Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google redirect virus?


  • This topic is locked This topic is locked
16 replies to this topic

#1 Oceanb

Oceanb

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:03:30 AM

Posted 26 December 2011 - 06:40 PM

Hello, I'm having trouble using the search engine in google. Every time I search for something in google and click on my results I get redirected to some other website. I've ran MAM and SuperAntiSpyware but had no luck. I use Firefox 3.6 and my operating system is Windows Vista 64 bit. I would appreciated if you can help me out. Thanks.

BC AdBot (Login to Remove)

 


#2 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,738 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:01:30 AM

Posted 27 December 2011 - 07:51 PM

Welcome aboard Posted Image

Download Security Check from HERE, and save it to your Desktop.

* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.

=============================================================================

Please download MiniToolBox and run it.

Checkmark following boxes:
  • Report IE Proxy Settings
  • Report FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size
Click Go and post the result.

=============================================================================

Download Malwarebytes' Anti-Malware (aka MBAM): https://www.bleepingcomputer.com/download/malwarebytes-anti-malware/ to your desktop.

* Double-click mbam-setup.exe and follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad.
* Post the log back here.

Be sure to restart the computer.

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

=============================================================================

Please download GMER from one of the following locations and save it to your desktop:
  • Main Mirror
    This version will download a randomly named file (Recommended)
  • Zipped Mirror
    This version will download a zip file you will need to extract first. If you use this mirror, please extract the zip file to your desktop.
  • Disconnect from the Internet and close all running programs.
  • Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.
  • Double-click on the randomly named GMER file (i.e. n7gmo46c.exe) and allow the gmer.sys driver to load if asked.
  • Note: If you downloaded the zipped version, extract the file to its own folder such as C:\gmer and then double-click on gmer.exe.

    Posted Image
  • GMER will open to the Rootkit/Malware tab and perform an automatic quick scan when first run. (do not use the computer while the scan is in progress)
  • If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
  • Now click the Scan button. If you see a rootkit warning window, click OK.
  • When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
  • Click the Copy button and paste the results into your next reply.
  • Exit GMER and be sure to re-enable your anti-virus, Firewall and any other security programs you had disabled.

IMPORTANT! If for some reason GMER refuses to run, try again.
If it still fails, try to UN-check "Devices" in right pane.
If still no joy, try to run it from Safe Mode.

My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click DONATE

 


#3 Oceanb

Oceanb
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:03:30 AM

Posted 29 December 2011 - 07:06 PM

Hello, I have done all tests and I got the following. I didn't get anything for the GMER test.

This is the result from Security Check.



