Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Fake Svchost.exe, Contacting Random Websites


  • Please log in to reply
8 replies to this topic

#1 Nosnahluap

Nosnahluap

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:59 AM

Posted 19 February 2012 - 12:15 PM

Hello!

I am running Windows 7, 64 Bit on a three-month old Toshiba laptop. Yesterday, I downloaded and ran Malwarebytes for the first time and it found two infected Trojan Agents - 1) the Svchost.exe file that is located at this location: c:/Windows and 2) an infected process Svchost.exe. Malwarebytes said it deleted the files, but on a reboot they were still active. I have the monitoring service of Malwarebytes turned on, and it displays a message (like every 10 seconds) that it has blocked an attempt to connect to an outside website with the address of 206.161.121.5 or 88.214.193.251 or a number of other sites. The notification said this was started by Svchost.exe. I have gone to the file location and delete the actual file (Svchost.exe), but it magically re-appears in about 10 seconds. When you hover over the name, it shows the file description as "winrscmde". I then opened the task manager and found the offending process (it had the same Winrscmde name)and ended this process - it stopped the notifications that I was contacting an outside website. But I am sure that there is something still going on inside my machine that isn't right!

I am not sure if it is related, but I have been having troubles with Google redirection to unknown wensites, too.

Any help you can offer will be most appreciated! Thank you!

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:59 AM

Posted 19 February 2012 - 01:03 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Edited by narenxp, 19 February 2012 - 01:04 PM.


#3 Nosnahluap

Nosnahluap
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:59 AM

Posted 24 February 2012 - 08:26 PM

Hello! Thanks for the quick response - I didn't expect to see a repsonse that quickly! I now have had time to run the two programs and have pasted in the log files below.

