.0204 4668 partmgr - ok
21:34:46.0219 4668 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
21:34:46.0219 4668 Parvdm - ok
21:34:46.0297 4668 pavboot (3adb8bd6154a3ef87496e8fce9c22493) C:\Windows\system32\drivers\pavboot.sys
21:34:46.0297 4668 pavboot - ok
21:34:46.0329 4668 PcaSp60 (dd74552152055a8493872930a64e70dc) C:\Windows\system32\DRIVERS\PcaSp60.sys
21:34:46.0329 4668 PcaSp60 - ok
21:34:46.0360 4668 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
21:34:46.0360 4668 pci - ok
21:34:46.0407 4668 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
21:34:46.0407 4668 pciide - ok
21:34:46.0438 4668 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
21:34:46.0438 4668 pcmcia - ok
21:34:46.0485 4668 pcouffin (5b6c11de7e839c05248ced8825470fef) C:\Windows\system32\Drivers\pcouffin.sys
21:34:46.0485 4668 pcouffin - ok
21:34:46.0500 4668 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
21:34:46.0500 4668 pcw - ok
21:34:46.0531 4668 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
21:34:46.0547 4668 PEAUTH - ok
21:34:46.0609 4668 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
21:34:46.0609 4668 PptpMiniport - ok
21:34:46.0625 4668 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
21:34:46.0625 4668 Processor - ok
21:34:46.0703 4668 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
21:34:46.0703 4668 Psched - ok
21:34:46.0750 4668 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
21:34:46.0781 4668 ql2300 - ok
21:34:46.0797 4668 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
21:34:46.0797 4668 ql40xx - ok
21:34:46.0828 4668 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
21:34:46.0828 4668 QWAVEdrv - ok
21:34:46.0859 4668 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
21:34:46.0875 4668 RasAcd - ok
21:34:46.0906 4668 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
21:34:46.0906 4668 RasAgileVpn - ok
21:34:46.0937 4668 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:34:46.0937 4668 Rasl2tp - ok
21:34:46.0984 4668 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
21:34:46.0984 4668 RasPppoe - ok
21:34:47.0015 4668 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
21:34:47.0015 4668 RasSstp - ok
21:34:47.0062 4668 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
21:34:47.0062 4668 rdbss - ok
21:34:47.0093 4668 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
21:34:47.0093 4668 rdpbus - ok
21:34:47.0124 4668 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:34:47.0124 4668 RDPCDD - ok
21:34:47.0171 4668 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
21:34:47.0171 4668 RDPENCDD - ok
21:34:47.0187 4668 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
21:34:47.0187 4668 RDPREFMP - ok
21:34:47.0233 4668 RDPWD (288b06960d78428ff89e811632684e20) C:\Windows\system32\drivers\RDPWD.sys
21:34:47.0233 4668 RDPWD - ok
21:34:47.0280 4668 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
21:34:47.0280 4668 rdyboost - ok
21:34:47.0343 4668 RFCOMM (cb928d9e6daf51879dd6ba8d02f01321) C:\Windows\system32\DRIVERS\rfcomm.sys
21:34:47.0343 4668 RFCOMM - ok
21:34:47.0405 4668 rimmptsk (a5b12a4b3b774432db9b9fa221190e59) C:\Windows\system32\DRIVERS\rimmptsk.sys
21:34:47.0405 4668 rimmptsk - ok
21:34:47.0452 4668 rimsptsk (c398bca91216755b098679a8da8a2300) C:\Windows\system32\DRIVERS\rimsptsk.sys
21:34:47.0452 4668 rimsptsk - ok
21:34:47.0514 4668 rismxdp (2a2554cb24506e0a0508fc395c4a1b42) C:\Windows\system32\DRIVERS\rixdptsk.sys
21:34:47.0514 4668 rismxdp - ok
21:34:47.0577 4668 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
21:34:47.0577 4668 rspndr - ok
21:34:47.0608 4668 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
21:34:47.0608 4668 sbp2port - ok
21:34:47.0670 4668 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
21:34:47.0670 4668 scfilter - ok
21:34:47.0748 4668 sdbus (0328be1c7f1cba23848179f8762e391c) C:\Windows\system32\drivers\sdbus.sys
21:34:47.0748 4668 sdbus - ok
21:34:47.0779 4668 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
21:34:47.0779 4668 secdrv - ok
21:34:47.0811 4668 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
21:34:47.0811 4668 Serenum - ok
21:34:47.0842 4668 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
