Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

MBAM and SAS found many, many issues


  • Please log in to reply
5 replies to this topic

#1 bomber1712

bomber1712

  • Members
  • 464 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Wisconsin, USA
  • Local time:07:17 PM

Posted 04 August 2012 - 05:42 PM

I am helping a friend with his computer. It is an HP Pavillion laptop running Win Vista Home Premuim 32 bit. T5450 processor with 3 GB RAM.

It was running very slow, so I ran SAS and MBAM. For some reason, I cannot find the SAS log, but it found over 800 instances of malware. I have posted the MBAM results below. In addition, I ran TDSSKiller and MBR Check. TDSSKiller found one threat. The file that it found suspicious is "c:\program files\common files\akamai/netsession_win_4f7fccd.dll". It was flagged as a Suspicious file "Akamai (HiddenFile.multi.generic)" and MBR Checker found that the MBR is not default.

It seems to be running pretty good at this point, but I am looking for someone to suggest additional scans to assure that I have gotten all of the infections off.

Thanks in advance.

MBAM LOG:

Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.04.04

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 8.0.6001.19272
bigalenz :: ALENZ-PC [administrator]

8/4/2012 8:55:06 AM
mbam-log-2012-08-04 (08-55-06).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 233065
Time elapsed: 9 minute(s), 40 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 34
HKCR\AppID\{F4406238-983A-4845-9053-F1D0007FD135} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKCR\CLSID\{D37D6C1A-7BA4-47F4-9BF2-75031E257DF6} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKCR\CodecBHO.XMLDOMDocumentEventsSink.1 (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKCR\CodecBHO.XMLDOMDocumentEventsSink (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{00A6FAF1-072E-44CF-8957-5838F569A31D} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{07B18EA1-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{07B18EA9-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EAB-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{07B18EAB-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{9FF05104-B030-46FC-94B8-81276E4E27DF} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9FF05104-B030-46FC-94B8-81276E4E27DF} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59C7FC09-1C83-4648-B3E6-003D2BBC7481} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68AF847F-6E91-45dd-9B68-D6A12C30E5D7} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9170B96C-28D4-4626-8358-27E6CAEEF907} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D1A71FA0-FF48-48dd-9B6D-7A13A3E42127} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DDB1968E-EAD6-40fd-8DAE-FF14757F60C7} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F138D901-86F0-4383-99B6-9CDD406036DA} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{25560540-9571-4D7B-9389-0F166788785A} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3E720452-B472-4954-B7AA-33069EB53906} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{63D0ED2C-B45B-4458-8B3B-60C69BBBD83C} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7473D294-B7BB-4f24-AE82-7E2CE94BB6A9} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{98D9753D-D73B-42D5-8C85-4469CDA897AB} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E79DFBCA-5697-4fbd-94E5-5B2A9C7C1612} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKCR\CodecBHO.CodecPlugin (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKCR\CodecBHO.CodecPlugin.1 (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKCR\AppID\CodecBHO.DLL (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\RichVideoCodec (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Office\Outlook\Addins\MyWebSearch.OutlookAddin (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Office\Word\Addins\MyWebSearch.OutlookAddin (PUP.MyWebSearch) -> Quarantined and deleted successfully.

Registry Values Detected: 3
HKCU\SOFTWARE\Microsoft\Internet Explorer\MenuExt\&Search| (Adware.Hotbar) -> Data: http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZRman000 -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows Media\WMSDK\Sources|f3PopularScreensavers (PUP.MyWebSearch) -> Data: C:\Program Files\MyWebSearch\bar\1.bin\F3SCRCTR.DLL -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform|FunWebProducts (PUP.MyWebSearch) -> Data: -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

BC AdBot (Login to Remove)

 


#2 Chris Appleyard

Chris Appleyard

  • Members
  • 61 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:United Kingdom
  • Local time:12:17 AM

Posted 04 August 2012 - 07:09 PM

SAS doesn't seem legit, the 34 keys you found.. some are viruses but a lot of PUPs (potentially unwanted programs) witch may not even be a virus, MBAM seems to have got rid of the threats and put them in the chest, can I suggest you install Avast 7 for him/her? its a really good program for preventing him/her on getting viruses. and please update the Internet Explorer it is out of date.. as well.. go to Windows update and install everything what is listed.... Optional, Recommended and Important. they are really needed for your friend.
Thanks a lot for reading,
Chris A.

Edit : my bad SAS stands for Super Anti Spyware.. sorry lol

Edited by Chris Appleyard, 04 August 2012 - 07:11 PM.

"Education is the most powerful weapon which you can use to change the world"
-Nelson Mandela

 

 

Windows 7 Home Premium | AMD Athlon II 250 Dual Core CPU | 4.0 RAM Kingston | Nvidia GT 520 | Elite Group MCP61M-M3 Motherboard | COMODO Firewall | Avast! Free | Google Chrome.


#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:17 PM

Posted 07 August 2012 - 08:27 AM

Hello, please run RKill then rerun MBAM,TDSS and post the logs.

Also post the MBR log.

Run RKill....


Download and Run RKill
  • Please download RKill by Grinler from one of the 4 links below and save it to your desktop.

    Link 1
    Link 2
    Link 3
    Link 4

  • Before we begin, you should disable your anti-malware softwares you have installed so they do not interfere RKill running as some anti-malware softwares detect RKill as malicious. Please refer to this page if you are not sure how.
  • Double-click on Rkill on your desktop to run it. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • If nothing happens or if the tool does not run, please let me know in your next reply

Do not reboot your computer after running rkill as the malware programs will start again. Or if rebooting is required run it again.


If you continue having problems running rkill.com, you can download iExplore.exe or eXplorer.exe, which are renamed copies of rkill.com, and try them instead.


Now TDSS and MBAM

Thanks..


Fake or rogue software and FakeAlert Trojans are illegitimate security applications that are presented as valid, for monetary gain. This scam involves the distribution or aggressive promotion of a Trojan disguised as legitimate security software.

Edited by boopme, 07 August 2012 - 09:23 AM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 bomber1712

bomber1712
  • Topic Starter

  • Members
  • 464 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Wisconsin, USA
  • Local time:07:17 PM

Posted 07 August 2012 - 07:37 PM

Thanks Boopme!

Edit: MBR Check Log:

MBRCheck, version 1.2.3
© 2010, AD

Command-line:
Windows Version: Windows Vista Home Premium Edition
Windows Information: Service Pack 2 (build 6002), 32-bit
Base Board Manufacturer: Quanta
BIOS Manufacturer: Hewlett-Packard
System Manufacturer: Hewlett-Packard
System Product Name: HP Pavilion dv6700 Notebook PC
Logical Drives Mask: 0x0000001c

