Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Not sure what is going on at this point?


  • Please log in to reply
3 replies to this topic

#1 daghstman

daghstman

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:11:57 PM

Posted 29 January 2012 - 01:00 AM

the first issue I had was that stupid antivirus 2011 crap. I cleared that and now I have redirects all over. Mainly my quick launch websites, and google links. It has now progressed to the fact that my anitvirus appears to be enabled, but it is not. I also noticed that my Security center has been shutdown and I cannot get it back up. It gives me an error. I cant even install my new printer. It gets to the point where it is checking the network for a printer and just does not do anything. I tried installing my enterprise symantec antivirus and it errors out half way through the install. So, I went to safe mode and ran McAfee, Malwarebytes, and Ad-Aware until they all came back with zeros. It is still doing this. What else can I do to detect and remove the bug I have at this time? I am tech savvy and am computer literate if this will help with troubleshooting process!! Thank you in advance for your time!!

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:57 AM

Posted 29 January 2012 - 08:37 AM

Download

FSS

Checkmark

Internet Services
Windows Firewall
System Restore
Security Center
Windows Update

Click on "Scan".
Please copy and paste the log to your reply.



Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report



Please download GMER from here(doesnot work on 64 bit OS)

http://www2.gmer.net/download.php

Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.

GMER will open to the Rootkit/Malware tab and perform an automatic Full Scan when first run. (do not use the computer while the scan is in progress)

If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
Now click the Scan button. If you see a rootkit warning window, click OK.
When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
Click the Copy button and paste the results into your next reply.


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

#3 daghstman

daghstman
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:11:57 PM

Posted 29 January 2012 - 02:52 PM

OK here are the requested logs.

FSS:


Farbar Service Scanner Version: 18-01-2012 01
Ran by Scott (administrator) on 29-01-2012 at 09:33:32
Microsoft Windows 7 Enterprise Service Pack 1 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Yahoo IP is accessible.


Windows Firewall:
=============
MpsSvc Service is not running. Checking service configuration:
Checking Start type: Attention! Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: Attention! Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: Attention! Unable to open MpsSvc registry key. The service key does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: Attention! Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: Attention! Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: Attention! Unable to open bfe registry key. The service key does not exist.

mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.


Firewall Disabled Policy:
==================


System Restore:
============
SDRSVC Service is not running. Checking service configuration:
The start type of SDRSVC service is OK.
The ImagePath of SDRSVC service is OK.
The ServiceDll of SDRSVC service is OK.

VSS Service is not running. Checking service configuration:
The start type of VSS service is OK.
The ImagePath of VSS service is OK.


System Restore Disabled Policy:
========================


Security Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: Attention! Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: Attention! Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: Attention! Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
===========

File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcore.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****


TDSSkiller:

