Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Possible Virus


  • Please log in to reply
4 replies to this topic

#1 andrew3205

andrew3205

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:06:02 AM

Posted 11 July 2012 - 10:09 PM

Hi I am running windows 7 professional on the following computer:
System Manufacturer Dell Inc.
System Model Vostro 3550
System Type x64-based PC
Processor Intel® Core™ i7-2620M CPU @ 2.70GHz, 2701 Mhz, 2 Core(s), 4 Logical Processor(s)

I think I have a virus. In chrome I am getting weak signature link when I try to access my profile in facebook.....
The site's security certificate is signed using a weak signature algorithm!
You attempted to reach www.facebook.com, but the server presented a certificate signed using a weak signature algorithm. This means that the security credentials the server presented could have been forged, and the server may not be the server you expected (you may be communicating with an attacker).
same thing happens if I try to access my gmail account. I am also getting redirects both in chrome and firefox. This was just happening in one of my many profiles in chrome but is now happening in more. I tried to just delete my profile in chrome and start up a new one with the same gmail account but still get the weak signature link and redirects if I try to go directly to other sites sometimes.
Seems obvious to me I have some kind of virus but I am lost and need help....

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:02 AM

Posted 12 July 2012 - 03:32 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)



Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 andrew3205

andrew3205
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:06:02 AM

Posted 12 July 2012 - 08:31 PM

16:33:50.0588 5320 TDSS rootkit removing tool 2.7.45.0 Jul 9 2012 12:46:35
16:33:52.0589 5320 ============================================================
16:33:52.0589 5320 Current date / time: 2012/07/12 16:33:52.0589
16:33:52.0589 5320 SystemInfo:
16:33:52.0589 5320
16:33:52.0589 5320 OS Version: 6.1.7601 ServicePack: 1.0
16:33:52.0589 5320 Product type: Workstation
16:33:52.0589 5320 ComputerName: ANDREWTAYLOR-PC
16:33:52.0589 5320 UserName: Andrew Taylor
16:33:52.0589 5320 Windows directory: C:\windows
16:33:52.0589 5320 System windows directory: C:\windows
16:33:52.0589 5320 Running under WOW64
16:33:52.0589 5320 Processor architecture: Intel x64
16:33:52.0589 5320 Number of processors: 4
16:33:52.0589 5320 Page size: 0x1000
16:33:52.0589 5320 Boot type: Normal boot
16:33:52.0589 5320 ============================================================
16:33:55.0949 5320 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:33:55.0949 5320 ============================================================
16:33:55.0949 5320 \Device\Harddisk0\DR0:
16:33:55.0949 5320 MBR partitions:
16:33:55.0949 5320 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D4C000
16:33:55.0949 5320 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D7E800, BlocksNum 0x38607030
16:33:55.0949 5320 ============================================================
16:33:55.0969 5320 C: <-> \Device\Harddisk0\DR0\Partition1
16:33:55.0969 5320 ============================================================
16:33:55.0969 5320 Initialize success
16:33:55.0969 5320 ============================================================
16:34:26.0807 1508 ============================================================
16:34:26.0807 1508 Scan started
16:34:26.0807 1508 Mode: Manual; TDLFS;
16:34:26.0807 1508 ============================================================
16:34:27.0807 1508 !SASCORE (7d9d615201a483d6fa99491c2e655a5a) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
16:34:27.0817 1508 !SASCORE - ok
16:34:27.0987 1508 1394ohci (a87d604aea360176311474c87a63bb88) C:\windows\system32\drivers\1394ohci.sys
16:34:27.0987 1508 1394ohci - ok
16:34:28.0047 1508 Acceler (e0065cbf1a25c015c218457d2cd522b9) C:\windows\system32\DRIVERS\Accelern.sys
16:34:28.0047 1508 Acceler - ok
16:34:28.0117 1508 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\windows\system32\drivers\ACPI.sys
16:34:28.0127 1508 ACPI - ok
16:34:28.0157 1508 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\windows\system32\drivers\acpipmi.sys
16:34:28.0157 1508 AcpiPmi - ok
16:34:28.0297 1508 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:34:28.0297 1508 AdobeARMservice - ok
16:34:28.0517 1508 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:34:28.0517 1508 AdobeFlashPlayerUpdateSvc - ok
16:34:28.0587 1508 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\windows\system32\DRIVERS\adp94xx.sys
16:34:28.0587 1508 adp94xx - ok
16:34:28.0687 1508 adpahci (597f78224ee9224ea1a13d6350ced962) C:\windows\system32\DRIVERS\adpahci.sys
16:34:28.0697 1508 adpahci - ok
16:34:28.0717 1508 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\windows\system32\DRIVERS\adpu320.sys
16:34:28.0727 1508 adpu320 - ok
16:34:28.0817 1508 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\windows\System32\aelupsvc.dll
16:34:28.0817 1508 AeLookupSvc - ok
16:34:28.0897 1508 AESTFilters (a6fb9db8f1a86861d955fd6975977ae0) C:\Program Files\IDT\WDM\AESTSr64.exe
16:34:28.0897 1508 AESTFilters - ok
16:34:28.0967 1508 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\windows\system32\drivers\afd.sys
16:34:28.0967 1508 AFD - ok
16:34:29.0037 1508 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\windows\system32\drivers\agp440.sys
16:34:29.0037 1508 agp440 - ok
16:34:29.0307 1508 Akamai (29584f02a43e427c4227e3b1d9ff1b22) c:\program files (x86)\common files\akamai/netsession_win_4f7fccd.dll
16:34:29.0307 1508 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_4f7fccd.dll. md5: 29584f02a43e427c4227e3b1d9ff1b22
16:34:29.0307 1508 Akamai ( HiddenFile.Multi.Generic ) - warning
16:34:29.0307 1508 Akamai - detected HiddenFile.Multi.Generic (1)
16:34:29.0407 1508 ALG (3290d6946b5e30e70414990574883ddb) C:\windows\System32\alg.exe
16:34:29.0407 1508 ALG - ok
16:34:29.0467 1508 aliide (5812713a477a3ad7363c7438ca2ee038) C:\windows\system32\drivers\aliide.sys
16:34:29.0467 1508 aliide - ok
16:34:29.0507 1508 AMD External Events Utility (cda65bb7ecbc8dc083d7ce6e900a3b8c) C:\windows\system32\atiesrxx.exe
16:34:29.0507 1508 AMD External Events Utility - ok
16:34:29.0527 1508 amdide (1ff8b4431c353ce385c875f194924c0c) C:\windows\system32\drivers\amdide.sys
16:34:29.0527 1508 amdide - ok
16:34:29.0567 1508 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\windows\system32\DRIVERS\amdk8.sys
16:34:29.0577 1508 AmdK8 - ok
16:34:29.0992 1508 amdkmdag (b797496bca3bce8020f1cb573e0e5993) C:\windows\system32\DRIVERS\atikmdag.sys
16:34:30.0052 1508 amdkmdag - ok
16:34:30.0182 1508 amdkmdap (1ba2b45e0fdce093ec27bd11b3194861) C:\windows\system32\DRIVERS\atikmpag.sys
16:34:30.0192 1508 amdkmdap - ok
16:34:30.0212 1508 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\windows\system32\DRIVERS\amdppm.sys
16:34:30.0212 1508 AmdPPM - ok
16:34:30.0272 1508 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\windows\system32\drivers\amdsata.sys
16:34:30.0282 1508 amdsata - ok
16:34:30.0292 1508 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\windows\system32\DRIVERS\amdsbs.sys
16:34:30.0302 1508 amdsbs - ok
16:34:30.0322 1508 amdxata (540daf1cea6094886d72126fd7c33048) C:\windows\system32\drivers\amdxata.sys
16:34:30.0322 1508 amdxata - ok
16:34:30.0372 1508 ApfiltrService (7380b9072ebc65a54da3074e14bf34b9) C:\windows\system32\DRIVERS\Apfiltr.sys
16:34:30.0372 1508 ApfiltrService - ok
16:34:30.0422 1508 AppID (89a69c3f2f319b43379399547526d952) C:\windows\system32\drivers\appid.sys
16:34:30.0432 1508 AppID - ok
16:34:30.0462 1508 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\windows\System32\appidsvc.dll
16:34:30.0462 1508 AppIDSvc - ok
16:34:30.0492 1508 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\windows\System32\appinfo.dll
16:34:30.0492 1508 Appinfo - ok
16:34:30.0622 1508 Apple Mobile Device (3debbecf665dcdde3a95d9b902010817) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:34:30.0622 1508 Apple Mobile Device - ok
16:34:30.0672 1508 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\windows\System32\appmgmts.dll
16:34:30.0672 1508 AppMgmt - ok
16:34:30.0722 1508 arc (c484f8ceb1717c540242531db7845c4e) C:\windows\system32\DRIVERS\arc.sys
16:34:30.0722 1508 arc - ok
16:34:30.0722 1508 arcsas (019af6924aefe7839f61c830227fe79c) C:\windows\system32\DRIVERS\arcsas.sys
16:34:30.0732 1508 arcsas - ok
16:34:30.0752 1508 AsyncMac (769765ce2cc62867468cea93969b2242) C:\windows\system32\DRIVERS\asyncmac.sys
16:34:30.0752 1508 AsyncMac - ok
16:34:30.0792 1508 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\windows\system32\drivers\atapi.sys
16:34:30.0792 1508 atapi - ok
16:34:30.0892 1508 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\windows\System32\Audiosrv.dll
16:34:30.0912 1508 AudioEndpointBuilder - ok
16:34:30.0922 1508 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\windows\System32\Audiosrv.dll
16:34:30.0922 1508 AudioSrv - ok
16:34:30.0972 1508 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\windows\System32\AxInstSV.dll
16:34:30.0982 1508 AxInstSV - ok
16:34:31.0032 1508 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\windows\system32\DRIVERS\bxvbda.sys
16:34:31.0042 1508 b06bdrv - ok
16:34:31.0062 1508 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\windows\system32\DRIVERS\b57nd60a.sys
16:34:31.0062 1508 b57nd60a - ok
16:34:31.0092 1508 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\windows\System32\bdesvc.dll
16:34:31.0092 1508 BDESVC - ok
16:34:31.0102 1508 Beep (16a47ce2decc9b099349a5f840654746) C:\windows\system32\drivers\Beep.sys
16:34:31.0102 1508 Beep - ok
16:34:31.0182 1508 BITS (1ea7969e3271cbc59e1730697dc74682) C:\windows\System32\qmgr.dll
16:34:31.0182 1508 BITS - ok
16:34:31.0202 1508 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\windows\system32\DRIVERS\blbdrive.sys
16:34:31.0202 1508 blbdrive - ok
16:34:31.0342 1508 Bluetooth Device Monitor (093b1b419ef25b15d3a1ca6953f41afb) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
16:34:31.0362 1508 Bluetooth Device Monitor - ok
16:34:31.0442 1508 Bluetooth Media Service (03a7341e94acd92e0831336d4f3ace92) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
16:34:31.0442 1508 Bluetooth Media Service - ok
16:34:31.0502 1508 Bluetooth OBEX Service (a2ebf384ed105fed7d05c5465500ef2e) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
16:34:31.0512 1508 Bluetooth OBEX Service - ok
16:34:31.0612 1508 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
16:34:31.0622 1508 Bonjour Service - ok
16:34:31.0732 1508 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\windows\system32\DRIVERS\bowser.sys
16:34:31.0732 1508 bowser - ok
16:34:31.0752 1508 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\windows\system32\DRIVERS\BrFiltLo.sys
16:34:31.0762 1508 BrFiltLo - ok