Results of screen317's Security Check version 0.99.24
Windows Vista x64 (UAC is enabled)
Out of date service pack!!
Internet Explorer 8 Out of date!
``````````````````````````````
Antivirus/Firewall Check:

Windows Security Center service is not running! This report may not be accurate!
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:

Malwarebytes' Anti-Malware
CCleaner
Disk Cleaner (remove only)
Java™ 6 Update 18
Java™ 6 Update 5
Out of date Java installed!
````````````````````````````````
Process Check:
objlist.exe by Laurent

``````````End of Log````````````










This is the result of MiniToolBox:


MiniToolBox by Farbar
Ran by Scott (administrator) on 29-12-2011 at 14:54:25
Microsoft® Windows Vista™ Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 0
========================= Hosts content: =================================

::1 localhost






69.72.252.254 www.google-analytics.com.
69.72.252.254 ad-emea.doubleclick.net.
69.72.252.254 www.statcounter.com.
184.95.41.155 www.google-analytics.com.
184.95.41.155 ad-emea.doubleclick.net.
184.95.41.155 www.statcounter.com.

127.0.0.1 localhost

========================= IP Configuration: ================================

Cisco AnyConnect VPN Virtual Miniport Adapter for Windows x64 = Local Area Connection 2 (Disconnected)
Broadcom 802.11b/g WLAN = Wireless Network Connection (Connected)
Realtek RTL8102/8103 Family PCI-E FE NIC = Local Area Connection (Media disconnected)
The following helper DLL cannot be loaded: IFMON.DLL.
The following command was not found: int ip dump.

Windows IP Configuration

Host Name . . . . . . . . . . . . : Scott-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : buffalo.edu

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : optimum
Description . . . . . . . . . . . : Broadcom 802.11b/g WLAN
Physical Address. . . . . . . . . : 00-21-00-98-5F-79
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::7497:9053:b66:2044%11(Preferred)
IPv4 Address. . . . . . . . . . . : 25.155.86.252(Preferred)
Subnet Mask . . . . . . . . . . . : 255.248.0.0
Lease Obtained. . . . . . . . . . : Thursday, December 29, 2011 1:57:13 PM
Lease Expires . . . . . . . . . . : Thursday, December 29, 2011 3:12:23 PM
Default Gateway . . . . . . . . . : 25.152.0.1
DHCP Server . . . . . . . . . . . : 10.248.69.246
DNS Servers . . . . . . . . . . . : 10.240.205.161
10.240.205.162
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek RTL8102/8103 Family PCI-E FE NIC
Physical Address. . . . . . . . . : 00-23-8B-54-0D-FD
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{0A26E859-7075-46D7-BB3B-F78DD0A92B3F}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.buffalo.edu
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 6TO4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 6TO4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 13:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 6TO4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 15:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 6TO4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 16:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 20:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 6TO4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 21:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{F0F6990E-5E68-47DD-AD0B-5B3397C6503B}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes


Pinging google.com [74.125.115.105] with 32 bytes of data:

Reply from 74.125.115.105: bytes=32 time=32ms TTL=51

Reply from 74.125.115.105: bytes=32 time=45ms TTL=51



Ping statistics for 74.125.115.105:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 32ms, Maximum = 45ms, Average = 38ms



Pinging yahoo.com [209.191.122.70] with 32 bytes of data:

Reply from 209.191.122.70: bytes=32 time=82ms TTL=50

Reply from 209.191.122.70: bytes=32 time=95ms TTL=50



Ping statistics for 209.191.122.70:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 82ms, Maximum = 95ms, Average = 88ms



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
11 ...00 21 00 98 5f 79 ...... Broadcom 802.11b/g WLAN
10 ...00 23 8b 54 0d fd ...... Realtek RTL8102/8103 Family PCI-E FE NIC
1 ........................... Software Loopback Interface 1
20 ...00 00 00 00 00 00 00 e0 isatap.{0A26E859-7075-46D7-BB3B-F78DD0A92B3F}
23 ...00 00 00 00 00 00 00 e0 isatap.buffalo.edu
12 ...00 00 00 00 00 00 00 e0 6TO4 Adapter
13 ...00 00 00 00 00 00 00 e0 6TO4 Adapter
14 ...00 00 00 00 00 00 00 e0 6TO4 Adapter
16 ...00 00 00 00 00 00 00 e0 6TO4 Adapter
17 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
21 ...00 00 00 00 00 00 00 e0 6TO4 Adapter
22 ...00 00 00 00 00 00 00 e0 isatap.{F0F6990E-5E68-47DD-AD0B-5B3397C6503B}
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 25.152.0.1 25.155.86.252 40
25.152.0.0 255.248.0.0 On-link 25.155.86.252 296
25.155.86.252 255.255.255.255 On-link 25.155.86.252 296
25.159.255.255 255.255.255.255 On-link 25.155.86.252 296
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 25.155.86.252 296
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 25.155.86.252 296
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 296 fe80::/64 On-link
11 296 fe80::7497:9053:b66:2044/128
On-link
1 306 ff00::/8 On-link
11 296 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 mswsock.dll [File Not found] ()
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [19968] (Microsoft Corporation)
Catalog9 01 C:\Program Files (x86)\Common Files\PC Tools\Lsp\PCTLsp.dll [329688] (PC Tools Research Pty Ltd.)
Catalog9 02 C:\Program Files (x86)\Common Files\PC Tools\Lsp\PCTLsp.dll [329688] (PC Tools Research Pty Ltd.)
Catalog9 03 C:\Program Files (x86)\Common Files\PC Tools\Lsp\PCTLsp.dll [329688] (PC Tools Research Pty Ltd.)
Catalog9 04 C:\Program Files (x86)\Common Files\PC Tools\Lsp\PCTLsp.dll [329688] (PC Tools Research Pty Ltd.)
Catalog9 05 C:\Program Files (x86)\Common Files\PC Tools\Lsp\PCTLsp.dll [329688] (PC Tools Research Pty Ltd.)
Catalog9 06 C:\Program Files (x86)\Common Files\PC Tools\Lsp\PCTLsp.dll [329688] (PC Tools Research Pty Ltd.)
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
Catalog9 11 mswsock.dll [File Not found] ()
Catalog9 12 mswsock.dll [File Not found] ()
Catalog9 13 mswsock.dll [File Not found] ()
Catalog9 14 mswsock.dll [File Not found] ()
Catalog9 15 mswsock.dll [File Not found] ()
Catalog9 16 mswsock.dll [File Not found] ()
Catalog9 17 C:\Program Files (x86)\Common Files\PC Tools\Lsp\PCTLsp.dll [329688] (PC Tools Research Pty Ltd.)
x64-Catalog5 01 mswsock.dll [File Not found] ()
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [62976] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [78848] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [78848] (Microsoft Corporation)
x64-Catalog5 05 mswsock.dll [File Not found] ()
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [27648] (Microsoft Corporation)
x64-Catalog9 01 C:\Program Files (x86)\Common Files\PC Tools\Lsp\PCTLsp64.dll [449496] (PC Tools Research Pty Ltd.)
x64-Catalog9 02 C:\Program Files (x86)\Common Files\PC Tools\Lsp\PCTLsp64.dll [449496] (PC Tools Research Pty Ltd.)
x64-Catalog9 03 C:\Program Files (x86)\Common Files\PC Tools\Lsp\PCTLsp64.dll [449496] (PC Tools Research Pty Ltd.)
x64-Catalog9 04 C:\Program Files (x86)\Common Files\PC Tools\Lsp\PCTLsp64.dll [449496] (PC Tools Research Pty Ltd.)
x64-Catalog9 05 C:\Program Files (x86)\Common Files\PC Tools\Lsp\PCTLsp64.dll [449496] (PC Tools Research Pty Ltd.)
x64-Catalog9 06 C:\Program Files (x86)\Common Files\PC Tools\Lsp\PCTLsp64.dll [449496] (PC Tools Research Pty Ltd.)
x64-Catalog9 07 mswsock.dll [File Not found] ()
x64-Catalog9 08 mswsock.dll [File Not found] ()
x64-Catalog9 09 mswsock.dll [File Not found] ()
x64-Catalog9 10 mswsock.dll [File Not found] ()
x64-Catalog9 11 mswsock.dll [File Not found] ()
x64-Catalog9 12 mswsock.dll [File Not found] ()
x64-Catalog9 13 mswsock.dll [File Not found] ()
x64-Catalog9 14 mswsock.dll [File Not found] ()
x64-Catalog9 15 mswsock.dll [File Not found] ()
x64-Catalog9 16 mswsock.dll [File Not found] ()
x64-Catalog9 17 C:\Program Files (x86)\Common Files\PC Tools\Lsp\PCTLsp64.dll [449496] (PC Tools Research Pty Ltd.)

========================= Event log errors: ==============================

Edited by Oceanb, 29 December 2011 - 07:50 PM.


#4 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,738 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:01:30 AM

Posted 29 December 2011 - 07:11 PM

MiniToolbox log is incomplete.
MBAM log is missing.

My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click DONATE

 


#5 Oceanb

Oceanb
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:03:30 AM