10:22:35.0734 0172 TDSS rootkit removing tool 2.7.7.0 Jan 24 2012 16:44:27
10:22:36.0424 0172 ============================================================
10:22:36.0424 0172 Current date / time: 2012/01/29 10:22:36.0424
10:22:36.0424 0172 SystemInfo:
10:22:36.0424 0172
10:22:36.0424 0172 OS Version: 6.1.7601 ServicePack: 1.0
10:22:36.0424 0172 Product type: Workstation
10:22:36.0424 0172 ComputerName: ECTSUMXX-XX
10:22:36.0424 0172 UserName: Scott
10:22:36.0424 0172 Windows directory: C:\Windows
10:22:36.0424 0172 System windows directory: C:\Windows
10:22:36.0424 0172 Processor architecture: Intel x86
10:22:36.0424 0172 Number of processors: 2
10:22:36.0424 0172 Page size: 0x1000
10:22:36.0424 0172 Boot type: Normal boot
10:22:36.0424 0172 ============================================================
10:22:37.0664 0172 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
10:22:37.0724 0172 Initialize success
10:22:40.0404 1312 ============================================================
10:22:40.0404 1312 Scan started
10:22:40.0404 1312 Mode: Manual;
10:22:40.0404 1312 ============================================================
10:22:41.0745 1312 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\DRIVERS\1394ohci.sys
10:22:41.0825 1312 1394ohci - ok
10:22:41.0865 1312 Accelerometer (cc1f1d3d70dc13c2c281488d347d4415) C:\Windows\system32\DRIVERS\Accelerometer.sys
10:22:41.0945 1312 Accelerometer - ok
10:22:42.0005 1312 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
10:22:42.0005 1312 ACPI - ok
10:22:42.0145 1312 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
10:22:42.0145 1312 AcpiPmi - ok
10:22:42.0205 1312 ADIHdAudAddService (6c61bceb60c2c187e6f96001fd69493e) C:\Windows\system32\drivers\ADIHdAud.sys
10:22:42.0355 1312 ADIHdAudAddService - ok
10:22:42.0505 1312 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
10:22:42.0515 1312 adp94xx - ok
10:22:42.0535 1312 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
10:22:42.0545 1312 adpahci - ok
10:22:42.0565 1312 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
10:22:42.0565 1312 adpu320 - ok
10:22:42.0715 1312 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
10:22:42.0725 1312 AFD - ok
10:22:42.0795 1312 AgereSoftModem (c6fa08a8cca9001f3197525b07331715) C:\Windows\system32\DRIVERS\AGRSM.sys
10:22:42.0885 1312 AgereSoftModem - ok
10:22:43.0025 1312 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
10:22:43.0035 1312 agp440 - ok
10:22:43.0075 1312 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
10:22:43.0075 1312 aic78xx - ok
10:22:43.0115 1312 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
10:22:43.0115 1312 aliide - ok
10:22:43.0165 1312 AlteraByteBlaster (5c3d047466af6fc35a273f558f14ef2b) C:\Windows\system32\drivers\pgdhdlc.sys
10:22:43.0165 1312 AlteraByteBlaster - ok
10:22:43.0315 1312 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
10:22:43.0315 1312 amdagp - ok
10:22:43.0345 1312 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
10:22:43.0345 1312 amdide - ok
10:22:43.0395 1312 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
10:22:43.0395 1312 AmdK8 - ok
10:22:43.0545 1312 amdkmdag (8d728258df80ad8b5fd5225450940845) C:\Windows\system32\DRIVERS\atikmdag.sys
10:22:43.0605 1312 amdkmdag - ok
10:22:43.0725 1312 amdkmdap (9dc19641d960d301e6ca75e328169d2b) C:\Windows\system32\DRIVERS\atikmpag.sys
10:22:43.0735 1312 amdkmdap - ok
10:22:43.0795 1312 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
10:22:43.0795 1312 AmdPPM - ok
10:22:43.0835 1312 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
10:22:43.0835 1312 amdsata - ok
10:22:43.0945 1312 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
10:22:43.0945 1312 amdsbs - ok
10:22:43.0965 1312 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
10:22:43.0965 1312 amdxata - ok
10:22:44.0015 1312 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
10:22:44.0145 1312 AppID - ok
10:22:44.0315 1312 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
10:22:44.0325 1312 arc - ok
10:22:44.0355 1312 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
10:22:44.0365 1312 arcsas - ok
10:22:44.0385 1312 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
10:22:44.0395 1312 AsyncMac - ok
10:22:44.0415 1312 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
10:22:44.0415 1312 atapi - ok
10:22:44.0565 1312 AtiHdmiService (c822c615b2f693ef4e5b355432976a81) C:\Windows\system32\drivers\AtiHdmi.sys
10:22:44.0565 1312 AtiHdmiService - ok
10:22:44.0705 1312 atikmdag (8d728258df80ad8b5fd5225450940845) C:\Windows\system32\DRIVERS\atikmdag.sys
10:22:44.0745 1312 atikmdag - ok
10:22:44.0855 1312 AtiPcie (aca01c43d065e546c6dc88ea669ceca6) C:\Windows\system32\DRIVERS\AtiPcie.sys
10:22:44.0865 1312 AtiPcie - ok
10:22:44.0915 1312 ATSwpWDF (befe54e9bc648a3c79c917a63b6ee7da) C:\Windows\system32\Drivers\ATSwpWDF.sys
10:22:45.0005 1312 ATSwpWDF - ok
10:22:45.0165 1312 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
10:22:45.0175 1312 b06bdrv - ok
10:22:45.0235 1312 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
10:22:45.0235 1312 b57nd60x - ok
10:22:45.0335 1312 BCM43XX (36a47e6ab1f0967c97722183e21adb1a) C:\Windows\system32\DRIVERS\bcmwl6.sys
10:22:45.0355 1312 BCM43XX - ok
10:22:45.0485 1312 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
10:22:45.0485 1312 Beep - ok
10:22:45.0515 1312 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
10:22:45.0525 1312 blbdrive - ok
10:22:45.0575 1312 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
10:22:45.0665 1312 bowser - ok
10:22:45.0695 1312 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
10:22:45.0695 1312 BrFiltLo - ok
10:22:45.0815 1312 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
10:22:45.0825 1312 BrFiltUp - ok
10:22:45.0865 1312 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
10:22:45.0875 1312 Brserid - ok
10:22:45.0885 1312 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
10:22:45.0885 1312 BrSerWdm - ok
10:22:45.0905 1312 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
10:22:45.0905 1312 BrUsbMdm - ok
10:22:45.0915 1312 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
10:22:45.0915 1312 BrUsbSer - ok
10:22:45.0965 1312 BthEnum (2865a5c8e98c70c605f417908cebb3a4) C:\Windows\system32\drivers\BthEnum.sys
10:22:45.0965 1312 BthEnum - ok
10:22:45.0975 1312 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
10:22:45.0975 1312 BTHMODEM - ok
10:22:46.0005 1312 BthPan (ad1872e5829e8a2c3b5b4b641c3eab0e) C:\Windows\system32\DRIVERS\bthpan.sys
10:22:46.0005 1312 BthPan - ok
10:22:46.0025 1312 BTHPORT (c2fbf6d271d9a94d839c416bf186ead9) C:\Windows\System32\Drivers\BTHport.sys
10:22:46.0025 1312 BTHPORT - ok
10:22:46.0115 1312 BTHUSB (c81e9413a25a439f436b1d4b6a0cf9e9) C:\Windows\System32\Drivers\BTHUSB.sys
10:22:46.0115 1312 BTHUSB - ok
10:22:46.0145 1312 btusbflt (f549c3fb145a4928e40bb1518b2034dc) C:\Windows\system32\drivers\btusbflt.sys
10:22:46.0295 1312 btusbflt - ok
10:22:46.0345 1312 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
10:22:46.0345 1312 cdfs - ok
10:22:46.0405 1312 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\DRIVERS\cdrom.sys
10:22:46.0405 1312 cdrom - ok
10:22:46.0485 1312 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
10:22:46.0495 1312 circlass - ok
10:22:46.0535 1312 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
10:22:46.0545 1312 CLFS - ok
10:22:46.0555 1312 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
10:22:46.0565 1312 CmBatt - ok
10:22:46.0575 1312 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
10:22:46.0575 1312 cmdide - ok
10:22:46.0635 1312 CNG (6427525d76f61d0c519b008d3680e8e7) C:\Windows\system32\Drivers\cng.sys
10:22:46.0645 1312 CNG - ok
10:22:46.0665 1312 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
10:22:46.0665 1312 Compbatt - ok
10:22:46.0715 1312 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys
10:22:46.0775 1312 CompositeBus - ok
10:22:46.0825 1312 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
10:22:46.0835 1312 crcdisk - ok
10:22:46.0945 1312 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys
10:22:47.0025 1312 CSC - ok
10:22:47.0105 1312 ctxusbm (cb6ff7012bb5d59d7c12350db795ce1f) C:\Windows\system32\DRIVERS\ctxusbm.sys
10:22:47.0105 1312 ctxusbm - ok
10:22:47.0165 1312 cvintdrv (dbd89bc0dbe00dcd245be8f61dbee291) C:\Windows\system32\drivers\cvintdrv.sys
10:22:47.0165 1312 cvintdrv - ok
10:22:47.0205 1312 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
10:22:47.0205 1312 DfsC - ok
10:22:47.0285 1312 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
10:22:47.0285 1312 discache - ok
10:22:47.0335 1312 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
10:22:47.0345 1312 Disk - ok
10:22:47.0385 1312 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
10:22:47.0395 1312 drmkaud - ok
10:22:47.0455 1312 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
10:22:47.0555 1312 DXGKrnl - ok
10:22:47.0695 1312 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
10:22:47.0725 1312 ebdrv - ok
10:22:47.0805 1312 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
10:22:47.0805 1312 elxstor - ok
10:22:47.0875 1312 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
10:22:47.0875 1312 ErrDev - ok
10:22:47.0935 1312 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
10:22:47.0945 1312 exfat - ok
10:22:47.0965 1312 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
10:22:47.0965 1312 fastfat - ok
10:22:48.0005 1312 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
10:22:48.0005 1312 fdc - ok
10:22:48.0025 1312 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
10:22:48.0025 1312 FileInfo - ok
10:22:48.0045 1312 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
10:22:48.0045 1312 Filetrace - ok
10:22:48.0085 1312 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
10:22:48.0085 1312 flpydisk - ok
10:22:48.0105 1312 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
10:22:48.0115 1312 FltMgr - ok
10:22:48.0195 1312 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
10:22:48.0195 1312 FsDepends - ok
10:22:48.0215 1312 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
10:22:48.0215 1312 Fs_Rec - ok
10:22:48.0275 1312 FTDIBUS (b7aa8283ec551d3a3b924e520e0621a7) C:\Windows\system32\drivers\ftdibus.sys
10:22:48.0275 1312 FTDIBUS - ok
10:22:48.0295 1312 FTSER2K (596d31583ce332b5514520d74837f434) C:\Windows\system32\drivers\ftser2k.sys
10:22:48.0375 1312 FTSER2K - ok
10:22:48.0425 1312 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
10:22:48.0425 1312 fvevol - ok
10:22:48.0575 1312 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
10:22:48.0575 1312 gagp30kx - ok
10:22:48.0705 1312 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:22:48.0815 1312 GEARAspiWDM - ok
10:22:48.0915 1312 HBtnKey (c172f0d0329e46513b09e1fc60a27b9d) C:\Windows\system32\DRIVERS\cpqbttn.sys
10:22:48.0995 1312 HBtnKey - ok
10:22:49.0115 1312 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
10:22:49.0115 1312 hcw85cir - ok
10:22:49.0165 1312 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
10:22:49.0165 1312 HdAudAddService - ok
10:22:49.0205 1312 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\DRIVERS\HDAudBus.sys
10:22:49.0205 1312 HDAudBus - ok
10:22:49.0235 1312 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
10:22:49.0235 1312 HidBatt - ok
10:22:49.0265 1312 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
10:22:49.0265 1312 HidBth - ok
10:22:49.0375 1312 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
10:22:49.0375 1312 HidIr - ok
10:22:49.0425 1312 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys
10:22:49.0425 1312 HidUsb - ok
10:22:49.0505 1312 hpdskflt (4ef10b866c62abbeaf7511cdd05a19be) C:\Windows\system32\DRIVERS\hpdskflt.sys
10:22:49.0505 1312 hpdskflt - ok
10:22:49.0605 1312 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
10:22:49.0615 1312 HpSAMD - ok
