Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

virus?


  • This topic is locked This topic is locked
4 replies to this topic

#1 scottdfw99

scottdfw99

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:11:13 AM

Posted 12 August 2012 - 11:43 AM

When using internet explorer, it never takes me to the site I requst in Google. Malware Bytes finds 3 files to delete, and I allow them to be deleted. But, when I reboot, the problem is back. What do I need to do? Thanks!!

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:13 AM

Posted 12 August 2012 - 11:51 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 scottdfw99

scottdfw99
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:11:13 AM

Posted 12 August 2012 - 03:23 PM

Requested Log:

ESET log:

C:\Windows\Installer\{c2e4e447-b565-aeae-e41b-848c489a7a92}\U\00000008.@ Win64/Agent.BA trojan cleaned by deleting - quarantined
C:\Windows\Installer\{c2e4e447-b565-aeae-e41b-848c489a7a92}\U\000000cb.@ Win64/Conedex.B trojan cleaned by deleting - quarantined
C:\Windows\Installer\{c2e4e447-b565-aeae-e41b-848c489a7a92}\U\80000000.@ Win64/Sirefef.AP trojan cleaned by deleting - quarantined
C:\Windows\Installer\{c2e4e447-b565-aeae-e41b-848c489a7a92}\U\80000032.@ a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
Operating memory multiple threats

TDS log:

TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
11:58:20.0070 3368 ============================================================
11:58:20.0070 3368 Current date / time: 2012/08/12 11:58:20.0070
11:58:20.0070 3368 SystemInfo:
11:58:20.0070 3368
11:58:20.0070 3368 OS Version: 6.1.7601 ServicePack: 1.0
11:58:20.0070 3368 Product type: Workstation
11:58:20.0070 3368 ComputerName: STEVE-PC
11:58:20.0070 3368 UserName: Steve
11:58:20.0070 3368 Windows directory: C:\windows
11:58:20.0070 3368 System windows directory: C:\windows
11:58:20.0070 3368 Running under WOW64
11:58:20.0070 3368 Processor architecture: Intel x64
11:58:20.0070 3368 Number of processors: 4
11:58:20.0070 3368 Page size: 0x1000
11:58:20.0070 3368 Boot type: Normal boot
11:58:20.0070 3368 ============================================================
11:58:20.0590 3368 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:58:20.0600 3368 ============================================================
11:58:20.0600 3368 \Device\Harddisk0\DR0:
11:58:20.0600 3368 MBR partitions:
11:58:20.0600 3368 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x38DF6000
11:58:20.0600 3368 ============================================================
11:58:20.0610 3368 C: <-> \Device\Harddisk0\DR0\Partition0
11:58:20.0610 3368 ============================================================
11:58:20.0610 3368 Initialize success
11:58:20.0610 3368 ============================================================
11:58:46.0440 2308 ============================================================
11:58:46.0440 2308 Scan started
11:58:46.0440 2308 Mode: Manual; TDLFS;
11:58:46.0440 2308 ============================================================
11:58:47.0050 2308 1394ohci (a87d604aea360176311474c87a63bb88) C:\windows\system32\drivers\1394ohci.sys
11:58:47.0090 2308 1394ohci - ok
11:58:47.0180 2308 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\windows\system32\drivers\ACPI.sys
11:58:47.0180 2308 ACPI - ok
11:58:47.0240 2308 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\windows\system32\drivers\acpipmi.sys
11:58:47.0290 2308 AcpiPmi - ok
11:58:47.0400 2308 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\windows\system32\DRIVERS\adp94xx.sys
11:58:47.0440 2308 adp94xx - ok
11:58:47.0500 2308 adpahci (597f78224ee9224ea1a13d6350ced962) C:\windows\system32\DRIVERS\adpahci.sys
11:58:47.0530 2308 adpahci - ok
11:58:47.0580 2308 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\windows\system32\DRIVERS\adpu320.sys
11:58:47.0590 2308 adpu320 - ok
11:58:47.0630 2308 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\windows\System32\aelupsvc.dll
11:58:47.0630 2308 AeLookupSvc - ok
11:58:47.0710 2308 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\windows\system32\drivers\afd.sys
11:58:47.0730 2308 AFD - ok
11:58:47.0850 2308 AgereSoftModem (98022774d9930ecbb292e70db7601df6) C:\windows\system32\DRIVERS\agrsm64.sys
11:58:47.0900 2308 AgereSoftModem - ok
11:58:47.0940 2308 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\windows\system32\drivers\agp440.sys
11:58:47.0960 2308 agp440 - ok
11:58:48.0000 2308 ALG (3290d6946b5e30e70414990574883ddb) C:\windows\System32\alg.exe
11:58:48.0010 2308 ALG - ok
11:58:48.0060 2308 aliide (5812713a477a3ad7363c7438ca2ee038) C:\windows\system32\drivers\aliide.sys
11:58:48.0060 2308 aliide - ok
11:58:48.0070 2308 amdide (1ff8b4431c353ce385c875f194924c0c) C:\windows\system32\drivers\amdide.sys
11:58:48.0070 2308 amdide - ok
11:58:48.0110 2308 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\windows\system32\DRIVERS\amdk8.sys
11:58:48.0120 2308 AmdK8 - ok
11:58:48.0140 2308 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\windows\system32\DRIVERS\amdppm.sys
11:58:48.0150 2308 AmdPPM - ok
11:58:48.0210 2308 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\windows\system32\drivers\amdsata.sys
11:58:48.0260 2308 amdsata - ok
11:58:48.0320 2308 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\windows\system32\DRIVERS\amdsbs.sys
11:58:48.0340 2308 amdsbs - ok
11:58:48.0390 2308 amdxata (540daf1cea6094886d72126fd7c33048) C:\windows\system32\drivers\amdxata.sys
11:58:48.0440 2308 amdxata - ok
11:58:48.0490 2308 AppID (89a69c3f2f319b43379399547526d952) C:\windows\system32\drivers\appid.sys
11:58:48.0500 2308 AppID - ok
11:58:48.0530 2308 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\windows\System32\appidsvc.dll
11:58:48.0540 2308 AppIDSvc - ok
11:58:48.0590 2308 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\windows\System32\appinfo.dll
11:58:48.0590 2308 Appinfo - ok
11:58:48.0640 2308 arc (c484f8ceb1717c540242531db7845c4e) C:\windows\system32\DRIVERS\arc.sys
11:58:48.0650 2308 arc - ok
11:58:48.0660 2308 arcsas (019af6924aefe7839f61c830227fe79c) C:\windows\system32\DRIVERS\arcsas.sys
11:58:48.0670 2308 arcsas - ok
11:58:48.0720 2308 AsyncMac (769765ce2cc62867468cea93969b2242) C:\windows\system32\DRIVERS\asyncmac.sys
11:58:48.0720 2308 AsyncMac - ok
11:58:48.0760 2308 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\windows\system32\drivers\atapi.sys
11:58:48.0770 2308 atapi - ok
11:58:48.0870 2308 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\windows\System32\Audiosrv.dll
11:58:48.0890 2308 AudioEndpointBuilder - ok
11:58:48.0900 2308 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\windows\System32\Audiosrv.dll
11:58:48.0910 2308 AudioSrv - ok
11:58:48.0980 2308 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\windows\System32\AxInstSV.dll
11:58:48.0990 2308 AxInstSV - ok
11:58:49.0060 2308 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\windows\system32\DRIVERS\bxvbda.sys
11:58:49.0090 2308 b06bdrv - ok
11:58:49.0140 2308 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\windows\system32\DRIVERS\b57nd60a.sys
11:58:49.0170 2308 b57nd60a - ok
11:58:49.0220 2308 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\windows\System32\bdesvc.dll
11:58:49.0230 2308 BDESVC - ok
11:58:49.0260 2308 Beep (16a47ce2decc9b099349a5f840654746) C:\windows\system32\drivers\Beep.sys
11:58:49.0270 2308 Beep - ok
11:58:49.0290 2308 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\windows\system32\DRIVERS\blbdrive.sys
11:58:49.0290 2308 blbdrive - ok
11:58:49.0340 2308 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\windows\system32\DRIVERS\bowser.sys
11:58:49.0390 2308 bowser - ok
11:58:49.0430 2308 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\windows\system32\DRIVERS\BrFiltLo.sys
11:58:49.0440 2308 BrFiltLo - ok
11:58:49.0460 2308 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\windows\system32\DRIVERS\BrFiltUp.sys
11:58:49.0460 2308 BrFiltUp - ok
11:58:49.0520 2308 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\windows\System32\browser.dll
11:58:49.0530 2308 Browser - ok
11:58:49.0590 2308 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\windows\System32\Drivers\Brserid.sys
11:58:49.0620 2308 Brserid - ok
11:58:49.0660 2308 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\windows\System32\Drivers\BrSerWdm.sys
11:58:49.0670 2308 BrSerWdm - ok
11:58:49.0710 2308 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\windows\System32\Drivers\BrUsbMdm.sys
11:58:49.0710 2308 BrUsbMdm - ok
11:58:49.0730 2308 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\windows\System32\Drivers\BrUsbSer.sys
11:58:49.0730 2308 BrUsbSer - ok
11:58:49.0750 2308 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\windows\system32\DRIVERS\bthmodem.sys
11:58:49.0760 2308 BTHMODEM - ok
11:58:49.0800 2308 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\windows\system32\bthserv.dll
