Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

FBI Randsomeware


  • Please log in to reply
5 replies to this topic

#1 cnit

cnit

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:07:44 PM

Posted 29 June 2012 - 12:32 AM

http://www.google.com/imgres?um=1&hl=en&safe=off&sa=N&biw=1366&bih=598&tbm=isch&tbnid=1ZZONIV8NvApLM:&imgrefurl=http://www.2-viruses.com/remove-fbi-ransomware&docid=c6na6rxuE-IHzM&imgurl=http://www.2-viruses.com/wp-content/uploads/2012/06/Untitled1.png&w=580&h=584&ei=yzztT4uOGLLF0AG4qJj5DQ&zoom=1&iact=rc&dur=229&sig=110646610656265356659&page=1&tbnh=126&tbnw=126&start=0&ndsp=21&ved=1t:429,r:0,s:0,i:76&tx=118&ty=60

so that's a picture of my problem. I somehow got randsomeware on my computer and I have no clue how to remove it. I don't want to pay and I already tried using malwarebytes etc but they cant remove it so I have to do it manually. if someone could give me a step by step process of how to delete this off my computer I'd appreciate it.

this randsomeware usually activates right after I start up my computer and log on to the authorized user account. logging onto the guest account and doing a system restore does not fix the problem but it does prolong it. when the picture above shows up you cannot do anything except hit ctrl alt delete to switch user accounts. my webcam also activates making it seem even more real, but I checked the FBI's website and they had this malware listed on there...but they had no way to get rid of it!! plz help

Edited by cnit, 29 June 2012 - 12:35 AM.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:44 PM

Posted 29 June 2012 - 01:36 AM

Boot the PC into safemode with networking

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Press Windows+R key and type

%HOMEPATH%\Start Menu\Programs\Startup

click ok

Delete CTFMON.LNK file from the folder

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply


Now reboot the PC to normal mode

#3 cnit

cnit
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:07:44 PM

Posted 29 June 2012 - 11:54 PM

Is there any way to attach a document in a reply? because i dont think you would want me posting 2 logs that are really long.

Virus threats listed below:


C:\Program Files (x86)\Windows Movie Maker\toolbar\solidyoutube-hybrid.exe Win32/Somoto application cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\SmitfraudCgeneric.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\29.06.2012_23.04.18\mbr0000\tdlfs0000\tsk0000.dta Win32/Olmarik.AYI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\29.06.2012_23.04.18\mbr0000\tdlfs0000\tsk0001.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\29.06.2012_23.04.18\mbr0000\tdlfs0000\tsk0002.dta a variant of Win32/Olmarik.AYH trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\29.06.2012_23.04.18\mbr0000\tdlfs0000\tsk0004.dta a variant of Win32/Rootkit.Kryptik.LH trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\29.06.2012_23.04.18\mbr0000\tdlfs0000\tsk0005.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\29.06.2012_23.04.18\mbr0000\tdlfs0000\tsk0009.dta Win32/Olmarik.AFK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\29.06.2012_23.04.18\mbr0000\tdlfs0000\tsk0010.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\29.06.2012_23.04.18\tdlfs0000\tsk0000.dta Win32/Olmarik.AYI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\29.06.2012_23.04.18\tdlfs0000\tsk0001.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\29.06.2012_23.04.18\tdlfs0000\tsk0002.dta a variant of Win32/Olmarik.AYH trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\29.06.2012_23.04.18\tdlfs0000\tsk0004.dta a variant of Win32/Rootkit.Kryptik.LH trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\29.06.2012_23.04.18\tdlfs0000\tsk0005.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\29.06.2012_23.04.18\tdlfs0000\tsk0009.dta Win32/Olmarik.AFK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\29.06.2012_23.04.18\tdlfs0000\tsk0010.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\Users\chad\AppData\Local\Google\Chrome\User Data\Default\Default\aadddagfdegbdjdhgegggfdddedjdggg\background.html Win32/BHO.OEI trojan cleaned by deleting - quarantined
C:\Users\chad\Downloads\freefileviewer_2_1283(1).exe a variant of Win32/InstallIQ application cleaned by deleting - quarantined
C:\Users\chad\Downloads\freefileviewer_2_1283.exe a variant of Win32/InstallIQ application cleaned by deleting - quarantined
C:\Users\chad\Downloads\movie_player_1280.exe Win32/InstallIQ application cleaned by deleting - quarantined

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:44 PM

Posted 30 June 2012 - 07:40 AM

No problem copy the contents and post it there

Can you boot into normal mode now?

IMPORTANT:Delete the CTFMON.LNK file as instructed above to boot into normal mode

Edited by narenxp, 30 June 2012 - 07:40 AM.


#5 cnit

cnit
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:07:44 PM

Posted 30 June 2012 - 11:50 AM

yes i can boot into normal mode now without a problem...at least so far anyway, but the ctfmon.lnk wasn't where the instructions said it would be. i did the ctrl+R typed %HOMEPATH%\Start Menu\Programs\Startup in and the only thing that was there was yahoo messenger i think.

well here are the logs.

tdskiller:

23:04:18.0537 2068 TDSS rootkit removing tool 2.7.43.0 Jun 29 2012 17:54:22
23:04:18.0864 2068 ============================================================
23:04:18.0864 2068 Current date / time: 2012/06/29 23:04:18.0864
23:04:18.0864 2068 SystemInfo:
23:04:18.0864 2068
23:04:18.0864 2068 OS Version: 6.1.7600 ServicePack: 0.0
23:04:18.0864 2068 Product type: Workstation
23:04:18.0880 2068 ComputerName: CHAD-PC
23:04:18.0880 2068 UserName: chad
23:04:18.0880 2068 Windows directory: C:\Windows
23:04:18.0880 2068 System windows directory: C:\Windows
23:04:18.0880 2068 Running under WOW64
23:04:18.0880 2068 Processor architecture: Intel x64
23:04:18.0880 2068 Number of processors: 2
23:04:18.0880 2068 Page size: 0x1000
23:04:18.0880 2068 Boot type: Safe boot with network
23:04:18.0880 2068 ============================================================
23:04:25.0916 2068 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:04:25.0916 2068 ============================================================
23:04:25.0916 2068 \Device\Harddisk0\DR0:
23:04:25.0916 2068 MBR partitions:
23:04:25.0916 2068 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x32000
23:04:25.0916 2068 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x46000, BlocksNum 0x253E8000
23:04:25.0916 2068 ============================================================
23:04:26.0056 2068 C: <-> \Device\Harddisk0\DR0\Partition1
23:04:26.0056 2068 ============================================================
23:04:26.0056 2068 Initialize success
23:04:26.0056 2068 ============================================================
23:04:45.0614 2528 ============================================================
23:04:45.0614 2528 Scan started
23:04:45.0614 2528 Mode: Manual; TDLFS;
23:04:45.0614 2528 ============================================================
23:04:54.0511 2528 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
23:04:54.0515 2528 1394ohci - ok
23:04:54.0580 2528 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
23:04:54.0586 2528 ACPI - ok
23:04:54.0639 2528 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
23:04:54.0640 2528 AcpiPmi - ok
23:04:54.0886 2528 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
23:04:54.0889 2528 AdobeARMservice - ok
23:04:55.0486 2528 AdobeFlashPlayerUpdateSvc (990dc6edc9f933194d7cd4e65146bc94) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:04:55.0491 2528 AdobeFlashPlayerUpdateSvc - ok
23:04:55.0686 2528 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
23:04:55.0720 2528 adp94xx - ok
23:04:55.0894 2528 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
23:04:55.0900 2528 adpahci - ok
23:04:55.0991 2528 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
23:04:55.0994 2528 adpu320 - ok
23:04:56.0076 2528 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
23:04:56.0078 2528 AeLookupSvc - ok
23:04:56.0361 2528 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
23:04:56.0366 2528 AFD - ok
23:04:56.0671 2528 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
23:04:56.0681 2528 agp440 - ok
23:04:56.0769 2528 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
23:04:56.0779 2528 ALG - ok
23:04:56.0841 2528 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
23:04:56.0843 2528 aliide - ok
23:04:56.0849 2528 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
23:04:56.0851 2528 amdide - ok
23:04:56.0970 2528 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
23:04:56.0972 2528 AmdK8 - ok
23:04:56.0980 2528 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
23:04:56.0983 2528 AmdPPM - ok
23:04:57.0075 2528 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
23:04:57.0079 2528 amdsata - ok
23:04:57.0388 2528 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
23:04:57.0408 2528 amdsbs - ok
23:04:57.0468 2528 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
23:04:57.0468 2528 amdxata - ok
23:04:57.0538 2528 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
23:04:57.0538 2528 AppID - ok
23:04:57.0608 2528 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
23:04:57.0608 2528 AppIDSvc - ok
23:04:57.0798 2528 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
23:04:57.0818 2528 Appinfo - ok
23:04:58.0008 2528 Apple Mobile Device (3debbecf665dcdde3a95d9b902010817) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
23:04:58.0028 2528 Apple Mobile Device - ok
23:04:58.0218 2528 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
23:04:58.0218 2528 arc - ok
23:04:58.0248 2528 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
23:04:58.0248 2528 arcsas - ok
23:04:58.0308 2528 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
23:04:58.0308 2528 AsyncMac - ok
23:04:58.0328 2528 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
23:04:58.0328 2528 atapi - ok
23:04:58.0738 2528 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
23:04:58.0768 2528 AudioEndpointBuilder - ok
23:04:58.0778 2528 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
23:04:58.0778 2528 AudioSrv - ok
23:04:58.0898 2528 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
23:04:58.0908 2528 AxInstSV - ok
23:04:58.0998 2528 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
23:04:59.0018 2528 b06bdrv - ok
23:04:59.0128 2528 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
23:04:59.0128 2528 b57nd60a - ok
23:04:59.0628 2528 BCM43XX (9e84a931dbee0292e38ed672f6293a99) C:\Windows\system32\DRIVERS\bcmwl664.sys
23:04:59.0668 2528 BCM43XX - ok
23:04:59.0688 2528 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
23:04:59.0688 2528 BDESVC - ok
23:04:59.0958 2528 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
23:04:59.0958 2528 Beep - ok
23:05:00.0308 2528 BFE (4992c609a6315671463e30f6512bc022) C:\Windows\System32\bfe.dll
23:05:00.0328 2528 BFE - ok
23:05:01.0498 2528 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\System32\qmgr.dll
23:05:01.0528 2528 BITS - ok
23:05:01.0918 2528 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
23:05:01.0918 2528 blbdrive - ok
23:05:02.0458 2528 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
23:05:02.0478 2528 Bonjour Service - ok
23:05:02.0548 2528 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
23:05:02.0548 2528 bowser - ok
23:05:02.0568 2528 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:05:02.0568 2528 BrFiltLo - ok
23:05:02.0588 2528 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:05:02.0588 2528 BrFiltUp - ok
23:05:02.0668 2528 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
23:05:02.0698 2528 Browser - ok
23:05:02.0798 2528 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
23:05:02.0808 2528 Brserid - ok
23:05:02.0818 2528 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
23:05:02.0818 2528 BrSerWdm - ok
23:05:02.0838 2528 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
23:05:02.0838 2528 BrUsbMdm - ok
23:05:02.0838 2528 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
23:05:02.0848 2528 BrUsbSer - ok
23:05:02.0858 2528 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
23:05:02.0858 2528 BTHMODEM - ok
23:05:02.0988 2528 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
23:05:02.0988 2528 bthserv - ok
23:05:03.0008 2528 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
23:05:03.0008 2528 cdfs - ok
23:05:03.0068 2528 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
23:05:03.0078 2528 cdrom - ok
23:05:03.0108 2528 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
23:05:03.0108 2528 CertPropSvc - ok
23:05:03.0138 2528 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
23:05:03.0138 2528 circlass - ok
23:05:03.0178 2528 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
23:05:03.0198 2528 CLFS - ok
23:05:03.0458 2528 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:05:03.0518 2528 clr_optimization_v2.0.50727_32 - ok
23:05:03.0868 2528 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:05:03.0948 2528 clr_optimization_v2.0.50727_64 - ok
23:05:04.0798 2528 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:05:05.0128 2528 clr_optimization_v4.0.30319_32 - ok