10:22:49.0655 1312 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
10:22:49.0665 1312 HTTP - ok
10:22:49.0715 1312 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
10:22:49.0715 1312 hwpolicy - ok
10:22:49.0855 1312 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
10:22:49.0855 1312 i8042prt - ok
10:22:49.0895 1312 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
10:22:49.0895 1312 iaStorV - ok
10:22:49.0975 1312 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
10:22:49.0995 1312 iirsp - ok
10:22:50.0105 1312 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
10:22:50.0105 1312 intelide - ok
10:22:50.0145 1312 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
10:22:50.0145 1312 intelppm - ok
10:22:50.0165 1312 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:22:50.0165 1312 IpFilterDriver - ok
10:22:50.0215 1312 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
10:22:50.0285 1312 IPMIDRV - ok
10:22:50.0465 1312 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
10:22:50.0485 1312 IPNAT - ok
10:22:50.0535 1312 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
10:22:50.0535 1312 IRENUM - ok
10:22:50.0565 1312 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
10:22:50.0575 1312 isapnp - ok
10:22:50.0625 1312 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
10:22:50.0625 1312 iScsiPrt - ok
10:22:50.0776 1312 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
10:22:50.0786 1312 kbdclass - ok
10:22:50.0816 1312 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\DRIVERS\kbdhid.sys
10:22:50.0826 1312 kbdhid - ok
10:22:50.0896 1312 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\Windows\system32\Drivers\ksecdd.sys
10:22:50.0896 1312 KSecDD - ok
10:22:50.0906 1312 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\Windows\system32\Drivers\ksecpkg.sys
10:22:50.0916 1312 KSecPkg - ok
10:22:51.0066 1312 Lbd (336abe8721cbc3110f1c6426da633417) C:\Windows\system32\DRIVERS\Lbd.sys
10:22:51.0076 1312 Lbd - ok
10:22:51.0156 1312 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
10:22:51.0156 1312 lltdio - ok
10:22:51.0216 1312 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
10:22:51.0216 1312 LSI_FC - ok
10:22:51.0226 1312 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
10:22:51.0236 1312 LSI_SAS - ok
10:22:51.0356 1312 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
10:22:51.0356 1312 LSI_SAS2 - ok
10:22:51.0376 1312 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
10:22:51.0376 1312 LSI_SCSI - ok
10:22:51.0426 1312 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
10:22:51.0426 1312 luafv - ok
10:22:51.0466 1312 lvalarmk (bad54f937b43f0e75db242c1f40c2dcf) C:\Windows\system32\drivers\lvalarmk.sys
10:22:51.0556 1312 lvalarmk - ok
10:22:51.0686 1312 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
10:22:51.0686 1312 megasas - ok
10:22:51.0736 1312 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
10:22:51.0746 1312 MegaSR - ok
10:22:51.0776 1312 mfeapfk (5cbf9d2fab2abc461b2f67c802f52543) C:\Windows\system32\drivers\mfeapfk.sys
10:22:51.0856 1312 mfeapfk - ok
10:22:51.0896 1312 mfeavfk (10718b3eeb9e98c5b4aad7c0a23a9efa) C:\Windows\system32\drivers\mfeavfk.sys
10:22:51.0896 1312 mfeavfk - ok
10:22:52.0026 1312 mfebopk (e665cff48e376b48d2cc84be1559f131) C:\Windows\system32\drivers\mfebopk.sys
10:22:52.0036 1312 mfebopk - ok
10:22:52.0056 1312 mfehidk (e2f200d38b72e47b88489e2c97dfd6d8) C:\Windows\system32\drivers\mfehidk.sys
10:22:52.0066 1312 mfehidk - ok
10:22:52.0106 1312 mferkdet (ef04236d1a4f9f672b5258de83e2ee35) C:\Windows\system32\drivers\mferkdet.sys
10:22:52.0106 1312 mferkdet - ok
10:22:52.0116 1312 mfetdik (d5a4b1ae4958ccfc66c1d17c1f42ba08) C:\Windows\system32\drivers\mfetdik.sys
10:22:52.0126 1312 mfetdik - ok
10:22:52.0186 1312 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
10:22:52.0186 1312 Modem - ok
10:22:52.0316 1312 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
10:22:52.0316 1312 monitor - ok
10:22:52.0356 1312 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
10:22:52.0356 1312 mouclass - ok
10:22:52.0376 1312 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
10:22:52.0386 1312 mouhid - ok
10:22:52.0426 1312 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
10:22:52.0506 1312 mountmgr - ok
10:22:52.0646 1312 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
10:22:52.0656 1312 mpio - ok
10:22:52.0696 1312 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
10:22:52.0696 1312 mpsdrv - ok
10:22:52.0716 1312 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
10:22:52.0716 1312 MRxDAV - ok
10:22:52.0756 1312 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
10:22:52.0756 1312 mrxsmb - ok
10:22:52.0796 1312 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:22:52.0796 1312 mrxsmb10 - ok
10:22:52.0906 1312 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:22:52.0906 1312 mrxsmb20 - ok
10:22:52.0936 1312 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
10:22:52.0936 1312 msahci - ok
10:22:52.0966 1312 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
10:22:53.0126 1312 msdsm - ok
10:22:53.0166 1312 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
10:22:53.0166 1312 Msfs - ok
10:22:53.0196 1312 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
10:22:53.0196 1312 mshidkmdf - ok
10:22:53.0316 1312 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
10:22:53.0326 1312 msisadrv - ok
10:22:53.0376 1312 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
10:22:53.0376 1312 MSKSSRV - ok
10:22:53.0386 1312 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
10:22:53.0386 1312 MSPCLOCK - ok
10:22:53.0406 1312 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
10:22:53.0406 1312 MSPQM - ok
10:22:53.0436 1312 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
10:22:53.0436 1312 MsRPC - ok
10:22:53.0456 1312 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys
10:22:53.0456 1312 mssmbios - ok
10:22:53.0506 1312 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
10:22:53.0506 1312 MSTEE - ok
10:22:53.0626 1312 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
10:22:53.0626 1312 MTConfig - ok
10:22:53.0646 1312 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
10:22:53.0646 1312 Mup - ok
10:22:53.0706 1312 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
10:22:53.0716 1312 NativeWifiP - ok
10:22:53.0766 1312 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
10:22:53.0766 1312 NDIS - ok
10:22:53.0776 1312 Scan interrupted by user!
10:22:53.0776 1312 Scan interrupted by user!
10:22:53.0776 1312 Scan interrupted by user!
10:22:53.0776 1312 ============================================================
10:22:53.0776 1312 Scan finished
10:22:53.0776 1312 ============================================================
10:22:53.0786 5996 Detected object count: 0
10:22:53.0786 5996 Actual detected object count: 0
10:23:03.0817 5768 ============================================================
10:23:03.0817 5768 Scan started
10:23:03.0817 5768 Mode: Manual; TDLFS;
10:23:03.0817 5768 ============================================================
10:23:04.0387 5768 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\DRIVERS\1394ohci.sys
10:23:04.0387 5768 1394ohci - ok
10:23:04.0417 5768 Accelerometer (cc1f1d3d70dc13c2c281488d347d4415) C:\Windows\system32\DRIVERS\Accelerometer.sys
10:23:04.0417 5768 Accelerometer - ok
10:23:04.0447 5768 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
10:23:04.0447 5768 ACPI - ok
10:23:04.0467 5768 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
10:23:04.0477 5768 AcpiPmi - ok
10:23:04.0517 5768 ADIHdAudAddService (6c61bceb60c2c187e6f96001fd69493e) C:\Windows\system32\drivers\ADIHdAud.sys
10:23:04.0527 5768 ADIHdAudAddService - ok
10:23:04.0647 5768 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
10:23:04.0647 5768 adp94xx - ok
10:23:04.0677 5768 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
10:23:04.0677 5768 adpahci - ok
10:23:04.0697 5768 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
10:23:04.0697 5768 adpu320 - ok
10:23:04.0747 5768 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
10:23:04.0747 5768 AFD - ok
10:23:04.0807 5768 AgereSoftModem (c6fa08a8cca9001f3197525b07331715) C:\Windows\system32\DRIVERS\AGRSM.sys
10:23:04.0807 5768 AgereSoftModem - ok
10:23:04.0947 5768 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
10:23:04.0947 5768 agp440 - ok
10:23:04.0987 5768 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
10:23:04.0987 5768 aic78xx - ok
10:23:05.0007 5768 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
10:23:05.0007 5768 aliide - ok
10:23:05.0037 5768 AlteraByteBlaster (5c3d047466af6fc35a273f558f14ef2b) C:\Windows\system32\drivers\pgdhdlc.sys
10:23:05.0037 5768 AlteraByteBlaster - ok
10:23:05.0047 5768 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
10:23:05.0047 5768 amdagp - ok
10:23:05.0077 5768 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
10:23:05.0077 5768 amdide - ok
10:23:05.0107 5768 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
10:23:05.0107 5768 AmdK8 - ok
10:23:05.0267 5768 amdkmdag (8d728258df80ad8b5fd5225450940845) C:\Windows\system32\DRIVERS\atikmdag.sys
10:23:05.0297 5768 amdkmdag - ok
10:23:05.0397 5768 amdkmdap (9dc19641d960d301e6ca75e328169d2b) C:\Windows\system32\DRIVERS\atikmpag.sys
10:23:05.0397 5768 amdkmdap - ok
10:23:05.0457 5768 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
10:23:05.0457 5768 AmdPPM - ok
10:23:05.0477 5768 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
10:23:05.0477 5768 amdsata - ok
10:23:05.0507 5768 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
10:23:05.0507 5768 amdsbs - ok
10:23:05.0527 5768 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
10:23:05.0527 5768 amdxata - ok
10:23:05.0557 5768 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
10:23:05.0557 5768 AppID - ok
10:23:05.0657 5768 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
10:23:05.0667 5768 arc - ok
10:23:05.0717 5768 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
10:23:05.0727 5768 arcsas - ok
10:23:05.0747 5768 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
10:23:05.0747 5768 AsyncMac - ok
10:23:05.0767 5768 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
10:23:05.0767 5768 atapi - ok
10:23:05.0797 5768 AtiHdmiService (c822c615b2f693ef4e5b355432976a81) C:\Windows\system32\drivers\AtiHdmi.sys
10:23:05.0797 5768 AtiHdmiService - ok
10:23:05.0917 5768 atikmdag (8d728258df80ad8b5fd5225450940845) C:\Windows\system32\DRIVERS\atikmdag.sys
10:23:05.0947 5768 atikmdag - ok
10:23:06.0077 5768 AtiPcie (aca01c43d065e546c6dc88ea669ceca6) C:\Windows\system32\DRIVERS\AtiPcie.sys
10:23:06.0077 5768 AtiPcie - ok
10:23:06.0127 5768 ATSwpWDF (befe54e9bc648a3c79c917a63b6ee7da) C:\Windows\system32\Drivers\ATSwpWDF.sys
10:23:06.0137 5768 ATSwpWDF - ok
10:23:06.0207 5768 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
10:23:06.0217 5768 b06bdrv - ok
10:23:06.0337 5768 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
10:23:06.0347 5768 b57nd60x - ok
10:23:06.0437 5768 BCM43XX (36a47e6ab1f0967c97722183e21adb1a) C:\Windows\system32\DRIVERS\bcmwl6.sys
10:23:06.0457 5768 BCM43XX - ok
10:23:06.0547 5768 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
10:23:06.0547 5768 Beep - ok
10:23:06.0597 5768 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
10:23:06.0597 5768 blbdrive - ok
10:23:06.0637 5768 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
10:23:06.0637 5768 bowser - ok
10:23:06.0657 5768 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
10:23:06.0657 5768 BrFiltLo - ok
10:23:06.0667 5768 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
10:23:06.0677 5768 BrFiltUp - ok
10:23:06.0697 5768 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
10:23:06.0697 5768 Brserid - ok
10:23:06.0707 5768 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
