Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

AV protection 2011 removal aftermath.


  • Please log in to reply
1 reply to this topic

#1 jyang72211

jyang72211

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:09:47 AM

Posted 20 November 2011 - 08:13 PM

Hi all,

Recently, my wife's computer got hit by the AV protection 2011. First, when she clicks on any links returned by google search, she would get redirected to some weird sites. Then, AV protection 2011 hi-jacked her computer completely. I followed the removal guide on bleepingcomputer, and now the computer is a lot better. However, sometimes, she would still get redirected. Now, IE doesn't work at all. She can open IE, but she can't go to any site. When IE is opened, the mouse cursor would disappear as well. She has to use google chrome to go online. What should we do next?

I did the TDSSKiller scan, and it found nothing. Below are my most recent Malwarebyte and TDSSKiller scan log.

Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Database version: 8191

Windows 6.1.7601 Service Pack 1 (Safe Mode)
Internet Explorer 8.0.7601.17514

11/18/2011 7:22:33 PM
mbam-log-2011-11-18 (19-22-33).txt

Scan type: Full scan (C:\|Q:\|)
Objects scanned: 775
Time elapsed: 21 second(s)

Memory Processes Infected: 3
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 1
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 3

Memory Processes Infected:
c:\program files (x86)\LP\9186\A8F.exe (Trojan.Dropper) -> 1428 -> Unloaded process successfully.
c:\program files (x86)\211C5\lvvm.exe (Trojan.Dropper) -> 936 -> Unloaded process successfully.
c:\Users\Qian Sun\AppData\Roaming\60621\3AA91.exe (Trojan.Dropper) -> 2524 -> Unloaded process successfully.

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\A8F.exe (Trojan.Dropper) -> Value: A8F.exe -> Quarantined and deleted successfully.

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
c:\program files (x86)\LP\9186\A8F.exe (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\program files (x86)\211C5\lvvm.exe (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Users\Qian Sun\AppData\Roaming\60621\3AA91.exe (Trojan.Dropper) -> Quarantined and deleted successfully.