Kernel Drivers (total 158):
0x82646000 \SystemRoot\system32\ntkrnlpa.exe
0x82613000 \SystemRoot\system32\hal.dll
0x8040E000 \SystemRoot\system32\kdcom.dll
0x80415000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x80485000 \SystemRoot\system32\PSHED.dll
0x80496000 \SystemRoot\system32\BOOTVID.dll
0x8049E000 \SystemRoot\system32\CLFS.SYS
0x804DF000 \SystemRoot\system32\CI.dll
0x80609000 \SystemRoot\system32\drivers\Wdf01000.sys
0x8067A000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x80688000 \SystemRoot\system32\drivers\acpi.sys
0x806CE000 \SystemRoot\system32\drivers\WMILIB.SYS
0x806D7000 \SystemRoot\system32\drivers\msisadrv.sys
0x806DF000 \SystemRoot\system32\drivers\pci.sys
0x80706000 \SystemRoot\System32\drivers\partmgr.sys
0x80716000 \SystemRoot\system32\DRIVERS\compbatt.sys
0x80719000 \SystemRoot\system32\DRIVERS\BATTC.SYS
0x80723000 \SystemRoot\system32\drivers\volmgr.sys
0x80732000 \SystemRoot\System32\drivers\volmgrx.sys
0x8077C000 \SystemRoot\system32\drivers\intelide.sys
0x80783000 \SystemRoot\system32\drivers\PCIIDEX.SYS
0x80791000 \SystemRoot\System32\drivers\mountmgr.sys
0x8A608000 \SystemRoot\system32\DRIVERS\iaStor.sys
0x8A709000 \SystemRoot\system32\drivers\atapi.sys
0x8A711000 \SystemRoot\system32\drivers\ataport.SYS
0x8A72F000 \SystemRoot\system32\drivers\msahci.sys
0x8A738000 \SystemRoot\system32\drivers\fltmgr.sys
0x8A76A000 \SystemRoot\system32\drivers\fileinfo.sys
0x8A77A000 \SystemRoot\System32\Drivers\PxHelp20.sys
0x8A783000 \SystemRoot\System32\Drivers\ksecdd.sys
0x8A802000 \SystemRoot\system32\drivers\ndis.sys
0x8A90D000 \SystemRoot\system32\drivers\msrpc.sys
0x8A938000 \SystemRoot\system32\drivers\NETIO.SYS
0x8AA02000 \SystemRoot\System32\drivers\tcpip.sys
0x8AAEC000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x8AC04000 \SystemRoot\System32\Drivers\Ntfs.sys
0x8AD14000 \SystemRoot\system32\drivers\volsnap.sys
0x8AD4D000 \SystemRoot\System32\Drivers\spldr.sys
0x8AD55000 \SystemRoot\system32\DRIVERS\sbp2port.sys
0x8AD6B000 \SystemRoot\System32\Drivers\mup.sys
0x8AD7A000 \SystemRoot\System32\drivers\ecache.sys
0x8ADA1000 \SystemRoot\system32\drivers\disk.sys
0x8ADB2000 \SystemRoot\system32\drivers\CLASSPNP.SYS
0x8ADD3000 \SystemRoot\system32\drivers\crcdisk.sys
0x8F106000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x8F111000 \SystemRoot\system32\DRIVERS\tunmp.sys
0x8F11A000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0x8F11E000 \SystemRoot\system32\DRIVERS\wmiacpi.sys
0x8F127000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x8F204000 \SystemRoot\system32\DRIVERS\nvlddmkm.sys
0x8FCF7000 \SystemRoot\System32\Drivers\nvBridge.kmd
0x8FCF9000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x8FD99000 \SystemRoot\System32\drivers\watchdog.sys
0x8FDA5000 \SystemRoot\system32\DRIVERS\usbuhci.sys
0x8FDB0000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x8FDEE000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x8F136000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x90009000 \SystemRoot\system32\DRIVERS\NETw5v32.sys
0x90392000 \SystemRoot\system32\DRIVERS\Rtlh86.sys
0x903AE000 \SystemRoot\system32\DRIVERS\ohci1394.sys
0x903BE000 \SystemRoot\system32\DRIVERS\1394BUS.SYS
0x903CC000 \SystemRoot\system32\DRIVERS\sdbus.sys
0x903E6000 \SystemRoot\system32\DRIVERS\rimmptsk.sys
0x8F1C3000 \SystemRoot\system32\DRIVERS\rimsptsk.sys
0x8AB07000 \SystemRoot\system32\DRIVERS\rixdptsk.sys
0x903F7000 \SystemRoot\system32\DRIVERS\HpqRemHid.sys
0x8F1D7000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
0x903F9000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0x8F1E7000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x90000000 \SystemRoot\system32\DRIVERS\HpqKbFiltr.sys
0x8ADE9000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x8AB59000 \SystemRoot\system32\DRIVERS\SynTP.sys
0x90005000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x8ADF4000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x8ABA1000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x8F1FA000 \SystemRoot\System32\Drivers\GEARAspiWDM.sys
0x8ABB9000 \SystemRoot\system32\DRIVERS\msiscsi.sys
0x8A973000 \SystemRoot\system32\DRIVERS\storport.sys
0x8ABE8000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x8A9B4000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x8ABF3000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x8A9CB000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x8A9EE000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x807A1000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x807B5000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x807CA000 \SystemRoot\system32\DRIVERS\termdd.sys
0x90007000 \SystemRoot\system32\DRIVERS\swenum.sys
0x805BF000 \SystemRoot\system32\DRIVERS\ks.sys
0x8A7F5000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x807DA000 \SystemRoot\system32\DRIVERS\umbus.sys
0x90608000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x9063D000 \SystemRoot\system32\DRIVERS\kbdhid.sys
0x90646000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x91404000 \SystemRoot\system32\drivers\RTKVHDA.sys
0x91645000 \SystemRoot\system32\drivers\portcls.sys
0x91672000 \SystemRoot\system32\drivers\drmk.sys
0x91697000 \SystemRoot\system32\DRIVERS\smserial.sys
0x917A3000 \SystemRoot\system32\drivers\modem.sys
0x917B0000 \SystemRoot\system32\drivers\MODEMCSA.sys
0x917BA000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0x917C3000 \SystemRoot\System32\Drivers\Null.SYS
0x917CA000 \SystemRoot\System32\Drivers\Beep.SYS
0x917D1000 \SystemRoot\System32\drivers\vga.sys
0x917DD000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x90657000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x9065F000 \SystemRoot\system32\drivers\rdpencdd.sys
0x90667000 \SystemRoot\System32\Drivers\Msfs.SYS
0x90672000 \SystemRoot\System32\Drivers\Npfs.SYS
0x90680000 \SystemRoot\System32\DRIVERS\rasacd.sys
0x90689000 \SystemRoot\system32\DRIVERS\tdx.sys
0x9069F000 \SystemRoot\system32\DRIVERS\smb.sys
0x906B3000 \SystemRoot\system32\drivers\afd.sys
0x906FB000 \SystemRoot\System32\DRIVERS\netbt.sys
0x9072D000 \SystemRoot\system32\DRIVERS\pacer.sys
0x90743000 \SystemRoot\system32\DRIVERS\netbios.sys
0x90751000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x90764000 \SystemRoot\system32\DRIVERS\tmtdi.sys
0x90779000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x907B5000 \SystemRoot\system32\drivers\nsiproxy.sys
0x907BF000 \SystemRoot\System32\Drivers\dfsc.sys
0x907D6000 \SystemRoot\System32\Drivers\crashdmp.sys
0x8F000000 \SystemRoot\System32\Drivers\dump_iaStor.sys
0x907E3000 \SystemRoot\system32\DRIVERS\usbccgp.sys
0x9B40A000 \SystemRoot\System32\Drivers\usbvideo.sys
0x96EC0000 \SystemRoot\System32\win32k.sys
0x9B42B000 \SystemRoot\System32\drivers\Dxapi.sys
0x9B435000 \SystemRoot\system32\DRIVERS\monitor.sys
0x970E0000 \SystemRoot\System32\TSDDD.dll
0x97100000 \SystemRoot\System32\cdd.dll
0x9B444000 \SystemRoot\system32\drivers\luafv.sys
0x9B467000 \SystemRoot\system32\drivers\spsys.sys
0x9B517000 \SystemRoot\system32\DRIVERS\elagopro.sys
0x9B51E000 \SystemRoot\system32\DRIVERS\lltdio.sys
0x9B52E000 \SystemRoot\system32\DRIVERS\nwifi.sys
0x9B558000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0x9B562000 \SystemRoot\system32\DRIVERS\rspndr.sys
0x9B575000 \SystemRoot\system32\drivers\HTTP.sys
0x9B5E2000 \SystemRoot\System32\DRIVERS\srvnet.sys
0x807E7000 \SystemRoot\system32\DRIVERS\bowser.sys
0x805E9000 \SystemRoot\System32\drivers\mpsdrv.sys
0xA0E0A000 \SystemRoot\system32\drivers\mrxdav.sys
0xA0E2B000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0xA0E4A000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0xA0E83000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0xA0E9B000 \SystemRoot\System32\DRIVERS\srv2.sys
0xA0EC3000 \SystemRoot\System32\DRIVERS\srv.sys
0xA0F2A000 \SystemRoot\system32\DRIVERS\tmcomm.sys
0xA0F5E000 \SystemRoot\system32\DRIVERS\tmevtmgr.sys
0xA0F70000 \SystemRoot\system32\DRIVERS\tmactmon.sys
0xA0F8D000 \SystemRoot\system32\DRIVERS\elaunidr.sys
0xA2006000 \SystemRoot\system32\drivers\peauth.sys
0xA20E4000 \SystemRoot\System32\Drivers\secdrv.SYS
0xA20EE000 \SystemRoot\System32\drivers\tcpipreg.sys
0xA20FA000 \SystemRoot\system32\drivers\tdtcp.sys
0xA2105000 \SystemRoot\System32\DRIVERS\tssecsrv.sys
0xA2111000 \SystemRoot\System32\Drivers\RDPWD.SYS
0xA2146000 \SystemRoot\system32\DRIVERS\cdfs.sys
0x776F0000 \WINDOWS\System32\ntdll.dll