21:34:47.0842 4668 Serial - ok
21:34:47.0889 4668 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
21:34:47.0889 4668 sermouse - ok
21:34:47.0920 4668 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
21:34:47.0920 4668 sffdisk - ok
21:34:47.0920 4668 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
21:34:47.0920 4668 sffp_mmc - ok
21:34:47.0951 4668 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
21:34:47.0951 4668 sffp_sd - ok
21:34:47.0951 4668 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
21:34:47.0967 4668 sfloppy - ok
21:34:47.0982 4668 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
21:34:47.0982 4668 sisagp - ok
21:34:48.0013 4668 SiSGbeLH (6f0c643c7f49f2091b01d014eae72e1a) C:\Windows\system32\DRIVERS\SiSGB6.sys
21:34:48.0013 4668 SiSGbeLH - ok
21:34:48.0045 4668 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:34:48.0045 4668 SiSRaid2 - ok
21:34:48.0060 4668 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
21:34:48.0076 4668 SiSRaid4 - ok
21:34:48.0091 4668 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
21:34:48.0091 4668 Smb - ok
21:34:48.0169 4668 SNP2UVC (060f51141b20b8156804446a04ab8b2a) C:\Windows\system32\DRIVERS\snp2uvc.sys
21:34:48.0201 4668 SNP2UVC - ok
21:34:48.0216 4668 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
21:34:48.0216 4668 spldr - ok
21:34:48.0263 4668 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
21:34:48.0263 4668 srv - ok
21:34:48.0294 4668 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
21:34:48.0294 4668 srv2 - ok
21:34:48.0325 4668 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
21:34:48.0325 4668 srvnet - ok
21:34:48.0388 4668 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
21:34:48.0388 4668 stexstor - ok
21:34:48.0435 4668 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys
21:34:48.0435 4668 swenum - ok
21:34:48.0466 4668 SynTP (55f6e55cc2430ca8713387106fa79817) C:\Windows\system32\DRIVERS\SynTP.sys
21:34:48.0466 4668 SynTP - ok
21:34:48.0528 4668 Tcpip (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\drivers\tcpip.sys
21:34:48.0559 4668 Tcpip - ok
21:34:48.0606 4668 TCPIP6 (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\DRIVERS\tcpip.sys
21:34:48.0622 4668 TCPIP6 - ok
21:34:48.0669 4668 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
21:34:48.0669 4668 tcpipreg - ok
21:34:48.0715 4668 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
21:34:48.0715 4668 TDPIPE - ok
21:34:48.0747 4668 TDTCP (2c10395baa4847f83042813c515cc289) C:\Windows\system32\drivers\tdtcp.sys
21:34:48.0762 4668 TDTCP - ok
21:34:48.0778 4668 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
21:34:48.0778 4668 tdx - ok
21:34:48.0809 4668 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys
21:34:48.0809 4668 TermDD - ok
21:34:48.0871 4668 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:34:48.0871 4668 tssecsrv - ok
21:34:48.0949 4668 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
21:34:48.0949 4668 TsUsbFlt - ok
21:34:49.0027 4668 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
21:34:49.0027 4668 tunnel - ok
21:34:49.0074 4668 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
21:34:49.0074 4668 uagp35 - ok
21:34:49.0105 4668 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
21:34:49.0121 4668 udfs - ok
21:34:49.0152 4668 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
21:34:49.0152 4668 uliagpkx - ok
21:34:49.0183 4668 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\drivers\umbus.sys
21:34:49.0183 4668 umbus - ok
21:34:49.0215 4668 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
21:34:49.0215 4668 UmPass - ok
21:34:49.0277 4668 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
21:34:49.0277 4668 USBAAPL - ok
21:34:49.0293 4668 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
21:34:49.0293 4668 usbccgp - ok
21:34:49.0324 4668 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
21:34:49.0324 4668 usbcir - ok
21:34:49.0371 4668 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys
21:34:49.0371 4668 usbehci - ok
21:34:49.0417 4668 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
21:34:49.0417 4668 usbhub - ok