19:02:53.0990 4264 TDSS rootkit removing tool 2.6.19.0 Nov 16 2011 12:18:50
19:02:54.0521 4264 ============================================================
19:02:54.0521 4264 Current date / time: 2011/11/20 19:02:54.0521
19:02:54.0521 4264 SystemInfo:
19:02:54.0521 4264
19:02:54.0521 4264 OS Version: 6.1.7601 ServicePack: 1.0
19:02:54.0521 4264 Product type: Workstation
19:02:54.0521 4264 ComputerName: MINIQIAN
19:02:54.0521 4264 UserName: Qian Sun
19:02:54.0521 4264 Windows directory: C:\Windows
19:02:54.0521 4264 System windows directory: C:\Windows
19:02:54.0521 4264 Running under WOW64
19:02:54.0521 4264 Processor architecture: Intel x64
19:02:54.0521 4264 Number of processors: 1
19:02:54.0521 4264 Page size: 0x1000
19:02:54.0521 4264 Boot type: Normal boot
19:02:54.0521 4264 ============================================================
19:02:55.0566 4264 Initialize success
19:06:48.0444 0660 ============================================================
19:06:48.0444 0660 Scan started
19:06:48.0444 0660 Mode: Manual;
19:06:48.0444 0660 ============================================================
19:06:53.0230 0660 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
19:06:53.0230 0660 1394ohci - ok
19:06:53.0698 0660 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
19:06:53.0714 0660 ACPI - ok
19:06:53.0994 0660 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
19:06:54.0010 0660 AcpiPmi - ok
19:06:54.0369 0660 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
19:06:54.0369 0660 adp94xx - ok
19:06:54.0681 0660 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
19:06:54.0681 0660 adpahci - ok
19:06:55.0257 0660 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
19:06:55.0261 0660 adpu320 - ok
19:06:55.0586 0660 AFD (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys
19:06:55.0595 0660 AFD - ok
19:06:55.0891 0660 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
19:06:55.0894 0660 agp440 - ok
19:06:56.0226 0660 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
19:06:56.0228 0660 aliide - ok
19:06:56.0552 0660 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
19:06:56.0554 0660 amdide - ok
19:06:56.0953 0660 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
19:06:56.0955 0660 AmdK8 - ok
19:06:57.0860 0660 amdkmdag (f559837f1b55fafe0f1654955ffb41df) C:\Windows\system32\DRIVERS\atikmdag.sys
19:06:58.0039 0660 amdkmdag - ok
19:06:58.0701 0660 amdkmdap (355ebd9359c8019756f1b23fbb146dc1) C:\Windows\system32\DRIVERS\atikmpag.sys
19:06:58.0707 0660 amdkmdap - ok
19:06:59.0187 0660 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
19:06:59.0194 0660 AmdPPM - ok
19:06:59.0646 0660 amdsata (cc3021d064eb6d3c2f949530e2b0ba47) C:\Windows\system32\DRIVERS\amdsata.sys
19:06:59.0651 0660 amdsata - ok
19:07:00.0093 0660 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
19:07:00.0103 0660 amdsbs - ok
19:07:00.0448 0660 amdxata (ffc5a0f6263574ef0d5467496b721f77) C:\Windows\system32\drivers\amdxata.sys
19:07:00.0467 0660 amdxata - ok
19:07:00.0893 0660 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
19:07:00.0899 0660 AppID - ok
19:07:01.0398 0660 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
19:07:01.0402 0660 arc - ok
19:07:01.0864 0660 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
19:07:01.0868 0660 arcsas - ok
19:07:03.0314 0660 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
19:07:03.0319 0660 AsyncMac - ok
19:07:03.0856 0660 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
19:07:03.0859 0660 atapi - ok
19:07:04.0336 0660 AtiHDAudioService (4bf5bca6e2608cd8a00bc4a6673a9f47) C:\Windows\system32\drivers\AtihdW76.sys
19:07:04.0376 0660 AtiHDAudioService - ok
19:07:04.0956 0660 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
19:07:04.0969 0660 b06bdrv - ok
19:07:05.0477 0660 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
19:07:05.0485 0660 b57nd60a - ok
19:07:05.0932 0660 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
19:07:05.0934 0660 Beep - ok
19:07:06.0375 0660 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
19:07:06.0382 0660 blbdrive - ok
19:07:06.0774 0660 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
19:07:06.0781 0660 bowser - ok
19:07:07.0351 0660 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
19:07:07.0353 0660 BrFiltLo - ok
19:07:07.0734 0660 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
19:07:07.0736 0660 BrFiltUp - ok
19:07:08.0094 0660 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
19:07:08.0101 0660 Brserid - ok
19:07:08.0550 0660 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
19:07:08.0553 0660 BrSerWdm - ok
19:07:09.0059 0660 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
19:07:09.0065 0660 BrUsbMdm - ok
19:07:09.0382 0660 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
19:07:09.0384 0660 BrUsbSer - ok
19:07:09.0659 0660 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