Processes (total 90):
0 System Idle Process
4 System
504 C:\WINDOWS\System32\smss.exe
640 C:\WINDOWS\System32\csrss.exe
692 C:\WINDOWS\System32\wininit.exe
704 C:\WINDOWS\System32\csrss.exe
736 C:\WINDOWS\System32\services.exe
748 C:\WINDOWS\System32\lsass.exe
760 C:\WINDOWS\System32\lsm.exe
800 C:\WINDOWS\System32\winlogon.exe
940 C:\WINDOWS\System32\svchost.exe
984 C:\WINDOWS\System32\nvvsvc.exe
1020 C:\WINDOWS\System32\svchost.exe
1120 C:\WINDOWS\System32\svchost.exe
1144 C:\WINDOWS\System32\svchost.exe
1156 C:\WINDOWS\System32\svchost.exe
1248 C:\WINDOWS\System32\audiodg.exe
1268 C:\WINDOWS\System32\svchost.exe
1284 C:\WINDOWS\System32\SLsvc.exe
1328 C:\WINDOWS\System32\svchost.exe
1448 C:\WINDOWS\System32\svchost.exe
1620 C:\WINDOWS\System32\spoolsv.exe
1652 C:\WINDOWS\System32\svchost.exe
1868 C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiWatchDog.exe
1956 C:\WINDOWS\System32\svchost.exe
1980 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
2020 C:\Program Files\Bonjour\mDNSResponder.exe
236 C:\Program Files\Common Files\LightScribe\LSSrvc.exe
928 C:\WINDOWS\System32\svchost.exe
1072 C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe
1948 C:\Program Files\CyberLink\Shared Files\RichVideo.exe
124 C:\WINDOWS\System32\svchost.exe
1312 C:\WINDOWS\System32\svchost.exe
2032 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
2068 C:\WINDOWS\System32\SearchIndexer.exe
2104 C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
2152 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
2600 C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe
2620 C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
2632 C:\WINDOWS\System32\nvvsvc.exe
3180 C:\WINDOWS\System32\dwm.exe
3288 C:\WINDOWS\System32\taskeng.exe
3428 C:\WINDOWS\System32\taskeng.exe
3700 C:\Program Files\Synaptics\SynTP\SynTPStart.exe
3708 C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
3716 C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
3732 C:\Program Files\HP\QuickPlay\QPService.exe
3744 C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
3752 C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe
3776 C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe
3796 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
3804 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
3816 C:\WINDOWS\System32\ico.exe
3828 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
3848 C:\Program Files\HP\HP Software Update\hpwuschd2.exe
3880 C:\Program Files\HTC\HTC Sync\Application Launcher\Application Launcher.exe
4008 C:\Program Files\iTunes\iTunesHelper.exe
4052 C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
4064 C:\WINDOWS\System32\wbem\WmiPrvSE.exe
2064 C:\Program Files\Common Files\Java\Java Update\jusched.exe
2140 C:\WINDOWS\ehome\ehtray.exe
1200 C:\Users\bigalenz\AppData\Local\Akamai\netsession_win.exe
1348 C:\Program Files\Common Files\Apple\Internet Services\ubd.exe
2700 C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
2904 C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
2968 C:\WINDOWS\ehome\ehmsas.exe
2184 C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
3664 C:\Program Files\Windows Media Player\wmpnetwk.exe
2336 C:\Users\bigalenz\AppData\Local\Akamai\netsession_win.exe
4320 C:\Program Files\iPod\bin\iPodService.exe
4492 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
4688 C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe
5104 C:\Program Files\Common Files\Teleca Shared\logger.exe
5328 C:\Program Files\Common Files\Teleca Shared\Generic.exe
5348 C:\Program Files\Common Files\Teleca Shared\CapabilityManager.exe
5480 C:\Program Files\HTC\HTC Sync\ClientInitiatedStarter\ClientInitiatedStarter.exe
5496 C:\Program Files\HTC\HTC Sync\Mobile Phone Monitor\epmworker.exe
5588 C:\Program Files\HTC\HTC Sync\Mobile Phone Monitor\HTCVBTServer.exe
5604 C:\Program Files\HTC\HTC Sync\Mobile Phone Monitor\FsynSrvStarter.exe
5932 C:\WINDOWS\System32\svchost.exe
5208 C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
4980 C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
5476 C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
5024 C:\WINDOWS\explorer.exe
5408 C:\Program Files\Windows Media Player\wmpnscfg.exe
4748 C:\WINDOWS\System32\wbem\unsecapp.exe
5460 C:\WINDOWS\System32\SearchProtocolHost.exe
5168 C:\WINDOWS\System32\SearchFilterHost.exe
4384 C:\WINDOWS\System32\SearchProtocolHost.exe
3316 C:\Users\bigalenz\Desktop\MBRCheck.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`00007e00 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000037`37cec200 (NTFS)

PhysicalDrive0 Model Number: FUJITSUMHY2250BH, Rev: 890B

Size Device Name MBR Status
--------------------------------------------
232 GB \\.\PhysicalDrive0 Unknown MBR code
SHA1: D94F393960D1CD66C2071F2D7260A5196DF105AC


Found non-standard or infected MBR.
Enter 'Y' and hit ENTER for more options, or 'N' to exit:
Options:
[1] Dump the MBR of a physical disk to file.
[2] Restore the MBR of a physical disk with a standard boot code.
[3] Exit.

Enter your choice: Enter the physical disk number to dump (0-99, -1 to exit): 0Dumping \\.\PhysicalDisk0...
Enter filename to dump to: c:\MBRCheckDumped successfully!

Enter the physical disk number to dump (0-99, -1 to exit): 0Dumping \\.\PhysicalDisk0...
Enter filename to dump to: c:\MBRCheck.txtDumped successfully!

Enter the physical disk number to dump (0-99, -1 to exit): -1

Done!

Between the time I posted and the time you replied, I had run a full scan in MBAM that returned clean. So, I ran a Quick Scan tonight (edit: ran full scan, as well, nothing found):

Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.07.09

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
bigalenz :: ANTHONYLENZ-PC [administrator]

8/7/2012 7:24:09 PM
mbam-log-2012-08-07 (19-24-09).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 251487
Time elapsed: 4 minute(s), 53 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)


I think I have also figured out the TDSS file as one that belongs to AutoCAD 2010, but I am not sure:

19:31:03.0966 4172 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
19:31:04.0450 4172 ============================================================
19:31:04.0450 4172 Current date / time: 2012/08/07 19:31:04.0450
19:31:04.0450 4172 SystemInfo:
19:31:04.0450 4172
19:31:04.0450 4172 OS Version: 6.0.6002 ServicePack: 2.0
19:31:04.0450 4172 Product type: Workstation
19:31:04.0450 4172 ComputerName: ANTHONYLENZ-PC
19:31:04.0450 4172 UserName: bigalenz
19:31:04.0450 4172 Windows directory: C:\Windows
19:31:04.0450 4172 System windows directory: C:\Windows
19:31:04.0450 4172 Processor architecture: Intel x86
19:31:04.0450 4172 Number of processors: 2
19:31:04.0450 4172 Page size: 0x1000
19:31:04.0450 4172 Boot type: Normal boot
19:31:04.0450 4172 ============================================================
19:31:05.0058 4172 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
19:31:05.0058 4172 ============================================================
19:31:05.0058 4172 \Device\Harddisk0\DR0:
19:31:05.0058 4172 MBR partitions:
19:31:05.0058 4172 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1B9BE722
19:31:05.0058 4172 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1B9BE761, BlocksNum 0x1805E20
19:31:05.0058 4172 ============================================================
19:31:05.0089 4172 C: <-> \Device\Harddisk0\DR0\Partition0
19:31:05.0136 4172 D: <-> \Device\Harddisk0\DR0\Partition1
19:31:05.0136 4172 ============================================================
19:31:05.0136 4172 Initialize success
19:31:05.0136 4172 ============================================================
19:31:06.0493 3680 ============================================================
19:31:06.0493 3680 Scan started
19:31:06.0493 3680 Mode: Manual;
19:31:06.0493 3680 ============================================================
19:31:06.0961 3680 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
19:31:06.0961 3680 ACPI - ok
19:31:07.0086 3680 AdobeFlashPlayerUpdateSvc (f19c98ad81d2c0e1bbfd8153d2c80ee8) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:31:07.0086 3680 AdobeFlashPlayerUpdateSvc - ok
19:31:07.0180 3680 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
19:31:07.0180 3680 adp94xx - ok
19:31:07.0211 3680 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
19:31:07.0211 3680 adpahci - ok
19:31:07.0242 3680 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
19:31:07.0242 3680 adpu160m - ok
19:31:07.0258 3680 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
19:31:07.0273 3680 adpu320 - ok
19:31:07.0304 3680 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
19:31:07.0304 3680 AeLookupSvc - ok
19:31:07.0351 3680 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
19:31:07.0367 3680 AFD - ok
19:31:07.0398 3680 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
19:31:07.0398 3680 agp440 - ok
19:31:07.0414 3680 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
19:31:07.0414 3680 aic78xx - ok
19:31:07.0819 3680 Akamai (29584f02a43e427c4227e3b1d9ff1b22) c:\program files\common files\akamai/netsession_win_4f7fccd.dll
19:31:07.0819 3680 Suspicious file (Hidden): c:\program files\common files\akamai/netsession_win_4f7fccd.dll. md5: 29584f02a43e427c4227e3b1d9ff1b22
19:31:07.0835 3680 Akamai ( HiddenFile.Multi.Generic ) - warning
19:31:07.0835 3680 Akamai - detected HiddenFile.Multi.Generic (1)
19:31:07.0975 3680 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
19:31:07.0975 3680 ALG - ok
19:31:08.0022 3680 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
19:31:08.0022 3680 aliide - ok
19:31:08.0053 3680 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
19:31:08.0053 3680 amdagp - ok
19:31:08.0069 3680 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
19:31:08.0069 3680 amdide - ok
19:31:08.0100 3680 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
19:31:08.0100 3680 AmdK7 - ok
19:31:08.0116 3680 AmdK8 (0ca0071da4315b00fc1328ca86b425da) C:\Windows\system32\drivers\amdk8.sys
19:31:08.0116 3680 AmdK8 - ok
19:31:08.0256 3680 Amsp (7b6425745b2ad8354fe8ad2dce30a9e7) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
19:31:08.0256 3680 Amsp - ok
19:31:08.0303 3680 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
19:31:08.0303 3680 Appinfo - ok
19:31:08.0396 3680 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:31:08.0412 3680 Apple Mobile Device - ok
19:31:08.0443 3680 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
19:31:08.0443 3680 arc - ok
19:31:08.0474 3680 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
19:31:08.0474 3680 arcsas - ok
19:31:08.0521 3680 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
19:31:08.0521 3680 AsyncMac - ok
19:31:08.0537 3680 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
19:31:08.0552 3680 atapi - ok
19:31:08.0599 3680 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
19:31:08.0599 3680 AudioEndpointBuilder - ok
19:31:08.0599 3680 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
19:31:08.0615 3680 Audiosrv - ok
19:31:08.0677 3680 BCM43XV (cf6a67c90951e3e763d2135dede44b85) C:\Windows\system32\DRIVERS\bcmwl6.sys
19:31:08.0677 3680 BCM43XV - ok
19:31:08.0708 3680 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
19:31:08.0708 3680 Beep - ok
19:31:08.0771 3680 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
19:31:08.0786 3680 BFE - ok
19:31:08.0864 3680 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
19:31:08.0896 3680 BITS - ok
19:31:08.0911 3680 blbdrive - ok
19:31:09.0130 3680 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
19:31:09.0145 3680 Bonjour Service - ok
19:31:09.0192 3680 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
19:31:09.0192 3680 bowser - ok
19:31:09.0239 3680 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
19:31:09.0239 3680 BrFiltLo - ok
19:31:09.0254 3680 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
19:31:09.0254 3680 BrFiltUp - ok
19:31:09.0286 3680 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
19:31:09.0301 3680 Browser - ok
19:31:09.0317 3680 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
19:31:09.0317 3680 Brserid - ok
19:31:09.0348 3680 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
19:31:09.0348 3680 BrSerWdm - ok
19:31:09.0364 3680 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
19:31:09.0364 3680 BrUsbMdm - ok
19:31:09.0364 3680 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
19:31:09.0364 3680 BrUsbSer - ok
19:31:09.0379 3680 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
19:31:09.0379 3680 BTHMODEM - ok
19:31:09.0426 3680 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
19:31:09.0426 3680 cdfs - ok
19:31:09.0442 3680 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
19:31:09.0442 3680 cdrom - ok
19:31:09.0488 3680 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
19:31:09.0488 3680 CertPropSvc - ok
19:31:09.0520 3680 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
19:31:09.0520 3680 circlass - ok
19:31:09.0566 3680 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
19:31:09.0566 3680 CLFS - ok
19:31:09.0629 3680 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:31:09.0644 3680 clr_optimization_v2.0.50727_32 - ok
19:31:09.0722 3680 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:31:09.0722 3680 clr_optimization_v4.0.30319_32 - ok
19:31:09.0769 3680 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
19:31:09.0769 3680 CmBatt - ok
19:31:09.0800 3680 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
19:31:09.0800 3680 cmdide - ok
19:31:09.0910 3680 Com4Qlb (d8774ace03b46c9b01a49818055f9ad4) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe
19:31:09.0910 3680 Com4Qlb - ok
19:31:09.0941 3680 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
19:31:09.0941 3680 Compbatt - ok
19:31:09.0941 3680 COMSysApp - ok
19:31:09.0956 3680 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
19:31:09.0956 3680 crcdisk - ok
19:31:09.0988 3680 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
19:31:09.0988 3680 Crusoe - ok
19:31:10.0066 3680 CryptSvc (75c6a297e364014840b48eccd7525e30) C:\Windows\system32\cryptsvc.dll
19:31:10.0066 3680 CryptSvc - ok
19:31:10.0144 3680 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
19:31:10.0144 3680 DcomLaunch - ok
19:31:10.0175 3680 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
19:31:10.0175 3680 DfsC - ok
19:31:10.0331 3680 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
19:31:10.0378 3680 DFSR - ok
19:31:10.0534 3680 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
19:31:10.0534 3680 Dhcp - ok
19:31:10.0596 3680 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
19:31:10.0596 3680 disk - ok
19:31:10.0674 3680 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
19:31:10.0674 3680 Dnscache - ok
19:31:10.0721 3680 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
19:31:10.0721 3680 dot3svc - ok
19:31:10.0752 3680 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
19:31:10.0768 3680 DPS - ok
19:31:10.0783 3680 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
19:31:10.0783 3680 drmkaud - ok
19:31:10.0877 3680 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
19:31:10.0877 3680 DXGKrnl - ok
19:31:10.0924 3680 E100B (c0b00e55cf82d122d25983c7a6a53dea) C:\Windows\system32\DRIVERS\e100b325.sys
19:31:10.0924 3680 E100B - ok
19:31:10.0939 3680 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
19:31:10.0939 3680 E1G60 - ok
19:31:11.0002 3680 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
19:31:11.0002 3680 EapHost - ok
19:31:11.0048 3680 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
19:31:11.0048 3680 Ecache - ok
19:31:11.0111 3680 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
19:31:11.0111 3680 ehRecvr - ok
19:31:11.0142 3680 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
19:31:11.0142 3680 ehSched - ok
19:31:11.0158 3680 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
19:31:11.0158 3680 ehstart - ok
19:31:11.0173 3680 elagopro (7ec42ec12a4bac14bcca99fb06f2d125) C:\Windows\system32\DRIVERS\elagopro.sys
19:31:11.0173 3680 elagopro - ok
19:31:11.0204 3680 elaunidr (dfeabb7cfffadea4a912ab95bdc3177a) C:\Windows\system32\DRIVERS\elaunidr.sys
19:31:11.0204 3680 elaunidr - ok
19:31:11.0251 3680 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
19:31:11.0267 3680 elxstor - ok
19:31:11.0329 3680 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
19:31:11.0329 3680 EMDMgmt - ok
19:31:11.0376 3680 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
19:31:11.0376 3680 EventSystem - ok
19:31:11.0423 3680 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
19:31:11.0423 3680 exfat - ok
19:31:11.0470 3680 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
19:31:11.0470 3680 fastfat - ok
19:31:11.0501 3680 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
19:31:11.0501 3680 fdc - ok
19:31:11.0532 3680 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
19:31:11.0532 3680 fdPHost - ok
19:31:11.0579 3680 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
19:31:11.0579 3680 FDResPub - ok
19:31:11.0626 3680 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
19:31:11.0626 3680 FileInfo - ok
19:31:11.0657 3680 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
19:31:11.0657 3680 Filetrace - ok
19:31:11.0813 3680 FLEXnet Licensing Service (f76d04f7413b07daa029f6520b64b4e8) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
19:31:11.0844 3680 FLEXnet Licensing Service - ok
19:31:11.0875 3680 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
19:31:11.0875 3680 flpydisk - ok
19:31:11.0906 3680 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
19:31:11.0906 3680 FltMgr - ok
19:31:12.0016 3680 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
19:31:12.0016 3680 FontCache - ok
19:31:12.0094 3680 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
19:31:12.0094 3680 FontCache3.0.0.0 - ok
19:31:12.0109 3680 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
19:31:12.0109 3680 Fs_Rec - ok
19:31:12.0140 3680 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
19:31:12.0140 3680 gagp30kx - ok
19:31:12.0218 3680 GameConsoleService (67cf4c2e7477b9a01df07e38af293414) C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe
19:31:12.0218 3680 GameConsoleService - ok
19:31:12.0250 3680 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\Drivers\GEARAspiWDM.sys
19:31:12.0250 3680 GEARAspiWDM - ok
19:31:12.0296 3680 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
19:31:12.0312 3680 gpsvc - ok
19:31:12.0390 3680 GT72NDISIPXP (9eb33545bc9b1ca0c9b9e6d780ce0d27) C:\Windows\system32\DRIVERS\Gt51Ip.sys
19:31:12.0390 3680 GT72NDISIPXP - ok
19:31:12.0437 3680 GT72UBUS (687a4b740f14c2dff6dd7b848f50f0a6) C:\Windows\system32\DRIVERS\gt72ubus.sys
19:31:12.0437 3680 GT72UBUS - ok
19:31:12.0499 3680 GTPTSER (346ddaefa04e49ad804ee12d4baa0ed3) C:\Windows\system32\DRIVERS\gtptser.sys
19:31:12.0499 3680 GTPTSER - ok
19:31:12.0593 3680 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
19:31:12.0593 3680 gupdate - ok
19:31:12.0624 3680 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
19:31:12.0624 3680 gupdatem - ok
19:31:12.0655 3680 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
19:31:12.0655 3680 HdAudAddService - ok
19:31:12.0718 3680 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
19:31:12.0718 3680 HDAudBus - ok
19:31:12.0733 3680 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
19:31:12.0733 3680 HidBth - ok
19:31:12.0749 3680 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
19:31:12.0749 3680 HidIr - ok
19:31:12.0780 3680 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
19:31:12.0780 3680 hidserv - ok
19:31:12.0796 3680 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
19:31:12.0796 3680 HidUsb - ok
19:31:12.0827 3680 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
19:31:12.0827 3680 hkmsvc - ok
19:31:12.0952 3680 HP Health Check Service (89f9e1984c1cd9e5f4fe39642d886e11) c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
19:31:12.0952 3680 HP Health Check Service - ok
19:31:12.0998 3680 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
19:31:12.0998 3680 HpCISSs - ok
19:31:13.0030 3680 HpqKbFiltr (35956140e686d53bf676cf0c778880fc) C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
19:31:13.0030 3680 HpqKbFiltr - ok
19:31:13.0030 3680 HpqRemHid (115c0933b3ed51dfbec4449348c8065b) C:\Windows\system32\DRIVERS\HpqRemHid.sys
19:31:13.0030 3680 HpqRemHid - ok
19:31:13.0092 3680 hpqwmiex (04c1dcbb226c6ae647b794833ce3ceb6) C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
19:31:13.0092 3680 hpqwmiex - ok
19:31:13.0139 3680 HSFHWAZL (46d67209550973257601a533e2ac5785) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
19:31:13.0139 3680 HSFHWAZL - ok
19:31:13.0201 3680 HSF_DPV (ec36f1d542ed4252390d446bf6d4dfd0) C:\Windows\system32\DRIVERS\VSTDPV3.SYS
19:31:13.0217 3680 HSF_DPV - ok
19:31:13.0264 3680 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
19:31:13.0264 3680 HTTP - ok
19:31:13.0279 3680 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
19:31:13.0279 3680 i2omp - ok
19:31:13.0342 3680 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
19:31:13.0342 3680 i8042prt - ok
19:31:13.0451 3680 ialm (496db78e6a0c4c44023d9a92b4a7ac31) C:\Windows\system32\DRIVERS\igdkmd32.sys
19:31:13.0466 3680 ialm - ok
19:31:13.0747 3680 iaStor (f989555f1662581032cce1578a8ff28e) C:\Windows\system32\DRIVERS\iaStor.sys
19:31:13.0747 3680 iaStor - ok
19:31:13.0841 3680 IAStorDataMgrSvc (117ff657e0d9bbd61b5c3e71e63d3919) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
19:31:13.0841 3680 IAStorDataMgrSvc - ok
19:31:13.0888 3680 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
19:31:13.0888 3680 iaStorV - ok
19:31:13.0981 3680 IDriverT (6f95324909b502e2651442c1548ab12f) C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
19:31:13.0981 3680 IDriverT - ok
19:31:14.0122 3680 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:31:14.0153 3680 idsvc - ok
19:31:14.0278 3680 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
19:31:14.0278 3680 iirsp - ok
19:31:14.0340 3680 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
19:31:14.0356 3680 IKEEXT - ok
19:31:14.0636 3680 IntcAzAudAddService (1f10ed6f98c57efb4e7fb9972b2dbb71) C:\Windows\system32\drivers\RTKVHDA.sys
19:31:14.0668 3680 IntcAzAudAddService - ok
19:31:14.0839 3680 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
19:31:14.0839 3680 intelide - ok
19:31:14.0870 3680 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
19:31:14.0870 3680 intelppm - ok
19:31:14.0933 3680 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
19:31:14.0933 3680 IPBusEnum - ok
19:31:14.0964 3680 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:31:14.0964 3680 IpFilterDriver - ok
19:31:15.0011 3680 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
19:31:15.0026 3680 iphlpsvc - ok
19:31:15.0026 3680 IpInIp - ok
19:31:15.0073 3680 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
19:31:15.0073 3680 IPMIDRV - ok
19:31:15.0120 3680 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
19:31:15.0120 3680 IPNAT - ok
19:31:15.0260 3680 iPod Service (e6be7a41a28d8f2db174957454d32448) C:\Program Files\iPod\bin\iPodService.exe
19:31:15.0276 3680 iPod Service - ok
19:31:15.0307 3680 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
19:31:15.0307 3680 IRENUM - ok
19:31:15.0338 3680 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
19:31:15.0338 3680 isapnp - ok
19:31:15.0370 3680 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
19:31:15.0370 3680 iScsiPrt - ok
19:31:15.0401 3680 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
19:31:15.0401 3680 iteatapi - ok
19:31:15.0416 3680 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
19:31:15.0416 3680 iteraid - ok
19:31:15.0448 3680 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
19:31:15.0448 3680 kbdclass - ok
19:31:15.0479 3680 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
19:31:15.0479 3680 kbdhid - ok
19:31:15.0526 3680 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
19:31:15.0526 3680 KeyIso - ok
19:31:15.0604 3680 KSecDD (4a1445efa932a3baf5bdb02d7131ee20) C:\Windows\system32\Drivers\ksecdd.sys
19:31:15.0619 3680 KSecDD - ok
19:31:15.0666 3680 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
19:31:15.0666 3680 KtmRm - ok
19:31:15.0728 3680 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
19:31:15.0728 3680 LanmanServer - ok
19:31:15.0760 3680 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
19:31:15.0775 3680 LanmanWorkstation - ok
19:31:16.0072 3680 LBTServ (3af6b73a3ad1fc37c5933441f66ceb91) C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
19:31:16.0072 3680 LBTServ - ok
19:31:16.0228 3680 LHidFilt (7f9c7b28cf1c859e1c42619eea946dc8) C:\Windows\system32\DRIVERS\LHidFilt.Sys
19:31:16.0228 3680 LHidFilt - ok
19:31:16.0337 3680 LightScribeService (53710476495886d9961be46983a6a33f) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
19:31:16.0337 3680 LightScribeService - ok
19:31:16.0399 3680 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
19:31:16.0399 3680 lltdio - ok
19:31:16.0664 3680 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
19:31:16.0680 3680 lltdsvc - ok
19:31:16.0711 3680 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
19:31:16.0711 3680 lmhosts - ok
19:31:16.0742 3680 LMouFilt (ab33792a87285344f43b5ce23421bab0) C:\Windows\system32\DRIVERS\LMouFilt.Sys
19:31:16.0742 3680 LMouFilt - ok
19:31:16.0758 3680 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
19:31:16.0774 3680 LSI_FC - ok
19:31:16.0805 3680 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
19:31:16.0820 3680 LSI_SAS - ok
19:31:16.0852 3680 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
19:31:16.0852 3680 LSI_SCSI - ok
19:31:17.0023 3680 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
19:31:17.0023 3680 luafv - ok
19:31:17.0148 3680 MBAMSwissArmy (0db7527db188c7d967a37bb51bbf3963) C:\Windows\system32\drivers\mbamswissarmy.sys
19:31:17.0148 3680 MBAMSwissArmy - ok
19:31:17.0195 3680 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
19:31:17.0195 3680 Mcx2Svc - ok
19:31:17.0242 3680 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
19:31:17.0242 3680 megasas - ok
19:31:17.0273 3680 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
19:31:17.0273 3680 MMCSS - ok
19:31:17.0304 3680 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
19:31:17.0304 3680 Modem - ok
19:31:17.0382 3680 MODEMCSA (cbb59c41f19efea1a000793e08070a62) C:\Windows\system32\drivers\MODEMCSA.sys
19:31:17.0382 3680 MODEMCSA - ok
19:31:17.0413 3680 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
19:31:17.0413 3680 monitor - ok
19:31:17.0476 3680 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
19:31:17.0476 3680 mouclass - ok
19:31:17.0522 3680 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
19:31:17.0522 3680 mouhid - ok
19:31:17.0554 3680 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
19:31:17.0569 3680 MountMgr - ok
19:31:17.0600 3680 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
19:31:17.0600 3680 mpio - ok
19:31:17.0632 3680 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
19:31:17.0632 3680 mpsdrv - ok
19:31:17.0678 3680 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
19:31:17.0694 3680 MpsSvc - ok
19:31:17.0741 3680 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
19:31:17.0741 3680 Mraid35x - ok
19:31:17.0772 3680 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
19:31:17.0772 3680 MRxDAV - ok
19:31:17.0803 3680 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
19:31:17.0803 3680 mrxsmb - ok
19:31:17.0834 3680 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:31:17.0834 3680 mrxsmb10 - ok
19:31:17.0850 3680 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:31:17.0850 3680 mrxsmb20 - ok
19:31:17.0866 3680 msahci (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys
19:31:17.0866 3680 msahci - ok
19:31:17.0881 3680 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
19:31:17.0881 3680 msdsm - ok
19:31:17.0928 3680 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
19:31:17.0928 3680 MSDTC - ok
19:31:17.0959 3680 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
19:31:17.0959 3680 Msfs - ok
19:31:17.0990 3680 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
19:31:17.0990 3680 msisadrv - ok
19:31:18.0022 3680 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
19:31:18.0022 3680 MSiSCSI - ok
19:31:18.0022 3680 msiserver - ok
19:31:18.0068 3680 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
19:31:18.0068 3680 MSKSSRV - ok
19:31:18.0115 3680 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
19:31:18.0115 3680 MSPCLOCK - ok
19:31:18.0146 3680 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
19:31:18.0146 3680 MSPQM - ok
19:31:18.0178 3680 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
19:31:18.0178 3680 MsRPC - ok
19:31:18.0193 3680 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
19:31:18.0209 3680 mssmbios - ok
19:31:18.0209 3680 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
19:31:18.0209 3680 MSTEE - ok
19:31:18.0240 3680 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
19:31:18.0240 3680 Mup - ok
19:31:18.0287 3680 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
19:31:18.0287 3680 napagent - ok
19:31:18.0334 3680 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
19:31:18.0349 3680 NativeWifiP - ok
19:31:18.0396 3680 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
19:31:18.0412 3680 NDIS - ok
19:31:18.0443 3680 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
19:31:18.0443 3680 NdisTapi - ok
19:31:18.0458 3680 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
19:31:18.0458 3680 Ndisuio - ok
19:31:18.0490 3680 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
19:31:18.0490 3680 NdisWan - ok
19:31:18.0521 3680 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
19:31:18.0521 3680 NDProxy - ok
19:31:18.0521 3680 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
19:31:18.0521 3680 NetBIOS - ok
19:31:18.0568 3680 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
19:31:18.0568 3680 netbt - ok
19:31:18.0599 3680 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
19:31:18.0614 3680 Netlogon - ok
19:31:18.0661 3680 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
19:31:18.0677 3680 Netman - ok
19:31:18.0708 3680 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