23:05:05.0408 2528 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:05:05.0408 2528 clr_optimization_v4.0.30319_64 - ok
23:05:05.0438 2528 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
23:05:05.0438 2528 CmBatt - ok
23:05:05.0448 2528 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
23:05:05.0448 2528 cmdide - ok
23:05:06.0098 2528 CNG (937beb186a735aca91d717044a49d17e) C:\Windows\system32\Drivers\cng.sys
23:05:06.0128 2528 CNG - ok
23:05:06.0258 2528 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
23:05:06.0258 2528 Compbatt - ok
23:05:06.0388 2528 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
23:05:06.0388 2528 CompositeBus - ok
23:05:06.0428 2528 COMSysApp - ok
23:05:06.0758 2528 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
23:05:06.0758 2528 crcdisk - ok
23:05:07.0048 2528 CryptSvc (f02786b66375292e58c8777082d4396d) C:\Windows\system32\cryptsvc.dll
23:05:07.0058 2528 CryptSvc - ok
23:05:07.0218 2528 CtClsFlt (ed5cf92396a62f4c15110dcdb5e854d9) C:\Windows\system32\DRIVERS\CtClsFlt.sys
23:05:07.0218 2528 CtClsFlt - ok
23:05:08.0298 2528 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
23:05:08.0318 2528 DcomLaunch - ok
23:05:08.0348 2528 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
23:05:08.0348 2528 defragsvc - ok
23:05:08.0608 2528 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
23:05:08.0608 2528 DfsC - ok
23:05:09.0008 2528 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
23:05:09.0008 2528 Dhcp - ok
23:05:09.0068 2528 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
23:05:09.0068 2528 discache - ok
23:05:09.0568 2528 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
23:05:09.0588 2528 Disk - ok
23:05:09.0808 2528 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
23:05:09.0818 2528 Dnscache - ok
23:05:10.0068 2528 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
23:05:10.0078 2528 dot3svc - ok
23:05:10.0188 2528 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
23:05:10.0188 2528 DPS - ok
23:05:10.0218 2528 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
23:05:10.0218 2528 drmkaud - ok
23:05:10.0668 2528 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
23:05:10.0678 2528 DXGKrnl - ok
23:05:10.0988 2528 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
23:05:10.0988 2528 EapHost - ok
23:05:12.0188 2528 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
23:05:12.0298 2528 ebdrv - ok
23:05:13.0648 2528 EFS (156f6159457d0aa7e59b62681b56eb90) C:\Windows\System32\lsass.exe
23:05:13.0648 2528 EFS - ok
23:05:14.0938 2528 ehRecvr (47c071994c3f649f23d9cd075ac9304a) C:\Windows\ehome\ehRecvr.exe
23:05:14.0978 2528 ehRecvr - ok
23:05:15.0168 2528 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
23:05:15.0168 2528 ehSched - ok
23:05:15.0278 2528 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
23:05:15.0298 2528 elxstor - ok
23:05:15.0328 2528 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
23:05:15.0328 2528 ErrDev - ok
23:05:15.0378 2528 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
23:05:15.0388 2528 EventSystem - ok
23:05:15.0438 2528 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
23:05:15.0438 2528 exfat - ok
23:05:15.0458 2528 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
23:05:15.0458 2528 fastfat - ok
23:05:15.0498 2528 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
23:05:15.0548 2528 Fax - ok
23:05:15.0548 2528 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
23:05:15.0548 2528 fdc - ok
23:05:15.0628 2528 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
23:05:15.0628 2528 fdPHost - ok
23:05:15.0648 2528 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
23:05:15.0648 2528 FDResPub - ok
23:05:15.0718 2528 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
23:05:15.0728 2528 FileInfo - ok
23:05:15.0768 2528 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
23:05:15.0768 2528 Filetrace - ok
23:05:15.0798 2528 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
23:05:15.0798 2528 flpydisk - ok
23:05:15.0868 2528 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
23:05:15.0878 2528 FltMgr - ok
23:05:16.0048 2528 FontCache (cb5e4b9c319e3c6bb363eb7e58a4a051) C:\Windows\system32\FntCache.dll
23:05:16.0068 2528 FontCache - ok
23:05:16.0198 2528 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:05:16.0198 2528 FontCache3.0.0.0 - ok
23:05:16.0238 2528 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
23:05:16.0248 2528 FsDepends - ok
23:05:16.0318 2528 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
23:05:16.0318 2528 Fs_Rec - ok
23:05:16.0878 2528 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
23:05:16.0888 2528 fvevol - ok
23:05:17.0008 2528 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
23:05:17.0008 2528 gagp30kx - ok
23:05:17.0058 2528 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
23:05:17.0058 2528 GEARAspiWDM - ok
23:05:17.0148 2528 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
23:05:17.0208 2528 gpsvc - ok
23:05:17.0448 2528 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:05:17.0458 2528 gupdate - ok
23:05:17.0488 2528 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:05:17.0488 2528 gupdatem - ok
23:05:17.0558 2528 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
23:05:17.0578 2528 hcw85cir - ok
23:05:18.0271 2528 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
23:05:18.0273 2528 HdAudAddService - ok
23:05:18.0333 2528 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
23:05:18.0333 2528 HDAudBus - ok
23:05:18.0353 2528 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
23:05:18.0356 2528 HidBatt - ok
23:05:18.0401 2528 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
23:05:18.0742 2528 HidBth - ok
23:05:18.0801 2528 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
23:05:18.0802 2528 HidIr - ok
23:05:18.0832 2528 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
23:05:18.0834 2528 hidserv - ok
23:05:18.0912 2528 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
23:05:18.0914 2528 HidUsb - ok
23:05:18.0941 2528 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
23:05:18.0944 2528 hkmsvc - ok
23:05:18.0973 2528 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
23:05:18.0978 2528 HomeGroupListener - ok
23:05:19.0011 2528 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
23:05:19.0015 2528 HomeGroupProvider - ok
23:05:19.0066 2528 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
23:05:19.0069 2528 HpSAMD - ok
23:05:19.0271 2528 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
23:05:19.0278 2528 HTTP - ok
23:05:19.0292 2528 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
23:05:19.0293 2528 hwpolicy - ok
23:05:19.0384 2528 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
23:05:19.0385 2528 i8042prt - ok
23:05:19.0461 2528 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
23:05:19.0475 2528 iaStorV - ok
23:05:19.0650 2528 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:05:19.0680 2528 idsvc - ok
23:05:21.0099 2528 igfx (a87261ef1546325b559374f5689cf5bc) C:\Windows\system32\DRIVERS\igdkmd64.sys
23:05:21.0239 2528 igfx - ok
23:05:21.0388 2528 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
23:05:21.0390 2528 iirsp - ok
23:05:21.0445 2528 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
23:05:21.0475 2528 IKEEXT - ok
23:05:21.0493 2528 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
23:05:21.0495 2528 intelide - ok
23:05:21.0559 2528 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
23:05:21.0560 2528 intelppm - ok
23:05:21.0577 2528 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
23:05:21.0579 2528 IPBusEnum - ok
23:05:21.0594 2528 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:05:21.0597 2528 IpFilterDriver - ok
23:05:21.0633 2528 iphlpsvc (f8e058d17363ec580e4b7232778b6cb5) C:\Windows\System32\iphlpsvc.dll
23:05:21.0655 2528 iphlpsvc - ok
23:05:21.0773 2528 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
