Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Had a ransomware virus/program. Was able to recover desktop items, but still infected.


  • Please log in to reply
11 replies to this topic

#1 LWhite326

LWhite326

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:12:03 PM

Posted 16 February 2012 - 01:24 PM

I have been continuing to get svchost.exe detection on my antivirus as a virus. I am also seeing a TON of errors for programs in my Computer Management, over 2100 actually. It also is showing that a lot of my drivers have been stopped. I don't remember the name of the ransomware at this point in time, but I have done thorough scans with Malwarebytes. It has not been able to find the issues. I would appreciate any help that can be given. I will check back every day a few times a day to see if there has been a response. Thank you for your time, and I hope to hear from someone soon.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:03 PM

Posted 16 February 2012 - 01:28 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Please download GMER from here(doesnot work on 64 bit OS)

http://www2.gmer.net/download.php

Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.

GMER will open to the Rootkit/Malware tab and perform an automatic Full Scan when first run. (do not use the computer while the scan is in progress)

If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
Now click the Scan button. If you see a rootkit warning window, click OK.
When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
Click the Copy button and paste the results into your next reply.


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

#3 LWhite326

LWhite326
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:12:03 PM

Posted 16 February 2012 - 11:51 PM

Thank you for your swift reply. I would have gotten back to you sooner, but I've had a pretty busy day. Here is the Log for TDSS Killer. I am running a 64 bit OS, I'm sorry that I forgot to mention that. So I will skip step two. I have aswMBR scanning right now. I will post the log when it gets done.



22:34:59.0166 6956 TDSS rootkit removing tool 2.7.13.0 Feb 15 2012 19:33:14
22:34:59.0848 6956 ============================================================
22:34:59.0848 6956 Current date / time: 2012/02/16 22:34:59.0848
22:34:59.0848 6956 SystemInfo:
22:34:59.0848 6956
22:34:59.0848 6956 OS Version: 6.1.7600 ServicePack: 0.0
22:34:59.0848 6956 Product type: Workstation
22:34:59.0849 6956 ComputerName: LYNNWHITE-PC
22:34:59.0849 6956 UserName: Lynn White
22:34:59.0849 6956 Windows directory: C:\Windows
22:34:59.0849 6956 System windows directory: C:\Windows
22:34:59.0849 6956 Running under WOW64
22:34:59.0849 6956 Processor architecture: Intel x64
22:34:59.0849 6956 Number of processors: 2
22:34:59.0849 6956 Page size: 0x1000
22:34:59.0849 6956 Boot type: Normal boot
22:34:59.0849 6956 ============================================================
22:35:00.0060 6956 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:35:00.0064 6956 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
22:35:05.0254 6956 \Device\Harddisk0\DR0:
22:35:05.0254 6956 MBR used
22:35:05.0254 6956 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
22:35:05.0254 6956 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x48DCB800
22:35:05.0254 6956 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x48DFE000, BlocksNum 0x1A59800
22:35:05.0254 6956 \Device\Harddisk1\DR1:
22:35:05.0294 6956 MBR used
22:35:05.0294 6956 \Device\Harddisk1\DR1\Partition0: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0x3A384C02
22:35:05.0368 6956 Initialize success
22:35:05.0368 6956 ============================================================
22:35:13.0373 6656 ============================================================
22:35:13.0373 6656 Scan started
22:35:13.0373 6656 Mode: Manual; TDLFS;
22:35:13.0373 6656 ============================================================
22:35:15.0386 6656 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
22:35:15.0398 6656 1394ohci - ok
22:35:15.0441 6656 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
22:35:15.0443 6656 ACPI - ok
22:35:15.0502 6656 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
22:35:15.0508 6656 AcpiPmi - ok
22:35:15.0542 6656 ACPIService (de7e8d852a806be6091983838bf9697f) C:\Windows\system32\DRIVERS\OSDACPI.SYS
22:35:15.0549 6656 ACPIService - ok
22:35:15.0601 6656 ADIHdAudAddService (0fa60a409e1c8ab9a81901311d15393d) C:\Windows\system32\drivers\ADIHdAud.sys
22:35:15.0604 6656 ADIHdAudAddService - ok
22:35:15.0643 6656 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
22:35:15.0647 6656 adp94xx - ok
22:35:15.0670 6656 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
22:35:15.0672 6656 adpahci - ok
22:35:15.0694 6656 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
22:35:15.0696 6656 adpu320 - ok
22:35:15.0757 6656 AFD (6ef20ddf3172e97d69f596fb90602f29) C:\Windows\system32\drivers\afd.sys
22:35:15.0761 6656 AFD - ok
22:35:15.0776 6656 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
22:35:15.0784 6656 agp440 - ok
22:35:15.0808 6656 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
22:35:15.0815 6656 aliide - ok
22:35:15.0844 6656 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
22:35:15.0851 6656 amdide - ok
22:35:15.0869 6656 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
22:35:15.0878 6656 AmdK8 - ok
22:35:15.0906 6656 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
22:35:15.0913 6656 AmdPPM - ok
22:35:15.0941 6656 amdsata (f747497a0ee5498f79b207f215b3d2d8) C:\Windows\system32\DRIVERS\amdsata.sys
22:35:15.0947 6656 amdsata - ok
22:35:15.0967 6656 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
22:35:15.0969 6656 amdsbs - ok
22:35:15.0983 6656 amdxata (2946d695e158615baaa16248e63c7adb) C:\Windows\system32\DRIVERS\amdxata.sys
22:35:15.0989 6656 amdxata - ok
22:35:16.0034 6656 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
22:35:16.0041 6656 AppID - ok
22:35:16.0081 6656 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
22:35:16.0086 6656 arc - ok
22:35:16.0125 6656 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
22:35:16.0126 6656 arcsas - ok
22:35:16.0163 6656 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
22:35:16.0164 6656 AsyncMac - ok
22:35:16.0195 6656 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
22:35:16.0201 6656 atapi - ok
22:35:16.0346 6656 atikmdag (80793852021864a9ed344843eeba5fdb) C:\Windows\system32\DRIVERS\atikmdag.sys
22:35:16.0378 6656 atikmdag - ok
22:35:16.0432 6656 AtiPcie (7c5d273e29dcc5505469b299c6f29163) C:\Windows\system32\DRIVERS\AtiPcie.sys
22:35:16.0437 6656 AtiPcie - ok
22:35:16.0508 6656 AVerAVF2 (a63b31d668424f7c20d0773769dbbb1e) C:\Windows\system32\DRIVERS\AVerAVF2.sys
22:35:16.0513 6656 AVerAVF2 - ok
22:35:16.0571 6656 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
22:35:16.0582 6656 b06bdrv - ok
22:35:16.0618 6656 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
22:35:16.0630 6656 b57nd60a - ok
22:35:16.0650 6656 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
22:35:16.0655 6656 Beep - ok
22:35:16.0719 6656 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
22:35:16.0726 6656 blbdrive - ok
22:35:16.0777 6656 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
22:35:16.0785 6656 bowser - ok
22:35:16.0802 6656 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
22:35:16.0808 6656 BrFiltLo - ok
22:35:16.0826 6656 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
22:35:16.0832 6656 BrFiltUp - ok
22:35:16.0868 6656 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
22:35:16.0879 6656 Brserid - ok
22:35:16.0894 6656 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
22:35:16.0901 6656 BrSerWdm - ok
22:35:16.0909 6656 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
22:35:16.0915 6656 BrUsbMdm - ok
22:35:16.0923 6656 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
22:35:16.0928 6656 BrUsbSer - ok
22:35:16.0967 6656 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
22:35:16.0974 6656 BthEnum - ok
22:35:17.0000 6656 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
22:35:17.0008 6656 BTHMODEM - ok
22:35:17.0036 6656 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
22:35:17.0046 6656 BthPan - ok
22:35:17.0067 6656 BTHPORT (21084ceb85280468c9aca3c805c0f8cf) C:\Windows\System32\Drivers\BTHport.sys
22:35:17.0070 6656 BTHPORT - ok
22:35:17.0097 6656 BTHUSB (8504842634dd144c075b6b0c982ccec4) C:\Windows\System32\Drivers\BTHUSB.sys
22:35:17.0107 6656 BTHUSB - ok
22:35:17.0142 6656 btwaudio (6bcfdc2b5b7f66d484486d4bd4b39a6b) C:\Windows\system32\drivers\btwaudio.sys
22:35:17.0149 6656 btwaudio - ok
22:35:17.0171 6656 btwavdt (82dc8b7c626e526681c1bebed2bc3ff9) C:\Windows\system32\drivers\btwavdt.sys
22:35:17.0179 6656 btwavdt - ok
22:35:17.0219 6656 btwl2cap (6149301dc3f81d6f9667a3fbac410975) C:\Windows\system32\DRIVERS\btwl2cap.sys
22:35:17.0224 6656 btwl2cap - ok
22:35:17.0243 6656 btwrchid (28e105ad3b79f440bf94780f507bf66a) C:\Windows\system32\DRIVERS\btwrchid.sys
22:35:17.0248 6656 btwrchid - ok
22:35:17.0287 6656 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
22:35:17.0295 6656 cdfs - ok
22:35:17.0324 6656 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
22:35:17.0325 6656 cdrom - ok
22:35:17.0353 6656 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
22:35:17.0359 6656 circlass - ok
22:35:17.0387 6656 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
22:35:17.0401 6656 CLFS - ok
22:35:17.0450 6656 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
22:35:17.0456 6656 CmBatt - ok
22:35:17.0468 6656 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
22:35:17.0474 6656 cmdide - ok
22:35:17.0506 6656 CNG (f95fd4cb7da00ba2a63ce9f6b5c053e1) C:\Windows\system32\Drivers\cng.sys
22:35:17.0511 6656 CNG - ok
22:35:17.0519 6656 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
22:35:17.0526 6656 Compbatt - ok
22:35:17.0560 6656 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
22:35:17.0566 6656 CompositeBus - ok
22:35:17.0587 6656 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
22:35:17.0592 6656 crcdisk - ok
22:35:17.0647 6656 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
22:35:17.0649 6656 DfsC - ok
22:35:17.0666 6656 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
22:35:17.0674 6656 discache - ok
22:35:17.0700 6656 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
22:35:17.0707 6656 Disk - ok
22:35:17.0747 6656 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
22:35:17.0758 6656 Dot4 - ok
22:35:17.0784 6656 Dot4Print (85135ad27e79b689335c08167d917cde) C:\Windows\system32\DRIVERS\Dot4Prt.sys
22:35:17.0789 6656 Dot4Print - ok
22:35:17.0805 6656 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
22:35:17.0813 6656 dot4usb - ok
22:35:17.0846 6656 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
22:35:17.0851 6656 drmkaud - ok
22:35:17.0892 6656 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
22:35:17.0915 6656 DXGKrnl - ok
22:35:17.0986 6656 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
22:35:18.0010 6656 ebdrv - ok
22:35:18.0074 6656 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
22:35:18.0086 6656 elxstor - ok
22:35:18.0107 6656 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
22:35:18.0115 6656 ErrDev - ok
22:35:18.0167 6656 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
22:35:18.0180 6656 exfat - ok
22:35:18.0201 6656 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
22:35:18.0213 6656 fastfat - ok
22:35:18.0234 6656 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
22:35:18.0242 6656 fdc - ok
22:35:18.0279 6656 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
22:35:18.0286 6656 FileInfo - ok
22:35:18.0298 6656 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
22:35:18.0305 6656 Filetrace - ok
22:35:18.0331 6656 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
22:35:18.0338 6656 flpydisk - ok
22:35:18.0355 6656 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
22:35:18.0368 6656 FltMgr - ok
22:35:18.0388 6656 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
22:35:18.0394 6656 FsDepends - ok
22:35:18.0435 6656 fssfltr (53dab1791917a72738539ad25c4eed7f) C:\Windows\system32\DRIVERS\fssfltr.sys
22:35:18.0442 6656 fssfltr - ok
22:35:18.0464 6656 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
22:35:18.0470 6656 Fs_Rec - ok
22:35:18.0504 6656 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
22:35:18.0518 6656 fvevol - ok
22:35:18.0562 6656 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
22:35:18.0582 6656 gagp30kx - ok
22:35:18.0623 6656 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:35:18.0630 6656 GEARAspiWDM - ok
22:35:18.0657 6656 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
22:35:18.0663 6656 hcw85cir - ok
22:35:18.0687 6656 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
22:35:18.0691 6656 HdAudAddService - ok
22:35:18.0718 6656 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
22:35:18.0728 6656 HDAudBus - ok
22:35:18.0746 6656 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
22:35:18.0754 6656 HidBatt - ok
22:35:18.0768 6656 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
22:35:18.0778 6656 HidBth - ok
22:35:18.0806 6656 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
22:35:18.0814 6656 HidIr - ok
22:35:18.0823 6656 hidkmdf (d4bfba2eec009e26854fe61110ef509f) C:\Windows\system32\DRIVERS\hidkmdf.sys
22:35:18.0828 6656 hidkmdf - ok
22:35:18.0867 6656 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
22:35:18.0874 6656 HidUsb - ok
22:35:18.0957 6656 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
22:35:18.0964 6656 HpSAMD - ok
22:35:19.0009 6656 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
22:35:19.0016 6656 HTTP - ok
22:35:19.0036 6656 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
22:35:19.0041 6656 hwpolicy - ok
22:35:19.0062 6656 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
22:35:19.0073 6656 i8042prt - ok
22:35:19.0103 6656 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
22:35:19.0118 6656 iaStorV - ok
22:35:19.0142 6656 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
22:35:19.0148 6656 iirsp - ok
22:35:19.0184 6656 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
22:35:19.0190 6656 intelide - ok
22:35:19.0201 6656 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
22:35:19.0209 6656 intelppm - ok
22:35:19.0230 6656 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:35:19.0231 6656 IpFilterDriver - ok
22:35:19.0254 6656 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
22:35:19.0264 6656 IPMIDRV - ok
22:35:19.0292 6656 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
22:35:19.0303 6656 IPNAT - ok
22:35:19.0334 6656 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
22:35:19.0340 6656 IRENUM - ok
22:35:19.0360 6656 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
22:35:19.0366 6656 isapnp - ok
22:35:19.0377 6656 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
22:35:19.0389 6656 iScsiPrt - ok
22:35:19.0414 6656 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
22:35:19.0430 6656 kbdclass - ok
22:35:19.0464 6656 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
22:35:19.0472 6656 kbdhid - ok
22:35:19.0502 6656 KSecDD (e8b6fcc9c83535c67f835d407620bd27) C:\Windows\system32\Drivers\ksecdd.sys
22:35:19.0510 6656 KSecDD - ok
22:35:19.0556 6656 KSecPkg (a8c63880ef6f4d3fec7b616b9c060215) C:\Windows\system32\Drivers\ksecpkg.sys
22:35:19.0566 6656 KSecPkg - ok
22:35:19.0614 6656 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
22:35:19.0620 6656 ksthunk - ok
22:35:19.0672 6656 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
22:35:19.0680 6656 lltdio - ok
22:35:19.0706 6656 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
22:35:19.0715 6656 LSI_FC - ok
22:35:19.0736 6656 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
22:35:19.0745 6656 LSI_SAS - ok
22:35:19.0758 6656 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
22:35:19.0759 6656 LSI_SAS2 - ok
22:35:19.0784 6656 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
22:35:19.0795 6656 LSI_SCSI - ok
22:35:19.0832 6656 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
22:35:19.0844 6656 luafv - ok
22:35:19.0907 6656 MBAMProtector (79da94b35371b9e7104460c7693dcb2c) C:\Windows\system32\drivers\mbam.sys
22:35:19.0908 6656 MBAMProtector - ok
22:35:19.0953 6656 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
22:35:19.0960 6656 megasas - ok
22:35:19.0983 6656 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
22:35:19.0996 6656 MegaSR - ok
22:35:20.0013 6656 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
22:35:20.0014 6656 Modem - ok
22:35:20.0040 6656 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
22:35:20.0046 6656 monitor - ok
22:35:20.0070 6656 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
22:35:20.0078 6656 mouclass - ok
22:35:20.0095 6656 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
22:35:20.0103 6656 mouhid - ok
22:35:20.0118 6656 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
22:35:20.0128 6656 mountmgr - ok
22:35:20.0154 6656 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
22:35:20.0156 6656 mpio - ok
22:35:20.0169 6656 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
22:35:20.0179 6656 mpsdrv - ok
22:35:20.0205 6656 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
22:35:20.0217 6656 MRxDAV - ok
22:35:20.0249 6656 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:35:20.0261 6656 mrxsmb - ok
22:35:20.0316 6656 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:35:20.0352 6656 mrxsmb10 - ok
22:35:20.0373 6656 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:35:20.0390 6656 mrxsmb20 - ok
22:35:20.0414 6656 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
22:35:20.0419 6656 msahci - ok
22:35:20.0434 6656 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
22:35:20.0445 6656 msdsm - ok
22:35:20.0477 6656 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
22:35:20.0484 6656 Msfs - ok
22:35:20.0502 6656 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
22:35:20.0508 6656 mshidkmdf - ok
22:35:20.0515 6656 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
22:35:20.0521 6656 msisadrv - ok
22:35:20.0545 6656 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
22:35:20.0550 6656 MSKSSRV - ok
22:35:20.0568 6656 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
22:35:20.0573 6656 MSPCLOCK - ok
22:35:20.0590 6656 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
22:35:20.0596 6656 MSPQM - ok
22:35:20.0617 6656 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
22:35:20.0631 6656 MsRPC - ok
22:35:20.0647 6656 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
22:35:20.0653 6656 mssmbios - ok
22:35:20.0672 6656 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
22:35:20.0678 6656 MSTEE - ok
22:35:20.0699 6656 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
22:35:20.0705 6656 MTConfig - ok
22:35:20.0734 6656 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
22:35:20.0742 6656 Mup - ok
22:35:20.0766 6656 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
22:35:20.0782 6656 NativeWifiP - ok
22:35:20.0813 6656 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
22:35:20.0839 6656 NDIS - ok
22:35:20.0857 6656 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
22:35:20.0865 6656 NdisCap - ok
22:35:20.0890 6656 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
22:35:20.0899 6656 NdisTapi - ok
22:35:20.0915 6656 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
22:35:20.0924 6656 Ndisuio - ok
22:35:20.0943 6656 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
22:35:20.0955 6656 NdisWan - ok
22:35:20.0975 6656 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
22:35:20.0983 6656 NDProxy - ok
22:35:20.0997 6656 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
22:35:21.0005 6656 NetBIOS - ok
22:35:21.0027 6656 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
22:35:21.0040 6656 NetBT - ok
22:35:21.0092 6656 netr28x (44d4bd55191624c82a2745296ba42814) C:\Windows\system32\DRIVERS\netr28x.sys
22:35:21.0099 6656 netr28x - ok
22:35:21.0204 6656 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
22:35:21.0239 6656 nfrd960 - ok
22:35:21.0282 6656 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
22:35:21.0294 6656 Npfs - ok
22:35:21.0317 6656 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
22:35:21.0327 6656 nsiproxy - ok
22:35:21.0385 6656 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
22:35:21.0401 6656 Ntfs - ok
22:35:21.0420 6656 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
22:35:21.0425 6656 Null - ok
22:35:21.0453 6656 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
22:35:21.0465 6656 nvraid - ok
22:35:21.0483 6656 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
22:35:21.0493 6656 nvstor - ok
22:35:21.0519 6656 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
22:35:21.0528 6656 nv_agp - ok
22:35:21.0553 6656 NW1950 (1a71763dd0df7ab7b435efa1dde710c6) C:\Windows\system32\DRIVERS\NW1950.sys
22:35:21.0559 6656 NW1950 - ok
22:35:21.0582 6656 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
22:35:21.0591 6656 ohci1394 - ok
22:35:21.0627 6656 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
22:35:21.0636 6656 Parport - ok
22:35:21.0650 6656 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys
22:35:21.0657 6656 partmgr - ok
22:35:21.0675 6656 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
22:35:21.0685 6656 pci - ok
22:35:21.0703 6656 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
22:35:21.0708 6656 pciide - ok
22:35:21.0727 6656 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
22:35:21.0740 6656 pcmcia - ok
22:35:21.0756 6656 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
22:35:21.0764 6656 pcw - ok
22:35:21.0788 6656 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
22:35:21.0809 6656 PEAUTH - ok
22:35:21.0862 6656 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
22:35:21.0872 6656 PptpMiniport - ok
22:35:21.0886 6656 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
22:35:21.0893 6656 Processor - ok
22:35:21.0926 6656 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
22:35:21.0939 6656 Psched - ok
22:35:21.0979 6656 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
22:35:21.0994 6656 ql2300 - ok
22:35:22.0013 6656 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
22:35:22.0022 6656 ql40xx - ok
22:35:22.0045 6656 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
22:35:22.0054 6656 QWAVEdrv - ok
22:35:22.0070 6656 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
22:35:22.0076 6656 RasAcd - ok
22:35:22.0102 6656 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
22:35:22.0109 6656 RasAgileVpn - ok
22:35:22.0126 6656 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:35:22.0138 6656 Rasl2tp - ok
22:35:22.0158 6656 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
22:35:22.0168 6656 RasPppoe - ok
22:35:22.0195 6656 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
22:35:22.0205 6656 RasSstp - ok
22:35:22.0225 6656 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
22:35:22.0240 6656 rdbss - ok
22:35:22.0255 6656 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
22:35:22.0262 6656 rdpbus - ok
22:35:22.0281 6656 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:35:22.0286 6656 RDPCDD - ok
22:35:22.0312 6656 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
22:35:22.0323 6656 RDPENCDD - ok
22:35:22.0340 6656 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
22:35:22.0346 6656 RDPREFMP - ok
22:35:22.0369 6656 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\Windows\system32\drivers\RDPWD.sys
22:35:22.0382 6656 RDPWD - ok
22:35:22.0400 6656 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
22:35:22.0415 6656 rdyboost - ok
22:35:22.0455 6656 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
22:35:22.0467 6656 RFCOMM - ok
22:35:22.0497 6656 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
22:35:22.0506 6656 rspndr - ok
22:35:22.0522 6656 RTL8167 (91296f0b2653281b2f11e0fce56aa427) C:\Windows\system32\DRIVERS\Rt64win7.sys
22:35:22.0535 6656 RTL8167 - ok
22:35:22.0565 6656 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
22:35:22.0574 6656 sbp2port - ok
22:35:22.0589 6656 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
22:35:22.0595 6656 scfilter - ok
22:35:22.0645 6656 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
22:35:22.0651 6656 secdrv - ok
22:35:22.0675 6656 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
22:35:22.0682 6656 Serenum - ok
22:35:22.0704 6656 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
22:35:22.0714 6656 Serial - ok
22:35:22.0730 6656 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
22:35:22.0738 6656 sermouse - ok
22:35:22.0773 6656 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
22:35:22.0778 6656 sffdisk - ok
22:35:22.0798 6656 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
22:35:22.0804 6656 sffp_mmc - ok
22:35:22.0811 6656 sffp_sd (5588b8c6193eb1522490c122eb94dffa) C:\Windows\system32\DRIVERS\sffp_sd.sys
22:35:22.0818 6656 sffp_sd - ok
22:35:22.0831 6656 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
22:35:22.0837 6656 sfloppy - ok
22:35:22.0880 6656 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
22:35:22.0887 6656 SiSRaid2 - ok
22:35:22.0901 6656 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
22:35:22.0908 6656 SiSRaid4 - ok
22:35:22.0927 6656 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
22:35:22.0937 6656 Smb - ok
22:35:22.0966 6656 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
22:35:22.0972 6656 spldr - ok
22:35:23.0050 6656 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
22:35:23.0056 6656 srv - ok
22:35:23.0075 6656 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
22:35:23.0099 6656 srv2 - ok
22:35:23.0119 6656 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
22:35:23.0135 6656 srvnet - ok
22:35:23.0160 6656 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
22:35:23.0167 6656 stexstor - ok
22:35:23.0202 6656 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
22:35:23.0207 6656 StillCam - ok
22:35:23.0242 6656 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
22:35:23.0249 6656 swenum - ok
22:35:23.0323 6656 Tcpip (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\drivers\tcpip.sys
22:35:23.0367 6656 Tcpip - ok
22:35:23.0404 6656 TCPIP6 (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\DRIVERS\tcpip.sys
22:35:23.0414 6656 TCPIP6 - ok
22:35:23.0443 6656 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
22:35:23.0452 6656 tcpipreg - ok
22:35:23.0472 6656 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
22:35:23.0478 6656 TDPIPE - ok
22:35:23.0494 6656 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
22:35:23.0503 6656 TDTCP - ok
22:35:23.0538 6656 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
22:35:23.0548 6656 tdx - ok
22:35:23.0561 6656 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
22:35:23.0567 6656 TermDD - ok
22:35:23.0626 6656 tmpreflt (1889f49a828b1cf0e2866cdd325875b0) C:\Windows\system32\DRIVERS\tmpreflt.sys
22:35:23.0635 6656 tmpreflt - ok
22:35:23.0675 6656 tmtdi (21cc12b7f8b44e91d03ead5b17aaf0b2) C:\Windows\system32\DRIVERS\tmtdi.sys
22:35:23.0684 6656 tmtdi - ok
22:35:23.0729 6656 tmxpflt (8b97ba7e28bd39a2bc4a2bb66a83fec0) C:\Windows\system32\DRIVERS\tmxpflt.sys
22:35:23.0745 6656 tmxpflt - ok
22:35:23.0765 6656 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:35:23.0775 6656 tssecsrv - ok
22:35:23.0800 6656 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
22:35:23.0812 6656 tunnel - ok
22:35:23.0846 6656 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
22:35:23.0854 6656 uagp35 - ok
22:35:23.0878 6656 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
22:35:23.0892 6656 udfs - ok
22:35:23.0926 6656 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
22:35:23.0935 6656 uliagpkx - ok
22:35:23.0964 6656 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
22:35:23.0971 6656 umbus - ok
22:35:23.0995 6656 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
22:35:24.0001 6656 UmPass - ok
22:35:24.0032 6656 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
22:35:24.0042 6656 usbccgp - ok
22:35:24.0076 6656 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
22:35:24.0086 6656 usbcir - ok
22:35:24.0104 6656 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
22:35:24.0112 6656 usbehci - ok
22:35:24.0153 6656 usbfilter (6648c6d7323a2ce0c4776c36cefbcb14) C:\Windows\system32\DRIVERS\usbfilter.sys
22:35:24.0160 6656 usbfilter - ok
22:35:24.0179 6656 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
22:35:24.0196 6656 usbhub - ok
22:35:24.0213 6656 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\DRIVERS\usbohci.sys
22:35:24.0220 6656 usbohci - ok
22:35:24.0256 6656 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
22:35:24.0263 6656 usbprint - ok
22:35:24.0302 6656 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
22:35:24.0312 6656 usbscan - ok
22:35:24.0356 6656 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:35:24.0363 6656 USBSTOR - ok
22:35:24.0377 6656 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\drivers\usbuhci.sys
22:35:24.0384 6656 usbuhci - ok
22:35:24.0422 6656 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\System32\Drivers\usbvideo.sys
22:35:24.0435 6656 usbvideo - ok
22:35:24.0481 6656 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
22:35:24.0488 6656 vdrvroot - ok
22:35:24.0516 6656 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
22:35:24.0527 6656 vga - ok
22:35:24.0542 6656 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
22:35:24.0549 6656 VgaSave - ok
22:35:24.0566 6656 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
22:35:24.0579 6656 vhdmp - ok
22:35:24.0594 6656 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
22:35:24.0599 6656 viaide - ok
22:35:24.0619 6656 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
22:35:24.0627 6656 volmgr - ok
22:35:24.0647 6656 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
22:35:24.0662 6656 volmgrx - ok
22:35:24.0698 6656 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
22:35:24.0714 6656 volsnap - ok
22:35:24.0772 6656 vsapint (3a5862d9a4fe4bbb2ffa1700e2b21b9b) C:\Windows\system32\DRIVERS\vsapint.sys
22:35:24.0815 6656 vsapint - ok
22:35:24.0855 6656 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
22:35:24.0865 6656 vsmraid - ok
22:35:24.0885 6656 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
22:35:24.0892 6656 vwifibus - ok
22:35:24.0908 6656 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
22:35:24.0916 6656 vwififlt - ok
22:35:24.0941 6656 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
22:35:24.0947 6656 vwifimp - ok
22:35:24.0976 6656 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
22:35:24.0984 6656 WacomPen - ok
22:35:25.0014 6656 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
22:35:25.0026 6656 WANARP - ok
22:35:25.0056 6656 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
22:35:25.0057 6656 Wanarpv6 - ok
22:35:25.0146 6656 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
22:35:25.0163 6656 Wd - ok
22:35:25.0184 6656 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
22:35:25.0219 6656 Wdf01000 - ok
22:35:25.0263 6656 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
22:35:25.0269 6656 WfpLwf - ok
22:35:25.0288 6656 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
22:35:25.0295 6656 WIMMount - ok
22:35:25.0345 6656 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
22:35:25.0359 6656 WmiAcpi - ok
22:35:25.0402 6656 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
22:35:25.0411 6656 ws2ifsl - ok
22:35:25.0442 6656 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
22:35:25.0452 6656 WudfPf - ok
22:35:25.0472 6656 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:35:25.0484 6656 WUDFRd - ok
22:35:25.0515 6656 MBR (0x1B8) (6c6fdff834aa5d876c307bee53974486) \Device\Harddisk0\DR0
22:35:25.0547 6656 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - infected
22:35:25.0547 6656 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.b (0)
22:35:25.0578 6656 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
22:35:25.0578 6656 \Device\Harddisk0\DR0 - detected TDSS File System (1)
22:35:25.0584 6656 MBR (0x1B8) (31cfc50fbd443daeec9a5c7ae8da8f6d) \Device\Harddisk1\DR1
22:35:38.0226 6656 \Device\Harddisk1\DR1 - ok
22:35:38.0242 6656 Boot (0x1200) (e663faf80f17b86da26100d329266f56) \Device\Harddisk0\DR0\Partition0
22:35:38.0243 6656 \Device\Harddisk0\DR0\Partition0 - ok
22:35:38.0252 6656 Boot (0x1200) (0b5196fdc9d39793e8dd81c281f9f53f) \Device\Harddisk0\DR0\Partition1
22:35:38.0254 6656 \Device\Harddisk0\DR0\Partition1 - ok
22:35:38.0281 6656 Boot (0x1200) (cc969ee9dc1731a2749b16e166d87a7a) \Device\Harddisk0\DR0\Partition2
22:35:38.0283 6656 \Device\Harddisk0\DR0\Partition2 - ok
22:35:38.0287 6656 Boot (0x1200) (06094edfecfc7d777946e5a649912b7d) \Device\Harddisk1\DR1\Partition0
22:35:38.0288 6656 \Device\Harddisk1\DR1\Partition0 - ok
22:35:38.0289 6656 ============================================================
22:35:38.0289 6656 Scan finished
22:35:38.0289 6656 ============================================================
22:35:38.0305 2236 Detected object count: 2
22:35:38.0305 2236 Actual detected object count: 2
22:46:35.0464 2236 \Device\Harddisk0\DR0\# - copied to quarantine
22:46:35.0465 2236 \Device\Harddisk0\DR0 - copied to quarantine
22:46:35.0501 2236 \Device\Harddisk0\DR0\TDLFS\phdata - copied to quarantine
22:46:35.0503 2236 \Device\Harddisk0\DR0\TDLFS\phm - copied to quarantine
22:46:35.0505 2236 \Device\Harddisk0\DR0\TDLFS\phld - copied to quarantine
22:46:35.0506 2236 \Device\Harddisk0\DR0\TDLFS\phln - copied to quarantine
22:46:35.0508 2236 \Device\Harddisk0\DR0\TDLFS\phlx - copied to quarantine
22:46:35.0519 2236 \Device\Harddisk0\DR0\TDLFS\phd - copied to quarantine
22:46:35.0526 2236 \Device\Harddisk0\DR0\TDLFS\phdx - copied to quarantine
22:46:35.0599 2236 \Device\Harddisk0\DR0\TDLFS\ph.dll - copied to quarantine
22:46:35.0606 2236 \Device\Harddisk0\DR0\TDLFS\phx.dll - copied to quarantine
22:46:35.0607 2236 \Device\Harddisk0\DR0\TDLFS\phs - copied to quarantine
22:46:35.0667 2236 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - will be cured on reboot
22:46:35.0669 2236 \Device\Harddisk0\DR0 - ok
22:46:40.0612 2236 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - User select action: Cure
22:46:40.0615 2236 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
22:46:40.0615 2236 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
22:46:45.0540 6176 Deinitialize success