11:58:49.0810 2308 bthserv - ok
11:58:49.0850 2308 cdfs (b8bd2bb284668c84865658c77574381a) C:\windows\system32\DRIVERS\cdfs.sys
11:58:49.0860 2308 cdfs - ok
11:58:49.0920 2308 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\windows\system32\drivers\cdrom.sys
11:58:49.0980 2308 cdrom - ok
11:58:50.0020 2308 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\windows\System32\certprop.dll
11:58:50.0020 2308 CertPropSvc - ok
11:58:50.0090 2308 cfwids (3b8a124d87ee9d229d1f07f518da9a4c) C:\windows\system32\drivers\cfwids.sys
11:58:50.0140 2308 cfwids - ok
11:58:50.0290 2308 cfWiMAXService (adbdc69a0c25361870a1ac009d29f960) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
11:58:50.0310 2308 cfWiMAXService - ok
11:58:50.0350 2308 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\windows\system32\DRIVERS\circlass.sys
11:58:50.0350 2308 circlass - ok
11:58:50.0420 2308 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\windows\system32\CLFS.sys
11:58:50.0440 2308 CLFS - ok
11:58:50.0510 2308 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:58:50.0520 2308 clr_optimization_v2.0.50727_32 - ok
11:58:50.0560 2308 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:58:50.0570 2308 clr_optimization_v2.0.50727_64 - ok
11:58:50.0670 2308 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:58:50.0680 2308 clr_optimization_v4.0.30319_32 - ok
11:58:50.0760 2308 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:58:50.0760 2308 clr_optimization_v4.0.30319_64 - ok
11:58:50.0810 2308 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\windows\system32\DRIVERS\CmBatt.sys
11:58:50.0810 2308 CmBatt - ok
11:58:50.0850 2308 cmdide (e19d3f095812725d88f9001985b94edd) C:\windows\system32\drivers\cmdide.sys
11:58:50.0850 2308 cmdide - ok
11:58:50.0940 2308 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\windows\system32\Drivers\cng.sys
11:58:50.0950 2308 CNG - ok
11:58:50.0990 2308 Compbatt (102de219c3f61415f964c88e9085ad14) C:\windows\system32\DRIVERS\compbatt.sys
11:58:51.0000 2308 Compbatt - ok
11:58:51.0040 2308 CompositeBus (03edb043586cceba243d689bdda370a8) C:\windows\system32\drivers\CompositeBus.sys
11:58:51.0080 2308 CompositeBus - ok
11:58:51.0090 2308 COMSysApp - ok
11:58:51.0180 2308 ConfigFree Service (cab0eeaf5295fc96ddd3e19dce27e131) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
11:58:51.0240 2308 ConfigFree Service - ok
11:58:51.0260 2308 crcdisk (1c827878a998c18847245fe1f34ee597) C:\windows\system32\DRIVERS\crcdisk.sys
11:58:51.0270 2308 crcdisk - ok
11:58:51.0340 2308 CryptSvc (4f5414602e2544a4554d95517948b705) C:\windows\system32\cryptsvc.dll
11:58:51.0380 2308 CryptSvc - ok
11:58:51.0470 2308 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\windows\system32\rpcss.dll
11:58:51.0470 2308 DcomLaunch - ok
11:58:51.0530 2308 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\windows\System32\defragsvc.dll
11:58:51.0550 2308 defragsvc - ok
11:58:51.0600 2308 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\windows\system32\Drivers\dfsc.sys
11:58:51.0670 2308 DfsC - ok
11:58:51.0730 2308 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\windows\system32\dhcpcore.dll
11:58:51.0750 2308 Dhcp - ok
11:58:51.0770 2308 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\windows\system32\drivers\discache.sys
11:58:51.0770 2308 discache - ok
11:58:51.0800 2308 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\windows\system32\DRIVERS\disk.sys
11:58:51.0820 2308 Disk - ok
11:58:51.0880 2308 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\windows\System32\dnsrslvr.dll
11:58:51.0880 2308 Dnscache - ok
11:58:51.0940 2308 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\windows\System32\dot3svc.dll
11:58:51.0960 2308 dot3svc - ok
11:58:52.0020 2308 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\windows\system32\DRIVERS\Dot4.sys
11:58:52.0040 2308 Dot4 - ok
11:58:52.0080 2308 Dot4Print (e9f5969233c5d89f3c35e3a66a52a361) C:\windows\system32\drivers\Dot4Prt.sys
11:58:52.0130 2308 Dot4Print - ok
11:58:52.0150 2308 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\windows\system32\DRIVERS\dot4usb.sys
11:58:52.0150 2308 dot4usb - ok
11:58:52.0210 2308 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\windows\system32\dps.dll
11:58:52.0210 2308 DPS - ok
11:58:52.0240 2308 drmkaud (9b19f34400d24df84c858a421c205754) C:\windows\system32\drivers\drmkaud.sys
11:58:52.0250 2308 drmkaud - ok
11:58:52.0360 2308 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\windows\System32\drivers\dxgkrnl.sys
11:58:52.0390 2308 DXGKrnl - ok
11:58:52.0440 2308 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\windows\System32\eapsvc.dll
11:58:52.0460 2308 EapHost - ok
11:58:52.0750 2308 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\windows\system32\DRIVERS\evbda.sys
11:58:52.0860 2308 ebdrv - ok
11:58:52.0990 2308 EFS (c118a82cd78818c29ab228366ebf81c3) C:\windows\System32\lsass.exe
11:58:52.0990 2308 EFS - ok
11:58:53.0120 2308 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\windows\ehome\ehRecvr.exe
11:58:53.0140 2308 ehRecvr - ok
11:58:53.0180 2308 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\windows\ehome\ehsched.exe
11:58:53.0190 2308 ehSched - ok
11:58:53.0300 2308 elxstor (0e5da5369a0fcaea12456dd852545184) C:\windows\system32\DRIVERS\elxstor.sys
11:58:53.0340 2308 elxstor - ok
11:58:53.0370 2308 ErrDev (34a3c54752046e79a126e15c51db409b) C:\windows\system32\drivers\errdev.sys
11:58:53.0380 2308 ErrDev - ok
11:58:53.0450 2308 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\windows\system32\es.dll
11:58:53.0460 2308 EventSystem - ok
11:58:53.0500 2308 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\windows\system32\drivers\exfat.sys
11:58:53.0520 2308 exfat - ok
11:58:53.0550 2308 fastfat (0adc83218b66a6db380c330836f3e36d) C:\windows\system32\drivers\fastfat.sys
11:58:53.0560 2308 fastfat - ok
11:58:53.0670 2308 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\windows\system32\fxssvc.exe
11:58:53.0700 2308 Fax - ok
11:58:53.0720 2308 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\windows\system32\DRIVERS\fdc.sys
11:58:53.0730 2308 fdc - ok
11:58:53.0750 2308 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\windows\system32\fdPHost.dll
11:58:53.0760 2308 fdPHost - ok
11:58:53.0770 2308 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\windows\system32\fdrespub.dll
11:58:53.0770 2308 FDResPub - ok
11:58:53.0810 2308 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\windows\system32\drivers\fileinfo.sys
11:58:53.0810 2308 FileInfo - ok
11:58:53.0830 2308 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\windows\system32\drivers\filetrace.sys
11:58:53.0830 2308 Filetrace - ok
11:58:53.0860 2308 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\windows\system32\DRIVERS\flpydisk.sys
11:58:53.0870 2308 flpydisk - ok
11:58:53.0930 2308 FltMgr (da6b67270fd9db3697b20fce94950741) C:\windows\system32\drivers\fltmgr.sys
11:58:53.0940 2308 FltMgr - ok
11:58:54.0070 2308 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\windows\system32\FntCache.dll
11:58:54.0080 2308 FontCache - ok
11:58:54.0170 2308 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:58:54.0170 2308 FontCache3.0.0.0 - ok
11:58:54.0240 2308 FsDepends (d43703496149971890703b4b1b723eac) C:\windows\system32\drivers\FsDepends.sys
11:58:54.0240 2308 FsDepends - ok
11:58:54.0280 2308 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\windows\system32\drivers\Fs_Rec.sys
11:58:54.0280 2308 Fs_Rec - ok