19:31:18.0724 3680 netprofm - ok
19:31:18.0786 3680 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:31:18.0802 3680 NetTcpPortSharing - ok
19:31:18.0958 3680 NETw4v32 (6522dd40a5f67ced020bd81b856613fb) C:\Windows\system32\DRIVERS\NETw4v32.sys
19:31:18.0973 3680 NETw4v32 - ok
19:31:19.0348 3680 NETw5v32 (8de67bd902095a13329fd82c85a1fa09) C:\Windows\system32\DRIVERS\NETw5v32.sys
19:31:19.0394 3680 NETw5v32 - ok
19:31:19.0472 3680 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
19:31:19.0472 3680 nfrd960 - ok
19:31:19.0519 3680 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
19:31:19.0519 3680 NlaSvc - ok
19:31:19.0566 3680 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
19:31:19.0566 3680 Npfs - ok
19:31:19.0582 3680 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
19:31:19.0582 3680 nsi - ok
19:31:19.0613 3680 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
19:31:19.0613 3680 nsiproxy - ok
19:31:19.0706 3680 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
19:31:19.0722 3680 Ntfs - ok
19:31:19.0738 3680 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
19:31:19.0738 3680 ntrigdigi - ok
19:31:19.0753 3680 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
19:31:19.0769 3680 Null - ok
19:31:20.0642 3680 nvlddmkm (afb33a823aabc112fc7bd62afbcdb0cd) C:\Windows\system32\DRIVERS\nvlddmkm.sys
19:31:20.0736 3680 nvlddmkm - ok
19:31:20.0892 3680 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
19:31:20.0892 3680 nvraid - ok
19:31:20.0923 3680 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
19:31:20.0923 3680 nvstor - ok
19:31:20.0986 3680 nvsvc (782945716ad010ac3d41758e8e52c735) C:\Windows\system32\nvvsvc.exe
19:31:21.0001 3680 nvsvc - ok
19:31:21.0157 3680 nvUpdatusService (a974e5c310b9b00894070ceb055d467f) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
19:31:21.0157 3680 nvUpdatusService - ok
19:31:21.0329 3680 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
19:31:21.0329 3680 nv_agp - ok
19:31:21.0329 3680 NwlnkFlt - ok
19:31:21.0344 3680 NwlnkFwd - ok
19:31:21.0422 3680 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:31:21.0454 3680 odserv - ok
19:31:21.0485 3680 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
19:31:21.0485 3680 ohci1394 - ok
19:31:21.0532 3680 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:31:21.0532 3680 ose - ok
19:31:21.0610 3680 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
19:31:21.0625 3680 p2pimsvc - ok
19:31:21.0641 3680 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
19:31:21.0641 3680 p2psvc - ok
19:31:21.0672 3680 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
19:31:21.0672 3680 Parport - ok
19:31:21.0719 3680 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
19:31:21.0719 3680 partmgr - ok
19:31:21.0734 3680 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
19:31:21.0734 3680 Parvdm - ok
19:31:21.0766 3680 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
19:31:21.0781 3680 PcaSvc - ok
19:31:21.0812 3680 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
19:31:21.0812 3680 pci - ok
19:31:21.0828 3680 pciide (3b1901e401473e03eb8c874271e50c26) C:\Windows\system32\drivers\pciide.sys
19:31:21.0844 3680 pciide - ok
19:31:21.0859 3680 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
19:31:21.0875 3680 pcmcia - ok
19:31:21.0937 3680 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
19:31:21.0953 3680 PEAUTH - ok
19:31:21.0968 3680 pelmouse (0196ae2adcd2eb13ff355da7f9d4518f) C:\Windows\system32\DRIVERS\pelmouse.sys
19:31:21.0984 3680 pelmouse - ok
19:31:21.0984 3680 pelusblf (bc672907c5429d8f6c95d7e0784deaa1) C:\Windows\system32\DRIVERS\pelusblf.sys
19:31:21.0984 3680 pelusblf - ok
19:31:22.0124 3680 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
19:31:22.0171 3680 pla - ok
19:31:22.0296 3680 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
19:31:22.0296 3680 PlugPlay - ok
19:31:22.0374 3680 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
19:31:22.0374 3680 PNRPAutoReg - ok
19:31:22.0390 3680 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
19:31:22.0405 3680 PNRPsvc - ok
19:31:22.0436 3680 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
19:31:22.0452 3680 PolicyAgent - ok
19:31:22.0499 3680 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
19:31:22.0499 3680 PptpMiniport - ok
19:31:22.0530 3680 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
19:31:22.0530 3680 Processor - ok
19:31:22.0561 3680 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
19:31:22.0561 3680 ProfSvc - ok
19:31:22.0624 3680 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
19:31:22.0624 3680 ProtectedStorage - ok
19:31:22.0655 3680 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
19:31:22.0655 3680 PSched - ok
19:31:22.0686 3680 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\Windows\system32\Drivers\PxHelp20.sys
19:31:22.0702 3680 PxHelp20 - ok
19:31:22.0780 3680 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
19:31:22.0780 3680 ql2300 - ok
19:31:22.0811 3680 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
19:31:22.0811 3680 ql40xx - ok
19:31:22.0951 3680 QPCapSvc (599ff0b96561ca4f0899fe7f1c4cce9a) C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe
19:31:22.0951 3680 QPCapSvc - ok
19:31:22.0967 3680 QPSched (8ff5cad74c3c5e692e1610e861609a3b) C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe
19:31:22.0967 3680 QPSched - ok
19:31:23.0029 3680 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
19:31:23.0029 3680 QWAVE - ok
19:31:23.0060 3680 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
19:31:23.0060 3680 QWAVEdrv - ok
19:31:23.0123 3680 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
19:31:23.0123 3680 RasAcd - ok
19:31:23.0154 3680 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
19:31:23.0154 3680 RasAuto - ok
19:31:23.0185 3680 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
19:31:23.0185 3680 Rasl2tp - ok
19:31:23.0232 3680 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
19:31:23.0232 3680 RasMan - ok
19:31:23.0263 3680 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
19:31:23.0263 3680 RasPppoe - ok
19:31:23.0294 3680 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
19:31:23.0294 3680 RasSstp - ok
19:31:23.0326 3680 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
19:31:23.0326 3680 rdbss - ok
19:31:23.0326 3680 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
19:31:23.0326 3680 RDPCDD - ok
19:31:23.0372 3680 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
19:31:23.0372 3680 rdpdr - ok
19:31:23.0372 3680 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
19:31:23.0372 3680 RDPENCDD - ok
19:31:23.0419 3680 RDPWD (c127ebd5afab31524662c48dfceb773a) C:\Windows\system32\drivers\RDPWD.sys
19:31:23.0419 3680 RDPWD - ok
19:31:23.0466 3680 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
19:31:23.0466 3680 RemoteAccess - ok
19:31:23.0497 3680 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
19:31:23.0497 3680 RemoteRegistry - ok
19:31:23.0747 3680 RichVideo (17e0bef5ca5c9ce52cc8082ac6ebc449) C:\Program Files\CyberLink\Shared Files\RichVideo.exe
19:31:23.0747 3680 RichVideo - ok
19:31:23.0809 3680 rimmptsk (df672613fbbcd58c38bb0bc2694bcfb0) C:\Windows\system32\DRIVERS\rimmptsk.sys
19:31:23.0809 3680 rimmptsk - ok
19:31:23.0840 3680 rimsptsk (9bfb54d3559f2ff7301271d29d383564) C:\Windows\system32\DRIVERS\rimsptsk.sys
19:31:23.0840 3680 rimsptsk - ok
19:31:23.0856 3680 RimUsb - ok
19:31:23.0887 3680 RimVSerPort (2c4fb2e9f039287767c384e46ee91030) C:\Windows\system32\DRIVERS\RimSerial.sys
19:31:23.0887 3680 RimVSerPort - ok
19:31:23.0950 3680 rismxdp (dcb87da83cc1010cbc9fc4dc9e395bbc) C:\Windows\system32\DRIVERS\rixdptsk.sys
19:31:23.0950 3680 rismxdp - ok
19:31:23.0996 3680 ROOTMODEM (75e8a6bfa7374aba833ae92bf41ae4e6) C:\Windows\system32\Drivers\RootMdm.sys
19:31:23.0996 3680 ROOTMODEM - ok
19:31:24.0199 3680 RoxLiveShare9 (31ea73c68bdd11137a97abc5dd17e628) C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe
19:31:24.0215 3680 RoxLiveShare9 - ok
19:31:24.0246 3680 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
19:31:24.0246 3680 RpcLocator - ok
19:31:24.0308 3680 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
19:31:24.0308 3680 RpcSs - ok
19:31:24.0386 3680 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
19:31:24.0402 3680 rspndr - ok
19:31:24.0449 3680 RTL8169 (9a929308a64183d3d9dccbb6df4badae) C:\Windows\system32\DRIVERS\Rtlh86.sys
19:31:24.0449 3680 RTL8169 - ok
19:31:24.0527 3680 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
19:31:24.0527 3680 SamSs - ok
19:31:24.0589 3680 sbp2port (37ca203f8ccf732cd272a27e55b268c4) C:\Windows\system32\DRIVERS\sbp2port.sys
19:31:24.0589 3680 sbp2port - ok
19:31:24.0636 3680 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
19:31:24.0636 3680 SCardSvr - ok
19:31:24.0745 3680 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
19:31:24.0745 3680 Schedule - ok
19:31:24.0808 3680 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
19:31:24.0808 3680 SCPolicySvc - ok
19:31:24.0854 3680 sdbus (8f36b54688c31eed4580129040c6a3d3) C:\Windows\system32\DRIVERS\sdbus.sys
19:31:24.0854 3680 sdbus - ok
19:31:24.0917 3680 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
19:31:24.0917 3680 SDRSVC - ok
19:31:24.0948 3680 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
19:31:24.0948 3680 secdrv - ok
19:31:24.0979 3680 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
19:31:24.0979 3680 seclogon - ok
19:31:25.0010 3680 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
19:31:25.0026 3680 SENS - ok
19:31:25.0042 3680 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
19:31:25.0042 3680 Serenum - ok
19:31:25.0057 3680 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
19:31:25.0057 3680 Serial - ok
19:31:25.0135 3680 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
19:31:25.0135 3680 sermouse - ok
19:31:25.0198 3680 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
19:31:25.0198 3680 SessionEnv - ok
19:31:25.0213 3680 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\DRIVERS\sffdisk.sys
19:31:25.0213 3680 sffdisk - ok
19:31:25.0229 3680 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
19:31:25.0244 3680 sffp_mmc - ok
19:31:25.0260 3680 sffp_sd (9f66a46c55d6f1ccabc79bb7afccc545) C:\Windows\system32\DRIVERS\sffp_sd.sys
19:31:25.0260 3680 sffp_sd - ok
19:31:25.0276 3680 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
19:31:25.0276 3680 sfloppy - ok
19:31:25.0307 3680 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
19:31:25.0338 3680 SharedAccess - ok
19:31:25.0432 3680 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
19:31:25.0432 3680 ShellHWDetection - ok
19:31:25.0478 3680 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
19:31:25.0478 3680 sisagp - ok
19:31:25.0525 3680 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
19:31:25.0525 3680 SiSRaid2 - ok
19:31:25.0697 3680 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
19:31:25.0697 3680 SiSRaid4 - ok
19:31:26.0633 3680 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
19:31:26.0648 3680 slsvc - ok
19:31:26.0789 3680 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
19:31:26.0789 3680 SLUINotify - ok
19:31:26.0836 3680 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
19:31:26.0836 3680 Smb - ok
19:31:26.0929 3680 smserial (859e3adc59d1c89a66aa6492c14d379e) C:\Windows\system32\DRIVERS\smserial.sys
19:31:26.0945 3680 smserial - ok
19:31:26.0976 3680 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
19:31:26.0992 3680 SNMPTRAP - ok
19:31:27.0023 3680 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
19:31:27.0023 3680 spldr - ok
19:31:27.0085 3680 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
19:31:27.0085 3680 Spooler - ok
19:31:27.0163 3680 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
19:31:27.0163 3680 srv - ok
19:31:27.0210 3680 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
19:31:27.0226 3680 srv2 - ok
19:31:27.0241 3680 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
19:31:27.0241 3680 srvnet - ok
19:31:27.0257 3680 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
19:31:27.0257 3680 SSDPSRV - ok