21:34:49.0449 4668 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\drivers\usbohci.sys
21:34:49.0449 4668 usbohci - ok
21:34:49.0480 4668 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
21:34:49.0480 4668 usbprint - ok
21:34:49.0511 4668 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
21:34:49.0511 4668 usbscan - ok
21:34:49.0542 4668 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:34:49.0542 4668 USBSTOR - ok
21:34:49.0573 4668 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\DRIVERS\usbuhci.sys
21:34:49.0573 4668 usbuhci - ok
21:34:49.0636 4668 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\Windows\System32\Drivers\usbvideo.sys
21:34:49.0636 4668 usbvideo - ok
21:34:49.0683 4668 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
21:34:49.0698 4668 vdrvroot - ok
21:34:49.0714 4668 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
21:34:49.0714 4668 vga - ok
21:34:49.0745 4668 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
21:34:49.0745 4668 VgaSave - ok
21:34:49.0776 4668 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
21:34:49.0776 4668 vhdmp - ok
21:34:49.0823 4668 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
21:34:49.0823 4668 viaagp - ok
21:34:49.0854 4668 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
21:34:49.0854 4668 ViaC7 - ok
21:34:49.0870 4668 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
21:34:49.0870 4668 viaide - ok
21:34:49.0885 4668 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
21:34:49.0885 4668 volmgr - ok
21:34:49.0917 4668 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
21:34:49.0917 4668 volmgrx - ok
21:34:49.0948 4668 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
21:34:49.0948 4668 volsnap - ok
21:34:49.0979 4668 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
21:34:49.0979 4668 vsmraid - ok
21:34:50.0010 4668 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys
21:34:50.0010 4668 vwifibus - ok
21:34:50.0057 4668 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
21:34:50.0057 4668 vwififlt - ok
21:34:50.0088 4668 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\Windows\system32\DRIVERS\vwifimp.sys
21:34:50.0088 4668 vwifimp - ok
21:34:50.0104 4668 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
21:34:50.0104 4668 WacomPen - ok
21:34:50.0151 4668 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
21:34:50.0166 4668 WANARP - ok
21:34:50.0166 4668 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
21:34:50.0166 4668 Wanarpv6 - ok
21:34:50.0197 4668 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
21:34:50.0197 4668 Wd - ok
21:34:50.0229 4668 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
21:34:50.0244 4668 Wdf01000 - ok
21:34:50.0291 4668 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
21:34:50.0291 4668 WfpLwf - ok
21:34:50.0307 4668 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
21:34:50.0307 4668 WIMMount - ok
21:34:50.0385 4668 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUsb.sys
21:34:50.0385 4668 WinUsb - ok
21:34:50.0447 4668 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
21:34:50.0447 4668 WmiAcpi - ok
21:34:50.0509 4668 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
21:34:50.0509 4668 ws2ifsl - ok
21:34:50.0572 4668 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
21:34:50.0572 4668 WudfPf - ok
21:34:50.0619 4668 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:34:50.0619 4668 WUDFRd - ok
21:34:50.0681 4668 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
21:34:50.0884 4668 \Device\Harddisk0\DR0 - ok
21:34:50.0899 4668 Boot (0x1200) (0ef7e870aa4b79d4c5786117c5649f8c) \Device\Harddisk0\DR0\Partition0
21:34:50.0899 4668 \Device\Harddisk0\DR0\Partition0 - ok
21:34:50.0899 4668 Boot (0x1200) (dca6452e1f59336d7ffded675d9aff49) \Device\Harddisk0\DR0\Partition1
21:34:50.0899 4668 \Device\Harddisk0\DR0\Partition1 - ok
21:34:50.0899 4668 ============================================================
21:34:50.0899 4668 Scan finished
21:34:50.0899 4668 ============================================================
21:34:50.0915 2696 Detected object count: 0
21:34:50.0915 2696 Actual detected object count: 0
21:34:57.0358 4212 Deinitialize success