23:05:21.0783 2528 IPMIDRV - ok
23:05:21.0852 2528 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
23:05:21.0854 2528 IPNAT - ok
23:05:22.0089 2528 iPod Service (ee4c2a137c7088911a8919effc9812e7) C:\Program Files\iPod\bin\iPodService.exe
23:05:22.0128 2528 iPod Service - ok
23:05:22.0214 2528 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
23:05:22.0215 2528 IRENUM - ok
23:05:22.0277 2528 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
23:05:22.0278 2528 isapnp - ok
23:05:22.0503 2528 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
23:05:22.0512 2528 iScsiPrt - ok
23:05:22.0695 2528 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
23:05:22.0696 2528 kbdclass - ok
23:05:22.0725 2528 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
23:05:22.0726 2528 kbdhid - ok
23:05:22.0791 2528 KeyIso (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
23:05:22.0792 2528 KeyIso - ok
23:05:22.0834 2528 KSecDD (16c1b906fc5ead84769f90b736b6bf0e) C:\Windows\system32\Drivers\ksecdd.sys
23:05:22.0843 2528 KSecDD - ok
23:05:22.0885 2528 KSecPkg (0b711550c56444879d71c7daabda6c83) C:\Windows\system32\Drivers\ksecpkg.sys
23:05:22.0890 2528 KSecPkg - ok
23:05:23.0018 2528 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
23:05:23.0018 2528 ksthunk - ok
23:05:23.0097 2528 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
23:05:23.0104 2528 KtmRm - ok
23:05:23.0160 2528 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\system32\srvsvc.dll
23:05:23.0164 2528 LanmanServer - ok
23:05:23.0234 2528 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
23:05:23.0238 2528 LanmanWorkstation - ok
23:05:23.0308 2528 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
23:05:23.0310 2528 lltdio - ok
23:05:23.0377 2528 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
23:05:23.0394 2528 lltdsvc - ok
23:05:23.0406 2528 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
23:05:23.0407 2528 lmhosts - ok
23:05:23.0483 2528 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
23:05:23.0486 2528 LSI_FC - ok
23:05:23.0518 2528 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
23:05:23.0520 2528 LSI_SAS - ok
23:05:23.0537 2528 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
23:05:23.0540 2528 LSI_SAS2 - ok
23:05:23.0552 2528 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
23:05:23.0554 2528 LSI_SCSI - ok
23:05:23.0648 2528 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
23:05:23.0649 2528 luafv - ok
23:05:23.0739 2528 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
23:05:23.0741 2528 MBAMProtector - ok
23:05:23.0955 2528 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
23:05:23.0978 2528 MBAMService - ok
23:05:24.0081 2528 McAfee SiteAdvisor Service (be8c524313db75fa26fb2b0c0aaff88e) c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe
23:05:24.0084 2528 McAfee SiteAdvisor Service - ok
23:05:24.0184 2528 McComponentHostService (f453d1e6d881e8f8717e20ccd4199e85) C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
23:05:24.0212 2528 McComponentHostService - ok
23:05:24.0330 2528 Mcx2Svc (f84c8f1000bc11e3b7b23cbd3baff111) C:\Windows\system32\Mcx2Svc.dll
23:05:24.0337 2528 Mcx2Svc - ok
23:05:24.0359 2528 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
23:05:24.0360 2528 megasas - ok
23:05:24.0680 2528 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
23:05:24.0696 2528 MegaSR - ok
23:05:24.0752 2528 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
23:05:24.0754 2528 MMCSS - ok
23:05:24.0799 2528 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
23:05:24.0841 2528 Modem - ok
23:05:24.0912 2528 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
23:05:24.0913 2528 monitor - ok
23:05:24.0970 2528 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
23:05:24.0970 2528 mouclass - ok
23:05:24.0977 2528 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
23:05:24.0978 2528 mouhid - ok
23:05:24.0997 2528 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
23:05:25.0000 2528 mountmgr - ok
23:05:25.0215 2528 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
23:05:25.0221 2528 MozillaMaintenance - ok
23:05:25.0607 2528 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
23:05:25.0614 2528 MpFilter - ok
23:05:25.0955 2528 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
23:05:25.0965 2528 mpio - ok
23:05:25.0980 2528 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
23:05:25.0981 2528 mpsdrv - ok
23:05:26.0206 2528 MpsSvc (aecab449567d1846dad63ece49e893e3) C:\Windows\system32\mpssvc.dll
23:05:26.0230 2528 MpsSvc - ok
23:05:26.0438 2528 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
23:05:26.0469 2528 MRxDAV - ok
23:05:26.0515 2528 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
23:05:26.0517 2528 mrxsmb - ok
23:05:26.0588 2528 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:05:26.0591 2528 mrxsmb10 - ok
23:05:26.0613 2528 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:05:26.0614 2528 mrxsmb20 - ok
23:05:26.0657 2528 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
23:05:26.0658 2528 msahci - ok
23:05:26.0679 2528 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
23:05:26.0683 2528 msdsm - ok
23:05:26.0720 2528 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
23:05:26.0724 2528 MSDTC - ok
23:05:26.0807 2528 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
23:05:26.0808 2528 Msfs - ok
23:05:26.0861 2528 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
23:05:26.0863 2528 mshidkmdf - ok
23:05:26.0903 2528 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
23:05:26.0904 2528 msisadrv - ok
23:05:27.0048 2528 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
23:05:27.0052 2528 MSiSCSI - ok
23:05:27.0055 2528 msiserver - ok
23:05:27.0139 2528 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
23:05:27.0141 2528 MSKSSRV - ok
23:05:27.0301 2528 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) c:\Program Files\Microsoft Security Client\MsMpEng.exe
23:05:27.0301 2528 MsMpSvc - ok
23:05:27.0364 2528 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
23:05:27.0367 2528 MSPCLOCK - ok
23:05:27.0463 2528 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
23:05:27.0464 2528 MSPQM - ok
23:05:27.0496 2528 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
23:05:27.0509 2528 MsRPC - ok
23:05:27.0530 2528 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
23:05:27.0531 2528 mssmbios - ok
23:05:27.0547 2528 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
23:05:27.0549 2528 MSTEE - ok
23:05:27.0561 2528 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
23:05:27.0563 2528 MTConfig - ok
23:05:27.0583 2528 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
23:05:27.0584 2528 Mup - ok
23:05:27.0629 2528 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
23:05:27.0661 2528 napagent - ok
23:05:27.0772 2528 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
23:05:27.0775 2528 NativeWifiP - ok
23:05:27.0957 2528 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
23:05:28.0075 2528 NDIS - ok
23:05:28.0099 2528 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
23:05:28.0102 2528 NdisCap - ok
23:05:28.0196 2528 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
23:05:28.0197 2528 NdisTapi - ok
23:05:28.0208 2528 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
23:05:28.0209 2528 Ndisuio - ok
23:05:28.0283 2528 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
23:05:28.0285 2528 NdisWan - ok
23:05:28.0298 2528 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
23:05:28.0299 2528 NDProxy - ok
23:05:28.0353 2528 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
23:05:28.0354 2528 NetBIOS - ok
23:05:28.0375 2528 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
23:05:28.0378 2528 NetBT - ok
23:05:28.0590 2528 Netlogon (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
23:05:28.0592 2528 Netlogon - ok
23:05:28.0661 2528 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
23:05:28.0676 2528 Netman - ok