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:03 PM

Posted 16 February 2012 - 11:58 PM

Ok,i will wait for aswmbr log

Make sure to run TDSSkiller once again,Select -DELETE for TDSSfileystem-do not skip it

Post the new TDSSkiller log with aswmbr log

#5 LWhite326

LWhite326
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:12:03 PM

Posted 17 February 2012 - 12:21 AM

Alright, first will be the aswmbr log, then I will separate where I place the second log, for your convenience.

aswMBR Log:

aswMBR version 0.9.9.1532 Copyright© 2011 AVAST Software
Run date: 2012-02-16 22:51:59
-----------------------------
22:51:59.818 OS Version: Windows x64 6.1.7600
22:51:59.819 Number of processors: 2 586 0x602
22:51:59.819 ComputerName: LYNNWHITE-PC UserName: Lynn White
22:52:02.142 Initialize success
22:52:06.204 AVAST engine defs: 12021601
22:52:09.054 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000054
22:52:09.060 Disk 0 Vendor: SAMSUNG_ 1AA0 Size: 610480MB BusType: 11
22:52:09.067 Device \Driver\amdsata -> MajorFunction fffffa8004d895c4
22:52:09.072 Disk 0 MBR read successfully
22:52:09.076 Disk 0 MBR scan
22:52:09.082 Disk 0 unknown MBR code
22:52:09.116 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
22:52:09.135 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 596887 MB offset 206848
22:52:09.164 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 13491 MB offset 1222631424
22:52:09.174 Service scanning
22:52:10.419 Modules scanning
22:52:10.431 Disk 0 trace - called modules:
22:52:10.446 ntoskrnl.exe CLASSPNP.SYS disk.sys amdxata.sys >>UNKNOWN [0xfffffa800678a650]<<04773771.sys >>UNKNOWN [0xfffffa8004d895c4]<<
22:52:10.453 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80045e5060]
22:52:10.458 3 CLASSPNP.SYS[fffff8800182643f] -> nt!IofCallDriver -> [0xfffffa8004571040]
22:52:10.464 5 amdxata.sys[fffff8800107f7a8] -> nt!IofCallDriver -> \Device\00000054[0xfffffa800456d060]
22:52:10.469 \Driver\amdsata[0xfffffa800456c920] -> IRP_MJ_CREATE -> 0xfffffa8004d895c4
22:52:13.066 AVAST engine scan C:\Windows
22:52:26.742 AVAST engine scan C:\Windows\system32
22:54:39.965 AVAST engine scan C:\Windows\system32\drivers
22:54:51.684 AVAST engine scan C:\Users\Lynn White
23:04:55.275 File: C:\Users\Lynn White\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\textlinks@lplay.com\components\lptlf2.dll **INFECTED** Win32:Trojan-gen
23:04:55.307 File: C:\Users\Lynn White\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\textlinks@lplay.com\components\lptlf3.dll **INFECTED** Win32:Trojan-gen
23:05:23.803 AVAST engine scan C:\ProgramData
23:06:21.067 Scan finished successfully
23:17:44.913 Disk 0 MBR has been saved successfully to "C:\Users\Lynn White\Desktop\MBR.dat"
23:17:44.923 The log file has been saved successfully to "C:\Users\Lynn White\Desktop\aswMBR.txt"




TDSSKiller Log:

23:20:03.0681 3188 TDSS rootkit removing tool 2.7.13.0 Feb 15 2012 19:33:14
23:20:04.0188 3188 ============================================================
23:20:04.0188 3188 Current date / time: 2012/02/16 23:20:04.0188
23:20:04.0188 3188 SystemInfo:
23:20:04.0188 3188
23:20:04.0188 3188 OS Version: 6.1.7600 ServicePack: 0.0
23:20:04.0188 3188 Product type: Workstation
23:20:04.0188 3188 ComputerName: LYNNWHITE-PC
23:20:04.0188 3188 UserName: Lynn White
23:20:04.0188 3188 Windows directory: C:\Windows
23:20:04.0188 3188 System windows directory: C:\Windows
23:20:04.0189 3188 Running under WOW64
23:20:04.0189 3188 Processor architecture: Intel x64
23:20:04.0189 3188 Number of processors: 2
23:20:04.0189 3188 Page size: 0x1000
23:20:04.0189 3188 Boot type: Normal boot
23:20:04.0189 3188 ============================================================
23:20:04.0379 3188 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:20:04.0383 3188 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
23:20:09.0586 3188 \Device\Harddisk0\DR0:
23:20:09.0587 3188 MBR used
23:20:09.0587 3188 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
23:20:09.0587 3188 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x48DCB800
23:20:09.0587 3188 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x48DFE000, BlocksNum 0x1A59800
23:20:09.0587 3188 \Device\Harddisk1\DR1:
23:20:09.0589 3188 MBR used
23:20:09.0589 3188 \Device\Harddisk1\DR1\Partition0: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0x3A384C02
23:20:09.0655 3188 Initialize success
23:20:09.0655 3188 ============================================================
23:20:14.0642 4164 ============================================================
23:20:14.0642 4164 Scan started
23:20:14.0642 4164 Mode: Manual; TDLFS;
23:20:14.0642 4164 ============================================================
23:20:15.0211 4164 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
23:20:15.0214 4164 1394ohci - ok
23:20:15.0250 4164 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
23:20:15.0253 4164 ACPI - ok
23:20:15.0277 4164 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
23:20:15.0278 4164 AcpiPmi - ok
23:20:15.0301 4164 ACPIService (de7e8d852a806be6091983838bf9697f) C:\Windows\system32\DRIVERS\OSDACPI.SYS
23:20:15.0302 4164 ACPIService - ok
23:20:15.0356 4164 ADIHdAudAddService (0fa60a409e1c8ab9a81901311d15393d) C:\Windows\system32\drivers\ADIHdAud.sys
23:20:15.0364 4164 ADIHdAudAddService - ok
23:20:15.0403 4164 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
23:20:15.0409 4164 adp94xx - ok
23:20:15.0428 4164 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
23:20:15.0430 4164 adpahci - ok
23:20:15.0453 4164 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
23:20:15.0454 4164 adpu320 - ok
23:20:15.0515 4164 AFD (6ef20ddf3172e97d69f596fb90602f29) C:\Windows\system32\drivers\afd.sys
23:20:15.0519 4164 AFD - ok
23:20:15.0534 4164 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
23:20:15.0535 4164 agp440 - ok
23:20:15.0558 4164 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
23:20:15.0567 4164 aliide - ok
23:20:15.0594 4164 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
23:20:15.0594 4164 amdide - ok
23:20:15.0611 4164 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
23:20:15.0612 4164 AmdK8 - ok
23:20:15.0648 4164 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
23:20:15.0649 4164 AmdPPM - ok
23:20:15.0675 4164 amdsata (f747497a0ee5498f79b207f215b3d2d8) C:\Windows\system32\DRIVERS\amdsata.sys
23:20:15.0675 4164 amdsata - ok
23:20:15.0701 4164 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
23:20:15.0703 4164 amdsbs - ok
23:20:15.0717 4164 amdxata (2946d695e158615baaa16248e63c7adb) C:\Windows\system32\DRIVERS\amdxata.sys
23:20:15.0718 4164 amdxata - ok
23:20:15.0760 4164 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
23:20:15.0760 4164 AppID - ok
23:20:15.0806 4164 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
23:20:15.0807 4164 arc - ok
23:20:15.0825 4164 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
23:20:15.0826 4164 arcsas - ok
23:20:15.0864 4164 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
23:20:15.0864 4164 AsyncMac - ok
23:20:15.0896 4164 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
23:20:15.0897 4164 atapi - ok
23:20:16.0027 4164 atikmdag (80793852021864a9ed344843eeba5fdb) C:\Windows\system32\DRIVERS\atikmdag.sys
23:20:16.0057 4164 atikmdag - ok
23:20:16.0108 4164 AtiPcie (7c5d273e29dcc5505469b299c6f29163) C:\Windows\system32\DRIVERS\AtiPcie.sys
23:20:16.0108 4164 AtiPcie - ok
23:20:16.0175 4164 AVerAVF2 (a63b31d668424f7c20d0773769dbbb1e) C:\Windows\system32\DRIVERS\AVerAVF2.sys
23:20:16.0181 4164 AVerAVF2 - ok
23:20:16.0239 4164 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
23:20:16.0242 4164 b06bdrv - ok
23:20:16.0285 4164 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
23:20:16.0287 4164 b57nd60a - ok
23:20:16.0309 4164 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
23:20:16.0310 4164 Beep - ok
23:20:16.0362 4164 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
23:20:16.0363 4164 blbdrive - ok
23:20:16.0420 4164 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
23:20:16.0421 4164 bowser - ok
23:20:16.0453 4164 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:20:16.0454 4164 BrFiltLo - ok
23:20:16.0469 4164 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:20:16.0470 4164 BrFiltUp - ok
23:20:16.0510 4164 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
23:20:16.0512 4164 Brserid - ok
23:20:16.0528 4164 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
23:20:16.0529 4164 BrSerWdm - ok
23:20:16.0546 4164 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
23:20:16.0547 4164 BrUsbMdm - ok
23:20:16.0555 4164 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
23:20:16.0556 4164 BrUsbSer - ok
23:20:16.0601 4164 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
23:20:16.0602 4164 BthEnum - ok
23:20:16.0643 4164 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
23:20:16.0644 4164 BTHMODEM - ok
23:20:16.0670 4164 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
23:20:16.0671 4164 BthPan - ok
23:20:16.0693 4164 BTHPORT (21084ceb85280468c9aca3c805c0f8cf) C:\Windows\System32\Drivers\BTHport.sys
23:20:16.0696 4164 BTHPORT - ok
23:20:16.0723 4164 BTHUSB (8504842634dd144c075b6b0c982ccec4) C:\Windows\System32\Drivers\BTHUSB.sys
23:20:16.0724 4164 BTHUSB - ok
23:20:16.0767 4164 btwaudio (6bcfdc2b5b7f66d484486d4bd4b39a6b) C:\Windows\system32\drivers\btwaudio.sys
23:20:16.0768 4164 btwaudio - ok
23:20:16.0788 4164 btwavdt (82dc8b7c626e526681c1bebed2bc3ff9) C:\Windows\system32\drivers\btwavdt.sys
23:20:16.0789 4164 btwavdt - ok
23:20:16.0828 4164 btwl2cap (6149301dc3f81d6f9667a3fbac410975) C:\Windows\system32\DRIVERS\btwl2cap.sys
23:20:16.0829 4164 btwl2cap - ok
23:20:16.0837 4164 btwrchid (28e105ad3b79f440bf94780f507bf66a) C:\Windows\system32\DRIVERS\btwrchid.sys
23:20:16.0838 4164 btwrchid - ok
23:20:16.0871 4164 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
23:20:16.0872 4164 cdfs - ok
23:20:16.0908 4164 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
23:20:16.0910 4164 cdrom - ok
23:20:16.0942 4164 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
23:20:16.0943 4164 circlass - ok
23:20:16.0971 4164 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
23:20:16.0974 4164 CLFS - ok
23:20:17.0010 4164 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
23:20:17.0011 4164 CmBatt - ok
23:20:17.0028 4164 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
23:20:17.0029 4164 cmdide - ok
23:20:17.0049 4164 CNG (f95fd4cb7da00ba2a63ce9f6b5c053e1) C:\Windows\system32\Drivers\cng.sys
23:20:17.0054 4164 CNG - ok
23:20:17.0074 4164 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
23:20:17.0075 4164 Compbatt - ok
23:20:17.0103 4164 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
23:20:17.0103 4164 CompositeBus - ok
23:20:17.0121 4164 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
23:20:17.0123 4164 crcdisk - ok
23:20:17.0165 4164 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
23:20:17.0166 4164 DfsC - ok
23:20:17.0184 4164 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
23:20:17.0185 4164 discache - ok
23:20:17.0199 4164 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
23:20:17.0200 4164 Disk - ok
23:20:17.0241 4164 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
23:20:17.0243 4164 Dot4 - ok
23:20:17.0277 4164 Dot4Print (85135ad27e79b689335c08167d917cde) C:\Windows\system32\DRIVERS\Dot4Prt.sys
23:20:17.0278 4164 Dot4Print - ok
23:20:17.0290 4164 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
23:20:17.0291 4164 dot4usb - ok
23:20:17.0331 4164 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
23:20:17.0331 4164 drmkaud - ok
23:20:17.0376 4164 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
23:20:17.0386 4164 DXGKrnl - ok
23:20:17.0465 4164 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
23:20:17.0481 4164 ebdrv - ok
23:20:17.0546 4164 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
23:20:17.0552 4164 elxstor - ok
23:20:17.0576 4164 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
23:20:17.0576 4164 ErrDev - ok
23:20:17.0610 4164 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
23:20:17.0613 4164 exfat - ok
23:20:17.0636 4164 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
23:20:17.0639 4164 fastfat - ok
23:20:17.0669 4164 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
23:20:17.0670 4164 fdc - ok
23:20:17.0698 4164 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
23:20:17.0699 4164 FileInfo - ok
23:20:17.0716 4164 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
23:20:17.0717 4164 Filetrace - ok
23:20:17.0741 4164 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
23:20:17.0742 4164 flpydisk - ok
23:20:17.0757 4164 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
23:20:17.0761 4164 FltMgr - ok
23:20:17.0790 4164 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
23:20:17.0793 4164 FsDepends - ok
23:20:17.0837 4164 fssfltr (53dab1791917a72738539ad25c4eed7f) C:\Windows\system32\DRIVERS\fssfltr.sys
23:20:17.0838 4164 fssfltr - ok
23:20:17.0858 4164 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
23:20:17.0859 4164 Fs_Rec - ok
23:20:17.0889 4164 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
23:20:17.0893 4164 fvevol - ok
23:20:17.0922 4164 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
23:20:17.0923 4164 gagp30kx - ok
23:20:17.0975 4164 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
23:20:17.0976 4164 GEARAspiWDM - ok
23:20:18.0009 4164 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
23:20:18.0010 4164 hcw85cir - ok
23:20:18.0039 4164 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
23:20:18.0043 4164 HdAudAddService - ok
23:20:18.0061 4164 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
23:20:18.0063 4164 HDAudBus - ok
23:20:18.0082 4164 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
23:20:18.0082 4164 HidBatt - ok
23:20:18.0096 4164 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
23:20:18.0097 4164 HidBth - ok
23:20:18.0125 4164 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
23:20:18.0127 4164 HidIr - ok
23:20:18.0134 4164 hidkmdf (d4bfba2eec009e26854fe61110ef509f) C:\Windows\system32\DRIVERS\hidkmdf.sys
23:20:18.0135 4164 hidkmdf - ok
23:20:18.0177 4164 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
23:20:18.0178 4164 HidUsb - ok
23:20:18.0251 4164 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
23:20:18.0252 4164 HpSAMD - ok
23:20:18.0286 4164 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
23:20:18.0294 4164 HTTP - ok
23:20:18.0314 4164 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
23:20:18.0314 4164 hwpolicy - ok
23:20:18.0347 4164 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
23:20:18.0349 4164 i8042prt - ok
23:20:18.0380 4164 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
23:20:18.0384 4164 iaStorV - ok
23:20:18.0411 4164 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
23:20:18.0412 4164 iirsp - ok
23:20:18.0445 4164 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
23:20:18.0445 4164 intelide - ok
23:20:18.0462 4164 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
23:20:18.0463 4164 intelppm - ok
23:20:18.0483 4164 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:20:18.0484 4164 IpFilterDriver - ok
23:20:18.0507 4164 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
23:20:18.0508 4164 IPMIDRV - ok
23:20:18.0537 4164 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
23:20:18.0538 4164 IPNAT - ok
23:20:18.0570 4164 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
23:20:18.0571 4164 IRENUM - ok
23:20:18.0613 4164 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
23:20:18.0624 4164 isapnp - ok
23:20:18.0634 4164 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
23:20:18.0636 4164 iScsiPrt - ok
23:20:18.0658 4164 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
23:20:18.0660 4164 kbdclass - ok
23:20:18.0684 4164 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
23:20:18.0684 4164 kbdhid - ok
23:20:18.0705 4164 KSecDD (e8b6fcc9c83535c67f835d407620bd27) C:\Windows\system32\Drivers\ksecdd.sys
23:20:18.0706 4164 KSecDD - ok
23:20:18.0734 4164 KSecPkg (a8c63880ef6f4d3fec7b616b9c060215) C:\Windows\system32\Drivers\ksecpkg.sys
23:20:18.0736 4164 KSecPkg - ok
23:20:18.0751 4164 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
23:20:18.0752 4164 ksthunk - ok
23:20:18.0800 4164 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
23:20:18.0801 4164 lltdio - ok
23:20:18.0832 4164 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
23:20:18.0833 4164 LSI_FC - ok
23:20:18.0848 4164 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
23:20:18.0850 4164 LSI_SAS - ok
23:20:18.0870 4164 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
23:20:18.0871 4164 LSI_SAS2 - ok
23:20:18.0896 4164 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
23:20:18.0897 4164 LSI_SCSI - ok
23:20:18.0919 4164 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
23:20:18.0920 4164 luafv - ok
23:20:18.0969 4164 MBAMProtector (79da94b35371b9e7104460c7693dcb2c) C:\Windows\system32\drivers\mbam.sys
23:20:18.0970 4164 MBAMProtector - ok
23:20:19.0015 4164 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
23:20:19.0016 4164 megasas - ok
23:20:19.0036 4164 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
23:20:19.0039 4164 MegaSR - ok
23:20:19.0059 4164 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
23:20:19.0060 4164 Modem - ok
23:20:19.0086 4164 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
23:20:19.0087 4164 monitor - ok
23:20:19.0107 4164 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
23:20:19.0108 4164 mouclass - ok
23:20:19.0118 4164 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
23:20:19.0118 4164 mouhid - ok
23:20:19.0139 4164 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
23:20:19.0140 4164 mountmgr - ok
23:20:19.0158 4164 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
23:20:19.0160 4164 mpio - ok
23:20:19.0181 4164 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
23:20:19.0183 4164 mpsdrv - ok
23:20:19.0201 4164 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
23:20:19.0203 4164 MRxDAV - ok
23:20:19.0228 4164 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
23:20:19.0230 4164 mrxsmb - ok
23:20:19.0262 4164 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:20:19.0265 4164 mrxsmb10 - ok
23:20:19.0277 4164 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:20:19.0279 4164 mrxsmb20 - ok
23:20:19.0293 4164 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
23:20:19.0294 4164 msahci - ok
23:20:19.0322 4164 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
23:20:19.0324 4164 msdsm - ok
23:20:19.0349 4164 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
23:20:19.0350 4164 Msfs - ok
23:20:19.0375 4164 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
23:20:19.0375 4164 mshidkmdf - ok
23:20:19.0383 4164 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
23:20:19.0384 4164 msisadrv - ok
23:20:19.0409 4164 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
23:20:19.0410 4164 MSKSSRV - ok
23:20:19.0432 4164 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
23:20:19.0433 4164 MSPCLOCK - ok
23:20:19.0454 4164 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
23:20:19.0455 4164 MSPQM - ok
23:20:19.0473 4164 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
23:20:19.0477 4164 MsRPC - ok
23:20:19.0494 4164 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
23:20:19.0495 4164 mssmbios - ok
23:20:19.0511 4164 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
23:20:19.0512 4164 MSTEE - ok
23:20:19.0538 4164 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
23:20:19.0539 4164 MTConfig - ok
23:20:19.0557 4164 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
23:20:19.0558 4164 Mup - ok
23:20:19.0581 4164 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
23:20:19.0585 4164 NativeWifiP - ok
23:20:19.0645 4164 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
23:20:19.0661 4164 NDIS - ok
23:20:19.0679 4164 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
23:20:19.0681 4164 NdisCap - ok
23:20:19.0704 4164 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
23:20:19.0705 4164 NdisTapi - ok
23:20:19.0721 4164 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
23:20:19.0722 4164 Ndisuio - ok
23:20:19.0740 4164 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
23:20:19.0743 4164 NdisWan - ok
23:20:19.0756 4164 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
23:20:19.0757 4164 NDProxy - ok
23:20:19.0778 4164 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
23:20:19.0779 4164 NetBIOS - ok
23:20:19.0799 4164 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
23:20:19.0802 4164 NetBT - ok
23:20:19.0856 4164 netr28x (44d4bd55191624c82a2745296ba42814) C:\Windows\system32\DRIVERS\netr28x.sys
23:20:19.0863 4164 netr28x - ok
23:20:19.0902 4164 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
23:20:19.0903 4164 nfrd960 - ok
23:20:19.0922 4164 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
23:20:19.0923 4164 Npfs - ok
23:20:19.0941 4164 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
23:20:19.0941 4164 nsiproxy - ok
23:20:20.0000 4164 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
23:20:20.0016 4164 Ntfs - ok
23:20:20.0035 4164 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
23:20:20.0036 4164 Null - ok
23:20:20.0060 4164 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
23:20:20.0062 4164 nvraid - ok
23:20:20.0081 4164 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
23:20:20.0084 4164 nvstor - ok
23:20:20.0109 4164 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
23:20:20.0110 4164 nv_agp - ok
23:20:20.0144 4164 NW1950 (1a71763dd0df7ab7b435efa1dde710c6) C:\Windows\system32\DRIVERS\NW1950.sys
23:20:20.0145 4164 NW1950 - ok
23:20:20.0164 4164 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
23:20:20.0165 4164 ohci1394 - ok
23:20:20.0184 4164 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
23:20:20.0185 4164 Parport - ok
23:20:20.0199 4164 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys
23:20:20.0200 4164 partmgr - ok
23:20:20.0216 4164 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
23:20:20.0217 4164 pci - ok
23:20:20.0235 4164 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
23:20:20.0236 4164 pciide - ok
23:20:20.0251 4164 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
23:20:20.0253 4164 pcmcia - ok
23:20:20.0272 4164 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
23:20:20.0273 4164 pcw - ok
23:20:20.0293 4164 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
23:20:20.0300 4164 PEAUTH - ok
23:20:20.0353 4164 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
23:20:20.0354 4164 PptpMiniport - ok
23:20:20.0368 4164 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
23:20:20.0369 4164 Processor - ok
23:20:20.0401 4164 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
23:20:20.0403 4164 Psched - ok
23:20:20.0444 4164 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
23:20:20.0459 4164 ql2300 - ok
23:20:20.0479 4164 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
23:20:20.0481 4164 ql40xx - ok
23:20:20.0502 4164 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
23:20:20.0503 4164 QWAVEdrv - ok
23:20:20.0520 4164 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
23:20:20.0520 4164 RasAcd - ok
23:20:20.0542 4164 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
23:20:20.0544 4164 RasAgileVpn - ok
23:20:20.0558 4164 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
23:20:20.0560 4164 Rasl2tp - ok
23:20:20.0575 4164 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
23:20:20.0576 4164 RasPppoe - ok
23:20:20.0603 4164 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
23:20:20.0604 4164 RasSstp - ok
23:20:20.0633 4164 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
23:20:20.0637 4164 rdbss - ok
23:20:20.0655 4164 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
23:20:20.0655 4164 rdpbus - ok
23:20:20.0672 4164 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
23:20:20.0673 4164 RDPCDD - ok
23:20:20.0703 4164 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
23:20:20.0703 4164 RDPENCDD - ok
23:20:20.0715 4164 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
23:20:20.0716 4164 RDPREFMP - ok
23:20:20.0736 4164 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\Windows\system32\drivers\RDPWD.sys
23:20:20.0738 4164 RDPWD - ok
23:20:20.0758 4164 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
23:20:20.0760 4164 rdyboost - ok
23:20:20.0805 4164 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
23:20:20.0807 4164 RFCOMM - ok
23:20:20.0830 4164 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
23:20:20.0831 4164 rspndr - ok
23:20:20.0863 4164 RTL8167 (91296f0b2653281b2f11e0fce56aa427) C:\Windows\system32\DRIVERS\Rt64win7.sys
23:20:20.0867 4164 RTL8167 - ok
23:20:20.0890 4164 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
23:20:20.0892 4164 sbp2port - ok
23:20:20.0914 4164 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
23:20:20.0915 4164 scfilter - ok
23:20:20.0969 4164 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
23:20:20.0970 4164 secdrv - ok
23:20:21.0016 4164 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
23:20:21.0017 4164 Serenum - ok
23:20:21.0037 4164 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
23:20:21.0038 4164 Serial - ok
23:20:21.0055 4164 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
23:20:21.0056 4164 sermouse - ok
23:20:21.0089 4164 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
23:20:21.0090 4164 sffdisk - ok
23:20:21.0107 4164 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
23:20:21.0107 4164 sffp_mmc - ok
23:20:21.0115 4164 sffp_sd (5588b8c6193eb1522490c122eb94dffa) C:\Windows\system32\DRIVERS\sffp_sd.sys
23:20:21.0116 4164 sffp_sd - ok
23:20:21.0131 4164 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
23:20:21.0132 4164 sfloppy - ok
23:20:21.0163 4164 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
23:20:21.0164 4164 SiSRaid2 - ok
23:20:21.0184 4164 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
23:20:21.0186 4164 SiSRaid4 - ok
23:20:21.0202 4164 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
23:20:21.0204 4164 Smb - ok
23:20:21.0224 4164 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
23:20:21.0225 4164 spldr - ok
23:20:21.0267 4164 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
23:20:21.0272 4164 srv - ok
23:20:21.0292 4164 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
23:20:21.0297 4164 srv2 - ok
23:20:21.0311 4164 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
23:20:21.0313 4164 srvnet - ok
23:20:21.0344 4164 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
23:20:21.0345 4164 stexstor - ok
23:20:21.0377 4164 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
23:20:21.0378 4164 StillCam - ok
23:20:21.0401 4164 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
23:20:21.0402 4164 swenum - ok
23:20:21.0480 4164 Tcpip (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\drivers\tcpip.sys
23:20:21.0498 4164 Tcpip - ok
23:20:21.0538 4164 TCPIP6 (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\DRIVERS\tcpip.sys
23:20:21.0547 4164 TCPIP6 - ok
23:20:21.0577 4164 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
23:20:21.0578 4164 tcpipreg - ok
23:20:21.0597 4164 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
23:20:21.0598 4164 TDPIPE - ok
23:20:21.0612 4164 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
23:20:21.0612 4164 TDTCP - ok
23:20:21.0631 4164 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
23:20:21.0640 4164 tdx - ok
23:20:21.0653 4164 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
23:20:21.0655 4164 TermDD - ok
23:20:21.0710 4164 tmpreflt (1889f49a828b1cf0e2866cdd325875b0) C:\Windows\system32\DRIVERS\tmpreflt.sys
23:20:21.0711 4164 tmpreflt - ok
23:20:21.0761 4164 tmtdi (21cc12b7f8b44e91d03ead5b17aaf0b2) C:\Windows\system32\DRIVERS\tmtdi.sys
23:20:21.0764 4164 tmtdi - ok
23:20:21.0817 4164 tmxpflt (8b97ba7e28bd39a2bc4a2bb66a83fec0) C:\Windows\system32\DRIVERS\tmxpflt.sys
23:20:21.0822 4164 tmxpflt - ok
23:20:21.0850 4164 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
23:20:21.0851 4164 tssecsrv - ok
23:20:21.0876 4164 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
23:20:21.0878 4164 tunnel - ok
23:20:21.0906 4164 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
23:20:21.0907 4164 uagp35 - ok
23:20:21.0927 4164 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
23:20:21.0930 4164 udfs - ok
23:20:21.0952 4164 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
23:20:21.0953 4164 uliagpkx - ok
23:20:21.0982 4164 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
23:20:21.0983 4164 umbus - ok
23:20:22.0004 4164 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
23:20:22.0005 4164 UmPass - ok
23:20:22.0033 4164 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
23:20:22.0034 4164 usbccgp - ok
23:20:22.0061 4164 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
23:20:22.0062 4164 usbcir - ok
23:20:22.0080 4164 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
23:20:22.0081 4164 usbehci - ok
23:20:22.0122 4164 usbfilter (6648c6d7323a2ce0c4776c36cefbcb14) C:\Windows\system32\DRIVERS\usbfilter.sys
23:20:22.0123 4164 usbfilter - ok
23:20:22.0139 4164 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
23:20:22.0143 4164 usbhub - ok
23:20:22.0156 4164 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\DRIVERS\usbohci.sys
23:20:22.0157 4164 usbohci - ok
23:20:22.0199 4164 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
23:20:22.0200 4164 usbprint - ok
23:20:22.0237 4164 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
23:20:22.0238 4164 usbscan - ok
23:20:22.0266 4164 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:20:22.0267 4164 USBSTOR - ok
23:20:22.0287 4164 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\drivers\usbuhci.sys
23:20:22.0288 4164 usbuhci - ok
23:20:22.0316 4164 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\System32\Drivers\usbvideo.sys
23:20:22.0319 4164 usbvideo - ok
23:20:22.0358 4164 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
23:20:22.0359 4164 vdrvroot - ok
23:20:22.0385 4164 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
23:20:22.0385 4164 vga - ok
23:20:22.0402 4164 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
23:20:22.0403 4164 VgaSave - ok
23:20:22.0418 4164 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
23:20:22.0420 4164 vhdmp - ok
23:20:22.0438 4164 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
23:20:22.0438 4164 viaide - ok
23:20:22.0455 4164 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
23:20:22.0456 4164 volmgr - ok
23:20:22.0475 4164 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
23:20:22.0479 4164 volmgrx - ok
23:20:22.0517 4164 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
23:20:22.0520 4164 volsnap - ok
23:20:22.0582 4164 vsapint (3a5862d9a4fe4bbb2ffa1700e2b21b9b) C:\Windows\system32\DRIVERS\vsapint.sys
23:20:22.0601 4164 vsapint - ok
23:20:22.0633 4164 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
23:20:22.0635 4164 vsmraid - ok
23:20:22.0663 4164 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
23:20:22.0664 4164 vwifibus - ok
23:20:22.0677 4164 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
23:20:22.0678 4164 vwififlt - ok
23:20:22.0702 4164 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
23:20:22.0703 4164 vwifimp - ok
23:20:22.0737 4164 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
23:20:22.0738 4164 WacomPen - ok
23:20:22.0775 4164 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
23:20:22.0776 4164 WANARP - ok
23:20:22.0779 4164 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
23:20:22.0780 4164 Wanarpv6 - ok
23:20:22.0824 4164 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
23:20:22.0825 4164 Wd - ok
23:20:22.0853 4164 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
23:20:22.0860 4164 Wdf01000 - ok
23:20:22.0899 4164 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
23:20:22.0900 4164 WfpLwf - ok
23:20:22.0916 4164 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
23:20:22.0917 4164 WIMMount - ok
23:20:22.0965 4164 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
23:20:22.0965 4164 WmiAcpi - ok
23:20:23.0006 4164 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
23:20:23.0006 4164 ws2ifsl - ok
23:20:23.0028 4164 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
23:20:23.0030 4164 WudfPf - ok
23:20:23.0050 4164 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
23:20:23.0052 4164 WUDFRd - ok
23:20:23.0082 4164 MBR (0x1B8) (6c6fdff834aa5d876c307bee53974486) \Device\Harddisk0\DR0
23:20:23.0109 4164 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - infected
23:20:23.0109 4164 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.b (0)
23:20:23.0149 4164 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
23:20:23.0149 4164 \Device\Harddisk0\DR0 - detected TDSS File System (1)
23:20:23.0159 4164 MBR (0x1B8) (31cfc50fbd443daeec9a5c7ae8da8f6d) \Device\Harddisk1\DR1
23:20:34.0283 4164 \Device\Harddisk1\DR1 - ok
23:20:34.0293 4164 Boot (0x1200) (e663faf80f17b86da26100d329266f56) \Device\Harddisk0\DR0\Partition0
23:20:34.0294 4164 \Device\Harddisk0\DR0\Partition0 - ok
23:20:34.0304 4164 Boot (0x1200) (0b5196fdc9d39793e8dd81c281f9f53f) \Device\Harddisk0\DR0\Partition1
23:20:34.0305 4164 \Device\Harddisk0\DR0\Partition1 - ok
23:20:34.0332 4164 Boot (0x1200) (cc969ee9dc1731a2749b16e166d87a7a) \Device\Harddisk0\DR0\Partition2
23:20:34.0333 4164 \Device\Harddisk0\DR0\Partition2 - ok
23:20:34.0338 4164 Boot (0x1200) (06094edfecfc7d777946e5a649912b7d) \Device\Harddisk1\DR1\Partition0
23:20:34.0339 4164 \Device\Harddisk1\DR1\Partition0 - ok
23:20:34.0339 4164 ============================================================
23:20:34.0339 4164 Scan finished
23:20:34.0339 4164 ============================================================
23:20:34.0350 7072 Detected object count: 2
23:20:34.0350 7072 Actual detected object count: 2
23:20:39.0017 7072 \Device\Harddisk0\DR0\# - copied to quarantine
23:20:39.0018 7072 \Device\Harddisk0\DR0 - copied to quarantine
23:20:39.0059 7072 \Device\Harddisk0\DR0\TDLFS\phdata - copied to quarantine
23:20:39.0062 7072 \Device\Harddisk0\DR0\TDLFS\phm - copied to quarantine
23:20:39.0064 7072 \Device\Harddisk0\DR0\TDLFS\phld - copied to quarantine
23:20:39.0067 7072 \Device\Harddisk0\DR0\TDLFS\phln - copied to quarantine
23:20:39.0070 7072 \Device\Harddisk0\DR0\TDLFS\phlx - copied to quarantine
23:20:39.0080 7072 \Device\Harddisk0\DR0\TDLFS\phd - copied to quarantine
23:20:39.0088 7072 \Device\Harddisk0\DR0\TDLFS\phdx - copied to quarantine
23:20:39.0098 7072 \Device\Harddisk0\DR0\TDLFS\ph.dll - copied to quarantine
23:20:39.0101 7072 \Device\Harddisk0\DR0\TDLFS\phx.dll - copied to quarantine
23:20:39.0102 7072 \Device\Harddisk0\DR0\TDLFS\phs - copied to quarantine
23:20:39.0107 7072 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - will be cured on reboot
23:20:39.0107 7072 \Device\Harddisk0\DR0 - ok
23:20:42.0604 7072 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - User select action: Cure
23:20:42.0610 7072 \Device\Harddisk0\DR0\TDLFS\phdata - copied to quarantine
23:20:42.0611 7072 \Device\Harddisk0\DR0\TDLFS\phm - copied to quarantine
23:20:42.0613 7072 \Device\Harddisk0\DR0\TDLFS\phld - copied to quarantine
23:20:42.0615 7072 \Device\Harddisk0\DR0\TDLFS\phln - copied to quarantine
23:20:42.0618 7072 \Device\Harddisk0\DR0\TDLFS\phlx - copied to quarantine
23:20:42.0630 7072 \Device\Harddisk0\DR0\TDLFS\phd - copied to quarantine
23:20:42.0638 7072 \Device\Harddisk0\DR0\TDLFS\phdx - copied to quarantine
23:20:42.0648 7072 \Device\Harddisk0\DR0\TDLFS\ph.dll - copied to quarantine
23:20:42.0650 7072 \Device\Harddisk0\DR0\TDLFS\phx.dll - copied to quarantine
23:20:42.0650 7072 \Device\Harddisk0\DR0\TDLFS\phs - copied to quarantine
23:20:42.0651 7072 \Device\Harddisk0\DR0\TDLFS - deleted
23:20:42.0651 7072 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete
23:21:02.0759 6956 Deinitialize success