Malwarebytes Anti-Malware 1.60.1.1000
www.malwarebytes.org

Database version: v2012.02.21.01

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
kidwonder :: VADER [administrator]

2/20/2012 9:35:27 PM
mbam-log-2012-02-20 (21-35-27).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 286562
Time elapsed: 43 minute(s), 50 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

Farbar Service Scanner Version: 14-02-2012
Ran by kidwonder (administrator) on 20-02-2012 at 22:35:51
Running from "C:\Users\kidwonder\Downloads"
Microsoft Windows 7 Home Premium Service Pack 1 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Yahoo IP is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcore.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****

MiniToolBox by Farbar Version: 18-01-2012
Ran by kidwonder (administrator) on 20-02-2012 at 22:37:24
Microsoft Windows 7 Home Premium Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

Hosts file not detected in the default directory
========================= IP Configuration: ================================

Intel® WiFi Link 5100 AGN = Wireless Network Connection (Connected)
Atheros AR8131 PCI-E Gigabit Ethernet Controller = Local Area Connection (Hardware not present)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Hardware not present)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Vader
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® WiFi Link 5100 AGN
Physical Address. . . . . . . . . : 00-22-FA-59-C3-1E
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::7c7f:866e:8232:17a4%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.186(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Monday, February 20, 2012 7:51:22 PM
Lease Expires . . . . . . . . . . : Tuesday, February 21, 2012 7:51:22 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 285221626
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-05-3B-21-00-22-FA-59-C3-1E
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fb:309f:3d3a:bc44:4475(Preferred)
Link-local IPv6 Address . . . . . : fe80::309f:3d3a:bc44:4475%12(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{31DF2793-BF71-4894-9C85-C6593E691ACC}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: my.router
Address: 192.168.1.1

Name: google.com
Addresses: 74.125.224.68
74.125.224.77
74.125.224.76
74.125.224.72
74.125.224.64
74.125.224.65
74.125.224.67
74.125.224.66
74.125.224.71
74.125.224.75
74.125.224.78
74.125.224.70
74.125.224.73
74.125.224.79
74.125.224.74
74.125.224.69


Pinging google.com [74.125.224.69] with 32 bytes of data:
Reply from 74.125.224.69: bytes=32 time=39ms TTL=53
Reply from 74.125.224.69: bytes=32 time=23ms TTL=53

Ping statistics for 74.125.224.69:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 23ms, Maximum = 39ms, Average = 31ms
Server: my.router
Address: 192.168.1.1

Name: yahoo.com
Addresses: 209.191.122.70
98.139.127.62
98.139.183.24


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=154ms TTL=45
Reply from 98.139.183.24: bytes=32 time=108ms TTL=45

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 108ms, Maximum = 154ms, Average = 131ms
Server: my.router
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
11...00 22 fa 59 c3 1e ......Intel® WiFi Link 5100 AGN
1...........................Software Loopback Interface 1
12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.186 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.186 276
192.168.1.186 255.255.255.255 On-link 192.168.1.186 276
192.168.1.255 255.255.255.255 On-link 192.168.1.186 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.186 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.186 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
12 58 ::/0 On-link
1 306 ::1/128 On-link
12 58 2001::/32 On-link
12 306 2001:0:5ef5:79fb:309f:3d3a:bc44:4475/128
On-link
11 276 fe80::/64 On-link
12 306 fe80::/64 On-link
12 306 fe80::309f:3d3a:bc44:4475/128
On-link
11 276 fe80::7c7f:866e:8232:17a4/128
On-link
1 306 ff00::/8 On-link
12 306 ff00::/8 On-link
11 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog5 07 C:\Windows\system32\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 08 C:\Windows\System32\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 09 C:\Windows\System32\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 32 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 33 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (02/20/2012 09:26:28 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "imaging1".Error in manifest or policy file "imaging2" on line imaging3.
The element imaging appears as a child of element urn:schemas-microsoft-com:asm.v1^assembly which is not supported by this version of Windows.