19:07:09.0662 0660 BTHMODEM - ok
19:07:10.0112 0660 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
19:07:10.0117 0660 cdfs - ok
19:07:10.0407 0660 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
19:07:10.0416 0660 cdrom - ok
19:07:10.0723 0660 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
19:07:10.0726 0660 circlass - ok
19:07:10.0966 0660 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
19:07:10.0974 0660 CLFS - ok
19:07:11.0358 0660 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
19:07:11.0361 0660 CmBatt - ok
19:07:11.0650 0660 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
19:07:11.0652 0660 cmdide - ok
19:07:11.0938 0660 CNG (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys
19:07:11.0949 0660 CNG - ok
19:07:12.0280 0660 CnxtHdAudService (db6f09464c57606892bf6d2458483417) C:\Windows\system32\drivers\CHDRT64.sys
19:07:12.0306 0660 CnxtHdAudService - ok
19:07:12.0618 0660 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
19:07:12.0621 0660 Compbatt - ok
19:07:13.0002 0660 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\DRIVERS\CompositeBus.sys
19:07:13.0006 0660 CompositeBus - ok
19:07:13.0345 0660 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
19:07:13.0348 0660 crcdisk - ok
19:07:13.0765 0660 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
19:07:13.0769 0660 DfsC - ok
19:07:14.0065 0660 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
19:07:14.0069 0660 discache - ok
19:07:14.0416 0660 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
19:07:14.0419 0660 Disk - ok
19:07:14.0740 0660 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
19:07:14.0742 0660 drmkaud - ok
19:07:15.0164 0660 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
19:07:15.0186 0660 DXGKrnl - ok
19:07:15.0577 0660 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
19:07:15.0656 0660 ebdrv - ok
19:07:16.0035 0660 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
19:07:16.0045 0660 elxstor - ok
19:07:16.0372 0660 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
19:07:16.0374 0660 ErrDev - ok
19:07:16.0746 0660 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
19:07:16.0752 0660 exfat - ok
19:07:17.0507 0660 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
19:07:17.0519 0660 fastfat - ok
19:07:17.0837 0660 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
19:07:17.0839 0660 fdc - ok
19:07:18.0180 0660 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
19:07:18.0182 0660 FileInfo - ok
19:07:18.0663 0660 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
19:07:18.0665 0660 Filetrace - ok
19:07:19.0130 0660 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
19:07:19.0209 0660 flpydisk - ok
19:07:19.0619 0660 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
19:07:19.0628 0660 FltMgr - ok
19:07:20.0060 0660 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
19:07:20.0063 0660 FsDepends - ok
19:07:20.0454 0660 fssfltr (6c06701bf1db05405804d7eb610991ce) C:\Windows\system32\DRIVERS\fssfltr.sys
19:07:20.0456 0660 fssfltr - ok
19:07:20.0812 0660 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
19:07:20.0815 0660 Fs_Rec - ok
19:07:21.0248 0660 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
19:07:21.0254 0660 fvevol - ok
19:07:21.0703 0660 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
19:07:21.0713 0660 gagp30kx - ok
19:07:22.0022 0660 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
19:07:22.0025 0660 hcw85cir - ok
19:07:22.0325 0660 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
19:07:22.0335 0660 HdAudAddService - ok
19:07:22.0660 0660 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
19:07:22.0664 0660 HDAudBus - ok
19:07:23.0073 0660 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
19:07:23.0076 0660 HidBatt - ok
19:07:23.0500 0660 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
19:07:23.0503 0660 HidBth - ok
19:07:23.0836 0660 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
19:07:23.0839 0660 HidIr - ok
19:07:24.0195 0660 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
19:07:24.0198 0660 HidUsb - ok
19:07:24.0639 0660 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
19:07:24.0644 0660 HpSAMD - ok
19:07:25.0094 0660 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
19:07:25.0108 0660 HTTP - ok
19:07:25.0446 0660 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
19:07:25.0448 0660 hwpolicy - ok
19:07:25.0800 0660 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
19:07:25.0804 0660 i8042prt - ok
19:07:26.0110 0660 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
19:07:26.0118 0660 iaStorV - ok
19:07:26.0459 0660 IBMPMDRV (a9bd44426a69079240767fe4aee0ea71) C:\Windows\system32\DRIVERS\ibmpmdrv.sys
19:07:26.0462 0660 IBMPMDRV - ok
19:07:26.0764 0660 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
19:07:26.0767 0660 iirsp - ok