23:05:28.0698 2528 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
23:05:28.0715 2528 netprofm - ok
23:05:29.0033 2528 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
23:05:29.0150 2528 NetTcpPortSharing - ok
23:05:29.0278 2528 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
23:05:29.0307 2528 nfrd960 - ok
23:05:29.0445 2528 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
23:05:29.0447 2528 NisDrv - ok
23:05:29.0645 2528 NisSrv (10a43829a9e606af3eef25a1c1665923) c:\Program Files\Microsoft Security Client\NisSrv.exe
23:05:29.0650 2528 NisSrv - ok
23:05:29.0739 2528 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
23:05:29.0746 2528 NlaSvc - ok
23:05:29.0770 2528 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
23:05:29.0771 2528 Npfs - ok
23:05:29.0789 2528 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
23:05:29.0791 2528 nsi - ok
23:05:29.0804 2528 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
23:05:29.0805 2528 nsiproxy - ok
23:05:30.0023 2528 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
23:05:30.0095 2528 Ntfs - ok
23:05:30.0274 2528 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
23:05:30.0274 2528 Null - ok
23:05:30.0427 2528 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
23:05:30.0605 2528 nvraid - ok
23:05:30.0751 2528 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
23:05:30.0755 2528 nvstor - ok
23:05:30.0774 2528 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
23:05:30.0777 2528 nv_agp - ok
23:05:30.0792 2528 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
23:05:30.0795 2528 ohci1394 - ok
23:05:31.0277 2528 ose64 (4965b005492cba7719e82b71e3245495) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:05:31.0317 2528 ose64 - ok
23:05:32.0322 2528 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
23:05:32.0479 2528 osppsvc - ok
23:05:33.0782 2528 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
23:05:33.0798 2528 p2pimsvc - ok
23:05:33.0847 2528 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
23:05:33.0882 2528 p2psvc - ok
23:05:34.0046 2528 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
23:05:34.0048 2528 Parport - ok
23:05:34.0098 2528 partmgr (90061b1acfe8ccaa5345750ffe08d8b8) C:\Windows\system32\drivers\partmgr.sys
23:05:34.0101 2528 partmgr - ok
23:05:34.0128 2528 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
23:05:34.0133 2528 PcaSvc - ok
23:05:34.0228 2528 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
23:05:34.0233 2528 pci - ok
23:05:34.0246 2528 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
23:05:34.0247 2528 pciide - ok
23:05:34.0276 2528 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
23:05:34.0281 2528 pcmcia - ok
23:05:34.0293 2528 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
23:05:34.0295 2528 pcw - ok
23:05:34.0705 2528 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
23:05:34.0711 2528 PEAUTH - ok
23:05:35.0151 2528 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
23:05:35.0195 2528 PerfHost - ok
23:05:35.0330 2528 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
23:05:35.0368 2528 pla - ok
23:05:35.0490 2528 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
23:05:35.0506 2528 PlugPlay - ok
23:05:35.0537 2528 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
23:05:35.0540 2528 PNRPAutoReg - ok
23:05:35.0577 2528 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
23:05:35.0581 2528 PNRPsvc - ok
23:05:35.0631 2528 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
23:05:35.0653 2528 PolicyAgent - ok
23:05:35.0701 2528 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
23:05:35.0703 2528 Power - ok
23:05:35.0836 2528 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
23:05:35.0837 2528 PptpMiniport - ok
23:05:35.0860 2528 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
23:05:35.0862 2528 Processor - ok
23:05:36.0028 2528 ProfSvc (97293447431311c06703368ad0f6c4be) C:\Windows\system32\profsvc.dll
23:05:36.0033 2528 ProfSvc - ok
23:05:36.0074 2528 ProtectedStorage (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
23:05:36.0076 2528 ProtectedStorage - ok
23:05:36.0201 2528 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
23:05:36.0203 2528 Psched - ok
23:05:36.0567 2528 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
23:05:36.0611 2528 ql2300 - ok
23:05:37.0015 2528 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
23:05:37.0023 2528 ql40xx - ok
23:05:37.0051 2528 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
23:05:37.0056 2528 QWAVE - ok
23:05:37.0107 2528 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
23:05:37.0117 2528 QWAVEdrv - ok
23:05:37.0155 2528 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
23:05:37.0156 2528 RasAcd - ok
23:05:37.0323 2528 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
23:05:37.0324 2528 RasAgileVpn - ok
23:05:37.0351 2528 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
23:05:37.0355 2528 RasAuto - ok
23:05:37.0373 2528 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
23:05:37.0375 2528 Rasl2tp - ok
23:05:37.0398 2528 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
23:05:37.0413 2528 RasMan - ok
23:05:37.0474 2528 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
23:05:37.0475 2528 RasPppoe - ok
23:05:37.0520 2528 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
23:05:37.0521 2528 RasSstp - ok
23:05:37.0606 2528 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
23:05:37.0609 2528 rdbss - ok
23:05:37.0621 2528 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
23:05:37.0623 2528 rdpbus - ok
23:05:37.0637 2528 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
23:05:37.0638 2528 RDPCDD - ok
23:05:37.0698 2528 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
23:05:37.0699 2528 RDPENCDD - ok
23:05:37.0716 2528 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
23:05:37.0717 2528 RDPREFMP - ok
23:05:37.0800 2528 RDPWD (447de7e3dea39d422c1504f245b668b1) C:\Windows\system32\drivers\RDPWD.sys
23:05:37.0805 2528 RDPWD - ok
23:05:37.0863 2528 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
23:05:37.0868 2528 rdyboost - ok
23:05:37.0926 2528 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
23:05:37.0929 2528 RemoteAccess - ok
23:05:37.0965 2528 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
23:05:37.0970 2528 RemoteRegistry - ok
23:05:38.0028 2528 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
23:05:38.0030 2528 RpcEptMapper - ok
23:05:38.0040 2528 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
23:05:38.0044 2528 RpcLocator - ok
23:05:38.0118 2528 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
23:05:38.0123 2528 RpcSs - ok
23:05:38.0148 2528 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
23:05:38.0150 2528 rspndr - ok
23:05:38.0247 2528 RTL8167 (baefee35d27a5440d35092ce10267bec) C:\Windows\system32\DRIVERS\Rt64win7.sys
23:05:38.0249 2528 RTL8167 - ok
23:05:38.0286 2528 SamSs (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
23:05:38.0287 2528 SamSs - ok
23:05:38.0315 2528 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
23:05:38.0318 2528 sbp2port - ok
23:05:39.0088 2528 SBSDWSCService (794d4b48dfb6e999537c7c3947863463) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
23:05:39.0134 2528 SBSDWSCService - ok
23:05:39.0213 2528 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
23:05:39.0218 2528 SCardSvr - ok
23:05:39.0267 2528 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
23:05:39.0271 2528 scfilter - ok
23:05:39.0562 2528 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
23:05:39.0597 2528 Schedule - ok
23:05:39.0621 2528 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
23:05:39.0622 2528 SCPolicySvc - ok
23:05:39.0665 2528 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
23:05:39.0671 2528 SDRSVC - ok
23:05:39.0757 2528 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
23:05:39.0758 2528 secdrv - ok
23:05:39.0768 2528 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
23:05:39.0771 2528 seclogon - ok