16:34:31.0762 1508 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\windows\system32\DRIVERS\BrFiltUp.sys
16:34:31.0762 1508 BrFiltUp - ok
16:34:31.0792 1508 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\windows\System32\browser.dll
16:34:31.0792 1508 Browser - ok
16:34:31.0822 1508 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\windows\System32\Drivers\Brserid.sys
16:34:31.0832 1508 Brserid - ok
16:34:31.0852 1508 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\windows\System32\Drivers\BrSerWdm.sys
16:34:31.0852 1508 BrSerWdm - ok
16:34:31.0872 1508 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\windows\System32\Drivers\BrUsbMdm.sys
16:34:31.0882 1508 BrUsbMdm - ok
16:34:31.0882 1508 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\windows\System32\Drivers\BrUsbSer.sys
16:34:31.0882 1508 BrUsbSer - ok
16:34:31.0932 1508 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\windows\system32\drivers\BthEnum.sys
16:34:31.0932 1508 BthEnum - ok
16:34:31.0952 1508 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\windows\system32\DRIVERS\bthmodem.sys
16:34:31.0952 1508 BTHMODEM - ok
16:34:31.0982 1508 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\windows\system32\DRIVERS\bthpan.sys
16:34:31.0992 1508 BthPan - ok
16:34:32.0032 1508 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\windows\System32\Drivers\BTHport.sys
16:34:32.0042 1508 BTHPORT - ok
16:34:32.0082 1508 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\windows\system32\bthserv.dll
16:34:32.0082 1508 bthserv - ok
16:34:32.0092 1508 BTHUSB (f188b7394d81010767b6df3178519a37) C:\windows\System32\Drivers\BTHUSB.sys
16:34:32.0102 1508 BTHUSB - ok
16:34:32.0122 1508 btmaux (16c1bac9760c9fa85a30f3fa0fbb1b7a) C:\windows\system32\DRIVERS\btmaux.sys
16:34:32.0122 1508 btmaux - ok
16:34:32.0162 1508 btmhsf (0c468d8da95be16bfdd380bb9de88259) C:\windows\system32\DRIVERS\btmhsf.sys
16:34:32.0162 1508 btmhsf - ok
16:34:32.0202 1508 cdfs (b8bd2bb284668c84865658c77574381a) C:\windows\system32\DRIVERS\cdfs.sys
16:34:32.0202 1508 cdfs - ok
16:34:32.0262 1508 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\windows\system32\DRIVERS\cdrom.sys
16:34:32.0262 1508 cdrom - ok
16:34:32.0312 1508 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\windows\System32\certprop.dll
16:34:32.0312 1508 CertPropSvc - ok
16:34:32.0342 1508 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\windows\system32\DRIVERS\circlass.sys
16:34:32.0352 1508 circlass - ok
16:34:32.0382 1508 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\windows\system32\CLFS.sys
16:34:32.0392 1508 CLFS - ok
16:34:32.0462 1508 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:34:32.0462 1508 clr_optimization_v2.0.50727_32 - ok
16:34:32.0512 1508 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:34:32.0512 1508 clr_optimization_v2.0.50727_64 - ok
16:34:32.0592 1508 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:34:32.0592 1508 clr_optimization_v4.0.30319_32 - ok
16:34:32.0622 1508 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:34:32.0632 1508 clr_optimization_v4.0.30319_64 - ok
16:34:32.0652 1508 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\windows\system32\DRIVERS\CmBatt.sys
16:34:32.0652 1508 CmBatt - ok
16:34:32.0682 1508 cmdide (e19d3f095812725d88f9001985b94edd) C:\windows\system32\drivers\cmdide.sys
16:34:32.0682 1508 cmdide - ok
16:34:32.0753 1508 CNG (c4943b6c962e4b82197542447ad599f4) C:\windows\system32\Drivers\cng.sys
16:34:32.0763 1508 CNG - ok
16:34:32.0793 1508 Compbatt (102de219c3f61415f964c88e9085ad14) C:\windows\system32\DRIVERS\compbatt.sys
16:34:32.0793 1508 Compbatt - ok
16:34:32.0873 1508 CompositeBus (03edb043586cceba243d689bdda370a8) C:\windows\system32\drivers\CompositeBus.sys
16:34:32.0873 1508 CompositeBus - ok
16:34:32.0903 1508 COMSysApp - ok
16:34:32.0923 1508 crcdisk (1c827878a998c18847245fe1f34ee597) C:\windows\system32\DRIVERS\crcdisk.sys
16:34:32.0923 1508 crcdisk - ok
16:34:32.0953 1508 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\windows\system32\cryptsvc.dll
16:34:32.0953 1508 CryptSvc - ok
16:34:33.0023 1508 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\windows\system32\drivers\csc.sys
16:34:33.0033 1508 CSC - ok
16:34:33.0083 1508 CscService (3ab183ab4d2c79dcf459cd2c1266b043) C:\windows\System32\cscsvc.dll
16:34:33.0083 1508 CscService - ok
16:34:33.0133 1508 CtClsFlt (fbe228abeab2be13b9c3a3a112d4d8dc) C:\windows\system32\DRIVERS\CtClsFlt.sys
16:34:33.0133 1508 CtClsFlt - ok
16:34:33.0173 1508 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\windows\system32\rpcss.dll
16:34:33.0183 1508 DcomLaunch - ok
16:34:33.0233 1508 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\windows\System32\defragsvc.dll
16:34:33.0233 1508 defragsvc - ok
16:34:33.0283 1508 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\windows\system32\Drivers\dfsc.sys
16:34:33.0283 1508 DfsC - ok
16:34:33.0353 1508 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\windows\system32\dhcpcore.dll
16:34:33.0353 1508 Dhcp - ok
16:34:33.0373 1508 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\windows\system32\drivers\discache.sys
16:34:33.0373 1508 discache - ok
16:34:33.0403 1508 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\windows\system32\DRIVERS\disk.sys
16:34:33.0403 1508 Disk - ok
16:34:33.0443 1508 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\windows\System32\dnsrslvr.dll
16:34:33.0453 1508 Dnscache - ok
16:34:33.0503 1508 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\windows\System32\dot3svc.dll
16:34:33.0513 1508 dot3svc - ok
16:34:33.0593 1508 DpHost (c43618154fc0c8480f53b04ba7a2f371) C:\Program Files\DigitalPersona\Bin\DpHostW.exe
16:34:33.0593 1508 DpHost - ok
16:34:33.0653 1508 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\windows\system32\dps.dll
16:34:33.0653 1508 DPS - ok
16:34:33.0693 1508 drmkaud (9b19f34400d24df84c858a421c205754) C:\windows\system32\drivers\drmkaud.sys
16:34:33.0693 1508 drmkaud - ok
16:34:33.0783 1508 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\windows\System32\drivers\dxgkrnl.sys
16:34:33.0783 1508 DXGKrnl - ok
16:34:33.0833 1508 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\windows\System32\eapsvc.dll
16:34:33.0833 1508 EapHost - ok
16:34:34.0033 1508 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\windows\system32\DRIVERS\evbda.sys
16:34:34.0073 1508 ebdrv - ok
16:34:34.0183 1508 EFS (c118a82cd78818c29ab228366ebf81c3) C:\windows\System32\lsass.exe
16:34:34.0183 1508 EFS - ok
16:34:34.0283 1508 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\windows\ehome\ehRecvr.exe
16:34:34.0293 1508 ehRecvr - ok
16:34:34.0323 1508 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\windows\ehome\ehsched.exe
16:34:34.0323 1508 ehSched - ok
16:34:34.0383 1508 elxstor (0e5da5369a0fcaea12456dd852545184) C:\windows\system32\DRIVERS\elxstor.sys
16:34:34.0393 1508 elxstor - ok
16:34:34.0423 1508 ErrDev (34a3c54752046e79a126e15c51db409b) C:\windows\system32\drivers\errdev.sys
16:34:34.0423 1508 ErrDev - ok
16:34:34.0493 1508 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\windows\system32\es.dll
16:34:34.0493 1508 EventSystem - ok
16:34:34.0653 1508 EvtEng (8b6c9924b0d333dbf76086b8258a0891) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
16:34:34.0663 1508 EvtEng - ok
16:34:34.0773 1508 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\windows\system32\drivers\exfat.sys
16:34:34.0783 1508 exfat - ok
16:34:34.0803 1508 fastfat (0adc83218b66a6db380c330836f3e36d) C:\windows\system32\drivers\fastfat.sys
16:34:34.0813 1508 fastfat - ok
16:34:34.0913 1508 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\windows\system32\fxssvc.exe
16:34:34.0923 1508 Fax - ok
16:34:34.0933 1508 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\windows\system32\DRIVERS\fdc.sys
16:34:34.0933 1508 fdc - ok
16:34:34.0973 1508 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\windows\system32\fdPHost.dll
16:34:34.0973 1508 fdPHost - ok
16:34:35.0013 1508 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\windows\system32\fdrespub.dll
16:34:35.0013 1508 FDResPub - ok
16:34:35.0023 1508 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\windows\system32\drivers\fileinfo.sys
16:34:35.0023 1508 FileInfo - ok
16:34:35.0033 1508 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\windows\system32\drivers\filetrace.sys
16:34:35.0033 1508 Filetrace - ok
16:34:35.0043 1508 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\windows\system32\DRIVERS\flpydisk.sys
16:34:35.0043 1508 flpydisk - ok
16:34:35.0083 1508 FltMgr (da6b67270fd9db3697b20fce94950741) C:\windows\system32\drivers\fltmgr.sys
16:34:35.0083 1508 FltMgr - ok
16:34:35.0183 1508 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\windows\system32\FntCache.dll
16:34:35.0183 1508 FontCache - ok
16:34:35.0253 1508 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:34:35.0253 1508 FontCache3.0.0.0 - ok
16:34:35.0293 1508 FsDepends (d43703496149971890703b4b1b723eac) C:\windows\system32\drivers\FsDepends.sys
16:34:35.0293 1508 FsDepends - ok
16:34:35.0323 1508 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\windows\system32\drivers\Fs_Rec.sys
16:34:35.0323 1508 Fs_Rec - ok
16:34:35.0383 1508 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\windows\system32\DRIVERS\fvevol.sys
16:34:35.0393 1508 fvevol - ok
16:34:35.0423 1508 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\windows\system32\DRIVERS\gagp30kx.sys
16:34:35.0433 1508 gagp30kx - ok
16:34:35.0493 1508 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\windows\system32\DRIVERS\GEARAspiWDM.sys
16:34:35.0493 1508 GEARAspiWDM - ok
16:34:35.0543 1508 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\windows\System32\gpsvc.dll
16:34:35.0553 1508 gpsvc - ok
16:34:35.0553 1508 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\windows\system32\drivers\hcw85cir.sys
16:34:35.0553 1508 hcw85cir - ok
16:34:35.0633 1508 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\windows\system32\drivers\HdAudio.sys
16:34:35.0643 1508 HdAudAddService - ok
16:34:35.0673 1508 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\windows\system32\drivers\HDAudBus.sys
16:34:35.0673 1508 HDAudBus - ok
16:34:35.0703 1508 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\windows\system32\DRIVERS\HidBatt.sys
16:34:35.0703 1508 HidBatt - ok
16:34:35.0713 1508 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\windows\system32\DRIVERS\hidbth.sys
16:34:35.0713 1508 HidBth - ok
16:34:35.0723 1508 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\windows\system32\DRIVERS\hidir.sys
16:34:35.0723 1508 HidIr - ok
16:34:35.0744 1508 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\windows\system32\hidserv.dll
16:34:35.0744 1508 hidserv - ok
16:34:35.0754 1508 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\windows\system32\DRIVERS\hidusb.sys
16:34:35.0754 1508 HidUsb - ok