19:07:27.0080 0660 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
19:07:27.0082 0660 intelide - ok
19:07:27.0389 0660 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\drivers\intelppm.sys
19:07:27.0397 0660 intelppm - ok
19:07:27.0674 0660 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:07:27.0677 0660 IpFilterDriver - ok
19:07:27.0948 0660 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
19:07:27.0951 0660 IPMIDRV - ok
19:07:28.0257 0660 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
19:07:28.0260 0660 IPNAT - ok
19:07:28.0669 0660 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
19:07:28.0671 0660 IRENUM - ok
19:07:29.0044 0660 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
19:07:29.0047 0660 isapnp - ok
19:07:29.0342 0660 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
19:07:29.0357 0660 iScsiPrt - ok
19:07:29.0629 0660 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
19:07:29.0631 0660 kbdclass - ok
19:07:29.0929 0660 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
19:07:29.0943 0660 kbdhid - ok
19:07:30.0345 0660 KSecDD (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys
19:07:30.0348 0660 KSecDD - ok
19:07:30.0623 0660 KSecPkg (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys
19:07:30.0627 0660 KSecPkg - ok
19:07:30.0947 0660 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
19:07:30.0950 0660 ksthunk - ok
19:07:31.0759 0660 lenovo.smi (2b9d8555dc004e240082d18e7725ce20) C:\Windows\system32\DRIVERS\smiifx64.sys
19:07:31.0762 0660 lenovo.smi - ok
19:07:32.0147 0660 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
19:07:32.0150 0660 lltdio - ok
19:07:32.0493 0660 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
19:07:32.0496 0660 LSI_FC - ok
19:07:32.0794 0660 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
19:07:32.0798 0660 LSI_SAS - ok
19:07:33.0095 0660 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
19:07:33.0098 0660 LSI_SAS2 - ok
19:07:33.0555 0660 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
19:07:33.0559 0660 LSI_SCSI - ok
19:07:33.0848 0660 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
19:07:33.0851 0660 luafv - ok
19:07:34.0134 0660 MBAMProtector (23a854450dab5c9b7a42ab9be6f2e4bd) C:\Windows\system32\drivers\mbam.sys
19:07:34.0139 0660 MBAMProtector - ok
19:07:34.0432 0660 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
19:07:34.0441 0660 megasas - ok
19:07:34.0715 0660 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
19:07:34.0722 0660 MegaSR - ok
19:07:35.0047 0660 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
19:07:35.0049 0660 Modem - ok
19:07:35.0321 0660 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
19:07:35.0324 0660 monitor - ok
19:07:35.0640 0660 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
19:07:35.0643 0660 mouclass - ok
19:07:35.0915 0660 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\drivers\mouhid.sys
19:07:35.0918 0660 mouhid - ok
19:07:36.0201 0660 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
19:07:36.0207 0660 mountmgr - ok
19:07:36.0672 0660 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
19:07:36.0679 0660 mpio - ok
19:07:37.0064 0660 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
19:07:37.0067 0660 mpsdrv - ok
19:07:37.0357 0660 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
19:07:37.0361 0660 MRxDAV - ok
19:07:37.0663 0660 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
19:07:37.0670 0660 mrxsmb - ok
19:07:37.0986 0660 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:07:37.0993 0660 mrxsmb10 - ok
19:07:38.0296 0660 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:07:38.0299 0660 mrxsmb20 - ok
19:07:38.0606 0660 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
19:07:38.0608 0660 msahci - ok
19:07:39.0000 0660 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
19:07:39.0006 0660 msdsm - ok
19:07:39.0299 0660 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
19:07:39.0301 0660 Msfs - ok
19:07:39.0588 0660 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
19:07:39.0590 0660 mshidkmdf - ok
19:07:39.0913 0660 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
19:07:39.0915 0660 msisadrv - ok
19:07:40.0288 0660 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
19:07:40.0291 0660 MSKSSRV - ok
19:07:40.0572 0660 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
19:07:40.0574 0660 MSPCLOCK - ok
19:07:40.0875 0660 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
19:07:40.0877 0660 MSPQM - ok
19:07:41.0157 0660 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
19:07:41.0164 0660 MsRPC - ok
19:07:41.0446 0660 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
19:07:41.0449 0660 mssmbios - ok
19:07:41.0738 0660 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
19:07:41.0740 0660 MSTEE - ok
19:07:42.0055 0660 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