Posted 29 December 2011 - 07:53 PM

(continue)

MiniToolbox results:

========================= Event log errors: ===============================

Application errors:
==================
Error: (12/29/2011 02:55:22 PM)(Source: Application Error) (User: )
Description: Faulting application nslookup.exe, version 6.0.6001.18000, time stamp 0x47918e19, faulting module ntdll.dll, version 6.0.6001.18538, time stamp 0x4cb733e1, exception code 0xc0000138, fault offset 0x0006f1e7,
process id 0xc04, application start time 0xnslookup.exe0.

Error: (12/29/2011 02:55:11 PM) (Source: Application Error) (User: )
Description: Faulting application nslookup.exe, version 6.0.6001.18000, time stamp 0x47918e19, faulting module ntdll.dll, version 6.0.6001.18538, time stamp 0x4cb733e1, exception code 0xc0000138, fault offset 0x0006f1e7,
process id 0x13cc, application start time 0xnslookup.exe0.

Error: (12/29/2011 02:54:56 PM) (Source: Application Error) (User: )
Description: Faulting application nslookup.exe, version 6.0.6001.18000, time stamp 0x47918e19, faulting module ntdll.dll, version 6.0.6001.18538, time stamp 0x4cb733e1, exception code 0xc0000138, fault offset 0x0006f1e7,
process id 0xe70, application start time 0xnslookup.exe0.


Error: (12/29/2011 01:57:30 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND
TargetInstance.LoadPercentage > 990x80041003

Edited by Oceanb, 29 December 2011 - 08:19 PM.


#6 Oceanb

Oceanb
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:03:30 AM

Posted 29 December 2011 - 08:10 PM

(continue)

Error: (12/29/2011 00:52:48 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for
"C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18523_none_5cdd65e20837faf2.manifest1".
Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18523_none_5cdd65e20837faf2.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18523_none_5cdd65e20837faf2.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18523_none_5cdd65e20837faf2.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18523_none_15302f0af3bbd1ec.manifest.


Error: (12/28/2011 11:10:51 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/27/2011 11:02:08 AM) (Source: LoadPerf) (User: )
Description: 679016

Error: (12/27/2011 11:02:05 AM) (Source: LoadPerf) (User: )
Description: WmiApRplWmiApRpl8



System errors:
=============
Error: (12/29/2011 02:00:58 PM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80070424

Error: (12/29/2011 01:58:53 PM) (Source: Service Control Manager) (User: )
Description: LSI_SAS
SYMTDI

Error: (12/29/2011 01:58:53 PM) (Source: Service Control Manager) (User: )
Description: QuickPlay Task Scheduler (QTS)

Error: (12/29/2011 01:58:52 PM) (Source: Service Control Manager) (User: )
Description: HP CUE DeviceDiscovery Service

Error: (12/29/2011 01:57:30 PM) (Source: Service Control Manager) (User: )
Description: IPsec Policy AgentBFE

Error: (12/29/2011 01:57:30 PM) (Source: Service Control Manager) (User: )
Description: IKE and AuthIP IPsec Keying ModulesBFE

Error: (12/29/2011 01:57:30 PM) (Source: Service Control Manager) (User: )
Description: Computer Browser%%1060

Error: (12/29/2011 01:57:10 PM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueueKerberos

Error: (12/29/2011 01:52:12 PM) (Source: DCOM) (User: )
Description: {C2BFE331-6739-4270-86C9-493D9A04CD38}

Error: (12/29/2011 01:51:51 PM) (Source: DCOM) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}


Microsoft Office Sessions:
=========================
Error: (11/13/2011 10:38:26 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6535.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 8204 seconds with 180 seconds of active time. This session ended with a crash.

Error: (11/03/2011 10:34:52 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6535.5002, Microsoft Office Version: 12.0.6425.1000. This session lasted 3 seconds with 0 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
7-Zip 4.65
Acrobat.com (Version: 1.7.186)
Activation Assistant for the 2007 Microsoft Office suites
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0)
ActiveCheck component for HP Active Support Library (Version: 3.0.0.2)
Adobe AIR (Version: 1.5.2.8870)
Adobe Download Manager (Version: 1.6.2.63)
Adobe Flash Player 11 ActiveX (Version: 11.0.1.152)
Adobe Flash Player 11 Plugin 64-bit (Version: 11.1.102.55)
Adobe Reader 9.4.0 (Version: 9.4.0)
Amazon MP3 Downloader 1.0.10
Apple Application Support (Version: 1.0)
Apple Mobile Device Support (Version: 3.2.0.47)
Apple Software Update (Version: 2.1.2.120)
AutoCAD Electrical 2006 (Version: 3.0.53.100)
Autodesk DWF Viewer (Version: 5.1)
Belkin 54Mbps Wireless Network Adapter (Version: 1.00.01)
Bizarro DC++ 0.761 (Version: 0.761)
Broadcom 802.11 Wireless LAN Adapter (Version: 4.170.77.3)
BufferChm (Version: 100.0.170.000)
Cards_Calendar_OrderGift_DoMorePlugout (Version: 1.00.0000)
CCleaner (Version: 2.28)
Cisco AnyConnect VPN Client (Version: 2.4.0202)
Compatibility Pack for the 2007 Office system (Version: 12.0.6425.1000)
CustomerResearchQFolder (Version: 1.00.0000)
CyberLink DVD Suite (Version: 5.5.1519)
CyberLink YouCam (Version: 2.0.1616)
D1500 (Version: 100.0.206.000)
D1500_Help (Version: 100.0.206.000)
DeviceDiscovery (Version: 100.0.190.000)
DeviceManagementQFolder (Version: 1.00.0000)
Disk Cleaner (remove only)
DivX Setup (Version: 2.6.1.3)
DJ_SF_03_D1500_ProductContext (Version: 100.0.215.000)
DJ_SF_03_D1500_Software (Version: 100.0.206.000)
DJ_SF_03_D1500_Software_Min (Version: 100.0.206.000)
DVD Flick 1.3.0.7 (Version: 1.3.0.7)
E.M. Total Video Player 1.31
eSupportQFolder (Version: 1.00.0000)
GIMP 2.6.8
Google SketchUp 8 (Version: 3.0.11752)
GPBaseService (Version: 100.0.187.000)
GPBaseService2 (Version: 130.0.371.000)
GTK+ Runtime 2.14.7 rev a (remove only)
HiJackThis (Version: 1.0.0)
HP Active Support Library (Version: 3.1.9.1)
HP Customer Experience Enhancements (Version: 5.6.0.2510)
HP Customer Participation Program 10.0 (Version: 10.0)
HP Deskjet D1500 Printer Driver Software 10.0 Rel .3 (Version: 10.0)
HP Doc Viewer (Version: 1.03.0001)
HP Help and Support (Version: 2.0.10.0)
HP Imaging Device Functions 10.0 (Version: 10.0)
HP Photosmart Essential 2.5 (Version: 1.02.0000)
HP Photosmart Essential 2.5 (Version: 2.5)
HP Quick Launch Buttons 6.40 D1 (Version: 6.40 D1)
HP QuickPlay 3.7
HP QuickTouch 1.00 D2 (Version: 1.0.9)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Solution Center 13.0 (Version: 13.0)
HP Total Care Advisor (Version: 2.1.3359.2635)
HP Update (Version: 4.000.010.008)
HP User Guides 0102 (Version: 1.01.0000)
HP Wireless Assistant (Version: 3.00 I2)
HPAsset component for HP Active Support Library (Version: 3.0.0.3)
HPPhotoSmartDiscLabel_PaperLabel (Version: 2.02.0000)
HPPhotoSmartDiscLabel_PrintOnDisc (Version: 2.02.0000)
HPPhotoSmartDiscLabel_Tattoo (Version: 2.02.0000)
HPPhotoSmartDiscLabelContent1 (Version: 2.02.0000)
hpphotosmartdisclabelplugin (Version: 2.02.0000)
HPPhotoSmartPhotobookHolidayPack1 (Version: 1.00.0000)
HPPhotoSmartPhotobookModernPack1 (Version: 1.00.0000)
HPPhotoSmartPhotobookPlayfulPack1 (Version: 1.00.0000)
HPPhotoSmartPhotobookScrapbookPack1 (Version: 1.00.0000)
HPPhotoSmartPhotobookWebPack1 (Version: 1.00.0000)
HPProductAssistant (Version: 130.0.371.000)
HPSSupply (Version: 100.0.170.000)
HPTCSSetup (Version: 1.0.964.2626)
IDT Audio (Version: 1.0.5893.0)
ImagXpress (Version: 7.0.74.0)
Intel® Graphics Media Accelerator Driver
Intel® Matrix Storage Manager
Java™ 6 Update 18 (Version: 6.0.180)
Java™ 6 Update 5 (Version: 1.6.0.50)
LabelPrint (Version: 2.20.2719)
LG USB Modem driver
Malwarebytes' Anti-Malware version 1.51.2.1300 (Version: 1.51.2.1300)
MarketResearch (Version: 100.0.170.000)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6425.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Home and Student 2007 (Version: 12.0.6425.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6425.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6425.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Silverlight (Version: 4.0.60831.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 9.7.0621)
Microsoft XML Parser and SDK (Version: 4.10.9404.0)
Mozilla Firefox (3.6.25) (Version: 3.6.25 (en-US))
MSVCRT (Version: 14.0.1468.721)
MSVCSetup (Version: 1.00.0000)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML4 Parser (Version: 1.0.0)
muvee autoProducer 6.1 (Version: 6.10.050)
My HP Games (Version: 1.0.0.43)
Nero Burning ROM Help (Version: 9.2.2.100)
Nero ControlCenter (Version: 0.0.0.1)
Nero Vision (Version: 0.0.0.2)
NeroLiveGadget (Version: 1.0.8.100)
NeroLiveGadget Help (Version: 1.0.6.100)
neroxml (Version: 1.0.0)
