Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google Redirect Problem


  • Please log in to reply
3 replies to this topic

#1 Glitchs2d

Glitchs2d

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:09:34 AM

Posted 15 July 2012 - 03:28 PM

Hello, for the past few days I have been trying to get rid of this goodle redirect virus but no matter how many times I try it keeps coming back. I went a few hours yesterday redirect free after running malware bites program but it came back. If anyone can help me I would really appreciate it. Also, I belive that my computer is/was infected with that dns redirect virus that the FBI was warning about because for a little while on Monday morning my internet was not working and I know some ISP's put up servers for their customers.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:34 AM

Posted 15 July 2012 - 07:09 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)



Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 Glitchs2d

Glitchs2d
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:09:34 AM

Posted 15 July 2012 - 09:43 PM

TDSKiller
19:26:38.0379 0408 TDSS rootkit removing tool 2.7.45.0 Jul 9 2012 12:46:35
19:26:38.0979 0408 ============================================================
19:26:38.0979 0408 Current date / time: 2012/07/15 19:26:38.0979
19:26:38.0979 0408 SystemInfo:
19:26:38.0979 0408
19:26:38.0979 0408 OS Version: 6.1.7600 ServicePack: 0.0
19:26:38.0979 0408 Product type: Workstation
19:26:38.0979 0408 ComputerName: HOME-PC
19:26:38.0979 0408 UserName: home
19:26:38.0979 0408 Windows directory: C:\Windows
19:26:38.0979 0408 System windows directory: C:\Windows
19:26:38.0979 0408 Running under WOW64
19:26:38.0979 0408 Processor architecture: Intel x64
19:26:38.0979 0408 Number of processors: 3
19:26:38.0979 0408 Page size: 0x1000
19:26:38.0979 0408 Boot type: Normal boot
19:26:38.0979 0408 ============================================================
19:26:40.0459 0408 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:26:40.0769 0408 Drive \Device\Harddisk1\DR1 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:26:40.0769 0408 ============================================================
19:26:40.0769 0408 \Device\Harddisk0\DR0:
19:26:40.0789 0408 MBR partitions:
19:26:40.0789 0408 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
19:26:40.0789 0408 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x227B0800
19:26:40.0789 0408 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x22814800, BlocksNum 0x2BE6000
19:26:40.0789 0408 \Device\Harddisk0\DR0\Partition3: MBR, Type 0xC, StartLBA 0x253FA800, BlocksNum 0x32800
19:26:40.0789 0408 \Device\Harddisk1\DR1:
19:26:40.0789 0408 MBR partitions:
19:26:40.0789 0408 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x2542D682
19:26:40.0789 0408 ============================================================
19:26:40.0889 0408 C: <-> \Device\Harddisk0\DR0\Partition1
19:26:40.0919 0408 D: <-> \Device\Harddisk1\DR1\Partition0
19:26:40.0999 0408 E: <-> \Device\Harddisk0\DR0\Partition2
19:26:41.0019 0408 F: <-> \Device\Harddisk0\DR0\Partition3
19:26:41.0019 0408 ============================================================
19:26:41.0019 0408 Initialize success
19:26:41.0019 0408 ============================================================
19:26:51.0189 4584 ============================================================
19:26:51.0189 4584 Scan started
19:26:51.0189 4584 Mode: Manual; SigCheck; TDLFS;
19:26:51.0189 4584 ============================================================
19:26:52.0429 4584 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
19:26:52.0519 4584 1394ohci - ok
19:26:52.0609 4584 Accelerometer (1cffe9c06e66a57dae1452e449a58240) C:\Windows\system32\DRIVERS\Accelerometer.sys
19:26:52.0629 4584 Accelerometer - ok
19:26:52.0739 4584 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
19:26:52.0759 4584 ACPI - ok
19:26:52.0809 4584 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
19:26:52.0879 4584 AcpiPmi - ok
19:26:53.0229 4584 Ad-Aware Service (09e61047b0cef21559cfcedf4f14d216) C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe
19:26:53.0259 4584 Ad-Aware Service - ok
19:26:53.0429 4584 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
19:26:53.0459 4584 adp94xx - ok
19:26:53.0669 4584 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
19:26:53.0689 4584 adpahci - ok
19:26:53.0769 4584 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
19:26:53.0809 4584 adpu320 - ok
19:26:53.0929 4584 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
19:26:54.0789 4584 AeLookupSvc - ok
19:26:55.0049 4584 AESTFilters (a6fb9db8f1a86861d955fd6975977ae0) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_471277d5d45019ea\AESTSr64.exe
19:26:55.0129 4584 AESTFilters - ok
19:26:55.0519 4584 AFD (b9384e03479d2506bc924c16a3db87bc) C:\Windows\system32\drivers\afd.sys
19:26:55.0559 4584 AFD - ok
19:26:55.0649 4584 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
19:26:55.0659 4584 agp440 - ok
19:26:55.0779 4584 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
19:26:55.0789 4584 ALG - ok
19:26:55.0839 4584 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
19:26:55.0849 4584 aliide - ok
19:26:56.0059 4584 ALSysIO - ok
19:26:56.0269 4584 AMD External Events Utility (b5e2434fc851698c1f119cf1c3935a50) C:\Windows\system32\atiesrxx.exe
19:26:56.0469 4584 AMD External Events Utility - ok
19:26:56.0639 4584 AMD FUEL Service - ok
19:26:56.0689 4584 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
19:26:56.0689 4584 amdide - ok
19:26:56.0779 4584 amdiox64 (6a2eeb0c4133b20773bb3dd0b7b377b4) C:\Windows\system32\DRIVERS\amdiox64.sys
19:26:56.0789 4584 amdiox64 - ok
19:26:56.0869 4584 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
19:26:56.0879 4584 AmdK8 - ok
19:27:02.0079 4584 amdkmdag (9e3b4946f7e1bca0b763e19d81edbf2c) C:\Windows\system32\DRIVERS\atikmdag.sys
19:27:02.0369 4584 amdkmdag - ok
19:27:02.0819 4584 amdkmdap (b9e1c7b7f1865f99b16ff2e1bb94edb6) C:\Windows\system32\DRIVERS\atikmpag.sys
19:27:02.0849 4584 amdkmdap - ok
19:27:02.0959 4584 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
19:27:02.0969 4584 AmdPPM - ok
19:27:03.0079 4584 amdsata (7a4b413614c055935567cf88a9734d38) C:\Windows\system32\DRIVERS\amdsata.sys
19:27:03.0089 4584 amdsata - ok
19:27:03.0149 4584 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
19:27:03.0159 4584 amdsbs - ok
19:27:03.0209 4584 amdxata (b4ad0cacbab298671dd6f6ef7e20679d) C:\Windows\system32\DRIVERS\amdxata.sys
19:27:03.0229 4584 amdxata - ok
19:27:03.0459 4584 AODDriver4.01 (f312fad7dbd49ed21a194ac71b497832) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
19:27:03.0479 4584 AODDriver4.01 - ok
19:27:03.0579 4584 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
19:27:03.0839 4584 AppID - ok
19:27:03.0899 4584 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
19:27:03.0939 4584 AppIDSvc - ok
19:27:04.0049 4584 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
19:27:04.0089 4584 Appinfo - ok
19:27:04.0209 4584 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
19:27:04.0219 4584 arc - ok
19:27:04.0269 4584 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
19:27:04.0289 4584 arcsas - ok
19:27:04.0519 4584 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
19:27:04.0539 4584 aspnet_state - ok
19:27:04.0609 4584 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
19:27:04.0639 4584 AsyncMac - ok
19:27:04.0679 4584 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
19:27:04.0689 4584 atapi - ok
19:27:05.0399 4584 athr (38562a6a9cb10844759eaf2b01a7fcd3) C:\Windows\system32\DRIVERS\athrx.sys
19:27:05.0509 4584 athr - ok
19:27:05.0959 4584 AtiHDAudioService (2b3b05c0a7768bf033217eb8f33f9c35) C:\Windows\system32\drivers\AtihdW76.sys
19:27:05.0969 4584 AtiHDAudioService - ok
19:27:06.0039 4584 AtiHdmiService (77c149e6d702737b2e372dee166faef8) C:\Windows\system32\drivers\AtiHdmi.sys