19:31:27.0304 3680 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
19:31:27.0304 3680 SstpSvc - ok
19:31:27.0366 3680 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
19:31:27.0382 3680 stisvc - ok
19:31:27.0413 3680 SWDUMon (2aa2d356cb735cd3cca9f671bd75c9b5) C:\Windows\system32\DRIVERS\SWDUMon.sys
19:31:27.0413 3680 SWDUMon - ok
19:31:27.0444 3680 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
19:31:27.0444 3680 swenum - ok
19:31:27.0569 3680 swmsflt (a184a1bab187809b144ba32509b9e731) C:\Windows\System32\drivers\swmsflt.sys
19:31:27.0569 3680 swmsflt - ok
19:31:27.0631 3680 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
19:31:27.0631 3680 swprv - ok
19:31:27.0678 3680 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
19:31:27.0694 3680 Symc8xx - ok
19:31:27.0709 3680 SymIM - ok
19:31:27.0725 3680 SymIMMP - ok
19:31:27.0740 3680 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
19:31:27.0740 3680 Sym_hi - ok
19:31:27.0818 3680 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
19:31:27.0818 3680 Sym_u3 - ok
19:31:27.0896 3680 SynTP (6dd49e1a5fa0f01824652f1a0a8866fb) C:\Windows\system32\DRIVERS\SynTP.sys
19:31:27.0912 3680 SynTP - ok
19:31:27.0959 3680 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
19:31:27.0959 3680 SysMain - ok
19:31:28.0006 3680 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
19:31:28.0006 3680 TabletInputService - ok
19:31:28.0052 3680 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
19:31:28.0052 3680 TapiSrv - ok
19:31:28.0084 3680 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
19:31:28.0099 3680 TBS - ok
19:31:28.0224 3680 Tcpip (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\drivers\tcpip.sys
19:31:28.0224 3680 Tcpip - ok
19:31:28.0240 3680 Tcpip6 (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\DRIVERS\tcpip.sys
19:31:28.0255 3680 Tcpip6 - ok
19:31:28.0271 3680 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
19:31:28.0286 3680 tcpipreg - ok
19:31:28.0302 3680 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
19:31:28.0302 3680 TDPIPE - ok
19:31:28.0333 3680 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
19:31:28.0333 3680 TDTCP - ok
19:31:28.0364 3680 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
19:31:28.0364 3680 tdx - ok
19:31:28.0396 3680 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
19:31:28.0396 3680 TermDD - ok
19:31:28.0442 3680 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
19:31:28.0458 3680 TermService - ok
19:31:28.0520 3680 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
19:31:28.0520 3680 Themes - ok
19:31:28.0552 3680 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
19:31:28.0552 3680 THREADORDER - ok
19:31:28.0645 3680 tmactmon (de87a23d2ddc7378d1c7ab681e20de47) C:\Windows\system32\DRIVERS\tmactmon.sys
19:31:28.0645 3680 tmactmon - ok
19:31:28.0676 3680 tmcomm (540c2b5dc47651c572c2804dc72fdda8) C:\Windows\system32\DRIVERS\tmcomm.sys
19:31:28.0676 3680 tmcomm - ok
19:31:28.0692 3680 tmevtmgr (2de1fa64ebaff376f2c038f64492f62c) C:\Windows\system32\DRIVERS\tmevtmgr.sys
19:31:28.0692 3680 tmevtmgr - ok
19:31:28.0708 3680 tmtdi (5a61679b2277b9ad550e30479a69503b) C:\Windows\system32\DRIVERS\tmtdi.sys
19:31:28.0708 3680 tmtdi - ok
19:31:28.0723 3680 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
19:31:28.0723 3680 TrkWks - ok
19:31:28.0786 3680 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
19:31:28.0801 3680 TrustedInstaller - ok
19:31:28.0832 3680 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
19:31:28.0832 3680 tssecsrv - ok
19:31:28.0879 3680 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
19:31:28.0879 3680 tunmp - ok
19:31:28.0926 3680 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
19:31:28.0926 3680 tunnel - ok
19:31:28.0957 3680 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
19:31:28.0973 3680 uagp35 - ok
19:31:28.0988 3680 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
19:31:28.0988 3680 udfs - ok
19:31:29.0035 3680 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
19:31:29.0051 3680 UI0Detect - ok
19:31:29.0066 3680 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
19:31:29.0066 3680 uliagpkx - ok
19:31:29.0098 3680 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
19:31:29.0098 3680 uliahci - ok
19:31:29.0129 3680 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
19:31:29.0129 3680 UlSata - ok
19:31:29.0144 3680 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
19:31:29.0144 3680 ulsata2 - ok
19:31:29.0176 3680 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
19:31:29.0176 3680 umbus - ok
19:31:29.0191 3680 UMPass (88bd96a1baeed33ee8bdf9499c07a841) C:\Windows\system32\DRIVERS\umpass.sys
19:31:29.0191 3680 UMPass - ok
19:31:29.0254 3680 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
19:31:29.0254 3680 upnphost - ok
19:31:29.0316 3680 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\Windows\system32\Drivers\usbaapl.sys
19:31:29.0316 3680 USBAAPL - ok
19:31:29.0363 3680 usbbus (5aadc9297c39aa249cd994acdba19034) C:\Windows\system32\DRIVERS\lgusbbus.sys
19:31:29.0363 3680 usbbus - ok
19:31:29.0394 3680 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
19:31:29.0394 3680 usbccgp - ok
19:31:29.0410 3680 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
19:31:29.0410 3680 usbcir - ok
19:31:29.0441 3680 UsbDiag (4650ffe04e5922399b0e932319e6b215) C:\Windows\system32\DRIVERS\lgusbdiag.sys
19:31:29.0441 3680 UsbDiag - ok
19:31:29.0472 3680 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
19:31:29.0472 3680 usbehci - ok
19:31:29.0503 3680 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
19:31:29.0503 3680 usbhub - ok
19:31:29.0534 3680 USBModem (2666fe171e0c2e7085ccd5fe0bac09e3) C:\Windows\system32\DRIVERS\lgusbmodem.sys
19:31:29.0534 3680 USBModem - ok
19:31:29.0550 3680 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
19:31:29.0550 3680 usbohci - ok
19:31:29.0581 3680 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
19:31:29.0581 3680 usbprint - ok
19:31:29.0628 3680 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
19:31:29.0628 3680 usbscan - ok
19:31:29.0644 3680 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:31:29.0644 3680 USBSTOR - ok
19:31:29.0675 3680 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
19:31:29.0675 3680 usbuhci - ok
19:31:29.0706 3680 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
19:31:29.0706 3680 usbvideo - ok
19:31:29.0753 3680 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
19:31:29.0753 3680 UxSms - ok
19:31:29.0800 3680 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
19:31:29.0815 3680 vds - ok
19:31:29.0846 3680 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
19:31:29.0846 3680 vga - ok
19:31:29.0893 3680 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
19:31:29.0893 3680 VgaSave - ok
19:31:29.0909 3680 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
19:31:29.0909 3680 viaagp - ok
19:31:29.0924 3680 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
19:31:29.0924 3680 ViaC7 - ok
19:31:29.0940 3680 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
19:31:29.0940 3680 viaide - ok
19:31:29.0971 3680 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
19:31:29.0971 3680 volmgr - ok
19:31:30.0018 3680 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
19:31:30.0018 3680 volmgrx - ok
19:31:30.0065 3680 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
19:31:30.0065 3680 volsnap - ok
19:31:30.0112 3680 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
19:31:30.0112 3680 vsmraid - ok
19:31:30.0190 3680 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
19:31:30.0221 3680 VSS - ok
19:31:30.0268 3680 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
19:31:30.0268 3680 W32Time - ok
19:31:30.0330 3680 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
19:31:30.0330 3680 WacomPen - ok
19:31:30.0361 3680 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
19:31:30.0361 3680 Wanarp - ok
19:31:30.0361 3680 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
19:31:30.0361 3680 Wanarpv6 - ok
19:31:30.0392 3680 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
19:31:30.0408 3680 wcncsvc - ok
19:31:30.0439 3680 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
19:31:30.0439 3680 WcsPlugInService - ok
19:31:30.0486 3680 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
19:31:30.0486 3680 Wd - ok
19:31:30.0517 3680 WDC_SAM (d6efaf429fd30c5df613d220e344cce7) C:\Windows\system32\DRIVERS\wdcsam.sys
19:31:30.0517 3680 WDC_SAM - ok
19:31:30.0564 3680 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
19:31:30.0564 3680 Wdf01000 - ok
19:31:30.0611 3680 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
19:31:30.0611 3680 WdiServiceHost - ok
19:31:30.0611 3680 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
19:31:30.0626 3680 WdiSystemHost - ok
19:31:30.0658 3680 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
19:31:30.0673 3680 WebClient - ok
19:31:30.0736 3680 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
19:31:30.0736 3680 Wecsvc - ok
19:31:30.0767 3680 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
19:31:30.0782 3680 wercplsupport - ok
19:31:30.0814 3680 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
19:31:30.0814 3680 WerSvc - ok
19:31:30.0892 3680 winachsf (5c7bdcf5864db00323fe2d90fa26a8a2) C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
19:31:30.0892 3680 winachsf - ok
19:31:30.0985 3680 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
19:31:30.0985 3680 WinDefend - ok
19:31:30.0985 3680 WinHttpAutoProxySvc - ok
19:31:31.0048 3680 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
19:31:31.0063 3680 Winmgmt - ok
19:31:31.0172 3680 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
19:31:31.0219 3680 WinRM - ok
19:31:31.0282 3680 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
19:31:31.0297 3680 Wlansvc - ok
19:31:31.0484 3680 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:31:31.0500 3680 wlidsvc - ok
19:31:31.0656 3680 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
19:31:31.0656 3680 WmiAcpi - ok
19:31:31.0718 3680 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
19:31:31.0718 3680 wmiApSrv - ok
19:31:31.0874 3680 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
19:31:31.0890 3680 WMPNetworkSvc - ok
19:31:31.0921 3680 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
19:31:31.0921 3680 WPCSvc - ok
19:31:31.0968 3680 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
19:31:31.0968 3680 WPDBusEnum - ok
19:31:32.0030 3680 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
19:31:32.0030 3680 WpdUsb - ok
19:31:32.0186 3680 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:31:32.0218 3680 WPFFontCache_v0400 - ok
19:31:32.0358 3680 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
19:31:32.0358 3680 ws2ifsl - ok
19:31:32.0389 3680 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\System32\wscsvc.dll
19:31:32.0389 3680 wscsvc - ok
19:31:32.0405 3680 WSearch - ok
19:31:32.0561 3680 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
19:31:32.0592 3680 wuauserv - ok
19:31:32.0764 3680 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
19:31:32.0764 3680 WUDFRd - ok
19:31:32.0795 3680 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
19:31:32.0795 3680 wudfsvc - ok
19:31:32.0857 3680 MBR (0x1B8) (1a1a06f62e891045814007163c1c76c3) \Device\Harddisk0\DR0
19:31:32.0888 3680 \Device\Harddisk0\DR0 - ok
19:31:32.0904 3680 Boot (0x1200) (8cc35652abe8ad8e87b57ef29a87d192) \Device\Harddisk0\DR0\Partition0
19:31:32.0904 3680 \Device\Harddisk0\DR0\Partition0 - ok
19:31:32.0904 3680 Boot (0x1200) (7f0c69180c0ef82af5cb0e1fa742e962) \Device\Harddisk0\DR0\Partition1
19:31:32.0904 3680 \Device\Harddisk0\DR0\Partition1 - ok
19:31:32.0904 3680 ============================================================
19:31:32.0904 3680 Scan finished
19:31:32.0904 3680 ============================================================
19:31:32.0920 5200 Detected object count: 1
19:31:32.0920 5200 Actual detected object count: 1
19:31:49.0705 5200 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
19:31:49.0705 5200 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip


Finally, it looks like rkill found nothing malicious:

Rkill 2.0.3 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 08/07/2012 07:18:23 PM in x86 mode.
Windows Version: Windows Vista

Checking for Windows services to stop.

* No malware services found to stop.

Checking for processes to terminate.

* No malware processes found to kill.

Checking Registry for malware related settings.

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks.

* No issues found.

Restarting Explorer.exe in order to apply changes.

Program finished at: 08/07/2012 07:18:35 PM
Execution time: 0 hours(s), 0 minute(s), and 12 seconds(s)


Pretty sure I have a clean computer, here, but I REALLY appreciate you looking at these logs!

Edited by bomber1712, 07 August 2012 - 09:48 PM.


#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:17 PM

Posted 07 August 2012 - 09:52 PM

Looks clean,, the TDSS findings are your Akamai files.. to optimize streaming media.

If there are no more problems or signs of infection, you should Create a New Restore Point to prevent possible reinfection from an old one. Some of the malware you picked up could have been saved in System Restore. Since this is a protected directory your tools cannot access to delete these files, they sometimes can reinfect your system if you accidentally use an old restore point. Setting a new restore point AFTER cleaning your system will help prevent this and enable your computer to "roll-back" to a clean working state.

The easiest and safest way to do this is:
  • Go to Start > Programs > Accessories > System Tools and click "System Restore".
  • Choose the radio button marked "Create a Restore Point" on the first screen then click "Next". Give the R.P. a name, then click "Create". The new point will be stamped with the current date and time. Keep a log of this so you can find it easily should you need to use System Restore.
  • Then use Disk Cleanup to remove all but the most recently created Restore Point.
  • Go to Start > Run and type: Cleanmgr
  • Click "Ok". Disk Cleanup will scan your files for several minutes, then open.
  • Click the "More Options" tab, then click the "Clean up" button under System Restore.
  • Click Ok. You will be prompted with "Are you sure you want to delete all but the most recent restore point?"
  • Click Yes, then click Ok.
  • Click Yes again when prompted with "Are you sure you want to perform these actions?"
  • Disk Cleanup will remove the files and close automatically.
Vista Users can refer to these links: Create a New Restore Point and Disk Cleanup.

Tips to protect yourself against malware and reduce the potential for re-infection:Avoid gaming sites, pirated software, cracking tools, keygens, and peer-to-peer (P2P) file sharing programs. They are a security risk which can make your computer susceptible to a smörgåsbord of malware infections, remote attacks, exposure of personal information, and identity theft. Many malicious worms and Trojans spread across P2P file sharing networks, gaming and underground sites. Users visiting such pages may see innocuous-looking banner ads containing code which can trigger pop-up ads and malicious Flash ads that install viruses, Trojans and spyware. Ads are a target for hackers because they offer a stealthy way to distribute malware to a wide range of Internet users. The best way to reduce the risk of infection is to avoid these types of web sites and not use any P2P applications. Read P2P Software User Advisories and Risks of File-Sharing Technology.

]• Keeping Autorun enabled on USB and other removable drives has become a significant security risk due to the increasing number of malware variants that can infect them and transfer the infection to your computer. To learn more about this risk, please read:
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 bomber1712

bomber1712
  • Topic Starter

  • Members
  • 464 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Wisconsin, USA
  • Local time:07:17 PM

Posted 08 August 2012 - 05:58 AM

Thank you so much for your help!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users