Power2Go (Version: 5.6.3919)
PowerDirector (Version: 6.5.2719)
ProtectSmart Hard Drive Protection (Version: 3.10.1.7)
PSSWCORE (Version: 2.02.0000)
Quick CD/DVD Burner V2.8.5 (Version: http://www.cute-cd-dvd-burner.com)
QuickTime (Version: 7.64.17.73)
Realtek 8169 8168 8101E 8102E Ethernet Driver (Version: 1.00.0000)
Realtek USB 2.0 Card Reader (Version: )
Registry Mechanic 9.0 (Version: 9.0)
Registry Winner 5.9 (Version: 5.9.6.10)
Revo Uninstaller 1.93 (Version: 1.93)
Serif WebPlus 10 (Version: 10.1.1.036)
Serif WebPlus 10 Resources (Version: 10.1.0.007)
Shop for HP Supplies (Version: 10.0)
Skype™ 5.5 (Version: 5.5.124)
SmartWebPrinting (Version: 140.0.186.000)
SolutionCenter (Version: 130.0.373.000)
Spelling Dictionaries Support For Adobe Reader 9 (Version: 9.0.0)
Spyware Doctor 8.0 (Version: 8.0)
StartNow Toolbar (Version: 2.3.0)
Status (Version: 100.0.175.000)
SUPERAntiSpyware (Version: 5.0.1136)
Synaptics Pointing Device Driver (Version: 11.0.7.0)
Toolbox (Version: 100.0.170.000)
Total Video Player 1.03
TrayApp (Version: 100.0.170.000)
UnloadSupport (Version: 10.0.0)
Update for 2007 Microsoft Office System (KB2284654)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596651) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596789) 32-Bit Edition
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 (KB2596596) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2583910)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update for Outlook 2007 Junk Email Filter (KB2596560)
Veetle TV 0.9.17 (Version: 0.9.17)
VideoLAN VLC media player 0.8.1 (Version: 0.8.1)
VideoToolkit01 (Version: 100.0.128.000)
Viewpoint Media Player
WebReg (Version: 100.0.170.000)
Windows Live Call (Version: 14.0.8117.0416)
Windows Live Communications Platform (Version: 14.0.8117.416)
Windows Live Essentials (Version: 14.0.8117.0416)
Windows Live Essentials (Version: 14.0.8117.416)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
Windows Live Messenger (Version: 14.0.8117.0416)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinRAR archiver
Xvid 1.2.1 final uninstall (Version: 1.2)

========================= Memory info: ===================================

Percentage of memory in use: 73%
Total physical RAM: 1978.39 MB
Available physical RAM: 516.72 MB
Total Pagefile: 4200.05 MB
Available Pagefile: 2283.57 MB
Total Virtual: 4095.88 MB
Available Virtual: 3996.24 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:221.74 GB) (Free:37.42 GB) NTFS
2 Drive d: (HP_RECOVERY) (Fixed) (Total:11.14 GB) (Free:1.86 GB) NTFS

========================= Users: ========================================

User accounts for \\SCOTT-PC

Administrator Guest Scott


**** End of log ****








This is the result from MBAM.


Malwarebytes Anti-Malware 1.60.0.1800
www.malwarebytes.org

Database version: v2011.12.29.04

Windows Vista Service Pack 1 x64 NTFS
Internet Explorer 8.0.6001.19019
Scott :: SCOTT-PC [administrator]

12/29/2011 3:14:57 PM
mbam-log-2011-12-29 (15-14-57).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 263696
Time elapsed: 26 minute(s), 58 second(s)

Memory Processes Detected: 1
C:\Windows\Temp\_ex-68.exe (Spyware.Passwords.XGen) -> 3188 -> Delete on reboot.

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|MozillaAgent (Spyware.Passwords.XGen) -> Data: C:\Windows\Temp\_ex-68.exe -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 7
C:\Windows\Temp\_ex-68.exe (Spyware.Passwords.XGen) -> Delete on reboot.
C:\Windows\System32\582pPaP.com (Trojan.Krypt) -> Quarantined and deleted successfully.
C:\Windows\SysWOW64\582pPaP.com (Trojan.Krypt) -> Quarantined and deleted successfully.
C:\Users\Scott\AppData\Local\Temp\ICReinstall\cnet_AutoShutdown_exe.exe (PUP.Adware.Downloader) -> Quarantined and deleted successfully.
C:\Windows\Temp\fmvtyf\setup.exe (Trojan.Krypt) -> Quarantined and deleted successfully.
C:\Users\Scott\Downloads\cnet2_AutoShutdown_exe.exe (PUP.Adware.Downloader) -> Quarantined and deleted successfully.
C:\Users\Scott\Downloads\cnet_AutoShutdown_exe.exe (PUP.Adware.Downloader) -> Quarantined and deleted successfully.

Edited by Oceanb, 29 December 2011 - 08:12 PM.


#7 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,738 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:01:30 AM

Posted 29 December 2011 - 08:38 PM

...and GMER...

My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click DONATE

 


#8 Oceanb

Oceanb
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:03:30 AM

Posted 31 December 2011 - 12:20 AM

I ran the GMER test twice and I didn't get any results.

Edited by Oceanb, 31 December 2011 - 12:26 AM.


#9 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,738 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:01:30 AM

Posted 31 December 2011 - 12:23 AM

How is redirection now?

Download aswMBR to your desktop.
Double click the aswMBR.exe to run it.
If you see this question: Would you like to download latest Avast! virus definitions?" say "Yes".
Click the "Scan" button to start scan.
On completion of the scan click "Save log", save it to your desktop and post in your next reply.

NOTE. aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.

My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click DONATE

 


#10 Oceanb

Oceanb
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:03:30 AM

Posted 31 December 2011 - 11:32 AM

My redirection is still pretty bad.

I forgot to mention that in the application errors section of MiniToolbox I receive an error regarding download windows update dot com I can't type the full name here because I keep receiving an error.

aswMBR version 0.9.9.1124 Copyright© 2011 AVAST Software
Run date: 2011-12-31 00:33:37
-----------------------------
00:33:37.241 OS Version: Windows x64 6.0.6001 Service Pack 1
00:33:37.241 Number of processors: 2 586 0xF0D
00:33:37.242 ComputerName: SCOTT-PC UserName: Scott
00:33:38.385 Initialize success
00:37:42.345 AVAST engine defs: 11123001
09:06:04.027 The log file has been saved successfully to "C:\Users\Scott\Desktop\aswMBR.txt"

My redirection is still pretty bad.

I forgot to mention that in the application errors section of MiniToolbox I receive an error regarding windows update dot com I can't type the full name here because I keep receiving an error.

aswMBR version 0.9.9.1124 Copyright© 2011 AVAST Software
Run date: 2011-12-31 00:33:37
-----------------------------
00:33:37.241 OS Version: Windows x64 6.0.6001 Service Pack 1
00:33:37.241 Number of processors: 2 586 0xF0D
00:33:37.242 ComputerName: SCOTT-PC UserName: Scott
00:33:38.385 Initialize success
00:37:42.345 AVAST engine defs: 11123001
09:06:04.027 The log file has been saved successfully to "C:\Users\Scott\Desktop\aswMBR.txt"

#11 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,738 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:01:30 AM

Posted 31 December 2011 - 01:27 PM

That looks suspicious.

Download TDSSKiller and save it to your desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.

My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click DONATE

 


#12 Oceanb

Oceanb
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:03:30 AM

Posted 31 December 2011 - 07:52 PM

Thanks for helping me track down this virus and Happy New Years!

19:40:49.0233 3868 TDSS rootkit removing tool 2.6.25.0 Dec 23 2011 14:51:16
19:40:49.0573 3868 ============================================================
19:40:49.0573 3868 Current date / time: 2011/12/31 19:40:49.0573
19:40:49.0574 3868 SystemInfo:
19:40:49.0574 3868
19:40:49.0574 3868 OS Version: 6.0.6001 ServicePack: 1.0
19:40:49.0574 3868 Product type: Workstation
19:40:49.0574 3868 ComputerName: SCOTT-PC
19:40:49.0575 3868 UserName: Scott
19:40:49.0575 3868 Windows directory: C:\Windows
19:40:49.0575 3868 System windows directory: C:\Windows
19:40:49.0575 3868 Running under WOW64
19:40:49.0575 3868 Processor architecture: Intel x64
19:40:49.0575 3868 Number of processors: 2
19:40:49.0575 3868 Page size: 0x1000
19:40:49.0575 3868 Boot type: Normal boot
19:40:49.0575 3868 ============================================================
19:40:49.0999 3868 Initialize success
19:41:10.0237 4740 ============================================================
19:41:10.0237 4740 Scan started
19:41:10.0237 4740 Mode: Manual;
19:41:10.0237 4740 ============================================================
19:41:10.0531 4740 Accelerometer (70bbe6a93a6bb26b42b03c7d08646d4e) C:\Windows\system32\DRIVERS\Accelerometer.sys
19:41:10.0533 4740 Accelerometer - ok
19:41:10.0576 4740 ACPI (8c99ed256a889d647935a97c543b7b85) C:\Windows\system32\drivers\acpi.sys
19:41:10.0581 4740 ACPI - ok