19:27:06.0049 4584 AtiHdmiService - ok
19:27:06.0129 4584 AtiPcie (c07a040d6b5a42dd41ee386cf90974c8) C:\Windows\system32\DRIVERS\AtiPcie.sys
19:27:06.0149 4584 AtiPcie - ok
19:27:06.0349 4584 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
19:27:06.0389 4584 AudioEndpointBuilder - ok
19:27:06.0399 4584 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
19:27:06.0449 4584 AudioSrv - ok
19:27:06.0509 4584 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
19:27:06.0649 4584 AxInstSV - ok
19:27:06.0939 4584 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
19:27:06.0959 4584 b06bdrv - ok
19:27:07.0289 4584 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
19:27:07.0319 4584 b57nd60a - ok
19:27:07.0429 4584 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
19:27:07.0449 4584 BDESVC - ok
19:27:07.0529 4584 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
19:27:07.0579 4584 Beep - ok
19:27:08.0249 4584 BFE (4992c609a6315671463e30f6512bc022) C:\Windows\System32\bfe.dll
19:27:08.0319 4584 BFE - ok
19:27:08.0834 4584 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\System32\qmgr.dll
19:27:08.0884 4584 BITS - ok
19:27:09.0074 4584 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
19:27:09.0084 4584 blbdrive - ok
19:27:09.0164 4584 bowser (91ce0d3dc57dd377e690a2d324022b08) C:\Windows\system32\DRIVERS\bowser.sys
19:27:09.0214 4584 bowser - ok
19:27:09.0284 4584 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:27:09.0304 4584 BrFiltLo - ok
19:27:09.0344 4584 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:27:09.0354 4584 BrFiltUp - ok
19:27:09.0484 4584 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
19:27:09.0544 4584 BridgeMP - ok
19:27:09.0674 4584 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
19:27:09.0714 4584 Browser - ok
19:27:09.0874 4584 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
19:27:09.0904 4584 Brserid - ok
19:27:09.0944 4584 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
19:27:09.0964 4584 BrSerWdm - ok
19:27:10.0024 4584 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
19:27:10.0044 4584 BrUsbMdm - ok
19:27:10.0114 4584 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
19:27:10.0124 4584 BrUsbSer - ok
19:27:10.0264 4584 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
19:27:10.0274 4584 BTHMODEM - ok
19:27:10.0364 4584 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
19:27:10.0404 4584 bthserv - ok
19:27:10.0524 4584 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
19:27:10.0574 4584 cdfs - ok
19:27:10.0754 4584 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
19:27:10.0764 4584 cdrom - ok
19:27:10.0924 4584 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
19:27:10.0964 4584 CertPropSvc - ok
19:27:11.0239 4584 CinemaNow Service (2c24db5f78f0aca759803001e6b4f320) C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemanowSvc.exe
19:27:11.0264 4584 CinemaNow Service - ok
19:27:11.0364 4584 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
19:27:11.0379 4584 circlass - ok
19:27:11.0672 4584 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
19:27:11.0694 4584 CLFS - ok
19:27:11.0882 4584 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:27:11.0902 4584 clr_optimization_v2.0.50727_32 - ok
19:27:12.0062 4584 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:27:12.0082 4584 clr_optimization_v2.0.50727_64 - ok
19:27:12.0437 4584 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:27:12.0499 4584 clr_optimization_v4.0.30319_32 - ok
19:27:12.0837 4584 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:27:12.0879 4584 clr_optimization_v4.0.30319_64 - ok
19:27:12.0962 4584 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
19:27:12.0972 4584 CmBatt - ok
19:27:13.0002 4584 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
19:27:13.0002 4584 cmdide - ok
19:27:13.0289 4584 CNG (f95fd4cb7da00ba2a63ce9f6b5c053e1) C:\Windows\system32\Drivers\cng.sys
19:27:13.0322 4584 CNG - ok
19:27:13.0394 4584 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
19:27:13.0414 4584 Compbatt - ok
19:27:13.0484 4584 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
19:27:13.0504 4584 CompositeBus - ok
19:27:13.0527 4584 COMSysApp - ok
19:27:13.0577 4584 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
19:27:13.0587 4584 crcdisk - ok
19:27:13.0746 4584 CryptSvc (8c57411b66282c01533cb776f98ad384) C:\Windows\system32\cryptsvc.dll
19:27:13.0788 4584 CryptSvc - ok
19:27:14.0161 4584 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
19:27:14.0208 4584 DcomLaunch - ok
19:27:14.0395 4584 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
19:27:14.0450 4584 defragsvc - ok
19:27:14.0520 4584 DfsC (3f1dc527070acb87e40afe46ef6da749) C:\Windows\system32\Drivers\dfsc.sys
19:27:14.0560 4584 DfsC - ok
19:27:14.0948 4584 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
19:27:15.0208 4584 Dhcp - ok
19:27:15.0423 4584 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
19:27:15.0483 4584 discache - ok
19:27:15.0593 4584 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
19:27:15.0613 4584 Disk - ok
19:27:15.0905 4584 Dnscache (676108c4e3aa6f6b34633748bd0bebd9) C:\Windows\System32\dnsrslvr.dll
19:27:15.0943 4584 Dnscache - ok
19:27:16.0136 4584 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
19:27:16.0188 4584 dot3svc - ok
19:27:16.0676 4584 DpHost (8cbe9eb5088e36db88013d9d5858b87f) C:\Program Files\DigitalPersona\Bin\DpHostW.exe
19:27:16.0686 4584 DpHost - ok
19:27:16.0848 4584 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
19:27:16.0881 4584 DPS - ok
19:27:16.0963 4584 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
19:27:16.0993 4584 drmkaud - ok
19:27:17.0083 4584 DVMIO (a298aea9fca253e7eff040a08c7c6376) C:\Windows\system32\DRIVERS\dvmio.sys
19:27:17.0083 4584 DVMIO - ok
19:27:17.0286 4584 DvmMDES (5eb46032eca199f4721eb1915b5383c8) C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe
19:27:17.0296 4584 DvmMDES - ok
19:27:17.0521 4584 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
19:27:17.0543 4584 DXGKrnl - ok
19:27:17.0603 4584 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
19:27:17.0646 4584 EapHost - ok
19:27:18.0281 4584 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
19:27:18.0383 4584 ebdrv - ok
19:27:18.0596 4584 EFS (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\System32\lsass.exe
19:27:18.0606 4584 EFS - ok
19:27:18.0910 4584 ehRecvr (b91d81b3b54a54ccafc03733dbc2e29e) C:\Windows\ehome\ehRecvr.exe
19:27:18.0940 4584 ehRecvr - ok
19:27:19.0010 4584 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
19:27:19.0050 4584 ehSched - ok
19:27:19.0175 4584 ElbyCDIO (a05fc7eca0966ebb70e4d17b855a853b) C:\Windows\system32\Drivers\ElbyCDIO.sys
19:27:19.0205 4584 ElbyCDIO - ok
19:27:19.0317 4584 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
19:27:19.0337 4584 elxstor - ok
19:27:19.0402 4584 epmntdrv (9eafb3b3b60b8ad958985152a9309aca) C:\Windows\system32\epmntdrv.sys
19:27:19.0402 4584 epmntdrv ( UnsignedFile.Multi.Generic ) - warning
19:27:19.0402 4584 epmntdrv - detected UnsignedFile.Multi.Generic (1)
19:27:19.0432 4584 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
19:27:19.0442 4584 ErrDev - ok
19:27:19.0555 4584 esgiguard - ok
19:27:19.0597 4584 EuGdiDrv (fb949ed2c93c878a189039f3d7730942) C:\Windows\system32\EuGdiDrv.sys
19:27:19.0597 4584 EuGdiDrv ( UnsignedFile.Multi.Generic ) - warning
19:27:19.0597 4584 EuGdiDrv - detected UnsignedFile.Multi.Generic (1)
19:27:19.0700 4584 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
19:27:19.0740 4584 EventSystem - ok
19:27:19.0792 4584 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
19:27:19.0832 4584 exfat - ok
19:27:19.0925 4584 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
19:27:19.0955 4584 fastfat - ok
19:27:20.0262 4584 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
19:27:20.0295 4584 Fax - ok
19:27:20.0315 4584 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