10:23:06.0707 5768 BrSerWdm - ok
10:23:06.0717 5768 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
10:23:06.0727 5768 BrUsbMdm - ok
10:23:06.0737 5768 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
10:23:06.0737 5768 BrUsbSer - ok
10:23:06.0757 5768 BthEnum (2865a5c8e98c70c605f417908cebb3a4) C:\Windows\system32\drivers\BthEnum.sys
10:23:06.0757 5768 BthEnum - ok
10:23:06.0767 5768 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
10:23:06.0767 5768 BTHMODEM - ok
10:23:06.0797 5768 BthPan (ad1872e5829e8a2c3b5b4b641c3eab0e) C:\Windows\system32\DRIVERS\bthpan.sys
10:23:06.0797 5768 BthPan - ok
10:23:06.0817 5768 BTHPORT (c2fbf6d271d9a94d839c416bf186ead9) C:\Windows\System32\Drivers\BTHport.sys
10:23:06.0817 5768 BTHPORT - ok
10:23:06.0837 5768 BTHUSB (c81e9413a25a439f436b1d4b6a0cf9e9) C:\Windows\System32\Drivers\BTHUSB.sys
10:23:06.0837 5768 BTHUSB - ok
10:23:06.0867 5768 btusbflt (f549c3fb145a4928e40bb1518b2034dc) C:\Windows\system32\drivers\btusbflt.sys
10:23:06.0867 5768 btusbflt - ok
10:23:06.0997 5768 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
10:23:06.0997 5768 cdfs - ok
10:23:07.0027 5768 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\DRIVERS\cdrom.sys
10:23:07.0037 5768 cdrom - ok
10:23:07.0067 5768 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
10:23:07.0067 5768 circlass - ok
10:23:07.0107 5768 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
10:23:07.0117 5768 CLFS - ok
10:23:07.0137 5768 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
10:23:07.0137 5768 CmBatt - ok
10:23:07.0257 5768 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
10:23:07.0257 5768 cmdide - ok
10:23:07.0307 5768 CNG (6427525d76f61d0c519b008d3680e8e7) C:\Windows\system32\Drivers\cng.sys
10:23:07.0307 5768 CNG - ok
10:23:07.0337 5768 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
10:23:07.0337 5768 Compbatt - ok
10:23:07.0357 5768 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys
10:23:07.0357 5768 CompositeBus - ok
10:23:07.0387 5768 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
10:23:07.0387 5768 crcdisk - ok
10:23:07.0447 5768 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys
10:23:07.0447 5768 CSC - ok
10:23:07.0557 5768 ctxusbm (cb6ff7012bb5d59d7c12350db795ce1f) C:\Windows\system32\DRIVERS\ctxusbm.sys
10:23:07.0557 5768 ctxusbm - ok
10:23:07.0607 5768 cvintdrv (dbd89bc0dbe00dcd245be8f61dbee291) C:\Windows\system32\drivers\cvintdrv.sys
10:23:07.0607 5768 cvintdrv - ok
10:23:07.0647 5768 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
10:23:07.0647 5768 DfsC - ok
10:23:07.0677 5768 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
10:23:07.0677 5768 discache - ok
10:23:07.0697 5768 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
10:23:07.0697 5768 Disk - ok
10:23:07.0737 5768 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
10:23:07.0737 5768 drmkaud - ok
10:23:07.0787 5768 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
10:23:07.0797 5768 DXGKrnl - ok
10:23:07.0987 5768 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
10:23:08.0007 5768 ebdrv - ok
10:23:08.0157 5768 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
10:23:08.0157 5768 elxstor - ok
10:23:08.0197 5768 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
10:23:08.0197 5768 ErrDev - ok
10:23:08.0227 5768 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
10:23:08.0227 5768 exfat - ok
10:23:08.0237 5768 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
10:23:08.0237 5768 fastfat - ok
10:23:08.0257 5768 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
10:23:08.0257 5768 fdc - ok
10:23:08.0287 5768 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
10:23:08.0287 5768 FileInfo - ok
10:23:08.0417 5768 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
10:23:08.0417 5768 Filetrace - ok
10:23:08.0427 5768 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
10:23:08.0427 5768 flpydisk - ok
10:23:08.0447 5768 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
10:23:08.0447 5768 FltMgr - ok
10:23:08.0477 5768 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
10:23:08.0477 5768 FsDepends - ok
10:23:08.0497 5768 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
10:23:08.0497 5768 Fs_Rec - ok
10:23:08.0537 5768 FTDIBUS (b7aa8283ec551d3a3b924e520e0621a7) C:\Windows\system32\drivers\ftdibus.sys
10:23:08.0537 5768 FTDIBUS - ok
10:23:08.0557 5768 FTSER2K (596d31583ce332b5514520d74837f434) C:\Windows\system32\drivers\ftser2k.sys
10:23:08.0557 5768 FTSER2K - ok
10:23:08.0627 5768 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
10:23:08.0627 5768 fvevol - ok
10:23:08.0728 5768 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
10:23:08.0728 5768 gagp30kx - ok
10:23:08.0768 5768 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:23:08.0768 5768 GEARAspiWDM - ok
10:23:08.0818 5768 HBtnKey (c172f0d0329e46513b09e1fc60a27b9d) C:\Windows\system32\DRIVERS\cpqbttn.sys
10:23:08.0818 5768 HBtnKey - ok
10:23:08.0828 5768 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
10:23:08.0838 5768 hcw85cir - ok
10:23:08.0898 5768 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
10:23:08.0908 5768 HdAudAddService - ok
10:23:08.0978 5768 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\DRIVERS\HDAudBus.sys
10:23:08.0978 5768 HDAudBus - ok
10:23:09.0008 5768 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
10:23:09.0018 5768 HidBatt - ok
10:23:09.0028 5768 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
10:23:09.0028 5768 HidBth - ok
10:23:09.0038 5768 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
10:23:09.0038 5768 HidIr - ok
10:23:09.0068 5768 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys
10:23:09.0068 5768 HidUsb - ok
10:23:09.0108 5768 hpdskflt (4ef10b866c62abbeaf7511cdd05a19be) C:\Windows\system32\DRIVERS\hpdskflt.sys
10:23:09.0118 5768 hpdskflt - ok
10:23:09.0178 5768 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
10:23:09.0178 5768 HpSAMD - ok
10:23:09.0278 5768 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
10:23:09.0288 5768 HTTP - ok
10:23:09.0328 5768 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
10:23:09.0328 5768 hwpolicy - ok
10:23:09.0358 5768 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
10:23:09.0358 5768 i8042prt - ok
10:23:09.0428 5768 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
10:23:09.0428 5768 iaStorV - ok
10:23:09.0518 5768 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
10:23:09.0528 5768 iirsp - ok
10:23:09.0548 5768 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
10:23:09.0548 5768 intelide - ok
10:23:09.0578 5768 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
10:23:09.0588 5768 intelppm - ok
10:23:09.0618 5768 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:23:09.0618 5768 IpFilterDriver - ok
10:23:09.0658 5768 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
10:23:09.0658 5768 IPMIDRV - ok
10:23:09.0678 5768 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
10:23:09.0698 5768 IPNAT - ok
10:23:09.0818 5768 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
10:23:09.0828 5768 IRENUM - ok
10:23:09.0858 5768 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
10:23:09.0858 5768 isapnp - ok
10:23:09.0888 5768 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
10:23:09.0898 5768 iScsiPrt - ok
10:23:09.0928 5768 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
10:23:09.0938 5768 kbdclass - ok
10:23:09.0968 5768 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\DRIVERS\kbdhid.sys
10:23:09.0968 5768 kbdhid - ok
10:23:10.0008 5768 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\Windows\system32\Drivers\ksecdd.sys
10:23:10.0018 5768 KSecDD - ok
10:23:10.0118 5768 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\Windows\system32\Drivers\ksecpkg.sys
10:23:10.0128 5768 KSecPkg - ok
10:23:10.0178 5768 Lbd (336abe8721cbc3110f1c6426da633417) C:\Windows\system32\DRIVERS\Lbd.sys
10:23:10.0188 5768 Lbd - ok
10:23:10.0238 5768 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
10:23:10.0238 5768 lltdio - ok
10:23:10.0268 5768 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
10:23:10.0268 5768 LSI_FC - ok
10:23:10.0278 5768 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
10:23:10.0278 5768 LSI_SAS - ok
10:23:10.0298 5768 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
10:23:10.0298 5768 LSI_SAS2 - ok
10:23:10.0398 5768 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
10:23:10.0408 5768 LSI_SCSI - ok
10:23:10.0428 5768 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
10:23:10.0428 5768 luafv - ok
10:23:10.0468 5768 lvalarmk (bad54f937b43f0e75db242c1f40c2dcf) C:\Windows\system32\drivers\lvalarmk.sys
10:23:10.0468 5768 lvalarmk - ok
10:23:10.0518 5768 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
10:23:10.0518 5768 megasas - ok
10:23:10.0538 5768 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
10:23:10.0548 5768 MegaSR - ok
10:23:10.0578 5768 mfeapfk (5cbf9d2fab2abc461b2f67c802f52543) C:\Windows\system32\drivers\mfeapfk.sys
10:23:10.0578 5768 mfeapfk - ok
10:23:10.0698 5768 mfeavfk (10718b3eeb9e98c5b4aad7c0a23a9efa) C:\Windows\system32\drivers\mfeavfk.sys
10:23:10.0698 5768 mfeavfk - ok
10:23:10.0718 5768 mfebopk (e665cff48e376b48d2cc84be1559f131) C:\Windows\system32\drivers\mfebopk.sys
10:23:10.0728 5768 mfebopk - ok
10:23:10.0758 5768 mfehidk (e2f200d38b72e47b88489e2c97dfd6d8) C:\Windows\system32\drivers\mfehidk.sys
10:23:10.0758 5768 mfehidk - ok
10:23:10.0778 5768 mferkdet (ef04236d1a4f9f672b5258de83e2ee35) C:\Windows\system32\drivers\mferkdet.sys
10:23:10.0788 5768 mferkdet - ok
10:23:10.0798 5768 mfetdik (d5a4b1ae4958ccfc66c1d17c1f42ba08) C:\Windows\system32\drivers\mfetdik.sys
10:23:10.0798 5768 mfetdik - ok
10:23:10.0838 5768 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
10:23:10.0848 5768 Modem - ok
10:23:10.0938 5768 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
10:23:10.0948 5768 monitor - ok
10:23:10.0968 5768 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
10:23:10.0978 5768 mouclass - ok
10:23:10.0988 5768 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
10:23:10.0988 5768 mouhid - ok
10:23:11.0018 5768 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
10:23:11.0018 5768 mountmgr - ok
10:23:11.0058 5768 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
10:23:11.0058 5768 mpio - ok
10:23:11.0098 5768 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
10:23:11.0098 5768 mpsdrv - ok
10:23:11.0198 5768 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
10:23:11.0208 5768 MRxDAV - ok
10:23:11.0248 5768 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
10:23:11.0248 5768 mrxsmb - ok
10:23:11.0288 5768 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:23:11.0288 5768 mrxsmb10 - ok
10:23:11.0298 5768 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:23:11.0298 5768 mrxsmb20 - ok
10:23:11.0328 5768 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
10:23:11.0328 5768 msahci - ok
10:23:11.0358 5768 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
10:23:11.0368 5768 msdsm - ok
10:23:11.0488 5768 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
10:23:11.0488 5768 Msfs - ok
10:23:11.0508 5768 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
10:23:11.0508 5768 mshidkmdf - ok
10:23:11.0538 5768 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
10:23:11.0538 5768 msisadrv - ok
10:23:11.0568 5768 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
10:23:11.0568 5768 MSKSSRV - ok
10:23:11.0588 5768 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
10:23:11.0588 5768 MSPCLOCK - ok
10:23:11.0598 5768 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
10:23:11.0598 5768 MSPQM - ok
10:23:11.0618 5768 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
10:23:11.0618 5768 MsRPC - ok
10:23:11.0658 5768 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys
10:23:11.0658 5768 mssmbios - ok