11:58:54.0340 2308 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\windows\system32\DRIVERS\fvevol.sys
11:58:54.0400 2308 fvevol - ok
11:58:54.0450 2308 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\windows\system32\DRIVERS\gagp30kx.sys
11:58:54.0460 2308 gagp30kx - ok
11:58:54.0550 2308 GameConsoleService (4fbccbdd99a75c9efbc90392cf32af61) C:\Program Files (x86)\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
11:58:54.0620 2308 GameConsoleService - ok
11:58:54.0730 2308 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\windows\System32\gpsvc.dll
11:58:54.0790 2308 gpsvc - ok
11:58:54.0830 2308 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\windows\system32\drivers\hcw85cir.sys
11:58:54.0840 2308 hcw85cir - ok
11:58:54.0910 2308 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\windows\system32\drivers\HdAudio.sys
11:58:54.0970 2308 HdAudAddService - ok
11:58:55.0010 2308 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\windows\system32\drivers\HDAudBus.sys
11:58:55.0010 2308 HDAudBus - ok
11:58:55.0050 2308 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\windows\system32\DRIVERS\HECIx64.sys
11:58:55.0080 2308 HECIx64 - ok
11:58:55.0110 2308 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\windows\system32\DRIVERS\HidBatt.sys
11:58:55.0110 2308 HidBatt - ok
11:58:55.0130 2308 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\windows\system32\DRIVERS\hidbth.sys
11:58:55.0150 2308 HidBth - ok
11:58:55.0180 2308 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\windows\system32\DRIVERS\hidir.sys
11:58:55.0200 2308 HidIr - ok
11:58:55.0220 2308 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\windows\system32\hidserv.dll
11:58:55.0230 2308 hidserv - ok
11:58:55.0300 2308 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\windows\system32\drivers\hidusb.sys
11:58:55.0350 2308 HidUsb - ok
11:58:55.0400 2308 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\windows\system32\kmsvc.dll
11:58:55.0450 2308 hkmsvc - ok
11:58:55.0500 2308 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\windows\system32\ListSvc.dll
11:58:55.0510 2308 HomeGroupListener - ok
11:58:55.0570 2308 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\windows\system32\provsvc.dll
11:58:55.0570 2308 HomeGroupProvider - ok
11:58:55.0690 2308 hpqcxs08 (1dae5c46d42b02a6d5862e1482efb390) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
11:58:55.0690 2308 hpqcxs08 - ok
11:58:55.0720 2308 hpqddsvc (99e8eef42fe2f4af29b08c3355dd7685) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
11:58:55.0720 2308 hpqddsvc - ok
11:58:55.0780 2308 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\windows\system32\drivers\HpSAMD.sys
11:58:55.0820 2308 HpSAMD - ok
11:58:55.0950 2308 HPSLPSVC (7f57926169c1b8aba9274ea7d4b70f18) C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
11:58:55.0960 2308 HPSLPSVC - ok
11:58:56.0070 2308 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\windows\system32\drivers\HTTP.sys
11:58:56.0090 2308 HTTP - ok
11:58:56.0130 2308 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\windows\system32\drivers\hwpolicy.sys
11:58:56.0130 2308 hwpolicy - ok
11:58:56.0200 2308 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\windows\system32\drivers\i8042prt.sys
11:58:56.0210 2308 i8042prt - ok
11:58:56.0280 2308 iaStor (631fa8935163b01fc0c02966cb3adb92) C:\windows\system32\DRIVERS\iaStor.sys
11:58:56.0280 2308 iaStor - ok
11:58:56.0350 2308 IAStorDataMgrSvc (7493ea4de41348f7d3edbf9db298f56a) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
11:58:56.0350 2308 IAStorDataMgrSvc - ok
11:58:56.0420 2308 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\windows\system32\drivers\iaStorV.sys
11:58:56.0490 2308 iaStorV - ok
11:58:56.0640 2308 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:58:56.0700 2308 idsvc - ok
11:58:57.0350 2308 igfx (0372c154226f7074cd150f475a4870a6) C:\windows\system32\DRIVERS\igdkmd64.sys
11:58:57.0740 2308 igfx - ok
11:58:57.0870 2308 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\windows\system32\DRIVERS\iirsp.sys
11:58:57.0890 2308 iirsp - ok
11:58:58.0000 2308 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\windows\System32\ikeext.dll
11:58:58.0060 2308 IKEEXT - ok
11:58:58.0100 2308 Impcd (36fdf367a1dabff903e2214023d71368) C:\windows\system32\DRIVERS\Impcd.sys
11:58:58.0130 2308 Impcd - ok
11:58:58.0330 2308 IntcAzAudAddService (59b0bba422f04467e8c89b7ce6ae95e1) C:\windows\system32\drivers\RTKVHD64.sys
11:58:58.0430 2308 IntcAzAudAddService - ok
11:58:58.0590 2308 IntcDAud (408b401cd7cdb075c7470b0ff7ba8d0b) C:\windows\system32\DRIVERS\IntcDAud.sys
11:58:58.0660 2308 IntcDAud - ok
11:58:58.0690 2308 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\windows\system32\drivers\intelide.sys
11:58:58.0700 2308 intelide - ok
11:58:58.0740 2308 intelppm (ada036632c664caa754079041cf1f8c1) C:\windows\system32\DRIVERS\intelppm.sys
11:58:58.0740 2308 intelppm - ok
11:58:58.0830 2308 IntuitUpdateService (3dc635b66dd7412e1c9c3a77b8d78f25) C:\Program Files (x86)\Common Files\Intuit\Update Service\IntuitUpdateService.exe
11:58:58.0830 2308 IntuitUpdateService - ok
11:58:58.0910 2308 IntuitUpdateServiceV4 (1663a135865f0ba6e853353e98e67f2a) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
11:58:58.0910 2308 IntuitUpdateServiceV4 - ok
11:58:58.0940 2308 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\windows\system32\ipbusenum.dll
11:58:58.0950 2308 IPBusEnum - ok
11:58:59.0010 2308 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\windows\system32\DRIVERS\ipfltdrv.sys
11:58:59.0020 2308 IpFilterDriver - ok
11:58:59.0060 2308 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\windows\system32\drivers\IPMIDrv.sys
11:58:59.0110 2308 IPMIDRV - ok
11:58:59.0160 2308 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\windows\system32\drivers\ipnat.sys
11:58:59.0160 2308 IPNAT - ok
11:58:59.0190 2308 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\windows\system32\drivers\irenum.sys
11:58:59.0200 2308 IRENUM - ok
11:58:59.0240 2308 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\windows\system32\drivers\isapnp.sys
11:58:59.0240 2308 isapnp - ok
11:58:59.0300 2308 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\windows\system32\drivers\msiscsi.sys
11:58:59.0360 2308 iScsiPrt - ok
11:58:59.0400 2308 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\windows\system32\drivers\kbdclass.sys
11:58:59.0400 2308 kbdclass - ok
11:58:59.0420 2308 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\windows\system32\drivers\kbdhid.sys
11:58:59.0450 2308 kbdhid - ok
11:58:59.0500 2308 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
11:58:59.0500 2308 KeyIso - ok
11:58:59.0560 2308 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\windows\system32\Drivers\ksecdd.sys
11:58:59.0560 2308 KSecDD - ok
11:58:59.0590 2308 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\windows\system32\Drivers\ksecpkg.sys
11:58:59.0650 2308 KSecPkg - ok
11:58:59.0670 2308 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\windows\system32\drivers\ksthunk.sys
11:58:59.0670 2308 ksthunk - ok
11:58:59.0730 2308 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\windows\system32\msdtckrm.dll
11:58:59.0740 2308 KtmRm - ok
11:58:59.0810 2308 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\windows\system32\srvsvc.dll
11:58:59.0830 2308 LanmanServer - ok
11:58:59.0880 2308 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\windows\System32\wkssvc.dll
11:58:59.0930 2308 LanmanWorkstation - ok