19:07:42.0057 0660 MTConfig - ok
19:07:42.0331 0660 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
19:07:42.0334 0660 Mup - ok
19:07:42.0643 0660 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
19:07:42.0652 0660 NativeWifiP - ok
19:07:43.0142 0660 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
19:07:43.0158 0660 NDIS - ok
19:07:43.0623 0660 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
19:07:43.0626 0660 NdisCap - ok
19:07:43.0907 0660 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
19:07:43.0909 0660 NdisTapi - ok
19:07:44.0283 0660 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
19:07:44.0286 0660 Ndisuio - ok
19:07:44.0578 0660 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
19:07:44.0585 0660 NdisWan - ok
19:07:44.0986 0660 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
19:07:45.0005 0660 NDProxy - ok
19:07:45.0330 0660 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
19:07:45.0333 0660 NetBIOS - ok
19:07:45.0610 0660 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
19:07:45.0618 0660 NetBT - ok
19:07:45.0933 0660 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
19:07:45.0936 0660 nfrd960 - ok
19:07:46.0234 0660 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
19:07:46.0237 0660 Npfs - ok
19:07:46.0526 0660 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
19:07:46.0528 0660 nsiproxy - ok
19:07:46.0908 0660 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
19:07:46.0943 0660 Ntfs - ok
19:07:47.0222 0660 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
19:07:47.0224 0660 Null - ok
19:07:47.0501 0660 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
19:07:47.0505 0660 nvraid - ok
19:07:47.0782 0660 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
19:07:47.0787 0660 nvstor - ok
19:07:48.0072 0660 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
19:07:48.0077 0660 nv_agp - ok
19:07:48.0384 0660 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
19:07:48.0395 0660 ohci1394 - ok
19:07:48.0746 0660 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
19:07:48.0749 0660 Parport - ok
19:07:49.0240 0660 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
19:07:49.0243 0660 partmgr - ok
19:07:49.0486 0660 PCDSRVC{127174DC-C366ED8B-06020101}_0 (7317a0b550f7ac0223b7070897670476) c:\program files\pc-doctor\pcdsrvc_x64.pkms
19:07:49.0512 0660 PCDSRVC{127174DC-C366ED8B-06020101}_0 - ok
19:07:49.0819 0660 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
19:07:49.0826 0660 pci - ok
19:07:50.0164 0660 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
19:07:50.0167 0660 pciide - ok
19:07:50.0450 0660 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
19:07:50.0455 0660 pcmcia - ok
19:07:50.0731 0660 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
19:07:50.0734 0660 pcw - ok
19:07:51.0200 0660 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
19:07:51.0211 0660 PEAUTH - ok
19:07:51.0679 0660 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
19:07:51.0683 0660 PptpMiniport - ok
19:07:51.0968 0660 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
19:07:51.0972 0660 Processor - ok
19:07:52.0281 0660 psadd (515a7c5a0886fcc60901916785efd549) C:\Windows\system32\DRIVERS\psadd.sys
19:07:52.0284 0660 psadd - ok
19:07:52.0587 0660 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
19:07:52.0591 0660 Psched - ok
19:07:52.0889 0660 PSI (fb46e9a827a8799ebd7bfa9128c91f37) C:\Windows\system32\DRIVERS\psi_mf.sys
19:07:52.0892 0660 PSI - ok
19:07:53.0575 0660 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
19:07:53.0600 0660 ql2300 - ok
19:07:53.0880 0660 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
19:07:53.0883 0660 ql40xx - ok
19:07:54.0163 0660 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
19:07:54.0165 0660 QWAVEdrv - ok
19:07:54.0456 0660 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
19:07:54.0458 0660 RasAcd - ok
19:07:54.0749 0660 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
19:07:54.0751 0660 RasAgileVpn - ok
19:07:55.0251 0660 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
19:07:55.0254 0660 Rasl2tp - ok
19:07:55.0552 0660 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
19:07:55.0555 0660 RasPppoe - ok
19:07:55.0854 0660 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
19:07:55.0857 0660 RasSstp - ok
19:07:56.0137 0660 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
19:07:56.0146 0660 rdbss - ok
19:07:56.0435 0660 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
19:07:56.0438 0660 rdpbus - ok
19:07:56.0728 0660 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
19:07:56.0730 0660 RDPCDD - ok
19:07:57.0053 0660 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
19:07:57.0055 0660 RDPENCDD - ok
19:07:57.0353 0660 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
19:07:57.0355 0660 RDPREFMP - ok