18:29:22.0978 6104 TDSS rootkit removing tool 2.7.14.0 Feb 22 2012 16:54:49
18:29:24.0350 6104 ============================================================
18:29:24.0350 6104 Current date / time: 2012/02/24 18:29:24.0350
18:29:24.0350 6104 SystemInfo:
18:29:24.0350 6104
18:29:24.0350 6104 OS Version: 6.1.7601 ServicePack: 1.0
18:29:24.0350 6104 Product type: Workstation
18:29:24.0350 6104 ComputerName: SUES_COMPUTER
18:29:24.0350 6104 UserName: Sue
18:29:24.0350 6104 Windows directory: C:\windows
18:29:24.0350 6104 System windows directory: C:\windows
18:29:24.0350 6104 Running under WOW64
18:29:24.0350 6104 Processor architecture: Intel x64
18:29:24.0350 6104 Number of processors: 2
18:29:24.0350 6104 Page size: 0x1000
18:29:24.0350 6104 Boot type: Normal boot
18:29:24.0350 6104 ============================================================
18:29:26.0753 6104 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:29:26.0768 6104 \Device\Harddisk0\DR0:
18:29:26.0768 6104 MBR used
18:29:26.0768 6104 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x238CE000
18:29:26.0800 6104 Initialize success
18:29:26.0800 6104 ============================================================
18:29:51.0900 5732 ============================================================
18:29:51.0900 5732 Scan started
18:29:51.0900 5732 Mode: Manual; TDLFS;
18:29:51.0900 5732 ============================================================
18:29:55.0722 5732 1394ohci (a87d604aea360176311474c87a63bb88) C:\windows\system32\drivers\1394ohci.sys
18:29:55.0722 5732 1394ohci - ok
18:29:56.0159 5732 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\windows\system32\drivers\ACPI.sys
18:29:56.0174 5732 ACPI - ok
18:29:56.0611 5732 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\windows\system32\drivers\acpipmi.sys
18:29:56.0611 5732 AcpiPmi - ok
18:29:57.0235 5732 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\windows\system32\drivers\adp94xx.sys
18:29:57.0235 5732 adp94xx - ok
18:29:57.0828 5732 adpahci (597f78224ee9224ea1a13d6350ced962) C:\windows\system32\drivers\adpahci.sys
18:29:57.0844 5732 adpahci - ok
18:29:58.0109 5732 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\windows\system32\drivers\adpu320.sys
18:29:58.0109 5732 adpu320 - ok
18:29:58.0343 5732 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\windows\system32\drivers\afd.sys
18:29:58.0358 5732 AFD - ok
18:29:58.0670 5732 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\windows\system32\drivers\agp440.sys
18:29:58.0670 5732 agp440 - ok
18:29:58.0889 5732 aliide (5812713a477a3ad7363c7438ca2ee038) C:\windows\system32\drivers\aliide.sys
18:29:58.0889 5732 aliide - ok
18:29:59.0216 5732 amdide (1ff8b4431c353ce385c875f194924c0c) C:\windows\system32\drivers\amdide.sys
18:29:59.0216 5732 amdide - ok
18:29:59.0466 5732 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\windows\system32\drivers\amdk8.sys
18:29:59.0466 5732 AmdK8 - ok
18:30:00.0308 5732 amdkmdag (194d76d2083318a2e7071a988e02ecf4) C:\windows\system32\DRIVERS\atikmdag.sys
18:30:00.0605 5732 amdkmdag - ok
18:30:01.0166 5732 amdkmdap (1eeffce9a3a65a56a28793eaa3f57026) C:\windows\system32\DRIVERS\atikmpag.sys
18:30:01.0182 5732 amdkmdap - ok
18:30:01.0400 5732 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\windows\system32\DRIVERS\amdppm.sys
18:30:01.0400 5732 AmdPPM - ok
18:30:01.0915 5732 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\windows\system32\drivers\amdsata.sys
18:30:01.0915 5732 amdsata - ok
18:30:02.0508 5732 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\windows\system32\drivers\amdsbs.sys
18:30:02.0508 5732 amdsbs - ok
18:30:04.0068 5732 amdxata (540daf1cea6094886d72126fd7c33048) C:\windows\system32\drivers\amdxata.sys
18:30:04.0068 5732 amdxata - ok
18:30:04.0770 5732 amd_sata (caee7c1afc9f1c9ee8dd11acd18d22e7) C:\windows\system32\DRIVERS\amd_sata.sys
18:30:04.0770 5732 amd_sata - ok
18:30:05.0254 5732 amd_xata (23726116b4fbcc84fc45b95157c08f5f) C:\windows\system32\DRIVERS\amd_xata.sys
18:30:05.0254 5732 amd_xata - ok
18:30:05.0675 5732 AppID (89a69c3f2f319b43379399547526d952) C:\windows\system32\drivers\appid.sys
18:30:05.0675 5732 AppID - ok
18:30:06.0096 5732 arc (c484f8ceb1717c540242531db7845c4e) C:\windows\system32\drivers\arc.sys
18:30:06.0112 5732 arc - ok
18:30:06.0533 5732 arcsas (019af6924aefe7839f61c830227fe79c) C:\windows\system32\drivers\arcsas.sys
18:30:06.0548 5732 arcsas - ok
18:30:07.0297 5732 AsyncMac (769765ce2cc62867468cea93969b2242) C:\windows\system32\DRIVERS\asyncmac.sys
18:30:07.0344 5732 AsyncMac - ok
18:30:07.0594 5732 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\windows\system32\drivers\atapi.sys
18:30:07.0594 5732 atapi - ok
18:30:07.0937 5732 AVGIDSDriver (e29ea1a0ec7ab9fa2dc7e75a03f12a4f) C:\windows\system32\DRIVERS\AVGIDSDriver.Sys
18:30:07.0937 5732 AVGIDSDriver - ok
18:30:08.0077 5732 AVGIDSEH (f823d184b8e8ffb8da3ead45dbf5bd6a) C:\windows\system32\DRIVERS\AVGIDSEH.Sys
18:30:08.0093 5732 AVGIDSEH - ok
18:30:08.0311 5732 AVGIDSFilter (ed2b25bd7fe35d1944211968842d30da) C:\windows\system32\DRIVERS\AVGIDSFilter.Sys
18:30:08.0327 5732 AVGIDSFilter - ok
18:30:08.0592 5732 Avgldx64 (979cf8912449a10b987218bff80a1fa3) C:\windows\system32\DRIVERS\avgldx64.sys
18:30:08.0608 5732 Avgldx64 - ok
18:30:08.0935 5732 Avgmfx64 (36b1a5843695766eac714daffc5b84d1) C:\windows\system32\DRIVERS\avgmfx64.sys
18:30:08.0935 5732 Avgmfx64 - ok
18:30:09.0372 5732 Avgrkx64 (1102239fb724527f1febbbbccf6bf313) C:\windows\system32\DRIVERS\avgrkx64.sys
18:30:09.0372 5732 Avgrkx64 - ok
18:30:10.0105 5732 Avgtdia (11f36d3ea82d9db9aa05a476a210551b) C:\windows\system32\DRIVERS\avgtdia.sys
18:30:10.0105 5732 Avgtdia - ok
18:30:11.0213 5732 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\windows\system32\drivers\bxvbda.sys
18:30:11.0229 5732 b06bdrv - ok
18:30:12.0617 5732 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\windows\system32\DRIVERS\b57nd60a.sys
18:30:12.0695 5732 b57nd60a - ok
18:30:13.0725 5732 Beep (16a47ce2decc9b099349a5f840654746) C:\windows\system32\drivers\Beep.sys
18:30:13.0725 5732 Beep - ok
18:30:14.0364 5732 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\windows\system32\DRIVERS\blbdrive.sys
18:30:14.0395 5732 blbdrive - ok
18:30:15.0144 5732 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\windows\system32\DRIVERS\bowser.sys
18:30:15.0144 5732 bowser - ok
18:30:15.0487 5732 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\windows\system32\drivers\BrFiltLo.sys
18:30:15.0503 5732 BrFiltLo - ok
18:30:15.0893 5732 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\windows\system32\drivers\BrFiltUp.sys
18:30:15.0909 5732 BrFiltUp - ok
18:30:16.0221 5732 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\windows\System32\Drivers\Brserid.sys
18:30:16.0221 5732 Brserid - ok
18:30:16.0782 5732 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\windows\System32\Drivers\BrSerWdm.sys
18:30:16.0798 5732 BrSerWdm - ok
18:30:17.0500 5732 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\windows\System32\Drivers\BrUsbMdm.sys
18:30:17.0531 5732 BrUsbMdm - ok
18:30:17.0890 5732 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\windows\System32\Drivers\BrUsbSer.sys
18:30:17.0890 5732 BrUsbSer - ok
18:30:18.0342 5732 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\windows\system32\drivers\bthmodem.sys
18:30:18.0342 5732 BTHMODEM - ok
18:30:19.0013 5732 cdfs (b8bd2bb284668c84865658c77574381a) C:\windows\system32\DRIVERS\cdfs.sys
18:30:19.0044 5732 cdfs - ok
18:30:19.0559 5732 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\windows\system32\DRIVERS\cdrom.sys
18:30:19.0590 5732 cdrom - ok
18:30:20.0308 5732 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\windows\system32\drivers\circlass.sys
18:30:20.0308 5732 circlass - ok
18:30:21.0057 5732 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\windows\system32\CLFS.sys
18:30:21.0072 5732 CLFS - ok
18:30:21.0743 5732 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\windows\system32\DRIVERS\CmBatt.sys
18:30:21.0759 5732 CmBatt - ok
18:30:22.0258 5732 cmdide (e19d3f095812725d88f9001985b94edd) C:\windows\system32\drivers\cmdide.sys
18:30:22.0273 5732 cmdide - ok
18:30:22.0679 5732 CNG (c4943b6c962e4b82197542447ad599f4) C:\windows\system32\Drivers\cng.sys
18:30:22.0679 5732 CNG - ok
18:30:23.0147 5732 CnxtHdAudService (99b1b888b793de320c5479b3c953781f) C:\windows\system32\drivers\CHDRT64.sys
18:30:23.0209 5732 CnxtHdAudService - ok
18:30:23.0397 5732 Compbatt (102de219c3f61415f964c88e9085ad14) C:\windows\system32\drivers\compbatt.sys
18:30:23.0397 5732 Compbatt - ok
18:30:23.0568 5732 CompositeBus (03edb043586cceba243d689bdda370a8) C:\windows\system32\DRIVERS\CompositeBus.sys
18:30:23.0568 5732 CompositeBus - ok
18:30:23.0787 5732 crcdisk (1c827878a998c18847245fe1f34ee597) C:\windows\system32\drivers\crcdisk.sys
18:30:23.0787 5732 crcdisk - ok
18:30:24.0005 5732 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\windows\system32\Drivers\dfsc.sys
18:30:24.0021 5732 DfsC - ok
18:30:24.0208 5732 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\windows\system32\drivers\discache.sys
18:30:24.0208 5732 discache - ok
18:30:24.0379 5732 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\windows\system32\drivers\disk.sys
18:30:24.0395 5732 Disk - ok
18:30:24.0691 5732 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\windows\system32\DRIVERS\Dot4.sys
18:30:24.0707 5732 Dot4 - ok
18:30:24.0832 5732 Dot4Print (e9f5969233c5d89f3c35e3a66a52a361) C:\windows\system32\DRIVERS\Dot4Prt.sys
18:30:24.0847 5732 Dot4Print - ok
18:30:25.0003 5732 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\windows\system32\DRIVERS\dot4usb.sys
18:30:25.0019 5732 dot4usb - ok
18:30:25.0378 5732 drmkaud (9b19f34400d24df84c858a421c205754) C:\windows\system32\drivers\drmkaud.sys
18:30:25.0378 5732 drmkaud - ok
18:30:25.0596 5732 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\windows\System32\drivers\dxgkrnl.sys
18:30:25.0612 5732 DXGKrnl - ok
18:30:26.0002 5732 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\windows\system32\drivers\evbda.sys
18:30:26.0049 5732 ebdrv - ok
18:30:26.0298 5732 elxstor (0e5da5369a0fcaea12456dd852545184) C:\windows\system32\drivers\elxstor.sys
18:30:26.0298 5732 elxstor - ok
18:30:26.0454 5732 ErrDev (34a3c54752046e79a126e15c51db409b) C:\windows\system32\drivers\errdev.sys
18:30:26.0454 5732 ErrDev - ok
18:30:26.0829 5732 ETD (5d82d501d2fee413b1f45f0302b5802c) C:\windows\system32\DRIVERS\ETD.sys
18:30:26.0860 5732 ETD - ok
18:30:27.0063 5732 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\windows\system32\drivers\exfat.sys
18:30:27.0078 5732 exfat - ok
18:30:27.0297 5732 fastfat (0adc83218b66a6db380c330836f3e36d) C:\windows\system32\drivers\fastfat.sys
18:30:27.0297 5732 fastfat - ok
18:30:27.0499 5732 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\windows\system32\drivers\fdc.sys
18:30:27.0499 5732 fdc - ok
18:30:27.0843 5732 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\windows\system32\drivers\fileinfo.sys
18:30:27.0889 5732 FileInfo - ok
18:30:28.0248 5732 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\windows\system32\drivers\filetrace.sys
18:30:28.0248 5732 Filetrace - ok
18:30:28.0482 5732 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\windows\system32\drivers\flpydisk.sys
18:30:28.0482 5732 flpydisk - ok
18:30:29.0356 5732 FltMgr (da6b67270fd9db3697b20fce94950741) C:\windows\system32\drivers\fltmgr.sys
18:30:29.0371 5732 FltMgr - ok
18:30:29.0590 5732 FsDepends (d43703496149971890703b4b1b723eac) C:\windows\system32\drivers\FsDepends.sys
18:30:29.0590 5732 FsDepends - ok
18:30:29.0839 5732 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\windows\system32\drivers\Fs_Rec.sys
18:30:29.0839 5732 Fs_Rec - ok
18:30:30.0229 5732 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\windows\system32\DRIVERS\fvevol.sys
18:30:30.0245 5732 fvevol - ok
18:30:30.0760 5732 FwLnk (60acb128e64c35c2b4e4aab1b0a5c293) C:\windows\system32\DRIVERS\FwLnk.sys
18:30:30.0791 5732 FwLnk - ok
18:30:31.0072 5732 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\windows\system32\drivers\gagp30kx.sys
18:30:31.0087 5732 gagp30kx - ok
18:30:31.0524 5732 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\windows\system32\drivers\hcw85cir.sys
18:30:31.0540 5732 hcw85cir - ok
18:30:31.0867 5732 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\windows\system32\drivers\HdAudio.sys
18:30:31.0883 5732 HdAudAddService - ok
18:30:32.0179 5732 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\windows\system32\DRIVERS\HDAudBus.sys
18:30:32.0195 5732 HDAudBus - ok
18:30:32.0491 5732 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\windows\system32\drivers\HidBatt.sys
18:30:32.0491 5732 HidBatt - ok
18:30:32.0788 5732 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\windows\system32\drivers\hidbth.sys
18:30:32.0788 5732 HidBth - ok
18:30:33.0303 5732 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\windows\system32\drivers\hidir.sys
18:30:33.0318 5732 HidIr - ok
18:30:33.0708 5732 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\windows\system32\DRIVERS\hidusb.sys
18:30:33.0864 5732 HidUsb - ok
18:30:34.0363 5732 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\windows\system32\drivers\HpSAMD.sys
18:30:34.0379 5732 HpSAMD - ok
18:30:34.0785 5732 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\windows\system32\drivers\HTTP.sys
18:30:34.0800 5732 HTTP - ok
18:30:35.0346 5732 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\windows\system32\drivers\hwpolicy.sys
18:30:35.0362 5732 hwpolicy - ok
18:30:35.0689 5732 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\windows\system32\DRIVERS\i8042prt.sys
18:30:35.0689 5732 i8042prt - ok
18:30:35.0986 5732 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\windows\system32\drivers\iaStorV.sys
18:30:35.0986 5732 iaStorV - ok
18:30:36.0282 5732 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\windows\system32\drivers\iirsp.sys
18:30:36.0282 5732 iirsp - ok
18:30:36.0750 5732 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\windows\system32\drivers\intelide.sys
18:30:36.0766 5732 intelide - ok
18:30:37.0515 5732 intelppm (ada036632c664caa754079041cf1f8c1) C:\windows\system32\drivers\intelppm.sys
18:30:37.0515 5732 intelppm - ok
18:30:38.0903 5732 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\windows\system32\DRIVERS\ipfltdrv.sys
18:30:38.0934 5732 IpFilterDriver - ok
18:30:39.0621 5732 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\windows\system32\drivers\IPMIDrv.sys
18:30:39.0621 5732 IPMIDRV - ok
18:30:39.0995 5732 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\windows\system32\drivers\ipnat.sys
18:30:40.0011 5732 IPNAT - ok
18:30:40.0385 5732 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\windows\system32\drivers\irenum.sys
18:30:40.0401 5732 IRENUM - ok
18:30:41.0976 5732 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\windows\system32\drivers\isapnp.sys
18:30:41.0976 5732 isapnp - ok
18:30:42.0694 5732 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\windows\system32\drivers\msiscsi.sys
18:30:42.0709 5732 iScsiPrt - ok
18:30:43.0162 5732 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\windows\system32\DRIVERS\kbdclass.sys
18:30:43.0162 5732 kbdclass - ok
18:30:43.0583 5732 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\windows\system32\DRIVERS\kbdhid.sys
18:30:43.0599 5732 kbdhid - ok
18:30:44.0176 5732 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\windows\system32\Drivers\ksecdd.sys
18:30:44.0176 5732 KSecDD - ok
18:30:45.0065 5732 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\windows\system32\Drivers\ksecpkg.sys
18:30:45.0065 5732 KSecPkg - ok
18:30:45.0673 5732 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\windows\system32\drivers\ksthunk.sys
18:30:45.0689 5732 ksthunk - ok
18:30:46.0173 5732 L1C (655a5d8e80869781cce23760ada7e695) C:\windows\system32\DRIVERS\L1C62x64.sys
18:30:46.0173 5732 L1C - ok
18:30:46.0921 5732 lltdio (1538831cf8ad2979a04c423779465827) C:\windows\system32\DRIVERS\lltdio.sys
18:30:46.0921 5732 lltdio - ok
18:30:47.0530 5732 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\windows\system32\drivers\lsi_fc.sys
18:30:47.0545 5732 LSI_FC - ok
18:30:48.0029 5732 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\windows\system32\drivers\lsi_sas.sys
18:30:48.0045 5732 LSI_SAS - ok
18:30:48.0450 5732 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\windows\system32\drivers\lsi_sas2.sys
18:30:48.0450 5732 LSI_SAS2 - ok
18:30:49.0261 5732 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\windows\system32\drivers\lsi_scsi.sys
18:30:49.0261 5732 LSI_SCSI - ok
18:30:49.0948 5732 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\windows\system32\drivers\luafv.sys
18:30:49.0948 5732 luafv - ok
18:30:50.0712 5732 MBAMProtector (79da94b35371b9e7104460c7693dcb2c) C:\windows\system32\drivers\mbam.sys
18:30:50.0712 5732 MBAMProtector - ok
18:30:51.0773 5732 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\windows\system32\drivers\megasas.sys
18:30:51.0789 5732 megasas - ok
18:30:52.0428 5732 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\windows\system32\drivers\MegaSR.sys
18:30:52.0428 5732 MegaSR - ok
18:30:52.0818 5732 Modem (800ba92f7010378b09f9ed9270f07137) C:\windows\system32\drivers\modem.sys
18:30:52.0818 5732 Modem - ok
18:30:53.0817 5732 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\windows\system32\DRIVERS\monitor.sys
18:30:53.0817 5732 monitor - ok
18:30:54.0285 5732 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\windows\system32\DRIVERS\mouclass.sys
18:30:54.0316 5732 mouclass - ok
18:30:54.0659 5732 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\windows\system32\DRIVERS\mouhid.sys
18:30:54.0659 5732 mouhid - ok
18:30:55.0236 5732 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\windows\system32\drivers\mountmgr.sys
18:30:55.0252 5732 mountmgr - ok
18:30:56.0640 5732 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\windows\system32\drivers\mpio.sys
18:30:56.0640 5732 mpio - ok
18:30:57.0217 5732 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\windows\system32\drivers\mpsdrv.sys
18:30:57.0280 5732 mpsdrv - ok
18:30:58.0169 5732 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\windows\system32\drivers\mrxdav.sys
18:30:58.0169 5732 MRxDAV - ok
18:30:58.0793 5732 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\windows\system32\DRIVERS\mrxsmb.sys
18:30:58.0793 5732 mrxsmb - ok
18:30:59.0479 5732 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\windows\system32\DRIVERS\mrxsmb10.sys
18:30:59.0511 5732 mrxsmb10 - ok
18:30:59.0854 5732 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\windows\system32\DRIVERS\mrxsmb20.sys
18:30:59.0854 5732 mrxsmb20 - ok
18:31:00.0166 5732 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\windows\system32\drivers\msahci.sys
18:31:00.0166 5732 msahci - ok
18:31:00.0805 5732 msdsm (db801a638d011b9633829eb6f663c900) C:\windows\system32\drivers\msdsm.sys
18:31:00.0805 5732 msdsm - ok
18:31:01.0554 5732 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\windows\system32\drivers\Msfs.sys
18:31:01.0585 5732 Msfs - ok
18:31:01.0929 5732 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\windows\System32\drivers\mshidkmdf.sys
18:31:01.0929 5732 mshidkmdf - ok
18:31:02.0163 5732 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\windows\system32\drivers\msisadrv.sys
18:31:02.0163 5732 msisadrv - ok
18:31:02.0646 5732 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\windows\system32\drivers\MSKSSRV.sys
18:31:02.0662 5732 MSKSSRV - ok
18:31:03.0052 5732 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\windows\system32\drivers\MSPCLOCK.sys
18:31:03.0083 5732 MSPCLOCK - ok
18:31:03.0520 5732 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\windows\system32\drivers\MSPQM.sys
18:31:03.0847 5732 MSPQM - ok
18:31:04.0206 5732 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\windows\system32\drivers\MsRPC.sys
18:31:04.0284 5732 MsRPC - ok
18:31:04.0440 5732 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\windows\system32\DRIVERS\mssmbios.sys
18:31:04.0440 5732 mssmbios - ok
18:31:04.0627 5732 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\windows\system32\drivers\MSTEE.sys
18:31:04.0799 5732 MSTEE - ok
18:31:04.0971 5732 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\windows\system32\drivers\MTConfig.sys
18:31:04.0971 5732 MTConfig - ok
18:31:05.0111 5732 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\windows\system32\Drivers\mup.sys
18:31:05.0220 5732 Mup - ok
18:31:05.0407 5732 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\windows\system32\DRIVERS\nwifi.sys
18:31:05.0501 5732 NativeWifiP - ok
18:31:05.0719 5732 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\windows\system32\drivers\ndis.sys
18:31:05.0719 5732 NDIS - ok
18:31:05.0891 5732 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\windows\system32\DRIVERS\ndiscap.sys
18:31:05.0891 5732 NdisCap - ok
18:31:06.0063 5732 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\windows\system32\DRIVERS\ndistapi.sys
18:31:06.0063 5732 NdisTapi - ok
18:31:06.0234 5732 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\windows\system32\DRIVERS\ndisuio.sys
18:31:06.0250 5732 Ndisuio - ok
18:31:06.0515 5732 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\windows\system32\DRIVERS\ndiswan.sys
18:31:06.0515 5732 NdisWan - ok
18:31:06.0780 5732 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\windows\system32\drivers\NDProxy.sys
18:31:06.0811 5732 NDProxy - ok
18:31:07.0233 5732 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\windows\system32\DRIVERS\netbios.sys
18:31:07.0264 5732 NetBIOS - ok
18:31:07.0482 5732 NetBT (09594d1089c523423b32a4229263f068) C:\windows\system32\DRIVERS\netbt.sys
18:31:07.0529 5732 NetBT - ok
18:31:07.0794 5732 nfrd960 (77889813be4d166cdab78ddba990da92) C:\windows\system32\drivers\nfrd960.sys
18:31:07.0810 5732 nfrd960 - ok
18:31:08.0122 5732 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\windows\system32\drivers\Npfs.sys
18:31:08.0137 5732 Npfs - ok
18:31:08.0293 5732 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\windows\system32\drivers\nsiproxy.sys
18:31:08.0293 5732 nsiproxy - ok
18:31:08.0637 5732 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\windows\system32\drivers\Ntfs.sys
18:31:08.0668 5732 Ntfs - ok
18:31:09.0167 5732 Null (9899284589f75fa8724ff3d16aed75c1) C:\windows\system32\drivers\Null.sys
18:31:09.0183 5732 Null - ok
18:31:09.0479 5732 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\windows\system32\drivers\nvraid.sys
18:31:09.0479 5732 nvraid - ok
18:31:10.0337 5732 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\windows\system32\drivers\nvstor.sys
18:31:10.0477 5732 nvstor - ok
18:31:10.0680 5732 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\windows\system32\drivers\nv_agp.sys
18:31:10.0680 5732 nv_agp - ok
18:31:10.0930 5732 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\windows\system32\drivers\ohci1394.sys
18:31:11.0086 5732 ohci1394 - ok
18:31:11.0304 5732 Parport (0086431c29c35be1dbc43f52cc273887) C:\windows\system32\drivers\parport.sys
18:31:11.0320 5732 Parport - ok
18:31:11.0476 5732 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\windows\system32\drivers\partmgr.sys
18:31:11.0476 5732 partmgr - ok
18:31:11.0725 5732 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\windows\system32\drivers\pci.sys
18:31:11.0741 5732 pci - ok
18:31:11.0897 5732 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\windows\system32\DRIVERS\pciide.sys
18:31:11.0897 5732 pciide - ok
18:31:12.0069 5732 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\windows\system32\drivers\pcmcia.sys
18:31:12.0084 5732 pcmcia - ok
18:31:12.0303 5732 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\windows\system32\drivers\pcw.sys
18:31:12.0303 5732 pcw - ok
18:31:12.0505 5732 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\windows\system32\drivers\peauth.sys
18:31:12.0521 5732 PEAUTH - ok
18:31:12.0755 5732 PGEffect (91111cebbde8015e822c46120ed9537c) C:\windows\system32\DRIVERS\pgeffect.sys
18:31:12.0771 5732 PGEffect - ok
18:31:13.0207 5732 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\windows\system32\DRIVERS\raspptp.sys
18:31:13.0301 5732 PptpMiniport - ok
18:31:13.0551 5732 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\windows\system32\drivers\processr.sys
18:31:13.0551 5732 Processor - ok
18:31:13.0800 5732 Psched (0557cf5a2556bd58e26384169d72438d) C:\windows\system32\DRIVERS\pacer.sys
18:31:13.0800 5732 Psched - ok
18:31:14.0019 5732 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\windows\system32\drivers\ql2300.sys
18:31:14.0050 5732 ql2300 - ok
18:31:14.0221 5732 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\windows\system32\drivers\ql40xx.sys
18:31:14.0221 5732 ql40xx - ok
18:31:14.0362 5732 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\windows\system32\drivers\qwavedrv.sys
18:31:14.0377 5732 QWAVEdrv - ok
18:31:14.0721 5732 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\windows\system32\DRIVERS\rasacd.sys
18:31:14.0752 5732 RasAcd - ok
18:31:15.0267 5732 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\windows\system32\DRIVERS\AgileVpn.sys
18:31:15.0313 5732 RasAgileVpn - ok
18:31:15.0875 5732 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\windows\system32\DRIVERS\rasl2tp.sys
18:31:15.0891 5732 Rasl2tp - ok
18:31:16.0203 5732 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\windows\system32\DRIVERS\raspppoe.sys
18:31:16.0234 5732 RasPppoe - ok
18:31:16.0639 5732 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\windows\system32\DRIVERS\rassstp.sys
18:31:16.0639 5732 RasSstp - ok
18:31:17.0404 5732 rdbss (77f665941019a1594d887a74f301fa2f) C:\windows\system32\DRIVERS\rdbss.sys
18:31:17.0419 5732 rdbss - ok
18:31:17.0669 5732 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\windows\system32\drivers\rdpbus.sys
18:31:17.0669 5732 rdpbus - ok
18:31:18.0184 5732 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\windows\system32\DRIVERS\RDPCDD.sys
18:31:18.0184 5732 RDPCDD - ok
18:31:18.0761 5732 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\windows\system32\drivers\rdpencdd.sys
18:31:18.0761 5732 RDPENCDD - ok
18:31:19.0681 5732 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\windows\system32\drivers\rdprefmp.sys
18:31:19.0681 5732 RDPREFMP - ok
18:31:19.0993 5732 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\windows\system32\drivers\RDPWD.sys
18:31:20.0009 5732 RDPWD - ok
18:31:20.0227 5732 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\windows\system32\drivers\rdyboost.sys
18:31:20.0227 5732 rdyboost - ok
18:31:20.0649 5732 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\windows\system32\DRIVERS\rspndr.sys
18:31:20.0649 5732 rspndr - ok
18:31:20.0992 5732 RSUSBSTOR (0e3dcf76f11dc431b088a2dfd7265cda) C:\windows\system32\Drivers\RtsUStor.sys
18:31:20.0992 5732 RSUSBSTOR - ok
18:31:21.0273 5732 RTL8192Ce (64fdf4fe366ca42da2b7d9d424b6e39b) C:\windows\system32\DRIVERS\rtl8192Ce.sys
18:31:21.0288 5732 RTL8192Ce - ok
18:31:21.0460 5732 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\windows\system32\drivers\sbp2port.sys
18:31:21.0460 5732 sbp2port - ok
18:31:21.0959 5732 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\windows\system32\DRIVERS\scfilter.sys
18:31:21.0959 5732 scfilter - ok
18:31:22.0193 5732 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\windows\system32\drivers\secdrv.sys
18:31:22.0224 5732 secdrv - ok
18:31:22.0489 5732 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\windows\system32\drivers\serenum.sys
18:31:22.0489 5732 Serenum - ok
18:31:22.0833 5732 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\windows\system32\drivers\serial.sys
18:31:22.0833 5732 Serial - ok
18:31:23.0082 5732 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\windows\system32\drivers\sermouse.sys
18:31:23.0082 5732 sermouse - ok
18:31:23.0301 5732 sffdisk (a554811bcd09279536440c964ae35bbf) C:\windows\system32\drivers\sffdisk.sys
18:31:23.0301 5732 sffdisk - ok
18:31:24.0003 5732 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\windows\system32\drivers\sffp_mmc.sys
18:31:24.0003 5732 sffp_mmc - ok
18:31:24.0174 5732 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\windows\system32\drivers\sffp_sd.sys
18:31:24.0174 5732 sffp_sd - ok
18:31:24.0330 5732 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\windows\system32\drivers\sfloppy.sys
18:31:24.0330 5732 sfloppy - ok
18:31:24.0533 5732 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\windows\system32\drivers\SiSRaid2.sys
18:31:24.0595 5732 SiSRaid2 - ok
18:31:24.0985 5732 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\windows\system32\drivers\sisraid4.sys
18:31:25.0001 5732 SiSRaid4 - ok
18:31:25.0204 5732 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\windows\system32\DRIVERS\smb.sys
18:31:25.0204 5732 Smb - ok
18:31:25.0438 5732 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\windows\system32\drivers\spldr.sys
18:31:25.0453 5732 spldr - ok
18:31:25.0859 5732 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\windows\system32\DRIVERS\srv.sys
18:31:25.0875 5732 srv - ok
18:31:26.0046 5732 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\windows\system32\DRIVERS\srv2.sys
18:31:26.0062 5732 srv2 - ok
18:31:26.0187 5732 srvnet (27e461f0be5bff5fc737328f749538c3) C:\windows\system32\DRIVERS\srvnet.sys
18:31:26.0187 5732 srvnet - ok
18:31:26.0733 5732 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\windows\system32\drivers\stexstor.sys
18:31:26.0733 5732 stexstor - ok
18:31:27.0185 5732 StillCam (decacb6921ded1a38642642685d77dac) C:\windows\system32\DRIVERS\serscan.sys
18:31:27.0185 5732 StillCam - ok
18:31:27.0575 5732 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\windows\system32\DRIVERS\swenum.sys
18:31:27.0575 5732 swenum - ok
18:31:28.0105 5732 Tcpip (fc62769e7bff2896035aeed399108162) C:\windows\system32\drivers\tcpip.sys
18:31:28.0152 5732 Tcpip - ok
18:31:28.0651 5732 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\windows\system32\DRIVERS\tcpip.sys
18:31:28.0667 5732 TCPIP6 - ok
18:31:28.0870 5732 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\windows\system32\drivers\tcpipreg.sys
18:31:28.0870 5732 tcpipreg - ok
18:31:29.0182 5732 tdcmdpst (fd542b661bd22fa69ca789ad0ac58c29) C:\windows\system32\DRIVERS\tdcmdpst.sys
18:31:29.0182 5732 tdcmdpst - ok
18:31:29.0447 5732 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\windows\system32\drivers\tdpipe.sys
18:31:29.0478 5732 TDPIPE - ok
18:31:29.0884 5732 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\windows\system32\drivers\tdtcp.sys
18:31:29.0931 5732 TDTCP - ok
18:31:30.0321 5732 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\windows\system32\DRIVERS\tdx.sys
18:31:30.0336 5732 tdx - ok
18:31:30.0695 5732 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\windows\system32\DRIVERS\termdd.sys
18:31:30.0695 5732 TermDD - ok
18:31:31.0319 5732 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\windows\system32\DRIVERS\tssecsrv.sys
18:31:31.0319 5732 tssecsrv - ok
18:31:31.0709 5732 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\windows\system32\drivers\tsusbflt.sys
18:31:31.0725 5732 TsUsbFlt - ok
18:31:32.0037 5732 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\windows\system32\drivers\TsUsbGD.sys
18:31:32.0037 5732 TsUsbGD - ok
18:31:32.0411 5732 tunnel (3566a8daafa27af944f5d705eaa64894) C:\windows\system32\DRIVERS\tunnel.sys
18:31:32.0442 5732 tunnel - ok
18:31:32.0941 5732 TVALZ (550b567f9364d8f7684c3fb3ea665a72) C:\windows\system32\DRIVERS\TVALZ_O.SYS
18:31:32.0957 5732 TVALZ - ok
18:31:33.0347 5732 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\windows\system32\drivers\uagp35.sys
18:31:33.0347 5732 uagp35 - ok
18:31:33.0659 5732 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\windows\system32\DRIVERS\udfs.sys
18:31:33.0675 5732 udfs - ok
18:31:34.0049 5732 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\windows\system32\drivers\uliagpkx.sys
18:31:34.0049 5732 uliagpkx - ok
18:31:34.0330 5732 umbus (dc54a574663a895c8763af0fa1ff7561) C:\windows\system32\DRIVERS\umbus.sys
18:31:34.0439 5732 umbus - ok
18:31:35.0079 5732 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\windows\system32\drivers\umpass.sys
18:31:35.0094 5732 UmPass - ok
18:31:35.0469 5732 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\windows\system32\DRIVERS\usbccgp.sys
18:31:35.0469 5732 usbccgp - ok
18:31:35.0843 5732 usbcir (af0892a803fdda7492f595368e3b68e7) C:\windows\system32\drivers\usbcir.sys
18:31:35.0859 5732 usbcir - ok
18:31:36.0233 5732 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\windows\system32\DRIVERS\usbehci.sys
18:31:36.0233 5732 usbehci - ok
18:31:36.0467 5732 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\windows\system32\DRIVERS\usbhub.sys
18:31:36.0467 5732 usbhub - ok
18:31:36.0779 5732 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\windows\system32\DRIVERS\usbohci.sys
18:31:36.0779 5732 usbohci - ok
18:31:36.0997 5732 usbprint (73188f58fb384e75c4063d29413cee3d) C:\windows\system32\DRIVERS\usbprint.sys
18:31:37.0013 5732 usbprint - ok
18:31:37.0294 5732 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\windows\system32\DRIVERS\usbscan.sys
18:31:37.0309 5732 usbscan - ok
18:31:37.0575 5732 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\windows\system32\DRIVERS\USBSTOR.SYS
18:31:37.0575 5732 USBSTOR - ok
18:31:37.0793 5732 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\windows\system32\drivers\usbuhci.sys
18:31:37.0793 5732 usbuhci - ok
18:31:38.0011 5732 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\windows\system32\Drivers\usbvideo.sys
18:31:38.0027 5732 usbvideo - ok
18:31:38.0277 5732 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\windows\system32\drivers\vdrvroot.sys
18:31:38.0292 5732 vdrvroot - ok
18:31:38.0979 5732 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\windows\system32\DRIVERS\vgapnp.sys
18:31:38.0994 5732 vga - ok
18:31:39.0197 5732 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\windows\System32\drivers\vga.sys
18:31:39.0213 5732 VgaSave - ok
18:31:39.0462 5732 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\windows\system32\drivers\vhdmp.sys
18:31:39.0462 5732 vhdmp - ok
18:31:39.0649 5732 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\windows\system32\drivers\viaide.sys
18:31:39.0649 5732 viaide - ok
18:31:39.0915 5732 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\windows\system32\drivers\volmgr.sys
18:31:39.0915 5732 volmgr - ok
18:31:40.0149 5732 volmgrx (a255814907c89be58b79ef2f189b843b) C:\windows\system32\drivers\volmgrx.sys
18:31:40.0149 5732 volmgrx - ok
18:31:40.0960 5732 volsnap (df8126bd41180351a093a3ad2fc8903b) C:\windows\system32\drivers\volsnap.sys
18:31:40.0960 5732 volsnap - ok
18:31:41.0319 5732 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\windows\system32\drivers\vsmraid.sys
18:31:41.0319 5732 vsmraid - ok
18:31:41.0631 5732 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\windows\system32\DRIVERS\vwifibus.sys
18:31:41.0631 5732 vwifibus - ok
18:31:41.0849 5732 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\windows\system32\DRIVERS\vwififlt.sys
18:31:41.0865 5732 vwififlt - ok
18:31:42.0114 5732 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\windows\system32\DRIVERS\vwifimp.sys
18:31:42.0114 5732 vwifimp - ok
18:31:42.0395 5732 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\windows\system32\drivers\wacompen.sys
18:31:42.0395 5732 WacomPen - ok
18:31:42.0801 5732 WANARP (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
18:31:42.0801 5732 WANARP - ok
18:31:42.0832 5732 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
18:31:42.0832 5732 Wanarpv6 - ok
18:31:43.0300 5732 Wd (72889e16ff12ba0f235467d6091b17dc) C:\windows\system32\drivers\wd.sys
18:31:43.0300 5732 Wd - ok
18:31:43.0674 5732 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\windows\system32\drivers\Wdf01000.sys
18:31:43.0690 5732 Wdf01000 - ok
18:31:44.0017 5732 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\windows\system32\DRIVERS\wfplwf.sys
18:31:44.0017 5732 WfpLwf - ok
18:31:44.0283 5732 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\windows\system32\drivers\wimmount.sys
18:31:44.0283 5732 WIMMount - ok
18:31:44.0595 5732 WinUsb (fe88b288356e7b47b74b13372add906d) C:\windows\system32\DRIVERS\WinUsb.sys
18:31:44.0688 5732 WinUsb - ok
18:31:45.0297 5732 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\windows\system32\drivers\wmiacpi.sys
18:31:45.0312 5732 WmiAcpi - ok
18:31:45.0780 5732 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\windows\system32\drivers\ws2ifsl.sys
18:31:45.0780 5732 ws2ifsl - ok
18:31:46.0279 5732 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\windows\system32\DRIVERS\WSDPrint.sys
18:31:46.0295 5732 WSDPrintDevice - ok
18:31:46.0732 5732 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\windows\system32\drivers\WudfPf.sys
18:31:46.0732 5732 WudfPf - ok
18:31:46.0997 5732 WUDFRd (cf8d590be3373029d57af80914190682) C:\windows\system32\DRIVERS\WUDFRd.sys
18:31:47.0013 5732 WUDFRd - ok
18:31:47.0137 5732 MBR (0x1B8) (b5d3b89509933463264ff7748b075c37) \Device\Harddisk0\DR0
18:31:47.0309 5732 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - infected
18:31:47.0309 5732 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.b (0)
18:31:47.0793 5732 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
18:31:47.0793 5732 \Device\Harddisk0\DR0 - detected TDSS File System (1)
18:31:47.0824 5732 Boot (0x1200) (de8590baa713dfec22a1b646ac041426) \Device\Harddisk0\DR0\Partition0
18:31:47.0871 5732 \Device\Harddisk0\DR0\Partition0 - ok
18:31:47.0871 5732 ============================================================
18:31:47.0871 5732 Scan finished
18:31:47.0871 5732 ============================================================
18:31:47.0886 5308 Detected object count: 2
18:31:47.0886 5308 Actual detected object count: 2
18:32:34.0983 5308 \Device\Harddisk0\DR0\# - copied to quarantine
18:32:34.0983 5308 \Device\Harddisk0\DR0 - copied to quarantine
18:32:35.0030 5308 \Device\Harddisk0\DR0\TDLFS\ph.dll - copied to quarantine
18:32:35.0030 5308 \Device\Harddisk0\DR0\TDLFS\phx.dll - copied to quarantine
18:32:35.0045 5308 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
18:32:35.0045 5308 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
18:32:35.0076 5308 \Device\Harddisk0\DR0\TDLFS\phd - copied to quarantine
18:32:35.0076 5308 \Device\Harddisk0\DR0\TDLFS\phdx - copied to quarantine
18:32:35.0092 5308 \Device\Harddisk0\DR0\TDLFS\phs - copied to quarantine
18:32:35.0092 5308 \Device\Harddisk0\DR0\TDLFS\phdata - copied to quarantine
18:32:35.0108 5308 \Device\Harddisk0\DR0\TDLFS\phld - copied to quarantine
18:32:35.0108 5308 \Device\Harddisk0\DR0\TDLFS\phln - copied to quarantine
18:32:35.0139 5308 \Device\Harddisk0\DR0\TDLFS\phlx - copied to quarantine
18:32:35.0154 5308 \Device\Harddisk0\DR0\TDLFS\phm - copied to quarantine
18:32:35.0295 5308 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - will be cured on reboot
18:32:35.0373 5308 \Device\Harddisk0\DR0 - ok
18:32:35.0934 5308 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - User select action: Cure
18:32:35.0950 5308 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
18:32:35.0950 5308 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
18:32:41.0800 5656 Deinitialize success