10:23:11.0688 5768 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
10:23:11.0688 5768 MSTEE - ok
10:23:11.0809 5768 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
10:23:11.0809 5768 MTConfig - ok
10:23:11.0839 5768 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
10:23:11.0839 5768 Mup - ok
10:23:11.0869 5768 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
10:23:11.0869 5768 NativeWifiP - ok
10:23:11.0919 5768 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
10:23:11.0929 5768 NDIS - ok
10:23:12.0039 5768 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
10:23:12.0039 5768 NdisCap - ok
10:23:12.0099 5768 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
10:23:12.0099 5768 NdisTapi - ok
10:23:12.0149 5768 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
10:23:12.0149 5768 Ndisuio - ok
10:23:12.0189 5768 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
10:23:12.0309 5768 NdisWan - ok
10:23:12.0419 5768 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
10:23:12.0429 5768 NDProxy - ok
10:23:12.0469 5768 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
10:23:12.0479 5768 NetBIOS - ok
10:23:12.0499 5768 NetBT - ok
10:23:12.0559 5768 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
10:23:12.0559 5768 nfrd960 - ok
10:23:12.0679 5768 ni1006k (2ad3c955a4b2a0c82c1906f61cb297f8) C:\Windows\system32\drivers\ni1006k.sys
10:23:12.0749 5768 ni1006k - ok
10:23:12.0799 5768 ni1045k (f965ee798882b6ccf8de95af3dd18b7c) C:\Windows\system32\drivers\ni1045kl.sys
10:23:12.0799 5768 ni1045k - ok
10:23:12.0809 5768 ni1065k (a5cd3acbac593859ad03ed957b443760) C:\Windows\system32\drivers\ni1065k.sys
10:23:12.0809 5768 ni1065k - ok
10:23:12.0859 5768 ni488lock (3b21d301913f34d9f66229ea0a630af2) C:\Windows\system32\drivers\ni488lock.sys
10:23:12.0859 5768 ni488lock - ok
10:23:12.0929 5768 niarbk (5d249c5365f819f70882570a1746c9d2) C:\Windows\system32\drivers\niarbk.dll
10:23:12.0989 5768 niarbk - ok
10:23:13.0089 5768 nibffrk (ec11f3561e9ef42b515839c5feed393b) C:\Windows\system32\drivers\nibffrk.dll
10:23:13.0089 5768 nibffrk - ok
10:23:13.0139 5768 nicdrk (f96bdcf214ba8a022b5755815aff0291) C:\Windows\system32\drivers\nicdrkl.sys
10:23:13.0139 5768 nicdrk - ok
10:23:13.0199 5768 nicmrk (2d271508863445db8ae5d93d3ab09d33) C:\Windows\system32\drivers\nicmrkl.sys
10:23:13.0199 5768 nicmrk - ok
10:23:13.0209 5768 nicsrk (2c0f4afbce77a9acdc2559017126beda) C:\Windows\system32\drivers\nicsrkl.sys
10:23:13.0209 5768 nicsrk - ok
10:23:13.0289 5768 Nidaq32k (45e8f127606c4bd0d70ed2214146bdc3) C:\Windows\system32\drivers\Nidaq32k.sys
10:23:13.0299 5768 Nidaq32k - ok
10:23:13.0409 5768 nidimk (5b49b7840d9a690a40bfea0820387372) C:\Windows\system32\drivers\nidimkl.sys
10:23:13.0469 5768 nidimk - ok
10:23:13.0519 5768 nidmmk (cb774c85d1814afc0efdf8c3f13a10e5) C:\Windows\system32\drivers\nidmmk.dll
10:23:13.0519 5768 nidmmk - ok
10:23:13.0599 5768 nidmxfk (31c279128574669e8122d6ad4929d9fe) C:\Windows\system32\drivers\nidmxfkl.sys
10:23:13.0599 5768 nidmxfk - ok
10:23:13.0649 5768 nidsark (901186f4b9c705763c134d54a1440639) C:\Windows\system32\drivers\nidsarkl.sys
10:23:13.0649 5768 nidsark - ok
10:23:13.0759 5768 nidwgk (d982d591c4a06d5fc2c8c73fa25fe2e4) C:\Windows\system32\drivers\nidwgkl.sys
10:23:13.0769 5768 nidwgk - ok
10:23:13.0809 5768 niemrk (0db7610fdbfab1f4df9fb20ae02b1437) C:\Windows\system32\drivers\niemrkl.sys
10:23:13.0809 5768 niemrk - ok
10:23:13.0859 5768 niesrk (4b6813d384d91bcf46b94b78a71f995e) C:\Windows\system32\drivers\niesrkl.sys
10:23:13.0869 5768 niesrk - ok
10:23:13.0889 5768 nifslk (77433e8248d9d71c609bd09eae6196e2) C:\Windows\system32\drivers\nifslkl.sys
10:23:13.0949 5768 nifslk - ok
10:23:13.0989 5768 nihsdrk (d35bdfed48a6e2504d4e353f72ec314c) C:\Windows\system32\drivers\nihsdrkl.sys
10:23:13.0989 5768 nihsdrk - ok
10:23:14.0119 5768 nimdbgk (3759d89ba13dd30f0d165f8e8a05c3a8) C:\Windows\system32\drivers\nimdbgkl.sys
10:23:14.0189 5768 nimdbgk - ok
10:23:14.0269 5768 nimdsk (dd4b89019ab1eca5c04757e2f7d8a9e4) C:\Windows\system32\drivers\nimdsk.dll
10:23:14.0279 5768 nimdsk - ok
10:23:14.0329 5768 nimru2k (a4d639dd7cf0463228435beeb25d0ca2) C:\Windows\system32\drivers\nimru2kl.sys
10:23:14.0379 5768 nimru2k - ok
10:23:14.0419 5768 nimsdrk (0c2164279a2c1abe317bb4b6c27bf790) C:\Windows\system32\drivers\nimsdrkl.sys
10:23:14.0579 5768 nimsdrk - ok
10:23:14.0709 5768 nimslk - ok
10:23:14.0759 5768 nimsrlk - ok
10:23:14.0789 5768 nimstsk (3eeddac30cfb0669b5b6fb081844cc6e) C:\Windows\system32\drivers\nimstskl.sys
10:23:14.0789 5768 nimstsk - ok
10:23:14.0799 5768 nimxdfk (c1d3fe97174283dbece900a73bc5498e) C:\Windows\system32\drivers\nimxdfkl.sys
10:23:14.0799 5768 nimxdfk - ok
10:23:14.0829 5768 nimxpk (73e57cc0c576b25fa5a92f476f8d6c2f) C:\Windows\system32\drivers\nimxpkl.sys
10:23:14.0829 5768 nimxpk - ok
10:23:14.0849 5768 ninshsdk (0c31bc8265daeb2515e0f3f502ad17b8) C:\Windows\system32\drivers\ninshsdkl.sys
10:23:14.0859 5768 ninshsdk - ok
10:23:14.0909 5768 niorbk (2ee2631f636f2cceb8f054bee79ad6c4) C:\Windows\system32\drivers\niorbkl.sys
10:23:14.0969 5768 niorbk - ok
10:23:15.0069 5768 nipalfwedl (b1b9fb0b833e56bc32eeec5d056edbe4) C:\Windows\system32\drivers\nipalfwedl.sys
10:23:15.0139 5768 nipalfwedl - ok
10:23:15.0209 5768 NIPALK (cd8215d8970a8f911917d240b4380eda) C:\Windows\system32\drivers\nipalk.sys
10:23:15.0219 5768 NIPALK - ok
10:23:15.0249 5768 nipalusbedl (edeb879dd81f0444013f525033def5de) C:\Windows\system32\drivers\nipalusbedl.sys
10:23:15.0259 5768 nipalusbedl - ok
10:23:15.0269 5768 nipbcfk (96c846ab33c383583282b0375b34e9d2) C:\Windows\system32\drivers\nipbcfk.sys
10:23:15.0279 5768 nipbcfk - ok
10:23:15.0319 5768 nipsdk (5a8d0fcdca9911383880bd074b576978) C:\Windows\system32\drivers\nipsdkl.sys
10:23:15.0319 5768 nipsdk - ok
10:23:15.0349 5768 nipxibaf (487f469717ebdafe2b933a2c449d43de) C:\Windows\system32\drivers\nipxibaf.sys
10:23:15.0349 5768 nipxibaf - ok
10:23:15.0379 5768 nipxibrc (7518a39976162f0312e7714a1f5df4fe) C:\Windows\system32\drivers\nipxibrc.sys
10:23:15.0459 5768 nipxibrc - ok
10:23:15.0509 5768 nipxigpk (159860b9418bfbc2ad6f5782cf1fe667) C:\Windows\system32\drivers\nipxigpk.sys
10:23:15.0509 5768 nipxigpk - ok
10:23:15.0579 5768 nipxirmk (f2a9ae586502774b9d1c1d790a6626b4) C:\Windows\system32\drivers\nipxirmkl.sys
10:23:15.0589 5768 nipxirmk - ok
10:23:15.0639 5768 niraptrk (c9db5ebbe398ae404268f06e81b4e515) C:\Windows\system32\drivers\niraptrkl.sys
10:23:15.0639 5768 niraptrk - ok
10:23:15.0699 5768 niRFSA2k (abced9fb275546eb05ced63f2a2640bb) C:\Windows\system32\drivers\niRFSA2kl.sys
10:23:15.0699 5768 niRFSA2k - ok
10:23:15.0749 5768 niRFSGk (376a851931f2f33030080e37d914e665) C:\Windows\system32\drivers\niRFSGkl.sys
10:23:15.0749 5768 niRFSGk - ok
10:23:15.0759 5768 niscdk (b4a90dab55cdaaaf45a0b2dfeaddb5b1) C:\Windows\system32\drivers\niscdkl.sys
10:23:15.0759 5768 niscdk - ok
10:23:15.0789 5768 nisdigk (0d41c6276e0e99b843f008b2e6207c1f) C:\Windows\system32\drivers\nisdigkl.sys
10:23:15.0849 5768 nisdigk - ok
10:23:15.0879 5768 nisftk (03cf7e0a533009767aba01340aa38a0f) C:\Windows\system32\drivers\nisftkl.sys
10:23:15.0879 5768 nisftk - ok
10:23:15.0939 5768 nisldk (17fa6411f97342b805b971b31df98b44) C:\Windows\system32\drivers\nisldkl.sys
10:23:15.0939 5768 nisldk - ok
10:23:16.0019 5768 nispdk (5696a33c7b8f58f4ef838a6fab248d86) C:\Windows\system32\drivers\nispdkl.sys
10:23:16.0019 5768 nispdk - ok
10:23:16.0059 5768 nisrcdk (d30dbd774d3bee61069ac6e3a8a43c40) C:\Windows\system32\drivers\nisrcdkl.sys
10:23:16.0059 5768 nisrcdk - ok
10:23:16.0079 5768 nissrk (9ca7e2dbcc4430f97dad290ecdb6a973) C:\Windows\system32\drivers\nissrkl.sys
10:23:16.0079 5768 nissrk - ok
10:23:16.0099 5768 nistc2k (f3e81b7b92dd962e674018c810a3025e) C:\Windows\system32\drivers\nistc2kl.sys
10:23:16.0099 5768 nistc2k - ok
10:23:16.0109 5768 nistc3rk (b6d5db93cdf4f52269436263e8062d9c) C:\Windows\system32\drivers\nistc3rkl.sys
10:23:16.0179 5768 nistc3rk - ok
10:23:16.0209 5768 nistck (45bffaed056b917407cc2d52a520a582) C:\Windows\system32\drivers\nistck.dll
10:23:16.0209 5768 nistck - ok
10:23:16.0239 5768 nistcrk (3130589570081e83a1813c0b62aaca9f) C:\Windows\system32\drivers\nistcrkl.sys
10:23:16.0239 5768 nistcrk - ok
10:23:16.0289 5768 nistreamk (ca0f520b63cd0d7b296b9a13d221271d) C:\Windows\system32\drivers\nistreamkl.sys
10:23:16.0289 5768 nistreamk - ok
10:23:16.0359 5768 niswdk (2f3abc2da0f3195c8840386b0d6edd14) C:\Windows\system32\drivers\niswdkl.sys
10:23:16.0359 5768 niswdk - ok
10:23:16.0439 5768 nitiork (38b747ea30fc9b4059b300d6609dc3fa) C:\Windows\system32\drivers\nitiorkl.sys
10:23:16.0439 5768 nitiork - ok
10:23:16.0459 5768 nitnr2k (a03e31d17159c7a65fc36eb0a5a63c10) C:\Windows\system32\drivers\nitnr2kl.sys
10:23:16.0459 5768 nitnr2k - ok
10:23:16.0499 5768 niufurk (a7fb020a595c3853f19c7a99e511806e) C:\Windows\system32\drivers\niufurkl.sys
10:23:16.0499 5768 niufurk - ok
10:23:16.0539 5768 NiViPciK (29ebe67b68d51d4f03f4257b81e5a22e) C:\Windows\system32\drivers\NiViPciKl.sys
10:23:16.0539 5768 NiViPciK - ok
10:23:16.0569 5768 NiViPxiK (9a202cc17625a5e8f84504ce45445d84) C:\Windows\system32\drivers\NiViPxiKl.sys
10:23:16.0569 5768 NiViPxiK - ok
10:23:16.0589 5768 niwfrk (383c323f2936373dad3e14c540c913da) C:\Windows\system32\drivers\niwfrkl.sys
10:23:16.0599 5768 niwfrk - ok
10:23:16.0609 5768 nixsrk (2256390416a9a9849ef1c65df22428c7) C:\Windows\system32\drivers\nixsrkl.sys
10:23:16.0609 5768 nixsrk - ok
10:23:16.0649 5768 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
10:23:16.0659 5768 Npfs - ok
10:23:16.0689 5768 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
10:23:16.0699 5768 nsiproxy - ok
10:23:16.0779 5768 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
10:23:16.0789 5768 Ntfs - ok
10:23:16.0829 5768 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
10:23:16.0829 5768 Null - ok
10:23:16.0869 5768 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
10:23:16.0869 5768 nvraid - ok
10:23:16.0909 5768 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
10:23:16.0909 5768 nvstor - ok
10:23:16.0929 5768 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
10:23:16.0939 5768 nv_agp - ok
10:23:16.0999 5768 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
10:23:16.0999 5768 ohci1394 - ok
10:23:17.0129 5768 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
10:23:17.0129 5768 Parport - ok
10:23:17.0169 5768 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys
10:23:17.0319 5768 partmgr - ok
10:23:17.0359 5768 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
10:23:17.0359 5768 Parvdm - ok
10:23:17.0409 5768 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
10:23:17.0419 5768 pci - ok
10:23:17.0429 5768 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
10:23:17.0429 5768 pciide - ok
10:23:17.0469 5768 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
10:23:17.0469 5768 pcmcia - ok
10:23:17.0499 5768 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
10:23:17.0499 5768 pcw - ok
10:23:17.0599 5768 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
10:23:17.0609 5768 PEAUTH - ok
10:23:17.0699 5768 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
10:23:17.0699 5768 PptpMiniport - ok
10:23:17.0729 5768 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
10:23:17.0739 5768 Processor - ok
10:23:17.0769 5768 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
10:23:17.0769 5768 Psched - ok
10:23:17.0869 5768 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
10:23:17.0889 5768 ql2300 - ok
10:23:17.0909 5768 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
10:23:17.0909 5768 ql40xx - ok
10:23:17.0949 5768 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
10:23:17.0949 5768 QWAVEdrv - ok
10:23:17.0979 5768 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
10:23:17.0979 5768 RasAcd - ok
10:23:18.0089 5768 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