19:41:10.0695 4740 adp94xx (f14215e37cf124104575073f782111d2) C:\Windows\system32\drivers\adp94xx.sys
19:41:10.0702 4740 adp94xx - ok
19:41:10.0739 4740 adpahci (7d05a75e3066861a6610f7ee04ff085c) C:\Windows\system32\drivers\adpahci.sys
19:41:10.0744 4740 adpahci - ok
19:41:10.0760 4740 adpu160m (820a201fe08a0c345b3bedbc30e1a77c) C:\Windows\system32\drivers\adpu160m.sys
19:41:10.0763 4740 adpu160m - ok
19:41:10.0778 4740 adpu320 (9b4ab6854559dc168fbb4c24fc52e794) C:\Windows\system32\drivers\adpu320.sys
19:41:10.0783 4740 adpu320 - ok
19:41:10.0936 4740 AFD (9bb97042fa331a0fb4bdd98b9280a50a) C:\Windows\system32\drivers\afd.sys
19:41:10.0942 4740 AFD - ok
19:41:11.0012 4740 agp440 (f6f6793b7f17b550ecfdbd3b229173f7) C:\Windows\system32\drivers\agp440.sys
19:41:11.0014 4740 agp440 - ok
19:41:11.0054 4740 aic78xx (222cb641b4b8a1d1126f8033f9fd6a00) C:\Windows\system32\drivers\djsvs.sys
19:41:11.0057 4740 aic78xx - ok
19:41:11.0114 4740 aliide (157d0898d4b73f075ce9fa26b482df98) C:\Windows\system32\drivers\aliide.sys
19:41:11.0115 4740 aliide - ok
19:41:11.0130 4740 amdide (970fa5059e61e30d25307b99903e991e) C:\Windows\system32\drivers\amdide.sys
19:41:11.0131 4740 amdide - ok
19:41:11.0190 4740 AmdK8 (cdc3632a3a5ea4dbb83e46076a3165a1) C:\Windows\system32\DRIVERS\amdk8.sys
19:41:11.0192 4740 AmdK8 - ok
19:41:11.0300 4740 arc (ba8417d4765f3988ff921f30f630e303) C:\Windows\system32\drivers\arc.sys
19:41:11.0303 4740 arc - ok
19:41:11.0342 4740 arcsas (9d41c435619733b34cc16a511e644b11) C:\Windows\system32\drivers\arcsas.sys
19:41:11.0345 4740 arcsas - ok
19:41:11.0383 4740 AsyncMac (22d13ff3dafec2a80634752b1eaa2de6) C:\Windows\system32\DRIVERS\asyncmac.sys
19:41:11.0384 4740 AsyncMac - ok
19:41:11.0405 4740 atapi (1898fae8e07d97f2f6c2d5326c633fac) C:\Windows\system32\drivers\atapi.sys
19:41:11.0406 4740 atapi - ok
19:41:11.0640 4740 BCM43XV (3ddc2d2fc52948357ab622b308574d33) C:\Windows\system32\DRIVERS\bcmwl664.sys
19:41:11.0658 4740 BCM43XV - ok
19:41:11.0728 4740 BCM43XX (3ddc2d2fc52948357ab622b308574d33) C:\Windows\system32\DRIVERS\bcmwl664.sys
19:41:11.0746 4740 BCM43XX - ok
19:41:11.0856 4740 blbdrive (79feeb40056683f8f61398d81dda65d2) C:\Windows\system32\drivers\blbdrive.sys
19:41:11.0858 4740 blbdrive - ok
19:41:11.0893 4740 bowser (f0f035fcec3554cc1b70c5611bd87951) C:\Windows\system32\DRIVERS\bowser.sys
19:41:11.0895 4740 bowser - ok
19:41:11.0942 4740 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\brfiltlo.sys
19:41:11.0944 4740 BrFiltLo - ok
19:41:11.0963 4740 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\brfiltup.sys
19:41:11.0965 4740 BrFiltUp - ok
19:41:12.0005 4740 Brserid (f0f0ba4d815be446aa6a4583ca3bca9b) C:\Windows\system32\drivers\brserid.sys
19:41:12.0008 4740 Brserid - ok
19:41:12.0030 4740 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\system32\drivers\brserwdm.sys
19:41:12.0032 4740 BrSerWdm - ok
19:41:12.0055 4740 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\system32\drivers\brusbmdm.sys
19:41:12.0057 4740 BrUsbMdm - ok
19:41:12.0075 4740 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\system32\drivers\brusbser.sys
19:41:12.0077 4740 BrUsbSer - ok
19:41:12.0113 4740 BTHMODEM (e0777b34e05f8a82a21856efc900c29f) C:\Windows\system32\drivers\bthmodem.sys
19:41:12.0115 4740 BTHMODEM - ok
19:41:12.0191 4740 BVRPMPR5a64 (9887ca12f407d7fbc7f48f3678f5f0b6) C:\Windows\system32\drivers\BVRPMPR5a64.SYS
19:41:12.0193 4740 BVRPMPR5a64 - ok
19:41:12.0229 4740 cdfs (b4d787db8d30793a4d4df9feed18f136) C:\Windows\system32\DRIVERS\cdfs.sys
19:41:12.0231 4740 cdfs - ok
19:41:12.0309 4740 cdrom (3b2fb35363423ed60c8fbf15fc8680bd) C:\Windows\system32\DRIVERS\cdrom.sys
19:41:12.0311 4740 cdrom - ok
19:41:12.0357 4740 circlass (02ea568d498bbdd4ba55bf3fce34d456) C:\Windows\system32\DRIVERS\circlass.sys
19:41:12.0359 4740 circlass - ok
19:41:12.0409 4740 CLFS (caeda2572b7042b11062f327f099251d) C:\Windows\system32\CLFS.sys
19:41:12.0415 4740 CLFS - ok
19:41:12.0483 4740 CmBatt (b52d9a14ce4101577900a364ba86f3df) C:\Windows\system32\DRIVERS\CmBatt.sys
19:41:12.0485 4740 CmBatt - ok
19:41:12.0514 4740 cmdide (e5d5499a1c50a54b5161296b6afe6192) C:\Windows\system32\drivers\cmdide.sys
19:41:12.0515 4740 cmdide - ok
19:41:12.0575 4740 Compbatt (7fb8ad01db0eabe60c8a861531a8f431) C:\Windows\system32\DRIVERS\compbatt.sys
19:41:12.0577 4740 Compbatt - ok
19:41:12.0617 4740 crcdisk (a8585b6412253803ce8efcbd6d6dc15c) C:\Windows\system32\drivers\crcdisk.sys
19:41:12.0618 4740 crcdisk - ok
19:41:12.0719 4740 DfsC (3725c43c9e90731eca651d506cc599a3) C:\Windows\system32\Drivers\dfsc.sys
19:41:12.0721 4740 DfsC - ok
19:41:12.0788 4740 disk (2dc415fc05fb8a079f896cbbacb19324) C:\Windows\system32\drivers\disk.sys
19:41:12.0790 4740 disk - ok
19:41:12.0844 4740 drmkaud (f1a78a98cfc2ee02144c6bec945447e6) C:\Windows\system32\drivers\drmkaud.sys
19:41:12.0845 4740 drmkaud - ok
19:41:12.0904 4740 DXGKrnl (412964040ce920ff83aff6b5b551bf99) C:\Windows\System32\drivers\dxgkrnl.sys
19:41:12.0915 4740 DXGKrnl - ok
19:41:13.0002 4740 E1G60 (264cee7b031a9d6c827f3d0cb031f2fe) C:\Windows\system32\DRIVERS\E1G6032E.sys
19:41:13.0005 4740 E1G60 - ok
19:41:13.0070 4740 EagleX64 - ok
19:41:13.0152 4740 Ecache (7343d950a34a95dcb7441642e3e6beef) C:\Windows\system32\drivers\ecache.sys
19:41:13.0155 4740 Ecache - ok
19:41:13.0229 4740 elxstor (c4636d6e10469404ab5308d9fd45ed07) C:\Windows\system32\drivers\elxstor.sys
19:41:13.0235 4740 elxstor - ok
19:41:13.0306 4740 enecir (3a70dc8951b995c73a22b9a23210833e) C:\Windows\system32\DRIVERS\enecir.sys
19:41:13.0308 4740 enecir - ok
19:41:13.0344 4740 ErrDev (bc3a58e938bb277e46bf4b3003b01abd) C:\Windows\system32\drivers\errdev.sys
19:41:13.0346 4740 ErrDev - ok
19:41:13.0401 4740 exfat (2a546b9a84658b0554b1ec35cd9adaf5) C:\Windows\system32\drivers\exfat.sys
19:41:13.0404 4740 exfat - ok
19:41:13.0438 4740 fastfat (fe731d345ed9eeabbc72a59b35941834) C:\Windows\system32\drivers\fastfat.sys
19:41:13.0442 4740 fastfat - ok
19:41:13.0486 4740 fdc (81b79b6df71fa1d2c6d688d830616e39) C:\Windows\system32\DRIVERS\fdc.sys
19:41:13.0488 4740 fdc - ok
19:41:13.0528 4740 FileInfo (457b7d1d533e4bd62a99aed9c7bb4c59) C:\Windows\system32\drivers\fileinfo.sys
19:41:13.0530 4740 FileInfo - ok
19:41:13.0559 4740 Filetrace (d421327fd6efccaf884a54c58e1b0d7f) C:\Windows\system32\drivers\filetrace.sys
19:41:13.0561 4740 Filetrace - ok
19:41:13.0599 4740 flpydisk (230923ea2b80f79b0f88d90f87b87ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
19:41:13.0601 4740 flpydisk - ok
19:41:13.0636 4740 FltMgr (7dacf1a3a4219575070c6dc7c957428a) C:\Windows\system32\drivers\fltmgr.sys
19:41:13.0640 4740 FltMgr - ok
19:41:13.0685 4740 Fs_Rec (29d99e860a1ca0a03c6a733fdd0da703) C:\Windows\system32\drivers\Fs_Rec.sys
19:41:13.0686 4740 Fs_Rec - ok
19:41:13.0718 4740 gagp30kx (c8e416668d3dc2be3d4fe4c79224997f) C:\Windows\system32\drivers\gagp30kx.sys
19:41:13.0720 4740 gagp30kx - ok
19:41:13.0800 4740 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
19:41:13.0802 4740 GEARAspiWDM - ok
19:41:13.0873 4740 HdAudAddService (df45f8142dc6df9d18c39b3effbd0409) C:\Windows\system32\drivers\HdAudio.sys
19:41:13.0878 4740 HdAudAddService - ok
19:41:13.0904 4740 HDAudBus (0c0d0f8a3ff09ecc81963d09ec6a0a84) C:\Windows\system32\DRIVERS\HDAudBus.sys
19:41:13.0906 4740 HDAudBus - ok
19:41:13.0929 4740 HidBth (b4881c84a180e75b8c25dc1d726c375f) C:\Windows\system32\drivers\hidbth.sys
19:41:13.0931 4740 HidBth - ok
19:41:13.0965 4740 HidIr (5f47839455d01ff6403b008d481a6f5b) C:\Windows\system32\DRIVERS\hidir.sys
19:41:13.0966 4740 HidIr - ok
19:41:14.0028 4740 HidUsb (128e2da8483fdd4dd0c7b3f9abd6f323) C:\Windows\system32\DRIVERS\hidusb.sys
19:41:14.0029 4740 HidUsb - ok
19:41:14.0116 4740 HpCISSs (d7109a1e6bd2dfdbcba72a6bc626a13b) C:\Windows\system32\drivers\hpcisss.sys
19:41:14.0119 4740 HpCISSs - ok
19:41:14.0192 4740 hpdskflt (2f396ef793acf48ad9d2e1f885fc2752) C:\Windows\system32\DRIVERS\hpdskflt.sys
19:41:14.0194 4740 hpdskflt - ok
19:41:14.0247 4740 HpqKbFiltr (0ecc54fd34d6a089c300846b011e81d6) C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
19:41:14.0249 4740 HpqKbFiltr - ok
19:41:14.0281 4740 HpqRemHid (e53d53d66d61794af8160741946d0b43) C:\Windows\system32\DRIVERS\HpqRemHid.sys
19:41:14.0283 4740 HpqRemHid - ok
19:41:14.0358 4740 HSFHWAZL (57ba73b5b321291e5114cb21350e1ea0) C:\Windows\system32\DRIVERS\VSTAZL6.SYS
19:41:14.0362 4740 HSFHWAZL - ok
19:41:14.0436 4740 HSF_DPV (e6cd7f641916484b0141d191a390d866) C:\Windows\system32\DRIVERS\VSTDPV6.SYS
19:41:14.0454 4740 HSF_DPV - ok
19:41:14.0515 4740 HTTP (e690736da6c543f5d99c8fa27bea31db) C:\Windows\system32\drivers\HTTP.sys
19:41:14.0523 4740 HTTP - ok