aswMBR version 0.9.9.1649 Copyright© 2011 AVAST Software
Run date: 2012-02-24 18:41:19
-----------------------------
18:41:19.961 OS Version: Windows x64 6.1.7601 Service Pack 1
18:41:19.961 Number of processors: 2 586 0x200
18:41:19.961 ComputerName: SUES_COMPUTER UserName: Sue
18:41:22.005 Initialize success
18:56:45.570 AVAST engine defs: 12022402
18:57:15.054 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000067
18:57:15.054 Disk 0 Vendor: TOSHIBA_ GT00 Size: 305245MB BusType: 11
18:57:15.086 Disk 0 MBR read successfully
18:57:15.086 Disk 0 MBR scan
18:57:15.101 Disk 0 Windows VISTA default MBR code
18:57:15.132 Disk 0 Partition 1 80 (A) 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
18:57:15.148 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 291228 MB offset 3074048
18:57:15.210 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS NTFS 12516 MB offset 599508992
18:57:15.273 Disk 0 scanning C:\windows\system32\drivers
18:57:29.250 Service scanning
18:58:19.436 Modules scanning
18:58:19.451 Disk 0 trace - called modules:
18:58:19.482 ntoskrnl.exe CLASSPNP.SYS disk.sys amd_xata.sys storport.sys hal.dll amd_sata.sys
18:58:19.498 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800410f060]
18:58:19.514 3 CLASSPNP.SYS[fffff8800199143f] -> nt!IofCallDriver -> [0xfffffa8003bf5ac0]
18:58:19.529 5 amd_xata.sys[fffff880010b68b4] -> nt!IofCallDriver -> \Device\00000067[0xfffffa8003bf1060]
18:58:21.198 AVAST engine scan C:\windows
18:58:26.300 AVAST engine scan C:\windows\system32
19:04:05.382 AVAST engine scan C:\windows\system32\drivers
19:04:23.712 AVAST engine scan C:\Users\Sue
19:17:55.841 AVAST engine scan C:\ProgramData
19:20:39.971 Scan finished successfully
19:21:22.263 Disk 0 MBR has been saved successfully to "C:\MBR.dat"
19:21:22.279 The log file has been saved successfully to "C:\aswMBR.txt"


Let me know what you think I should do next. Thanks!

Paul

#4 Nosnahluap

Nosnahluap
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:59 AM

Posted 26 February 2012 - 11:43 AM

Hello again!

While watching TDSSKiller work, I saw that it found something (and removed it): Rootkit.Boot.Pihar.b. Since then, I have no signs of any problems - the fake Svchost.exe no longer appears in the C:/Windows folder. My laptop appears to be running well - so I think this is solved, unless you happen to see anything more in the logs.

Thanks for the help! I really appreciate it!

Paul

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:59 AM

Posted 26 February 2012 - 09:37 PM

We have some more scans before wrapping up

I want you to run TDSSkiller once again,click on SCAN

18:32:35.0950 5308 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip

Do not skip it,DELETE it

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#6 Nosnahluap

Nosnahluap
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:59 AM

Posted 27 February 2012 - 03:30 PM

Hello! I did as you described.

Here is the TDSSKiller Information (after selecting Delete for the item):