19:27:20.0325 4584 fdc - ok
19:27:20.0385 4584 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
19:27:20.0417 4584 fdPHost - ok
19:27:20.0570 4584 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
19:27:20.0612 4584 FDResPub - ok
19:27:20.0837 4584 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
19:27:20.0847 4584 FileInfo - ok
19:27:20.0857 4584 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
19:27:20.0892 4584 Filetrace - ok
19:27:21.0185 4584 FLEXnet Licensing Service (1f63900e2eb00101b9aca2b7a870704e) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
19:27:21.0210 4584 FLEXnet Licensing Service - ok
19:27:21.0250 4584 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
19:27:21.0260 4584 flpydisk - ok
19:27:21.0415 4584 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
19:27:21.0465 4584 FltMgr - ok
19:27:21.0847 4584 FontCache (bc00505cfda789ed3be95d2ff38c4875) C:\Windows\system32\FntCache.dll
19:27:21.0910 4584 FontCache - ok
19:27:22.0032 4584 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:27:22.0042 4584 FontCache3.0.0.0 - ok
19:27:22.0155 4584 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
19:27:22.0165 4584 FsDepends - ok
19:27:22.0195 4584 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
19:27:22.0207 4584 Fs_Rec - ok
19:27:22.0317 4584 fvevol (b8b2a6e1558f8f5de5ce431c5b2c7b09) C:\Windows\system32\DRIVERS\fvevol.sys
19:27:22.0327 4584 fvevol - ok
19:27:22.0387 4584 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
19:27:22.0397 4584 gagp30kx - ok
19:27:22.0615 4584 GameConsoleService (e53ee18a21c025deabcfe0f72fc481bb) C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
19:27:22.0625 4584 GameConsoleService - ok
19:27:22.0892 4584 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
19:27:22.0922 4584 gpsvc - ok
19:27:22.0982 4584 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
19:27:23.0002 4584 hcw85cir - ok
19:27:23.0087 4584 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
19:27:23.0107 4584 HdAudAddService - ok
19:27:23.0177 4584 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
19:27:23.0200 4584 HDAudBus - ok
19:27:23.0220 4584 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
19:27:23.0230 4584 HidBatt - ok
19:27:23.0352 4584 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
19:27:23.0382 4584 HidBth - ok
19:27:23.0495 4584 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
19:27:23.0507 4584 HidIr - ok
19:27:23.0587 4584 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
19:27:23.0630 4584 hidserv - ok
19:27:23.0690 4584 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
19:27:23.0700 4584 HidUsb - ok
19:27:23.0792 4584 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
19:27:23.0835 4584 hkmsvc - ok
19:27:23.0947 4584 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
19:27:23.0977 4584 HomeGroupListener - ok
19:27:24.0110 4584 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
19:27:24.0122 4584 HomeGroupProvider - ok
19:27:24.0275 4584 HP Support Assistant Service (13bb1114451c63bfb41ba7daa4d70a29) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
19:27:24.0285 4584 HP Support Assistant Service - ok
19:27:24.0552 4584 HP Wireless Assistant Service (9abd12fce4a62905731c286bb1d66789) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
19:27:24.0552 4584 HP Wireless Assistant Service - ok
19:27:24.0647 4584 HPDrvMntSvc.exe (c958976c7daaf47084a33ebbc6e28b84) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
19:27:24.0657 4584 HPDrvMntSvc.exe - ok
19:27:24.0722 4584 hpdskflt (05712fddbd45a5864eb326faabc6a4e3) C:\Windows\system32\DRIVERS\hpdskflt.sys
19:27:24.0732 4584 hpdskflt - ok
19:27:25.0350 4584 hpqwmiex (09fbd4c4db2fd84b9ab1c5bfdcc95559) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
19:27:25.0370 4584 hpqwmiex - ok
19:27:25.0470 4584 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
19:27:25.0500 4584 HpSAMD - ok
19:27:25.0560 4584 hpsrv (aa036cc5f5221d9b915f4d4dce74ba9a) C:\Windows\system32\Hpservice.exe
19:27:25.0570 4584 hpsrv - ok
19:27:25.0680 4584 HPWMISVC (b6492d01712a22ff3fea25a999dbd321) C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
19:27:25.0690 4584 HPWMISVC ( UnsignedFile.Multi.Generic ) - warning
19:27:25.0690 4584 HPWMISVC - detected UnsignedFile.Multi.Generic (1)
19:27:26.0350 4584 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
19:27:26.0390 4584 HTTP - ok
19:27:26.0441 4584 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
19:27:26.0441 4584 hwpolicy - ok
19:27:26.0577 4584 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
19:27:26.0607 4584 i8042prt - ok
19:27:26.0857 4584 iaStorV (d83efb6fd45df9d55e9a1afc63640d50) C:\Windows\system32\DRIVERS\iaStorV.sys
19:27:26.0887 4584 iaStorV - ok
19:27:27.0529 4584 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:27:27.0574 4584 idsvc - ok
19:27:30.0974 4584 igfx (a87261ef1546325b559374f5689cf5bc) C:\Windows\system32\DRIVERS\igdkmd64.sys
19:27:31.0284 4584 igfx - ok
19:27:31.0684 4584 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
19:27:31.0694 4584 iirsp - ok
19:27:32.0164 4584 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
19:27:32.0244 4584 IKEEXT - ok
19:27:32.0294 4584 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
19:27:32.0314 4584 intelide - ok
19:27:32.0374 4584 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
19:27:32.0394 4584 intelppm - ok
19:27:32.0464 4584 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
19:27:32.0494 4584 IPBusEnum - ok
19:27:32.0544 4584 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:27:32.0584 4584 IpFilterDriver - ok
19:27:32.0824 4584 iphlpsvc (f8e058d17363ec580e4b7232778b6cb5) C:\Windows\System32\iphlpsvc.dll
19:27:32.0864 4584 iphlpsvc - ok
19:27:32.0914 4584 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
19:27:32.0924 4584 IPMIDRV - ok
19:27:32.0994 4584 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
19:27:33.0034 4584 IPNAT - ok
19:27:33.0074 4584 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
19:27:33.0084 4584 IRENUM - ok
19:27:33.0134 4584 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
19:27:33.0154 4584 isapnp - ok
19:27:33.0224 4584 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
19:27:33.0264 4584 iScsiPrt - ok
19:27:33.0334 4584 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
19:27:33.0344 4584 kbdclass - ok
19:27:33.0404 4584 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
19:27:33.0414 4584 kbdhid - ok
19:27:33.0464 4584 KeyIso (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
19:27:33.0474 4584 KeyIso - ok
19:27:33.0504 4584 KSecDD (e8b6fcc9c83535c67f835d407620bd27) C:\Windows\system32\Drivers\ksecdd.sys
19:27:33.0514 4584 KSecDD - ok
19:27:33.0574 4584 KSecPkg (bbe1bf6d9b661c354d4857d5fadb943b) C:\Windows\system32\Drivers\ksecpkg.sys
19:27:33.0594 4584 KSecPkg - ok
19:27:33.0634 4584 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
19:27:33.0664 4584 ksthunk - ok
19:27:33.0884 4584 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
19:27:33.0954 4584 KtmRm - ok
19:27:34.0114 4584 LanmanServer (c926920b8978de6acfe9e15c709e9b57) C:\Windows\System32\srvsvc.dll
19:27:34.0154 4584 LanmanServer - ok
19:27:34.0284 4584 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
19:27:34.0324 4584 LanmanWorkstation - ok
19:27:34.0524 4584 LightScribeService (3503f257b3203f824b1567238ebe17e2) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
19:27:34.0554 4584 LightScribeService ( UnsignedFile.Multi.Generic ) - warning
19:27:34.0554 4584 LightScribeService - detected UnsignedFile.Multi.Generic (1)
19:27:34.0654 4584 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
19:27:34.0704 4584 lltdio - ok
19:27:34.0854 4584 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
19:27:34.0914 4584 lltdsvc - ok
19:27:34.0954 4584 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
19:27:34.0994 4584 lmhosts - ok