19:41:14.0582 4740 i2omp (da94c854cea5fac549d4e1f6e88349e8) C:\Windows\system32\drivers\i2omp.sys
19:41:14.0584 4740 i2omp - ok
19:41:14.0624 4740 i8042prt (cbb597659a2713ce0c9cc20c88c7591f) C:\Windows\system32\DRIVERS\i8042prt.sys
19:41:14.0626 4740 i8042prt - ok
19:41:14.0702 4740 iaStor (8d58627fef3f8767665d9f4dc91cbd97) C:\Windows\system32\DRIVERS\iaStor.sys
19:41:14.0707 4740 iaStor - ok
19:41:14.0743 4740 iaStorV (3e3bf3627d886736d0b4e90054f929f6) C:\Windows\system32\drivers\iastorv.sys
19:41:14.0748 4740 iaStorV - ok
19:41:15.0051 4740 igfx (663e7364f650a915d415eeb2da98d86a) C:\Windows\system32\DRIVERS\igdkmd64.sys
19:41:15.0141 4740 igfx - ok
19:41:15.0259 4740 iirsp (8c3951ad2fe886ef76c7b5027c3125d3) C:\Windows\system32\drivers\iirsp.sys
19:41:15.0262 4740 iirsp - ok
19:41:15.0366 4740 IntcHdmiAddService (c7c9720a5b0fd2b974fc4f72e405204b) C:\Windows\system32\drivers\IntcHdmi.sys
19:41:15.0369 4740 IntcHdmiAddService - ok
19:41:15.0404 4740 intelide (df797a12176f11b2d301c5b234bb200e) C:\Windows\system32\drivers\intelide.sys
19:41:15.0407 4740 intelide - ok
19:41:15.0424 4740 intelppm (bfd84af32fa1bad6231c4585cb469630) C:\Windows\system32\DRIVERS\intelppm.sys
19:41:15.0427 4740 intelppm - ok
19:41:15.0504 4740 IpFilterDriver (99b821f5bebd6a3cc3fe564f802ae0fd) C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:41:15.0507 4740 IpFilterDriver - ok
19:41:15.0522 4740 IpInIp - ok
19:41:15.0565 4740 IPMIDRV (9c2ee2e6e5a7203bfae15c299475ec67) C:\Windows\system32\drivers\ipmidrv.sys
19:41:15.0570 4740 IPMIDRV - ok
19:41:15.0603 4740 IPNAT (b7e6212f581ea5f6ab0c3a6ceeeb89be) C:\Windows\system32\DRIVERS\ipnat.sys
19:41:15.0607 4740 IPNAT - ok
19:41:15.0626 4740 IRENUM (8c42ca155343a2f11d29feca67faa88d) C:\Windows\system32\drivers\irenum.sys
19:41:15.0628 4740 IRENUM - ok
19:41:15.0673 4740 isapnp (0672bfcedc6fc468a2b0500d81437f4f) C:\Windows\system32\drivers\isapnp.sys
19:41:15.0676 4740 isapnp - ok
19:41:15.0730 4740 iScsiPrt (49e4ccbf74783fce5d2cc1ff6480e1f4) C:\Windows\system32\DRIVERS\msiscsi.sys
19:41:15.0736 4740 iScsiPrt - ok
19:41:15.0750 4740 iteatapi (63c766cdc609ff8206cb447a65abba4a) C:\Windows\system32\drivers\iteatapi.sys
19:41:15.0752 4740 iteatapi - ok
19:41:15.0784 4740 iteraid (1281fe73b17664631d12f643cbea3f59) C:\Windows\system32\drivers\iteraid.sys
19:41:15.0787 4740 iteraid - ok
19:41:15.0813 4740 kbdclass (423696f3ba6472dd17699209b933bc26) C:\Windows\system32\DRIVERS\kbdclass.sys
19:41:15.0816 4740 kbdclass - ok
19:41:15.0842 4740 kbdhid (bf8783a5066cfecf45095459e8010fa7) C:\Windows\system32\DRIVERS\kbdhid.sys
19:41:15.0844 4740 kbdhid - ok
19:41:15.0924 4740 KSecDD (ccdcce6224e1e207e953af826b98a9d9) C:\Windows\system32\Drivers\ksecdd.sys
19:41:15.0937 4740 KSecDD - ok
19:41:15.0968 4740 ksthunk (1d419cf43db29396ecd7113d129d94eb) C:\Windows\system32\drivers\ksthunk.sys
19:41:15.0971 4740 ksthunk - ok
19:41:16.0086 4740 lltdio (96ece2659b6654c10a0c310ae3a6d02c) C:\Windows\system32\DRIVERS\lltdio.sys
19:41:16.0089 4740 lltdio - ok
19:41:16.0143 4740 LSI_FC (acbe1af32d3123e330a07bfbc5ec4a9b) C:\Windows\system32\drivers\lsi_fc.sys
19:41:16.0147 4740 LSI_FC - ok
19:41:16.0184 4740 LSI_SAS (799ffb2fc4729fa46d2157c0065b3525) C:\Windows\system32\drivers\lsi_sas.sys
19:41:16.0188 4740 LSI_SAS - ok
19:41:16.0202 4740 LSI_SCSI (f445ff1daad8a226366bfaf42551226b) C:\Windows\system32\drivers\lsi_scsi.sys
19:41:16.0207 4740 LSI_SCSI - ok
19:41:16.0244 4740 luafv (52f87b9cc8932c2a7375c3b2a9be5e3e) C:\Windows\system32\drivers\luafv.sys
19:41:16.0248 4740 luafv - ok
19:41:16.0290 4740 megasas (5c5cd6aaced32fb26c3fb34b3dcf972f) C:\Windows\system32\drivers\megasas.sys
19:41:16.0293 4740 megasas - ok
19:41:16.0345 4740 MegaSR (859bc2436b076c77c159ed694acfe8f8) C:\Windows\system32\drivers\megasr.sys
19:41:16.0367 4740 MegaSR - ok
19:41:16.0470 4740 MEMSWEEP2 (d70476ad02d6fd75282b196d3b58831d) C:\Windows\system32\5912.tmp
19:41:16.0472 4740 MEMSWEEP2 - ok
19:41:16.0526 4740 Modem (59848d5cc74606f0ee7557983bb73c2e) C:\Windows\system32\drivers\modem.sys
19:41:16.0529 4740 Modem - ok
19:41:16.0572 4740 monitor (c247cc2a57e0a0c8c6dccf7807b3e9e5) C:\Windows\system32\DRIVERS\monitor.sys
19:41:16.0574 4740 monitor - ok
19:41:16.0591 4740 mouclass (9367304e5e412b120cf5f4ea14e4e4f1) C:\Windows\system32\DRIVERS\mouclass.sys
19:41:16.0594 4740 mouclass - ok
19:41:16.0623 4740 mouhid (c2c2bd5c5ce5aaf786ddd74b75d2ac69) C:\Windows\system32\DRIVERS\mouhid.sys
19:41:16.0626 4740 mouhid - ok
19:41:16.0649 4740 MountMgr (11bc9b1e8801b01f7f6adb9ead30019b) C:\Windows\system32\drivers\mountmgr.sys
19:41:16.0652 4740 MountMgr - ok
19:41:16.0676 4740 mpio (f8276eb8698142884498a528dfea8478) C:\Windows\system32\drivers\mpio.sys
19:41:16.0680 4740 mpio - ok
19:41:16.0712 4740 mpsdrv (c92b9abdb65a5991e00c28f13491dba2) C:\Windows\system32\drivers\mpsdrv.sys
19:41:16.0716 4740 mpsdrv - ok
19:41:16.0760 4740 Mraid35x (3c200630a89ef2c0864d515b7a75802e) C:\Windows\system32\drivers\mraid35x.sys
19:41:16.0762 4740 Mraid35x - ok
19:41:16.0792 4740 MRxDAV (fe2706c15f8345c342820e4e4583fea0) C:\Windows\system32\drivers\mrxdav.sys
19:41:16.0795 4740 MRxDAV - ok
19:41:16.0856 4740 mrxsmb (b698eb9acc7ecd4927d99d268918f912) C:\Windows\system32\DRIVERS\mrxsmb.sys
19:41:16.0859 4740 mrxsmb - ok
19:41:16.0886 4740 mrxsmb10 (9a797e27fd28500ee13d43000c931435) C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:41:16.0890 4740 mrxsmb10 - ok
19:41:16.0925 4740 mrxsmb20 (f9425d610712533107a264e2d5b2154b) C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:41:16.0928 4740 mrxsmb20 - ok
19:41:16.0959 4740 msahci (1ac860612b85d8e85ee257d372e39f4d) C:\Windows\system32\drivers\msahci.sys
19:41:16.0961 4740 msahci - ok
19:41:16.0983 4740 msdsm (264bbb4aaf312a485f0e44b65a6b7202) C:\Windows\system32\drivers\msdsm.sys
19:41:16.0986 4740 msdsm - ok
19:41:17.0030 4740 Msfs (704f59bfc4512d2bb0146aec31b10a7c) C:\Windows\system32\drivers\Msfs.sys
19:41:17.0031 4740 Msfs - ok
19:41:17.0116 4740 msisadrv (00ebc952961664780d43dca157e79b27) C:\Windows\system32\drivers\msisadrv.sys
19:41:17.0117 4740 msisadrv - ok
19:41:17.0203 4740 MSKSSRV (0ea73e498f53b96d83dbfca074ad4cf8) C:\Windows\system32\drivers\MSKSSRV.sys
19:41:17.0204 4740 MSKSSRV - ok
19:41:17.0251 4740 MSPCLOCK (52e59b7e992a58e740aa63f57edbae8b) C:\Windows\system32\drivers\MSPCLOCK.sys
19:41:17.0252 4740 MSPCLOCK - ok
19:41:17.0286 4740 MSPQM (49084a75bae043ae02d5b44d02991bb2) C:\Windows\system32\drivers\MSPQM.sys
19:41:17.0288 4740 MSPQM - ok
19:41:17.0330 4740 MsRPC (b8e32e6103fbba9fbb1d0c11ff0d13b5) C:\Windows\system32\drivers\MsRPC.sys
19:41:17.0334 4740 MsRPC - ok
19:41:17.0405 4740 mssmbios (855796e59df77ea93af46f20155bf55b) C:\Windows\system32\DRIVERS\mssmbios.sys
19:41:17.0406 4740 mssmbios - ok
19:41:17.0433 4740 MSTEE (86d632d75d05d5b7c7c043fa3564ae86) C:\Windows\system32\drivers\MSTEE.sys
19:41:17.0435 4740 MSTEE - ok
19:41:17.0486 4740 Mup (ddf133501f68d6988a0f55dfa88637b4) C:\Windows\system32\Drivers\mup.sys
19:41:17.0489 4740 Mup - ok
19:41:17.0550 4740 NativeWifiP (73b99c98fa3a2ed1566e02d6fe1913a5) C:\Windows\system32\DRIVERS\nwifi.sys
19:41:17.0554 4740 NativeWifiP - ok
19:41:17.0634 4740 NDIS (2a2ee457af36c5c9a6808c768bd3a12b) C:\Windows\system32\drivers\ndis.sys
19:41:17.0643 4740 NDIS - ok
19:41:17.0686 4740 NdisTapi (64df698a425478e321981431ac171334) C:\Windows\system32\DRIVERS\ndistapi.sys
19:41:17.0687 4740 NdisTapi - ok
19:41:17.0702 4740 Ndisuio (8baa43196d7b5bb972c9a6b2bbf61a19) C:\Windows\system32\DRIVERS\ndisuio.sys
19:41:17.0704 4740 Ndisuio - ok
19:41:17.0732 4740 NdisWan (52e3e8e35101399be9b2938c992aa087) C:\Windows\system32\DRIVERS\ndiswan.sys
19:41:17.0735 4740 NdisWan - ok
19:41:17.0776 4740 NDProxy (9cb77ed7cb72850253e973a2d6afdf49) C:\Windows\system32\drivers\NDProxy.sys
19:41:17.0778 4740 NDProxy - ok
19:41:17.0802 4740 NetBIOS (a499294f5029a7862adc115bda7371ce) C:\Windows\system32\DRIVERS\netbios.sys
19:41:17.0804 4740 NetBIOS - ok
19:41:17.0846 4740 netbt (7a29ca243a629230799754162d80120f) C:\Windows\system32\DRIVERS\netbt.sys
19:41:17.0850 4740 netbt - ok
19:41:17.0954 4740 nfrd960 (4ac08bd6af2df42e0c3196d826c8aea7) C:\Windows\system32\drivers\nfrd960.sys
19:41:17.0956 4740 nfrd960 - ok
19:41:17.0980 4740 Npfs (b06154e2a2c91e9be5599fca53bc4cd0) C:\Windows\system32\drivers\Npfs.sys
19:41:17.0982 4740 Npfs - ok
19:41:18.0034 4740 nsiproxy (1523af19ee8b030ba682f7a53537eaeb) C:\Windows\system32\drivers\nsiproxy.sys
19:41:18.0036 4740 nsiproxy - ok
19:41:18.0112 4740 Ntfs (fe86ba5ac3b50e2ca911e9c60c07b638) C:\Windows\system32\drivers\Ntfs.sys
19:41:18.0131 4740 Ntfs - ok
19:41:18.0193 4740 Null (dd5d684975352b85b52e3fd5347c20cb) C:\Windows\system32\drivers\Null.sys
19:41:18.0195 4740 Null - ok