10:21:35.0253 0496 TDSS rootkit removing tool 2.7.15.0 Feb 27 2012 12:59:02
10:21:36.0907 0496 ============================================================
10:21:36.0907 0496 Current date / time: 2012/02/27 10:21:36.0907
10:21:36.0907 0496 SystemInfo:
10:21:36.0907 0496
10:21:36.0907 0496 OS Version: 6.1.7601 ServicePack: 1.0
10:21:36.0907 0496 Product type: Workstation
10:21:36.0907 0496 ComputerName: SUES_COMPUTER
10:21:36.0907 0496 UserName: Sue
10:21:36.0907 0496 Windows directory: C:\windows
10:21:36.0907 0496 System windows directory: C:\windows
10:21:36.0907 0496 Running under WOW64
10:21:36.0907 0496 Processor architecture: Intel x64
10:21:36.0907 0496 Number of processors: 2
10:21:36.0907 0496 Page size: 0x1000
10:21:36.0907 0496 Boot type: Normal boot
10:21:36.0907 0496 ============================================================
10:21:39.0184 0496 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:21:39.0200 0496 \Device\Harddisk0\DR0:
10:21:39.0200 0496 MBR used
10:21:39.0200 0496 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x238CE000
10:21:39.0294 0496 Initialize success
10:21:39.0294 0496 ============================================================
10:22:06.0072 2184 ============================================================
10:22:06.0072 2184 Scan started
10:22:06.0072 2184 Mode: Manual;
10:22:06.0072 2184 ============================================================
10:22:09.0613 2184 1394ohci (a87d604aea360176311474c87a63bb88) C:\windows\system32\drivers\1394ohci.sys
10:22:09.0629 2184 1394ohci - ok
10:22:09.0941 2184 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\windows\system32\drivers\ACPI.sys
10:22:09.0941 2184 ACPI - ok
10:22:10.0206 2184 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\windows\system32\drivers\acpipmi.sys
10:22:10.0206 2184 AcpiPmi - ok
10:22:10.0580 2184 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\windows\system32\drivers\adp94xx.sys
10:22:10.0580 2184 adp94xx - ok
10:22:10.0908 2184 adpahci (597f78224ee9224ea1a13d6350ced962) C:\windows\system32\drivers\adpahci.sys
10:22:10.0924 2184 adpahci - ok
10:22:11.0189 2184 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\windows\system32\drivers\adpu320.sys
10:22:11.0189 2184 adpu320 - ok
10:22:11.0485 2184 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\windows\system32\drivers\afd.sys
10:22:11.0516 2184 AFD - ok
10:22:11.0735 2184 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\windows\system32\drivers\agp440.sys
10:22:11.0750 2184 agp440 - ok
10:22:11.0953 2184 aliide (5812713a477a3ad7363c7438ca2ee038) C:\windows\system32\drivers\aliide.sys
10:22:11.0953 2184 aliide - ok
10:22:12.0234 2184 amdide (1ff8b4431c353ce385c875f194924c0c) C:\windows\system32\drivers\amdide.sys
10:22:12.0234 2184 amdide - ok
10:22:12.0468 2184 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\windows\system32\drivers\amdk8.sys
10:22:12.0468 2184 AmdK8 - ok
10:22:13.0856 2184 amdkmdag (194d76d2083318a2e7071a988e02ecf4) C:\windows\system32\DRIVERS\atikmdag.sys
10:22:14.0137 2184 amdkmdag - ok
10:22:14.0387 2184 amdkmdap (1eeffce9a3a65a56a28793eaa3f57026) C:\windows\system32\DRIVERS\atikmpag.sys
10:22:14.0402 2184 amdkmdap - ok
10:22:14.0636 2184 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\windows\system32\DRIVERS\amdppm.sys
10:22:14.0636 2184 AmdPPM - ok
10:22:15.0058 2184 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\windows\system32\drivers\amdsata.sys
10:22:15.0058 2184 amdsata - ok
10:22:15.0245 2184 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\windows\system32\drivers\amdsbs.sys
10:22:15.0260 2184 amdsbs - ok
10:22:15.0541 2184 amdxata (540daf1cea6094886d72126fd7c33048) C:\windows\system32\drivers\amdxata.sys
10:22:15.0541 2184 amdxata - ok
10:22:15.0744 2184 amd_sata (caee7c1afc9f1c9ee8dd11acd18d22e7) C:\windows\system32\DRIVERS\amd_sata.sys
10:22:15.0744 2184 amd_sata - ok
10:22:16.0118 2184 amd_xata (23726116b4fbcc84fc45b95157c08f5f) C:\windows\system32\DRIVERS\amd_xata.sys
10:22:16.0134 2184 amd_xata - ok
10:22:16.0477 2184 AppID (89a69c3f2f319b43379399547526d952) C:\windows\system32\drivers\appid.sys
10:22:16.0477 2184 AppID - ok
10:22:16.0789 2184 arc (c484f8ceb1717c540242531db7845c4e) C:\windows\system32\drivers\arc.sys
10:22:16.0805 2184 arc - ok
10:22:17.0273 2184 arcsas (019af6924aefe7839f61c830227fe79c) C:\windows\system32\drivers\arcsas.sys
10:22:17.0273 2184 arcsas - ok
10:22:17.0538 2184 AsyncMac (769765ce2cc62867468cea93969b2242) C:\windows\system32\DRIVERS\asyncmac.sys
10:22:17.0554 2184 AsyncMac - ok
10:22:17.0850 2184 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\windows\system32\drivers\atapi.sys
10:22:17.0850 2184 atapi - ok
10:22:18.0193 2184 AVGIDSDriver (e29ea1a0ec7ab9fa2dc7e75a03f12a4f) C:\windows\system32\DRIVERS\AVGIDSDriver.Sys
10:22:18.0193 2184 AVGIDSDriver - ok
10:22:18.0396 2184 AVGIDSEH (f823d184b8e8ffb8da3ead45dbf5bd6a) C:\windows\system32\DRIVERS\AVGIDSEH.Sys
10:22:18.0396 2184 AVGIDSEH - ok
10:22:18.0692 2184 AVGIDSFilter (ed2b25bd7fe35d1944211968842d30da) C:\windows\system32\DRIVERS\AVGIDSFilter.Sys
10:22:18.0692 2184 AVGIDSFilter - ok
10:22:18.0942 2184 Avgldx64 (979cf8912449a10b987218bff80a1fa3) C:\windows\system32\DRIVERS\avgldx64.sys
10:22:18.0958 2184 Avgldx64 - ok
10:22:19.0176 2184 Avgmfx64 (36b1a5843695766eac714daffc5b84d1) C:\windows\system32\DRIVERS\avgmfx64.sys
10:22:19.0176 2184 Avgmfx64 - ok
10:22:19.0457 2184 Avgrkx64 (1102239fb724527f1febbbbccf6bf313) C:\windows\system32\DRIVERS\avgrkx64.sys
10:22:19.0457 2184 Avgrkx64 - ok
10:22:19.0753 2184 Avgtdia (11f36d3ea82d9db9aa05a476a210551b) C:\windows\system32\DRIVERS\avgtdia.sys
10:22:19.0753 2184 Avgtdia - ok
10:22:20.0050 2184 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\windows\system32\drivers\bxvbda.sys
10:22:20.0050 2184 b06bdrv - ok
10:22:20.0377 2184 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\windows\system32\DRIVERS\b57nd60a.sys
10:22:20.0393 2184 b57nd60a - ok
10:22:20.0627 2184 Beep (16a47ce2decc9b099349a5f840654746) C:\windows\system32\drivers\Beep.sys
10:22:20.0627 2184 Beep - ok
10:22:20.0861 2184 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\windows\system32\DRIVERS\blbdrive.sys
10:22:20.0861 2184 blbdrive - ok
10:22:21.0079 2184 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\windows\system32\DRIVERS\bowser.sys
10:22:21.0079 2184 bowser - ok
10:22:21.0266 2184 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\windows\system32\drivers\BrFiltLo.sys
10:22:21.0266 2184 BrFiltLo - ok
10:22:21.0469 2184 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\windows\system32\drivers\BrFiltUp.sys
10:22:21.0469 2184 BrFiltUp - ok
10:22:21.0766 2184 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\windows\System32\Drivers\Brserid.sys
10:22:21.0781 2184 Brserid - ok
10:22:22.0015 2184 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\windows\System32\Drivers\BrSerWdm.sys
10:22:22.0015 2184 BrSerWdm - ok
10:22:22.0249 2184 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\windows\System32\Drivers\BrUsbMdm.sys
10:22:22.0249 2184 BrUsbMdm - ok
10:22:22.0530 2184 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\windows\System32\Drivers\BrUsbSer.sys
10:22:22.0530 2184 BrUsbSer - ok
10:22:22.0780 2184 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\windows\system32\drivers\bthmodem.sys
10:22:22.0780 2184 BTHMODEM - ok
10:22:23.0014 2184 cdfs (b8bd2bb284668c84865658c77574381a) C:\windows\system32\DRIVERS\cdfs.sys
10:22:23.0029 2184 cdfs - ok
10:22:23.0263 2184 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\windows\system32\DRIVERS\cdrom.sys
10:22:23.0279 2184 cdrom - ok
10:22:23.0497 2184 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\windows\system32\drivers\circlass.sys
10:22:23.0497 2184 circlass - ok
10:22:23.0731 2184 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\windows\system32\CLFS.sys
10:22:23.0747 2184 CLFS - ok
10:22:24.0059 2184 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\windows\system32\DRIVERS\CmBatt.sys
10:22:24.0074 2184 CmBatt - ok
10:22:24.0340 2184 cmdide (e19d3f095812725d88f9001985b94edd) C:\windows\system32\drivers\cmdide.sys
10:22:24.0340 2184 cmdide - ok
10:22:24.0558 2184 CNG (c4943b6c962e4b82197542447ad599f4) C:\windows\system32\Drivers\cng.sys
10:22:24.0574 2184 CNG - ok
10:22:24.0948 2184 CnxtHdAudService (99b1b888b793de320c5479b3c953781f) C:\windows\system32\drivers\CHDRT64.sys
10:22:24.0995 2184 CnxtHdAudService - ok
10:22:25.0229 2184 Compbatt (102de219c3f61415f964c88e9085ad14) C:\windows\system32\drivers\compbatt.sys
10:22:25.0244 2184 Compbatt - ok
10:22:25.0478 2184 CompositeBus (03edb043586cceba243d689bdda370a8) C:\windows\system32\DRIVERS\CompositeBus.sys
10:22:25.0478 2184 CompositeBus - ok
10:22:25.0728 2184 crcdisk (1c827878a998c18847245fe1f34ee597) C:\windows\system32\drivers\crcdisk.sys
10:22:25.0728 2184 crcdisk - ok
10:22:26.0102 2184 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\windows\system32\Drivers\dfsc.sys
10:22:26.0118 2184 DfsC - ok
10:22:26.0305 2184 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\windows\system32\drivers\discache.sys
10:22:26.0305 2184 discache - ok
10:22:26.0524 2184 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\windows\system32\drivers\disk.sys
10:22:26.0524 2184 Disk - ok
10:22:26.0758 2184 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\windows\system32\DRIVERS\Dot4.sys
10:22:26.0758 2184 Dot4 - ok
10:22:26.0945 2184 Dot4Print (e9f5969233c5d89f3c35e3a66a52a361) C:\windows\system32\DRIVERS\Dot4Prt.sys
10:22:26.0945 2184 Dot4Print - ok
10:22:27.0132 2184 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\windows\system32\DRIVERS\dot4usb.sys
10:22:27.0132 2184 dot4usb - ok
10:22:27.0413 2184 drmkaud (9b19f34400d24df84c858a421c205754) C:\windows\system32\drivers\drmkaud.sys
10:22:27.0413 2184 drmkaud - ok
10:22:27.0787 2184 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\windows\System32\drivers\dxgkrnl.sys
10:22:27.0818 2184 DXGKrnl - ok
10:22:28.0567 2184 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\windows\system32\drivers\evbda.sys
10:22:28.0598 2184 ebdrv - ok
10:22:29.0004 2184 elxstor (0e5da5369a0fcaea12456dd852545184) C:\windows\system32\drivers\elxstor.sys
10:22:29.0020 2184 elxstor - ok
10:22:29.0332 2184 ErrDev (34a3c54752046e79a126e15c51db409b) C:\windows\system32\drivers\errdev.sys
10:22:29.0332 2184 ErrDev - ok
10:22:29.0659 2184 ETD (5d82d501d2fee413b1f45f0302b5802c) C:\windows\system32\DRIVERS\ETD.sys
10:22:29.0690 2184 ETD - ok
10:22:29.0971 2184 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\windows\system32\drivers\exfat.sys
10:22:29.0971 2184 exfat - ok
10:22:30.0174 2184 fastfat (0adc83218b66a6db380c330836f3e36d) C:\windows\system32\drivers\fastfat.sys
10:22:30.0221 2184 fastfat - ok
10:22:30.0954 2184 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\windows\system32\drivers\fdc.sys
10:22:30.0954 2184 fdc - ok
10:22:31.0391 2184 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\windows\system32\drivers\fileinfo.sys
10:22:31.0391 2184 FileInfo - ok
10:22:31.0672 2184 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\windows\system32\drivers\filetrace.sys
10:22:31.0672 2184 Filetrace - ok
10:22:31.0968 2184 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\windows\system32\drivers\flpydisk.sys
10:22:31.0968 2184 flpydisk - ok
10:22:32.0186 2184 FltMgr (da6b67270fd9db3697b20fce94950741) C:\windows\system32\drivers\fltmgr.sys
10:22:32.0186 2184 FltMgr - ok
10:22:32.0389 2184 FsDepends (d43703496149971890703b4b1b723eac) C:\windows\system32\drivers\FsDepends.sys
10:22:32.0405 2184 FsDepends - ok
10:22:32.0639 2184 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\windows\system32\drivers\Fs_Rec.sys
10:22:32.0639 2184 Fs_Rec - ok
10:22:32.0888 2184 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\windows\system32\DRIVERS\fvevol.sys
10:22:32.0904 2184 fvevol - ok
10:22:33.0091 2184 FwLnk (60acb128e64c35c2b4e4aab1b0a5c293) C:\windows\system32\DRIVERS\FwLnk.sys
10:22:33.0091 2184 FwLnk - ok
10:22:33.0341 2184 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\windows\system32\drivers\gagp30kx.sys
10:22:33.0341 2184 gagp30kx - ok
10:22:33.0700 2184 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\windows\system32\drivers\hcw85cir.sys
10:22:33.0700 2184 hcw85cir - ok
10:22:33.0949 2184 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\windows\system32\drivers\HdAudio.sys
10:22:33.0965 2184 HdAudAddService - ok
10:22:34.0324 2184 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\windows\system32\DRIVERS\HDAudBus.sys
10:22:34.0324 2184 HDAudBus - ok
10:22:34.0604 2184 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\windows\system32\drivers\HidBatt.sys
10:22:34.0604 2184 HidBatt - ok
10:22:34.0838 2184 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\windows\system32\drivers\hidbth.sys
10:22:34.0854 2184 HidBth - ok
10:22:35.0182 2184 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\windows\system32\drivers\hidir.sys
10:22:35.0182 2184 HidIr - ok
10:22:35.0384 2184 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\windows\system32\DRIVERS\hidusb.sys
10:22:35.0384 2184 HidUsb - ok
10:22:35.0556 2184 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\windows\system32\drivers\HpSAMD.sys
10:22:35.0556 2184 HpSAMD - ok
10:22:36.0149 2184 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\windows\system32\drivers\HTTP.sys
10:22:36.0164 2184 HTTP - ok
10:22:36.0305 2184 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\windows\system32\drivers\hwpolicy.sys
10:22:36.0305 2184 hwpolicy - ok
10:22:36.0523 2184 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\windows\system32\DRIVERS\i8042prt.sys
10:22:36.0539 2184 i8042prt - ok
10:22:36.0742 2184 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\windows\system32\drivers\iaStorV.sys
10:22:36.0742 2184 iaStorV - ok
10:22:37.0007 2184 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\windows\system32\drivers\iirsp.sys
10:22:37.0022 2184 iirsp - ok
10:22:37.0256 2184 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\windows\system32\drivers\intelide.sys
10:22:37.0256 2184 intelide - ok
10:22:37.0522 2184 intelppm (ada036632c664caa754079041cf1f8c1) C:\windows\system32\drivers\intelppm.sys
10:22:37.0522 2184 intelppm - ok
10:22:37.0771 2184 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\windows\system32\DRIVERS\ipfltdrv.sys
10:22:37.0771 2184 IpFilterDriver - ok
10:22:38.0036 2184 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\windows\system32\drivers\IPMIDrv.sys
10:22:38.0036 2184 IPMIDRV - ok
10:22:38.0224 2184 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\windows\system32\drivers\ipnat.sys
10:22:38.0239 2184 IPNAT - ok
10:22:38.0473 2184 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\windows\system32\drivers\irenum.sys
10:22:38.0473 2184 IRENUM - ok
10:22:38.0692 2184 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\windows\system32\drivers\isapnp.sys
10:22:38.0692 2184 isapnp - ok
10:22:38.0910 2184 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\windows\system32\drivers\msiscsi.sys
10:22:38.0910 2184 iScsiPrt - ok
10:22:39.0097 2184 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\windows\system32\DRIVERS\kbdclass.sys
10:22:39.0097 2184 kbdclass - ok
10:22:39.0253 2184 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\windows\system32\DRIVERS\kbdhid.sys
10:22:39.0253 2184 kbdhid - ok
10:22:39.0456 2184 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\windows\system32\Drivers\ksecdd.sys
10:22:39.0456 2184 KSecDD - ok
10:22:39.0721 2184 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\windows\system32\Drivers\ksecpkg.sys
10:22:39.0721 2184 KSecPkg - ok
10:22:39.0924 2184 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\windows\system32\drivers\ksthunk.sys
10:22:39.0924 2184 ksthunk - ok
10:22:40.0142 2184 L1C (655a5d8e80869781cce23760ada7e695) C:\windows\system32\DRIVERS\L1C62x64.sys
10:22:40.0142 2184 L1C - ok
10:22:40.0392 2184 lltdio (1538831cf8ad2979a04c423779465827) C:\windows\system32\DRIVERS\lltdio.sys
10:22:40.0408 2184 lltdio - ok
10:22:40.0642 2184 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\windows\system32\drivers\lsi_fc.sys
10:22:40.0642 2184 LSI_FC - ok
10:22:40.0829 2184 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\windows\system32\drivers\lsi_sas.sys
10:22:40.0829 2184 LSI_SAS - ok
10:22:41.0047 2184 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\windows\system32\drivers\lsi_sas2.sys
10:22:41.0047 2184 LSI_SAS2 - ok
10:22:41.0297 2184 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\windows\system32\drivers\lsi_scsi.sys
10:22:41.0297 2184 LSI_SCSI - ok
10:22:41.0500 2184 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\windows\system32\drivers\luafv.sys
10:22:41.0515 2184 luafv - ok
10:22:41.0780 2184 MBAMProtector (79da94b35371b9e7104460c7693dcb2c) C:\windows\system32\drivers\mbam.sys
10:22:41.0780 2184 MBAMProtector - ok
10:22:42.0077 2184 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\windows\system32\drivers\megasas.sys
10:22:42.0077 2184 megasas - ok
10:22:42.0373 2184 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\windows\system32\drivers\MegaSR.sys
10:22:42.0373 2184 MegaSR - ok
10:22:42.0670 2184 Modem (800ba92f7010378b09f9ed9270f07137) C:\windows\system32\drivers\modem.sys
10:22:42.0670 2184 Modem - ok
10:22:42.0997 2184 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\windows\system32\DRIVERS\monitor.sys
10:22:42.0997 2184 monitor - ok
10:22:43.0184 2184 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\windows\system32\DRIVERS\mouclass.sys
10:22:43.0200 2184 mouclass - ok
10:22:43.0481 2184 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\windows\system32\DRIVERS\mouhid.sys
10:22:43.0481 2184 mouhid - ok
10:22:43.0668 2184 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\windows\system32\drivers\mountmgr.sys
10:22:43.0668 2184 mountmgr - ok
10:22:43.0902 2184 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\windows\system32\drivers\mpio.sys
10:22:43.0902 2184 mpio - ok
10:22:44.0105 2184 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\windows\system32\drivers\mpsdrv.sys
10:22:44.0105 2184 mpsdrv - ok
10:22:44.0308 2184 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\windows\system32\drivers\mrxdav.sys
10:22:44.0308 2184 MRxDAV - ok
10:22:44.0635 2184 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\windows\system32\DRIVERS\mrxsmb.sys
10:22:44.0635 2184 mrxsmb - ok
10:22:44.0900 2184 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\windows\system32\DRIVERS\mrxsmb10.sys
10:22:44.0916 2184 mrxsmb10 - ok
10:22:45.0166 2184 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\windows\system32\DRIVERS\mrxsmb20.sys
10:22:45.0181 2184 mrxsmb20 - ok
10:22:45.0446 2184 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\windows\system32\drivers\msahci.sys
10:22:45.0446 2184 msahci - ok
10:22:45.0852 2184 msdsm (db801a638d011b9633829eb6f663c900) C:\windows\system32\drivers\msdsm.sys
10:22:45.0852 2184 msdsm - ok
10:22:46.0226 2184 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\windows\system32\drivers\Msfs.sys
10:22:46.0226 2184 Msfs - ok
10:22:46.0414 2184 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\windows\System32\drivers\mshidkmdf.sys
10:22:46.0429 2184 mshidkmdf - ok
10:22:46.0585 2184 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\windows\system32\drivers\msisadrv.sys
10:22:46.0601 2184 msisadrv - ok
10:22:46.0928 2184 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\windows\system32\drivers\MSKSSRV.sys
10:22:46.0944 2184 MSKSSRV - ok
10:22:47.0147 2184 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\windows\system32\drivers\MSPCLOCK.sys
10:22:47.0147 2184 MSPCLOCK - ok
10:22:47.0334 2184 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\windows\system32\drivers\MSPQM.sys
10:22:47.0334 2184 MSPQM - ok
10:22:47.0786 2184 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\windows\system32\drivers\MsRPC.sys
10:22:47.0802 2184 MsRPC - ok
10:22:48.0176 2184 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\windows\system32\DRIVERS\mssmbios.sys
10:22:48.0192 2184 mssmbios - ok
10:22:48.0488 2184 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\windows\system32\drivers\MSTEE.sys
10:22:48.0488 2184 MSTEE - ok
10:22:48.0972 2184 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\windows\system32\drivers\MTConfig.sys
10:22:48.0988 2184 MTConfig - ok
10:22:49.0144 2184 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\windows\system32\Drivers\mup.sys
10:22:49.0144 2184 Mup - ok
10:22:49.0331 2184 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\windows\system32\DRIVERS\nwifi.sys
10:22:49.0346 2184 NativeWifiP - ok
10:22:49.0690 2184 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\windows\system32\drivers\ndis.sys
10:22:49.0705 2184 NDIS - ok
10:22:50.0080 2184 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\windows\system32\DRIVERS\ndiscap.sys
10:22:50.0080 2184 NdisCap - ok
10:22:50.0267 2184 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\windows\system32\DRIVERS\ndistapi.sys
10:22:50.0267 2184 NdisTapi - ok
10:22:50.0438 2184 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\windows\system32\DRIVERS\ndisuio.sys
10:22:50.0438 2184 Ndisuio - ok
10:22:50.0579 2184 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\windows\system32\DRIVERS\ndiswan.sys
10:22:50.0594 2184 NdisWan - ok
10:22:50.0891 2184 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\windows\system32\drivers\NDProxy.sys
10:22:50.0891 2184 NDProxy - ok
10:22:51.0172 2184 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\windows\system32\DRIVERS\netbios.sys
10:22:51.0187 2184 NetBIOS - ok
10:22:51.0374 2184 NetBT (09594d1089c523423b32a4229263f068) C:\windows\system32\DRIVERS\netbt.sys
10:22:51.0374 2184 NetBT - ok
10:22:51.0562 2184 nfrd960 (77889813be4d166cdab78ddba990da92) C:\windows\system32\drivers\nfrd960.sys
10:22:51.0562 2184 nfrd960 - ok
10:22:51.0796 2184 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\windows\system32\drivers\Npfs.sys
10:22:51.0796 2184 Npfs - ok
10:22:51.0967 2184 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\windows\system32\drivers\nsiproxy.sys
10:22:51.0967 2184 nsiproxy - ok
10:22:52.0154 2184 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\windows\system32\drivers\Ntfs.sys
10:22:52.0170 2184 Ntfs - ok
10:22:52.0310 2184 Null (9899284589f75fa8724ff3d16aed75c1) C:\windows\system32\drivers\Null.sys
10:22:52.0310 2184 Null - ok
10:22:52.0451 2184 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\windows\system32\drivers\nvraid.sys
10:22:52.0466 2184 nvraid - ok
10:22:52.0607 2184 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\windows\system32\drivers\nvstor.sys
10:22:52.0622 2184 nvstor - ok
10:22:52.0825 2184 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\windows\system32\drivers\nv_agp.sys
10:22:52.0825 2184 nv_agp - ok
10:22:53.0044 2184 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\windows\system32\drivers\ohci1394.sys
10:22:53.0044 2184 ohci1394 - ok
10:22:53.0231 2184 Parport (0086431c29c35be1dbc43f52cc273887) C:\windows\system32\drivers\parport.sys
10:22:53.0246 2184 Parport - ok
10:22:53.0402 2184 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\windows\system32\drivers\partmgr.sys
10:22:53.0402 2184 partmgr - ok
10:22:53.0558 2184 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\windows\system32\drivers\pci.sys
10:22:53.0558 2184 pci - ok
10:22:53.0714 2184 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\windows\system32\DRIVERS\pciide.sys
10:22:53.0714 2184 pciide - ok
10:22:53.0855 2184 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\windows\system32\drivers\pcmcia.sys
10:22:53.0870 2184 pcmcia - ok
10:22:54.0026 2184 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\windows\system32\drivers\pcw.sys
10:22:54.0026 2184 pcw - ok
10:22:54.0182 2184 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\windows\system32\drivers\peauth.sys
10:22:54.0198 2184 PEAUTH - ok
10:22:54.0370 2184 PGEffect (91111cebbde8015e822c46120ed9537c) C:\windows\system32\DRIVERS\pgeffect.sys
10:22:54.0385 2184 PGEffect - ok
10:22:54.0682 2184 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\windows\system32\DRIVERS\raspptp.sys
10:22:54.0682 2184 PptpMiniport - ok
10:22:54.0838 2184 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\windows\system32\drivers\processr.sys
10:22:54.0838 2184 Processor - ok
10:22:55.0056 2184 Psched (0557cf5a2556bd58e26384169d72438d) C:\windows\system32\DRIVERS\pacer.sys
10:22:55.0056 2184 Psched - ok
10:22:55.0477 2184 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\windows\system32\drivers\ql2300.sys
10:22:55.0493 2184 ql2300 - ok
10:22:55.0680 2184 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\windows\system32\drivers\ql40xx.sys
10:22:55.0696 2184 ql40xx - ok
10:22:55.0961 2184 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\windows\system32\drivers\qwavedrv.sys
10:22:55.0961 2184 QWAVEdrv - ok
10:22:56.0117 2184 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\windows\system32\DRIVERS\rasacd.sys
10:22:56.0132 2184 RasAcd - ok