16:34:35.0784 1508 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\windows\system32\kmsvc.dll
16:34:35.0784 1508 hkmsvc - ok
16:34:35.0844 1508 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\windows\system32\ListSvc.dll
16:34:35.0854 1508 HomeGroupListener - ok
16:34:35.0914 1508 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\windows\system32\provsvc.dll
16:34:35.0914 1508 HomeGroupProvider - ok
16:34:35.0964 1508 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\windows\system32\drivers\HpSAMD.sys
16:34:35.0964 1508 HpSAMD - ok
16:34:36.0034 1508 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\windows\system32\drivers\HTTP.sys
16:34:36.0044 1508 HTTP - ok
16:34:36.0074 1508 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\windows\system32\drivers\hwpolicy.sys
16:34:36.0074 1508 hwpolicy - ok
16:34:36.0134 1508 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\windows\system32\drivers\i8042prt.sys
16:34:36.0134 1508 i8042prt - ok
16:34:36.0174 1508 iaStor (d7921d5a870b11cc1adab198a519d50a) C:\windows\system32\DRIVERS\iaStor.sys
16:34:36.0174 1508 iaStor - ok
16:34:36.0264 1508 IAStorDataMgrSvc (8fff9083252c16fe3960173722605e9e) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
16:34:36.0264 1508 IAStorDataMgrSvc - ok
16:34:36.0334 1508 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\windows\system32\drivers\iaStorV.sys
16:34:36.0344 1508 iaStorV - ok
16:34:36.0384 1508 iBtFltCoex (fc85972037815fa7b413e790b426acb2) C:\windows\system32\DRIVERS\iBtFltCoex.sys
16:34:36.0384 1508 iBtFltCoex - ok
16:34:36.0474 1508 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:34:36.0484 1508 idsvc - ok
16:34:37.0174 1508 igfx (78527e6a4d78b1153925914c55872beb) C:\windows\system32\DRIVERS\igdkmd64.sys
16:34:37.0424 1508 igfx - ok
16:34:37.0524 1508 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\windows\system32\DRIVERS\iirsp.sys
16:34:37.0524 1508 iirsp - ok
16:34:37.0624 1508 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\windows\System32\ikeext.dll
16:34:37.0634 1508 IKEEXT - ok
16:34:37.0684 1508 IntcDAud (fc727061c0f47c8059e88e05d5c8e381) C:\windows\system32\DRIVERS\IntcDAud.sys
16:34:37.0684 1508 IntcDAud - ok
16:34:37.0714 1508 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\windows\system32\drivers\intelide.sys
16:34:37.0724 1508 intelide - ok
16:34:38.0235 1508 intelkmd (78527e6a4d78b1153925914c55872beb) C:\windows\system32\DRIVERS\igdpmd64.sys
16:34:38.0445 1508 intelkmd - ok
16:34:38.0555 1508 intelppm (ada036632c664caa754079041cf1f8c1) C:\windows\system32\DRIVERS\intelppm.sys
16:34:38.0555 1508 intelppm - ok
16:34:38.0585 1508 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\windows\system32\ipbusenum.dll
16:34:38.0585 1508 IPBusEnum - ok
16:34:38.0645 1508 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\windows\system32\DRIVERS\ipfltdrv.sys
16:34:38.0655 1508 IpFilterDriver - ok
16:34:38.0685 1508 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\windows\system32\drivers\IPMIDrv.sys
16:34:38.0685 1508 IPMIDRV - ok
16:34:38.0715 1508 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\windows\system32\drivers\ipnat.sys
16:34:38.0715 1508 IPNAT - ok
16:34:38.0835 1508 iPod Service (46d249f9db7844cc01050a9345f0f61b) C:\Program Files\iPod\bin\iPodService.exe
16:34:38.0855 1508 iPod Service - ok
16:34:38.0895 1508 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\windows\system32\drivers\irenum.sys
16:34:38.0905 1508 IRENUM - ok
16:34:38.0935 1508 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\windows\system32\drivers\isapnp.sys
16:34:38.0935 1508 isapnp - ok
16:34:38.0965 1508 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\windows\system32\drivers\msiscsi.sys
16:34:38.0965 1508 iScsiPrt - ok
16:34:38.0985 1508 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\windows\system32\DRIVERS\kbdclass.sys
16:34:38.0985 1508 kbdclass - ok
16:34:39.0025 1508 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\windows\system32\DRIVERS\kbdhid.sys
16:34:39.0025 1508 kbdhid - ok
16:34:39.0075 1508 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
16:34:39.0075 1508 KeyIso - ok
16:34:39.0095 1508 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\windows\system32\Drivers\ksecdd.sys
16:34:39.0105 1508 KSecDD - ok
16:34:39.0135 1508 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\windows\system32\Drivers\ksecpkg.sys
16:34:39.0135 1508 KSecPkg - ok
16:34:39.0155 1508 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\windows\system32\drivers\ksthunk.sys
16:34:39.0155 1508 ksthunk - ok
16:34:39.0205 1508 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\windows\system32\msdtckrm.dll
16:34:39.0205 1508 KtmRm - ok
16:34:39.0245 1508 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\windows\system32\srvsvc.dll
16:34:39.0245 1508 LanmanServer - ok
16:34:39.0295 1508 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\windows\System32\wkssvc.dll
16:34:39.0295 1508 LanmanWorkstation - ok
16:34:39.0335 1508 lltdio (1538831cf8ad2979a04c423779465827) C:\windows\system32\DRIVERS\lltdio.sys
16:34:39.0335 1508 lltdio - ok
16:34:39.0375 1508 lltdsvc (c1185803384ab3feed115f79f109427f) C:\windows\System32\lltdsvc.dll
16:34:39.0385 1508 lltdsvc - ok
16:34:39.0395 1508 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\windows\System32\lmhsvc.dll
16:34:39.0405 1508 lmhosts - ok
16:34:39.0495 1508 LMS (0803906d607a9b83184447b75b60ecc2) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
16:34:39.0495 1508 LMS - ok
16:34:39.0555 1508 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\windows\system32\DRIVERS\lsi_fc.sys
16:34:39.0555 1508 LSI_FC - ok
16:34:39.0595 1508 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\windows\system32\DRIVERS\lsi_sas.sys
16:34:39.0595 1508 LSI_SAS - ok
16:34:39.0615 1508 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\windows\system32\DRIVERS\lsi_sas2.sys
16:34:39.0615 1508 LSI_SAS2 - ok
16:34:39.0635 1508 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\windows\system32\DRIVERS\lsi_scsi.sys
16:34:39.0635 1508 LSI_SCSI - ok
16:34:39.0665 1508 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\windows\system32\drivers\luafv.sys
16:34:39.0665 1508 luafv - ok
16:34:39.0705 1508 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\windows\system32\drivers\mbam.sys
16:34:39.0705 1508 MBAMProtector - ok
16:34:39.0785 1508 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
16:34:39.0805 1508 MBAMService - ok
16:34:39.0835 1508 McComponentHostService - ok
16:34:39.0885 1508 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\windows\system32\Mcx2Svc.dll
16:34:39.0885 1508 Mcx2Svc - ok
16:34:39.0915 1508 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\windows\system32\DRIVERS\megasas.sys
16:34:39.0915 1508 megasas - ok
16:34:39.0945 1508 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\windows\system32\DRIVERS\MegaSR.sys
16:34:39.0945 1508 MegaSR - ok
16:34:39.0975 1508 MEIx64 (1c6e73fc46b509eff9d0086aa37132df) C:\windows\system32\DRIVERS\HECIx64.sys
16:34:39.0975 1508 MEIx64 - ok
16:34:40.0065 1508 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
16:34:40.0065 1508 Microsoft Office Groove Audit Service - ok
16:34:40.0105 1508 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\windows\system32\mmcss.dll
16:34:40.0105 1508 MMCSS - ok
16:34:40.0125 1508 Modem (800ba92f7010378b09f9ed9270f07137) C:\windows\system32\drivers\modem.sys
16:34:40.0125 1508 Modem - ok
16:34:40.0145 1508 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\windows\system32\DRIVERS\monitor.sys
16:34:40.0145 1508 monitor - ok
16:34:40.0195 1508 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\windows\system32\DRIVERS\mouclass.sys
16:34:40.0195 1508 mouclass - ok
16:34:40.0225 1508 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\windows\system32\DRIVERS\mouhid.sys
16:34:40.0225 1508 mouhid - ok
16:34:40.0265 1508 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\windows\system32\drivers\mountmgr.sys
16:34:40.0265 1508 mountmgr - ok
16:34:40.0365 1508 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:34:40.0365 1508 MozillaMaintenance - ok
16:34:40.0425 1508 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\windows\system32\DRIVERS\MpFilter.sys
16:34:40.0425 1508 MpFilter - ok
16:34:40.0465 1508 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\windows\system32\drivers\mpio.sys
16:34:40.0475 1508 mpio - ok
16:34:40.0505 1508 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\windows\system32\drivers\mpsdrv.sys
16:34:40.0505 1508 mpsdrv - ok
16:34:40.0545 1508 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\windows\system32\drivers\mrxdav.sys
16:34:40.0545 1508 MRxDAV - ok
16:34:40.0585 1508 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\windows\system32\DRIVERS\mrxsmb.sys
16:34:40.0595 1508 mrxsmb - ok
16:34:40.0635 1508 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\windows\system32\DRIVERS\mrxsmb10.sys
16:34:40.0635 1508 mrxsmb10 - ok
16:34:40.0655 1508 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\windows\system32\DRIVERS\mrxsmb20.sys
16:34:40.0655 1508 mrxsmb20 - ok
16:34:40.0695 1508 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\windows\system32\drivers\msahci.sys
16:34:40.0695 1508 msahci - ok
16:34:40.0705 1508 msdsm (db801a638d011b9633829eb6f663c900) C:\windows\system32\drivers\msdsm.sys
16:34:40.0705 1508 msdsm - ok
16:34:40.0745 1508 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\windows\System32\msdtc.exe
16:34:40.0745 1508 MSDTC - ok
16:34:40.0796 1508 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\windows\system32\drivers\Msfs.sys
16:34:40.0796 1508 Msfs - ok
16:34:40.0836 1508 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\windows\System32\drivers\mshidkmdf.sys
16:34:40.0836 1508 mshidkmdf - ok
16:34:40.0856 1508 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\windows\system32\drivers\msisadrv.sys
16:34:40.0856 1508 msisadrv - ok
16:34:40.0916 1508 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\windows\system32\iscsiexe.dll
16:34:40.0926 1508 MSiSCSI - ok
16:34:40.0936 1508 msiserver - ok
16:34:40.0966 1508 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\windows\system32\drivers\MSKSSRV.sys
16:34:40.0966 1508 MSKSSRV - ok
16:34:40.0996 1508 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\windows\system32\drivers\MSPCLOCK.sys
16:34:40.0996 1508 MSPCLOCK - ok
16:34:41.0026 1508 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\windows\system32\drivers\MSPQM.sys
16:34:41.0036 1508 MSPQM - ok
16:34:41.0086 1508 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\windows\system32\drivers\MsRPC.sys
16:34:41.0086 1508 MsRPC - ok
16:34:41.0126 1508 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\windows\system32\drivers\mssmbios.sys
16:34:41.0126 1508 mssmbios - ok
16:34:41.0156 1508 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\windows\system32\drivers\MSTEE.sys
16:34:41.0166 1508 MSTEE - ok