19:41:18.0261 4740 NVENETFD (9733f305fa84aaf84e7fb09c0b345adb) C:\Windows\system32\DRIVERS\nvm60x64.sys
19:41:18.0270 4740 NVENETFD - ok
19:41:18.0317 4740 nvraid (2c040b7ada5b06f6facadac8514aa034) C:\Windows\system32\drivers\nvraid.sys
19:41:18.0319 4740 nvraid - ok
19:41:18.0345 4740 nvstor (f7ea0fe82842d05eda3efdd376dbfdba) C:\Windows\system32\drivers\nvstor.sys
19:41:18.0347 4740 nvstor - ok
19:41:18.0394 4740 nv_agp (19067ca93075ef4823e3938a686f532f) C:\Windows\system32\drivers\nv_agp.sys
19:41:18.0396 4740 nv_agp - ok
19:41:18.0409 4740 NwlnkFlt - ok
19:41:18.0429 4740 NwlnkFwd - ok
19:41:18.0492 4740 ohci1394 (1b30103fde512915a9214b108b6e7a9c) C:\Windows\system32\DRIVERS\ohci1394.sys
19:41:18.0495 4740 ohci1394 - ok
19:41:18.0575 4740 Parport (aecd57f94c887f58919f307c35498ea0) C:\Windows\system32\drivers\parport.sys
19:41:18.0577 4740 Parport - ok
19:41:18.0600 4740 partmgr (5ab40c36894f4c06bdab0c9a2fba282d) C:\Windows\system32\drivers\partmgr.sys
19:41:18.0602 4740 partmgr - ok
19:41:18.0636 4740 pci (2a5b2a51559066ea84742909b5b2cd69) C:\Windows\system32\drivers\pci.sys
19:41:18.0639 4740 pci - ok
19:41:18.0676 4740 pciide (8d618c829034479985a9ed56106cc732) C:\Windows\system32\drivers\pciide.sys
19:41:18.0678 4740 pciide - ok
19:41:18.0710 4740 pcmcia (037661f3d7c507c9993b7010ceee6288) C:\Windows\system32\drivers\pcmcia.sys
19:41:18.0713 4740 pcmcia - ok
19:41:18.0758 4740 Pcouffin64 (a7a134de374e91d931ba211556293b1b) C:\Windows\system32\Drivers\pcouffin64a.sys
19:41:18.0761 4740 Pcouffin64 - ok
19:41:18.0827 4740 PCTCore (54e013b6d55b81c0aa1ebea80ff42383) C:\Windows\system32\drivers\PCTCore64.sys
19:41:18.0831 4740 PCTCore - ok
19:41:18.0890 4740 pctDS (ff43e3b1687e4e2140de6349ea5c7372) C:\Windows\system32\drivers\pctDS64.sys
19:41:18.0896 4740 pctDS - ok
19:41:18.0962 4740 pctEFA (60e9a05852af7e9cb11237c00aee4ccf) C:\Windows\system32\drivers\pctEFA64.sys
19:41:18.0972 4740 pctEFA - ok
19:41:19.0034 4740 PEAUTH (58865916f53592a61549b04941bfd80d) C:\Windows\system32\drivers\peauth.sys
19:41:19.0043 4740 PEAUTH - ok
19:41:19.0158 4740 PptpMiniport (f5739f2c6db2534c384ad5150808e8f5) C:\Windows\system32\DRIVERS\raspptp.sys
19:41:19.0161 4740 PptpMiniport - ok
19:41:19.0249 4740 Processor (5080e59ecee0bc923f14018803aa7a01) C:\Windows\system32\drivers\processr.sys
19:41:19.0251 4740 Processor - ok
19:41:19.0334 4740 PSched (0e0e205a296095fe4c631e6a4775ad6c) C:\Windows\system32\DRIVERS\pacer.sys
19:41:19.0337 4740 PSched - ok
19:41:19.0399 4740 ql2300 (0b83f4e681062f3839be2ec1d98fd94a) C:\Windows\system32\drivers\ql2300.sys
19:41:19.0414 4740 ql2300 - ok
19:41:19.0450 4740 ql40xx (e1c80f8d4d1e39ef9595809c1369bf2a) C:\Windows\system32\drivers\ql40xx.sys
19:41:19.0453 4740 ql40xx - ok
19:41:19.0522 4740 QWAVEdrv (e8d76edab77ec9c634c27b8eac33adc5) C:\Windows\system32\drivers\qwavedrv.sys
19:41:19.0524 4740 QWAVEdrv - ok
19:41:19.0549 4740 RasAcd (1013b3b663a56d3ddd784f581c1bd005) C:\Windows\system32\DRIVERS\rasacd.sys
19:41:19.0550 4740 RasAcd - ok
19:41:19.0600 4740 Rasl2tp (3b9085f91ef00abd15a6f36570e90e12) C:\Windows\system32\DRIVERS\rasl2tp.sys
19:41:19.0603 4740 Rasl2tp - ok
19:41:19.0638 4740 RasPppoe (2ce1703c27196094fb6e4c6e439f2c21) C:\Windows\system32\DRIVERS\raspppoe.sys
19:41:19.0640 4740 RasPppoe - ok
19:41:19.0663 4740 RasSstp (fcd04fa67e8b40fa0ad361dd38593942) C:\Windows\system32\DRIVERS\rassstp.sys
19:41:19.0665 4740 RasSstp - ok
19:41:19.0707 4740 rdbss (33fa5b6136d92ee0f53f021c79091300) C:\Windows\system32\DRIVERS\rdbss.sys
19:41:19.0712 4740 rdbss - ok
19:41:19.0745 4740 RDPCDD (603900cc05f6be65ccbf373800af3716) C:\Windows\system32\DRIVERS\RDPCDD.sys
19:41:19.0747 4740 RDPCDD - ok
19:41:19.0793 4740 rdpdr (c045d1fb111c28df0d1be8d4bda22c06) C:\Windows\system32\drivers\rdpdr.sys
19:41:19.0798 4740 rdpdr - ok
19:41:19.0839 4740 RDPENCDD (cab9421daf3d97b33d0d055858e2c3ab) C:\Windows\system32\drivers\rdpencdd.sys
19:41:19.0841 4740 RDPENCDD - ok
19:41:19.0888 4740 RDPWD (7747082f672aa2846235c9cea42e2e72) C:\Windows\system32\drivers\RDPWD.sys
19:41:19.0892 4740 RDPWD - ok
19:41:20.0014 4740 RkHit - ok
19:41:20.0074 4740 rspndr (22a9cb08b1a6707c1550c6bf099aae73) C:\Windows\system32\DRIVERS\rspndr.sys
19:41:20.0076 4740 rspndr - ok
19:41:20.0155 4740 RTL8169 (af7074e1d6a8a66204067ee8b2a8327a) C:\Windows\system32\DRIVERS\Rtlh64.sys
19:41:20.0159 4740 RTL8169 - ok
19:41:20.0200 4740 RTSTOR (325eeec3c29c8bfc495cc422b4449b2b) C:\Windows\system32\drivers\RTSTOR64.SYS
19:41:20.0202 4740 RTSTOR - ok
19:41:20.0282 4740 SASDIFSV (3289766038db2cb14d07dc84392138d5) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
19:41:20.0283 4740 SASDIFSV - ok
19:41:20.0326 4740 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
19:41:20.0328 4740 SASKUTIL - ok
19:41:20.0411 4740 sbp2port (cd9c693589c60ad59bbbcfb0e524e01b) C:\Windows\system32\drivers\sbp2port.sys
19:41:20.0414 4740 sbp2port - ok
19:41:20.0512 4740 sdbus (b42ee50f7d24f837f925332eb349eca5) C:\Windows\system32\DRIVERS\sdbus.sys
19:41:20.0515 4740 sdbus - ok
19:41:20.0577 4740 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
19:41:20.0579 4740 secdrv - ok
19:41:20.0620 4740 Serenum (f71bfe7ac6c52273b7c82cbf1bb2a222) C:\Windows\system32\drivers\serenum.sys
19:41:20.0622 4740 Serenum - ok
19:41:20.0666 4740 Serial (e62fac91ee288db29a9696a9d279929c) C:\Windows\system32\drivers\serial.sys
19:41:20.0669 4740 Serial - ok
19:41:20.0719 4740 sermouse (a842f04833684bceea7336211be478df) C:\Windows\system32\drivers\sermouse.sys
19:41:20.0721 4740 sermouse - ok
19:41:20.0798 4740 sffdisk (14d4b4465193a87c127933978e8c4106) C:\Windows\system32\drivers\sffdisk.sys
19:41:20.0799 4740 sffdisk - ok
19:41:20.0848 4740 sffp_mmc (7073aee3f82f3d598e3825962aa98ab2) C:\Windows\system32\drivers\sffp_mmc.sys
19:41:20.0850 4740 sffp_mmc - ok
19:41:20.0880 4740 sffp_sd (35e59ebe4a01a0532ed67975161c7b82) C:\Windows\system32\drivers\sffp_sd.sys
19:41:20.0881 4740 sffp_sd - ok
19:41:20.0898 4740 sfloppy (6b7838c94135768bd455cbdc23e39e5f) C:\Windows\system32\drivers\sfloppy.sys
19:41:20.0900 4740 sfloppy - ok
19:41:20.0951 4740 SiSRaid2 (7a5de502aeb719d4594c6471060a78b3) C:\Windows\system32\drivers\sisraid2.sys
19:41:20.0953 4740 SiSRaid2 - ok
19:41:20.0969 4740 SiSRaid4 (3a2f769fab9582bc720e11ea1dfb184d) C:\Windows\system32\drivers\sisraid4.sys
19:41:20.0972 4740 SiSRaid4 - ok
19:41:21.0014 4740 Smb (41eb2e8e005feedcafce301983eff932) C:\Windows\system32\DRIVERS\smb.sys
19:41:21.0017 4740 Smb - ok
19:41:21.0154 4740 spldr (f9cb0672162f7f04248e2b82c1ff4617) C:\Windows\system32\drivers\spldr.sys
19:41:21.0155 4740 spldr - ok
19:41:21.0231 4740 srv (a8abd7d0d907b45cf3831f4dd8644349) C:\Windows\system32\DRIVERS\srv.sys
19:41:21.0237 4740 srv - ok
19:41:21.0288 4740 srv2 (6c72eea39e1c37b436a6d1532999f9ec) C:\Windows\system32\DRIVERS\srv2.sys
19:41:21.0291 4740 srv2 - ok
19:41:21.0311 4740 srvnet (7f69bcf9e6fa3d93c82ee6b87812666d) C:\Windows\system32\DRIVERS\srvnet.sys
19:41:21.0314 4740 srvnet - ok
19:41:21.0439 4740 STHDA (8298c6e15ab8ad4565e4be79a4a0bed5) C:\Windows\system32\DRIVERS\stwrt64.sys
19:41:21.0445 4740 STHDA - ok
19:41:21.0495 4740 swenum (8a851ca908b8b974f89c50d2e18d4f0c) C:\Windows\system32\DRIVERS\swenum.sys
19:41:21.0497 4740 swenum - ok
19:41:21.0539 4740 Symc8xx (2f26a2c6fc96b29beff5d8ed74e6625b) C:\Windows\system32\drivers\symc8xx.sys
19:41:21.0541 4740 Symc8xx - ok
19:41:21.0606 4740 SYMTDI - ok
19:41:21.0661 4740 Sym_hi (a909667976d3bccd1df813fed517d837) C:\Windows\system32\drivers\sym_hi.sys
19:41:21.0747 4740 Sym_hi - ok
19:41:21.0840 4740 Sym_u3 (36887b56ec2d98b9c362f6ae4de5b7b0) C:\Windows\system32\drivers\sym_u3.sys
19:41:21.0888 4740 Sym_u3 - ok
19:41:21.0956 4740 SynTP (c52b05821884f9a0ebee38c45dbd73cd) C:\Windows\system32\DRIVERS\SynTP.sys
19:41:21.0961 4740 SynTP - ok
19:41:22.0054 4740 Tcpip (7d86275fb640011b372fd566c0eafa8d) C:\Windows\system32\drivers\tcpip.sys
19:41:22.0072 4740 Tcpip - ok
19:41:22.0197 4740 Tcpip6 (7d86275fb640011b372fd566c0eafa8d) C:\Windows\system32\DRIVERS\tcpip.sys
19:41:22.0214 4740 Tcpip6 - ok
19:41:22.0259 4740 tcpipreg (c29d4b3b08ad0b7e8564814e4ff6a57b) C:\Windows\system32\drivers\tcpipreg.sys
19:41:22.0261 4740 tcpipreg - ok
19:41:22.0288 4740 TDPIPE (1d8bf4aaa5fb7a2761475781dc1195bc) C:\Windows\system32\drivers\tdpipe.sys
19:41:22.0290 4740 TDPIPE - ok
19:41:22.0332 4740 TDTCP (7f7e00cdf609df657f4cda02dd1c9bb1) C:\Windows\system32\drivers\tdtcp.sys
19:41:22.0334 4740 TDTCP - ok
19:41:22.0383 4740 tdx (8c39c72e0e853de04748c0337d9b9216) C:\Windows\system32\DRIVERS\tdx.sys
19:41:22.0386 4740 tdx - ok
19:41:22.0425 4740 TermDD (3f0ebf6ee609f2a276c0d5faf244ec90) C:\Windows\system32\DRIVERS\termdd.sys
19:41:22.0427 4740 TermDD - ok