10:22:56.0304 2184 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\windows\system32\DRIVERS\AgileVpn.sys
10:22:56.0320 2184 RasAgileVpn - ok
10:22:56.0507 2184 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\windows\system32\DRIVERS\rasl2tp.sys
10:22:56.0522 2184 Rasl2tp - ok
10:22:56.0725 2184 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\windows\system32\DRIVERS\raspppoe.sys
10:22:56.0725 2184 RasPppoe - ok
10:22:56.0975 2184 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\windows\system32\DRIVERS\rassstp.sys
10:22:56.0990 2184 RasSstp - ok
10:22:57.0209 2184 rdbss (77f665941019a1594d887a74f301fa2f) C:\windows\system32\DRIVERS\rdbss.sys
10:22:57.0224 2184 rdbss - ok
10:22:57.0443 2184 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\windows\system32\drivers\rdpbus.sys
10:22:57.0443 2184 rdpbus - ok
10:22:57.0630 2184 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\windows\system32\DRIVERS\RDPCDD.sys
10:22:57.0630 2184 RDPCDD - ok
10:22:57.0864 2184 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\windows\system32\drivers\rdpencdd.sys
10:22:57.0864 2184 RDPENCDD - ok
10:22:58.0082 2184 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\windows\system32\drivers\rdprefmp.sys
10:22:58.0082 2184 RDPREFMP - ok
10:22:58.0363 2184 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\windows\system32\drivers\RDPWD.sys
10:22:58.0363 2184 RDPWD - ok
10:22:58.0628 2184 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\windows\system32\drivers\rdyboost.sys
10:22:58.0628 2184 rdyboost - ok
10:22:58.0862 2184 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\windows\system32\DRIVERS\rspndr.sys
10:22:58.0878 2184 rspndr - ok
10:22:59.0128 2184 RSUSBSTOR (0e3dcf76f11dc431b088a2dfd7265cda) C:\windows\system32\Drivers\RtsUStor.sys
10:22:59.0174 2184 RSUSBSTOR - ok
10:22:59.0596 2184 RTL8192Ce (64fdf4fe366ca42da2b7d9d424b6e39b) C:\windows\system32\DRIVERS\rtl8192Ce.sys
10:22:59.0611 2184 RTL8192Ce - ok
10:23:00.0204 2184 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\windows\system32\drivers\sbp2port.sys
10:23:00.0204 2184 sbp2port - ok
10:23:00.0500 2184 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\windows\system32\DRIVERS\scfilter.sys
10:23:00.0516 2184 scfilter - ok
10:23:01.0530 2184 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\windows\system32\drivers\secdrv.sys
10:23:01.0546 2184 secdrv - ok
10:23:01.0795 2184 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\windows\system32\drivers\serenum.sys
10:23:01.0795 2184 Serenum - ok
10:23:01.0967 2184 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\windows\system32\drivers\serial.sys
10:23:01.0983 2184 Serial - ok
10:23:02.0201 2184 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\windows\system32\drivers\sermouse.sys
10:23:02.0232 2184 sermouse - ok
10:23:02.0466 2184 sffdisk (a554811bcd09279536440c964ae35bbf) C:\windows\system32\drivers\sffdisk.sys
10:23:02.0466 2184 sffdisk - ok
10:23:02.0685 2184 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\windows\system32\drivers\sffp_mmc.sys
10:23:02.0685 2184 sffp_mmc - ok
10:23:02.0887 2184 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\windows\system32\drivers\sffp_sd.sys
10:23:02.0887 2184 sffp_sd - ok
10:23:03.0168 2184 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\windows\system32\drivers\sfloppy.sys
10:23:03.0168 2184 sfloppy - ok
10:23:03.0402 2184 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\windows\system32\drivers\SiSRaid2.sys
10:23:03.0418 2184 SiSRaid2 - ok
10:23:03.0636 2184 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\windows\system32\drivers\sisraid4.sys
10:23:03.0636 2184 SiSRaid4 - ok
10:23:03.0917 2184 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\windows\system32\DRIVERS\smb.sys
10:23:03.0933 2184 Smb - ok
10:23:04.0213 2184 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\windows\system32\drivers\spldr.sys
10:23:04.0213 2184 spldr - ok
10:23:04.0463 2184 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\windows\system32\DRIVERS\srv.sys
10:23:04.0494 2184 srv - ok
10:23:04.0666 2184 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\windows\system32\DRIVERS\srv2.sys
10:23:04.0666 2184 srv2 - ok
10:23:04.0837 2184 srvnet (27e461f0be5bff5fc737328f749538c3) C:\windows\system32\DRIVERS\srvnet.sys
10:23:04.0837 2184 srvnet - ok
10:23:05.0025 2184 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\windows\system32\drivers\stexstor.sys
10:23:05.0025 2184 stexstor - ok
10:23:05.0259 2184 StillCam (decacb6921ded1a38642642685d77dac) C:\windows\system32\DRIVERS\serscan.sys
10:23:05.0274 2184 StillCam - ok
10:23:05.0571 2184 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\windows\system32\DRIVERS\swenum.sys
10:23:05.0571 2184 swenum - ok
10:23:05.0945 2184 Tcpip (fc62769e7bff2896035aeed399108162) C:\windows\system32\drivers\tcpip.sys
10:23:05.0992 2184 Tcpip - ok
10:23:06.0351 2184 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\windows\system32\DRIVERS\tcpip.sys
10:23:06.0366 2184 TCPIP6 - ok
10:23:06.0538 2184 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\windows\system32\drivers\tcpipreg.sys
10:23:06.0553 2184 tcpipreg - ok
10:23:06.0787 2184 tdcmdpst (fd542b661bd22fa69ca789ad0ac58c29) C:\windows\system32\DRIVERS\tdcmdpst.sys
10:23:06.0787 2184 tdcmdpst - ok
10:23:06.0943 2184 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\windows\system32\drivers\tdpipe.sys
10:23:06.0943 2184 TDPIPE - ok
10:23:07.0177 2184 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\windows\system32\drivers\tdtcp.sys
10:23:07.0193 2184 TDTCP - ok
10:23:07.0365 2184 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\windows\system32\DRIVERS\tdx.sys
10:23:07.0365 2184 tdx - ok
10:23:07.0552 2184 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\windows\system32\DRIVERS\termdd.sys
10:23:07.0552 2184 TermDD - ok
10:23:07.0911 2184 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\windows\system32\DRIVERS\tssecsrv.sys
10:23:07.0911 2184 tssecsrv - ok
10:23:08.0191 2184 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\windows\system32\drivers\tsusbflt.sys
10:23:08.0191 2184 TsUsbFlt - ok
10:23:08.0394 2184 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\windows\system32\drivers\TsUsbGD.sys
10:23:08.0394 2184 TsUsbGD - ok
10:23:08.0597 2184 tunnel (3566a8daafa27af944f5d705eaa64894) C:\windows\system32\DRIVERS\tunnel.sys
10:23:08.0613 2184 tunnel - ok
10:23:08.0940 2184 TVALZ (550b567f9364d8f7684c3fb3ea665a72) C:\windows\system32\DRIVERS\TVALZ_O.SYS
10:23:08.0971 2184 TVALZ - ok
10:23:09.0112 2184 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\windows\system32\drivers\uagp35.sys
10:23:09.0112 2184 uagp35 - ok
10:23:09.0268 2184 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\windows\system32\DRIVERS\udfs.sys
10:23:09.0299 2184 udfs - ok
10:23:09.0502 2184 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\windows\system32\drivers\uliagpkx.sys
10:23:09.0502 2184 uliagpkx - ok
10:23:09.0751 2184 umbus (dc54a574663a895c8763af0fa1ff7561) C:\windows\system32\DRIVERS\umbus.sys
10:23:09.0751 2184 umbus - ok
10:23:10.0048 2184 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\windows\system32\drivers\umpass.sys
10:23:10.0048 2184 UmPass - ok
10:23:10.0235 2184 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\windows\system32\DRIVERS\usbccgp.sys
10:23:10.0235 2184 usbccgp - ok
10:23:10.0563 2184 usbcir (af0892a803fdda7492f595368e3b68e7) C:\windows\system32\drivers\usbcir.sys
10:23:10.0594 2184 usbcir - ok
10:23:10.0828 2184 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\windows\system32\DRIVERS\usbehci.sys
10:23:10.0828 2184 usbehci - ok
10:23:11.0265 2184 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\windows\system32\DRIVERS\usbhub.sys
10:23:11.0311 2184 usbhub - ok
10:23:11.0421 2184 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\windows\system32\DRIVERS\usbohci.sys
10:23:11.0421 2184 usbohci - ok
10:23:11.0639 2184 usbprint (73188f58fb384e75c4063d29413cee3d) C:\windows\system32\DRIVERS\usbprint.sys
10:23:11.0639 2184 usbprint - ok
10:23:11.0842 2184 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\windows\system32\DRIVERS\usbscan.sys
10:23:11.0873 2184 usbscan - ok
10:23:12.0091 2184 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\windows\system32\DRIVERS\USBSTOR.SYS
10:23:12.0091 2184 USBSTOR - ok
10:23:12.0279 2184 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\windows\system32\drivers\usbuhci.sys
10:23:12.0279 2184 usbuhci - ok
10:23:12.0778 2184 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\windows\system32\Drivers\usbvideo.sys
10:23:12.0809 2184 usbvideo - ok
10:23:13.0012 2184 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\windows\system32\drivers\vdrvroot.sys
10:23:13.0043 2184 vdrvroot - ok
10:23:13.0293 2184 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\windows\system32\DRIVERS\vgapnp.sys
10:23:13.0293 2184 vga - ok
10:23:13.0558 2184 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\windows\System32\drivers\vga.sys
10:23:13.0558 2184 VgaSave - ok
10:23:13.0823 2184 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\windows\system32\drivers\vhdmp.sys
10:23:13.0823 2184 vhdmp - ok
10:23:14.0041 2184 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\windows\system32\drivers\viaide.sys
10:23:14.0041 2184 viaide - ok
10:23:14.0260 2184 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\windows\system32\drivers\volmgr.sys
10:23:14.0260 2184 volmgr - ok
10:23:14.0494 2184 volmgrx (a255814907c89be58b79ef2f189b843b) C:\windows\system32\drivers\volmgrx.sys
10:23:14.0509 2184 volmgrx - ok
10:23:14.0650 2184 volsnap (df8126bd41180351a093a3ad2fc8903b) C:\windows\system32\drivers\volsnap.sys
10:23:14.0681 2184 volsnap - ok
10:23:14.0837 2184 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\windows\system32\drivers\vsmraid.sys
10:23:14.0837 2184 vsmraid - ok
10:23:14.0962 2184 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\windows\system32\DRIVERS\vwifibus.sys
10:23:15.0009 2184 vwifibus - ok
10:23:15.0165 2184 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\windows\system32\DRIVERS\vwififlt.sys
10:23:15.0196 2184 vwififlt - ok
10:23:15.0305 2184 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\windows\system32\DRIVERS\vwifimp.sys
10:23:15.0321 2184 vwifimp - ok
10:23:15.0477 2184 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\windows\system32\drivers\wacompen.sys
10:23:15.0492 2184 WacomPen - ok
10:23:15.0695 2184 WANARP (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
10:23:15.0726 2184 WANARP - ok
10:23:15.0742 2184 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
10:23:15.0757 2184 Wanarpv6 - ok
10:23:15.0929 2184 Wd (72889e16ff12ba0f235467d6091b17dc) C:\windows\system32\drivers\wd.sys
10:23:15.0945 2184 Wd - ok
10:23:16.0101 2184 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\windows\system32\drivers\Wdf01000.sys
10:23:16.0116 2184 Wdf01000 - ok
10:23:16.0335 2184 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\windows\system32\DRIVERS\wfplwf.sys
10:23:16.0335 2184 WfpLwf - ok
10:23:16.0475 2184 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\windows\system32\drivers\wimmount.sys
10:23:16.0475 2184 WIMMount - ok
10:23:16.0709 2184 WinUsb (fe88b288356e7b47b74b13372add906d) C:\windows\system32\DRIVERS\WinUsb.sys
10:23:16.0725 2184 WinUsb - ok
10:23:16.0896 2184 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\windows\system32\drivers\wmiacpi.sys
10:23:16.0912 2184 WmiAcpi - ok
10:23:17.0099 2184 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\windows\system32\drivers\ws2ifsl.sys
10:23:17.0099 2184 ws2ifsl - ok
10:23:17.0239 2184 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\windows\system32\DRIVERS\WSDPrint.sys
10:23:17.0239 2184 WSDPrintDevice - ok
10:23:17.0411 2184 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\windows\system32\drivers\WudfPf.sys
10:23:17.0411 2184 WudfPf - ok
10:23:17.0551 2184 WUDFRd (cf8d590be3373029d57af80914190682) C:\windows\system32\DRIVERS\WUDFRd.sys
10:23:17.0583 2184 WUDFRd - ok
10:23:17.0707 2184 MBR (0x1B8) (5b5e648d12fcadc244c1ec30318e1eb9) \Device\Harddisk0\DR0
10:23:17.0770 2184 \Device\Harddisk0\DR0 - ok
10:23:17.0801 2184 Boot (0x1200) (de8590baa713dfec22a1b646ac041426) \Device\Harddisk0\DR0\Partition0
10:23:17.0832 2184 \Device\Harddisk0\DR0\Partition0 - ok
10:23:17.0832 2184 ============================================================
10:23:17.0832 2184 Scan finished
10:23:17.0832 2184 ============================================================
10:23:17.0863 3992 Detected object count: 0
10:23:17.0863 3992 Actual detected object count: 0
10:24:28.0890 0236 ============================================================
10:24:28.0890 0236 Scan started
10:24:28.0890 0236 Mode: Manual; TDLFS;
10:24:28.0890 0236 ============================================================
10:24:30.0013 0236 1394ohci (a87d604aea360176311474c87a63bb88) C:\windows\system32\drivers\1394ohci.sys
10:24:30.0013 0236 1394ohci - ok
10:24:30.0169 0236 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\windows\system32\drivers\ACPI.sys
10:24:30.0169 0236 ACPI - ok
10:24:30.0325 0236 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\windows\system32\drivers\acpipmi.sys
10:24:30.0325 0236 AcpiPmi - ok
10:24:30.0481 0236 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\windows\system32\drivers\adp94xx.sys
10:24:30.0497 0236 adp94xx - ok
10:24:30.0669 0236 adpahci (597f78224ee9224ea1a13d6350ced962) C:\windows\system32\drivers\adpahci.sys
10:24:30.0669 0236 adpahci - ok
10:24:30.0825 0236 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\windows\system32\drivers\adpu320.sys
10:24:30.0840 0236 adpu320 - ok
10:24:31.0027 0236 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\windows\system32\drivers\afd.sys
10:24:31.0043 0236 AFD - ok
10:24:31.0199 0236 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\windows\system32\drivers\agp440.sys
10:24:31.0199 0236 agp440 - ok
10:24:31.0355 0236 aliide (5812713a477a3ad7363c7438ca2ee038) C:\windows\system32\drivers\aliide.sys
10:24:31.0355 0236 aliide - ok
10:24:31.0511 0236 amdide (1ff8b4431c353ce385c875f194924c0c) C:\windows\system32\drivers\amdide.sys
10:24:31.0511 0236 amdide - ok
10:24:31.0729 0236 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\windows\system32\drivers\amdk8.sys
10:24:31.0729 0236 AmdK8 - ok
10:24:32.0088 0236 amdkmdag (194d76d2083318a2e7071a988e02ecf4) C:\windows\system32\DRIVERS\atikmdag.sys
10:24:32.0197 0236 amdkmdag - ok
10:24:32.0353 0236 amdkmdap (1eeffce9a3a65a56a28793eaa3f57026) C:\windows\system32\DRIVERS\atikmpag.sys
10:24:32.0353 0236 amdkmdap - ok
10:24:32.0494 0236 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\windows\system32\DRIVERS\amdppm.sys
10:24:32.0494 0236 AmdPPM - ok
10:24:32.0681 0236 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\windows\system32\drivers\amdsata.sys
10:24:32.0681 0236 amdsata - ok
10:24:32.0837 0236 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\windows\system32\drivers\amdsbs.sys
10:24:32.0837 0236 amdsbs - ok
10:24:32.0977 0236 amdxata (540daf1cea6094886d72126fd7c33048) C:\windows\system32\drivers\amdxata.sys
10:24:32.0977 0236 amdxata - ok
10:24:33.0118 0236 amd_sata (caee7c1afc9f1c9ee8dd11acd18d22e7) C:\windows\system32\DRIVERS\amd_sata.sys
10:24:33.0118 0236 amd_sata - ok
10:24:33.0274 0236 amd_xata (23726116b4fbcc84fc45b95157c08f5f) C:\windows\system32\DRIVERS\amd_xata.sys
10:24:33.0274 0236 amd_xata - ok
10:24:33.0430 0236 AppID (89a69c3f2f319b43379399547526d952) C:\windows\system32\drivers\appid.sys
10:24:33.0430 0236 AppID - ok
10:24:33.0586 0236 arc (c484f8ceb1717c540242531db7845c4e) C:\windows\system32\drivers\arc.sys
10:24:33.0586 0236 arc - ok
10:24:33.0789 0236 arcsas (019af6924aefe7839f61c830227fe79c) C:\windows\system32\drivers\arcsas.sys
10:24:33.0789 0236 arcsas - ok
10:24:33.0929 0236 AsyncMac (769765ce2cc62867468cea93969b2242) C:\windows\system32\DRIVERS\asyncmac.sys
10:24:33.0929 0236 AsyncMac - ok
10:24:34.0069 0236 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\windows\system32\drivers\atapi.sys
10:24:34.0069 0236 atapi - ok
10:24:34.0257 0236 AVGIDSDriver (e29ea1a0ec7ab9fa2dc7e75a03f12a4f) C:\windows\system32\DRIVERS\AVGIDSDriver.Sys
10:24:34.0257 0236 AVGIDSDriver - ok
10:24:34.0413 0236 AVGIDSEH (f823d184b8e8ffb8da3ead45dbf5bd6a) C:\windows\system32\DRIVERS\AVGIDSEH.Sys
10:24:34.0413 0236 AVGIDSEH - ok
10:24:34.0584 0236 AVGIDSFilter (ed2b25bd7fe35d1944211968842d30da) C:\windows\system32\DRIVERS\AVGIDSFilter.Sys
10:24:34.0584 0236 AVGIDSFilter - ok
10:24:34.0740 0236 Avgldx64 (979cf8912449a10b987218bff80a1fa3) C:\windows\system32\DRIVERS\avgldx64.sys
10:24:34.0740 0236 Avgldx64 - ok
10:24:34.0896 0236 Avgmfx64 (36b1a5843695766eac714daffc5b84d1) C:\windows\system32\DRIVERS\avgmfx64.sys
10:24:34.0896 0236 Avgmfx64 - ok
10:24:35.0037 0236 Avgrkx64 (1102239fb724527f1febbbbccf6bf313) C:\windows\system32\DRIVERS\avgrkx64.sys
10:24:35.0037 0236 Avgrkx64 - ok
10:24:35.0193 0236 Avgtdia (11f36d3ea82d9db9aa05a476a210551b) C:\windows\system32\DRIVERS\avgtdia.sys
10:24:35.0193 0236 Avgtdia - ok
10:24:35.0364 0236 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\windows\system32\drivers\bxvbda.sys
10:24:35.0364 0236 b06bdrv - ok
10:24:35.0536 0236 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\windows\system32\DRIVERS\b57nd60a.sys
10:24:35.0551 0236 b57nd60a - ok
10:24:35.0739 0236 Beep (16a47ce2decc9b099349a5f840654746) C:\windows\system32\drivers\Beep.sys
10:24:35.0739 0236 Beep - ok
10:24:35.0895 0236 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\windows\system32\DRIVERS\blbdrive.sys
10:24:35.0910 0236 blbdrive - ok
10:24:36.0051 0236 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\windows\system32\DRIVERS\bowser.sys
10:24:36.0051 0236 bowser - ok
10:24:36.0207 0236 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\windows\system32\drivers\BrFiltLo.sys
10:24:36.0207 0236 BrFiltLo - ok
10:24:36.0378 0236 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\windows\system32\drivers\BrFiltUp.sys
10:24:36.0378 0236 BrFiltUp - ok
10:24:36.0550 0236 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\windows\System32\Drivers\Brserid.sys
10:24:36.0550 0236 Brserid - ok
10:24:36.0721 0236 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\windows\System32\Drivers\BrSerWdm.sys
10:24:36.0721 0236 BrSerWdm - ok
10:24:36.0862 0236 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\windows\System32\Drivers\BrUsbMdm.sys
10:24:36.0862 0236 BrUsbMdm - ok
10:24:37.0002 0236 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\windows\System32\Drivers\BrUsbSer.sys
10:24:37.0018 0236 BrUsbSer - ok
10:24:37.0143 0236 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\windows\system32\drivers\bthmodem.sys
10:24:37.0143 0236 BTHMODEM - ok
10:24:37.0330 0236 cdfs (b8bd2bb284668c84865658c77574381a) C:\windows\system32\DRIVERS\cdfs.sys
10:24:37.0330 0236 cdfs - ok
10:24:37.0501 0236 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\windows\system32\DRIVERS\cdrom.sys
10:24:37.0517 0236 cdrom - ok
10:24:37.0720 0236 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\windows\system32\drivers\circlass.sys
10:24:37.0720 0236 circlass - ok
10:24:37.0860 0236 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\windows\system32\CLFS.sys
10:24:37.0860 0236 CLFS - ok
10:24:38.0047 0236 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\windows\system32\DRIVERS\CmBatt.sys
10:24:38.0047 0236 CmBatt - ok
10:24:38.0203 0236 cmdide (e19d3f095812725d88f9001985b94edd) C:\windows\system32\drivers\cmdide.sys
10:24:38.0203 0236 cmdide - ok
10:24:38.0359 0236 CNG (c4943b6c962e4b82197542447ad599f4) C:\windows\system32\Drivers\cng.sys
10:24:38.0359 0236 CNG - ok
10:24:38.0547 0236 CnxtHdAudService (99b1b888b793de320c5479b3c953781f) C:\windows\system32\drivers\CHDRT64.sys
10:24:38.0562 0236 CnxtHdAudService - ok
10:24:38.0703 0236 Compbatt (102de219c3f61415f964c88e9085ad14) C:\windows\system32\drivers\compbatt.sys
10:24:38.0703 0236 Compbatt - ok
10:24:38.0843 0236 CompositeBus (03edb043586cceba243d689bdda370a8) C:\windows\system32\DRIVERS\CompositeBus.sys
10:24:38.0843 0236 CompositeBus - ok
10:24:38.0999 0236 crcdisk (1c827878a998c18847245fe1f34ee597) C:\windows\system32\drivers\crcdisk.sys
10:24:39.0015 0236 crcdisk - ok
10:24:39.0202 0236 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\windows\system32\Drivers\dfsc.sys
10:24:39.0217 0236 DfsC - ok
10:24:39.0358 0236 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\windows\system32\drivers\discache.sys
10:24:39.0358 0236 discache - ok
10:24:39.0498 0236 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\windows\system32\drivers\disk.sys
10:24:39.0498 0236 Disk - ok
10:24:39.0732 0236 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\windows\system32\DRIVERS\Dot4.sys
10:24:39.0732 0236 Dot4 - ok
10:24:39.0873 0236 Dot4Print (e9f5969233c5d89f3c35e3a66a52a361) C:\windows\system32\DRIVERS\Dot4Prt.sys
10:24:39.0873 0236 Dot4Print - ok
10:24:40.0013 0236 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\windows\system32\DRIVERS\dot4usb.sys
10:24:40.0013 0236 dot4usb - ok
10:24:40.0169 0236 drmkaud (9b19f34400d24df84c858a421c205754) C:\windows\system32\drivers\drmkaud.sys
10:24:40.0169 0236 drmkaud - ok
10:24:40.0356 0236 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\windows\System32\drivers\dxgkrnl.sys
10:24:40.0372 0236 DXGKrnl - ok
10:24:40.0590 0236 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\windows\system32\drivers\evbda.sys
10:24:40.0637 0236 ebdrv - ok
10:24:40.0840 0236 elxstor (0e5da5369a0fcaea12456dd852545184) C:\windows\system32\drivers\elxstor.sys
10:24:40.0840 0236 elxstor - ok
10:24:40.0980 0236 ErrDev (34a3c54752046e79a126e15c51db409b) C:\windows\system32\drivers\errdev.sys
10:24:40.0980 0236 ErrDev - ok
10:24:41.0152 0236 ETD (5d82d501d2fee413b1f45f0302b5802c) C:\windows\system32\DRIVERS\ETD.sys
10:24:41.0152 0236 ETD - ok
10:24:41.0323 0236 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\windows\system32\drivers\exfat.sys
10:24:41.0339 0236 exfat - ok
10:24:41.0479 0236 fastfat (0adc83218b66a6db380c330836f3e36d) C:\windows\system32\drivers\fastfat.sys
10:24:41.0479 0236 fastfat - ok
10:24:41.0667 0236 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\windows\system32\drivers\fdc.sys
10:24:41.0667 0236 fdc - ok
10:24:41.0854 0236 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\windows\system32\drivers\fileinfo.sys
10:24:41.0854 0236 FileInfo - ok
10:24:41.0994 0236 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\windows\system32\drivers\filetrace.sys
10:24:41.0994 0236 Filetrace - ok
10:24:42.0150 0236 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\windows\system32\drivers\flpydisk.sys
10:24:42.0150 0236 flpydisk - ok
10:24:42.0306 0236 FltMgr (da6b67270fd9db3697b20fce94950741) C:\windows\system32\drivers\fltmgr.sys
10:24:42.0306 0236 FltMgr - ok
10:24:42.0478 0236 FsDepends (d43703496149971890703b4b1b723eac) C:\windows\system32\drivers\FsDepends.sys
10:24:42.0478 0236 FsDepends - ok
10:24:42.0618 0236 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\windows\system32\drivers\Fs_Rec.sys
10:24:42.0618 0236 Fs_Rec - ok
10:24:42.0759 0236 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\windows\system32\DRIVERS\fvevol.sys
10:24:42.0759 0236 fvevol - ok
10:24:42.0899 0236 FwLnk (60acb128e64c35c2b4e4aab1b0a5c293) C:\windows\system32\DRIVERS\FwLnk.sys
10:24:42.0899 0236 FwLnk - ok
10:24:43.0071 0236 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\windows\system32\drivers\gagp30kx.sys
10:24:43.0071 0236 gagp30kx - ok
10:24:43.0258 0236 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\windows\system32\drivers\hcw85cir.sys
10:24:43.0258 0236 hcw85cir - ok
10:24:43.0398 0236 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\windows\system32\drivers\HdAudio.sys
10:24:43.0414 0236 HdAudAddService - ok
10:24:43.0570 0236 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\windows\system32\DRIVERS\HDAudBus.sys
10:24:43.0570 0236 HDAudBus - ok
10:24:43.0773 0236 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\windows\system32\drivers\HidBatt.sys
10:24:43.0773 0236 HidBatt - ok
10:24:43.0913 0236 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\windows\system32\drivers\hidbth.sys
10:24:43.0913 0236 HidBth - ok
10:24:44.0053 0236 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\windows\system32\drivers\hidir.sys
10:24:44.0053 0236 HidIr - ok
10:24:44.0209 0236 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\windows\system32\DRIVERS\hidusb.sys
10:24:44.0209 0236 HidUsb - ok
10:24:44.0412 0236 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\windows\system32\drivers\HpSAMD.sys
10:24:44.0412 0236 HpSAMD - ok
10:24:44.0584 0236 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\windows\system32\drivers\HTTP.sys
10:24:44.0584 0236 HTTP - ok
10:24:44.0724 0236 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\windows\system32\drivers\hwpolicy.sys
10:24:44.0724 0236 hwpolicy - ok
10:24:44.0865 0236 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\windows\system32\DRIVERS\i8042prt.sys
10:24:44.0880 0236 i8042prt - ok
10:24:45.0036 0236 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\windows\system32\drivers\iaStorV.sys