11:59:00.0180 2308 Lavasoft Ad-Aware Service (ed60ffd305ac0424920d146db9f9ed78) C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe
11:59:00.0200 2308 Lavasoft Ad-Aware Service - ok
11:59:00.0260 2308 Lavasoft Kernexplorer (9a7fa6371f68335fd3c3d6488bc5a9f8) C:\Program Files (x86)\Lavasoft\Ad-Aware\KernExplorer64.sys
11:59:00.0310 2308 Lavasoft Kernexplorer - ok
11:59:00.0450 2308 Lbd (c8b3131857931ae76798a741cc52b021) C:\windows\system32\DRIVERS\Lbd.sys
11:59:00.0500 2308 Lbd - ok
11:59:00.0540 2308 lltdio (1538831cf8ad2979a04c423779465827) C:\windows\system32\DRIVERS\lltdio.sys
11:59:00.0540 2308 lltdio - ok
11:59:00.0600 2308 lltdsvc (c1185803384ab3feed115f79f109427f) C:\windows\System32\lltdsvc.dll
11:59:00.0610 2308 lltdsvc - ok
11:59:00.0630 2308 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\windows\System32\lmhsvc.dll
11:59:00.0640 2308 lmhosts - ok
11:59:00.0740 2308 LMS (a1c148801b4af64847aeb9f3ad9594ef) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
11:59:00.0830 2308 LMS - ok
11:59:00.0880 2308 LPCFilter (41e122f6d1448c94cc05196bc41d6bfb) C:\windows\system32\DRIVERS\LPCFilter.sys
11:59:00.0920 2308 LPCFilter - ok
11:59:00.0960 2308 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\windows\system32\DRIVERS\lsi_fc.sys
11:59:00.0970 2308 LSI_FC - ok
11:59:00.0990 2308 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\windows\system32\DRIVERS\lsi_sas.sys
11:59:00.0990 2308 LSI_SAS - ok
11:59:01.0010 2308 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\windows\system32\DRIVERS\lsi_sas2.sys
11:59:01.0020 2308 LSI_SAS2 - ok
11:59:01.0040 2308 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\windows\system32\DRIVERS\lsi_scsi.sys
11:59:01.0050 2308 LSI_SCSI - ok
11:59:01.0080 2308 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\windows\system32\drivers\luafv.sys
11:59:01.0090 2308 luafv - ok
11:59:01.0180 2308 McAfee SiteAdvisor Service (9c54796801cbd6df96ebdda14ad188d5) C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
11:59:01.0250 2308 McAfee SiteAdvisor Service - ok
11:59:01.0330 2308 McMPFSvc (458a013df72eaab91877fa03533e2c8b) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
11:59:01.0380 2308 McMPFSvc - ok
11:59:01.0400 2308 mcmscsvc (458a013df72eaab91877fa03533e2c8b) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
11:59:01.0400 2308 mcmscsvc - ok
11:59:01.0420 2308 McNaiAnn (458a013df72eaab91877fa03533e2c8b) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
11:59:01.0420 2308 McNaiAnn - ok
11:59:01.0430 2308 McNASvc (458a013df72eaab91877fa03533e2c8b) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
11:59:01.0440 2308 McNASvc - ok
11:59:01.0530 2308 McODS (3809b77eb1734cd5fb317425f188abc1) C:\Program Files\McAfee\VirusScan\mcods.exe
11:59:01.0550 2308 McODS - ok
11:59:01.0560 2308 McProxy (458a013df72eaab91877fa03533e2c8b) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
11:59:01.0570 2308 McProxy - ok
11:59:01.0610 2308 McShield (be7802cfab44b613ac1a20aec1d45b87) C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
11:59:01.0620 2308 McShield - ok
11:59:01.0750 2308 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\windows\system32\Mcx2Svc.dll
11:59:01.0750 2308 Mcx2Svc - ok
11:59:01.0790 2308 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\windows\system32\DRIVERS\megasas.sys
11:59:01.0800 2308 megasas - ok
11:59:01.0830 2308 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\windows\system32\DRIVERS\MegaSR.sys
11:59:01.0860 2308 MegaSR - ok
11:59:01.0920 2308 mfeapfk (0d8a2ccd9fb7a18114ffa13bb681f362) C:\windows\system32\drivers\mfeapfk.sys
11:59:01.0920 2308 mfeapfk - ok
11:59:01.0990 2308 mfeavfk (58e891f01db2b41ef1a1296fe63ed74c) C:\windows\system32\drivers\mfeavfk.sys
11:59:02.0040 2308 mfeavfk - ok
11:59:02.0050 2308 mfeavfk01 - ok
11:59:02.0100 2308 mfefire (656ef23f7d0738dac975036d6bdde036) C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
11:59:02.0110 2308 mfefire - ok
11:59:02.0180 2308 mfefirek (74c4bf6c59a8a900c25ee892d3771f73) C:\windows\system32\drivers\mfefirek.sys
11:59:02.0240 2308 mfefirek - ok
11:59:02.0330 2308 mfehidk (bcd060ddc1ea7d2f84e75d17c8e2c88c) C:\windows\system32\drivers\mfehidk.sys
11:59:02.0410 2308 mfehidk - ok
11:59:02.0440 2308 mfenlfk (27f5b2b6261d018cbce0f2250d812be5) C:\windows\system32\DRIVERS\mfenlfk.sys
11:59:02.0480 2308 mfenlfk - ok
11:59:02.0500 2308 mferkdet (537d31cf8d41222be5bfa56a5ec35ceb) C:\windows\system32\drivers\mferkdet.sys
11:59:02.0540 2308 mferkdet - ok
11:59:02.0640 2308 mfevtp (5f9f24654ac493970d678ec7b1e3df93) C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
11:59:02.0640 2308 mfevtp - ok
11:59:02.0690 2308 mfewfpk (5c07cb165074c6114616d8473cdd0938) C:\windows\system32\drivers\mfewfpk.sys
11:59:02.0750 2308 mfewfpk - ok
11:59:02.0780 2308 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\windows\system32\mmcss.dll
11:59:02.0780 2308 MMCSS - ok
11:59:02.0810 2308 Modem (800ba92f7010378b09f9ed9270f07137) C:\windows\system32\drivers\modem.sys
11:59:02.0810 2308 Modem - ok
11:59:02.0830 2308 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\windows\system32\DRIVERS\monitor.sys
11:59:02.0840 2308 monitor - ok
11:59:02.0890 2308 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\windows\system32\drivers\mouclass.sys
11:59:02.0900 2308 mouclass - ok
11:59:02.0940 2308 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\windows\system32\DRIVERS\mouhid.sys
11:59:02.0950 2308 mouhid - ok
11:59:03.0000 2308 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\windows\system32\drivers\mountmgr.sys
11:59:03.0010 2308 mountmgr - ok
11:59:03.0060 2308 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\windows\system32\drivers\mpio.sys
11:59:03.0110 2308 mpio - ok
11:59:03.0130 2308 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\windows\system32\drivers\mpsdrv.sys
11:59:03.0140 2308 mpsdrv - ok
11:59:03.0180 2308 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\windows\system32\drivers\mrxdav.sys
11:59:03.0200 2308 MRxDAV - ok
11:59:03.0250 2308 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\windows\system32\DRIVERS\mrxsmb.sys
11:59:03.0260 2308 mrxsmb - ok
11:59:03.0330 2308 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\windows\system32\DRIVERS\mrxsmb10.sys
11:59:03.0340 2308 mrxsmb10 - ok
11:59:03.0390 2308 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\windows\system32\DRIVERS\mrxsmb20.sys
11:59:03.0440 2308 mrxsmb20 - ok
11:59:03.0470 2308 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\windows\system32\drivers\msahci.sys
11:59:03.0510 2308 msahci - ok
11:59:03.0560 2308 msdsm (db801a638d011b9633829eb6f663c900) C:\windows\system32\drivers\msdsm.sys
11:59:03.0610 2308 msdsm - ok
11:59:03.0650 2308 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\windows\System32\msdtc.exe
11:59:03.0660 2308 MSDTC - ok
11:59:03.0690 2308 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\windows\system32\drivers\Msfs.sys
11:59:03.0690 2308 Msfs - ok
11:59:03.0720 2308 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\windows\System32\drivers\mshidkmdf.sys
11:59:03.0720 2308 mshidkmdf - ok
11:59:03.0750 2308 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\windows\system32\drivers\msisadrv.sys
11:59:03.0750 2308 msisadrv - ok
11:59:03.0790 2308 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\windows\system32\iscsiexe.dll
11:59:03.0810 2308 MSiSCSI - ok
11:59:03.0820 2308 msiserver - ok
11:59:03.0850 2308 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\windows\system32\drivers\MSKSSRV.sys
11:59:03.0850 2308 MSKSSRV - ok