16:34:41.0166 1508 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\windows\system32\DRIVERS\MTConfig.sys
16:34:41.0166 1508 MTConfig - ok
16:34:41.0186 1508 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\windows\system32\Drivers\mup.sys
16:34:41.0186 1508 Mup - ok
16:34:41.0286 1508 MyWiFiDHCPDNS (6ed8935257672f4cd04a88a0f3de093d) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
16:34:41.0296 1508 MyWiFiDHCPDNS - ok
16:34:41.0326 1508 napagent (582ac6d9873e31dfa28a4547270862dd) C:\windows\system32\qagentRT.dll
16:34:41.0336 1508 napagent - ok
16:34:41.0366 1508 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\windows\system32\DRIVERS\nwifi.sys
16:34:41.0376 1508 NativeWifiP - ok
16:34:41.0446 1508 NDIS (c38b8ae57f78915905064a9a24dc1586) C:\windows\system32\drivers\ndis.sys
16:34:41.0456 1508 NDIS - ok
16:34:41.0486 1508 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\windows\system32\DRIVERS\ndiscap.sys
16:34:41.0496 1508 NdisCap - ok
16:34:41.0526 1508 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\windows\system32\DRIVERS\ndistapi.sys
16:34:41.0526 1508 NdisTapi - ok
16:34:41.0566 1508 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\windows\system32\DRIVERS\ndisuio.sys
16:34:41.0566 1508 Ndisuio - ok
16:34:41.0606 1508 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\windows\system32\DRIVERS\ndiswan.sys
16:34:41.0606 1508 NdisWan - ok
16:34:41.0656 1508 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\windows\system32\drivers\NDProxy.sys
16:34:41.0656 1508 NDProxy - ok
16:34:41.0666 1508 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\windows\system32\DRIVERS\netbios.sys
16:34:41.0666 1508 NetBIOS - ok
16:34:41.0706 1508 NetBT (09594d1089c523423b32a4229263f068) C:\windows\system32\DRIVERS\netbt.sys
16:34:41.0706 1508 NetBT - ok
16:34:41.0746 1508 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
16:34:41.0746 1508 Netlogon - ok
16:34:41.0786 1508 Netman (847d3ae376c0817161a14a82c8922a9e) C:\windows\System32\netman.dll
16:34:41.0796 1508 Netman - ok
16:34:41.0846 1508 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\windows\System32\netprofm.dll
16:34:41.0846 1508 netprofm - ok
16:34:41.0916 1508 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:34:41.0926 1508 NetTcpPortSharing - ok
16:34:42.0326 1508 NETwNs64 (5d262402b0634c998f8cbcead7dd8676) C:\windows\system32\DRIVERS\NETwNs64.sys
16:34:42.0436 1508 NETwNs64 - ok
16:34:42.0556 1508 nfrd960 (77889813be4d166cdab78ddba990da92) C:\windows\system32\DRIVERS\nfrd960.sys
16:34:42.0556 1508 nfrd960 - ok
16:34:42.0636 1508 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\windows\system32\DRIVERS\NisDrvWFP.sys
16:34:42.0636 1508 NisDrv - ok
16:34:42.0736 1508 NisSrv (10a43829a9e606af3eef25a1c1665923) c:\Program Files\Microsoft Security Client\NisSrv.exe
16:34:42.0746 1508 NisSrv - ok
16:34:42.0826 1508 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\windows\System32\nlasvc.dll
16:34:42.0826 1508 NlaSvc - ok
16:34:42.0846 1508 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\windows\system32\drivers\Npfs.sys
16:34:42.0846 1508 Npfs - ok
16:34:42.0876 1508 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\windows\system32\nsisvc.dll
16:34:42.0876 1508 nsi - ok
16:34:42.0876 1508 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\windows\system32\drivers\nsiproxy.sys
16:34:42.0886 1508 nsiproxy - ok
16:34:42.0996 1508 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\windows\system32\drivers\Ntfs.sys
16:34:43.0006 1508 Ntfs - ok
16:34:43.0096 1508 Null (9899284589f75fa8724ff3d16aed75c1) C:\windows\system32\drivers\Null.sys
16:34:43.0096 1508 Null - ok
16:34:43.0136 1508 nusb3hub (158ad24745bd85ba9be3c51c38f48c32) C:\windows\system32\DRIVERS\nusb3hub.sys
16:34:43.0136 1508 nusb3hub - ok
16:34:43.0176 1508 nusb3xhc (d40a13b2c0891e218f9523b376955db6) C:\windows\system32\DRIVERS\nusb3xhc.sys
16:34:43.0176 1508 nusb3xhc - ok
16:34:43.0236 1508 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\windows\system32\drivers\nvraid.sys
16:34:43.0236 1508 nvraid - ok
16:34:43.0276 1508 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\windows\system32\drivers\nvstor.sys
16:34:43.0276 1508 nvstor - ok
16:34:43.0326 1508 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\windows\system32\drivers\nv_agp.sys
16:34:43.0326 1508 nv_agp - ok
16:34:43.0446 1508 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:34:43.0456 1508 odserv - ok
16:34:43.0486 1508 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\windows\system32\drivers\ohci1394.sys
16:34:43.0506 1508 ohci1394 - ok
16:34:43.0536 1508 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:34:43.0546 1508 ose - ok
16:34:43.0586 1508 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\windows\system32\pnrpsvc.dll
16:34:43.0586 1508 p2pimsvc - ok
16:34:43.0606 1508 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\windows\system32\p2psvc.dll
16:34:43.0606 1508 p2psvc - ok
16:34:43.0636 1508 Parport (0086431c29c35be1dbc43f52cc273887) C:\windows\system32\DRIVERS\parport.sys
16:34:43.0646 1508 Parport - ok
16:34:43.0676 1508 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\windows\system32\drivers\partmgr.sys
16:34:43.0686 1508 partmgr - ok
16:34:43.0706 1508 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\windows\System32\pcasvc.dll
16:34:43.0706 1508 PcaSvc - ok
16:34:43.0787 1508 PcdrNdisuio - ok
16:34:43.0887 1508 PCDSRVC{1E208CE0-FB7451FF-06020101}_0 (7317a0b550f7ac0223b7070897670476) c:\program files\dell support center\pcdsrvc_x64.pkms
16:34:43.0927 1508 PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - ok
16:34:43.0987 1508 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\windows\system32\drivers\pci.sys
16:34:43.0997 1508 pci - ok
16:34:44.0017 1508 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\windows\system32\drivers\pciide.sys
16:34:44.0017 1508 pciide - ok
16:34:44.0047 1508 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\windows\system32\DRIVERS\pcmcia.sys
16:34:44.0047 1508 pcmcia - ok
16:34:44.0067 1508 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\windows\system32\drivers\pcw.sys
16:34:44.0067 1508 pcw - ok
16:34:44.0097 1508 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\windows\system32\drivers\peauth.sys
16:34:44.0097 1508 PEAUTH - ok
16:34:44.0207 1508 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\windows\system32\peerdistsvc.dll
16:34:44.0237 1508 PeerDistSvc - ok
16:34:44.0297 1508 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\windows\SysWow64\perfhost.exe
16:34:44.0297 1508 PerfHost - ok
16:34:44.0437 1508 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\windows\system32\pla.dll
16:34:44.0447 1508 pla - ok
16:34:44.0527 1508 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\windows\system32\umpnpmgr.dll
16:34:44.0537 1508 PlugPlay - ok
16:34:44.0577 1508 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\windows\system32\pnrpauto.dll
16:34:44.0577 1508 PNRPAutoReg - ok
16:34:44.0617 1508 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\windows\system32\pnrpsvc.dll
16:34:44.0617 1508 PNRPsvc - ok
16:34:44.0647 1508 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\windows\System32\ipsecsvc.dll
16:34:44.0647 1508 PolicyAgent - ok
16:34:44.0697 1508 Power (6ba9d927dded70bd1a9caded45f8b184) C:\windows\system32\umpo.dll
16:34:44.0707 1508 Power - ok
16:34:44.0777 1508 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\windows\system32\DRIVERS\raspptp.sys
16:34:44.0777 1508 PptpMiniport - ok
16:34:44.0807 1508 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\windows\system32\DRIVERS\processr.sys
16:34:44.0807 1508 Processor - ok
16:34:44.0867 1508 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\windows\system32\profsvc.dll
16:34:44.0877 1508 ProfSvc - ok
16:34:44.0917 1508 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
16:34:44.0917 1508 ProtectedStorage - ok
16:34:44.0977 1508 Psched (0557cf5a2556bd58e26384169d72438d) C:\windows\system32\DRIVERS\pacer.sys
16:34:44.0977 1508 Psched - ok
16:34:45.0037 1508 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\windows\system32\DRIVERS\ql2300.sys
16:34:45.0047 1508 ql2300 - ok
16:34:45.0167 1508 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\windows\system32\DRIVERS\ql40xx.sys
16:34:45.0177 1508 ql40xx - ok
16:34:45.0217 1508 QWAVE (906191634e99aea92c4816150bda3732) C:\windows\system32\qwave.dll
16:34:45.0217 1508 QWAVE - ok
16:34:45.0227 1508 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\windows\system32\drivers\qwavedrv.sys
16:34:45.0227 1508 QWAVEdrv - ok
16:34:45.0237 1508 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\windows\system32\DRIVERS\rasacd.sys
16:34:45.0237 1508 RasAcd - ok
16:34:45.0277 1508 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\windows\system32\DRIVERS\AgileVpn.sys
16:34:45.0277 1508 RasAgileVpn - ok
16:34:45.0307 1508 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\windows\System32\rasauto.dll
16:34:45.0317 1508 RasAuto - ok
16:34:45.0347 1508 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\windows\system32\DRIVERS\rasl2tp.sys
16:34:45.0347 1508 Rasl2tp - ok
16:34:45.0427 1508 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\windows\System32\rasmans.dll
16:34:45.0437 1508 RasMan - ok
16:34:45.0447 1508 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\windows\system32\DRIVERS\raspppoe.sys
16:34:45.0447 1508 RasPppoe - ok
16:34:45.0457 1508 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\windows\system32\DRIVERS\rassstp.sys
16:34:45.0457 1508 RasSstp - ok
16:34:45.0497 1508 rdbss (77f665941019a1594d887a74f301fa2f) C:\windows\system32\DRIVERS\rdbss.sys
16:34:45.0497 1508 rdbss - ok
16:34:45.0507 1508 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\windows\system32\DRIVERS\rdpbus.sys
16:34:45.0507 1508 rdpbus - ok
16:34:45.0517 1508 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\windows\system32\DRIVERS\RDPCDD.sys
16:34:45.0517 1508 RDPCDD - ok
16:34:45.0557 1508 RDPDR (1b6163c503398b23ff8b939c67747683) C:\windows\system32\drivers\rdpdr.sys
16:34:45.0567 1508 RDPDR - ok
16:34:45.0597 1508 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\windows\system32\drivers\rdpencdd.sys
16:34:45.0597 1508 RDPENCDD - ok
16:34:45.0607 1508 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\windows\system32\drivers\rdprefmp.sys
16:34:45.0607 1508 RDPREFMP - ok
16:34:45.0657 1508 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\windows\system32\drivers\RDPWD.sys
16:34:45.0657 1508 RDPWD - ok
16:34:45.0717 1508 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\windows\system32\drivers\rdyboost.sys
16:34:45.0717 1508 rdyboost - ok
16:34:45.0857 1508 RegSrvc (189c5a8d2098e0aa14fd157a954b34fc) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
16:34:45.0877 1508 RegSrvc - ok
16:34:45.0927 1508 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\windows\System32\mprdim.dll