10:24:45.0036 0236 iaStorV - ok
10:24:45.0208 0236 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\windows\system32\drivers\iirsp.sys
10:24:45.0208 0236 iirsp - ok
10:24:45.0379 0236 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\windows\system32\drivers\intelide.sys
10:24:45.0379 0236 intelide - ok
10:24:45.0520 0236 intelppm (ada036632c664caa754079041cf1f8c1) C:\windows\system32\drivers\intelppm.sys
10:24:45.0520 0236 intelppm - ok
10:24:45.0738 0236 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\windows\system32\DRIVERS\ipfltdrv.sys
10:24:45.0738 0236 IpFilterDriver - ok
10:24:45.0894 0236 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\windows\system32\drivers\IPMIDrv.sys
10:24:45.0910 0236 IPMIDRV - ok
10:24:46.0050 0236 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\windows\system32\drivers\ipnat.sys
10:24:46.0066 0236 IPNAT - ok
10:24:46.0206 0236 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\windows\system32\drivers\irenum.sys
10:24:46.0206 0236 IRENUM - ok
10:24:46.0347 0236 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\windows\system32\drivers\isapnp.sys
10:24:46.0347 0236 isapnp - ok
10:24:46.0518 0236 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\windows\system32\drivers\msiscsi.sys
10:24:46.0518 0236 iScsiPrt - ok
10:24:46.0659 0236 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\windows\system32\DRIVERS\kbdclass.sys
10:24:46.0659 0236 kbdclass - ok
10:24:46.0799 0236 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\windows\system32\DRIVERS\kbdhid.sys
10:24:46.0799 0236 kbdhid - ok
10:24:46.0939 0236 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\windows\system32\Drivers\ksecdd.sys
10:24:46.0939 0236 KSecDD - ok
10:24:47.0095 0236 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\windows\system32\Drivers\ksecpkg.sys
10:24:47.0095 0236 KSecPkg - ok
10:24:47.0236 0236 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\windows\system32\drivers\ksthunk.sys
10:24:47.0236 0236 ksthunk - ok
10:24:47.0392 0236 L1C (655a5d8e80869781cce23760ada7e695) C:\windows\system32\DRIVERS\L1C62x64.sys
10:24:47.0392 0236 L1C - ok
10:24:47.0563 0236 lltdio (1538831cf8ad2979a04c423779465827) C:\windows\system32\DRIVERS\lltdio.sys
10:24:47.0563 0236 lltdio - ok
10:24:47.0782 0236 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\windows\system32\drivers\lsi_fc.sys
10:24:47.0782 0236 LSI_FC - ok
10:24:47.0938 0236 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\windows\system32\drivers\lsi_sas.sys
10:24:47.0938 0236 LSI_SAS - ok
10:24:48.0094 0236 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\windows\system32\drivers\lsi_sas2.sys
10:24:48.0094 0236 LSI_SAS2 - ok
10:24:48.0250 0236 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\windows\system32\drivers\lsi_scsi.sys
10:24:48.0265 0236 LSI_SCSI - ok
10:24:48.0406 0236 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\windows\system32\drivers\luafv.sys
10:24:48.0421 0236 luafv - ok
10:24:48.0562 0236 MBAMProtector (79da94b35371b9e7104460c7693dcb2c) C:\windows\system32\drivers\mbam.sys
10:24:48.0562 0236 MBAMProtector - ok
10:24:48.0749 0236 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\windows\system32\drivers\megasas.sys
10:24:48.0749 0236 megasas - ok
10:24:48.0905 0236 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\windows\system32\drivers\MegaSR.sys
10:24:48.0905 0236 MegaSR - ok
10:24:49.0077 0236 Modem (800ba92f7010378b09f9ed9270f07137) C:\windows\system32\drivers\modem.sys
10:24:49.0077 0236 Modem - ok
10:24:49.0217 0236 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\windows\system32\DRIVERS\monitor.sys
10:24:49.0217 0236 monitor - ok
10:24:49.0373 0236 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\windows\system32\DRIVERS\mouclass.sys
10:24:49.0373 0236 mouclass - ok
10:24:49.0529 0236 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\windows\system32\DRIVERS\mouhid.sys
10:24:49.0529 0236 mouhid - ok
10:24:49.0716 0236 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\windows\system32\drivers\mountmgr.sys
10:24:49.0716 0236 mountmgr - ok
10:24:49.0872 0236 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\windows\system32\drivers\mpio.sys
10:24:49.0872 0236 mpio - ok
10:24:50.0013 0236 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\windows\system32\drivers\mpsdrv.sys
10:24:50.0013 0236 mpsdrv - ok
10:24:50.0169 0236 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\windows\system32\drivers\mrxdav.sys
10:24:50.0169 0236 MRxDAV - ok
10:24:50.0325 0236 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\windows\system32\DRIVERS\mrxsmb.sys
10:24:50.0325 0236 mrxsmb - ok
10:24:50.0465 0236 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\windows\system32\DRIVERS\mrxsmb10.sys
10:24:50.0465 0236 mrxsmb10 - ok
10:24:50.0605 0236 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\windows\system32\DRIVERS\mrxsmb20.sys
10:24:50.0605 0236 mrxsmb20 - ok
10:24:50.0761 0236 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\windows\system32\drivers\msahci.sys
10:24:50.0777 0236 msahci - ok
10:24:50.0933 0236 msdsm (db801a638d011b9633829eb6f663c900) C:\windows\system32\drivers\msdsm.sys
10:24:50.0933 0236 msdsm - ok
10:24:51.0120 0236 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\windows\system32\drivers\Msfs.sys
10:24:51.0120 0236 Msfs - ok
10:24:51.0245 0236 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\windows\System32\drivers\mshidkmdf.sys
10:24:51.0245 0236 mshidkmdf - ok
10:24:51.0401 0236 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\windows\system32\drivers\msisadrv.sys
10:24:51.0401 0236 msisadrv - ok
10:24:51.0604 0236 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\windows\system32\drivers\MSKSSRV.sys
10:24:51.0604 0236 MSKSSRV - ok
10:24:51.0791 0236 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\windows\system32\drivers\MSPCLOCK.sys
10:24:51.0791 0236 MSPCLOCK - ok
10:24:51.0947 0236 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\windows\system32\drivers\MSPQM.sys
10:24:51.0947 0236 MSPQM - ok
10:24:52.0103 0236 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\windows\system32\drivers\MsRPC.sys
10:24:52.0103 0236 MsRPC - ok
10:24:52.0275 0236 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\windows\system32\DRIVERS\mssmbios.sys
10:24:52.0275 0236 mssmbios - ok
10:24:52.0415 0236 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\windows\system32\drivers\MSTEE.sys
10:24:52.0415 0236 MSTEE - ok
10:24:52.0571 0236 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\windows\system32\drivers\MTConfig.sys
10:24:52.0571 0236 MTConfig - ok
10:24:52.0727 0236 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\windows\system32\Drivers\mup.sys
10:24:52.0727 0236 Mup - ok
10:24:52.0914 0236 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\windows\system32\DRIVERS\nwifi.sys
10:24:52.0914 0236 NativeWifiP - ok
10:24:53.0086 0236 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\windows\system32\drivers\ndis.sys
10:24:53.0101 0236 NDIS - ok
10:24:53.0242 0236 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\windows\system32\DRIVERS\ndiscap.sys
10:24:53.0257 0236 NdisCap - ok
10:24:53.0413 0236 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\windows\system32\DRIVERS\ndistapi.sys
10:24:53.0413 0236 NdisTapi - ok
10:24:53.0601 0236 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\windows\system32\DRIVERS\ndisuio.sys
10:24:53.0601 0236 Ndisuio - ok
10:24:53.0757 0236 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\windows\system32\DRIVERS\ndiswan.sys
10:24:53.0757 0236 NdisWan - ok
10:24:53.0897 0236 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\windows\system32\drivers\NDProxy.sys
10:24:53.0913 0236 NDProxy - ok
10:24:54.0069 0236 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\windows\system32\DRIVERS\netbios.sys
10:24:54.0069 0236 NetBIOS - ok
10:24:54.0240 0236 NetBT (09594d1089c523423b32a4229263f068) C:\windows\system32\DRIVERS\netbt.sys
10:24:54.0240 0236 NetBT - ok
10:24:54.0443 0236 nfrd960 (77889813be4d166cdab78ddba990da92) C:\windows\system32\drivers\nfrd960.sys
10:24:54.0443 0236 nfrd960 - ok
10:24:54.0646 0236 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\windows\system32\drivers\Npfs.sys
10:24:54.0646 0236 Npfs - ok
10:24:54.0802 0236 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\windows\system32\drivers\nsiproxy.sys
10:24:54.0802 0236 nsiproxy - ok
10:24:54.0973 0236 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\windows\system32\drivers\Ntfs.sys
10:24:55.0005 0236 Ntfs - ok
10:24:55.0176 0236 Null (9899284589f75fa8724ff3d16aed75c1) C:\windows\system32\drivers\Null.sys
10:24:55.0176 0236 Null - ok
10:24:55.0332 0236 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\windows\system32\drivers\nvraid.sys
10:24:55.0332 0236 nvraid - ok
10:24:55.0473 0236 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\windows\system32\drivers\nvstor.sys
10:24:55.0488 0236 nvstor - ok
10:24:55.0691 0236 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\windows\system32\drivers\nv_agp.sys
10:24:55.0707 0236 nv_agp - ok
10:24:55.0863 0236 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\windows\system32\drivers\ohci1394.sys
10:24:55.0863 0236 ohci1394 - ok
10:24:56.0050 0236 Parport (0086431c29c35be1dbc43f52cc273887) C:\windows\system32\drivers\parport.sys
10:24:56.0050 0236 Parport - ok
10:24:56.0175 0236 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\windows\system32\drivers\partmgr.sys
10:24:56.0190 0236 partmgr - ok
10:24:56.0346 0236 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\windows\system32\drivers\pci.sys
10:24:56.0346 0236 pci - ok
10:24:56.0487 0236 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\windows\system32\DRIVERS\pciide.sys
10:24:56.0487 0236 pciide - ok
10:24:56.0643 0236 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\windows\system32\drivers\pcmcia.sys
10:24:56.0643 0236 pcmcia - ok
10:24:56.0768 0236 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\windows\system32\drivers\pcw.sys
10:24:56.0768 0236 pcw - ok
10:24:56.0924 0236 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\windows\system32\drivers\peauth.sys
10:24:56.0924 0236 PEAUTH - ok
10:24:57.0142 0236 PGEffect (91111cebbde8015e822c46120ed9537c) C:\windows\system32\DRIVERS\pgeffect.sys
10:24:57.0142 0236 PGEffect - ok
10:24:57.0360 0236 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\windows\system32\DRIVERS\raspptp.sys
10:24:57.0360 0236 PptpMiniport - ok
10:24:57.0501 0236 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\windows\system32\drivers\processr.sys
10:24:57.0501 0236 Processor - ok
10:24:57.0735 0236 Psched (0557cf5a2556bd58e26384169d72438d) C:\windows\system32\DRIVERS\pacer.sys
10:24:57.0735 0236 Psched - ok
10:24:57.0922 0236 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\windows\system32\drivers\ql2300.sys
10:24:57.0938 0236 ql2300 - ok
10:24:58.0094 0236 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\windows\system32\drivers\ql40xx.sys
10:24:58.0109 0236 ql40xx - ok
10:24:58.0250 0236 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\windows\system32\drivers\qwavedrv.sys
10:24:58.0250 0236 QWAVEdrv - ok
10:24:58.0406 0236 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\windows\system32\DRIVERS\rasacd.sys
10:24:58.0406 0236 RasAcd - ok
10:24:58.0546 0236 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\windows\system32\DRIVERS\AgileVpn.sys
10:24:58.0546 0236 RasAgileVpn - ok
10:24:58.0718 0236 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\windows\system32\DRIVERS\rasl2tp.sys
10:24:58.0718 0236 Rasl2tp - ok
10:24:58.0858 0236 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\windows\system32\DRIVERS\raspppoe.sys
10:24:58.0858 0236 RasPppoe - ok
10:24:59.0014 0236 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\windows\system32\DRIVERS\rassstp.sys
10:24:59.0014 0236 RasSstp - ok
10:24:59.0154 0236 rdbss (77f665941019a1594d887a74f301fa2f) C:\windows\system32\DRIVERS\rdbss.sys
10:24:59.0154 0236 rdbss - ok
10:24:59.0295 0236 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\windows\system32\drivers\rdpbus.sys
10:24:59.0295 0236 rdpbus - ok
10:24:59.0435 0236 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\windows\system32\DRIVERS\RDPCDD.sys
10:24:59.0435 0236 RDPCDD - ok
10:24:59.0638 0236 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\windows\system32\drivers\rdpencdd.sys
10:24:59.0638 0236 RDPENCDD - ok
10:24:59.0794 0236 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\windows\system32\drivers\rdprefmp.sys
10:24:59.0794 0236 RDPREFMP - ok
10:24:59.0950 0236 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\windows\system32\drivers\RDPWD.sys
10:24:59.0950 0236 RDPWD - ok
10:25:00.0090 0236 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\windows\system32\drivers\rdyboost.sys
10:25:00.0106 0236 rdyboost - ok
10:25:00.0293 0236 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\windows\system32\DRIVERS\rspndr.sys
10:25:00.0293 0236 rspndr - ok
10:25:00.0449 0236 RSUSBSTOR (0e3dcf76f11dc431b088a2dfd7265cda) C:\windows\system32\Drivers\RtsUStor.sys
10:25:00.0465 0236 RSUSBSTOR - ok
10:25:00.0621 0236 RTL8192Ce (64fdf4fe366ca42da2b7d9d424b6e39b) C:\windows\system32\DRIVERS\rtl8192Ce.sys
10:25:00.0636 0236 RTL8192Ce - ok
10:25:00.0808 0236 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\windows\system32\drivers\sbp2port.sys
10:25:00.0808 0236 sbp2port - ok
10:25:00.0948 0236 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\windows\system32\DRIVERS\scfilter.sys
10:25:00.0948 0236 scfilter - ok
10:25:01.0120 0236 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\windows\system32\drivers\secdrv.sys
10:25:01.0120 0236 secdrv - ok
10:25:01.0276 0236 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\windows\system32\drivers\serenum.sys
10:25:01.0276 0236 Serenum - ok
10:25:01.0401 0236 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\windows\system32\drivers\serial.sys
10:25:01.0401 0236 Serial - ok
10:25:01.0526 0236 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\windows\system32\drivers\sermouse.sys
10:25:01.0526 0236 sermouse - ok
10:25:01.0744 0236 sffdisk (a554811bcd09279536440c964ae35bbf) C:\windows\system32\drivers\sffdisk.sys
10:25:01.0744 0236 sffdisk - ok
10:25:01.0884 0236 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\windows\system32\drivers\sffp_mmc.sys
10:25:01.0884 0236 sffp_mmc - ok
10:25:02.0025 0236 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\windows\system32\drivers\sffp_sd.sys
10:25:02.0025 0236 sffp_sd - ok
10:25:02.0165 0236 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\windows\system32\drivers\sfloppy.sys
10:25:02.0181 0236 sfloppy - ok
10:25:02.0337 0236 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\windows\system32\drivers\SiSRaid2.sys
10:25:02.0337 0236 SiSRaid2 - ok
10:25:02.0493 0236 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\windows\system32\drivers\sisraid4.sys
10:25:02.0493 0236 SiSRaid4 - ok
10:25:02.0618 0236 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\windows\system32\DRIVERS\smb.sys
10:25:02.0618 0236 Smb - ok
10:25:02.0789 0236 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\windows\system32\drivers\spldr.sys
10:25:02.0789 0236 spldr - ok
10:25:02.0992 0236 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\windows\system32\DRIVERS\srv.sys
10:25:03.0008 0236 srv - ok
10:25:03.0226 0236 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\windows\system32\DRIVERS\srv2.sys
10:25:03.0242 0236 srv2 - ok
10:25:03.0398 0236 srvnet (27e461f0be5bff5fc737328f749538c3) C:\windows\system32\DRIVERS\srvnet.sys
10:25:03.0398 0236 srvnet - ok
10:25:03.0616 0236 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\windows\system32\drivers\stexstor.sys
10:25:03.0616 0236 stexstor - ok
10:25:03.0756 0236 StillCam (decacb6921ded1a38642642685d77dac) C:\windows\system32\DRIVERS\serscan.sys
10:25:03.0756 0236 StillCam - ok
10:25:03.0912 0236 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\windows\system32\DRIVERS\swenum.sys
10:25:03.0912 0236 swenum - ok
10:25:04.0162 0236 Tcpip (fc62769e7bff2896035aeed399108162) C:\windows\system32\drivers\tcpip.sys
10:25:04.0193 0236 Tcpip - ok
10:25:04.0396 0236 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\windows\system32\DRIVERS\tcpip.sys
10:25:04.0412 0236 TCPIP6 - ok
10:25:04.0583 0236 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\windows\system32\drivers\tcpipreg.sys
10:25:04.0583 0236 tcpipreg - ok
10:25:04.0739 0236 tdcmdpst (fd542b661bd22fa69ca789ad0ac58c29) C:\windows\system32\DRIVERS\tdcmdpst.sys
10:25:04.0739 0236 tdcmdpst - ok
10:25:04.0880 0236 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\windows\system32\drivers\tdpipe.sys
10:25:04.0880 0236 TDPIPE - ok
10:25:05.0004 0236 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\windows\system32\drivers\tdtcp.sys
10:25:05.0004 0236 TDTCP - ok
10:25:05.0145 0236 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\windows\system32\DRIVERS\tdx.sys
10:25:05.0145 0236 tdx - ok
10:25:05.0270 0236 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\windows\system32\DRIVERS\termdd.sys
10:25:05.0270 0236 TermDD - ok
10:25:05.0535 0236 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\windows\system32\DRIVERS\tssecsrv.sys
10:25:05.0535 0236 tssecsrv - ok
10:25:05.0738 0236 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\windows\system32\drivers\tsusbflt.sys
10:25:05.0738 0236 TsUsbFlt - ok
10:25:05.0878 0236 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\windows\system32\drivers\TsUsbGD.sys
10:25:05.0878 0236 TsUsbGD - ok
10:25:06.0034 0236 tunnel (3566a8daafa27af944f5d705eaa64894) C:\windows\system32\DRIVERS\tunnel.sys
10:25:06.0034 0236 tunnel - ok
10:25:06.0174 0236 TVALZ (550b567f9364d8f7684c3fb3ea665a72) C:\windows\system32\DRIVERS\TVALZ_O.SYS
10:25:06.0190 0236 TVALZ - ok
10:25:06.0330 0236 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\windows\system32\drivers\uagp35.sys
10:25:06.0346 0236 uagp35 - ok
10:25:06.0486 0236 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\windows\system32\DRIVERS\udfs.sys
10:25:06.0486 0236 udfs - ok
10:25:06.0674 0236 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\windows\system32\drivers\uliagpkx.sys
10:25:06.0674 0236 uliagpkx - ok
10:25:06.0814 0236 umbus (dc54a574663a895c8763af0fa1ff7561) C:\windows\system32\DRIVERS\umbus.sys
10:25:06.0814 0236 umbus - ok
10:25:06.0954 0236 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\windows\system32\drivers\umpass.sys
10:25:06.0954 0236 UmPass - ok
10:25:07.0126 0236 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\windows\system32\DRIVERS\usbccgp.sys
10:25:07.0126 0236 usbccgp - ok
10:25:07.0266 0236 usbcir (af0892a803fdda7492f595368e3b68e7) C:\windows\system32\drivers\usbcir.sys
10:25:07.0266 0236 usbcir - ok
10:25:07.0422 0236 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\windows\system32\DRIVERS\usbehci.sys
10:25:07.0422 0236 usbehci - ok
10:25:07.0625 0236 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\windows\system32\DRIVERS\usbhub.sys
10:25:07.0641 0236 usbhub - ok
10:25:07.0766 0236 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\windows\system32\DRIVERS\usbohci.sys
10:25:07.0766 0236 usbohci - ok
10:25:07.0922 0236 usbprint (73188f58fb384e75c4063d29413cee3d) C:\windows\system32\DRIVERS\usbprint.sys
10:25:07.0922 0236 usbprint - ok
10:25:08.0062 0236 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\windows\system32\DRIVERS\usbscan.sys
10:25:08.0078 0236 usbscan - ok
10:25:08.0218 0236 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\windows\system32\DRIVERS\USBSTOR.SYS
10:25:08.0218 0236 USBSTOR - ok
10:25:08.0390 0236 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\windows\system32\drivers\usbuhci.sys
10:25:08.0390 0236 usbuhci - ok
10:25:08.0530 0236 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\windows\system32\Drivers\usbvideo.sys
10:25:08.0530 0236 usbvideo - ok
10:25:08.0702 0236 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\windows\system32\drivers\vdrvroot.sys
10:25:08.0702 0236 vdrvroot - ok
10:25:08.0858 0236 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\windows\system32\DRIVERS\vgapnp.sys
10:25:08.0858 0236 vga - ok
10:25:08.0982 0236 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\windows\System32\drivers\vga.sys
10:25:08.0982 0236 VgaSave - ok
10:25:09.0123 0236 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\windows\system32\drivers\vhdmp.sys
10:25:09.0123 0236 vhdmp - ok
10:25:09.0248 0236 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\windows\system32\drivers\viaide.sys
10:25:09.0248 0236 viaide - ok
10:25:09.0388 0236 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\windows\system32\drivers\volmgr.sys
10:25:09.0388 0236 volmgr - ok
10:25:09.0528 0236 volmgrx (a255814907c89be58b79ef2f189b843b) C:\windows\system32\drivers\volmgrx.sys
10:25:09.0528 0236 volmgrx - ok
10:25:09.0747 0236 volsnap (df8126bd41180351a093a3ad2fc8903b) C:\windows\system32\drivers\volsnap.sys
10:25:09.0747 0236 volsnap - ok
10:25:09.0887 0236 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\windows\system32\drivers\vsmraid.sys
10:25:09.0903 0236 vsmraid - ok
10:25:10.0059 0236 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\windows\system32\DRIVERS\vwifibus.sys
10:25:10.0059 0236 vwifibus - ok
10:25:10.0199 0236 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\windows\system32\DRIVERS\vwififlt.sys
10:25:10.0199 0236 vwififlt - ok
10:25:10.0324 0236 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\windows\system32\DRIVERS\vwifimp.sys
10:25:10.0324 0236 vwifimp - ok
10:25:10.0496 0236 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\windows\system32\drivers\wacompen.sys
10:25:10.0496 0236 WacomPen - ok
10:25:10.0636 0236 WANARP (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
10:25:10.0636 0236 WANARP - ok
10:25:10.0652 0236 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
10:25:10.0652 0236 Wanarpv6 - ok
10:25:10.0870 0236 Wd (72889e16ff12ba0f235467d6091b17dc) C:\windows\system32\drivers\wd.sys
10:25:10.0870 0236 Wd - ok
10:25:11.0042 0236 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\windows\system32\drivers\Wdf01000.sys
10:25:11.0042 0236 Wdf01000 - ok
10:25:11.0260 0236 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\windows\system32\DRIVERS\wfplwf.sys
10:25:11.0260 0236 WfpLwf - ok
10:25:11.0400 0236 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\windows\system32\drivers\wimmount.sys
10:25:11.0400 0236 WIMMount - ok
10:25:11.0697 0236 WinUsb (fe88b288356e7b47b74b13372add906d) C:\windows\system32\DRIVERS\WinUsb.sys
10:25:11.0697 0236 WinUsb - ok
10:25:11.0884 0236 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\windows\system32\drivers\wmiacpi.sys
10:25:11.0884 0236 WmiAcpi - ok
10:25:12.0087 0236 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\windows\system32\drivers\ws2ifsl.sys
10:25:12.0087 0236 ws2ifsl - ok
10:25:12.0243 0236 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\windows\system32\DRIVERS\WSDPrint.sys
10:25:12.0243 0236 WSDPrintDevice - ok
10:25:12.0414 0236 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\windows\system32\drivers\WudfPf.sys
10:25:12.0414 0236 WudfPf - ok
10:25:12.0570 0236 WUDFRd (cf8d590be3373029d57af80914190682) C:\windows\system32\DRIVERS\WUDFRd.sys
10:25:12.0570 0236 WUDFRd - ok
10:25:12.0680 0236 MBR (0x1B8) (5b5e648d12fcadc244c1ec30318e1eb9) \Device\Harddisk0\DR0
10:25:13.0662 0236 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
10:25:13.0662 0236 \Device\Harddisk0\DR0 - detected TDSS File System (1)
10:25:13.0709 0236 Boot (0x1200) (de8590baa713dfec22a1b646ac041426) \Device\Harddisk0\DR0\Partition0
10:25:13.0709 0236 \Device\Harddisk0\DR0\Partition0 - ok
10:25:13.0725 0236 ============================================================
10:25:13.0725 0236 Scan finished
10:25:13.0725 0236 ============================================================
10:25:13.0756 4008 Detected object count: 1
10:25:13.0756 4008 Actual detected object count: 1
10:25:25.0940 4008 \Device\Harddisk0\DR0\TDLFS\ph.dll - copied to quarantine
10:25:25.0940 4008 \Device\Harddisk0\DR0\TDLFS\phx.dll - copied to quarantine
10:25:25.0955 4008 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
10:25:25.0955 4008 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
10:25:25.0971 4008 \Device\Harddisk0\DR0\TDLFS\phd - copied to quarantine
10:25:25.0986 4008 \Device\Harddisk0\DR0\TDLFS\phdx - copied to quarantine
10:25:26.0002 4008 \Device\Harddisk0\DR0\TDLFS\phs - copied to quarantine
10:25:26.0018 4008 \Device\Harddisk0\DR0\TDLFS\phdata - copied to quarantine
10:25:26.0018 4008 \Device\Harddisk0\DR0\TDLFS\phld - copied to quarantine
10:25:26.0018 4008 \Device\Harddisk0\DR0\TDLFS\phln - copied to quarantine
10:25:26.0033 4008 \Device\Harddisk0\DR0\TDLFS\phlx - copied to quarantine
10:25:26.0033 4008 \Device\Harddisk0\DR0\TDLFS\phm - copied to quarantine
10:25:26.0033 4008 \Device\Harddisk0\DR0\TDLFS - deleted
10:25:26.0033 4008 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete
10:25:35.0892 5220 Deinitialize success