11:59:03.0870 2308 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\windows\system32\drivers\MSPCLOCK.sys
11:59:03.0870 2308 MSPCLOCK - ok
11:59:03.0890 2308 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\windows\system32\drivers\MSPQM.sys
11:59:03.0890 2308 MSPQM - ok
11:59:03.0960 2308 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\windows\system32\drivers\MsRPC.sys
11:59:04.0020 2308 MsRPC - ok
11:59:04.0060 2308 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\windows\system32\drivers\mssmbios.sys
11:59:04.0060 2308 mssmbios - ok
11:59:04.0090 2308 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\windows\system32\drivers\MSTEE.sys
11:59:04.0100 2308 MSTEE - ok
11:59:04.0120 2308 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\windows\system32\DRIVERS\MTConfig.sys
11:59:04.0130 2308 MTConfig - ok
11:59:04.0150 2308 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\windows\system32\Drivers\mup.sys
11:59:04.0150 2308 Mup - ok
11:59:04.0230 2308 napagent (582ac6d9873e31dfa28a4547270862dd) C:\windows\system32\qagentRT.dll
11:59:04.0280 2308 napagent - ok
11:59:04.0350 2308 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\windows\system32\DRIVERS\nwifi.sys
11:59:04.0370 2308 NativeWifiP - ok
11:59:04.0490 2308 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\windows\system32\drivers\ndis.sys
11:59:04.0500 2308 NDIS - ok
11:59:04.0530 2308 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\windows\system32\DRIVERS\ndiscap.sys
11:59:04.0540 2308 NdisCap - ok
11:59:04.0570 2308 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\windows\system32\DRIVERS\ndistapi.sys
11:59:04.0570 2308 NdisTapi - ok
11:59:04.0610 2308 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\windows\system32\DRIVERS\ndisuio.sys
11:59:04.0660 2308 Ndisuio - ok
11:59:04.0710 2308 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\windows\system32\DRIVERS\ndiswan.sys
11:59:04.0730 2308 NdisWan - ok
11:59:04.0780 2308 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\windows\system32\drivers\NDProxy.sys
11:59:04.0790 2308 NDProxy - ok
11:59:04.0840 2308 Net Driver HPZ12 (d5ac41ae382738483faffbd7e373d49a) C:\Windows\system32\HPZinw12.dll
11:59:04.0880 2308 Net Driver HPZ12 - ok
11:59:04.0920 2308 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\windows\system32\DRIVERS\netbios.sys
11:59:04.0920 2308 NetBIOS - ok
11:59:04.0980 2308 NetBT (09594d1089c523423b32a4229263f068) C:\windows\system32\DRIVERS\netbt.sys
11:59:05.0050 2308 NetBT - ok
11:59:05.0090 2308 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
11:59:05.0090 2308 Netlogon - ok
11:59:05.0160 2308 Netman (847d3ae376c0817161a14a82c8922a9e) C:\windows\System32\netman.dll
11:59:05.0170 2308 Netman - ok
11:59:05.0220 2308 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\windows\System32\netprofm.dll
11:59:05.0220 2308 netprofm - ok
11:59:05.0290 2308 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
11:59:05.0310 2308 NetTcpPortSharing - ok
11:59:05.0360 2308 nfrd960 (77889813be4d166cdab78ddba990da92) C:\windows\system32\DRIVERS\nfrd960.sys
11:59:05.0370 2308 nfrd960 - ok
11:59:05.0440 2308 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\windows\System32\nlasvc.dll
11:59:05.0450 2308 NlaSvc - ok
11:59:05.0460 2308 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\windows\system32\drivers\Npfs.sys
11:59:05.0460 2308 Npfs - ok
11:59:05.0500 2308 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\windows\system32\nsisvc.dll
11:59:05.0500 2308 nsi - ok
11:59:05.0520 2308 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\windows\system32\drivers\nsiproxy.sys
11:59:05.0520 2308 nsiproxy - ok
11:59:05.0680 2308 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\windows\system32\drivers\Ntfs.sys
11:59:05.0760 2308 Ntfs - ok
11:59:05.0880 2308 Null (9899284589f75fa8724ff3d16aed75c1) C:\windows\system32\drivers\Null.sys
11:59:05.0880 2308 Null - ok
11:59:05.0940 2308 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\windows\system32\drivers\nvraid.sys
11:59:06.0000 2308 nvraid - ok
11:59:06.0030 2308 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\windows\system32\drivers\nvstor.sys
11:59:06.0080 2308 nvstor - ok
11:59:06.0130 2308 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\windows\system32\drivers\nv_agp.sys
11:59:06.0160 2308 nv_agp - ok
11:59:06.0290 2308 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:59:06.0310 2308 odserv - ok
11:59:06.0340 2308 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\windows\system32\drivers\ohci1394.sys
11:59:06.0360 2308 ohci1394 - ok
11:59:06.0420 2308 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:59:06.0430 2308 ose - ok
11:59:06.0480 2308 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\windows\system32\pnrpsvc.dll
11:59:06.0510 2308 p2pimsvc - ok
11:59:06.0550 2308 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\windows\system32\p2psvc.dll
11:59:06.0590 2308 p2psvc - ok
11:59:06.0630 2308 Parport (0086431c29c35be1dbc43f52cc273887) C:\windows\system32\DRIVERS\parport.sys
11:59:06.0640 2308 Parport - ok
11:59:06.0690 2308 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\windows\system32\drivers\partmgr.sys
11:59:06.0740 2308 partmgr - ok
11:59:06.0770 2308 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\windows\System32\pcasvc.dll
11:59:06.0780 2308 PcaSvc - ok
11:59:06.0830 2308 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\windows\system32\drivers\pci.sys
11:59:06.0890 2308 pci - ok
11:59:06.0910 2308 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\windows\system32\drivers\pciide.sys
11:59:06.0910 2308 pciide - ok
11:59:06.0950 2308 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\windows\system32\DRIVERS\pcmcia.sys
11:59:06.0970 2308 pcmcia - ok
11:59:06.0990 2308 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\windows\system32\drivers\pcw.sys
11:59:07.0000 2308 pcw - ok
11:59:07.0060 2308 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\windows\system32\drivers\peauth.sys
11:59:07.0100 2308 PEAUTH - ok
11:59:07.0190 2308 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\windows\SysWow64\perfhost.exe
11:59:07.0190 2308 PerfHost - ok
11:59:07.0230 2308 PGEffect (663962900e7fea522126ba287715bb4a) C:\windows\system32\DRIVERS\pgeffect.sys
11:59:07.0270 2308 PGEffect - ok
11:59:07.0410 2308 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\windows\system32\pla.dll
11:59:07.0460 2308 pla - ok
11:59:07.0530 2308 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\windows\system32\umpnpmgr.dll
11:59:07.0550 2308 PlugPlay - ok
11:59:07.0620 2308 Pml Driver HPZ12 (37f6046cdc630442d7dc087501ff6fc6) C:\Windows\system32\HPZipm12.dll
11:59:07.0660 2308 Pml Driver HPZ12 - ok
11:59:07.0680 2308 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\windows\system32\pnrpauto.dll
11:59:07.0680 2308 PNRPAutoReg - ok
11:59:07.0710 2308 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\windows\system32\pnrpsvc.dll
11:59:07.0720 2308 PNRPsvc - ok
11:59:07.0800 2308 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\windows\System32\ipsecsvc.dll
11:59:07.0820 2308 PolicyAgent - ok
11:59:07.0880 2308 Power (6ba9d927dded70bd1a9caded45f8b184) C:\windows\system32\umpo.dll
11:59:07.0900 2308 Power - ok
11:59:07.0980 2308 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\windows\system32\DRIVERS\raspptp.sys
11:59:08.0030 2308 PptpMiniport - ok
11:59:08.0060 2308 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\windows\system32\DRIVERS\processr.sys
11:59:08.0060 2308 Processor - ok