23:05:39.0803 2528 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
23:05:39.0805 2528 SENS - ok
23:05:39.0821 2528 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
23:05:39.0824 2528 SensrSvc - ok
23:05:39.0869 2528 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
23:05:39.0871 2528 Serenum - ok
23:05:39.0923 2528 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
23:05:39.0926 2528 Serial - ok
23:05:39.0931 2528 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
23:05:39.0933 2528 sermouse - ok
23:05:40.0001 2528 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
23:05:40.0004 2528 SessionEnv - ok
23:05:40.0019 2528 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
23:05:40.0021 2528 sffdisk - ok
23:05:40.0026 2528 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
23:05:40.0027 2528 sffp_mmc - ok
23:05:40.0032 2528 sffp_sd (5588b8c6193eb1522490c122eb94dffa) C:\Windows\system32\DRIVERS\sffp_sd.sys
23:05:40.0033 2528 sffp_sd - ok
23:05:40.0038 2528 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
23:05:40.0040 2528 sfloppy - ok
23:05:40.0113 2528 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
23:05:40.0129 2528 SharedAccess - ok
23:05:40.0219 2528 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
23:05:40.0232 2528 ShellHWDetection - ok
23:05:40.0359 2528 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
23:05:40.0361 2528 SiSRaid2 - ok
23:05:40.0627 2528 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
23:05:40.0648 2528 SiSRaid4 - ok
23:05:40.0734 2528 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
23:05:40.0738 2528 Smb - ok
23:05:40.0797 2528 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
23:05:40.0799 2528 SNMPTRAP - ok
23:05:40.0859 2528 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
23:05:40.0860 2528 spldr - ok
23:05:41.0010 2528 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
23:05:41.0031 2528 Spooler - ok
23:05:41.0575 2528 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
23:05:41.0664 2528 sppsvc - ok
23:05:41.0864 2528 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
23:05:41.0868 2528 sppuinotify - ok
23:05:41.0927 2528 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
23:05:41.0931 2528 srv - ok
23:05:41.0958 2528 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
23:05:41.0962 2528 srv2 - ok
23:05:42.0195 2528 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
23:05:42.0197 2528 srvnet - ok
23:05:42.0295 2528 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
23:05:42.0300 2528 SSDPSRV - ok
23:05:42.0327 2528 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
23:05:42.0330 2528 SstpSvc - ok
23:05:42.0389 2528 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
23:05:42.0396 2528 stexstor - ok
23:05:42.0501 2528 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
23:05:42.0523 2528 stisvc - ok
23:05:42.0553 2528 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
23:05:42.0554 2528 swenum - ok
23:05:42.0588 2528 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
23:05:42.0614 2528 swprv - ok
23:05:42.0693 2528 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
23:05:42.0769 2528 SysMain - ok
23:05:42.0954 2528 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
23:05:42.0959 2528 TabletInputService - ok
23:05:43.0104 2528 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
23:05:43.0123 2528 TapiSrv - ok
23:05:43.0355 2528 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
23:05:43.0366 2528 TBS - ok
23:05:43.0627 2528 Tcpip (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\drivers\tcpip.sys
23:05:43.0667 2528 Tcpip - ok
23:05:43.0901 2528 TCPIP6 (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\DRIVERS\tcpip.sys
23:05:43.0913 2528 TCPIP6 - ok
23:05:44.0031 2528 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
23:05:44.0032 2528 tcpipreg - ok
23:05:44.0083 2528 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
23:05:44.0084 2528 TDPIPE - ok
23:05:44.0121 2528 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
23:05:44.0124 2528 TDTCP - ok
23:05:44.0177 2528 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
23:05:44.0178 2528 tdx - ok
23:05:44.0189 2528 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
23:05:44.0190 2528 TermDD - ok
23:05:44.0284 2528 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
23:05:44.0306 2528 TermService - ok
23:05:44.0334 2528 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
23:05:44.0336 2528 Themes - ok
23:05:44.0362 2528 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
23:05:44.0364 2528 THREADORDER - ok
23:05:44.0460 2528 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
23:05:44.0463 2528 TrkWks - ok
23:05:44.0517 2528 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
23:05:44.0522 2528 TrustedInstaller - ok
23:05:44.0539 2528 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
23:05:44.0541 2528 tssecsrv - ok
23:05:44.0598 2528 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
23:05:44.0600 2528 tunnel - ok
23:05:44.0617 2528 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
23:05:44.0619 2528 uagp35 - ok
23:05:44.0844 2528 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
23:05:44.0860 2528 udfs - ok
23:05:44.0892 2528 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
23:05:44.0895 2528 UI0Detect - ok
23:05:44.0911 2528 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
23:05:44.0913 2528 uliagpkx - ok
23:05:44.0926 2528 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
23:05:44.0927 2528 umbus - ok
23:05:44.0946 2528 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
23:05:44.0947 2528 UmPass - ok
23:05:44.0979 2528 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
23:05:44.0986 2528 upnphost - ok
23:05:45.0046 2528 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
23:05:45.0048 2528 USBAAPL64 - ok
23:05:45.0154 2528 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
23:05:45.0155 2528 usbccgp - ok
23:05:45.0216 2528 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
23:05:45.0219 2528 usbcir - ok
23:05:45.0320 2528 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
23:05:45.0321 2528 usbehci - ok
23:05:45.0733 2528 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
23:05:45.0733 2528 usbhub - ok
23:05:45.0763 2528 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\drivers\usbohci.sys
23:05:45.0763 2528 usbohci - ok
23:05:45.0853 2528 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
23:05:45.0853 2528 usbprint - ok
23:05:45.0923 2528 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:05:45.0923 2528 USBSTOR - ok
23:05:45.0943 2528 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\DRIVERS\usbuhci.sys
23:05:45.0943 2528 usbuhci - ok
23:05:46.0003 2528 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\System32\Drivers\usbvideo.sys
23:05:46.0013 2528 usbvideo - ok
23:05:46.0073 2528 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
23:05:46.0073 2528 UxSms - ok
23:05:46.0173 2528 VaultSvc (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
23:05:46.0173 2528 VaultSvc - ok
23:05:46.0233 2528 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
23:05:46.0233 2528 vdrvroot - ok
23:05:46.0273 2528 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
23:05:46.0303 2528 vds - ok
23:05:46.0393 2528 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
23:05:46.0453 2528 vga - ok
23:05:46.0593 2528 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
23:05:46.0593 2528 VgaSave - ok
23:05:47.0033 2528 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
23:05:47.0043 2528 vhdmp - ok
23:05:47.0203 2528 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
23:05:47.0203 2528 viaide - ok
23:05:47.0283 2528 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
23:05:47.0293 2528 volmgr - ok
23:05:47.0363 2528 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
23:05:47.0373 2528 volmgrx - ok
23:05:47.0423 2528 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
23:05:47.0433 2528 volsnap - ok