19:27:35.0144 4584 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
19:27:35.0174 4584 LSI_FC - ok
19:27:35.0284 4584 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
19:27:35.0314 4584 LSI_SAS - ok
19:27:35.0424 4584 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:27:35.0434 4584 LSI_SAS2 - ok
19:27:35.0544 4584 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:27:35.0554 4584 LSI_SCSI - ok
19:27:35.0684 4584 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
19:27:35.0734 4584 luafv - ok
19:27:35.0994 4584 MAUSBMOBILEPRE (87bf49f946c465c95a9eccb9e97240e0) C:\Windows\system32\DRIVERS\MAudioMobilePre.sys
19:27:36.0014 4584 MAUSBMOBILEPRE - ok
19:27:36.0054 4584 MBAMProtector (dc8490812a3b72811ae534f423b4c206) C:\Windows\system32\drivers\mbam.sys
19:27:36.0054 4584 MBAMProtector - ok
19:27:36.0434 4584 MBAMService (43683e970f008c93c9429ef428147a54) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
19:27:36.0474 4584 MBAMService - ok
19:27:36.0654 4584 Mcx2Svc (f84c8f1000bc11e3b7b23cbd3baff111) C:\Windows\system32\Mcx2Svc.dll
19:27:36.0664 4584 Mcx2Svc - ok
19:27:36.0734 4584 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
19:27:36.0754 4584 megasas - ok
19:27:36.0904 4584 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
19:27:36.0924 4584 MegaSR - ok
19:27:37.0004 4584 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
19:27:37.0044 4584 MMCSS - ok
19:27:37.0134 4584 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
19:27:37.0174 4584 Modem - ok
19:27:37.0244 4584 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
19:27:37.0254 4584 monitor - ok
19:27:37.0364 4584 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
19:27:37.0374 4584 mouclass - ok
19:27:37.0494 4584 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
19:27:37.0514 4584 mouhid - ok
19:27:37.0624 4584 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
19:27:37.0634 4584 mountmgr - ok
19:27:37.0844 4584 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:27:37.0854 4584 MozillaMaintenance - ok
19:27:37.0994 4584 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
19:27:38.0004 4584 mpio - ok
19:27:38.0084 4584 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
19:27:38.0114 4584 mpsdrv - ok
19:27:38.0214 4584 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
19:27:38.0234 4584 MRxDAV - ok
19:27:38.0364 4584 mrxsmb (cfdcd8ca87c2a657debc150ac35b5e08) C:\Windows\system32\DRIVERS\mrxsmb.sys
19:27:38.0404 4584 mrxsmb - ok
19:27:38.0514 4584 mrxsmb10 (1bee517b220b7f024f411aec1571dd5a) C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:27:38.0564 4584 mrxsmb10 - ok
19:27:38.0604 4584 mrxsmb20 (6b2d5fef385828b6e485c1c90afb8195) C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:27:38.0654 4584 mrxsmb20 - ok
19:27:38.0704 4584 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
19:27:38.0714 4584 msahci - ok
19:27:38.0814 4584 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
19:27:38.0844 4584 msdsm - ok
19:27:38.0994 4584 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
19:27:39.0004 4584 MSDTC - ok
19:27:39.0114 4584 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
19:27:39.0154 4584 Msfs - ok
19:27:39.0194 4584 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
19:27:39.0224 4584 mshidkmdf - ok
19:27:39.0264 4584 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
19:27:39.0284 4584 msisadrv - ok
19:27:39.0524 4584 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
19:27:39.0574 4584 MSiSCSI - ok
19:27:39.0574 4584 msiserver - ok
19:27:39.0654 4584 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
19:27:39.0684 4584 MSKSSRV - ok
19:27:39.0734 4584 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
19:27:39.0774 4584 MSPCLOCK - ok
19:27:39.0824 4584 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
19:27:39.0874 4584 MSPQM - ok
19:27:40.0194 4584 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
19:27:40.0224 4584 MsRPC - ok
19:27:40.0274 4584 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
19:27:40.0284 4584 mssmbios - ok
19:27:40.0384 4584 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
19:27:40.0424 4584 MSTEE - ok
19:27:40.0464 4584 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
19:27:40.0474 4584 MTConfig - ok
19:27:40.0614 4584 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
19:27:40.0624 4584 Mup - ok
19:27:40.0954 4584 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
19:27:40.0994 4584 napagent - ok
19:27:41.0264 4584 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
19:27:41.0294 4584 NativeWifiP - ok
19:27:41.0924 4584 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
19:27:41.0944 4584 NDIS - ok
19:27:42.0044 4584 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
19:27:42.0074 4584 NdisCap - ok
19:27:42.0174 4584 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
19:27:42.0224 4584 NdisTapi - ok
19:27:42.0304 4584 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
19:27:42.0357 4584 Ndisuio - ok
19:27:42.0427 4584 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
19:27:42.0474 4584 NdisWan - ok
19:27:42.0517 4584 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
19:27:42.0554 4584 NDProxy - ok
19:27:42.0839 4584 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
19:27:42.0889 4584 NetBIOS - ok
19:27:43.0354 4584 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
19:27:43.0394 4584 NetBT - ok
19:27:43.0544 4584 Netlogon (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
19:27:43.0554 4584 Netlogon - ok
19:27:43.0811 4584 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
19:27:43.0851 4584 Netman - ok
19:27:44.0141 4584 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:27:44.0151 4584 NetMsmqActivator - ok
19:27:44.0151 4584 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:27:44.0161 4584 NetPipeActivator - ok
19:27:44.0491 4584 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
19:27:44.0531 4584 netprofm - ok
19:27:44.0591 4584 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:27:44.0601 4584 NetTcpActivator - ok
19:27:44.0601 4584 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:27:44.0611 4584 NetTcpPortSharing - ok
19:27:46.0091 4584 netw5v64 (64428dfdaf6e88366cb51f45a79c5f69) C:\Windows\system32\DRIVERS\netw5v64.sys
19:27:46.0331 4584 netw5v64 - ok
19:27:46.0701 4584 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
19:27:46.0721 4584 nfrd960 - ok
19:27:46.0911 4584 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
19:27:46.0951 4584 NlaSvc - ok
19:27:46.0991 4584 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
19:27:47.0031 4584 Npfs - ok
19:27:47.0091 4584 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
19:27:47.0131 4584 nsi - ok
19:27:47.0211 4584 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
19:27:47.0241 4584 nsiproxy - ok
19:27:47.0561 4584 Ntfs (356698a13c4630d5b31c37378d469196) C:\Windows\system32\drivers\Ntfs.sys
19:27:47.0621 4584 Ntfs - ok
19:27:47.0851 4584 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
19:27:47.0881 4584 Null - ok
19:27:47.0941 4584 nvraid (3e38712941e9bb4ddbee00affe3fed3d) C:\Windows\system32\DRIVERS\nvraid.sys
19:27:47.0951 4584 nvraid - ok
19:27:47.0991 4584 nvstor (477dc4d6deb99be37084c9ac6d013da1) C:\Windows\system32\DRIVERS\nvstor.sys
19:27:48.0001 4584 nvstor - ok
19:27:48.0061 4584 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
19:27:48.0081 4584 nv_agp - ok
19:27:48.0151 4584 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
19:27:48.0161 4584 ohci1394 - ok
19:27:48.0501 4584 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
19:27:48.0511 4584 p2pimsvc - ok
19:27:48.0651 4584 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
19:27:48.0661 4584 p2psvc - ok
19:27:48.0761 4584 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
19:27:48.0771 4584 Parport - ok
19:27:48.0831 4584 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys
19:27:48.0841 4584 partmgr - ok