19:41:22.0499 4740 tssecsrv (9e5409cd17c8bef193aad498f3bc2cb8) C:\Windows\system32\DRIVERS\tssecsrv.sys
19:41:22.0500 4740 tssecsrv - ok
19:41:22.0535 4740 tunmp (89ec74a9e602d16a75a4170511029b3c) C:\Windows\system32\DRIVERS\tunmp.sys
19:41:22.0537 4740 tunmp - ok
19:41:22.0572 4740 tunnel (2dc2c423572946e9a3131425bda73cb6) C:\Windows\system32\DRIVERS\tunnel.sys
19:41:22.0574 4740 tunnel - ok
19:41:22.0635 4740 uagp35 (fec266ef401966311744bd0f359f7f56) C:\Windows\system32\drivers\uagp35.sys
19:41:22.0638 4740 uagp35 - ok
19:41:22.0695 4740 udfs (eca6629e33f122afff18a2ab7c3eb033) C:\Windows\system32\DRIVERS\udfs.sys
19:41:22.0699 4740 udfs - ok
19:41:22.0761 4740 uliagpkx (4ec9447ac3ab462647f60e547208ca00) C:\Windows\system32\drivers\uliagpkx.sys
19:41:22.0764 4740 uliagpkx - ok
19:41:22.0819 4740 uliahci (697f0446134cdc8f99e69306184fbbb4) C:\Windows\system32\drivers\uliahci.sys
19:41:22.0823 4740 uliahci - ok
19:41:22.0851 4740 UlSata (31707f09846056651ea2c37858f5ddb0) C:\Windows\system32\drivers\ulsata.sys
19:41:22.0854 4740 UlSata - ok
19:41:22.0892 4740 ulsata2 (85e5e43ed5b48c8376281bab519271b7) C:\Windows\system32\drivers\ulsata2.sys
19:41:22.0895 4740 ulsata2 - ok
19:41:22.0928 4740 umbus (46e9a994c4fed537dd951f60b86ad3f4) C:\Windows\system32\DRIVERS\umbus.sys
19:41:22.0930 4740 umbus - ok
19:41:23.0037 4740 USBAAPL64 (cd03479f2da26500b203ed075c146a7a) C:\Windows\system32\Drivers\usbaapl64.sys
19:41:23.0039 4740 USBAAPL64 - ok
19:41:23.0096 4740 usbbus (5fcc71487888589a9244af54cfefab29) C:\Windows\system32\DRIVERS\lgx64bus.sys
19:41:23.0097 4740 usbbus - ok
19:41:23.0139 4740 usbccgp (07e3498fc60834219d2356293da0fecc) C:\Windows\system32\DRIVERS\usbccgp.sys
19:41:23.0142 4740 usbccgp - ok
19:41:23.0193 4740 usbcir (9247f7e0b65852c1f6631480984d6ed2) C:\Windows\system32\drivers\usbcir.sys
19:41:23.0195 4740 usbcir - ok
19:41:23.0294 4740 UsbDiag (3fb6e423f7567c92c32ea786f5fd0c69) C:\Windows\system32\DRIVERS\lgx64diag.sys
19:41:23.0296 4740 UsbDiag - ok
19:41:23.0347 4740 usbehci (da6d8d8ed0a53c63ac6f4bd40fe83fbe) C:\Windows\system32\DRIVERS\usbehci.sys
19:41:23.0352 4740 usbehci - ok
19:41:23.0436 4740 usbhub (99045369ae3216216573d0775fd7ed56) C:\Windows\system32\DRIVERS\usbhub.sys
19:41:23.0641 4740 usbhub - ok
19:41:23.0756 4740 USBModem (78d551f5b93488b4666f5fc8dd4815f3) C:\Windows\system32\DRIVERS\lgx64modem.sys
19:41:23.0797 4740 USBModem - ok
19:41:23.0996 4740 usbohci (540b622da0949695c40cdc9d5d497a8b) C:\Windows\system32\DRIVERS\usbohci.sys
19:41:23.0998 4740 usbohci - ok
19:41:24.0045 4740 usbprint (28b693b6d31e7b9332c1bdcefef228c1) C:\Windows\system32\DRIVERS\usbprint.sys
19:41:24.0047 4740 usbprint - ok
19:41:24.0109 4740 USBSTOR (586d9876a4945779c8eea926c0d16889) C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:41:24.0111 4740 USBSTOR - ok
19:41:24.0229 4740 usbuhci (b2872cbf9f47316abd0e0c74a1aba507) C:\Windows\system32\DRIVERS\usbuhci.sys
19:41:24.0341 4740 usbuhci - ok
19:41:24.0427 4740 usbvideo (fc33099877790d51b0927b7039059855) C:\Windows\system32\Drivers\usbvideo.sys
19:41:24.0430 4740 usbvideo - ok
19:41:24.0510 4740 vga (916b94bcf1e09873fff2d5fb11767bbc) C:\Windows\system32\DRIVERS\vgapnp.sys
19:41:24.0512 4740 vga - ok
19:41:24.0558 4740 VgaSave (b83ab16b51feda65dd81b8c59d114d63) C:\Windows\System32\drivers\vga.sys
19:41:24.0560 4740 VgaSave - ok
19:41:24.0612 4740 viaide (8294b6c3fdb6c33f24e150de647ecdaa) C:\Windows\system32\drivers\viaide.sys
19:41:24.0614 4740 viaide - ok
19:41:24.0649 4740 volmgr (793d9b32a1c462c91f6f70358283ac97) C:\Windows\system32\drivers\volmgr.sys
19:41:24.0651 4740 volmgr - ok
19:41:24.0698 4740 volmgrx (5aa217da5dc4ff5b9ac9ab86563b3223) C:\Windows\system32\drivers\volmgrx.sys
19:41:24.0704 4740 volmgrx - ok
19:41:24.0739 4740 volsnap (de4307412d98050239026e56a7dff3c0) C:\Windows\system32\drivers\volsnap.sys
19:41:24.0743 4740 volsnap - ok
19:41:24.0848 4740 vpnva (0e4df91e83da5739ffb18535d4db10aa) C:\Windows\system32\DRIVERS\vpnva64.sys
19:41:24.0850 4740 vpnva - ok
19:41:24.0887 4740 vsmraid (a68f455ed2673835209318dd61bfbb0e) C:\Windows\system32\drivers\vsmraid.sys
19:41:24.0890 4740 vsmraid - ok
19:41:24.0961 4740 WacomPen (fef8fe5923fead2cee4dfabfce3393a7) C:\Windows\system32\drivers\wacompen.sys
19:41:24.0963 4740 WacomPen - ok
19:41:24.0997 4740 Wanarp (aea75207e443c8623c36b8d03596f84f) C:\Windows\system32\DRIVERS\wanarp.sys
19:41:24.0999 4740 Wanarp - ok
19:41:25.0013 4740 Wanarpv6 (aea75207e443c8623c36b8d03596f84f) C:\Windows\system32\DRIVERS\wanarp.sys
19:41:25.0015 4740 Wanarpv6 - ok
19:41:25.0078 4740 Wd (0c17a0816f65b89e362e682ad5e7266e) C:\Windows\system32\drivers\wd.sys
19:41:25.0080 4740 Wd - ok
19:41:25.0145 4740 Wdf01000 (d02e7e4567da1e7582fbf6a91144b0df) C:\Windows\system32\drivers\Wdf01000.sys
19:41:25.0157 4740 Wdf01000 - ok
19:41:25.0262 4740 winachsf (b5c348b265178fb9ee55addb3929485d) C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
19:41:25.0271 4740 winachsf - ok
19:41:25.0411 4740 WmiAcpi (e18aebaaa5a773fe11aa2c70f65320f5) C:\Windows\system32\DRIVERS\wmiacpi.sys
19:41:25.0413 4740 WmiAcpi - ok
19:41:25.0500 4740 WpdUsb (6329d1990db931073b86ab5946d8e317) C:\Windows\system32\DRIVERS\wpdusb.sys
19:41:25.0502 4740 WpdUsb - ok
19:41:25.0536 4740 ws2ifsl (8a900348370e359b6bff6a550e4649e1) C:\Windows\system32\drivers\ws2ifsl.sys
19:41:25.0538 4740 ws2ifsl - ok
19:41:25.0603 4740 WUDFRd (501a65252617b495c0f1832f908d54d8) C:\Windows\system32\DRIVERS\WUDFRd.sys
19:41:25.0606 4740 WUDFRd - ok
19:41:25.0647 4740 MBR (0x1B8) (85d751f0e41b8e520aee8c07a8da777b) \Device\Harddisk0\DR0
19:41:25.0692 4740 \Device\Harddisk0\DR0 - ok
19:41:25.0698 4740 Boot (0x1200) (1a6927360ac6da6749e4c84513aa358a) \Device\Harddisk0\DR0\Partition0
19:41:25.0700 4740 \Device\Harddisk0\DR0\Partition0 - ok
19:41:25.0710 4740 Boot (0x1200) (130f9d57037faef90541dd61c4b1ea87) \Device\Harddisk0\DR0\Partition1
19:41:25.0714 4740 \Device\Harddisk0\DR0\Partition1 - ok
19:41:25.0716 4740 ============================================================
19:41:25.0716 4740 Scan finished
19:41:25.0716 4740 ============================================================
19:41:25.0738 6032 Detected object count: 0
19:41:25.0738 6032 Actual detected object count: 0

Edited by Oceanb, 31 December 2011 - 07:56 PM.


#13 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,738 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:01:30 AM

Posted 31 December 2011 - 07:55 PM

Download Bootkit Remover to your Desktop.

  • Unzip downloaded file to your Desktop.
  • Double-click on boot_cleaner.exe to run the program (Vista/7 users,right click on boot_cleaner.exe and click Run As Administrator).
  • It will show a Black screen with some data on it.
  • Right click on the screen and click Select All.
  • Press CTRL+C
  • Open a Notepad and press CTRL+V
  • Post the output back here.

My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click DONATE

 


#14 Oceanb

Oceanb
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:03:30 AM

Posted 02 January 2012 - 08:05 PM

Bootkit Remover
<c> 2009 Esage Lab
www.easagelab.com

Program version: 1.2.0.1
OS Version: Microsoft Windows Vista Home Premium Edition Service Pack 1 <build6001>, 64 bit

system volume is \\.\C:
\\.\C: -> \\.\PhysicalDrive0 at offset 0x00000000'00007e00
Boot sector MD5 is: 2404788b716b45266811c1294c3c975c
size
232 GB
Device Name
\\.\PhysicalDrive0
MBR status
unknown boot code

Unknown boot code has been found on some of your physical disks.
To inspect the boot code manually, dump the master boot sector:
remover.exe dump <device name> [output_file]
To disinfect the master boot sector, use the following command:
remover.exe fix <device name>

Done;
Press any key to quit

#15 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,738 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:01:30 AM

Posted 02 January 2012 - 08:13 PM

Please follow the instructions in ==>This Guide<== starting at Step 6. If you cannot complete a step, skip it and continue.

Once the proper logs are created, then make a NEW TOPIC and post it ==>HERE<== Please include a description of your computer issues, what you have done to resolve them, and a link to this topic.

If you can produce at least some of the logs, then please create the new topic and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the topic and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.

It would be helpful if you post a note here once you have completed the steps in the guide and have started your topic in malware removal. Good luck and be patient.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click DONATE

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users