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:03 PM

Posted 17 February 2012 - 09:09 AM

Restart the PC

Run TDSSkiller once again.Does TDSSkiller still finds infections ? Post the clean log alone


Download

http://download.bleepingcomputer.com/rootrepeal/MBRCheck.exe

Download MBRCheck.exe to your Desktop. Run the application.

If no infection is found, it will produce a report on the desktop. Post that report in your next reply.

If an infection is found, you will be presented with the following dialog:

Enter 'Y' and hit ENTER for more options, or 'N' to exit:

Type N and press Enter. A report will be produced on the desktop. Post that report in your next reply.


Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

Edited by narenxp, 17 February 2012 - 09:09 AM.


#7 LWhite326

LWhite326
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:12:03 PM

Posted 17 February 2012 - 10:06 PM

I have two of the logs, I didn't get a chance to get the log from ESET due to a power outage. When I scanned again it didn't find any infections. I'm not sure if you want that log, if so I will post it in the next reply. TDSSKiller came up with no results this time and MBR has found infections.

TDSSKiller

15:48:21.0266 3308 TDSS rootkit removing tool 2.7.13.0 Feb 15 2012 19:33:14
15:48:21.0530 3308 ============================================================
15:48:21.0531 3308 Current date / time: 2012/02/17 15:48:21.0530
15:48:21.0531 3308 SystemInfo:
15:48:21.0531 3308
15:48:21.0531 3308 OS Version: 6.1.7600 ServicePack: 0.0
15:48:21.0531 3308 Product type: Workstation
15:48:21.0531 3308 ComputerName: LYNNWHITE-PC
15:48:21.0533 3308 UserName: Lynn White
15:48:21.0533 3308 Windows directory: C:\Windows
15:48:21.0533 3308 System windows directory: C:\Windows
15:48:21.0533 3308 Running under WOW64
15:48:21.0533 3308 Processor architecture: Intel x64
15:48:21.0533 3308 Number of processors: 2
15:48:21.0533 3308 Page size: 0x1000
15:48:21.0533 3308 Boot type: Normal boot
15:48:21.0533 3308 ============================================================
15:48:22.0476 3308 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:48:22.0480 3308 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
15:48:27.0638 3308 \Device\Harddisk0\DR0:
15:48:27.0651 3308 MBR used
15:48:27.0651 3308 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
15:48:27.0651 3308 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x48DCB800
15:48:27.0651 3308 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x48DFE000, BlocksNum 0x1A59800
15:48:27.0651 3308 \Device\Harddisk1\DR1:
15:48:27.0652 3308 MBR used
15:48:27.0653 3308 \Device\Harddisk1\DR1\Partition0: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0x3A384C02
15:48:27.0727 3308 Initialize success
15:48:27.0727 3308 ============================================================
15:48:33.0344 4488 ============================================================
15:48:33.0344 4488 Scan started
15:48:33.0344 4488 Mode: Manual; TDLFS;
15:48:33.0344 4488 ============================================================
15:48:33.0881 4488 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
15:48:33.0885 4488 1394ohci - ok
15:48:33.0920 4488 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
15:48:33.0924 4488 ACPI - ok
15:48:33.0955 4488 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
15:48:33.0956 4488 AcpiPmi - ok
15:48:33.0971 4488 ACPIService (de7e8d852a806be6091983838bf9697f) C:\Windows\system32\DRIVERS\OSDACPI.SYS
15:48:33.0972 4488 ACPIService - ok
15:48:34.0022 4488 ADIHdAudAddService (0fa60a409e1c8ab9a81901311d15393d) C:\Windows\system32\drivers\ADIHdAud.sys
15:48:34.0028 4488 ADIHdAudAddService - ok
15:48:34.0064 4488 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
15:48:34.0071 4488 adp94xx - ok
15:48:34.0091 4488 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
15:48:34.0096 4488 adpahci - ok
15:48:34.0115 4488 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
15:48:34.0118 4488 adpu320 - ok
15:48:34.0177 4488 AFD (6ef20ddf3172e97d69f596fb90602f29) C:\Windows\system32\drivers\afd.sys
15:48:34.0182 4488 AFD - ok
15:48:34.0196 4488 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
15:48:34.0197 4488 agp440 - ok
15:48:34.0220 4488 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
15:48:34.0221 4488 aliide - ok
15:48:34.0256 4488 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
15:48:34.0257 4488 amdide - ok
15:48:34.0273 4488 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
15:48:34.0274 4488 AmdK8 - ok
15:48:34.0418 4488 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
15:48:34.0420 4488 AmdPPM - ok
15:48:34.0461 4488 amdsata (f747497a0ee5498f79b207f215b3d2d8) C:\Windows\system32\DRIVERS\amdsata.sys
15:48:34.0463 4488 amdsata - ok
15:48:34.0488 4488 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
15:48:34.0491 4488 amdsbs - ok
15:48:34.0511 4488 amdxata (2946d695e158615baaa16248e63c7adb) C:\Windows\system32\DRIVERS\amdxata.sys
15:48:34.0512 4488 amdxata - ok
15:48:34.0554 4488 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
15:48:34.0556 4488 AppID - ok
15:48:34.0601 4488 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
15:48:34.0602 4488 arc - ok
15:48:34.0620 4488 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
15:48:34.0622 4488 arcsas - ok
15:48:34.0658 4488 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
15:48:34.0659 4488 AsyncMac - ok
15:48:34.0690 4488 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
15:48:34.0691 4488 atapi - ok
15:48:34.0821 4488 atikmdag (80793852021864a9ed344843eeba5fdb) C:\Windows\system32\DRIVERS\atikmdag.sys
15:48:34.0878 4488 atikmdag - ok
15:48:34.0910 4488 AtiPcie (7c5d273e29dcc5505469b299c6f29163) C:\Windows\system32\DRIVERS\AtiPcie.sys
15:48:34.0911 4488 AtiPcie - ok
15:48:34.0978 4488 AVerAVF2 (a63b31d668424f7c20d0773769dbbb1e) C:\Windows\system32\DRIVERS\AVerAVF2.sys
15:48:34.0988 4488 AVerAVF2 - ok
15:48:35.0033 4488 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
15:48:35.0038 4488 b06bdrv - ok
15:48:35.0071 4488 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
15:48:35.0075 4488 b57nd60a - ok
15:48:35.0095 4488 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
15:48:35.0096 4488 Beep - ok
15:48:35.0156 4488 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
15:48:35.0157 4488 blbdrive - ok
15:48:35.0215 4488 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
15:48:35.0218 4488 bowser - ok
15:48:35.0239 4488 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:48:35.0240 4488 BrFiltLo - ok
15:48:35.0263 4488 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:48:35.0264 4488 BrFiltUp - ok
15:48:35.0305 4488 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
15:48:35.0310 4488 Brserid - ok
15:48:35.0331 4488 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
15:48:35.0332 4488 BrSerWdm - ok
15:48:35.0345 4488 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
15:48:35.0346 4488 BrUsbMdm - ok
15:48:35.0355 4488 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
15:48:35.0356 4488 BrUsbSer - ok
15:48:35.0396 4488 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
15:48:35.0397 4488 BthEnum - ok
15:48:35.0446 4488 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
15:48:35.0447 4488 BTHMODEM - ok
15:48:35.0506 4488 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
15:48:35.0507 4488 BthPan - ok
15:48:35.0530 4488 BTHPORT (21084ceb85280468c9aca3c805c0f8cf) C:\Windows\System32\Drivers\BTHport.sys
15:48:35.0537 4488 BTHPORT - ok
15:48:35.0559 4488 BTHUSB (8504842634dd144c075b6b0c982ccec4) C:\Windows\System32\Drivers\BTHUSB.sys
15:48:35.0560 4488 BTHUSB - ok
15:48:35.0595 4488 btwaudio (6bcfdc2b5b7f66d484486d4bd4b39a6b) C:\Windows\system32\drivers\btwaudio.sys
15:48:35.0596 4488 btwaudio - ok
15:48:35.0616 4488 btwavdt (82dc8b7c626e526681c1bebed2bc3ff9) C:\Windows\system32\drivers\btwavdt.sys
15:48:35.0617 4488 btwavdt - ok
15:48:35.0655 4488 btwl2cap (6149301dc3f81d6f9667a3fbac410975) C:\Windows\system32\DRIVERS\btwl2cap.sys
15:48:35.0656 4488 btwl2cap - ok
15:48:35.0670 4488 btwrchid (28e105ad3b79f440bf94780f507bf66a) C:\Windows\system32\DRIVERS\btwrchid.sys
15:48:35.0670 4488 btwrchid - ok
15:48:35.0699 4488 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
15:48:35.0700 4488 cdfs - ok
15:48:35.0736 4488 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
15:48:35.0738 4488 cdrom - ok
15:48:35.0765 4488 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
15:48:35.0766 4488 circlass - ok
15:48:35.0799 4488 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
15:48:35.0802 4488 CLFS - ok
15:48:35.0846 4488 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
15:48:35.0847 4488 CmBatt - ok
15:48:35.0864 4488 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
15:48:35.0864 4488 cmdide - ok
15:48:35.0885 4488 CNG (f95fd4cb7da00ba2a63ce9f6b5c053e1) C:\Windows\system32\Drivers\cng.sys
15:48:35.0889 4488 CNG - ok
15:48:35.0896 4488 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
15:48:35.0897 4488 Compbatt - ok
15:48:35.0922 4488 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
15:48:35.0923 4488 CompositeBus - ok
15:48:35.0940 4488 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
15:48:35.0941 4488 crcdisk - ok
15:48:35.0984 4488 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
15:48:35.0986 4488 DfsC - ok
15:48:36.0003 4488 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
15:48:36.0004 4488 discache - ok
15:48:36.0013 4488 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
15:48:36.0014 4488 Disk - ok
15:48:36.0060 4488 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
15:48:36.0062 4488 Dot4 - ok
15:48:36.0088 4488 Dot4Print (85135ad27e79b689335c08167d917cde) C:\Windows\system32\DRIVERS\Dot4Prt.sys
15:48:36.0088 4488 Dot4Print - ok
15:48:36.0101 4488 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
15:48:36.0102 4488 dot4usb - ok
15:48:36.0133 4488 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
15:48:36.0134 4488 drmkaud - ok
15:48:36.0179 4488 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
15:48:36.0184 4488 DXGKrnl - ok
15:48:36.0248 4488 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
15:48:36.0279 4488 ebdrv - ok
15:48:36.0340 4488 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
15:48:36.0347 4488 elxstor - ok
15:48:36.0362 4488 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
15:48:36.0363 4488 ErrDev - ok
15:48:36.0413 4488 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
15:48:36.0415 4488 exfat - ok
15:48:36.0439 4488 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
15:48:36.0441 4488 fastfat - ok
15:48:36.0480 4488 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
15:48:36.0481 4488 fdc - ok
15:48:36.0517 4488 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
15:48:36.0518 4488 FileInfo - ok
15:48:36.0527 4488 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
15:48:36.0529 4488 Filetrace - ok
15:48:36.0560 4488 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
15:48:36.0561 4488 flpydisk - ok
15:48:36.0576 4488 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
15:48:36.0580 4488 FltMgr - ok
15:48:36.0601 4488 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
15:48:36.0602 4488 FsDepends - ok
15:48:36.0649 4488 fssfltr (53dab1791917a72738539ad25c4eed7f) C:\Windows\system32\DRIVERS\fssfltr.sys
15:48:36.0651 4488 fssfltr - ok
15:48:36.0685 4488 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
15:48:36.0686 4488 Fs_Rec - ok
15:48:36.0717 4488 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
15:48:36.0721 4488 fvevol - ok
15:48:36.0742 4488 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
15:48:36.0743 4488 gagp30kx - ok
15:48:36.0786 4488 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:48:36.0787 4488 GEARAspiWDM - ok
15:48:36.0820 4488 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
15:48:36.0821 4488 hcw85cir - ok
15:48:36.0858 4488 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
15:48:36.0862 4488 HdAudAddService - ok
15:48:36.0905 4488 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
15:48:36.0908 4488 HDAudBus - ok
15:48:36.0926 4488 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
15:48:36.0928 4488 HidBatt - ok
15:48:36.0948 4488 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
15:48:36.0950 4488 HidBth - ok
15:48:36.0978 4488 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
15:48:36.0979 4488 HidIr - ok
15:48:36.0987 4488 hidkmdf (d4bfba2eec009e26854fe61110ef509f) C:\Windows\system32\DRIVERS\hidkmdf.sys
15:48:36.0989 4488 hidkmdf - ok
15:48:37.0022 4488 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
15:48:37.0022 4488 HidUsb - ok
15:48:37.0095 4488 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
15:48:37.0097 4488 HpSAMD - ok
15:48:37.0130 4488 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
15:48:37.0138 4488 HTTP - ok
15:48:37.0149 4488 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
15:48:37.0150 4488 hwpolicy - ok
15:48:37.0183 4488 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
15:48:37.0185 4488 i8042prt - ok
15:48:37.0216 4488 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
15:48:37.0221 4488 iaStorV - ok
15:48:37.0247 4488 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
15:48:37.0248 4488 iirsp - ok
15:48:37.0281 4488 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
15:48:37.0282 4488 intelide - ok
15:48:37.0298 4488 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
15:48:37.0300 4488 intelppm - ok
15:48:37.0319 4488 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:48:37.0320 4488 IpFilterDriver - ok
15:48:37.0343 4488 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
15:48:37.0345 4488 IPMIDRV - ok
15:48:37.0373 4488 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
15:48:37.0375 4488 IPNAT - ok
15:48:37.0407 4488 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
15:48:37.0408 4488 IRENUM - ok
15:48:37.0424 4488 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
15:48:37.0425 4488 isapnp - ok
15:48:37.0435 4488 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
15:48:37.0437 4488 iScsiPrt - ok
15:48:37.0478 4488 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
15:48:37.0478 4488 kbdclass - ok
15:48:37.0511 4488 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
15:48:37.0512 4488 kbdhid - ok
15:48:37.0533 4488 KSecDD (e8b6fcc9c83535c67f835d407620bd27) C:\Windows\system32\Drivers\ksecdd.sys
15:48:37.0534 4488 KSecDD - ok
15:48:37.0562 4488 KSecPkg (a8c63880ef6f4d3fec7b616b9c060215) C:\Windows\system32\Drivers\ksecpkg.sys
15:48:37.0563 4488 KSecPkg - ok
15:48:37.0579 4488 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
15:48:37.0579 4488 ksthunk - ok
15:48:37.0619 4488 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
15:48:37.0621 4488 lltdio - ok
15:48:37.0693 4488 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
15:48:37.0697 4488 LSI_FC - ok
15:48:37.0717 4488 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
15:48:37.0720 4488 LSI_SAS - ok
15:48:37.0747 4488 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:48:37.0749 4488 LSI_SAS2 - ok
15:48:37.0782 4488 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:48:37.0784 4488 LSI_SCSI - ok
15:48:37.0805 4488 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
15:48:37.0807 4488 luafv - ok
15:48:37.0855 4488 MBAMProtector (79da94b35371b9e7104460c7693dcb2c) C:\Windows\system32\drivers\mbam.sys
15:48:37.0856 4488 MBAMProtector - ok
15:48:37.0901 4488 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
15:48:37.0902 4488 megasas - ok
15:48:37.0922 4488 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
15:48:37.0927 4488 MegaSR - ok
15:48:37.0953 4488 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
15:48:37.0954 4488 Modem - ok
15:48:37.0980 4488 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
15:48:37.0980 4488 monitor - ok
15:48:38.0001 4488 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
15:48:38.0002 4488 mouclass - ok
15:48:38.0018 4488 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
15:48:38.0019 4488 mouhid - ok
15:48:38.0041 4488 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
15:48:38.0043 4488 mountmgr - ok
15:48:38.0061 4488 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
15:48:38.0063 4488 mpio - ok
15:48:38.0084 4488 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
15:48:38.0085 4488 mpsdrv - ok
15:48:38.0103 4488 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
15:48:38.0105 4488 MRxDAV - ok
15:48:38.0130 4488 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
15:48:38.0132 4488 mrxsmb - ok
15:48:38.0164 4488 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:48:38.0167 4488 mrxsmb10 - ok
15:48:38.0179 4488 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:48:38.0181 4488 mrxsmb20 - ok
15:48:38.0195 4488 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
15:48:38.0196 4488 msahci - ok
15:48:38.0208 4488 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
15:48:38.0210 4488 msdsm - ok
15:48:38.0242 4488 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
15:48:38.0242 4488 Msfs - ok
15:48:38.0267 4488 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
15:48:38.0268 4488 mshidkmdf - ok
15:48:38.0275 4488 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
15:48:38.0276 4488 msisadrv - ok
15:48:38.0302 4488 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
15:48:38.0303 4488 MSKSSRV - ok
15:48:38.0317 4488 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
15:48:38.0318 4488 MSPCLOCK - ok
15:48:38.0339 4488 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
15:48:38.0340 4488 MSPQM - ok
15:48:38.0358 4488 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
15:48:38.0361 4488 MsRPC - ok
15:48:38.0379 4488 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
15:48:38.0379 4488 mssmbios - ok
15:48:38.0396 4488 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
15:48:38.0397 4488 MSTEE - ok
15:48:38.0440 4488 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
15:48:38.0440 4488 MTConfig - ok
15:48:38.0458 4488 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
15:48:38.0459 4488 Mup - ok
15:48:38.0490 4488 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
15:48:38.0494 4488 NativeWifiP - ok
15:48:38.0528 4488 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
15:48:38.0536 4488 NDIS - ok
15:48:38.0556 4488 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
15:48:38.0556 4488 NdisCap - ok
15:48:38.0581 4488 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
15:48:38.0582 4488 NdisTapi - ok
15:48:38.0606 4488 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
15:48:38.0607 4488 Ndisuio - ok
15:48:38.0625 4488 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
15:48:38.0627 4488 NdisWan - ok
15:48:38.0641 4488 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
15:48:38.0642 4488 NDProxy - ok
15:48:38.0655 4488 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
15:48:38.0655 4488 NetBIOS - ok
15:48:38.0676 4488 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
15:48:38.0679 4488 NetBT - ok
15:48:38.0733 4488 netr28x (44d4bd55191624c82a2745296ba42814) C:\Windows\system32\DRIVERS\netr28x.sys
15:48:38.0740 4488 netr28x - ok
15:48:38.0778 4488 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
15:48:38.0779 4488 nfrd960 - ok
15:48:38.0798 4488 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
15:48:38.0799 4488 Npfs - ok
15:48:38.0817 4488 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
15:48:38.0818 4488 nsiproxy - ok
15:48:38.0876 4488 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
15:48:38.0891 4488 Ntfs - ok
15:48:38.0911 4488 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
15:48:38.0912 4488 Null - ok
15:48:38.0936 4488 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
15:48:38.0939 4488 nvraid - ok
15:48:38.0958 4488 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
15:48:38.0960 4488 nvstor - ok
15:48:38.0993 4488 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
15:48:38.0995 4488 nv_agp - ok
15:48:39.0013 4488 NW1950 (1a71763dd0df7ab7b435efa1dde710c6) C:\Windows\system32\DRIVERS\NW1950.sys
15:48:39.0014 4488 NW1950 - ok
15:48:39.0032 4488 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
15:48:39.0033 4488 ohci1394 - ok
15:48:39.0052 4488 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
15:48:39.0054 4488 Parport - ok
15:48:39.0066 4488 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys
15:48:39.0067 4488 partmgr - ok
15:48:39.0084 4488 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
15:48:39.0085 4488 pci - ok