19:07:57.0639 0660 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
19:07:57.0647 0660 RDPWD - ok
19:07:57.0941 0660 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
19:07:57.0947 0660 rdyboost - ok
19:07:58.0286 0660 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
19:07:58.0290 0660 rspndr - ok
19:07:58.0705 0660 RSUSBSTOR (763ae0c6d9df4c24b7e2c26036a8188a) C:\Windows\system32\Drivers\RtsUStor.sys
19:07:58.0711 0660 RSUSBSTOR - ok
19:07:59.0050 0660 RTL8167 (b15c021c2c9bb217a799d9532e8f04d4) C:\Windows\system32\DRIVERS\Rt64win7.sys
19:07:59.0058 0660 RTL8167 - ok
19:07:59.0430 0660 RTL8192Ce (7c44c9a974de5508910bfde4abc2e16c) C:\Windows\system32\DRIVERS\rtl8192Ce.sys
19:07:59.0450 0660 RTL8192Ce - ok
19:07:59.0752 0660 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
19:07:59.0755 0660 sbp2port - ok
19:08:00.0159 0660 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
19:08:00.0162 0660 scfilter - ok
19:08:00.0499 0660 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
19:08:00.0502 0660 secdrv - ok
19:08:00.0875 0660 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
19:08:00.0877 0660 Serenum - ok
19:08:01.0160 0660 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
19:08:01.0164 0660 Serial - ok
19:08:01.0601 0660 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
19:08:01.0610 0660 sermouse - ok
19:08:01.0935 0660 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
19:08:01.0937 0660 sffdisk - ok
19:08:02.0219 0660 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
19:08:02.0221 0660 sffp_mmc - ok
19:08:02.0510 0660 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
19:08:02.0513 0660 sffp_sd - ok
19:08:02.0796 0660 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
19:08:02.0799 0660 sfloppy - ok
19:08:03.0287 0660 Shockprf (380b52126e62c6c2d3c8ba805aadfdc7) C:\Windows\system32\DRIVERS\Apsx64.sys
19:08:03.0296 0660 Shockprf - ok
19:08:03.0713 0660 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
19:08:03.0716 0660 SiSRaid2 - ok
19:08:03.0998 0660 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
19:08:04.0001 0660 SiSRaid4 - ok
19:08:04.0325 0660 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
19:08:04.0328 0660 Smb - ok
19:08:04.0683 0660 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
19:08:04.0685 0660 spldr - ok
19:08:05.0164 0660 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
19:08:05.0176 0660 srv - ok
19:08:05.0481 0660 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
19:08:05.0489 0660 srv2 - ok
19:08:05.0780 0660 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
19:08:05.0784 0660 srvnet - ok
19:08:06.0092 0660 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
19:08:06.0095 0660 stexstor - ok
19:08:06.0427 0660 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
19:08:06.0429 0660 swenum - ok
19:08:06.0761 0660 SynTP (ebeada6a9a8cca0baae79ee720bd0156) C:\Windows\system32\DRIVERS\SynTP.sys
19:08:06.0785 0660 SynTP - ok
19:08:07.0175 0660 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
19:08:07.0205 0660 Tcpip - ok
19:08:07.0558 0660 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
19:08:07.0578 0660 TCPIP6 - ok
19:08:07.0862 0660 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
19:08:07.0864 0660 tcpipreg - ok
19:08:08.0162 0660 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
19:08:08.0164 0660 TDPIPE - ok
19:08:08.0562 0660 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
19:08:08.0565 0660 TDTCP - ok
19:08:08.0908 0660 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
19:08:08.0912 0660 tdx - ok
19:08:09.0375 0660 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\DRIVERS\termdd.sys
19:08:09.0378 0660 TermDD - ok
19:08:09.0738 0660 TPDIGIMN (5523c729f1ed31b63c88490af3d220fa) C:\Windows\system32\DRIVERS\ApsHM64.sys
19:08:09.0740 0660 TPDIGIMN - ok
19:08:10.0201 0660 TPM (dbcc20c02e8a3e43b03c304a4e40a84f) C:\Windows\system32\drivers\tpm.sys
19:08:10.0204 0660 TPM - ok
19:08:10.0517 0660 TPPWRIF (7165b5a9b4867f64a6d6935f57d4196b) C:\Windows\system32\drivers\Tppwr64v.sys
19:08:10.0520 0660 TPPWRIF - ok
19:08:10.0868 0660 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
19:08:10.0873 0660 tssecsrv - ok
19:08:11.0160 0660 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
19:08:11.0163 0660 TsUsbFlt - ok
19:08:11.0452 0660 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
19:08:11.0455 0660 TsUsbGD - ok
19:08:11.0763 0660 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
19:08:11.0767 0660 tunnel - ok
19:08:12.0051 0660 TVTI2C (4daae0413cd4e816258838e2fafb3147) C:\Windows\system32\DRIVERS\Tvti2c.sys
19:08:12.0054 0660 TVTI2C - ok
19:08:12.0330 0660 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
19:08:12.0333 0660 uagp35 - ok
19:08:12.0646 0660 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
19:08:12.0656 0660 udfs - ok