Error: (02/20/2012 09:26:15 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

Error: (02/20/2012 07:52:32 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/20/2012 06:59:55 PM) (Source: Windows Backup) (User: )
Description: The backup was not successful. The error is: There is not enough free space on the backup storage location to back up the data. (0x80780048).

Error: (02/20/2012 04:40:36 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/20/2012 04:34:12 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/16/2012 10:06:43 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/16/2012 09:45:35 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/16/2012 09:19:15 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/16/2012 09:14:36 PM) (Source: Application Error) (User: )
Description: Faulting application name: svchost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bc100
Faulting module name: ntdll.dll, version: 6.1.7601.17725, time stamp: 0x4ec49b60
Exception code: 0xc0000008
Fault offset: 0x00081e57
Faulting process id: 0x474
Faulting application start time: 0xsvchost.exe0
Faulting application path: svchost.exe1
Faulting module path: svchost.exe2
Report Id: svchost.exe3


System errors:
=============
Error: (02/20/2012 07:52:26 PM) (Source: Microsoft-Windows-DNS-Client) (User: NETWORK SERVICE)
Description: There was an error while attempting to read the local hosts file.

Error: (02/20/2012 07:52:25 PM) (Source: Microsoft-Windows-DNS-Client) (User: NETWORK SERVICE)
Description: There was an error while attempting to read the local hosts file.

Error: (02/20/2012 07:52:21 PM) (Source: Microsoft-Windows-DNS-Client) (User: NETWORK SERVICE)
Description: There was an error while attempting to read the local hosts file.

Error: (02/20/2012 07:51:59 PM) (Source: Microsoft-Windows-DNS-Client) (User: NETWORK SERVICE)
Description: There was an error while attempting to read the local hosts file.

Error: (02/20/2012 07:51:59 PM) (Source: Microsoft-Windows-DNS-Client) (User: NETWORK SERVICE)
Description: There was an error while attempting to read the local hosts file.

Error: (02/20/2012 07:51:59 PM) (Source: Microsoft-Windows-DNS-Client) (User: NETWORK SERVICE)
Description: There was an error while attempting to read the local hosts file.

Error: (02/20/2012 07:51:24 PM) (Source: Microsoft-Windows-DNS-Client) (User: NETWORK SERVICE)
Description: There was an error while attempting to read the local hosts file.

Error: (02/20/2012 07:50:00 PM) (Source: Microsoft-Windows-DNS-Client) (User: NETWORK SERVICE)
Description: There was an error while attempting to read the local hosts file.

Error: (02/20/2012 07:50:00 PM) (Source: Microsoft-Windows-DNS-Client) (User: NETWORK SERVICE)
Description: There was an error while attempting to read the local hosts file.

Error: (02/20/2012 07:50:00 PM) (Source: Microsoft-Windows-DNS-Client) (User: NETWORK SERVICE)
Description: There was an error while attempting to read the local hosts file.


Microsoft Office Sessions:
=========================
Error: (02/20/2012 09:26:28 PM) (Source: SideBySide)(User: )
Description: imagingurn:schemas-microsoft-com:asm.v1^assemblyc:\program files\microsoft security client\MSESysprep.dllc:\program files\microsoft security client\MSESysprep.dll10

Error: (02/20/2012 09:26:15 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllc:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3

Error: (02/20/2012 07:52:32 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/20/2012 06:59:55 PM) (Source: Windows Backup)(User: )
Description: There is not enough free space on the backup storage location to back up the data. (0x80780048)

Error: (02/20/2012 04:40:36 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/20/2012 04:34:12 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/16/2012 10:06:43 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/16/2012 09:45:35 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/16/2012 09:19:15 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/16/2012 09:14:36 PM) (Source: Application Error)(User: )
Description: svchost.exe6.1.7600.163854a5bc100ntdll.dll6.1.7601.177254ec49b60c000000800081e5747401cced3300a7b9f1C:\Windows\system32\svchost.exeC:\Windows\SYSTEM32\ntdll.dll48402116-5926-11e1-8bbc-0022fa59c31e