Here is the ESET Information:

C:\TDSSKiller_Quarantine\24.02.2012_18.29.24\mbr0000\tdlfs0000\tsk0000.dta Win32/Olmarik.AWO trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\24.02.2012_18.29.24\mbr0000\tdlfs0000\tsk0001.dta Win64/Olmarik.AD trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\24.02.2012_18.29.24\mbr0000\tdlfs0000\tsk0002.dta Win32/Olmarik.AYH trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\24.02.2012_18.29.24\mbr0000\tdlfs0000\tsk0003.dta Win64/Olmarik.AE trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\24.02.2012_18.29.24\mbr0000\tdlfs0000\tsk0004.dta a variant of Win32/Rootkit.Kryptik.JG trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\24.02.2012_18.29.24\mbr0000\tdlfs0000\tsk0005.dta Win64/Olmarik.AC trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\24.02.2012_18.29.24\mbr0000\tdlfs0000\tsk0009.dta Win32/Olmarik.AWO trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\24.02.2012_18.29.24\mbr0000\tdlfs0000\tsk0010.dta Win64/Olmarik.X trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\27.02.2012_10.21.36\tdlfs0000\tsk0000.dta Win32/Olmarik.AWO trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\27.02.2012_10.21.36\tdlfs0000\tsk0001.dta Win64/Olmarik.AD trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\27.02.2012_10.21.36\tdlfs0000\tsk0002.dta Win32/Olmarik.AYH trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\27.02.2012_10.21.36\tdlfs0000\tsk0003.dta Win64/Olmarik.AE trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\27.02.2012_10.21.36\tdlfs0000\tsk0004.dta a variant of Win32/Rootkit.Kryptik.JG trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\27.02.2012_10.21.36\tdlfs0000\tsk0005.dta Win64/Olmarik.AC trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\27.02.2012_10.21.36\tdlfs0000\tsk0009.dta Win32/Olmarik.AWO trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\27.02.2012_10.21.36\tdlfs0000\tsk0010.dta Win64/Olmarik.X trojan cleaned by deleting - quarantined