19:08:13.0158 0660 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
19:08:13.0163 0660 uliagpkx - ok
19:08:13.0580 0660 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
19:08:13.0582 0660 umbus - ok
19:08:13.0880 0660 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
19:08:13.0882 0660 UmPass - ok
19:08:14.0167 0660 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
19:08:14.0170 0660 usbccgp - ok
19:08:14.0448 0660 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
19:08:14.0456 0660 usbcir - ok
19:08:14.0729 0660 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
19:08:14.0732 0660 usbehci - ok
19:08:15.0314 0660 usbfilter (76e2ffad301490ba27b947c6507752fb) C:\Windows\system32\DRIVERS\usbfilter.sys
19:08:15.0317 0660 usbfilter - ok
19:08:15.0631 0660 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
19:08:15.0640 0660 usbhub - ok
19:08:15.0938 0660 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
19:08:15.0941 0660 usbohci - ok
19:08:16.0248 0660 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
19:08:16.0251 0660 usbprint - ok
19:08:16.0541 0660 usbsmi (6b2566e0b44c14577a40de521ad92563) C:\Windows\system32\DRIVERS\SMIksdrv.sys
19:08:16.0546 0660 usbsmi - ok
19:08:16.0826 0660 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:08:16.0829 0660 USBSTOR - ok
19:08:17.0120 0660 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
19:08:17.0123 0660 usbuhci - ok
19:08:17.0447 0660 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
19:08:17.0474 0660 usbvideo - ok
19:08:17.0824 0660 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
19:08:17.0826 0660 vdrvroot - ok
19:08:18.0133 0660 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
19:08:18.0136 0660 vga - ok
19:08:18.0491 0660 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
19:08:18.0493 0660 VgaSave - ok
19:08:18.0804 0660 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
19:08:18.0811 0660 vhdmp - ok
19:08:19.0087 0660 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
19:08:19.0092 0660 viaide - ok
19:08:19.0366 0660 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
19:08:19.0369 0660 volmgr - ok
19:08:19.0666 0660 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
19:08:19.0676 0660 volmgrx - ok
19:08:20.0088 0660 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
19:08:20.0097 0660 volsnap - ok
19:08:20.0381 0660 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
19:08:20.0385 0660 vsmraid - ok
19:08:20.0672 0660 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
19:08:20.0676 0660 vwifibus - ok
19:08:20.0972 0660 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
19:08:20.0976 0660 vwififlt - ok
19:08:21.0264 0660 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
19:08:21.0266 0660 vwifimp - ok
19:08:21.0564 0660 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
19:08:21.0567 0660 WacomPen - ok
19:08:21.0851 0660 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
19:08:21.0855 0660 WANARP - ok
19:08:21.0880 0660 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
19:08:21.0882 0660 Wanarpv6 - ok
19:08:22.0235 0660 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
19:08:22.0238 0660 Wd - ok
19:08:22.0528 0660 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
19:08:22.0542 0660 Wdf01000 - ok
19:08:23.0057 0660 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
19:08:23.0060 0660 WfpLwf - ok
19:08:23.0615 0660 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
19:08:23.0618 0660 WIMMount - ok
19:08:24.0006 0660 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
19:08:24.0009 0660 WinUsb - ok
19:08:24.0324 0660 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
19:08:24.0326 0660 WmiAcpi - ok
19:08:24.0650 0660 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
19:08:24.0652 0660 ws2ifsl - ok
19:08:25.0289 0660 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
19:08:25.0293 0660 WudfPf - ok
19:08:25.0596 0660 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
19:08:25.0601 0660 WUDFRd - ok
19:08:25.0718 0660 MBR (0x1B8) (cb28a275e2ddf97fa2c27ac353685c47) \Device\Harddisk0\DR0
19:08:25.0733 0660 \Device\Harddisk0\DR0 - ok
19:08:25.0752 0660 Boot (0x1200) (124e8b20f9cf21e19ec2173979395ccb) \Device\Harddisk0\DR0\Partition0
19:08:25.0756 0660 \Device\Harddisk0\DR0\Partition0 - ok
19:08:25.0784 0660 Boot (0x1200) (f59acb1ba08aaf729c8701cd5381b701) \Device\Harddisk0\DR0\Partition1
19:08:25.0797 0660 \Device\Harddisk0\DR0\Partition1 - ok
19:08:25.0838 0660 Boot (0x1200) (85554c5be3ab6f4c327e7bd8d8820f82) \Device\Harddisk0\DR0\Partition2
19:08:25.0840 0660 \Device\Harddisk0\DR0\Partition2 - ok
19:08:25.0848 0660 ============================================================
19:08:25.0848 0660 Scan finished
19:08:25.0848 0660 ============================================================
19:08:25.0883 4800 Detected object count: 0
19:08:25.0883 4800 Actual detected object count: 0