19:27:48.0941 4584 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
19:27:48.0961 4584 PcaSvc - ok
19:27:49.0071 4584 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
19:27:49.0081 4584 pci - ok
19:27:49.0151 4584 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
19:27:49.0161 4584 pciide - ok
19:27:49.0201 4584 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
19:27:49.0211 4584 pcmcia - ok
19:27:49.0251 4584 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
19:27:49.0261 4584 pcw - ok
19:27:49.0491 4584 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
19:27:49.0561 4584 PEAUTH - ok
19:27:49.0811 4584 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
19:27:49.0831 4584 PerfHost - ok
19:27:51.0191 4584 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
19:27:51.0271 4584 pla - ok
19:27:51.0431 4584 PlugPlay (23157d583244400e1d7fbaee2e4b31b7) C:\Windows\system32\umpnpmgr.dll
19:27:51.0471 4584 PlugPlay - ok
19:27:51.0521 4584 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
19:27:51.0531 4584 PNRPAutoReg - ok
19:27:51.0621 4584 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
19:27:51.0641 4584 PNRPsvc - ok
19:27:51.0751 4584 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
19:27:51.0801 4584 PolicyAgent - ok
19:27:51.0841 4584 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
19:27:51.0881 4584 Power - ok
19:27:52.0014 4584 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
19:27:52.0054 4584 PptpMiniport - ok
19:27:52.0114 4584 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
19:27:52.0124 4584 Processor - ok
19:27:52.0224 4584 ProfSvc (f381975e1f4346de875cb07339ce8d3a) C:\Windows\system32\profsvc.dll
19:27:52.0264 4584 ProfSvc - ok
19:27:52.0324 4584 ProtectedStorage (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
19:27:52.0334 4584 ProtectedStorage - ok
19:27:52.0514 4584 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
19:27:52.0544 4584 Psched - ok
19:27:52.0934 4584 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
19:27:53.0024 4584 ql2300 - ok
19:27:53.0284 4584 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
19:27:53.0304 4584 ql40xx - ok
19:27:53.0374 4584 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
19:27:53.0414 4584 QWAVE - ok
19:27:53.0454 4584 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
19:27:53.0464 4584 QWAVEdrv - ok
19:27:53.0504 4584 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
19:27:53.0694 4584 RasAcd - ok
19:27:53.0964 4584 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
19:27:53.0994 4584 RasAgileVpn - ok
19:27:54.0174 4584 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
19:27:54.0204 4584 RasAuto - ok
19:27:54.0344 4584 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
19:27:54.0394 4584 Rasl2tp - ok
19:27:54.0654 4584 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
19:27:54.0694 4584 RasMan - ok
19:27:54.0854 4584 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
19:27:54.0894 4584 RasPppoe - ok
19:27:54.0994 4584 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
19:27:55.0044 4584 RasSstp - ok
19:27:55.0264 4584 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
19:27:55.0304 4584 rdbss - ok
19:27:55.0394 4584 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
19:27:55.0414 4584 rdpbus - ok
19:27:55.0434 4584 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
19:27:55.0474 4584 RDPCDD - ok
19:27:55.0524 4584 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
19:27:55.0554 4584 RDPENCDD - ok
19:27:55.0604 4584 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
19:27:55.0634 4584 RDPREFMP - ok
19:27:55.0724 4584 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\Windows\system32\drivers\RDPWD.sys
19:27:55.0764 4584 RDPWD - ok
19:27:55.0914 4584 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
19:27:55.0924 4584 rdyboost - ok
19:27:55.0984 4584 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
19:27:56.0014 4584 RemoteAccess - ok
19:27:56.0174 4584 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
19:27:56.0214 4584 RemoteRegistry - ok
19:27:56.0304 4584 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
19:27:56.0344 4584 RpcEptMapper - ok
19:27:56.0394 4584 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
19:27:56.0404 4584 RpcLocator - ok
19:27:56.0754 4584 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
19:27:56.0794 4584 RpcSs - ok
19:27:56.0914 4584 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
19:27:56.0944 4584 rspndr - ok
19:27:57.0114 4584 RSUSBSTOR (3ceee53bbf8ba284ff44585cec0162fe) C:\Windows\system32\Drivers\RtsUStor.sys
19:27:57.0144 4584 RSUSBSTOR - ok
19:27:57.0314 4584 RTL8167 (777fc2c418465404e3d8a290dc247d24) C:\Windows\system32\DRIVERS\Rt64win7.sys
19:27:57.0384 4584 RTL8167 - ok
19:27:57.0464 4584 SamSs (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
19:27:57.0474 4584 SamSs - ok
19:27:58.0534 4584 SBAMSvc (bce943896289a91ad75cc5652620b1c6) C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe
19:27:58.0594 4584 SBAMSvc - ok
19:27:59.0044 4584 sbapifs (6e342316e72f4b6fa39c99e06373a1a3) C:\Windows\system32\DRIVERS\sbapifs.sys
19:27:59.0044 4584 sbapifs - ok
19:27:59.0234 4584 SbFw (19954328dda3d656f8a879b3a46ffed6) C:\Windows\system32\drivers\SbFw.sys
19:27:59.0244 4584 SbFw - ok
19:27:59.0344 4584 SBFWIMCL (513b3bfcd3c465b9820c2d05fa94e630) C:\Windows\system32\DRIVERS\sbfwim.sys
19:27:59.0354 4584 SBFWIMCL - ok
19:27:59.0384 4584 SBFWIMCLMP (513b3bfcd3c465b9820c2d05fa94e630) C:\Windows\system32\DRIVERS\SBFWIM.sys
19:27:59.0394 4584 SBFWIMCLMP - ok
19:27:59.0524 4584 sbhips (b671eef468d13016b9286f5835a06ae1) C:\Windows\system32\drivers\sbhips.sys
19:27:59.0534 4584 sbhips - ok
19:27:59.0624 4584 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
19:27:59.0624 4584 sbp2port - ok
19:27:59.0724 4584 SBRE (9aceb2a2362fc87a3825963e61ba9076) C:\Windows\system32\drivers\SBREdrv.sys
19:27:59.0724 4584 SBRE - ok
19:27:59.0824 4584 sbwtis (eab54adcceca64b2f38cd859fb494895) C:\Windows\system32\DRIVERS\sbwtis.sys
19:27:59.0834 4584 sbwtis - ok
19:27:59.0974 4584 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
19:28:00.0014 4584 SCardSvr - ok
19:28:00.0064 4584 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
19:28:00.0094 4584 scfilter - ok
19:28:00.0354 4584 Schedule (ec56b171f85c7e855e7b0588ac503eea) C:\Windows\system32\schedsvc.dll
19:28:00.0404 4584 Schedule - ok
19:28:00.0444 4584 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
19:28:00.0484 4584 SCPolicySvc - ok
19:28:00.0554 4584 sdbus (54e47ad086782d3ae9417c155cdceb9b) C:\Windows\system32\DRIVERS\sdbus.sys
19:28:00.0574 4584 sdbus - ok
19:28:00.0644 4584 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
19:28:00.0664 4584 SDRSVC - ok
19:28:00.0704 4584 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
19:28:00.0744 4584 secdrv - ok
19:28:00.0754 4584 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
19:28:00.0794 4584 seclogon - ok
19:28:00.0844 4584 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
19:28:00.0874 4584 SENS - ok
19:28:00.0924 4584 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
19:28:00.0944 4584 SensrSvc - ok
19:28:00.0984 4584 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
19:28:00.0994 4584 Serenum - ok
19:28:01.0044 4584 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
19:28:01.0054 4584 Serial - ok
19:28:01.0104 4584 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
19:28:01.0124 4584 sermouse - ok
19:28:01.0164 4584 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
19:28:01.0204 4584 SessionEnv - ok
19:28:01.0234 4584 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
19:28:01.0254 4584 sffdisk - ok
19:28:01.0304 4584 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
19:28:01.0314 4584 sffp_mmc - ok
19:28:01.0334 4584 sffp_sd (5588b8c6193eb1522490c122eb94dffa) C:\Windows\system32\DRIVERS\sffp_sd.sys
19:28:01.0354 4584 sffp_sd - ok