15:48:39.0103 4488 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
15:48:39.0104 4488 pciide - ok
15:48:39.0127 4488 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
15:48:39.0130 4488 pcmcia - ok
15:48:39.0148 4488 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
15:48:39.0149 4488 pcw - ok
15:48:39.0170 4488 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
15:48:39.0177 4488 PEAUTH - ok
15:48:39.0246 4488 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
15:48:39.0247 4488 PptpMiniport - ok
15:48:39.0261 4488 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
15:48:39.0262 4488 Processor - ok
15:48:39.0285 4488 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
15:48:39.0287 4488 Psched - ok
15:48:39.0320 4488 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
15:48:39.0336 4488 ql2300 - ok
15:48:39.0355 4488 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
15:48:39.0357 4488 ql40xx - ok
15:48:39.0379 4488 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
15:48:39.0380 4488 QWAVEdrv - ok
15:48:39.0396 4488 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
15:48:39.0397 4488 RasAcd - ok
15:48:39.0452 4488 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
15:48:39.0453 4488 RasAgileVpn - ok
15:48:39.0560 4488 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
15:48:39.0564 4488 Rasl2tp - ok
15:48:39.0592 4488 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
15:48:39.0594 4488 RasPppoe - ok
15:48:39.0612 4488 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
15:48:39.0614 4488 RasSstp - ok
15:48:39.0635 4488 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
15:48:39.0639 4488 rdbss - ok
15:48:39.0655 4488 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
15:48:39.0657 4488 rdpbus - ok
15:48:39.0673 4488 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
15:48:39.0674 4488 RDPCDD - ok
15:48:39.0703 4488 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
15:48:39.0705 4488 RDPENCDD - ok
15:48:39.0724 4488 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
15:48:39.0725 4488 RDPREFMP - ok
15:48:39.0745 4488 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\Windows\system32\drivers\RDPWD.sys
15:48:39.0749 4488 RDPWD - ok
15:48:39.0767 4488 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
15:48:39.0770 4488 rdyboost - ok
15:48:39.0822 4488 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
15:48:39.0825 4488 RFCOMM - ok
15:48:39.0855 4488 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
15:48:39.0857 4488 rspndr - ok
15:48:39.0872 4488 RTL8167 (91296f0b2653281b2f11e0fce56aa427) C:\Windows\system32\DRIVERS\Rt64win7.sys
15:48:39.0875 4488 RTL8167 - ok
15:48:39.0899 4488 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
15:48:39.0901 4488 sbp2port - ok
15:48:39.0923 4488 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
15:48:39.0924 4488 scfilter - ok
15:48:39.0962 4488 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
15:48:39.0963 4488 secdrv - ok
15:48:39.0984 4488 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
15:48:39.0985 4488 Serenum - ok
15:48:40.0013 4488 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
15:48:40.0014 4488 Serial - ok
15:48:40.0039 4488 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
15:48:40.0040 4488 sermouse - ok
15:48:40.0065 4488 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
15:48:40.0066 4488 sffdisk - ok
15:48:40.0082 4488 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
15:48:40.0083 4488 sffp_mmc - ok
15:48:40.0091 4488 sffp_sd (5588b8c6193eb1522490c122eb94dffa) C:\Windows\system32\DRIVERS\sffp_sd.sys
15:48:40.0092 4488 sffp_sd - ok
15:48:40.0107 4488 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
15:48:40.0108 4488 sfloppy - ok
15:48:40.0156 4488 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:48:40.0157 4488 SiSRaid2 - ok
15:48:40.0177 4488 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
15:48:40.0178 4488 SiSRaid4 - ok
15:48:40.0195 4488 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
15:48:40.0196 4488 Smb - ok
15:48:40.0225 4488 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
15:48:40.0225 4488 spldr - ok
15:48:40.0268 4488 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
15:48:40.0273 4488 srv - ok
15:48:40.0293 4488 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
15:48:40.0298 4488 srv2 - ok
15:48:40.0311 4488 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
15:48:40.0313 4488 srvnet - ok
15:48:40.0345 4488 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
15:48:40.0346 4488 stexstor - ok
15:48:40.0378 4488 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
15:48:40.0379 4488 StillCam - ok
15:48:40.0402 4488 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
15:48:40.0403 4488 swenum - ok
15:48:40.0472 4488 Tcpip (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\drivers\tcpip.sys
15:48:40.0490 4488 Tcpip - ok
15:48:40.0520 4488 TCPIP6 (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\DRIVERS\tcpip.sys
15:48:40.0530 4488 TCPIP6 - ok
15:48:40.0561 4488 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
15:48:40.0562 4488 tcpipreg - ok
15:48:40.0581 4488 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
15:48:40.0582 4488 TDPIPE - ok
15:48:40.0596 4488 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
15:48:40.0597 4488 TDTCP - ok
15:48:40.0615 4488 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
15:48:40.0616 4488 tdx - ok
15:48:40.0629 4488 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
15:48:40.0630 4488 TermDD - ok
15:48:40.0686 4488 tmpreflt (1889f49a828b1cf0e2866cdd325875b0) C:\Windows\system32\DRIVERS\tmpreflt.sys
15:48:40.0686 4488 tmpreflt - ok
15:48:40.0719 4488 tmtdi (21cc12b7f8b44e91d03ead5b17aaf0b2) C:\Windows\system32\DRIVERS\tmtdi.sys
15:48:40.0720 4488 tmtdi - ok
15:48:40.0765 4488 tmxpflt (8b97ba7e28bd39a2bc4a2bb66a83fec0) C:\Windows\system32\DRIVERS\tmxpflt.sys
15:48:40.0766 4488 tmxpflt - ok
15:48:40.0792 4488 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
15:48:40.0793 4488 tssecsrv - ok
15:48:40.0819 4488 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
15:48:40.0820 4488 tunnel - ok
15:48:40.0848 4488 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
15:48:40.0849 4488 uagp35 - ok
15:48:40.0869 4488 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
15:48:40.0873 4488 udfs - ok
15:48:40.0903 4488 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
15:48:40.0905 4488 uliagpkx - ok
15:48:40.0933 4488 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
15:48:40.0934 4488 umbus - ok
15:48:40.0955 4488 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
15:48:40.0956 4488 UmPass - ok
15:48:40.0984 4488 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
15:48:40.0985 4488 usbccgp - ok
15:48:41.0012 4488 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
15:48:41.0013 4488 usbcir - ok
15:48:41.0031 4488 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
15:48:41.0032 4488 usbehci - ok
15:48:41.0081 4488 usbfilter (6648c6d7323a2ce0c4776c36cefbcb14) C:\Windows\system32\DRIVERS\usbfilter.sys
15:48:41.0081 4488 usbfilter - ok
15:48:41.0098 4488 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
15:48:41.0102 4488 usbhub - ok
15:48:41.0116 4488 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\DRIVERS\usbohci.sys
15:48:41.0116 4488 usbohci - ok
15:48:41.0150 4488 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
15:48:41.0151 4488 usbprint - ok
15:48:41.0188 4488 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
15:48:41.0189 4488 usbscan - ok
15:48:41.0217 4488 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:48:41.0218 4488 USBSTOR - ok
15:48:41.0238 4488 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\drivers\usbuhci.sys
15:48:41.0239 4488 usbuhci - ok
15:48:41.0267 4488 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\System32\Drivers\usbvideo.sys
15:48:41.0269 4488 usbvideo - ok
15:48:41.0309 4488 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
15:48:41.0310 4488 vdrvroot - ok
15:48:41.0344 4488 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
15:48:41.0345 4488 vga - ok
15:48:41.0362 4488 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
15:48:41.0363 4488 VgaSave - ok
15:48:41.0385 4488 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
15:48:41.0388 4488 vhdmp - ok
15:48:41.0406 4488 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
15:48:41.0407 4488 viaide - ok
15:48:41.0431 4488 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
15:48:41.0432 4488 volmgr - ok
15:48:41.0466 4488 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
15:48:41.0470 4488 volmgrx - ok
15:48:41.0493 4488 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
15:48:41.0496 4488 volsnap - ok
15:48:41.0557 4488 vsapint (3a5862d9a4fe4bbb2ffa1700e2b21b9b) C:\Windows\system32\DRIVERS\vsapint.sys
15:48:41.0567 4488 vsapint - ok
15:48:41.0600 4488 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
15:48:41.0603 4488 vsmraid - ok
15:48:41.0622 4488 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
15:48:41.0623 4488 vwifibus - ok
15:48:41.0636 4488 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
15:48:41.0637 4488 vwififlt - ok
15:48:41.0661 4488 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
15:48:41.0662 4488 vwifimp - ok
15:48:41.0688 4488 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
15:48:41.0689 4488 WacomPen - ok
15:48:41.0726 4488 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
15:48:41.0727 4488 WANARP - ok
15:48:41.0731 4488 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
15:48:41.0732 4488 Wanarpv6 - ok
15:48:41.0783 4488 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
15:48:41.0784 4488 Wd - ok
15:48:41.0813 4488 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
15:48:41.0819 4488 Wdf01000 - ok
15:48:41.0859 4488 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
15:48:41.0859 4488 WfpLwf - ok
15:48:41.0876 4488 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
15:48:41.0877 4488 WIMMount - ok
15:48:41.0915 4488 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
15:48:41.0916 4488 WmiAcpi - ok
15:48:41.0935 4488 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
15:48:41.0936 4488 ws2ifsl - ok
15:48:41.0963 4488 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
15:48:41.0964 4488 WudfPf - ok
15:48:41.0976 4488 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
15:48:41.0979 4488 WUDFRd - ok
15:48:42.0008 4488 MBR (0x1B8) (abb46336a5a7d131a2ec864d5170d27b) \Device\Harddisk0\DR0
15:48:42.0333 4488 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
15:48:42.0333 4488 \Device\Harddisk0\DR0 - detected TDSS File System (1)
15:48:42.0346 4488 MBR (0x1B8) (31cfc50fbd443daeec9a5c7ae8da8f6d) \Device\Harddisk1\DR1
15:48:53.0769 4488 \Device\Harddisk1\DR1 - ok
15:48:53.0771 4488 Boot (0x1200) (e663faf80f17b86da26100d329266f56) \Device\Harddisk0\DR0\Partition0
15:48:53.0772 4488 \Device\Harddisk0\DR0\Partition0 - ok
15:48:53.0778 4488 Boot (0x1200) (0b5196fdc9d39793e8dd81c281f9f53f) \Device\Harddisk0\DR0\Partition1
15:48:53.0780 4488 \Device\Harddisk0\DR0\Partition1 - ok
15:48:53.0807 4488 Boot (0x1200) (cc969ee9dc1731a2749b16e166d87a7a) \Device\Harddisk0\DR0\Partition2
15:48:53.0808 4488 \Device\Harddisk0\DR0\Partition2 - ok
15:48:53.0812 4488 Boot (0x1200) (06094edfecfc7d777946e5a649912b7d) \Device\Harddisk1\DR1\Partition0
15:48:53.0813 4488 \Device\Harddisk1\DR1\Partition0 - ok
15:48:53.0815 4488 ============================================================
15:48:53.0815 4488 Scan finished
15:48:53.0815 4488 ============================================================
15:48:53.0824 0596 Detected object count: 1
15:48:53.0824 0596 Actual detected object count: 1
15:48:58.0552 0596 \Device\Harddisk0\DR0\TDLFS - deleted
15:48:58.0552 0596 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete
15:49:02.0060 5732 ============================================================
15:49:02.0060 5732 Scan started
15:49:02.0060 5732 Mode: Manual; TDLFS;
15:49:02.0060 5732 ============================================================
15:49:02.0469 5732 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
15:49:02.0470 5732 1394ohci - ok
15:49:02.0499 5732 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
15:49:02.0501 5732 ACPI - ok
15:49:02.0518 5732 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
15:49:02.0519 5732 AcpiPmi - ok
15:49:02.0534 5732 ACPIService (de7e8d852a806be6091983838bf9697f) C:\Windows\system32\DRIVERS\OSDACPI.SYS
15:49:02.0534 5732 ACPIService - ok
15:49:02.0568 5732 ADIHdAudAddService (0fa60a409e1c8ab9a81901311d15393d) C:\Windows\system32\drivers\ADIHdAud.sys
15:49:02.0571 5732 ADIHdAudAddService - ok
15:49:02.0610 5732 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
15:49:02.0613 5732 adp94xx - ok
15:49:02.0629 5732 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
15:49:02.0631 5732 adpahci - ok
15:49:02.0645 5732 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
15:49:02.0646 5732 adpu320 - ok
15:49:02.0690 5732 AFD (6ef20ddf3172e97d69f596fb90602f29) C:\Windows\system32\drivers\afd.sys
15:49:02.0693 5732 AFD - ok
15:49:02.0709 5732 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
15:49:02.0710 5732 agp440 - ok
15:49:02.0733 5732 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
15:49:02.0733 5732 aliide - ok
15:49:02.0752 5732 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
15:49:02.0753 5732 amdide - ok
15:49:02.0770 5732 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
15:49:02.0770 5732 AmdK8 - ok
15:49:02.0786 5732 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
15:49:02.0786 5732 AmdPPM - ok
15:49:02.0816 5732 amdsata (f747497a0ee5498f79b207f215b3d2d8) C:\Windows\system32\DRIVERS\amdsata.sys
15:49:02.0817 5732 amdsata - ok
15:49:02.0835 5732 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
15:49:02.0836 5732 amdsbs - ok
15:49:02.0851 5732 amdxata (2946d695e158615baaa16248e63c7adb) C:\Windows\system32\DRIVERS\amdxata.sys
15:49:02.0851 5732 amdxata - ok
15:49:02.0877 5732 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
15:49:02.0877 5732 AppID - ok
15:49:02.0898 5732 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
15:49:02.0899 5732 arc - ok
15:49:02.0918 5732 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
15:49:02.0918 5732 arcsas - ok
15:49:02.0939 5732 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
15:49:02.0940 5732 AsyncMac - ok
15:49:02.0955 5732 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
15:49:02.0955 5732 atapi - ok
15:49:03.0082 5732 atikmdag (80793852021864a9ed344843eeba5fdb) C:\Windows\system32\DRIVERS\atikmdag.sys
15:49:03.0113 5732 atikmdag - ok
15:49:03.0133 5732 AtiPcie (7c5d273e29dcc5505469b299c6f29163) C:\Windows\system32\DRIVERS\AtiPcie.sys
15:49:03.0134 5732 AtiPcie - ok
15:49:03.0176 5732 AVerAVF2 (a63b31d668424f7c20d0773769dbbb1e) C:\Windows\system32\DRIVERS\AVerAVF2.sys
15:49:03.0182 5732 AVerAVF2 - ok
15:49:03.0215 5732 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
15:49:03.0217 5732 b06bdrv - ok
15:49:03.0245 5732 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
15:49:03.0246 5732 b57nd60a - ok
15:49:03.0269 5732 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
15:49:03.0269 5732 Beep - ok
15:49:03.0288 5732 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
15:49:03.0289 5732 blbdrive - ok
15:49:03.0321 5732 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
15:49:03.0322 5732 bowser - ok
15:49:03.0338 5732 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:49:03.0338 5732 BrFiltLo - ok
15:49:03.0354 5732 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:49:03.0354 5732 BrFiltUp - ok
15:49:03.0387 5732 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
15:49:03.0388 5732 Brserid - ok
15:49:03.0413 5732 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
15:49:03.0413 5732 BrSerWdm - ok
15:49:03.0421 5732 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
15:49:03.0421 5732 BrUsbMdm - ok
15:49:03.0430 5732 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
15:49:03.0431 5732 BrUsbSer - ok
15:49:03.0461 5732 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
15:49:03.0462 5732 BthEnum - ok
15:49:03.0478 5732 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
15:49:03.0479 5732 BTHMODEM - ok
15:49:03.0505 5732 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
15:49:03.0506 5732 BthPan - ok
15:49:03.0528 5732 BTHPORT (21084ceb85280468c9aca3c805c0f8cf) C:\Windows\System32\Drivers\BTHport.sys
15:49:03.0531 5732 BTHPORT - ok
15:49:03.0550 5732 BTHUSB (8504842634dd144c075b6b0c982ccec4) C:\Windows\System32\Drivers\BTHUSB.sys
15:49:03.0551 5732 BTHUSB - ok
15:49:03.0578 5732 btwaudio (6bcfdc2b5b7f66d484486d4bd4b39a6b) C:\Windows\system32\drivers\btwaudio.sys
15:49:03.0579 5732 btwaudio - ok
15:49:03.0598 5732 btwavdt (82dc8b7c626e526681c1bebed2bc3ff9) C:\Windows\system32\drivers\btwavdt.sys
15:49:03.0599 5732 btwavdt - ok
15:49:03.0630 5732 btwl2cap (6149301dc3f81d6f9667a3fbac410975) C:\Windows\system32\DRIVERS\btwl2cap.sys
15:49:03.0630 5732 btwl2cap - ok
15:49:03.0638 5732 btwrchid (28e105ad3b79f440bf94780f507bf66a) C:\Windows\system32\DRIVERS\btwrchid.sys
15:49:03.0638 5732 btwrchid - ok
15:49:03.0673 5732 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
15:49:03.0674 5732 cdfs - ok
15:49:03.0702 5732 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
15:49:03.0703 5732 cdrom - ok
15:49:03.0712 5732 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
15:49:03.0713 5732 circlass - ok
15:49:03.0748 5732 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
15:49:03.0750 5732 CLFS - ok
15:49:03.0779 5732 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
15:49:03.0779 5732 CmBatt - ok
15:49:03.0797 5732 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
15:49:03.0797 5732 cmdide - ok
15:49:03.0817 5732 CNG (f95fd4cb7da00ba2a63ce9f6b5c053e1) C:\Windows\system32\Drivers\cng.sys
15:49:03.0820 5732 CNG - ok
15:49:03.0827 5732 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
15:49:03.0828 5732 Compbatt - ok
15:49:03.0846 5732 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
15:49:03.0847 5732 CompositeBus - ok
15:49:03.0865 5732 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
15:49:03.0865 5732 crcdisk - ok
15:49:03.0901 5732 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
15:49:03.0901 5732 DfsC - ok
15:49:03.0920 5732 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
15:49:03.0920 5732 discache - ok
15:49:03.0927 5732 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
15:49:03.0928 5732 Disk - ok
15:49:03.0960 5732 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
15:49:03.0961 5732 Dot4 - ok
15:49:03.0971 5732 Dot4Print (85135ad27e79b689335c08167d917cde) C:\Windows\system32\DRIVERS\Dot4Prt.sys
15:49:03.0972 5732 Dot4Print - ok
15:49:03.0984 5732 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
15:49:03.0985 5732 dot4usb - ok
15:49:04.0008 5732 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
15:49:04.0008 5732 drmkaud - ok
15:49:04.0054 5732 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
15:49:04.0059 5732 DXGKrnl - ok
15:49:04.0146 5732 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
15:49:04.0165 5732 ebdrv - ok
15:49:04.0199 5732 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
15:49:04.0201 5732 elxstor - ok
15:49:04.0220 5732 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
15:49:04.0220 5732 ErrDev - ok
15:49:04.0254 5732 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
15:49:04.0255 5732 exfat - ok
15:49:04.0280 5732 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
15:49:04.0282 5732 fastfat - ok
15:49:04.0305 5732 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
15:49:04.0306 5732 fdc - ok
15:49:04.0325 5732 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
15:49:04.0326 5732 FileInfo - ok
15:49:04.0336 5732 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
15:49:04.0336 5732 Filetrace - ok
15:49:04.0352 5732 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
15:49:04.0353 5732 flpydisk - ok
15:49:04.0368 5732 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
15:49:04.0370 5732 FltMgr - ok
15:49:04.0393 5732 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
15:49:04.0394 5732 FsDepends - ok
15:49:04.0423 5732 fssfltr (53dab1791917a72738539ad25c4eed7f) C:\Windows\system32\DRIVERS\fssfltr.sys
15:49:04.0424 5732 fssfltr - ok
15:49:04.0444 5732 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
15:49:04.0444 5732 Fs_Rec - ok
15:49:04.0476 5732 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
15:49:04.0477 5732 fvevol - ok
15:49:04.0500 5732 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