BC AdBot (Login to Remove)

 


#2 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,656 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:09:47 AM

Posted 20 November 2011 - 08:49 PM

Welcome aboard Posted Image

Download Security Check from HERE, and save it to your Desktop.

* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.

=============================================================================

Please download MiniToolBox and run it.

Checkmark following boxes:
  • Report IE Proxy Settings
  • Report FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size
Click Go and post the result.

=============================================================================

Please download GMER from one of the following locations and save it to your desktop:
  • Main Mirror
    This version will download a randomly named file (Recommended)
  • Zipped Mirror
    This version will download a zip file you will need to extract first. If you use this mirror, please extract the zip file to your desktop.
  • Disconnect from the Internet and close all running programs.
  • Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.
  • Double-click on the randomly named GMER file (i.e. n7gmo46c.exe) and allow the gmer.sys driver to load if asked.
  • Note: If you downloaded the zipped version, extract the file to its own folder such as C:\gmer and then double-click on gmer.exe.

    Posted Image
  • GMER will open to the Rootkit/Malware tab and perform an automatic quick scan when first run. (do not use the computer while the scan is in progress)
  • If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
  • Now click the Scan button. If you see a rootkit warning window, click OK.
  • When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
  • Click the Copy button and paste the results into your next reply.
  • Exit GMER and be sure to re-enable your anti-virus, Firewall and any other security programs you had disabled.

IMPORTANT! If for some reason GMER refuses to run, try again.
If it still fails, try to UN-check "Devices" in right pane.
If still no joy, try to run it from Safe Mode.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users