11:59:08.0100 2308 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\windows\system32\profsvc.dll
11:59:08.0110 2308 ProfSvc - ok
11:59:08.0150 2308 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
11:59:08.0150 2308 ProtectedStorage - ok
11:59:08.0210 2308 Psched (0557cf5a2556bd58e26384169d72438d) C:\windows\system32\DRIVERS\pacer.sys
11:59:08.0220 2308 Psched - ok
11:59:08.0370 2308 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\windows\system32\DRIVERS\ql2300.sys
11:59:08.0420 2308 ql2300 - ok
11:59:08.0560 2308 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\windows\system32\DRIVERS\ql40xx.sys
11:59:08.0580 2308 ql40xx - ok
11:59:08.0630 2308 QWAVE (906191634e99aea92c4816150bda3732) C:\windows\system32\qwave.dll
11:59:08.0650 2308 QWAVE - ok
11:59:08.0680 2308 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\windows\system32\drivers\qwavedrv.sys
11:59:08.0680 2308 QWAVEdrv - ok
11:59:08.0700 2308 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\windows\system32\DRIVERS\rasacd.sys
11:59:08.0700 2308 RasAcd - ok
11:59:08.0740 2308 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\windows\system32\DRIVERS\AgileVpn.sys
11:59:08.0740 2308 RasAgileVpn - ok
11:59:08.0780 2308 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\windows\System32\rasauto.dll
11:59:08.0800 2308 RasAuto - ok
11:59:08.0850 2308 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\windows\system32\DRIVERS\rasl2tp.sys
11:59:08.0860 2308 Rasl2tp - ok
11:59:08.0910 2308 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\windows\System32\rasmans.dll
11:59:08.0920 2308 RasMan - ok
11:59:08.0960 2308 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\windows\system32\DRIVERS\raspppoe.sys
11:59:08.0970 2308 RasPppoe - ok
11:59:09.0000 2308 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\windows\system32\DRIVERS\rassstp.sys
11:59:09.0010 2308 RasSstp - ok
11:59:09.0070 2308 rdbss (77f665941019a1594d887a74f301fa2f) C:\windows\system32\DRIVERS\rdbss.sys
11:59:09.0090 2308 rdbss - ok
11:59:09.0110 2308 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\windows\system32\DRIVERS\rdpbus.sys
11:59:09.0120 2308 rdpbus - ok
11:59:09.0150 2308 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\windows\system32\DRIVERS\RDPCDD.sys
11:59:09.0150 2308 RDPCDD - ok
11:59:09.0170 2308 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\windows\system32\drivers\rdpencdd.sys
11:59:09.0170 2308 RDPENCDD - ok
11:59:09.0190 2308 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\windows\system32\drivers\rdprefmp.sys
11:59:09.0200 2308 RDPREFMP - ok
11:59:09.0250 2308 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\windows\system32\drivers\RDPWD.sys
11:59:09.0260 2308 RDPWD - ok
11:59:09.0320 2308 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\windows\system32\drivers\rdyboost.sys
11:59:09.0330 2308 rdyboost - ok
11:59:09.0380 2308 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\windows\System32\mprdim.dll
11:59:09.0390 2308 RemoteAccess - ok
11:59:09.0430 2308 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\windows\system32\regsvc.dll
11:59:09.0450 2308 RemoteRegistry - ok
11:59:09.0460 2308 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\windows\System32\RpcEpMap.dll
11:59:09.0470 2308 RpcEptMapper - ok
11:59:09.0500 2308 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\windows\system32\locator.exe
11:59:09.0510 2308 RpcLocator - ok
11:59:09.0590 2308 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\windows\system32\rpcss.dll
11:59:09.0590 2308 RpcSs - ok
11:59:09.0620 2308 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\windows\system32\DRIVERS\rspndr.sys
11:59:09.0620 2308 rspndr - ok
11:59:09.0680 2308 RSUSBSTOR (483df0b58ca532e5240e59dc41f30aa2) C:\windows\system32\Drivers\RtsUStor.sys
11:59:09.0730 2308 RSUSBSTOR - ok
11:59:09.0800 2308 RTL8167 (b49dc435ae3695bac5623dd94b05732d) C:\windows\system32\DRIVERS\Rt64win7.sys
11:59:09.0850 2308 RTL8167 - ok
11:59:09.0970 2308 rtl8192se (7475548b0ba58eba4d12414fc9e9dfe6) C:\windows\system32\DRIVERS\rtl8192se.sys
11:59:10.0050 2308 rtl8192se - ok
11:59:10.0100 2308 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
11:59:10.0100 2308 SamSs - ok
11:59:10.0140 2308 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\windows\system32\drivers\sbp2port.sys
11:59:10.0200 2308 sbp2port - ok
11:59:10.0220 2308 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\windows\System32\SCardSvr.dll
11:59:10.0240 2308 SCardSvr - ok
11:59:10.0270 2308 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\windows\system32\DRIVERS\scfilter.sys
11:59:10.0270 2308 scfilter - ok
11:59:10.0390 2308 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\windows\system32\schedsvc.dll
11:59:10.0420 2308 Schedule - ok
11:59:10.0470 2308 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\windows\System32\certprop.dll
11:59:10.0480 2308 SCPolicySvc - ok
11:59:10.0510 2308 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\windows\System32\SDRSVC.dll
11:59:10.0550 2308 SDRSVC - ok
11:59:10.0600 2308 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\windows\system32\drivers\secdrv.sys
11:59:10.0610 2308 secdrv - ok
11:59:10.0650 2308 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\windows\system32\seclogon.dll
11:59:10.0650 2308 seclogon - ok
11:59:10.0690 2308 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\windows\System32\sens.dll
11:59:10.0700 2308 SENS - ok
11:59:10.0720 2308 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\windows\system32\sensrsvc.dll
11:59:10.0720 2308 SensrSvc - ok
11:59:10.0760 2308 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\windows\system32\DRIVERS\serenum.sys
11:59:10.0770 2308 Serenum - ok
11:59:10.0810 2308 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\windows\system32\DRIVERS\serial.sys
11:59:10.0830 2308 Serial - ok
11:59:10.0880 2308 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\windows\system32\DRIVERS\sermouse.sys
11:59:10.0890 2308 sermouse - ok
11:59:10.0950 2308 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\windows\system32\sessenv.dll
11:59:10.0990 2308 SessionEnv - ok
11:59:11.0030 2308 sffdisk (a554811bcd09279536440c964ae35bbf) C:\windows\system32\drivers\sffdisk.sys
11:59:11.0040 2308 sffdisk - ok
11:59:11.0050 2308 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\windows\system32\drivers\sffp_mmc.sys
11:59:11.0060 2308 sffp_mmc - ok
11:59:11.0070 2308 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\windows\system32\drivers\sffp_sd.sys
11:59:11.0100 2308 sffp_sd - ok
11:59:11.0130 2308 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\windows\system32\DRIVERS\sfloppy.sys
11:59:11.0130 2308 sfloppy - ok
11:59:11.0200 2308 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\windows\System32\shsvcs.dll
11:59:11.0240 2308 ShellHWDetection - ok
11:59:11.0260 2308 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\windows\system32\DRIVERS\SiSRaid2.sys
11:59:11.0260 2308 SiSRaid2 - ok
11:59:11.0290 2308 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\windows\system32\DRIVERS\sisraid4.sys
11:59:11.0300 2308 SiSRaid4 - ok
11:59:11.0310 2308 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\windows\system32\DRIVERS\smb.sys
11:59:11.0320 2308 Smb - ok
11:59:11.0350 2308 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\windows\System32\snmptrap.exe
11:59:11.0350 2308 SNMPTRAP - ok
11:59:11.0370 2308 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\windows\system32\drivers\spldr.sys
11:59:11.0370 2308 spldr - ok
11:59:11.0460 2308 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\windows\System32\spoolsv.exe