23:05:47.0683 2528 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
23:05:47.0693 2528 vsmraid - ok
23:05:47.0783 2528 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
23:05:47.0833 2528 VSS - ok
23:05:47.0993 2528 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
23:05:47.0993 2528 vwifibus - ok
23:05:48.0063 2528 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
23:05:48.0063 2528 vwififlt - ok
23:05:48.0113 2528 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
23:05:48.0113 2528 vwifimp - ok
23:05:48.0453 2528 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
23:05:48.0523 2528 W32Time - ok
23:05:48.0623 2528 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
23:05:48.0723 2528 WacomPen - ok
23:05:49.0023 2528 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
23:05:49.0033 2528 WANARP - ok
23:05:49.0033 2528 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
23:05:49.0033 2528 Wanarpv6 - ok
23:05:50.0043 2528 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
23:05:50.0073 2528 WatAdminSvc - ok
23:05:51.0483 2528 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
23:05:51.0533 2528 wbengine - ok
23:05:51.0743 2528 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
23:05:51.0753 2528 WbioSrvc - ok
23:05:51.0843 2528 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
23:05:51.0853 2528 wcncsvc - ok
23:05:51.0873 2528 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
23:05:51.0873 2528 WcsPlugInService - ok
23:05:51.0923 2528 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
23:05:51.0923 2528 Wd - ok
23:05:52.0003 2528 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
23:05:52.0093 2528 Wdf01000 - ok
23:05:52.0123 2528 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
23:05:52.0123 2528 WdiServiceHost - ok
23:05:52.0123 2528 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
23:05:52.0133 2528 WdiSystemHost - ok
23:05:52.0253 2528 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
23:05:52.0273 2528 WebClient - ok
23:05:52.0353 2528 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
23:05:52.0373 2528 Wecsvc - ok
23:05:52.0443 2528 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
23:05:52.0453 2528 wercplsupport - ok
23:05:52.0813 2528 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
23:05:52.0813 2528 WerSvc - ok
23:05:52.0863 2528 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
23:05:52.0863 2528 WfpLwf - ok
23:05:52.0873 2528 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
23:05:52.0873 2528 WIMMount - ok
23:05:52.0903 2528 WinDefend - ok
23:05:52.0913 2528 WinHttpAutoProxySvc - ok
23:05:52.0973 2528 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
23:05:52.0983 2528 Winmgmt - ok
23:05:53.0093 2528 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
23:05:53.0163 2528 WinRM - ok
23:05:54.0073 2528 WinUsb (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUsb.sys
23:05:54.0083 2528 WinUsb - ok
23:05:54.0233 2528 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
23:05:54.0293 2528 Wlansvc - ok
23:05:54.0983 2528 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:05:55.0033 2528 wlidsvc - ok
23:05:55.0323 2528 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
23:05:55.0323 2528 WmiAcpi - ok
23:05:55.0393 2528 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
23:05:55.0403 2528 wmiApSrv - ok
23:05:55.0423 2528 WMPNetworkSvc - ok
23:05:55.0463 2528 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
23:05:55.0463 2528 WPCSvc - ok
23:05:55.0573 2528 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
23:05:55.0573 2528 WPDBusEnum - ok
23:05:55.0603 2528 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
23:05:55.0603 2528 ws2ifsl - ok
23:05:55.0643 2528 wscsvc (8f9f3969933c02da96eb0f84576db43e) C:\Windows\System32\wscsvc.dll
23:05:55.0643 2528 wscsvc - ok
23:05:55.0643 2528 WSearch - ok
23:05:55.0843 2528 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
23:05:55.0893 2528 wuauserv - ok
23:05:56.0013 2528 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
23:05:56.0013 2528 WudfPf - ok
23:05:56.0103 2528 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
23:05:56.0113 2528 WUDFRd - ok
23:05:56.0143 2528 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
23:05:56.0143 2528 wudfsvc - ok
23:05:56.0173 2528 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
23:05:56.0183 2528 WwanSvc - ok
23:05:56.0333 2528 YahooAUService (dd0042f0c3b606a6a8b92d49afb18ad6) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
23:05:56.0403 2528 YahooAUService - ok
23:05:56.0453 2528 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
23:05:56.0933 2528 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
23:05:56.0933 2528 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
23:05:57.0113 2528 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
23:05:57.0113 2528 \Device\Harddisk0\DR0 - detected TDSS File System (1)
23:05:57.0153 2528 Boot (0x1200) (9dd8126bd4f85068c3aa986d52c1e7af) \Device\Harddisk0\DR0\Partition0
23:05:57.0153 2528 \Device\Harddisk0\DR0\Partition0 - ok
23:05:57.0193 2528 Boot (0x1200) (0ad6af5d90ed6a32b3d29e077b21d1a8) \Device\Harddisk0\DR0\Partition1
23:05:57.0193 2528 \Device\Harddisk0\DR0\Partition1 - ok
23:05:57.0203 2528 ============================================================
23:05:57.0203 2528 Scan finished
23:05:57.0203 2528 ============================================================
23:05:57.0223 2520 Detected object count: 2
23:05:57.0223 2520 Actual detected object count: 2
23:06:51.0143 2520 \Device\Harddisk0\DR0\# - copied to quarantine
23:06:51.0143 2520 \Device\Harddisk0\DR0 - copied to quarantine
23:06:51.0328 2520 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
23:06:51.0331 2520 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
23:06:51.0340 2520 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
23:06:51.0380 2520 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
23:06:51.0402 2520 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
23:06:51.0464 2520 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
23:06:51.0465 2520 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
23:06:51.0466 2520 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
23:06:51.0468 2520 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
23:06:51.0471 2520 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
23:06:51.0475 2520 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
23:06:51.0476 2520 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
23:06:51.0478 2520 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
23:06:51.0480 2520 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
23:06:51.0527 2520 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - will be cured on reboot
23:06:51.0587 2520 \Device\Harddisk0\DR0 - ok
23:06:51.0620 2520 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Cure
23:06:51.0645 2520 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
23:06:51.0649 2520 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
23:06:51.0659 2520 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
23:06:51.0667 2520 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
23:06:51.0694 2520 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
23:06:51.0711 2520 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
23:06:51.0712 2520 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
23:06:51.0713 2520 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
23:06:51.0715 2520 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
23:06:51.0719 2520 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
23:06:51.0722 2520 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
23:06:51.0724 2520 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
23:06:51.0726 2520 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
23:06:51.0727 2520 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
23:06:51.0727 2520 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Quarantine