19:28:01.0394 4584 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
19:28:01.0414 4584 sfloppy - ok
19:28:01.0714 4584 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
19:28:01.0734 4584 ShellHWDetection - ok
19:28:01.0774 4584 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:28:01.0784 4584 SiSRaid2 - ok
19:28:01.0884 4584 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
19:28:01.0894 4584 SiSRaid4 - ok
19:28:02.0144 4584 SkypeUpdate (579ba0a911ff5ea70cb604cd3b744b0a) C:\Program Files (x86)\Skype\Updater\Updater.exe
19:28:02.0154 4584 SkypeUpdate - ok
19:28:02.0214 4584 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
19:28:02.0254 4584 Smb - ok
19:28:02.0354 4584 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
19:28:02.0364 4584 SNMPTRAP - ok
19:28:02.0414 4584 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
19:28:02.0434 4584 spldr - ok
19:28:02.0694 4584 Spooler (89e8550c5862999fcf482ea562b0e98e) C:\Windows\System32\spoolsv.exe
19:28:02.0714 4584 Spooler - ok
19:28:03.0794 4584 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
19:28:03.0854 4584 sppsvc - ok
19:28:04.0204 4584 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
19:28:04.0244 4584 sppuinotify - ok
19:28:04.0444 4584 srv (ec8f67289105bf270498095f14963464) C:\Windows\system32\DRIVERS\srv.sys
19:28:04.0494 4584 srv - ok
19:28:04.0544 4584 srv2 (f773d2ed090b7baa1c1a034f3ca476c8) C:\Windows\system32\DRIVERS\srv2.sys
19:28:04.0584 4584 srv2 - ok
19:28:04.0764 4584 SrvHsfHDA (0c4540311e11664b245a263e1154cef8) C:\Windows\system32\DRIVERS\VSTAZL6.SYS
19:28:04.0784 4584 SrvHsfHDA - ok
19:28:05.0094 4584 SrvHsfV92 (02071d207a9858fbe3a48cbfd59c4a04) C:\Windows\system32\DRIVERS\VSTDPV6.SYS
19:28:05.0134 4584 SrvHsfV92 - ok
19:28:05.0724 4584 SrvHsfWinac (18e40c245dbfaf36fd0134a7ef2df396) C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
19:28:05.0784 4584 SrvHsfWinac - ok
19:28:05.0894 4584 srvnet (26e84d3649019c3244622e654dfcd75b) C:\Windows\system32\DRIVERS\srvnet.sys
19:28:05.0924 4584 srvnet - ok
19:28:06.0064 4584 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
19:28:06.0104 4584 SSDPSRV - ok
19:28:06.0144 4584 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
19:28:06.0174 4584 SstpSvc - ok
19:28:06.0654 4584 STacSV (7f30633a5aec81140dbc6daaaebd0cbe) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_471277d5d45019ea\STacSV64.exe
19:28:06.0664 4584 STacSV - ok
19:28:06.0834 4584 Steam Client Service - ok
19:28:06.0894 4584 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
19:28:06.0904 4584 stexstor - ok
19:28:07.0224 4584 STHDA (f991751c2477257bbcedb364a0f449b4) C:\Windows\system32\DRIVERS\stwrt64.sys
19:28:07.0274 4584 STHDA - ok
19:28:07.0514 4584 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
19:28:07.0534 4584 stisvc - ok
19:28:07.0614 4584 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
19:28:07.0624 4584 swenum - ok
19:28:08.0094 4584 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
19:28:08.0134 4584 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
19:28:08.0134 4584 SwitchBoard - detected UnsignedFile.Multi.Generic (1)
19:28:08.0274 4584 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
19:28:08.0334 4584 swprv - ok
19:28:08.0584 4584 SynTP (7369d6268e21481a8dcb8e94063c47b1) C:\Windows\system32\DRIVERS\SynTP.sys
19:28:08.0594 4584 SynTP - ok
19:28:09.0814 4584 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
19:28:09.0884 4584 SysMain - ok
19:28:10.0184 4584 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
19:28:10.0204 4584 TabletInputService - ok
19:28:10.0354 4584 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
19:28:10.0404 4584 TapiSrv - ok
19:28:10.0494 4584 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
19:28:10.0524 4584 TBS - ok
19:28:11.0974 4584 Tcpip (912107716bab424c7870e8e6af5e07e1) C:\Windows\system32\drivers\tcpip.sys
19:28:12.0044 4584 Tcpip - ok
19:28:13.0174 4584 TCPIP6 (912107716bab424c7870e8e6af5e07e1) C:\Windows\system32\DRIVERS\tcpip.sys
19:28:13.0214 4584 TCPIP6 - ok
19:28:13.0504 4584 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
19:28:13.0544 4584 tcpipreg - ok
19:28:13.0594 4584 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
19:28:13.0644 4584 TDPIPE - ok
19:28:13.0694 4584 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
19:28:13.0734 4584 TDTCP - ok
19:28:13.0854 4584 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
19:28:13.0924 4584 tdx - ok
19:28:13.0984 4584 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
19:28:13.0984 4584 TermDD - ok
19:28:14.0234 4584 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
19:28:14.0304 4584 TermService - ok
19:28:14.0394 4584 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
19:28:14.0414 4584 Themes - ok
19:28:14.0494 4584 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
19:28:14.0534 4584 THREADORDER - ok
19:28:14.0574 4584 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
19:28:14.0614 4584 TrkWks - ok
19:28:14.0814 4584 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
19:28:14.0844 4584 TrustedInstaller - ok
19:28:14.0954 4584 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
19:28:14.0994 4584 tssecsrv - ok
19:28:15.0114 4584 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
19:28:15.0164 4584 tunnel - ok
19:28:15.0244 4584 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
19:28:15.0264 4584 uagp35 - ok
19:28:15.0574 4584 udfs (c06e6f4679ceb8f430b90a51d76d8d3c) C:\Windows\system32\DRIVERS\udfs.sys
19:28:15.0594 4584 udfs - ok
19:28:15.0684 4584 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
19:28:15.0694 4584 UI0Detect - ok
19:28:15.0784 4584 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
19:28:15.0794 4584 uliagpkx - ok
19:28:15.0894 4584 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
19:28:15.0904 4584 umbus - ok
19:28:15.0944 4584 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
19:28:15.0954 4584 UmPass - ok
19:28:16.0204 4584 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
19:28:16.0254 4584 upnphost - ok
19:28:16.0444 4584 usbaudio (77b01bc848298223a95d4ec23e1785a1) C:\Windows\system32\drivers\usbaudio.sys
19:28:16.0474 4584 usbaudio - ok
19:28:16.0634 4584 usbccgp (b26afb54a534d634523c4fb66765b026) C:\Windows\system32\DRIVERS\usbccgp.sys
19:28:16.0684 4584 usbccgp - ok
19:28:16.0744 4584 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
19:28:16.0764 4584 usbcir - ok
19:28:16.0794 4584 usbehci (cb490987a7f6928a04bb838e3bd8a936) C:\Windows\system32\DRIVERS\usbehci.sys
19:28:16.0814 4584 usbehci - ok
19:28:16.0914 4584 usbfilter (2c780746dc44a28fe67004dc58173f05) C:\Windows\system32\DRIVERS\usbfilter.sys
19:28:16.0924 4584 usbfilter - ok
19:28:17.0214 4584 usbhub (18124ef0a881a00ee222d02a3ee30270) C:\Windows\system32\DRIVERS\usbhub.sys
19:28:17.0224 4584 usbhub - ok
19:28:17.0274 4584 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\DRIVERS\usbohci.sys
19:28:17.0294 4584 usbohci - ok
19:28:17.0364 4584 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
19:28:17.0374 4584 usbprint - ok
19:28:17.0404 4584 USBSTOR (080d3820da6c046be82fc8b45a893e83) C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:28:17.0434 4584 USBSTOR - ok
19:28:17.0474 4584 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\DRIVERS\usbuhci.sys
19:28:17.0494 4584 usbuhci - ok
19:28:17.0694 4584 usbvideo (d501e12614b00a3252073101d6a1a74b) C:\Windows\system32\Drivers\usbvideo.sys
19:28:17.0714 4584 usbvideo - ok
19:28:17.0784 4584 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
19:28:17.0824 4584 UxSms - ok
19:28:17.0884 4584 VaultSvc (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
19:28:17.0894 4584 VaultSvc - ok
19:28:17.0984 4584 VClone (fd911873c0bb6945fa38c16e9a2b58f9) C:\Windows\system32\DRIVERS\VClone.sys
19:28:18.0024 4584 VClone - ok
19:28:18.0714 4584 vcsFPService (8159f83408230045f731c6c7799a7d44) C:\Windows\system32\vcsFPService.exe