16:34:45.0927 1508 RemoteAccess - ok
16:34:45.0957 1508 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\windows\system32\regsvc.dll
16:34:45.0957 1508 RemoteRegistry - ok
16:34:46.0027 1508 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\windows\system32\DRIVERS\rfcomm.sys
16:34:46.0027 1508 RFCOMM - ok
16:34:46.0057 1508 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\windows\System32\RpcEpMap.dll
16:34:46.0057 1508 RpcEptMapper - ok
16:34:46.0087 1508 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\windows\system32\locator.exe
16:34:46.0087 1508 RpcLocator - ok
16:34:46.0157 1508 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\windows\system32\rpcss.dll
16:34:46.0157 1508 RpcSs - ok
16:34:46.0187 1508 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\windows\system32\DRIVERS\rspndr.sys
16:34:46.0187 1508 rspndr - ok
16:34:46.0237 1508 RSUSBSTOR (be29b0a3ac1e8bd02ffab8cee86badfa) C:\windows\system32\Drivers\RtsUStor.sys
16:34:46.0237 1508 RSUSBSTOR - ok
16:34:46.0297 1508 RTL8167 (2777226ee8bf50b059d7a7c90177e99c) C:\windows\system32\DRIVERS\Rt64win7.sys
16:34:46.0297 1508 RTL8167 - ok
16:34:46.0347 1508 s3cap (e60c0a09f997826c7627b244195ab581) C:\windows\system32\drivers\vms3cap.sys
16:34:46.0347 1508 s3cap - ok
16:34:46.0377 1508 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
16:34:46.0387 1508 SamSs - ok
16:34:46.0457 1508 SASDIFSV (3289766038db2cb14d07dc84392138d5) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
16:34:46.0457 1508 SASDIFSV - ok
16:34:46.0477 1508 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
16:34:46.0477 1508 SASKUTIL - ok
16:34:46.0507 1508 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\windows\system32\drivers\sbp2port.sys
16:34:46.0507 1508 sbp2port - ok
16:34:46.0547 1508 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\windows\System32\SCardSvr.dll
16:34:46.0547 1508 SCardSvr - ok
16:34:46.0587 1508 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\windows\system32\DRIVERS\scfilter.sys
16:34:46.0587 1508 scfilter - ok
16:34:46.0697 1508 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\windows\system32\schedsvc.dll
16:34:46.0707 1508 Schedule - ok
16:34:46.0737 1508 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\windows\System32\certprop.dll
16:34:46.0737 1508 SCPolicySvc - ok
16:34:46.0787 1508 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\windows\System32\SDRSVC.dll
16:34:46.0797 1508 SDRSVC - ok
16:34:46.0857 1508 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\windows\system32\drivers\secdrv.sys
16:34:46.0857 1508 secdrv - ok
16:34:46.0877 1508 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\windows\system32\seclogon.dll
16:34:46.0877 1508 seclogon - ok
16:34:46.0907 1508 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\windows\System32\sens.dll
16:34:46.0907 1508 SENS - ok
16:34:46.0927 1508 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\windows\system32\sensrsvc.dll
16:34:46.0927 1508 SensrSvc - ok
16:34:46.0947 1508 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\windows\system32\DRIVERS\serenum.sys
16:34:46.0947 1508 Serenum - ok
16:34:46.0977 1508 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\windows\system32\DRIVERS\serial.sys
16:34:46.0977 1508 Serial - ok
16:34:47.0017 1508 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\windows\system32\DRIVERS\sermouse.sys
16:34:47.0017 1508 sermouse - ok
16:34:47.0057 1508 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\windows\system32\sessenv.dll
16:34:47.0057 1508 SessionEnv - ok
16:34:47.0097 1508 sffdisk (a554811bcd09279536440c964ae35bbf) C:\windows\system32\drivers\sffdisk.sys
16:34:47.0097 1508 sffdisk - ok
16:34:47.0107 1508 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\windows\system32\drivers\sffp_mmc.sys
16:34:47.0107 1508 sffp_mmc - ok
16:34:47.0127 1508 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\windows\system32\drivers\sffp_sd.sys
16:34:47.0127 1508 sffp_sd - ok
16:34:47.0147 1508 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\windows\system32\DRIVERS\sfloppy.sys
16:34:47.0147 1508 sfloppy - ok
16:34:47.0197 1508 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\windows\System32\shsvcs.dll
16:34:47.0207 1508 ShellHWDetection - ok
16:34:47.0237 1508 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\windows\system32\DRIVERS\SiSRaid2.sys
16:34:47.0237 1508 SiSRaid2 - ok
16:34:47.0237 1508 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\windows\system32\DRIVERS\sisraid4.sys
16:34:47.0237 1508 SiSRaid4 - ok
16:34:47.0267 1508 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\windows\system32\DRIVERS\smb.sys
16:34:47.0267 1508 Smb - ok
16:34:47.0307 1508 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\windows\System32\snmptrap.exe
16:34:47.0307 1508 SNMPTRAP - ok
16:34:47.0317 1508 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\windows\system32\drivers\spldr.sys
16:34:47.0317 1508 spldr - ok
16:34:47.0387 1508 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\windows\System32\spoolsv.exe
16:34:47.0397 1508 Spooler - ok
16:34:47.0587 1508 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\windows\system32\sppsvc.exe
16:34:47.0647 1508 sppsvc - ok
16:34:47.0757 1508 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\windows\system32\sppuinotify.dll
16:34:47.0757 1508 sppuinotify - ok
16:34:47.0817 1508 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\windows\system32\DRIVERS\srv.sys
16:34:47.0817 1508 srv - ok
16:34:47.0857 1508 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\windows\system32\DRIVERS\srv2.sys
16:34:47.0867 1508 srv2 - ok
16:34:47.0887 1508 srvnet (27e461f0be5bff5fc737328f749538c3) C:\windows\system32\DRIVERS\srvnet.sys
16:34:47.0897 1508 srvnet - ok
16:34:47.0917 1508 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\windows\System32\ssdpsrv.dll
16:34:47.0927 1508 SSDPSRV - ok
16:34:47.0937 1508 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\windows\system32\sstpsvc.dll
16:34:47.0947 1508 SstpSvc - ok
16:34:48.0027 1508 STacSV (b2d8b364a831427a5741f6c408fa8ae3) C:\Program Files\IDT\WDM\STacSV64.exe
16:34:48.0037 1508 STacSV - ok
16:34:48.0077 1508 stdcfltn (92e7f6666633d2dd91d527503daa7be0) C:\windows\system32\DRIVERS\stdcfltn.sys
16:34:48.0087 1508 stdcfltn - ok
16:34:48.0107 1508 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\windows\system32\DRIVERS\stexstor.sys
16:34:48.0107 1508 stexstor - ok
16:34:48.0177 1508 STHDA (ef5acde92ba3f691bbfef781cb063501) C:\windows\system32\DRIVERS\stwrt64.sys
16:34:48.0187 1508 STHDA - ok
16:34:48.0257 1508 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\windows\System32\wiaservc.dll
16:34:48.0257 1508 stisvc - ok
16:34:48.0297 1508 storflt (7785dc213270d2fc066538daf94087e7) C:\windows\system32\drivers\vmstorfl.sys
16:34:48.0297 1508 storflt - ok
16:34:48.0317 1508 StorSvc (c40841817ef57d491f22eb103da587cc) C:\windows\system32\storsvc.dll
16:34:48.0327 1508 StorSvc - ok
16:34:48.0367 1508 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\windows\system32\drivers\storvsc.sys
16:34:48.0367 1508 storvsc - ok
16:34:48.0437 1508 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\windows\system32\drivers\swenum.sys
16:34:48.0437 1508 swenum - ok
16:34:48.0487 1508 swprv (e08e46fdd841b7184194011ca1955a0b) C:\windows\System32\swprv.dll
16:34:48.0497 1508 swprv - ok
16:34:48.0607 1508 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\windows\system32\sysmain.dll
16:34:48.0637 1508 SysMain - ok
16:34:48.0737 1508 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\windows\System32\TabSvc.dll
16:34:48.0747 1508 TabletInputService - ok
16:34:48.0807 1508 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\windows\System32\tapisrv.dll
16:34:48.0807 1508 TapiSrv - ok
16:34:48.0837 1508 TBS (1be03ac720f4d302ea01d40f588162f6) C:\windows\System32\tbssvc.dll
16:34:48.0837 1508 TBS - ok
16:34:48.0967 1508 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\windows\system32\drivers\tcpip.sys
16:34:48.0987 1508 Tcpip - ok
16:34:49.0147 1508 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\windows\system32\DRIVERS\tcpip.sys
16:34:49.0157 1508 TCPIP6 - ok
16:34:49.0217 1508 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\windows\system32\drivers\tcpipreg.sys
16:34:49.0217 1508 tcpipreg - ok
16:34:49.0237 1508 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\windows\system32\drivers\tdpipe.sys
16:34:49.0237 1508 TDPIPE - ok
16:34:49.0277 1508 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\windows\system32\drivers\tdtcp.sys
16:34:49.0277 1508 TDTCP - ok
16:34:49.0317 1508 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\windows\system32\DRIVERS\tdx.sys
16:34:49.0317 1508 tdx - ok
16:34:49.0357 1508 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\windows\system32\drivers\termdd.sys
16:34:49.0367 1508 TermDD - ok
16:34:49.0427 1508 TermService (2e648163254233755035b46dd7b89123) C:\windows\System32\termsrv.dll
16:34:49.0447 1508 TermService - ok
16:34:49.0477 1508 Themes (f0344071948d1a1fa732231785a0664c) C:\windows\system32\themeservice.dll
16:34:49.0477 1508 Themes - ok
16:34:49.0497 1508 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\windows\system32\mmcss.dll
16:34:49.0507 1508 THREADORDER - ok
16:34:49.0527 1508 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\windows\System32\trkwks.dll
16:34:49.0527 1508 TrkWks - ok
16:34:49.0597 1508 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\windows\servicing\TrustedInstaller.exe
16:34:49.0607 1508 TrustedInstaller - ok
16:34:49.0647 1508 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\windows\system32\DRIVERS\tssecsrv.sys
16:34:49.0647 1508 tssecsrv - ok
16:34:49.0697 1508 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\windows\system32\drivers\tsusbflt.sys
16:34:49.0697 1508 TsUsbFlt - ok
16:34:49.0747 1508 tunnel (3566a8daafa27af944f5d705eaa64894) C:\windows\system32\DRIVERS\tunnel.sys
16:34:49.0747 1508 tunnel - ok
16:34:49.0788 1508 TurboB (fd24f98d2898be093fe926604be7db99) C:\windows\system32\DRIVERS\TurboB.sys
16:34:49.0788 1508 TurboB - ok
16:34:49.0838 1508 TurboBoost (600b406a04d90f577fea8a88d7379f08) C:\Program Files\Intel\TurboBoost\TurboBoost.exe
16:34:49.0848 1508 TurboBoost - ok
16:34:49.0878 1508 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\windows\system32\DRIVERS\uagp35.sys
16:34:49.0878 1508 uagp35 - ok
16:34:49.0938 1508 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\windows\system32\DRIVERS\udfs.sys
16:34:49.0938 1508 udfs - ok
16:34:49.0968 1508 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\windows\system32\UI0Detect.exe
16:34:49.0968 1508 UI0Detect - ok
16:34:50.0008 1508 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\windows\system32\drivers\uliagpkx.sys
16:34:50.0008 1508 uliagpkx - ok
16:34:50.0058 1508 umbus (dc54a574663a895c8763af0fa1ff7561) C:\windows\system32\drivers\umbus.sys
16:34:50.0058 1508 umbus - ok