10:23:18.0099 5768 RasAgileVpn - ok
10:23:18.0139 5768 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
10:23:18.0139 5768 Rasl2tp - ok
10:23:18.0179 5768 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
10:23:18.0179 5768 RasPppoe - ok
10:23:18.0199 5768 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
10:23:18.0199 5768 RasSstp - ok
10:23:18.0229 5768 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
10:23:18.0239 5768 rdbss - ok
10:23:18.0259 5768 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
10:23:18.0259 5768 rdpbus - ok
10:23:18.0299 5768 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
10:23:18.0299 5768 RDPCDD - ok
10:23:18.0379 5768 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys
10:23:18.0389 5768 RDPDR - ok
10:23:18.0439 5768 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
10:23:18.0439 5768 RDPENCDD - ok
10:23:18.0459 5768 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
10:23:18.0459 5768 RDPREFMP - ok
10:23:18.0529 5768 RdpVideoMiniport (68a0387f58e226deee23d9715955572a) C:\Windows\system32\drivers\rdpvideominiport.sys
10:23:18.0529 5768 RdpVideoMiniport - ok
10:23:18.0579 5768 RDPWD (288b06960d78428ff89e811632684e20) C:\Windows\system32\drivers\RDPWD.sys
10:23:18.0589 5768 RDPWD - ok
10:23:18.0629 5768 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
10:23:18.0770 5768 rdyboost - ok
10:23:18.0870 5768 RFCOMM (cb928d9e6daf51879dd6ba8d02f01321) C:\Windows\system32\DRIVERS\rfcomm.sys
10:23:18.0870 5768 RFCOMM - ok
10:23:18.0910 5768 rimspci (e891f07815af88075705ef6a248711f6) C:\Windows\system32\DRIVERS\rimspe86.sys
10:23:18.0910 5768 rimspci - ok
10:23:18.0990 5768 RimUsb (0f6756ef8bda6dfa7be50465c83132bb) C:\Windows\system32\Drivers\RimUsb.sys
10:23:18.0990 5768 RimUsb - ok
10:23:19.0020 5768 risdpcie (d853d35f792a3a44726a794bf9a0bbc3) C:\Windows\system32\DRIVERS\risdpe86.sys
10:23:19.0030 5768 risdpcie - ok
10:23:19.0050 5768 rixdpcie (cf2de2365fd99e5b8e38c9f3467dcdb8) C:\Windows\system32\DRIVERS\rixdpe86.sys
10:23:19.0050 5768 rixdpcie - ok
10:23:19.0110 5768 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
10:23:19.0120 5768 rspndr - ok
10:23:19.0190 5768 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\drivers\vms3cap.sys
10:23:19.0270 5768 s3cap - ok
10:23:19.0320 5768 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
10:23:19.0470 5768 sbp2port - ok
10:23:19.0500 5768 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
10:23:19.0500 5768 scfilter - ok
10:23:19.0550 5768 sdbus (0328be1c7f1cba23848179f8762e391c) C:\Windows\system32\drivers\sdbus.sys
10:23:19.0550 5768 sdbus - ok
10:23:19.0720 5768 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
10:23:19.0720 5768 secdrv - ok
10:23:19.0770 5768 Sentinel (aebba7428a6c40cce3c5abde45190b24) C:\Windows\System32\Drivers\SENTINEL.SYS
10:23:19.0770 5768 Sentinel - ok
10:23:19.0800 5768 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
10:23:19.0810 5768 Serenum - ok
10:23:19.0820 5768 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
10:23:19.0830 5768 Serial - ok
10:23:19.0870 5768 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
10:23:19.0870 5768 sermouse - ok
10:23:19.0940 5768 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
10:23:19.0940 5768 sffdisk - ok
10:23:20.0050 5768 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
10:23:20.0050 5768 sffp_mmc - ok
10:23:20.0060 5768 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
10:23:20.0060 5768 sffp_sd - ok
10:23:20.0100 5768 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
10:23:20.0100 5768 sfloppy - ok
10:23:20.0150 5768 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
10:23:20.0150 5768 sisagp - ok
10:23:20.0190 5768 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
10:23:20.0190 5768 SiSRaid2 - ok
10:23:20.0210 5768 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
10:23:20.0220 5768 SiSRaid4 - ok
10:23:20.0340 5768 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
10:23:20.0340 5768 Smb - ok
10:23:20.0420 5768 Sntnlusb (a1ff7d99b199cea1f3df371ba70d2780) C:\Windows\system32\DRIVERS\SNTNLUSB.SYS
10:23:20.0500 5768 Sntnlusb - ok
10:23:20.0530 5768 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
10:23:20.0530 5768 spldr - ok
10:23:20.0580 5768 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
10:23:20.0580 5768 srv - ok
10:23:20.0690 5768 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
10:23:20.0770 5768 srv2 - ok
10:23:20.0820 5768 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
10:23:20.0820 5768 srvnet - ok
10:23:20.0870 5768 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
10:23:20.0870 5768 stexstor - ok
10:23:20.0930 5768 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\drivers\vmstorfl.sys
10:23:20.0930 5768 storflt - ok
10:23:21.0010 5768 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\drivers\storvsc.sys
10:23:21.0010 5768 storvsc - ok
10:23:21.0050 5768 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys
10:23:21.0050 5768 swenum - ok
10:23:21.0070 5768 Synth3dVsc - ok
10:23:21.0140 5768 SynTP (0e8676fb3bb95aa40fdf7a4a31018c8b) C:\Windows\system32\DRIVERS\SynTP.sys
10:23:21.0150 5768 SynTP - ok
10:23:21.0330 5768 Tcpip (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\drivers\tcpip.sys
10:23:21.0430 5768 Tcpip - ok
10:23:21.0590 5768 TCPIP6 (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\DRIVERS\tcpip.sys
10:23:21.0600 5768 TCPIP6 - ok
10:23:21.0630 5768 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
10:23:21.0630 5768 tcpipreg - ok
10:23:21.0670 5768 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
10:23:21.0670 5768 TDPIPE - ok
10:23:21.0690 5768 TDTCP (2c10395baa4847f83042813c515cc289) C:\Windows\system32\drivers\tdtcp.sys
10:23:21.0690 5768 TDTCP - ok
10:23:21.0730 5768 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
10:23:21.0730 5768 tdx - ok
10:23:21.0830 5768 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys
10:23:21.0830 5768 TermDD - ok
10:23:21.0890 5768 TPM (5ad05191dc8b444a7ba4d79b76c42a30) C:\Windows\system32\drivers\tpm.sys
10:23:21.0900 5768 TPM - ok
10:23:21.0930 5768 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
10:23:22.0070 5768 tssecsrv - ok
10:23:22.0110 5768 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
10:23:22.0190 5768 TsUsbFlt - ok
10:23:22.0300 5768 tsusbhub - ok
10:23:22.0340 5768 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
10:23:22.0340 5768 tunnel - ok
10:23:22.0380 5768 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
10:23:22.0380 5768 uagp35 - ok
10:23:22.0420 5768 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
10:23:22.0430 5768 udfs - ok
10:23:22.0550 5768 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
10:23:22.0550 5768 uliagpkx - ok
10:23:22.0670 5768 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\drivers\umbus.sys
10:23:22.0740 5768 umbus - ok
10:23:22.0770 5768 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
10:23:22.0770 5768 UmPass - ok
10:23:22.0820 5768 usb6xxxk - ok
10:23:22.0870 5768 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
10:23:22.0870 5768 USBAAPL - ok
10:23:22.0890 5768 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
10:23:22.0890 5768 usbccgp - ok
10:23:23.0000 5768 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
10:23:23.0000 5768 usbcir - ok
10:23:23.0040 5768 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys
10:23:23.0040 5768 usbehci - ok
10:23:23.0090 5768 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
10:23:23.0110 5768 usbhub - ok
10:23:23.0130 5768 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\DRIVERS\usbohci.sys
10:23:23.0130 5768 usbohci - ok
10:23:23.0160 5768 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
10:23:23.0160 5768 usbprint - ok
10:23:23.0270 5768 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:23:23.0280 5768 USBSTOR - ok
10:23:23.0310 5768 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\drivers\usbuhci.sys
10:23:23.0310 5768 usbuhci - ok
10:23:23.0370 5768 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
10:23:23.0380 5768 vdrvroot - ok
10:23:23.0400 5768 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
10:23:23.0400 5768 vga - ok
10:23:23.0420 5768 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
10:23:23.0420 5768 VgaSave - ok
10:23:23.0430 5768 VGPU - ok
10:23:23.0480 5768 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
10:23:23.0480 5768 vhdmp - ok
10:23:23.0560 5768 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
10:23:23.0570 5768 viaagp - ok
10:23:23.0610 5768 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
10:23:23.0610 5768 ViaC7 - ok
10:23:23.0640 5768 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
10:23:23.0640 5768 viaide - ok
10:23:23.0670 5768 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\drivers\vmbus.sys
10:23:23.0670 5768 vmbus - ok
10:23:23.0720 5768 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\drivers\VMBusHID.sys
10:23:23.0730 5768 VMBusHID - ok
10:23:23.0750 5768 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
10:23:23.0840 5768 volmgr - ok
10:23:23.0870 5768 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
10:23:23.0870 5768 volmgrx - ok
10:23:23.0970 5768 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
10:23:23.0980 5768 volsnap - ok
10:23:24.0020 5768 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
10:23:24.0020 5768 vsmraid - ok
10:23:24.0070 5768 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys
10:23:24.0070 5768 vwifibus - ok
10:23:24.0110 5768 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
10:23:24.0110 5768 vwififlt - ok
10:23:24.0180 5768 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\Windows\system32\DRIVERS\vwifimp.sys
10:23:24.0180 5768 vwifimp - ok
10:23:24.0200 5768 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
10:23:24.0200 5768 WacomPen - ok
10:23:24.0250 5768 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
10:23:24.0250 5768 WANARP - ok
10:23:24.0260 5768 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
10:23:24.0260 5768 Wanarpv6 - ok
10:23:24.0300 5768 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
10:23:24.0300 5768 Wd - ok
10:23:24.0350 5768 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
10:23:24.0350 5768 Wdf01000 - ok
10:23:24.0440 5768 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
10:23:24.0440 5768 WfpLwf - ok
10:23:24.0500 5768 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
10:23:24.0500 5768 WIMMount - ok
10:23:24.0590 5768 WinUSB (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUSB.sys
10:23:24.0590 5768 WinUSB - ok
10:23:24.0630 5768 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
10:23:24.0640 5768 WmiAcpi - ok
10:23:24.0750 5768 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
10:23:24.0750 5768 ws2ifsl - ok
10:23:25.0020 5768 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
10:23:25.0020 5768 WudfPf - ok
10:23:25.0040 5768 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
10:23:25.0190 5768 WUDFRd - ok
10:23:25.0400 5768 yukonw7 (21886ae871840739885a34e7f216afa7) C:\Windows\system32\DRIVERS\yk62x86.sys
10:23:25.0400 5768 yukonw7 - ok
10:23:25.0430 5768 zntport - ok
10:23:25.0480 5768 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
10:23:25.0600 5768 \Device\Harddisk0\DR0 - ok
10:23:25.0610 5768 Boot (0x1200) (a87640a55d576bd318ea653fb521ff15) \Device\Harddisk0\DR0\Partition0
10:23:25.0610 5768 \Device\Harddisk0\DR0\Partition0 - ok
10:23:25.0650 5768 Boot (0x1200) (ba8aac305b523a95ae37a0939dc56cfb) \Device\Harddisk0\DR0\Partition1
10:23:25.0650 5768 \Device\Harddisk0\DR0\Partition1 - ok
10:23:25.0650 5768 ============================================================
10:23:25.0650 5768 Scan finished
10:23:25.0650 5768 ============================================================
10:23:25.0660 5260 Detected object count: 0
10:23:25.0660 5260 Actual detected object count: 0