19:28:18.0764 4584 vcsFPService - ok
19:28:19.0064 4584 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
19:28:19.0074 4584 vdrvroot - ok
19:28:19.0554 4584 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
19:28:19.0624 4584 vds - ok
19:28:19.0704 4584 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
19:28:19.0724 4584 vga - ok
19:28:19.0774 4584 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
19:28:19.0804 4584 VgaSave - ok
19:28:20.0074 4584 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
19:28:20.0084 4584 vhdmp - ok
19:28:20.0164 4584 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
19:28:20.0174 4584 viaide - ok
19:28:20.0224 4584 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
19:28:20.0244 4584 volmgr - ok
19:28:20.0434 4584 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
19:28:20.0444 4584 volmgrx - ok
19:28:20.0574 4584 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
19:28:20.0584 4584 volsnap - ok
19:28:20.0754 4584 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
19:28:20.0774 4584 vsmraid - ok
19:28:22.0134 4584 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
19:28:22.0204 4584 VSS - ok
19:28:22.0854 4584 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
19:28:22.0884 4584 vwifibus - ok
19:28:22.0994 4584 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
19:28:23.0024 4584 vwififlt - ok
19:28:23.0124 4584 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
19:28:23.0134 4584 vwifimp - ok
19:28:23.0244 4584 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
19:28:23.0294 4584 W32Time - ok
19:28:23.0344 4584 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
19:28:23.0354 4584 WacomPen - ok
19:28:23.0494 4584 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
19:28:23.0534 4584 WANARP - ok
19:28:23.0554 4584 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
19:28:23.0594 4584 Wanarpv6 - ok
19:28:24.0454 4584 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
19:28:24.0514 4584 wbengine - ok
19:28:24.0844 4584 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
19:28:24.0894 4584 WbioSrvc - ok
19:28:24.0974 4584 wcncsvc (8321c2ca3b62b61b293cda3451984468) C:\Windows\System32\wcncsvc.dll
19:28:25.0024 4584 wcncsvc - ok
19:28:25.0054 4584 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
19:28:25.0064 4584 WcsPlugInService - ok
19:28:25.0164 4584 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
19:28:25.0174 4584 Wd - ok
19:28:25.0834 4584 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
19:28:25.0884 4584 Wdf01000 - ok
19:28:25.0964 4584 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
19:28:25.0974 4584 WdiServiceHost - ok
19:28:25.0984 4584 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
19:28:26.0004 4584 WdiSystemHost - ok
19:28:26.0254 4584 WebClient (8a438cbb8c032a0c798b0c642ffbe572) C:\Windows\System32\webclnt.dll
19:28:26.0314 4584 WebClient - ok
19:28:26.0494 4584 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
19:28:26.0534 4584 Wecsvc - ok
19:28:26.0654 4584 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
19:28:26.0684 4584 wercplsupport - ok
19:28:26.0864 4584 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
19:28:26.0914 4584 WerSvc - ok
19:28:27.0084 4584 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
19:28:27.0114 4584 WfpLwf - ok
19:28:27.0154 4584 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
19:28:27.0174 4584 WIMMount - ok
19:28:27.0404 4584 WinDefend - ok
19:28:27.0414 4584 WinHttpAutoProxySvc - ok
19:28:27.0674 4584 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
19:28:27.0714 4584 Winmgmt - ok
19:28:28.0334 4584 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
19:28:28.0434 4584 WinRM - ok
19:28:28.0794 4584 WinUSB (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUSB.sys
19:28:28.0814 4584 WinUSB - ok
19:28:29.0124 4584 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
19:28:29.0154 4584 Wlansvc - ok
19:28:30.0134 4584 wlidsvc (98f138897ef4246381d197cb81846d62) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:28:30.0174 4584 wlidsvc - ok
19:28:30.0724 4584 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
19:28:30.0734 4584 WmiAcpi - ok
19:28:31.0004 4584 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
19:28:31.0014 4584 wmiApSrv - ok
19:28:31.0104 4584 WMPNetworkSvc - ok
19:28:31.0134 4584 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
19:28:31.0154 4584 WPCSvc - ok
19:28:31.0284 4584 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
19:28:31.0364 4584 WPDBusEnum - ok
19:28:31.0424 4584 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
19:28:31.0454 4584 ws2ifsl - ok
19:28:31.0654 4584 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
19:28:31.0664 4584 wscsvc - ok
19:28:31.0674 4584 WSearch - ok
19:28:32.0804 4584 wuauserv (38340204a2d0228f1e87740fc5e554a7) C:\Windows\system32\wuaueng.dll
19:28:32.0874 4584 wuauserv - ok
19:28:33.0354 4584 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
19:28:33.0394 4584 WudfPf - ok
19:28:33.0504 4584 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
19:28:33.0554 4584 WUDFRd - ok
19:28:33.0584 4584 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
19:28:33.0614 4584 wudfsvc - ok
19:28:33.0714 4584 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
19:28:33.0734 4584 WwanSvc - ok
19:28:34.0044 4584 xnacc (4a5ce13408945e525503b5f73d29b9c5) C:\Windows\system32\DRIVERS\xnacc.sys
19:28:34.0084 4584 xnacc - ok
19:28:34.0244 4584 yukonw7 (b3eeacf62445e24fbb2cd4b0fb4db026) C:\Windows\system32\DRIVERS\yk62x64.sys
19:28:34.0264 4584 yukonw7 - ok
19:28:34.0524 4584 {55662437-DA8C-40c0-AADA-2C816A897A49} (74983addca2d9618512c088d856d6615) c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl
19:28:34.0544 4584 {55662437-DA8C-40c0-AADA-2C816A897A49} - ok
19:28:34.0574 4584 MBR (0x1B8) (b653c05a1de4a0664e8b33fcbdaae69a) \Device\Harddisk0\DR0
19:28:36.0314 4584 \Device\Harddisk0\DR0 - ok
19:28:36.0314 4584 MBR (0x1B8) (671b81004fdd1588fa9ed1331c9ceca9) \Device\Harddisk1\DR1
19:28:36.0674 4584 \Device\Harddisk1\DR1 - ok
19:28:36.0704 4584 Boot (0x1200) (ba5e2c9ffb5dc8935f61002677d38e37) \Device\Harddisk0\DR0\Partition0
19:28:36.0704 4584 \Device\Harddisk0\DR0\Partition0 - ok
19:28:36.0714 4584 Boot (0x1200) (b70d8c348656ecbad83f7907e748b063) \Device\Harddisk0\DR0\Partition1
19:28:36.0734 4584 \Device\Harddisk0\DR0\Partition1 - ok
19:28:36.0774 4584 Boot (0x1200) (4dc558c5dea467a8610dfb5ec4577ac3) \Device\Harddisk0\DR0\Partition2
19:28:36.0794 4584 \Device\Harddisk0\DR0\Partition2 - ok
19:28:36.0834 4584 Boot (0x1200) (e635a27096c79ff05555c6c930d2a2d0) \Device\Harddisk0\DR0\Partition3
19:28:36.0834 4584 \Device\Harddisk0\DR0\Partition3 - ok
19:28:36.0834 4584 Boot (0x1200) (69c51e0a0701083db06aa5f418657284) \Device\Harddisk1\DR1\Partition0
19:28:36.0844 4584 \Device\Harddisk1\DR1\Partition0 - ok
19:28:36.0844 4584 ============================================================
19:28:36.0844 4584 Scan finished
19:28:36.0844 4584 ============================================================
19:28:36.0854 4988 Detected object count: 5
19:28:36.0854 4988 Actual detected object count: 5
19:28:45.0874 4988 epmntdrv ( UnsignedFile.Multi.Generic ) - skipped by user
19:28:45.0874 4988 epmntdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:28:45.0874 4988 EuGdiDrv ( UnsignedFile.Multi.Generic ) - skipped by user
19:28:45.0874 4988 EuGdiDrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:28:45.0874 4988 HPWMISVC ( UnsignedFile.Multi.Generic ) - skipped by user
19:28:45.0874 4988 HPWMISVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:28:45.0884 4988 LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
19:28:45.0884 4988 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:28:45.0884 4988 SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user
19:28:45.0884 4988 SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:29:35.0816 1204 Deinitialize success