16:34:50.0068 1508 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\windows\system32\DRIVERS\umpass.sys
16:34:50.0068 1508 UmPass - ok
16:34:50.0108 1508 UmRdpService (a293dcd756d04d8492a750d03b9a297c) C:\windows\System32\umrdp.dll
16:34:50.0118 1508 UmRdpService - ok
16:34:50.0318 1508 UNS (eb79c6c91a99930015ef29ae7fa802d1) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
16:34:50.0358 1508 UNS - ok
16:34:50.0468 1508 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\windows\System32\upnphost.dll
16:34:50.0468 1508 upnphost - ok
16:34:50.0538 1508 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\windows\system32\Drivers\usbaapl64.sys
16:34:50.0538 1508 USBAAPL64 - ok
16:34:50.0588 1508 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\windows\system32\drivers\usbaudio.sys
16:34:50.0588 1508 usbaudio - ok
16:34:50.0638 1508 usbccgp (481dff26b4dca8f4cbac1f7dce1d6829) C:\windows\system32\DRIVERS\usbccgp.sys
16:34:50.0638 1508 usbccgp - ok
16:34:50.0688 1508 usbcir (af0892a803fdda7492f595368e3b68e7) C:\windows\system32\drivers\usbcir.sys
16:34:50.0688 1508 usbcir - ok
16:34:50.0718 1508 usbehci (74ee782b1d9c241efe425565854c661c) C:\windows\system32\drivers\usbehci.sys
16:34:50.0718 1508 usbehci - ok
16:34:50.0758 1508 usbhub (dc96bd9ccb8403251bcf25047573558e) C:\windows\system32\drivers\usbhub.sys
16:34:50.0758 1508 usbhub - ok
16:34:50.0788 1508 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\windows\system32\DRIVERS\usbohci.sys
16:34:50.0788 1508 usbohci - ok
16:34:50.0798 1508 usbprint (73188f58fb384e75c4063d29413cee3d) C:\windows\system32\DRIVERS\usbprint.sys
16:34:50.0798 1508 usbprint - ok
16:34:50.0828 1508 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\windows\system32\DRIVERS\USBSTOR.SYS
16:34:50.0828 1508 USBSTOR - ok
16:34:50.0838 1508 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\windows\system32\DRIVERS\usbuhci.sys
16:34:50.0848 1508 usbuhci - ok
16:34:50.0888 1508 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\windows\System32\Drivers\usbvideo.sys
16:34:50.0898 1508 usbvideo - ok
16:34:50.0918 1508 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\windows\System32\uxsms.dll
16:34:50.0928 1508 UxSms - ok
16:34:50.0968 1508 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
16:34:50.0968 1508 VaultSvc - ok
16:34:51.0148 1508 vcsFPService (8c51e58d59cbf2639832484ec9ed8dda) C:\Windows\system32\vcsFPService.exe
16:34:51.0168 1508 vcsFPService - ok
16:34:51.0318 1508 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\windows\system32\drivers\vdrvroot.sys
16:34:51.0328 1508 vdrvroot - ok
16:34:51.0388 1508 vds (8d6b481601d01a456e75c3210f1830be) C:\windows\System32\vds.exe
16:34:51.0388 1508 vds - ok
16:34:51.0418 1508 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\windows\system32\DRIVERS\vgapnp.sys
16:34:51.0418 1508 vga - ok
16:34:51.0438 1508 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\windows\System32\drivers\vga.sys
16:34:51.0438 1508 VgaSave - ok
16:34:51.0488 1508 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\windows\system32\drivers\vhdmp.sys
16:34:51.0488 1508 vhdmp - ok
16:34:51.0508 1508 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\windows\system32\drivers\viaide.sys
16:34:51.0508 1508 viaide - ok
16:34:51.0528 1508 vmbus (86ea3e79ae350fea5331a1303054005f) C:\windows\system32\drivers\vmbus.sys
16:34:51.0528 1508 vmbus - ok
16:34:51.0538 1508 VMBusHID (7de90b48f210d29649380545db45a187) C:\windows\system32\drivers\VMBusHID.sys
16:34:51.0538 1508 VMBusHID - ok
16:34:51.0578 1508 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\windows\system32\drivers\volmgr.sys
16:34:51.0578 1508 volmgr - ok
16:34:51.0638 1508 volmgrx (a255814907c89be58b79ef2f189b843b) C:\windows\system32\drivers\volmgrx.sys
16:34:51.0648 1508 volmgrx - ok
16:34:51.0688 1508 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\windows\system32\drivers\volsnap.sys
16:34:51.0698 1508 volsnap - ok
16:34:51.0748 1508 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\windows\system32\DRIVERS\vsmraid.sys
16:34:51.0748 1508 vsmraid - ok
16:34:51.0878 1508 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\windows\system32\vssvc.exe
16:34:51.0888 1508 VSS - ok
16:34:52.0008 1508 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\windows\system32\DRIVERS\vwifibus.sys
16:34:52.0008 1508 vwifibus - ok
16:34:52.0038 1508 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\windows\system32\DRIVERS\vwififlt.sys
16:34:52.0038 1508 vwififlt - ok
16:34:52.0058 1508 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\windows\system32\DRIVERS\vwifimp.sys
16:34:52.0058 1508 vwifimp - ok
16:34:52.0098 1508 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\windows\system32\w32time.dll
16:34:52.0098 1508 W32Time - ok
16:34:52.0118 1508 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\windows\system32\DRIVERS\wacompen.sys
16:34:52.0118 1508 WacomPen - ok
16:34:52.0168 1508 WANARP (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
16:34:52.0168 1508 WANARP - ok
16:34:52.0178 1508 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
16:34:52.0178 1508 Wanarpv6 - ok
16:34:52.0288 1508 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\windows\system32\Wat\WatAdminSvc.exe
16:34:52.0318 1508 WatAdminSvc - ok
16:34:52.0428 1508 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\windows\system32\wbengine.exe
16:34:52.0458 1508 wbengine - ok
16:34:52.0548 1508 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\windows\System32\wbiosrvc.dll
16:34:52.0558 1508 WbioSrvc - ok
16:34:52.0638 1508 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\windows\System32\wcncsvc.dll
16:34:52.0648 1508 wcncsvc - ok
16:34:52.0668 1508 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\windows\System32\WcsPlugInService.dll
16:34:52.0678 1508 WcsPlugInService - ok
16:34:52.0718 1508 Wd (72889e16ff12ba0f235467d6091b17dc) C:\windows\system32\DRIVERS\wd.sys
16:34:52.0718 1508 Wd - ok
16:34:52.0758 1508 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\windows\system32\drivers\Wdf01000.sys
16:34:52.0758 1508 Wdf01000 - ok
16:34:52.0778 1508 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\windows\system32\wdi.dll
16:34:52.0788 1508 WdiServiceHost - ok
16:34:52.0788 1508 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\windows\system32\wdi.dll
16:34:52.0788 1508 WdiSystemHost - ok
16:34:52.0818 1508 wdkmd (94dc2bf6cbaaa95e369c3756d3115a76) C:\windows\system32\DRIVERS\WDKMD.sys
16:34:52.0818 1508 wdkmd - ok
16:34:52.0848 1508 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\windows\System32\webclnt.dll
16:34:52.0848 1508 WebClient - ok
16:34:52.0888 1508 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\windows\system32\wecsvc.dll
16:34:52.0888 1508 Wecsvc - ok
16:34:52.0918 1508 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\windows\System32\wercplsupport.dll
16:34:52.0918 1508 wercplsupport - ok
16:34:52.0958 1508 WerSvc (6d137963730144698cbd10f202e9f251) C:\windows\System32\WerSvc.dll
16:34:52.0958 1508 WerSvc - ok
16:34:52.0988 1508 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\windows\system32\DRIVERS\wfplwf.sys
16:34:52.0988 1508 WfpLwf - ok
16:34:53.0008 1508 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\windows\system32\drivers\wimmount.sys
16:34:53.0008 1508 WIMMount - ok
16:34:53.0018 1508 WinHttpAutoProxySvc - ok
16:34:53.0078 1508 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\windows\system32\wbem\WMIsvc.dll
16:34:53.0088 1508 Winmgmt - ok
16:34:53.0188 1508 WinRM (bcb1310604aa415c4508708975b3931e) C:\windows\system32\WsmSvc.dll
16:34:53.0208 1508 WinRM - ok
16:34:53.0338 1508 WinUSB (fe88b288356e7b47b74b13372add906d) C:\windows\system32\DRIVERS\WinUSB.sys
16:34:53.0338 1508 WinUSB - ok
16:34:53.0418 1508 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\windows\System32\wlansvc.dll
16:34:53.0418 1508 Wlansvc - ok
16:34:53.0478 1508 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
16:34:53.0478 1508 wlcrasvc - ok
16:34:53.0688 1508 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:34:53.0718 1508 wlidsvc - ok
16:34:53.0819 1508 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\windows\system32\drivers\wmiacpi.sys
16:34:53.0829 1508 WmiAcpi - ok
16:34:53.0889 1508 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\windows\system32\wbem\WmiApSrv.exe
16:34:53.0899 1508 wmiApSrv - ok
16:34:53.0939 1508 WMPNetworkSvc - ok
16:34:53.0969 1508 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\windows\System32\wpcsvc.dll
16:34:53.0969 1508 WPCSvc - ok
16:34:54.0009 1508 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\windows\system32\wpdbusenum.dll
16:34:54.0009 1508 WPDBusEnum - ok
16:34:54.0029 1508 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\windows\system32\drivers\ws2ifsl.sys
16:34:54.0039 1508 ws2ifsl - ok
16:34:54.0049 1508 WSearch - ok
16:34:54.0159 1508 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\windows\system32\wuaueng.dll
16:34:54.0179 1508 wuauserv - ok
16:34:54.0289 1508 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\windows\system32\drivers\WudfPf.sys
16:34:54.0289 1508 WudfPf - ok
16:34:54.0329 1508 WUDFRd (cf8d590be3373029d57af80914190682) C:\windows\system32\DRIVERS\WUDFRd.sys
16:34:54.0339 1508 WUDFRd - ok
16:34:54.0379 1508 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\windows\System32\WUDFSvc.dll
16:34:54.0379 1508 wudfsvc - ok
16:34:54.0419 1508 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\windows\System32\wwansvc.dll
16:34:54.0419 1508 WwanSvc - ok
16:34:54.0469 1508 yukonw7 (b3eeacf62445e24fbb2cd4b0fb4db026) C:\windows\system32\DRIVERS\yk62x64.sys
16:34:54.0479 1508 yukonw7 - ok
16:34:54.0509 1508 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
16:34:55.0449 1508 \Device\Harddisk0\DR0 - ok
16:34:55.0489 1508 Boot (0x1200) (de4cfc9a6bceac4db23f9f39b2598578) \Device\Harddisk0\DR0\Partition0
16:34:55.0489 1508 \Device\Harddisk0\DR0\Partition0 - ok
16:34:55.0509 1508 Boot (0x1200) (9353cf31a6ec515e78353d1600509a2f) \Device\Harddisk0\DR0\Partition1
16:34:55.0509 1508 \Device\Harddisk0\DR0\Partition1 - ok
16:34:55.0509 1508 ============================================================
16:34:55.0509 1508 Scan finished
16:34:55.0509 1508 ============================================================
16:34:55.0519 5640 Detected object count: 1
16:34:55.0519 5640 Actual detected object count: 1
16:36:21.0096 5640 c:\program files (x86)\common files\akamai/netsession_win_4f7fccd.dll - copied to quarantine
16:36:21.0096 5640 HKLM\SYSTEM\ControlSet001\services\Akamai - will be deleted on reboot
16:36:21.0146 5640 HKLM\SYSTEM\ControlSet002\services\Akamai - will be deleted on reboot
16:36:21.0406 5640 c:\program files (x86)\common files\akamai/netsession_win_4f7fccd.dll - will be deleted on reboot
16:36:21.0406 5640 Akamai ( HiddenFile.Multi.Generic ) - User select action: Delete
16:36:39.0192 5956 Deinitialize success