and heres the other one:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-29 23:09:56
-----------------------------
23:09:56.513 OS Version: Windows x64 6.1.7600
23:09:56.513 Number of processors: 2 586 0x170A
23:09:56.514 ComputerName: CHAD-PC UserName: chad
23:10:00.820 Initialize success
23:10:33.984 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
23:10:33.987 Disk 0 Vendor: ST9320325AS 0003DEM1 Size: 305245MB BusType: 11
23:10:33.991 Device \Driver\atapi -> MajorFunction fffffa8004a185e8
23:10:34.007 Disk 0 MBR read successfully
23:10:34.013 Disk 0 MBR scan
23:10:34.017 Disk 0 Windows 7 default MBR code
23:10:34.022 Disk 0 MBR hidden
23:10:34.028 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 39 MB offset 63
23:10:34.042 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 81920
23:10:34.053 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 305104 MB offset 286720
23:10:34.081 Disk 0 scanning C:\Windows\system32\drivers
23:10:43.294 Service scanning
23:11:05.028 Modules scanning
23:11:05.043 Disk 0 trace - called modules:
23:11:05.404
23:11:05.413 Scan finished successfully
23:11:38.787 Disk 0 MBR has been saved successfully to "C:\Users\chad\Documents\MBR.dat"
23:11:38.796 The log file has been saved successfully to "C:\Users\chad\Documents\aswMBRlog.txt"

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:44 PM

Posted 30 June 2012 - 12:02 PM

Restart the PC ,run aswmbr again

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users