GMER:

GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-01-29 11:48:00
Windows 6.1.7601 Service Pack 1 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 Hitachi_HTS725016A9A364 rev.PCBOCH0A
Running: i8oin5wk.exe; Driver: C:\Users\SCOTT~1.ECT\AppData\Local\Temp\pgdyqkoc.sys


---- System - GMER 1.0.15 ----

Code \SystemRoot\system32\drivers\mfehidk.sys (McAfee Link Driver/McAfee, Inc.) ZwCreateFile [0x8B50068A]
Code \SystemRoot\system32\drivers\mfehidk.sys (McAfee Link Driver/McAfee, Inc.) ZwCreateProcess [0x8B5005E8]
Code \SystemRoot\system32\drivers\mfehidk.sys (McAfee Link Driver/McAfee, Inc.) ZwCreateProcessEx [0x8B5005FC]
Code \SystemRoot\system32\drivers\mfehidk.sys (McAfee Link Driver/McAfee, Inc.) ZwCreateUserProcess [0x8B500612]
Code \SystemRoot\system32\drivers\mfehidk.sys (McAfee Link Driver/McAfee, Inc.) ZwNotifyChangeKey [0x8B50064E]
Code \SystemRoot\system32\drivers\mfehidk.sys (McAfee Link Driver/McAfee, Inc.) ZwProtectVirtualMemory [0x8B50069E]
Code \SystemRoot\system32\drivers\mfehidk.sys (McAfee Link Driver/McAfee, Inc.) ZwReplaceKey [0x8B500676]
Code \SystemRoot\system32\drivers\mfehidk.sys (McAfee Link Driver/McAfee, Inc.) ZwRestoreKey [0x8B500662]
Code \SystemRoot\system32\drivers\mfehidk.sys (McAfee Link Driver/McAfee, Inc.) ZwSetContextThread [0x8B50063A]
Code \SystemRoot\system32\drivers\mfehidk.sys (McAfee Link Driver/McAfee, Inc.) ZwSetInformationProcess [0x8B500626]
Code \SystemRoot\system32\drivers\mfehidk.sys (McAfee Link Driver/McAfee, Inc.) ZwTerminateProcess [0x8B5005D4]
Code \SystemRoot\system32\drivers\mfehidk.sys (McAfee Link Driver/McAfee, Inc.) NtCreateFile
Code \SystemRoot\system32\drivers\mfehidk.sys (McAfee Link Driver/McAfee, Inc.) NtSetInformationProcess

---- Kernel code sections - GMER 1.0.15 ----

.text ntkrnlpa.exe!ZwSaveKey + 13D1 82E49369 1 Byte [06]
.text ntkrnlpa.exe!KiDispatchInterrupt + 5A2 82E82D52 19 Bytes [E0, 0F, BA, F0, 07, 73, 09, ...] {LOOPNZ 0x11; MOV EDX, 0x97307f0; MOV CR4, EAX; OR AL, 0x80; MOV CR4, EAX; RET ; MOV ECX, CR3}
PAGE ntkrnlpa.exe!ZwNotifyChangeKey 83005E8D 5 Bytes JMP 8B500652 \SystemRoot\system32\drivers\mfehidk.sys (McAfee Link Driver/McAfee, Inc.)
PAGE ntkrnlpa.exe!NtSetInformationProcess 830446AD 5 Bytes JMP 8B50062A \SystemRoot\system32\drivers\mfehidk.sys (McAfee Link Driver/McAfee, Inc.)
PAGE ntkrnlpa.exe!ZwProtectVirtualMemory 8304E4C1 7 Bytes JMP 8B5006A2 \SystemRoot\system32\drivers\mfehidk.sys (McAfee Link Driver/McAfee, Inc.)
PAGE ntkrnlpa.exe!NtCreateFile 8305B2A2 5 Bytes JMP 8B50068E \SystemRoot\system32\drivers\mfehidk.sys (McAfee Link Driver/McAfee, Inc.)
PAGE ntkrnlpa.exe!ZwTerminateProcess 83066A7D 5 Bytes JMP 8B5005D8 \SystemRoot\system32\drivers\mfehidk.sys (McAfee Link Driver/McAfee, Inc.)
PAGE ntkrnlpa.exe!ZwCreateUserProcess 8307A116 5 Bytes JMP 8B500616 \SystemRoot\system32\drivers\mfehidk.sys (McAfee Link Driver/McAfee, Inc.)
PAGE ntkrnlpa.exe!ZwRestoreKey 8309D9CC 5 Bytes JMP 8B500666 \SystemRoot\system32\drivers\mfehidk.sys (McAfee Link Driver/McAfee, Inc.)
PAGE ntkrnlpa.exe!ZwReplaceKey 830A7968 5 Bytes JMP 8B50067A \SystemRoot\system32\drivers\mfehidk.sys (McAfee Link Driver/McAfee, Inc.)
PAGE ntkrnlpa.exe!ZwCreateProcess 830E7EE5 5 Bytes JMP 8B5005EC \SystemRoot\system32\drivers\mfehidk.sys (McAfee Link Driver/McAfee, Inc.)
PAGE ntkrnlpa.exe!ZwCreateProcessEx 830E7F30 7 Bytes JMP 8B500600 \SystemRoot\system32\drivers\mfehidk.sys (McAfee Link Driver/McAfee, Inc.)
PAGE ntkrnlpa.exe!ZwSetContextThread 830E8DEF 5 Bytes JMP 8B50063E \SystemRoot\system32\drivers\mfehidk.sys (McAfee Link Driver/McAfee, Inc.)
? system32\drivers\14398251.sys The system cannot find the path specified. !
? System32\DRIVERS\netbt.sys The system cannot find the path specified. !
.text C:\Windows\system32\DRIVERS\atikmdag.sys section is writeable [0x90A3B000, 0x2F7634, 0xE8000020]
? C:\Users\SCOTT~1.ECT\AppData\Local\Temp\aswMBR.sys The system cannot find the file specified. !