And here are the Mini Toolbox Results


MiniToolBox by Farbar Version: 18-01-2012
Ran by Sue (administrator) on 27-02-2012 at 14:18:16
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================



========================= IP Configuration: ================================

Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC = Wireless Network Connection (Connected)
Atheros AR8152/8158 PCI-E Fast Ethernet Controller (NDIS 6.20) = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set subinterface interface=? subinterface=wireless_0 mtu=1500


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Sues_Computer
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : hsd1.mn.comcast.net.

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : E0-CA-94-4F-E9-FE
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : hsd1.mn.comcast.net.
Description . . . . . . . . . . . : Atheros AR8152/8158 PCI-E Fast Ethernet Controller (NDIS 6.20)
Physical Address. . . . . . . . . : 00-26-6C-D8-E2-1E
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : hsd1.mn.comcast.net.
Description . . . . . . . . . . . : Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC
Physical Address. . . . . . . . . : E0-CA-94-4F-E9-FE
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv4 Address. . . . . . . . . . . : 192.168.1.101(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Monday, February 27, 2012 12:53:23 PM
Lease Expires . . . . . . . . . . : Tuesday, February 28, 2012 12:53:23 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DNS Servers . . . . . . . . . . . : 75.75.76.76
75.75.75.75
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.hsd1.mn.comcast.net.:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : hsd1.mn.comcast.net.
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{8DC1A97D-4EB5-4EB1-B2C1-164A6828E922}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fd:2479:b8b:3f57:fe9a(Preferred)
Link-local IPv6 Address . . . . . : fe80::2479:b8b:3f57:fe9a%14(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: cdns02.comcast.net
Address: 75.75.76.76

Name: google.com
Addresses: 74.125.225.142
74.125.225.128
74.125.225.131
74.125.225.137
74.125.225.129
74.125.225.134
74.125.225.132
74.125.225.136
74.125.225.133
74.125.225.130
74.125.225.135


Pinging google.com [74.125.225.142] with 32 bytes of data:
Reply from 74.125.225.142: bytes=32 time=21ms TTL=55
Reply from 74.125.225.142: bytes=32 time=21ms TTL=55

Ping statistics for 74.125.225.142:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 21ms, Maximum = 21ms, Average = 21ms
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 75.75.76.76

Name: yahoo.com
Addresses: 98.139.183.24
209.191.122.70
98.139.127.62


Pinging yahoo.com [98.139.127.62] with 32 bytes of data:
Reply from 98.139.127.62: bytes=32 time=94ms TTL=51
Reply from 98.139.127.62: bytes=32 time=93ms TTL=51

Ping statistics for 98.139.127.62:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 93ms, Maximum = 94ms, Average = 93ms
Server: cdns02.comcast.net
Address: 75.75.76.76

DNS request timed out.
timeout was 2 seconds.
Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=11ms TTL=128
Reply from 127.0.0.1: bytes=32 time=5ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 5ms, Maximum = 11ms, Average = 8ms
===========================================================================
Interface List
15...e0 ca 94 4f e9 fe ......Microsoft Virtual WiFi Miniport Adapter
12...00 26 6c d8 e2 1e ......Atheros AR8152/8158 PCI-E Fast Ethernet Controller (NDIS 6.20)
11...e0 ca 94 4f e9 fe ......Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC
1...........................Software Loopback Interface 1
16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
14...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.101 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.101 281
192.168.1.101 255.255.255.255 On-link 192.168.1.101 281
192.168.1.255 255.255.255.255 On-link 192.168.1.101 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.101 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.101 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
14 58 ::/0 On-link
1 306 ::1/128 On-link
14 58 2001::/32 On-link
14 306 2001:0:5ef5:79fd:2479:b8b:3f57:fe9a/128
On-link
14 306 fe80::/64 On-link
14 306 fe80::2479:b8b:3f57:fe9a/128
On-link
1 306 ff00::/8 On-link
14 306 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [193824] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (02/27/2012 10:29:02 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/27/2012 10:28:59 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/27/2012 10:28:50 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/27/2012 10:16:41 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/27/2012 10:15:44 AM) (Source: Toshiba App Place) (User: )
Description: System.ArgumentOutOfRangeException: Number must be either non-negative and less than or equal to Int32.MaxValue or -1.
Parameter name: dueTime
Stack Trace:
at System.Threading.Timer..ctor(TimerCallback callback, Object state, Int32 dueTime, Int32 period)
at System.Timers.Timer.set_Enabled(Boolean value)
at SnappCloud.ActivationReminder.AraClient.PostInit()
at SnappCloud.ActivationReminder.Program.Main(String[] args)

Error: (02/27/2012 10:15:25 AM) (Source: TivoTransfer) (User: )
Description: TiVoTransfer already run!

Error: (02/26/2012 10:32:24 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/26/2012 10:31:21 AM) (Source: Toshiba App Place) (User: )
Description: System.ArgumentOutOfRangeException: Number must be either non-negative and less than or equal to Int32.MaxValue or -1.
Parameter name: dueTime
Stack Trace:
at System.Threading.Timer..ctor(TimerCallback callback, Object state, Int32 dueTime, Int32 period)
at System.Timers.Timer.set_Enabled(Boolean value)
at SnappCloud.ActivationReminder.AraClient.PostInit()
at SnappCloud.ActivationReminder.Program.Main(String[] args)

Error: (02/26/2012 10:31:05 AM) (Source: TivoTransfer) (User: )
Description: TiVoTransfer already run!

Error: (02/24/2012 07:38:30 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (02/27/2012 11:51:45 AM) (Source: DCOM) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (02/27/2012 10:16:14 AM) (Source: DCOM) (User: SYSTEM)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (02/26/2012 11:33:19 AM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (02/26/2012 10:32:00 AM) (Source: DCOM) (User: SYSTEM)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (02/24/2012 07:47:23 PM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (02/24/2012 07:38:13 PM) (Source: DCOM) (User: SYSTEM)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (02/24/2012 07:35:01 PM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (02/24/2012 07:32:14 PM) (Source: DCOM) (User: SYSTEM)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (02/24/2012 07:29:43 PM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (02/24/2012 06:35:04 PM) (Source: DCOM) (User: SYSTEM)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
64 Bit HP CIO Components Installer (Version: 7.2.8)
Adobe AIR (Version: 2.6.0.19140)
Adobe Flash Player 10 Plugin (Version: 10.3.181.34)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.1.102.62)
Adobe Reader X (10.1.2) MUI (Version: 10.1.2)
AMD Media Foundation Decoders (Version: 1.0.60607.2201)
AMD VISION Engine Control Center (Version: 2011.0607.2212.38019)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (Version: 1.0.0.36)
ATI Catalyst Install Manager (Version: 3.0.829.0)
AVG 2012 (Version: 12.0.1913)
AVG 2012 (Version: 12.0.2114)
AVG 2012 (Version: 2012.0.1913)
AVS Update Manager 1.0
AVS Video Converter 8
AVS4YOU Software Navigator 1.4
Bonjour (Version: 2.0.0.34)
BufferChm (Version: 140.0.212.000)
C4700 (Version: 140.0.690.000)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2011.0607.2212.38019)
Catalyst Control Center InstallProxy (Version: 2011.0607.2212.38019)
Catalyst Control Center Localization All (Version: 2011.0607.2212.38019)
ccc-utility64 (Version: 2011.0607.2212.38019)
CCC Help Chinese Standard (Version: 2011.0607.2211.38019)
CCC Help Chinese Traditional (Version: 2011.0607.2211.38019)
CCC Help Czech (Version: 2011.0607.2211.38019)
CCC Help Danish (Version: 2011.0607.2211.38019)
CCC Help Dutch (Version: 2011.0607.2211.38019)
CCC Help English (Version: 2011.0607.2211.38019)
CCC Help Finnish (Version: 2011.0607.2211.38019)
CCC Help French (Version: 2011.0607.2211.38019)
CCC Help German (Version: 2011.0607.2211.38019)
CCC Help Greek (Version: 2011.0607.2211.38019)
CCC Help Hungarian (Version: 2011.0607.2211.38019)
CCC Help Italian (Version: 2011.0607.2211.38019)
CCC Help Japanese (Version: 2011.0607.2211.38019)
CCC Help Korean (Version: 2011.0607.2211.38019)
CCC Help Norwegian (Version: 2011.0607.2211.38019)
CCC Help Polish (Version: 2011.0607.2211.38019)
CCC Help Portuguese (Version: 2011.0607.2211.38019)
CCC Help Russian (Version: 2011.0607.2211.38019)
CCC Help Spanish (Version: 2011.0607.2211.38019)
CCC Help Swedish (Version: 2011.0607.2211.38019)
CCC Help Thai (Version: 2011.0607.2211.38019)
CCC Help Turkish (Version: 2011.0607.2211.38019)
CCleaner (Version: 3.15)
Conexant HD Audio (Version: 8.54.1.0)
Coupon Printer for Windows (Version: 5.0.0.0)
CutePDF Writer 2.8
D3DX10 (Version: 15.4.2368.0902)
Destinations (Version: 140.0.77.000)
DeviceDiscovery (Version: 140.0.212.000)
DirectShow Dump (Version: 1.0.0)
Electric Sheep 2.7b33 (Version: 2.7b33)
ESET Online Scanner v3
ETDWare PS/2-X64 8.0.8.0_R01 (Version: 8.0.8.0)
Google Chrome (Version: 17.0.963.56)
Google Earth (Version: 6.1.0.5001)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.2.2427.2330)
Google Update Helper (Version: 1.3.21.99)
GPBaseService2 (Version: 140.0.211.000)
HP Customer Participation Program 14.0 (Version: 14.0)
HP Imaging Device Functions 14.0 (Version: 14.0)
HP Photo Creations (Version: 1.0.0.2024)
HP Photosmart C4700 All-in-One Driver Software 14.0 Rel. 6 (Version: 14.0)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Solution Center 14.0 (Version: 14.0)
HP Update (Version: 5.003.001.001)
HPDiagnosticAlert (Version: 1.00.0000)
HPPhotoGadget (Version: 140.0.524.000)
HPProductAssistant (Version: 140.0.212.000)
HPSSupply (Version: 140.0.211.000)
Java Auto Updater (Version: 2.0.4.1)
Java™ 6 Update 22 (Version: 6.0.220)
Java™ 6 Update 25 (Version: 6.0.250)
Junk Mail filter update (Version: 15.4.3502.0922)
Label@Once 1.0 (Version: 1.0)
Malwarebytes Anti-Malware version 1.60.1.1000 (Version: 1.60.1.1000)
MarketResearch (Version: 140.0.212.000)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 4.1.10111.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Network64 (Version: 140.0.215.000)
Network64 (Version: 140.0.221.000)
OpenOffice.org 3.3 (Version: 3.3.9567)
Picasa 3 (Version: 3.8)
PlayReady PC Runtime amd64 (Version: 1.3.0)
PlayReady PC Runtime x86 (Version: 1.3.0)
PS_AIO_06_C4700_SW_Min (Version: 140.0.690.000)
QuickTransfer (Version: 140.0.98.000)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30124)
Realtek WLAN Driver (Version: 2.00.0016)
Scan (Version: 140.0.80.000)
Shop for HP Supplies (Version: 14.0)
ShufflePlusVLOI (Version: 1.00.0000)
Skype Launcher (Version: 2.01)
SmartWebPrinting (Version: 140.0.186.000)
SolutionCenter (Version: 140.0.213.000)
Status (Version: 140.0.212.000)
TiVo Desktop 2.8.2 (Version: 2.8.412.369)
Toolbox (Version: 140.0.428.000)
Toshiba App Place (Version: 1.0.6.3)
TOSHIBA Application Installer (Version: 9.0.1.2)
TOSHIBA Assist (Version: 4.2.3.0)
Toshiba Book Place (Version: 2.2.7530)
TOSHIBA Bulletin Board (Version: 1.6.10.64)
TOSHIBA Disc Creator (Version: 2.1.0.11 for x64)
TOSHIBA Face Recognition (Version: 3.1.17.64)
TOSHIBA Hardware Setup (Version: 2.1.0.3)
TOSHIBA HDD/SSD Alert (Version: 3.1.64.9)
Toshiba Laptop Checkup (Version: 2.0.13.11)
TOSHIBA Media Controller (Version: 1.0.87.4)
Toshiba Online Backup (Version: 2.0.0.31)
TOSHIBA Quality Application (Version: 1.0.3)
TOSHIBA Recovery Media Creator (Version: 2.1.5.5109a)
TOSHIBA ReelTime (Version: 1.7.21.64)
TOSHIBA Service Station (Version: 2.2.12)
TOSHIBA Supervisor Password (Version: 2.1.0.2)
TOSHIBA Value Added Package (Version: 1.6.1.64)
TOSHIBA Web Camera Application (Version: 2.0.3.3)
TOSHIBARegistration (Version: 1.0.6)
TrayApp (Version: 140.0.212.000)
TurboTax 2011
TurboTax 2011 WinPerFedFormset (Version: 011.000.2727)
TurboTax 2011 WinPerReleaseEngine (Version: 011.000.0436)
TurboTax 2011 WinPerTaxSupport (Version: 011.000.0210)
TurboTax 2011 wmniper (Version: 011.000.1446)
TurboTax 2011 wrapper (Version: 011.000.0120)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596651) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596789) 32-Bit Edition
Update for Microsoft Office Excel 2007 (KB2596596) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
WebReg (Version: 140.0.212.017)
WinDirStat 1.1.2
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3538.0513)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3538.0513)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Zero Assumption Recovery Version 9

========================= Memory info: ===================================

Percentage of memory in use: 45%
Total physical RAM: 3686.87 MB
Available physical RAM: 2013.06 MB
Total Pagefile: 7371.93 MB
Available Pagefile: 5320.78 MB
Total Virtual: 4095.88 MB
Available Virtual: 3971.23 MB

========================= Partitions: =====================================

1 Drive c: (Sue's Computer) (Fixed) (Total:284.4 GB) (Free:228.28 GB) NTFS

========================= Users: ========================================

User accounts for \\SUES_COMPUTER

Administrator ASPNET Guest
Sue


**** End of log ****


Please let me know what I need to do next! Thanks so much!!

Paul

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:59 AM

Posted 27 February 2012 - 04:02 PM

That looks good

Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#8 Nosnahluap

Nosnahluap
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:07:59 AM

Posted 27 February 2012 - 06:36 PM

Awesome!! I am cured!!

I really appreciate your help in getting this solved. You have been very helpful and I can't thank you enough!!

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:59 AM

Posted 27 February 2012 - 06:53 PM

You're most welcome :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users