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-12 16:56:33
-----------------------------
16:56:33.764 OS Version: Windows x64 6.1.7601 Service Pack 1
16:56:33.764 Number of processors: 4 586 0x2A07
16:56:33.764 ComputerName: ANDREWTAYLOR-PC UserName: Andrew Taylor
16:56:35.415 Initialize success
16:56:38.725 AVAST engine defs: 12071201
16:57:09.890 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
16:57:09.890 Disk 0 Vendor: TOSHIBA_ MC00 Size: 476940MB BusType: 3
16:57:09.921 Disk 0 MBR read successfully
16:57:09.931 Disk 0 MBR scan
16:57:09.931 Disk 0 Windows 7 default MBR code
16:57:09.941 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 100 MB offset 2048
16:57:09.951 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15000 MB offset 206848
16:57:09.971 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 461838 MB offset 30926848
16:57:09.991 Disk 0 scanning C:\windows\system32\drivers
16:57:20.404 Service scanning
16:57:45.723 Modules scanning
16:57:45.733 Disk 0 trace - called modules:
16:57:45.793 ntoskrnl.exe CLASSPNP.SYS disk.sys stdcfltn.sys ACPI.sys iaStor.sys hal.dll
16:57:45.793 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8005f01060]
16:57:45.803 3 CLASSPNP.SYS[fffff8800185143f] -> nt!IofCallDriver -> [0xfffffa8005d74af0]
16:57:45.803 5 stdcfltn.sys[fffff88001b89c52] -> nt!IofCallDriver -> [0xfffffa8005c05950]
16:57:45.813 7 ACPI.sys[fffff88000f247a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8005c09050]
16:57:46.793 AVAST engine scan C:\windows
16:57:50.303 AVAST engine scan C:\windows\system32
16:59:21.263 File: C:\windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
16:59:23.414 File: C:\windows\assembly\GAC_64\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
17:00:20.750 AVAST engine scan C:\windows\system32\drivers
17:00:31.867 AVAST engine scan C:\Users\Andrew Taylor
17:07:21.246 AVAST engine scan C:\ProgramData
17:08:18.375 Scan finished successfully
17:17:01.479 Disk 0 MBR has been saved successfully to "C:\Users\Andrew Taylor\Desktop\MBR.dat"
17:17:01.479 The log file has been saved successfully to "C:\Users\Andrew Taylor\Desktop\aswMBR.txt"