---- User IAT/EAT - GMER 1.0.15 ----

IAT C:\Windows\system32\mfevtps.exe[1084] @ C:\Windows\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] [004059CB] C:\Windows\system32\mfevtps.exe (McAfee Process Validation Service/McAfee, Inc.)
IAT C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe[3644] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7573FFF6] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe[3644] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7573FFF6] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe[3644] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7573FFF6] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe[3644] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7573FFF6] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe[3644] @ C:\Windows\system32\WININET.dll [KERNEL32.dll!GetProcAddress] [7573FFF6] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] [61347849] C:\Program Files\Yahoo!\Messenger\yui.dll
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] [61347889] C:\Program Files\Yahoo!\Messenger\yui.dll
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] [61347917] C:\Program Files\Yahoo!\Messenger\yui.dll
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [613470AD] C:\Program Files\Yahoo!\Messenger\yui.dll
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\USER32.dll [GDI32.dll!GetStockObject] [6134649C] C:\Program Files\Yahoo!\Messenger\yui.dll
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [61347917] C:\Program Files\Yahoo!\Messenger\yui.dll
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryExA] [613478C9] C:\Program Files\Yahoo!\Messenger\yui.dll
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [613470AD] C:\Program Files\Yahoo!\Messenger\yui.dll
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] [61347889] C:\Program Files\Yahoo!\Messenger\yui.dll
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] [61347889] C:\Program Files\Yahoo!\Messenger\yui.dll
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] [61347849] C:\Program Files\Yahoo!\Messenger\yui.dll
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] [61347917] C:\Program Files\Yahoo!\Messenger\yui.dll
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [613470AD] C:\Program Files\Yahoo!\Messenger\yui.dll
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] [613478C9] C:\Program Files\Yahoo!\Messenger\yui.dll
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\SHLWAPI.dll [GDI32.dll!GetStockObject] [6134649C] C:\Program Files\Yahoo!\Messenger\yui.dll
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\SHLWAPI.dll [USER32.dll!GetSysColor] [613463D7] C:\Program Files\Yahoo!\Messenger\yui.dll
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\SHLWAPI.dll [USER32.dll!DefWindowProcW] [61346CC4] C:\Program Files\Yahoo!\Messenger\yui.dll
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\SHLWAPI.dll [USER32.dll!DefWindowProcA] [61346CC4] C:\Program Files\Yahoo!\Messenger\yui.dll
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\SHELL32.dll [USER32.dll!GetSysColorBrush] [613464A2] C:\Program Files\Yahoo!\Messenger\yui.dll
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\SHELL32.dll [USER32.dll!TrackPopupMenu] [61346306] C:\Program Files\Yahoo!\Messenger\yui.dll
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\SHELL32.dll [USER32.dll!TrackPopupMenuEx] [61346344] C:\Program Files\Yahoo!\Messenger\yui.dll
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\SHELL32.dll [USER32.dll!AnimateWindow] [61346537] C:\Program Files\Yahoo!\Messenger\yui.dll
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\SHELL32.dll [USER32.dll!GetSysColor] [613463D7] C:\Program Files\Yahoo!\Messenger\yui.dll
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\SHELL32.dll [USER32.dll!DefWindowProcW] [61346CC4] C:\Program Files\Yahoo!\Messenger\yui.dll
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\SHELL32.dll [GDI32.dll!GetStockObject] [6134649C] C:\Program Files\Yahoo!\Messenger\yui.dll
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] [61347849] C:\Program Files\Yahoo!\Messenger\yui.dll
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] [61347889] C:\Program Files\Yahoo!\Messenger\yui.dll
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\WININET.dll [KERNEL32.dll!CreateFileA] [61346622] C:\Program Files\Yahoo!\Messenger\yui.dll
IAT C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe[4116] @ C:\Windows\system32\WININET.dll [KERNEL32.dll!CreateFileW] [6134657C] C:\Program Files\Yahoo!\Messenger\yui.dll

---- Devices - GMER 1.0.15 ----

AttachedDevice \FileSystem\Ntfs \Ntfs mfehidk.sys (McAfee Link Driver/McAfee, Inc.)
AttachedDevice \Driver\kbdclass \Device\KeyboardClass0 Wdf01000.sys (Kernel Mode Driver Framework Runtime/Microsoft Corporation)
AttachedDevice \Driver\kbdclass \Device\KeyboardClass1 Wdf01000.sys (Kernel Mode Driver Framework Runtime/Microsoft Corporation)
AttachedDevice \Driver\tdx \Device\Tcp mfetdik.sys (Anti-Virus Mini-Firewall Driver/McAfee, Inc.)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume1 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume1 rdyboost.sys (ReadyBoost Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume2 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume2 rdyboost.sys (ReadyBoost Driver/Microsoft Corporation)

Device \Driver\ACPI_HAL \Device\00000069 halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation)
Device \Driver\BTHUSB \Device\000000c7 bthport.sys (Bluetooth Bus Driver/Microsoft Corporation)

AttachedDevice \Driver\tdx \Device\Udp mfetdik.sys (Anti-Virus Mini-Firewall Driver/McAfee, Inc.)

Device \Driver\BTHUSB \Device\000000c9 bthport.sys (Bluetooth Bus Driver/Microsoft Corporation)

---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\00247e5f3182
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\00247eef2b2c
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\70f395a1b3a5
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\70f395cf018a
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\70f395cf018e
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\00247e5f3182 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\00247eef2b2c (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\70f395a1b3a5 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\70f395cf018a (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\70f395cf018e (not active ControlSet)

---- Files - GMER 1.0.15 ----

File C:\Windows\$NtUninstallKB9684$\2437919899 0 bytes
File C:\Windows\$NtUninstallKB9684$\2437919899\@ 2048 bytes
File C:\Windows\$NtUninstallKB9684$\2437919899\bckfg.tmp 854 bytes
File C:\Windows\$NtUninstallKB9684$\2437919899\cfg.ini 240 bytes
File C:\Windows\$NtUninstallKB9684$\2437919899\Desktop.ini 4608 bytes
File C:\Windows\$NtUninstallKB9684$\2437919899\keywords 130 bytes
File C:\Windows\$NtUninstallKB9684$\2437919899\kwrd.dll 223744 bytes
File C:\Windows\$NtUninstallKB9684$\2437919899\L 0 bytes
File C:\Windows\$NtUninstallKB9684$\2437919899\L\xadqgnnk 187904 bytes
File C:\Windows\$NtUninstallKB9684$\2437919899\lsflt7.ver 5175 bytes
File C:\Windows\$NtUninstallKB9684$\2437919899\oemid 150 bytes
File C:\Windows\$NtUninstallKB9684$\2437919899\U 0 bytes
File C:\Windows\$NtUninstallKB9684$\2437919899\U\00000001.@ 2048 bytes
File C:\Windows\$NtUninstallKB9684$\2437919899\U\00000002.@ 224768 bytes
File C:\Windows\$NtUninstallKB9684$\2437919899\U\00000004.@ 1024 bytes
File C:\Windows\$NtUninstallKB9684$\2437919899\U\80000000.@ 11264 bytes
File C:\Windows\$NtUninstallKB9684$\2437919899\U\80000004.@ 12800 bytes
File C:\Windows\$NtUninstallKB9684$\2437919899\U\80000032.@ 73216 bytes
File C:\Windows\$NtUninstallKB9684$\2437919899\version 854 bytes
File C:\Windows\$NtUninstallKB9684$\3907660250 0 bytes

---- EOF - GMER 1.0.15 ----



aswMBR:

aswMBR version 0.9.9.1532 Copyright© 2011 AVAST Software
Run date: 2012-01-29 09:59:10
-----------------------------
09:59:10.239 OS Version: Windows 6.1.7601 Service Pack 1
09:59:10.239 Number of processors: 2 586 0x603
09:59:10.239 ComputerName: ECTSUMXX-XX UserName: Scott
09:59:13.119 Initialize success
09:59:19.840 AVAST engine defs: 12012900
09:59:22.560 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
09:59:22.570 Disk 0 Vendor: Hitachi_HTS725016A9A364 PCBOCH0A Size: 152627MB BusType: 3
09:59:22.610 Disk 0 MBR read successfully
09:59:22.610 Disk 0 MBR scan
09:59:22.630 Disk 0 Windows 7 default MBR code
09:59:22.660 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 101 MB offset 63
09:59:22.700 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 152523 MB offset 208845
09:59:22.710 Disk 0 scanning sectors +312576705
09:59:22.890 Disk 0 scanning C:\Windows\system32\drivers
10:00:13.820 Service scanning
10:00:15.390 Modules scanning
10:00:27.452 Disk 0 trace - called modules:
10:00:27.472 ntkrnlpa.exe CLASSPNP.SYS disk.sys hpdskflt.sys halmacpi.dll ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS atapi.sys
10:00:27.482 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86487030]
10:00:27.482 3 CLASSPNP.SYS[8b58959e] -> nt!IofCallDriver -> [0x86486848]
10:00:27.492 5 hpdskflt.sys[8b53af92] -> nt!IofCallDriver -> [0x863dd850]
10:00:27.492 7 ACPI.sys[8ac253d4] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x863ec030]
10:00:28.752 AVAST engine scan C:\Windows
10:00:34.722 AVAST engine scan C:\Windows\system32
10:06:37.464 AVAST engine scan C:\Windows\system32\drivers
10:07:16.728 AVAST engine scan C:\Users\Scott.ECTSUMXX-XX
10:10:27.756 AVAST engine scan C:\ProgramData
10:20:48.095 Scan finished successfully
10:21:04.466 Disk 0 MBR has been saved successfully to "C:\Users\Scott.ECTSUMXX-XX\Documents\Virus Issue\MBR.dat"
10:21:04.656 The log file has been saved successfully to "C:\Users\Scott.ECTSUMXX-XX\Documents\Virus Issue\aswMBR.txt"


Thank you for your time!!

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:57 AM

Posted 29 January 2012 - 08:20 PM

You're GMER log indicates Rootkit,which requires use of advanced tools

Read the guide here

http://www.bleepingcomputer.com/forums/topic34773.html

and create a topic here

http://www.bleepingcomputer.com/forums/forum22.html

Good luck




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users