=========================== Installed Programs ============================

µTorrent (Version: 1.8.4)
1Click DVD Copy Pro 4.2.3.3
Acrobat.com (Version: 1.1.377)
Activation Assistant for the 2007 Microsoft Office suites
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0)
Adobe AIR (Version: 1.5.0.7220)
Adobe Flash Player 10 ActiveX (Version: 10.0.45.2)
Adobe Flash Player 11 Plugin (Version: 11.1.102.62)
Adobe Photoshop CS (Version: CS)
Adobe Reader X (10.1.2) (Version: 10.1.2)
Adobe Shockwave Player 11.5 (Version: 11.5.6.606)
Amazon MP3 Downloader 1.0.5
Apple Application Support (Version: 2.1.6)
Apple Mobile Device Support (Version: 4.0.0.97)
Apple Software Update (Version: 2.1.3.127)
ASUS CopyProtect (Version: 1.0.0012)
ASUS Power4Gear Hybrid (Version: 1.1.12)
ASUS RT-N56U Wireless Router Utilities (Version: 4.2.1.8)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (Version: 1.0.0.19)
ATK Generic Function Service (Version: 1.00.0008)
ATK Hotkey (Version: 1.0.0050)
ATK Media (Version: 2.0.0003)
ATKOSD2 (Version: 7.0.0003)
Bonjour (Version: 3.0.0.10)
CCleaner (Version: 3.01)
Choice Guard (Version: 1.2.87.0)
Creative ALchemy (Version: 1.41)
Creative Audio Control Panel (Version: 3.00)
Creative Console Launcher (Version: 2.61)
Creative Entertainment Center (Version: 5.00)
Creative Karaoke Player (Version: 2.11)
Creative MediaSource 5 (Version: 5.00)
Creative Smart Recorder (Version: 2.20)
Creative Software AutoUpdate (Version: 1.40)
Creative Sound Blaster Properties (Version: 1.02)
Creative System Information
Creative WaveStudio 7 (Version: 7.12)
dBpoweramp Music Converter (Version: Release 14.2)
Definition update for Microsoft Office 2010 (KB982726) 32-Bit Edition
DVD43 v4.6.0
EPSON Artisan 810 Series Printer Uninstall
Epson Event Manager (Version: 2.30.01)
Epson FAX Utility (Version: 1.00.01)
Epson PC-FAX Driver
EPSON Scan
EpsonNet Print (Version: 2.4i)
EpsonNet Setup (Version: 3.1c)
ESET Online Scanner v3
Free Mp3 Wma Converter V 1.9 (Version: 1.9.0.0)
FreeRIP v3.40 (Version: 3.40)
Google Chrome (Version: 17.0.963.56)
Google Earth Plug-in (Version: 6.1.0.5001)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Update Helper (Version: 1.3.21.99)
Host OpenAL (Version: 2.02)
ImgBurn (Version: 2.5.5.0)
IrfanView (remove only)
iTunes (Version: 10.5.3.3)
Java Auto Updater (Version: 2.0.3.1)
Java™ 6 Update 24 (Version: 6.0.240)
Junk Mail filter update (Version: 14.0.8050.1202)
Malwarebytes Anti-Malware version 1.60.1.1000 (Version: 1.60.1.1000)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Antimalware (Version: 3.0.8402.2)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Outlook Connector (Version: 12.0.6414.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Security Client (Version: 2.1.1116.0)
Microsoft Security Essentials (Version: 2.1.1116.0)
Microsoft Silverlight (Version: 4.0.60831.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Mozilla Firefox (3.6.3) (Version: 3.6.3 (en-US))
MSVCRT (Version: 14.0.1468.721)
NB Probe
Net4Switch (Version: 1.00.0016)
Norton Internet Security (Version: 16.0.0.125)
NVIDIA 3D Vision Driver 260.99 (Version: 260.99)
NVIDIA Control Panel 260.99 (Version: 260.99)
NVIDIA Graphics Driver 260.99 (Version: 260.99)
NVIDIA HD Audio Driver 1.1.9.0 (Version: 1.1.9.0)
NVIDIA Install Application (Version: 2.0.12.0)
NVIDIA PhysX (Version: 9.10.0514)
NVIDIA PhysX System Software 260.99 (Version: 260.99)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.6099)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
Panda ActiveScan 2.0 (Version: 01.04.01.0014)
PeerBlock 1.1 (r518) (Version: 1.1.0.518)
Picasa 3 (Version: 3.8)
Realtek High Definition Audio Driver (Version: 6.0.1.5827)
Remote Control System (Version: 5.00)
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.55.01 (Version: 3.55.01)
SAMSUNG USB Driver for Mobile Phones (Version: 1.3.550.0)
Sound Blaster X-Fi Surround 5.1 (Version: 1.0)
Spelling Dictionaries Support For Adobe Reader 9 (Version: 9.0.0)
SRS Premium Sound (Version: 1.09.0300)
Synaptics Pointing Device Driver (Version: 10.1.8.0)
The Rosetta Stone
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553092)
USB 2.0 2.0M UVC WebCam
Verizon Wireless Software Utility Application for Android - Samsung (Version: 1.10.1203)
VLC media player 1.1.11 (Version: 1.1.11)
Volume Panel (Version: 2.21)
WIDCOMM Bluetooth Software (Version: 5.2.0.800)
Winamp (Version: 5.572 )
Winamp Detector Plug-in (Version: 1.0.0.1)
Winamp Remote (Version: 2.2008.0508.1530)
Windows Live Communications Platform (Version: 14.0.8050.1202)
Windows Live Essentials (Version: 14.0.8050.1202)
Windows Live Family Safety (Version: 14.0.8052.1208)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
Windows Live Mail (Version: 14.0.8050.1202)
Windows Live Movie Maker Beta (Version: 14.0.8051.1204)
Windows Live Photo Gallery (Version: 14.0.8051.1204)
Windows Live Sync (Version: 14.0.8050.1202)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8050.1202)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinFlash
WinRAR archiver
Wireless Console 3 (Version: 3.0.6)