15:49:04.0501 5732 gagp30kx - ok
15:49:04.0528 5732 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:49:04.0529 5732 GEARAspiWDM - ok
15:49:04.0554 5732 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
15:49:04.0554 5732 hcw85cir - ok
15:49:04.0583 5732 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
15:49:04.0585 5732 HdAudAddService - ok
15:49:04.0606 5732 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
15:49:04.0607 5732 HDAudBus - ok
15:49:04.0626 5732 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
15:49:04.0627 5732 HidBatt - ok
15:49:04.0640 5732 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
15:49:04.0641 5732 HidBth - ok
15:49:04.0662 5732 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
15:49:04.0662 5732 HidIr - ok
15:49:04.0671 5732 hidkmdf (d4bfba2eec009e26854fe61110ef509f) C:\Windows\system32\DRIVERS\hidkmdf.sys
15:49:04.0671 5732 hidkmdf - ok
15:49:04.0706 5732 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
15:49:04.0706 5732 HidUsb - ok
15:49:04.0754 5732 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
15:49:04.0755 5732 HpSAMD - ok
15:49:04.0781 5732 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
15:49:04.0785 5732 HTTP - ok
15:49:04.0800 5732 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
15:49:04.0801 5732 hwpolicy - ok
15:49:04.0818 5732 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
15:49:04.0818 5732 i8042prt - ok
15:49:04.0850 5732 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
15:49:04.0852 5732 iaStorV - ok
15:49:04.0873 5732 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
15:49:04.0873 5732 iirsp - ok
15:49:04.0907 5732 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
15:49:04.0907 5732 intelide - ok
15:49:04.0924 5732 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
15:49:04.0925 5732 intelppm - ok
15:49:04.0945 5732 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:49:04.0945 5732 IpFilterDriver - ok
15:49:04.0969 5732 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
15:49:04.0969 5732 IPMIDRV - ok
15:49:04.0990 5732 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
15:49:04.0991 5732 IPNAT - ok
15:49:05.0057 5732 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
15:49:05.0058 5732 IRENUM - ok
15:49:05.0117 5732 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
15:49:05.0117 5732 isapnp - ok
15:49:05.0128 5732 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
15:49:05.0130 5732 iScsiPrt - ok
15:49:05.0153 5732 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
15:49:05.0154 5732 kbdclass - ok
15:49:05.0170 5732 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
15:49:05.0171 5732 kbdhid - ok
15:49:05.0192 5732 KSecDD (e8b6fcc9c83535c67f835d407620bd27) C:\Windows\system32\Drivers\ksecdd.sys
15:49:05.0192 5732 KSecDD - ok
15:49:05.0221 5732 KSecPkg (a8c63880ef6f4d3fec7b616b9c060215) C:\Windows\system32\Drivers\ksecpkg.sys
15:49:05.0222 5732 KSecPkg - ok
15:49:05.0238 5732 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
15:49:05.0238 5732 ksthunk - ok
15:49:05.0262 5732 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
15:49:05.0263 5732 lltdio - ok
15:49:05.0278 5732 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
15:49:05.0278 5732 LSI_FC - ok
15:49:05.0293 5732 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
15:49:05.0294 5732 LSI_SAS - ok
15:49:05.0307 5732 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:49:05.0307 5732 LSI_SAS2 - ok
15:49:05.0324 5732 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:49:05.0325 5732 LSI_SCSI - ok
15:49:05.0356 5732 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
15:49:05.0357 5732 luafv - ok
15:49:05.0390 5732 MBAMProtector (79da94b35371b9e7104460c7693dcb2c) C:\Windows\system32\drivers\mbam.sys
15:49:05.0390 5732 MBAMProtector - ok
15:49:05.0436 5732 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
15:49:05.0436 5732 megasas - ok
15:49:05.0456 5732 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
15:49:05.0458 5732 MegaSR - ok
15:49:05.0479 5732 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
15:49:05.0480 5732 Modem - ok
15:49:05.0498 5732 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
15:49:05.0498 5732 monitor - ok
15:49:05.0511 5732 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
15:49:05.0511 5732 mouclass - ok
15:49:05.0520 5732 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
15:49:05.0520 5732 mouhid - ok
15:49:05.0534 5732 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
15:49:05.0535 5732 mountmgr - ok
15:49:05.0554 5732 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
15:49:05.0555 5732 mpio - ok
15:49:05.0569 5732 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
15:49:05.0569 5732 mpsdrv - ok
15:49:05.0588 5732 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
15:49:05.0589 5732 MRxDAV - ok
15:49:05.0623 5732 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
15:49:05.0624 5732 mrxsmb - ok
15:49:05.0657 5732 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:49:05.0658 5732 mrxsmb10 - ok
15:49:05.0672 5732 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:49:05.0673 5732 mrxsmb20 - ok
15:49:05.0689 5732 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
15:49:05.0689 5732 msahci - ok
15:49:05.0701 5732 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
15:49:05.0702 5732 msdsm - ok
15:49:05.0727 5732 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
15:49:05.0727 5732 Msfs - ok
15:49:05.0744 5732 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
15:49:05.0744 5732 mshidkmdf - ok
15:49:05.0752 5732 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
15:49:05.0752 5732 msisadrv - ok
15:49:05.0778 5732 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
15:49:05.0779 5732 MSKSSRV - ok
15:49:05.0793 5732 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
15:49:05.0794 5732 MSPCLOCK - ok
15:49:05.0807 5732 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
15:49:05.0808 5732 MSPQM - ok
15:49:05.0826 5732 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
15:49:05.0828 5732 MsRPC - ok
15:49:05.0847 5732 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
15:49:05.0848 5732 mssmbios - ok
15:49:05.0864 5732 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
15:49:05.0865 5732 MSTEE - ok
15:49:05.0883 5732 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
15:49:05.0884 5732 MTConfig - ok
15:49:05.0902 5732 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
15:49:05.0902 5732 Mup - ok
15:49:05.0925 5732 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
15:49:05.0927 5732 NativeWifiP - ok
15:49:05.0955 5732 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
15:49:05.0960 5732 NDIS - ok
15:49:05.0974 5732 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
15:49:05.0975 5732 NdisCap - ok
15:49:05.0991 5732 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
15:49:05.0992 5732 NdisTapi - ok
15:49:06.0008 5732 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
15:49:06.0008 5732 Ndisuio - ok
15:49:06.0027 5732 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
15:49:06.0028 5732 NdisWan - ok
15:49:06.0043 5732 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
15:49:06.0043 5732 NDProxy - ok
15:49:06.0057 5732 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
15:49:06.0057 5732 NetBIOS - ok
15:49:06.0078 5732 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
15:49:06.0079 5732 NetBT - ok
15:49:06.0118 5732 netr28x (44d4bd55191624c82a2745296ba42814) C:\Windows\system32\DRIVERS\netr28x.sys
15:49:06.0122 5732 netr28x - ok
15:49:06.0138 5732 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
15:49:06.0139 5732 nfrd960 - ok
15:49:06.0159 5732 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
15:49:06.0159 5732 Npfs - ok
15:49:06.0177 5732 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
15:49:06.0178 5732 nsiproxy - ok
15:49:06.0237 5732 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
15:49:06.0245 5732 Ntfs - ok
15:49:06.0263 5732 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
15:49:06.0264 5732 Null - ok
15:49:06.0288 5732 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
15:49:06.0289 5732 nvraid - ok
15:49:06.0302 5732 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
15:49:06.0303 5732 nvstor - ok
15:49:06.0329 5732 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
15:49:06.0330 5732 nv_agp - ok
15:49:06.0337 5732 NW1950 (1a71763dd0df7ab7b435efa1dde710c6) C:\Windows\system32\DRIVERS\NW1950.sys
15:49:06.0338 5732 NW1950 - ok
15:49:06.0359 5732 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
15:49:06.0360 5732 ohci1394 - ok
15:49:06.0387 5732 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
15:49:06.0388 5732 Parport - ok
15:49:06.0402 5732 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys
15:49:06.0404 5732 partmgr - ok
15:49:06.0420 5732 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
15:49:06.0421 5732 pci - ok
15:49:06.0439 5732 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
15:49:06.0439 5732 pciide - ok
15:49:06.0462 5732 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
15:49:06.0464 5732 pcmcia - ok
15:49:06.0484 5732 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
15:49:06.0484 5732 pcw - ok
15:49:06.0506 5732 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
15:49:06.0509 5732 PEAUTH - ok
15:49:06.0557 5732 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
15:49:06.0557 5732 PptpMiniport - ok
15:49:06.0572 5732 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
15:49:06.0573 5732 Processor - ok
15:49:06.0596 5732 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
15:49:06.0597 5732 Psched - ok
15:49:06.0631 5732 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
15:49:06.0639 5732 ql2300 - ok
15:49:06.0658 5732 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
15:49:06.0659 5732 ql40xx - ok
15:49:06.0673 5732 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
15:49:06.0674 5732 QWAVEdrv - ok
15:49:06.0690 5732 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
15:49:06.0690 5732 RasAcd - ok
15:49:06.0713 5732 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
15:49:06.0714 5732 RasAgileVpn - ok
15:49:06.0729 5732 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
15:49:06.0730 5732 Rasl2tp - ok
15:49:06.0745 5732 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
15:49:06.0746 5732 RasPppoe - ok
15:49:06.0765 5732 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
15:49:06.0766 5732 RasSstp - ok
15:49:06.0787 5732 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
15:49:06.0789 5732 rdbss - ok
15:49:06.0817 5732 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
15:49:06.0817 5732 rdpbus - ok
15:49:06.0835 5732 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
15:49:06.0835 5732 RDPCDD - ok
15:49:06.0848 5732 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
15:49:06.0849 5732 RDPENCDD - ok
15:49:06.0861 5732 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
15:49:06.0861 5732 RDPREFMP - ok
15:49:06.0881 5732 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\Windows\system32\drivers\RDPWD.sys
15:49:06.0883 5732 RDPWD - ok
15:49:06.0904 5732 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
15:49:06.0905 5732 rdyboost - ok
15:49:06.0942 5732 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
15:49:06.0943 5732 RFCOMM - ok
15:49:06.0967 5732 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
15:49:06.0968 5732 rspndr - ok
15:49:06.0984 5732 RTL8167 (91296f0b2653281b2f11e0fce56aa427) C:\Windows\system32\DRIVERS\Rt64win7.sys
15:49:06.0985 5732 RTL8167 - ok
15:49:07.0011 5732 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
15:49:07.0012 5732 sbp2port - ok
15:49:07.0035 5732 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
15:49:07.0035 5732 scfilter - ok
15:49:07.0057 5732 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
15:49:07.0057 5732 secdrv - ok
15:49:07.0079 5732 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
15:49:07.0079 5732 Serenum - ok
15:49:07.0099 5732 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
15:49:07.0100 5732 Serial - ok
15:49:07.0117 5732 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
15:49:07.0118 5732 sermouse - ok
15:49:07.0152 5732 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
15:49:07.0152 5732 sffdisk - ok
15:49:07.0169 5732 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
15:49:07.0170 5732 sffp_mmc - ok
15:49:07.0178 5732 sffp_sd (5588b8c6193eb1522490c122eb94dffa) C:\Windows\system32\DRIVERS\sffp_sd.sys
15:49:07.0178 5732 sffp_sd - ok
15:49:07.0194 5732 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
15:49:07.0194 5732 sfloppy - ok
15:49:07.0218 5732 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:49:07.0218 5732 SiSRaid2 - ok
15:49:07.0239 5732 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
15:49:07.0240 5732 SiSRaid4 - ok
15:49:07.0257 5732 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
15:49:07.0258 5732 Smb - ok
15:49:07.0278 5732 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
15:49:07.0279 5732 spldr - ok
15:49:07.0321 5732 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
15:49:07.0324 5732 srv - ok
15:49:07.0347 5732 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
15:49:07.0349 5732 srv2 - ok
15:49:07.0365 5732 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
15:49:07.0366 5732 srvnet - ok
15:49:07.0390 5732 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
15:49:07.0391 5732 stexstor - ok
15:49:07.0415 5732 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
15:49:07.0415 5732 StillCam - ok
15:49:07.0431 5732 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
15:49:07.0431 5732 swenum - ok
15:49:07.0501 5732 Tcpip (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\drivers\tcpip.sys
15:49:07.0511 5732 Tcpip - ok
15:49:07.0536 5732 TCPIP6 (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\DRIVERS\tcpip.sys
15:49:07.0545 5732 TCPIP6 - ok
15:49:07.0565 5732 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
15:49:07.0565 5732 tcpipreg - ok
15:49:07.0585 5732 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
15:49:07.0585 5732 TDPIPE - ok
15:49:07.0600 5732 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
15:49:07.0600 5732 TDTCP - ok
15:49:07.0619 5732 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
15:49:07.0620 5732 tdx - ok
15:49:07.0633 5732 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
15:49:07.0634 5732 TermDD - ok
15:49:07.0674 5732 tmpreflt (1889f49a828b1cf0e2866cdd325875b0) C:\Windows\system32\DRIVERS\tmpreflt.sys
15:49:07.0674 5732 tmpreflt - ok
15:49:07.0707 5732 tmtdi (21cc12b7f8b44e91d03ead5b17aaf0b2) C:\Windows\system32\DRIVERS\tmtdi.sys
15:49:07.0708 5732 tmtdi - ok
15:49:07.0745 5732 tmxpflt (8b97ba7e28bd39a2bc4a2bb66a83fec0) C:\Windows\system32\DRIVERS\tmxpflt.sys
15:49:07.0747 5732 tmxpflt - ok
15:49:07.0772 5732 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
15:49:07.0773 5732 tssecsrv - ok
15:49:07.0790 5732 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
15:49:07.0792 5732 tunnel - ok
15:49:07.0828 5732 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
15:49:07.0829 5732 uagp35 - ok
15:49:07.0849 5732 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
15:49:07.0851 5732 udfs - ok
15:49:07.0875 5732 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
15:49:07.0876 5732 uliagpkx - ok
15:49:07.0896 5732 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
15:49:07.0897 5732 umbus - ok
15:49:07.0919 5732 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
15:49:07.0919 5732 UmPass - ok
15:49:07.0947 5732 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
15:49:07.0948 5732 usbccgp - ok
15:49:07.0967 5732 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
15:49:07.0968 5732 usbcir - ok
15:49:07.0987 5732 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
15:49:07.0987 5732 usbehci - ok
15:49:08.0019 5732 usbfilter (6648c6d7323a2ce0c4776c36cefbcb14) C:\Windows\system32\DRIVERS\usbfilter.sys
15:49:08.0020 5732 usbfilter - ok
15:49:08.0036 5732 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
15:49:08.0038 5732 usbhub - ok
15:49:08.0054 5732 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\DRIVERS\usbohci.sys
15:49:08.0055 5732 usbohci - ok
15:49:08.0080 5732 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
15:49:08.0081 5732 usbprint - ok
15:49:08.0101 5732 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
15:49:08.0102 5732 usbscan - ok
15:49:08.0131 5732 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:49:08.0131 5732 USBSTOR - ok
15:49:08.0152 5732 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\drivers\usbuhci.sys
15:49:08.0153 5732 usbuhci - ok
15:49:08.0180 5732 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\System32\Drivers\usbvideo.sys
15:49:08.0182 5732 usbvideo - ok
15:49:08.0198 5732 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
15:49:08.0199 5732 vdrvroot - ok
15:49:08.0224 5732 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
15:49:08.0225 5732 vga - ok
15:49:08.0242 5732 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
15:49:08.0243 5732 VgaSave - ok
15:49:08.0266 5732 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
15:49:08.0267 5732 vhdmp - ok
15:49:08.0286 5732 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
15:49:08.0286 5732 viaide - ok
15:49:08.0303 5732 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
15:49:08.0304 5732 volmgr - ok
15:49:08.0322 5732 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
15:49:08.0324 5732 volmgrx - ok
15:49:08.0357 5732 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
15:49:08.0358 5732 volsnap - ok
15:49:08.0421 5732 vsapint (3a5862d9a4fe4bbb2ffa1700e2b21b9b) C:\Windows\system32\DRIVERS\vsapint.sys
15:49:08.0431 5732 vsapint - ok
15:49:08.0448 5732 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
15:49:08.0449 5732 vsmraid - ok
15:49:08.0469 5732 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
15:49:08.0470 5732 vwifibus - ok
15:49:08.0484 5732 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
15:49:08.0484 5732 vwififlt - ok
15:49:08.0501 5732 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
15:49:08.0501 5732 vwifimp - ok
15:49:08.0536 5732 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
15:49:08.0536 5732 WacomPen - ok
15:49:08.0565 5732 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
15:49:08.0566 5732 WANARP - ok
15:49:08.0569 5732 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
15:49:08.0570 5732 Wanarpv6 - ok
15:49:08.0606 5732 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
15:49:08.0606 5732 Wd - ok
15:49:08.0635 5732 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
15:49:08.0638 5732 Wdf01000 - ok
15:49:08.0673 5732 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
15:49:08.0673 5732 WfpLwf - ok
15:49:08.0690 5732 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
15:49:08.0690 5732 WIMMount - ok
15:49:08.0730 5732 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
15:49:08.0730 5732 WmiAcpi - ok
15:49:08.0750 5732 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
15:49:08.0750 5732 ws2ifsl - ok
15:49:08.0777 5732 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
15:49:08.0778 5732 WudfPf - ok
15:49:08.0790 5732 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
15:49:08.0792 5732 WUDFRd - ok
15:49:08.0822 5732 MBR (0x1B8) (abb46336a5a7d131a2ec864d5170d27b) \Device\Harddisk0\DR0
15:49:09.0148 5732 \Device\Harddisk0\DR0 - ok
15:49:09.0159 5732 MBR (0x1B8) (31cfc50fbd443daeec9a5c7ae8da8f6d) \Device\Harddisk1\DR1
15:49:20.0173 5732 \Device\Harddisk1\DR1 - ok
15:49:20.0176 5732 Boot (0x1200) (e663faf80f17b86da26100d329266f56) \Device\Harddisk0\DR0\Partition0
15:49:20.0177 5732 \Device\Harddisk0\DR0\Partition0 - ok
15:49:20.0193 5732 Boot (0x1200) (0b5196fdc9d39793e8dd81c281f9f53f) \Device\Harddisk0\DR0\Partition1
15:49:20.0195 5732 \Device\Harddisk0\DR0\Partition1 - ok
15:49:20.0222 5732 Boot (0x1200) (cc969ee9dc1731a2749b16e166d87a7a) \Device\Harddisk0\DR0\Partition2
15:49:20.0223 5732 \Device\Harddisk0\DR0\Partition2 - ok
15:49:20.0227 5732 Boot (0x1200) (06094edfecfc7d777946e5a649912b7d) \Device\Harddisk1\DR1\Partition0
15:49:20.0228 5732 \Device\Harddisk1\DR1\Partition0 - ok
15:49:20.0229 5732 ============================================================
15:49:20.0229 5732 Scan finished
15:49:20.0229 5732 ============================================================
15:49:20.0238 0572 Detected object count: 0
15:49:20.0238 0572 Actual detected object count: 0
15:49:22.0537 4384 Deinitialize success