aswMBR

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-15 19:18:16
-----------------------------
19:18:16.108 OS Version: Windows x64 6.1.7600
19:18:16.108 Number of processors: 3 586 0x503
19:18:16.108 ComputerName: HOME-PC UserName: home
19:18:17.918 Initialize success
19:18:28.277 AVAST engine defs: 12071501
19:18:35.359 The log file has been saved successfully to "C:\Users\home\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-15 19:18:16
-----------------------------
19:18:16.108 OS Version: Windows x64 6.1.7600
19:18:16.108 Number of processors: 3 586 0x503
19:18:16.108 ComputerName: HOME-PC UserName: home
19:18:17.918 Initialize success
19:18:28.277 AVAST engine defs: 12071501
19:18:35.359 The log file has been saved successfully to "C:\Users\home\Desktop\aswMBR.txt"
19:18:44.001 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
19:18:44.001 Disk 0 Vendor: Hitachi_HTS725032A9A364 PC3OC72E Size: 305245MB BusType: 11
19:18:44.017 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP2T0L0-2
19:18:44.017 Disk 1 Vendor: Hitachi_HTS725032A9A364 PC3OC72E Size: 305245MB BusType: 11
19:18:44.017 Disk 0 MBR read successfully
19:18:44.017 Disk 0 MBR scan
19:18:44.032 Disk 0 unknown MBR code
19:18:44.032 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 199 MB offset 2048
19:18:44.048 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 282465 MB offset 409600
19:18:44.079 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 22476 MB offset 578897920
19:18:44.110 Disk 0 Partition 4 00 0C FAT32 LBA MSDOS5.0 101 MB offset 624928768
19:18:44.157 Disk 0 scanning C:\Windows\system32\drivers
19:18:51.973 Service scanning
19:19:16.070 Modules scanning
19:19:16.078 Disk 0 trace - called modules:
19:19:16.098 ntoskrnl.exe CLASSPNP.SYS disk.sys hpdskflt.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
19:19:16.103 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80046df060]
19:19:16.108 3 CLASSPNP.SYS[fffff880018f043f] -> nt!IofCallDriver -> [0xfffffa80046de040]
19:19:16.115 5 hpdskflt.sys[fffff88001454289] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa800464c060]
19:19:17.715 AVAST engine scan C:\Windows
19:19:20.570 AVAST engine scan C:\Windows\system32
19:21:25.211 File: C:\Windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
19:21:26.981 File: C:\Windows\assembly\GAC_64\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
19:22:37.523 AVAST engine scan C:\Windows\system32\drivers
19:22:46.523 AVAST engine scan C:\Users\home
19:23:04.355 File: C:\Users\home\AppData\Local\LightScribe\jabfpbig.dll **INFECTED** Win32:Downloader-PLY [Trj]
19:32:28.882 File: C:\Users\home\AppData\Local\{4a98c63c-8f09-d587-b854-c90f2a3e03a3}\U\00000004.@ **INFECTED** Win32:Malware-gen
19:37:05.342 AVAST engine scan C:\ProgramData
19:40:52.918 Scan finished successfully
19:41:04.058 Disk 0 MBR has been saved successfully to "C:\Users\home\Desktop\MBR.dat"
19:41:04.068 The log file has been saved successfully to "C:\Users\home\Desktop\aswMBR.txt"


Eset Scan
C:\Qoobox\Quarantine\C\Users\home\AppData\Local\AMD\Adobe\sbcynul.dll.vir a variant of Win32/Kryptik.AIGL trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Windows\Installer\{4a98c63c-8f09-d587-b854-c90f2a3e03a3}\U\80000000.@.vir Win64/Sirefef.AE trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Windows\Installer\{4a98c63c-8f09-d587-b854-c90f2a3e03a3}\U\80000032.@.vir a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\Qoobox\Quarantine\C\Windows\Installer\{4a98c63c-8f09-d587-b854-c90f2a3e03a3}\U\80000064.@.vir Win64/Sirefef.AN trojan cleaned by deleting - quarantined
C:\Users\home\AppData\Local\AMD\Adobe\sbcynul.dll.vir a variant of Win32/Kryptik.AIGL trojan cleaned by deleting - quarantined
C:\Users\home\AppData\Local\AMD\Adobe\sbcynul111.dll a variant of Win32/Kryptik.AIGL trojan cleaned by deleting - quarantined
C:\Users\home\AppData\Local\Temp\ICReinstall\cnet2_Pazera_Free_PSP_Video_Converter_zip[1].exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
C:\Users\home\AppData\Local\{4a98c63c-8f09-d587-b854-c90f2a3e03a3}\U\00000008.@ Win64/Agent.BA trojan cleaned by deleting - quarantined
C:\Users\home\AppData\Local\{4a98c63c-8f09-d587-b854-c90f2a3e03a3}\U\80000000.@ Win64/Sirefef.AE trojan cleaned by deleting - quarantined
C:\Users\home\AppData\Local\{4a98c63c-8f09-d587-b854-c90f2a3e03a3}\U\80000032.@ a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\Users\home\AppData\Roaming\Mozilla\Firefox\Profiles\6mdtteph.default\extensions\aejlnvnaly@aejlnvnaly.org.xpi JS/Redirector.NCA trojan deleted - quarantined
C:\Windows\Installer\{4a98c63c-8f09-d587-b854-c90f2a3e03a3}\U\00000008.@ Win64/Agent.BA trojan cleaned by deleting - quarantined
C:\Windows\Installer\{4a98c63c-8f09-d587-b854-c90f2a3e03a3}\U\80000000.@ Win64/Sirefef.AE trojan cleaned by deleting - quarantined
C:\Windows\Installer\{4a98c63c-8f09-d587-b854-c90f2a3e03a3}\U\80000032.@ a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
Operating memory multiple threats

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:34 AM

Posted 15 July 2012 - 09:57 PM

We need advanced tools here

Read the guide here on preparing logs

http://www.bleepingcomputer.com/forums/topic34773.html

and create a topic here

http://www.bleepingcomputer.com/forums/forum22.html

Good luck




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users