========================= Memory info: ===================================

Percentage of memory in use: 50%
Total physical RAM: 3071.11 MB
Available physical RAM: 1524.14 MB
Total Pagefile: 6140.51 MB
Available Pagefile: 4552.93 MB
Total Virtual: 2047.88 MB
Available Virtual: 1930.36 MB

========================= Partitions: =====================================

1 Drive c: (Se7en) (Fixed) (Total:149.04 GB) (Free:62.56 GB) NTFS
2 Drive d: () (Fixed) (Total:137.33 GB) (Free:14.55 GB) NTFS
3 Drive e: (ASUS) (CDROM) (Total:0.57 GB) (Free:0 GB) CDFS

========================= Users: ========================================

User accounts for \\VADER

Administrator Guest kidwonder


**** End of log ****


And that's all of it. So, with this being resolved hopefully, is there a security suite you recommend?

#13 narenxp

narenxp

    Forum Addict

  • BC Advisor
  • PipPipPipPipPipPip
  • 16,365 posts
  • Gender:Male
  • Location:India

Posted 21 February 2012 - 11:35 AM

You're missing your hosts file

Download

Hosts

Save this file to

C:/WINDOWS/system32/drivers/etc

I want you to check if your browser still shows 404 nginx error

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

I would recommend AVAST or AVIRA free editions.Malwarebytes and super antispyware can be used to scan frequently.

Safe surfing :)

#14 jameswest

jameswest

    New Member

  • Members
  • Pip
  • 10 posts

Posted 21 February 2012 - 09:30 PM

Thank you so much! No more 404 nginx, no more blue screen crashes!

One question, the host file I downloaded from your link looks empty. Is that normal?

I'll definitely check one of those out. Thanks again!

#15 narenxp

narenxp

    Forum Addict

  • BC Advisor
  • PipPipPipPipPipPip
  • 16,365 posts
  • Gender:Male
  • Location:India

Posted 21 February 2012 - 10:14 PM

One question, the host file I downloaded from your link looks empty. Is that normal?

Did you open the file with a notepad.It contains informations.Hosts file is usually without an file extensions(system file)
Back to Am I infected? What do I do?


0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users


  1. BleepingComputer.com
  2. Security
  3. Am I infected? What do I do?
  4. Privacy Policy
  5. Rules ·