MBR

MBRCheck, version 1.2.3
© 2010, AD

Command-line:
Windows Version: Windows 7 Home Premium Edition
Windows Information: (build 7600), 64-bit
Base Board Manufacturer: PEGATRON CORPORATION
BIOS Manufacturer: American Megatrends Inc.
System Manufacturer: HP-Pavilion
System Product Name: NY537AA-ABA 300-1025
Logical Drives Mask: 0x000000fc

Kernel Drivers (total 212):
0x02C1B000 \SystemRoot\system32\ntoskrnl.exe
0x031F7000 \SystemRoot\system32\hal.dll
0x00BC4000 \SystemRoot\system32\kdcom.dll
0x00C9F000 \SystemRoot\system32\mcupdate_AuthenticAMD.dll
0x00CAC000 \SystemRoot\system32\PSHED.dll
0x00CC0000 \SystemRoot\system32\CLFS.SYS
0x00D1E000 \SystemRoot\system32\CI.dll
0x00ED3000 \SystemRoot\system32\drivers\Wdf01000.sys
0x00F77000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x00F86000 \SystemRoot\system32\DRIVERS\ACPI.sys
0x00FDD000 \SystemRoot\system32\DRIVERS\WMILIB.SYS
0x00FE6000 \SystemRoot\system32\DRIVERS\msisadrv.sys
0x00E00000 \SystemRoot\system32\DRIVERS\pci.sys
0x00E33000 \SystemRoot\system32\DRIVERS\vdrvroot.sys
0x00E40000 \SystemRoot\System32\drivers\partmgr.sys
0x00E55000 \SystemRoot\system32\DRIVERS\volmgr.sys
0x00E6A000 \SystemRoot\System32\drivers\volmgrx.sys
0x00DDE000 \SystemRoot\System32\drivers\mountmgr.sys
0x00C00000 \SystemRoot\system32\DRIVERS\amdsata.sys
0x00C14000 \SystemRoot\system32\DRIVERS\storport.sys
0x00EC6000 \SystemRoot\system32\DRIVERS\amdxata.sys
0x010B5000 \SystemRoot\system32\drivers\fltmgr.sys
0x01101000 \SystemRoot\system32\drivers\fileinfo.sys
0x0124C000 \SystemRoot\System32\Drivers\Ntfs.sys
0x01115000 \SystemRoot\System32\Drivers\msrpc.sys
0x01200000 \SystemRoot\System32\Drivers\ksecdd.sys
0x01173000 \SystemRoot\System32\Drivers\cng.sys
0x0121A000 \SystemRoot\System32\drivers\pcw.sys
0x0122B000 \SystemRoot\System32\Drivers\Fs_Rec.sys
0x0140B000 \SystemRoot\system32\drivers\ndis.sys
0x014FD000 \SystemRoot\system32\drivers\NETIO.SYS
0x0155D000 \SystemRoot\System32\Drivers\ksecpkg.sys
0x01602000 \SystemRoot\System32\drivers\tcpip.sys
0x01588000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x01000000 \SystemRoot\system32\DRIVERS\volsnap.sys
0x015D2000 \SystemRoot\System32\Drivers\spldr.sys
0x0104C000 \SystemRoot\System32\drivers\rdyboost.sys
0x015DA000 \SystemRoot\System32\Drivers\mup.sys
0x015EC000 \SystemRoot\System32\drivers\hwpolicy.sys
0x018A8000 \SystemRoot\System32\DRIVERS\fvevol.sys
0x018E2000 \SystemRoot\system32\DRIVERS\disk.sys
0x018F8000 \SystemRoot\system32\DRIVERS\CLASSPNP.SYS
0x01928000 \SystemRoot\system32\DRIVERS\AtiPcie.sys
0x0196F000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x01999000 \SystemRoot\System32\Drivers\Null.SYS
0x019A2000 \SystemRoot\System32\Drivers\Beep.SYS
0x019A9000 \SystemRoot\System32\drivers\vga.sys
0x019B7000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x019DC000 \SystemRoot\System32\drivers\watchdog.sys
0x019EC000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x019F5000 \SystemRoot\system32\drivers\rdpencdd.sys
0x01800000 \SystemRoot\system32\drivers\rdprefmp.sys
0x01809000 \SystemRoot\System32\Drivers\Msfs.SYS
0x01814000 \SystemRoot\System32\Drivers\Npfs.SYS
0x01825000 \SystemRoot\system32\DRIVERS\tdx.sys
0x01843000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x02C35000 \SystemRoot\system32\drivers\afd.sys
0x02CBE000 \SystemRoot\System32\DRIVERS\netbt.sys
0x02D03000 \SystemRoot\system32\DRIVERS\wfplwf.sys
0x02D0C000 \SystemRoot\system32\DRIVERS\pacer.sys
0x02D32000 \SystemRoot\system32\DRIVERS\vwififlt.sys
0x02D48000 \SystemRoot\system32\DRIVERS\netbios.sys
0x02D57000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x02D72000 \SystemRoot\system32\DRIVERS\tmtdi.sys
0x02D8F000 \SystemRoot\system32\DRIVERS\termdd.sys
0x02DA3000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x02DF4000 \SystemRoot\system32\drivers\nsiproxy.sys
0x02C00000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x02C0B000 \SystemRoot\System32\drivers\discache.sys
0x01850000 \SystemRoot\System32\Drivers\dfsc.sys
0x02C1A000 \SystemRoot\system32\DRIVERS\blbdrive.sys
0x0186E000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x01235000 \SystemRoot\system32\DRIVERS\amdppm.sys
0x03AA5000 \SystemRoot\system32\DRIVERS\atikmdag.sys
0x040BB000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x041AF000 \SystemRoot\System32\drivers\dxgmms1.sys
0x0422C000 \SystemRoot\system32\DRIVERS\AVerAVF2.sys
0x04325000 \SystemRoot\system32\DRIVERS\ks.sys
0x04368000 \SystemRoot\system32\DRIVERS\BdaSup.SYS
0x0436C000 \SystemRoot\system32\drivers\ksthunk.sys
0x044FE000 \SystemRoot\system32\DRIVERS\netr28x.sys
0x045B1000 \SystemRoot\system32\DRIVERS\vwifibus.sys
0x045BE000 \SystemRoot\system32\DRIVERS\Rt64win7.sys
0x04400000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
0x0440D000 \SystemRoot\system32\DRIVERS\usbohci.sys
0x04418000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x0446E000 \SystemRoot\system32\DRIVERS\usbfilter.sys
0x0447A000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x0448B000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x044AF000 \SystemRoot\system32\DRIVERS\OSDACPI.SYS
0x044B7000 \SystemRoot\system32\DRIVERS\CompositeBus.sys
0x044C7000 \SystemRoot\system32\DRIVERS\AgileVpn.sys
0x04372000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x044DD000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x04396000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x043C5000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x04200000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x043E0000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x044E9000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x03A00000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x044F8000 \SystemRoot\system32\DRIVERS\swenum.sys
0x03A0F000 \SystemRoot\system32\DRIVERS\circlass.sys
0x03A21000 \SystemRoot\system32\DRIVERS\umbus.sys
0x03A33000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x03A8D000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x05A5C000 \SystemRoot\system32\drivers\ADIHdAud.sys
0x05ADC000 \SystemRoot\system32\drivers\portcls.sys
0x05B19000 \SystemRoot\system32\drivers\drmk.sys
0x00090000 \SystemRoot\System32\win32k.sys
0x05B3B000 \SystemRoot\System32\drivers\Dxapi.sys
0x05B47000 \SystemRoot\system32\DRIVERS\monitor.sys
0x00540000 \SystemRoot\System32\TSDDD.dll
0x00630000 \SystemRoot\System32\cdd.dll
0x05B55000 \SystemRoot\System32\Drivers\crashdmp.sys
0x05B63000 \SystemRoot\System32\Drivers\dump_diskdump.sys
0x05B6D000 \SystemRoot\System32\Drivers\dump_amdsata.sys
0x05B81000 \SystemRoot\System32\Drivers\dump_dumpfve.sys
0x05B94000 \SystemRoot\system32\DRIVERS\USBSTOR.SYS
0x05BAF000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x008B0000 \SystemRoot\System32\ATMFD.DLL
0x05BB1000 \SystemRoot\system32\drivers\luafv.sys
0x05BD4000 \SystemRoot\system32\DRIVERS\tmpreflt.sys
0x02602000 \SystemRoot\system32\DRIVERS\vsapint.sys
0x0287D000 \SystemRoot\system32\DRIVERS\tmxpflt.sys
0x028E3000 \SystemRoot\system32\drivers\WudfPf.sys
0x02904000 \SystemRoot\system32\DRIVERS\lltdio.sys
0x02919000 \SystemRoot\system32\DRIVERS\nwifi.sys
0x0296C000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0x0297F000 \SystemRoot\system32\DRIVERS\rspndr.sys
0x0389D000 \SystemRoot\system32\drivers\HTTP.sys
0x03965000 \SystemRoot\system32\DRIVERS\bowser.sys
0x03983000 \SystemRoot\System32\drivers\mpsdrv.sys
0x0399B000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0x03800000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0x0384E000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0x060DE000 \SystemRoot\system32\drivers\peauth.sys
0x06184000 \SystemRoot\System32\Drivers\secdrv.SYS
0x0618F000 \SystemRoot\System32\DRIVERS\srvnet.sys
0x061BC000 \SystemRoot\System32\drivers\tcpipreg.sys
0x06000000 \SystemRoot\System32\DRIVERS\srv2.sys
0x06658000 \SystemRoot\System32\DRIVERS\srv.sys
0x066ED000 \SystemRoot\system32\DRIVERS\vwifimp.sys
0x066F7000 \SystemRoot\system32\DRIVERS\usbccgp.sys
0x06714000 \SystemRoot\System32\Drivers\BTHUSB.sys
0x0672C000 \SystemRoot\System32\Drivers\bthport.sys
0x067B8000 \SystemRoot\system32\DRIVERS\usbcir.sys
0x067D7000 \SystemRoot\system32\DRIVERS\NW1950.sys
0x07256000 \SystemRoot\system32\DRIVERS\NWTransLib.sys
0x07AC5000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0x07ACE000 \SystemRoot\System32\drivers\mshidkmdf.sys
0x07AD6000 \SystemRoot\System32\drivers\HIDCLASS.SYS
0x07AEF000 \SystemRoot\system32\DRIVERS\hidusb.sys
0x07AFD000 \SystemRoot\System32\Drivers\usbvideo.sys
0x07B2B000 \SystemRoot\system32\DRIVERS\usbscan.sys
0x07B3C000 \SystemRoot\system32\DRIVERS\usbprint.sys
0x07B48000 \SystemRoot\system32\DRIVERS\dot4usb.sys
0x07B58000 \SystemRoot\system32\DRIVERS\Dot4.sys
0x07B80000 \SystemRoot\system32\DRIVERS\MTConfig.sys
0x07B8A000 \SystemRoot\system32\DRIVERS\mouhid.sys
0x07B97000 \SystemRoot\system32\DRIVERS\kbdhid.sys
0x07BA5000 \SystemRoot\system32\DRIVERS\Dot4Prt.sys
0x07BAF000 \SystemRoot\system32\DRIVERS\rfcomm.sys
0x07BDB000 \SystemRoot\system32\drivers\BthEnum.sys
0x07200000 \SystemRoot\system32\DRIVERS\bthpan.sys
0x02800000 \SystemRoot\system32\drivers\btwavdt.sys
0x06AA0000 \SystemRoot\system32\drivers\btwaudio.sys
0x06B26000 \SystemRoot\system32\DRIVERS\btwl2cap.sys
0x06B32000 \SystemRoot\system32\DRIVERS\btwrchid.sys
0x06B36000 \SystemRoot\system32\DRIVERS\hidir.sys
0x06B47000 \SystemRoot\System32\Drivers\fastfat.SYS
0x06B7D000 \SystemRoot\system32\DRIVERS\WUDFRd.sys
0x06BAE000 \??\C:\Windows\system32\drivers\mbam.sys
0x76D00000 \Windows\System32\ntdll.dll
0x475B0000 \Windows\System32\smss.exe
0xFF020000 \Windows\System32\apisetschema.dll
0xFFF10000 \Windows\System32\autochk.exe
0xFEEE0000 \Windows\System32\rpcrt4.dll
0x76ED0000 \Windows\System32\psapi.dll
0xFEEC0000 \Windows\System32\imagehlp.dll
0xFEEA0000 \Windows\System32\sechost.dll
0xFEE20000 \Windows\System32\difxapi.dll
0x76EC0000 \Windows\System32\normaliz.dll
0x76C00000 \Windows\System32\user32.dll
0xFEDB0000 \Windows\System32\gdi32.dll
0xFEC30000 \Windows\System32\urlmon.dll
0xFEB00000 \Windows\System32\wininet.dll
0xFE9F0000 \Windows\System32\msctf.dll
0xFE810000 \Windows\System32\setupapi.dll
0x76AE0000 \Windows\System32\kernel32.dll
0xFE770000 \Windows\System32\comdlg32.dll
0xFE510000 \Windows\System32\iertutil.dll
0xFE490000 \Windows\System32\shlwapi.dll
0xFE480000 \Windows\System32\lpk.dll
0xFE430000 \Windows\System32\Wldap32.dll
0xFE390000 \Windows\System32\msvcrt.dll
0xFE340000 \Windows\System32\ws2_32.dll
0xFE330000 \Windows\System32\nsi.dll
0xFE290000 \Windows\System32\clbcatq.dll
0xFE260000 \Windows\System32\imm32.dll
0xFE180000 \Windows\System32\oleaut32.dll
0xFE0B0000 \Windows\System32\usp10.dll
0xFD320000 \Windows\System32\shell32.dll
0xFD110000 \Windows\System32\ole32.dll
0xFD030000 \Windows\System32\advapi32.dll
0xFD010000 \Windows\System32\devobj.dll
0xFCF70000 \Windows\System32\comctl32.dll
0xFCF00000 \Windows\System32\KernelBase.dll
0xFCD90000 \Windows\System32\crypt32.dll
0xFCD50000 \Windows\System32\cfgmgr32.dll
0xFCD10000 \Windows\System32\wintrust.dll
0xFCD00000 \Windows\System32\msasn1.dll
0x76EB0000 \Windows\SysWOW64\normaliz.dll

Processes (total 86):
0 System Idle Process
4 System
264 C:\Windows\System32\smss.exe
356 csrss.exe
428 C:\Windows\System32\wininit.exe
460 csrss.exe
492 C:\Windows\System32\services.exe
508 C:\Windows\System32\lsass.exe
516 C:\Windows\System32\lsm.exe
624 C:\Windows\System32\svchost.exe
728 C:\Windows\System32\svchost.exe
764 C:\Windows\System32\atiesrxx.exe
820 C:\Windows\System32\winlogon.exe
896 C:\Windows\System32\svchost.exe
928 C:\Windows\System32\svchost.exe
972 C:\Windows\System32\svchost.exe
236 C:\Windows\System32\audiodg.exe
464 C:\Windows\System32\svchost.exe
1096 C:\Windows\System32\svchost.exe
1220 C:\Windows\System32\spoolsv.exe
1248 C:\Windows\System32\svchost.exe
1324 C:\Windows\System32\AEADISRV.EXE
1380 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
1432 C:\Program Files\Bonjour\mDNSResponder.exe
1452 C:\PROGRA~2\BRINGM~2\bar\2.bin\1cbarsvc.exe
1476 C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
1496 C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\GCalService.exe
1576 C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
1624 C:\Windows\SysWOW64\svchost.exe
1656 C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
1680 C:\Windows\System32\svchost.exe
1728 C:\Windows\System32\svchost.exe
1760 C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
1864 C:\Windows\System32\svchost.exe
2304 C:\Windows\System32\atieclxx.exe
2336 C:\Windows\System32\SearchIndexer.exe
2360 C:\Windows\System32\svchost.exe
2408 C:\Windows\System32\wisptis.exe
2460 C:\Windows\System32\svchost.exe
2148 C:\Windows\System32\dwm.exe
2380 C:\Windows\explorer.exe
3012 C:\Windows\System32\taskeng.exe
3044 C:\Windows\System32\wisptis.exe
2272 C:\Program Files\Common Files\Microsoft Shared\ink\TabTip.exe
2728 C:\Program Files (x86)\Common Files\microsoft shared\ink\TabTip32.exe
3284 C:\Program Files (x86)\Analog Devices\SoundMAX\SoundMAX.exe
3320 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
3556 C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\HPTouchSmartSyncCalReminderApp.exe
3788 C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
3812 C:\Program Files (x86)\hp\Digital Imaging\bin\hpqtra08.exe
3928 WUDFHost.exe
3136 C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
3704 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
3744 C:\Program Files (x86)\Hewlett-Packard\HP Desktop Keyboard\HPKEYBOARDx.EXE
2132 C:\Program Files (x86)\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe
2236 C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
1192 C:\Program Files (x86)\Hewlett-Packard\Buttons & OSDs control application gen3\FastUserSwitching.exe
880 C:\Program Files (x86)\hp\HP Software Update\hpwuschd2.exe
3904 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
2196 C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
4024 C:\Program Files (x86)\BringMeSports_1c\bar\2.bin\1cbrmon.exe
4084 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
3176 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
4088 C:\Program Files (x86)\iTunes\iTunesHelper.exe
3908 C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
3532 C:\Program Files\iPod\bin\iPodService.exe
4240 C:\Windows\System32\svchost.exe
4324 C:\Program Files (x86)\hp\Digital Imaging\bin\hpqste08.exe
4372 C:\Program Files (x86)\hp\Digital Imaging\bin\hpqbam08.exe
4460 C:\Program Files (x86)\Hewlett-Packard\Buttons & OSDs control application gen3\JAN2OSD.exe
4508 C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
4516 C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
4768 C:\Program Files (x86)\hp\Digital Imaging\bin\hpqgpc01.exe
4948 C:\Program Files (x86)\Hewlett-Packard\HP Desktop Keyboard\Keystatus.exe
4988 WmiPrvSE.exe
5004 C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
5384 C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
3168 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
5808 C:\Windows\System32\wuauclt.exe
304 C:\Program Files (x86)\Mozilla Firefox\firefox.exe
3796 C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
3668 C:\Windows\System32\SearchProtocolHost.exe
5312 C:\Windows\System32\SearchFilterHost.exe
5448 C:\Users\Lynn White\Downloads\MBRCheck.exe
5500 C:\Windows\System32\conhost.exe
5836 C:\Windows\System32\dllhost.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`06500000 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000091`bfc00000 (NTFS)
\\.\G: --> \\.\PhysicalDrive1 at offset 0x00000000`00007e00 (FAT32)

PhysicalDrive0 Model Number: SAMSUNGHD642JJ, Rev: 1AA01117
PhysicalDrive1 Model Number: WD5000AAV External, Rev: 1.65

Size Device Name MBR Status
--------------------------------------------
596 GB \\.\PhysicalDrive0 Unknown MBR code
SHA1: E192480E4179676CCFC1D7FD60E91F2A4ECA7CB4
465 GB \\.\PhysicalDrive1 RE: Unknown MBR code
SHA1: B5ECB466A547B40E0B7B1A3D883A2B1536B2D993


Found non-standard or infected MBR.
Enter 'Y' and hit ENTER for more options, or 'N' to exit:

Done!