ESET Results
C:\ProgramData\wxDfast\bhoclass.dll Win32/Adware.MultiPlug.A application cleaned by deleting - quarantined
C:\Users\Andrew Taylor\Downloads\covert.affairs.s02e01-jmt.avi_downloader.exe a variant of Win32/InstallCore.W application cleaned by deleting - quarantined
C:\Windows\Installer\{3b99f81f-31d5-dbab-1bcf-87d0107a285a}\n Win64/Sirefef.W trojan cleaned by deleting - quarantined
C:\Windows\Installer\{3b99f81f-31d5-dbab-1bcf-87d0107a285a}\U\00000008.@ Win64/Agent.BA trojan cleaned by deleting - quarantined
C:\Windows\Installer\{3b99f81f-31d5-dbab-1bcf-87d0107a285a}\U\80000000.@ Win64/Sirefef.AE trojan cleaned by deleting - quarantined
C:\Windows\Installer\{3b99f81f-31d5-dbab-1bcf-87d0107a285a}\U\80000032.@ a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\Windows\Installer\{3b99f81f-31d5-dbab-1bcf-87d0107a285a}\U\80000064.@ Win64/Sirefef.AN trojan cleaned by deleting - quarantined
Operating memory multiple threats

#4 andrew3205

andrew3205
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:06:02 AM

Posted 12 July 2012 - 08:38 PM

Also just noticed that microsoft securtity essentials is effectively stopped July 4 2012 and wont let me get in... will look and see if I can reinstall.

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:02 AM

Posted 12 July 2012 - 08:41 PM

We need advanced tools

Read the guide here

http://www.bleepingcomputer.com/forums/topic34773.html

and create a topic here

http://www.bleepingcomputer.com/forums/forum22.html

Good luck




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users