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:03 PM

Posted 18 February 2012 - 07:23 AM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Post the clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#9 LWhite326

LWhite326
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:12:03 PM

Posted 19 February 2012 - 09:03 PM

Alright, I did both scans. Malwarebytes came up with a detection of SVChost.exe as I stated at the beginning of the thread.


Malwarebytes Anti-Malware (Trial) 1.60.1.1000
www.malwarebytes.org

Database version: v2012.02.19.04

Windows 7 x64 NTFS
Internet Explorer 8.0.7600.16385
Lynn White :: LYNNWHITE-PC [administrator]

Protection: Enabled

2/19/2012 3:14:37 PM
mbam-log-2012-02-19 (15-14-37).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 426800
Time elapsed: 57 minute(s), 34 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\Windows\svchost.exe (Trojan.Agent) -> Quarantined and deleted successfully.

(end)







MiniToolBox by Farbar Version: 18-01-2012
Ran by Lynn White (administrator) on 19-02-2012 at 15:15:55
Microsoft Windows 7 Home Premium (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

802.11n Wireless LAN Card = Wireless Network Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : LynnWhite-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 00-26-82-21-B5-A2
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : 00-24-7E-FB-C0-53
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 802.11n Wireless LAN Card
Physical Address. . . . . . . . . : 00-26-82-21-B5-A3
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::487d:fc49:259f:ac17%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.135(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Sunday, February 19, 2012 3:13:02 PM
Lease Expires . . . . . . . . . . : Monday, February 20, 2012 3:13:02 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 201336450
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-4F-AA-D3-90-E6-BA-14-99-20
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : 123
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 90-E6-BA-14-99-20
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{25D81EBF-1A16-453A-9E33-FEE822589865}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:1c51:f6c:5240:5880(Preferred)
Link-local IPv6 Address . . . . . : fe80::1c51:f6c:5240:5880%16(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: DD-WRT
Address: 192.168.1.1

Name: google.com
Addresses: 74.125.159.100
74.125.159.101
74.125.159.102
74.125.159.113
74.125.159.138
74.125.159.139


Pinging google.com [74.125.159.139] with 32 bytes of data:
Reply from 74.125.159.139: bytes=32 time=19ms TTL=53
Reply from 74.125.159.139: bytes=32 time=19ms TTL=53

Ping statistics for 74.125.159.139:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 19ms, Maximum = 19ms, Average = 19ms
Server: DD-WRT
Address: 192.168.1.1

Name: yahoo.com
Addresses: 209.191.122.70
98.139.127.62
98.139.183.24


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=117ms TTL=45
Reply from 98.139.183.24: bytes=32 time=70ms TTL=45

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 70ms, Maximum = 117ms, Average = 93ms
Server: DD-WRT
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=6ms TTL=128
Reply from 127.0.0.1: bytes=32 time=1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 1ms, Maximum = 6ms, Average = 3ms
===========================================================================
Interface List
15...00 26 82 21 b5 a2 ......Microsoft Virtual WiFi Miniport Adapter
13...00 24 7e fb c0 53 ......Bluetooth Device (Personal Area Network)
12...00 26 82 21 b5 a3 ......802.11n Wireless LAN Card
11...90 e6 ba 14 99 20 ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
16...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.135 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.135 281
192.168.1.135 255.255.255.255 On-link 192.168.1.135 281
192.168.1.255 255.255.255.255 On-link 192.168.1.135 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.135 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.135 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
16 58 ::/0 On-link
1 306 ::1/128 On-link
16 58 2001::/32 On-link
16 306 2001:0:4137:9e76:1c51:f6c:5240:5880/128
On-link
12 281 fe80::/64 On-link
16 306 fe80::/64 On-link
16 306 fe80::1c51:f6c:5240:5880/128
On-link
12 281 fe80::487d:fc49:259f:ac17/128
On-link
1 306 ff00::/8 On-link
16 306 ff00::/8 On-link
12 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [51712] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [35840] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70144] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [46592] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (02/17/2012 09:02:14 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (02/17/2012 06:09:20 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (02/17/2012 06:09:17 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (02/17/2012 03:50:31 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (02/17/2012 03:50:28 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (02/16/2012 11:26:58 PM) (Source: Microsoft-Windows-LoadPerf) (User: SYSTEM)SYSTEM
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (02/16/2012 11:26:58 PM) (Source: Microsoft-Windows-LoadPerf) (User: SYSTEM)SYSTEM
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (02/16/2012 11:25:41 PM) (Source: Microsoft-Windows-LoadPerf) (User: SYSTEM)SYSTEM
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (02/16/2012 11:25:41 PM) (Source: Microsoft-Windows-LoadPerf) (User: SYSTEM)SYSTEM
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (02/16/2012 00:04:06 PM) (Source: Microsoft-Windows-LoadPerf) (User: SYSTEM)SYSTEM
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.


System errors:
=============
Error: (02/04/2012 03:14:29 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk3\DR5.

Error: (02/01/2012 08:48:59 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk3\DR5.

Error: (02/01/2012 08:17:39 PM) (Source: Server) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{25D81EBF-1A16-453A-9E33-FEE822589865} because another computer on the network has the same name. The server could not start.

Error: (01/15/2012 01:41:04 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Error Reporting Service service to connect.

Error: (01/08/2012 08:43:33 AM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk2\DR4.

Error: (01/08/2012 08:43:33 AM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk2\DR4.

Error: (01/08/2012 08:43:21 AM) (Source: Service Control Manager) (User: )
Description: The Print Spooler service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (12/29/2011 00:42:18 AM) (Source: volsnap) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

Error: (12/28/2011 07:17:30 PM) (Source: DCOM) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}

Error: (12/28/2011 05:10:01 PM) (Source: DCOM) (User: )
Description: 1084ShellHWDetection{DD522ACC-F821-461A-A407-50B198B896DC}


Microsoft Office Sessions:
=========================
Error: (02/17/2012 09:02:14 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Users\Lynn White\Downloads\esetsmartinstaller_enu.exe

Error: (02/17/2012 06:09:20 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Users\Lynn White\Downloads\esetsmartinstaller_enu.exe

Error: (02/17/2012 06:09:17 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Users\Lynn White\Downloads\esetsmartinstaller_enu.exe

Error: (02/17/2012 03:50:31 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Users\Lynn White\Downloads\esetsmartinstaller_enu.exe

Error: (02/17/2012 03:50:28 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestC:\Users\Lynn White\Downloads\esetsmartinstaller_enu.exe

Error: (02/16/2012 11:26:58 PM) (Source: Microsoft-Windows-LoadPerf)(User: SYSTEM)SYSTEM
Description: WmiApRplWmiApRpl8F20300004D070000

Error: (02/16/2012 11:26:58 PM) (Source: Microsoft-Windows-LoadPerf)(User: SYSTEM)SYSTEM
Description: Performance1637070000000000000000000009030000

Error: (02/16/2012 11:25:41 PM) (Source: Microsoft-Windows-LoadPerf)(User: SYSTEM)SYSTEM
Description: WmiApRplWmiApRpl8F20300004D070000

Error: (02/16/2012 11:25:41 PM) (Source: Microsoft-Windows-LoadPerf)(User: SYSTEM)SYSTEM
Description: Performance1637070000000000000000000009030000

Error: (02/16/2012 00:04:06 PM) (Source: Microsoft-Windows-LoadPerf)(User: SYSTEM)SYSTEM
Description: WmiApRplWmiApRpl8F20300004D070000


=========================== Installed Programs ============================

µTorrent (Version: 1.8.5)
64 Bit HP CIO Components Installer (Version: 7.2.8)
Activate Norton Online Backup (Version: 1.1.20.0)
Adobe Flash Player 10 ActiveX (Version: 10.0.32.18)
Adobe Flash Player 10 Plugin (Version: 10.0.42.34)
Adobe Reader 9.4.7 (Version: 9.4.7)
AMD USB Filter Driver (Version: 1.0.11.86)
Apple Application Support (Version: 2.1.6)
Apple Mobile Device Support (Version: 4.0.0.97)
Apple Software Update (Version: 2.1.3.127)
ATI Catalyst Install Manager (Version: 3.0.732.0)
Bejeweled 2 Deluxe 1.0
Bluetooth by hp (Version: 6.2.0.9600)
Bonjour (Version: 3.0.0.10)
BringMeSports
BufferChm (Version: 130.0.331.000)
Buttons & OSDs control application gen3 (Version: 1.0.0.5)
C4700 (Version: 130.0.373.000)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2009.0614.2131.36800)
Catalyst Control Center Graphics Full Existing (Version: 2009.0614.2131.36800)
Catalyst Control Center Graphics Full New (Version: 2009.0614.2131.36800)
Catalyst Control Center Graphics Light (Version: 2009.0614.2131.36800)
Catalyst Control Center Graphics Previews Vista (Version: 2009.0614.2131.36800)
Catalyst Control Center InstallProxy (Version: 2009.0614.2131.36800)
Catalyst Control Center Localization All (Version: 2009.0614.2131.36800)
ccc-core-static (Version: 2009.0614.2131.36800)
ccc-utility64 (Version: 2009.0614.2131.36800)
CCC Help Chinese Standard (Version: 2009.0614.2130.36800)
CCC Help Chinese Traditional (Version: 2009.0614.2130.36800)
CCC Help Czech (Version: 2009.0614.2130.36800)
CCC Help Danish (Version: 2009.0614.2130.36800)
CCC Help Dutch (Version: 2009.0614.2130.36800)
CCC Help English (Version: 2009.0614.2130.36800)
CCC Help Finnish (Version: 2009.0614.2130.36800)
CCC Help French (Version: 2009.0614.2130.36800)
CCC Help German (Version: 2009.0614.2130.36800)
CCC Help Greek (Version: 2009.0614.2130.36800)
CCC Help Hungarian (Version: 2009.0614.2130.36800)
CCC Help Italian (Version: 2009.0614.2130.36800)
CCC Help Japanese (Version: 2009.0614.2130.36800)
CCC Help Korean (Version: 2009.0614.2130.36800)
CCC Help Norwegian (Version: 2009.0614.2130.36800)
CCC Help Polish (Version: 2009.0614.2130.36800)
CCC Help Portuguese (Version: 2009.0614.2130.36800)
CCC Help Russian (Version: 2009.0614.2130.36800)
CCC Help Spanish (Version: 2009.0614.2130.36800)
CCC Help Swedish (Version: 2009.0614.2130.36800)
CCC Help Thai (Version: 2009.0614.2130.36800)
CCC Help Turkish (Version: 2009.0614.2130.36800)
CDBurnerXP (Version: 4.4.0.2838)
Combat Arms
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Coupon Printer for Windows (Version: 5.0.0.1)
CyberLink DVD Suite Deluxe (Version: 6.0.3101)
Destinations (Version: 130.0.0.0)
DeviceDiscovery (Version: 130.0.372.000)
DirectX for Managed Code Update (Summer 2004) (Version: 9.02.2904)
DivX Converter (Version: 7.1.0)
DivX Player (Version: 7.2.0)
DivX Plus DirectShow Filters
DivX Setup (Version: 1.0.2.22)
DivX Version Checker (Version: 7.1.0.9)
Dogpile Bundle Toolbar (Version: 1.514)
ESET Online Scanner v3
Full Tilt Poker (Version: 4.40.9.WIN.FullTilt.COM)
Full Tilt Poker.Net (Version: 4.40.9.WIN.FullTilt.NET)
Google Chrome (Version: 17.0.963.56)
Google Update Helper (Version: 1.3.21.99)
GPBaseService2 (Version: 130.0.371.000)
Hardware Diagnostic Tools (Version: 6.0.5205.31)
Hewlett-Packard ACLM.NET v1.1.2.0 (Version: 1.00.0000)
HP Advisor (Version: 3.2.8946.3086)
HP Customer Experience Enhancements (Version: 6.0.1.7)
HP Customer Participation Program 13.0 (Version: 13.0)
HP Desktop Keyboard (Version: 1.0.0.8)
HP Games (Version: 1.0.0.71)
HP Imaging Device Functions 13.0 (Version: 13.0)
HP MediaSmart DVD (Version: 3.0.3123)
HP Odometer (Version: 2.10.0000)
HP Photosmart C4700 All-In-One Driver Software 13.0 Rel .6 (Version: 13.0)
HP Print Projects 1.0 (Version: 1.0)
HP Remote Solution (Version: 1.1.9.0)
HP Setup (Version: 1.2.3220.3079)
HP Smart Web Printing 4.5 (Version: 4.5)
HP Solution Center 13.0 (Version: 13.0)
HP Support Assistant (Version: 6.1.12.1)
HP Support Information (Version: 10.1.0002)
HP TouchSmart (Version: 3.0.35.0)
HP TouchSmart Browser (Version: 3.0.0007)
HP TouchSmart Calendar (Version: 3.0.3476.32189)
HP TouchSmart Canvas (Version: 1.0.3492.26962)
HP TouchSmart Clock (Version: 3.0.3441.42630)
HP TouchSmart Link (Version: 1.0.3477.32043)
HP TouchSmart Live TV (Version: 3.0.1924)
HP TouchSmart Movie Themes (Version: 3.0.3102)
HP TouchSmart Music/Photo/Video (Version: 3.0.3205)
HP TouchSmart Netflix (Version: 1.0.0.29)
HP TouchSmart Notes (Version: 3.0.3462.28879)
HP TouchSmart RecipeBox (Version: 1.0.3507.27745)
HP TouchSmart RSS (Version: 3.0.0005)
HP TouchSmart Tutorials (Version: 3.0.5.2)
HP TouchSmart Twitter (Version: 1.0.3485.33023)
HP TouchSmart Weather (Version: 3.0.0.1)
HP TouchSmart Webcam (Version: 3.0.1903)
HP Update (Version: 5.001.000.014)
HPDiagnosticAlert (Version: 1.00.0000)
HPPhotoGadget (Version: 130.0.282.000)
hpPrintProjects (Version: 130.0.303.000)
HPProductAssistant (Version: 130.0.371.000)
HPSSupply (Version: 130.0.371.000)
hpWLPGInstaller (Version: 130.0.303.000)
Hulu Desktop (Version: 0.9.7)
iTunes (Version: 10.5.2.11)
Java Auto Updater (Version: 2.0.5.1)
Java™ 6 Update 26 (Version: 6.0.260)
Junk Mail filter update (Version: 14.0.8089.726)
LabelPrint (Version: 2.5.1901)
LightScribe System Software (Version: 1.18.5.1)
LivingPlay
Malwarebytes Anti-Malware version 1.60.1.1000 (Version: 1.60.1.1000)
MarketResearch (Version: 130.0.374.000)
MediaGet2 version 2.1.494.0 (Version: 2.1.494.0)
MediaGet2 version 2.1.780.0 (Version: 2.1.780.0)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Live Search Toolbar (Version: 3.0.560.0)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Search Enhancement Pack (Version: 1.3.59.0)
Microsoft Silverlight (Version: 4.0.60831.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Touch Pack for Windows 7 (Version: 1.0.40517.00)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Web Publishing Wizard 1.52
Microsoft Works (Version: 9.7.0621)
Microsoft XNA Framework Redistributable 3.0 (Version: 3.0.11010.0)
Mozilla Firefox 10.0.2 (x86 en-US) (Version: 10.0.2)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Network64 (Version: 130.0.374.000)
Network64 (Version: 140.0.221.000)
Pando Media Booster (Version: 2.3.3.9)
PCDJ VJ
PokerStars.net
Power2Go (Version: 6.0.3101)
PowerDirector (Version: 7.0.3101)
PowerRecover (Version: 5.5.1923)
PS_AIO_06_C4700_SW_Min (Version: 130.0.373.000)
Scan (Version: 13.0.0.0)
Shop for HP Supplies (Version: 13.0)
SmartWebPrinting (Version: 130.0.373.000)
SolutionCenter (Version: 130.0.373.000)
SoundMAX (Version: 6.10.2.7260)
Status (Version: 130.0.373.000)
The Print Shop 23 (Version: 23.00)
Toolbox (Version: 130.0.648.000)
TrayApp (Version: 130.0.376.000)
Trend Micro AntiVirus (Version: 17.50)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update Installer for WildTangent Games App
VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0)
Virtual Earth 3D (Beta) (Version: 4.0.903.16005)
WebReg (Version: 130.0.132.017)
WildTangent Games App (HP Games) (Version: 4.0.5.14)
Windows Live Communications Platform (Version: 14.0.8098.930)
Windows Live Essentials (Version: 14.0.8089.0726)
Windows Live Essentials (Version: 14.0.8089.726)
Windows Live Family Safety (Version: 14.0.8093.805)
Windows Live Mail (Version: 14.0.8089.0726)
Windows Live Movie Maker (Version: 14.0.8091.0730)
Windows Live Photo Gallery (Version: 14.0.8081.709)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live Toolbar (Version: 14.0.8064.206)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8089.0726)
WinRAR archiver
Zuma's Revenge! (Version: 1.0)

========================= Memory info: ===================================

Percentage of memory in use: 37%
Total physical RAM: 3839.24 MB
Available physical RAM: 2412.02 MB
Total Pagefile: 7676.63 MB
Available Pagefile: 5997.13 MB
Total Virtual: 4095.88 MB
Available Virtual: 3961.08 MB

========================= Partitions: =====================================

1 Drive c: (HP) (Fixed) (Total:582.9 GB) (Free:525.3 GB) NTFS
2 Drive d: (FACTORY_IMAGE) (Fixed) (Total:13.17 GB) (Free:2.35 GB) NTFS
5 Drive g: (My Book) (Fixed) (Total:465.65 GB) (Free:133.4 GB) FAT32

========================= Users: ========================================

User accounts for \\LYNNWHITE-PC

Administrator ASPNET Guest
Lynn White


**** End of log ****

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:03 PM

Posted 19 February 2012 - 09:33 PM

Can you run malwarebytes once again to make sure you get the clean log

Click on QUARANINE tab

check all the infections-click on DELETE ALL

Download

FSS

Checkmark

Internet Services
Windows Firewall
System Restore
Security Center
Windows Update

Click on "Scan".
Please copy and paste the log to your reply.

#11 LWhite326

LWhite326
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:12:03 PM

Posted 21 February 2012 - 05:47 PM

Alright, Malwarebytes scan came up clean this time.

Malwarebytes Anti-Malware 1.60.1.1000
www.malwarebytes.org

Database version: v2012.02.20.01

Windows 7 x64 NTFS
Internet Explorer 8.0.7600.16385
Lynn White :: LYNNWHITE-PC [administrator]

Protection: Enabled

2/20/2012 6:33:06 PM
mbam-log-2012-02-20 (18-33-06).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 427142
Time elapsed: 57 minute(s), 3 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)




Farbar Service Scanner Version: 14-02-2012
Ran by Lynn White (administrator) on 20-02-2012 at 18:34:21
Running from "C:\Users\Lynn White\Downloads"
Microsoft Windows 7 Home Premium (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Yahoo IP is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll
[2009-07-13 18:09] - [2009-07-13 19:41] - 0824832 ____A (Microsoft Corporation) AECAB449567D1846DAD63ECE49E893E3

C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll
[2009-07-13 17:36] - [2009-07-13 19:41] - 0170496 ____A (Microsoft Corporation) 765A27C3279CE11D14CB9E4F5869FCA5

C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll
[2009-07-13 18:36] - [2009-07-13 19:41] - 2418176 ____A (Microsoft Corporation) 38340204A2D0228F1E87740FC5E554A7

C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:03 PM

Posted 21 February 2012 - 06:06 PM

That looks good

Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Uninstall your java update from add or remove programs and download latest from here

http://www.java.com/en/


Update your antivirus frequently,do not click on suspicious links

Safe surfing :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users