11:59:11.0460 2308 Spooler - ok
11:59:11.0780 2308 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\windows\system32\sppsvc.exe
11:59:11.0810 2308 sppsvc - ok
11:59:11.0940 2308 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\windows\system32\sppuinotify.dll
11:59:11.0950 2308 sppuinotify - ok
11:59:12.0040 2308 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\windows\system32\DRIVERS\srv.sys
11:59:12.0070 2308 srv - ok
11:59:12.0120 2308 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\windows\system32\DRIVERS\srv2.sys
11:59:12.0180 2308 srv2 - ok
11:59:12.0230 2308 srvnet (27e461f0be5bff5fc737328f749538c3) C:\windows\system32\DRIVERS\srvnet.sys
11:59:12.0240 2308 srvnet - ok
11:59:12.0290 2308 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\windows\System32\ssdpsrv.dll
11:59:12.0300 2308 SSDPSRV - ok
11:59:12.0310 2308 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\windows\system32\sstpsvc.dll
11:59:12.0330 2308 SstpSvc - ok
11:59:12.0360 2308 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\windows\system32\DRIVERS\stexstor.sys
11:59:12.0360 2308 stexstor - ok
11:59:12.0460 2308 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\windows\System32\wiaservc.dll
11:59:12.0500 2308 stisvc - ok
11:59:12.0530 2308 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\windows\system32\drivers\swenum.sys
11:59:12.0530 2308 swenum - ok
11:59:12.0590 2308 swprv (e08e46fdd841b7184194011ca1955a0b) C:\windows\System32\swprv.dll
11:59:12.0630 2308 swprv - ok
11:59:12.0730 2308 SynTP (e28ca52ecf8cb6eb04b34de440ba260e) C:\windows\system32\DRIVERS\SynTP.sys
11:59:12.0790 2308 SynTP - ok
11:59:12.0960 2308 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\windows\system32\sysmain.dll
11:59:13.0010 2308 SysMain - ok
11:59:13.0140 2308 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\windows\System32\TabSvc.dll
11:59:13.0190 2308 TabletInputService - ok
11:59:13.0230 2308 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\windows\System32\tapisrv.dll
11:59:13.0240 2308 TapiSrv - ok
11:59:13.0270 2308 TBS (1be03ac720f4d302ea01d40f588162f6) C:\windows\System32\tbssvc.dll
11:59:13.0280 2308 TBS - ok
11:59:13.0480 2308 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\windows\system32\drivers\tcpip.sys
11:59:13.0590 2308 Tcpip - ok
11:59:13.0870 2308 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\windows\system32\DRIVERS\tcpip.sys
11:59:13.0890 2308 TCPIP6 - ok
11:59:13.0980 2308 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\windows\system32\drivers\tcpipreg.sys
11:59:13.0980 2308 tcpipreg - ok
11:59:14.0030 2308 tdcmdpst (fd542b661bd22fa69ca789ad0ac58c29) C:\windows\system32\DRIVERS\tdcmdpst.sys
11:59:14.0070 2308 tdcmdpst - ok
11:59:14.0090 2308 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\windows\system32\drivers\tdpipe.sys
11:59:14.0090 2308 TDPIPE - ok
11:59:14.0140 2308 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\windows\system32\drivers\tdtcp.sys
11:59:14.0140 2308 TDTCP - ok
11:59:14.0190 2308 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\windows\system32\DRIVERS\tdx.sys
11:59:14.0200 2308 tdx - ok
11:59:14.0250 2308 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\windows\system32\drivers\termdd.sys
11:59:14.0290 2308 TermDD - ok
11:59:14.0350 2308 TermService (2e648163254233755035b46dd7b89123) C:\windows\System32\termsrv.dll
11:59:14.0380 2308 TermService - ok
11:59:14.0400 2308 Themes (f0344071948d1a1fa732231785a0664c) C:\windows\system32\themeservice.dll
11:59:14.0420 2308 Themes - ok
11:59:14.0450 2308 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\windows\system32\mmcss.dll
11:59:14.0450 2308 THREADORDER - ok
11:59:14.0540 2308 TMachInfo (28644b0523d64eff2fc7312a2ee74b0a) C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
11:59:14.0550 2308 TMachInfo - ok
11:59:14.0580 2308 TODDSrv (ed32035bdfeced1ad66d459fd9cc1140) C:\Windows\system32\TODDSrv.exe
11:59:14.0640 2308 TODDSrv - ok
11:59:14.0770 2308 TosCoSrv (f82188fc76cfe174dc35a46e0bfc4da7) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
11:59:14.0790 2308 TosCoSrv - ok
11:59:14.0850 2308 TOSHIBA eco Utility Service (b741407712986f1d95a52486ac57eef9) C:\Program Files\TOSHIBA\TECO\TecoService.exe
11:59:14.0910 2308 TOSHIBA eco Utility Service - ok
11:59:14.0970 2308 TOSHIBA HDD SSD Alert Service (4218356616e08518e6c2cb102ac3798a) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
11:59:15.0050 2308 TOSHIBA HDD SSD Alert Service - ok
11:59:15.0140 2308 tos_sps64 (09ff7b0b1b5c3d225495cb6f5a9b39f8) C:\windows\system32\DRIVERS\tos_sps64.sys
11:59:15.0200 2308 tos_sps64 - ok
11:59:15.0310 2308 TPCHSrv (270cebd8b5dd9f232cd50d18d19c10a0) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
11:59:15.0390 2308 TPCHSrv - ok
11:59:15.0500 2308 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\windows\System32\trkwks.dll
11:59:15.0530 2308 TrkWks - ok
11:59:15.0580 2308 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\windows\servicing\TrustedInstaller.exe
11:59:15.0630 2308 TrustedInstaller - ok
11:59:15.0690 2308 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\windows\system32\DRIVERS\tssecsrv.sys
11:59:15.0700 2308 tssecsrv - ok
11:59:15.0750 2308 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\windows\system32\drivers\tsusbflt.sys
11:59:15.0750 2308 TsUsbFlt - ok
11:59:15.0810 2308 tunnel (3566a8daafa27af944f5d705eaa64894) C:\windows\system32\DRIVERS\tunnel.sys
11:59:15.0870 2308 tunnel - ok
11:59:15.0900 2308 TVALZ (550b567f9364d8f7684c3fb3ea665a72) C:\windows\system32\DRIVERS\TVALZ_O.SYS
11:59:15.0930 2308 TVALZ - ok
11:59:15.0960 2308 TVALZFL (9c7191f4b2e49bff47a6c1144b5923fa) C:\windows\system32\DRIVERS\TVALZFL.sys
11:59:15.0990 2308 TVALZFL - ok
11:59:16.0020 2308 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\windows\system32\DRIVERS\uagp35.sys
11:59:16.0030 2308 uagp35 - ok
11:59:16.0090 2308 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\windows\system32\DRIVERS\udfs.sys
11:59:16.0150 2308 udfs - ok
11:59:16.0180 2308 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\windows\system32\UI0Detect.exe
11:59:16.0180 2308 UI0Detect - ok
11:59:16.0220 2308 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\windows\system32\drivers\uliagpkx.sys
11:59:16.0220 2308 uliagpkx - ok
11:59:16.0260 2308 umbus (dc54a574663a895c8763af0fa1ff7561) C:\windows\system32\drivers\umbus.sys
11:59:16.0300 2308 umbus - ok
11:59:16.0330 2308 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\windows\system32\DRIVERS\umpass.sys
11:59:16.0330 2308 UmPass - ok
11:59:16.0540 2308 UNS (41118d920b2b268c0adc36421248cdcf) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
11:59:16.0590 2308 UNS - ok
11:59:16.0760 2308 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\windows\System32\upnphost.dll
11:59:16.0770 2308 upnphost - ok
11:59:16.0850 2308 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\windows\system32\drivers\usbaudio.sys
11:59:16.0910 2308 usbaudio - ok
11:59:16.0960 2308 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\windows\system32\DRIVERS\usbccgp.sys
11:59:17.0000 2308 usbccgp - ok
11:59:17.0030 2308 usbcir (af0892a803fdda7492f595368e3b68e7) C:\windows\system32\drivers\usbcir.sys
11:59:17.0040 2308 usbcir - ok
11:59:17.0060 2308 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\windows\system32\drivers\usbehci.sys
11:59:17.0090 2308 usbehci - ok
11:59:17.0140 2308 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\windows\system32\DRIVERS\usbhub.sys
11:59:17.0210 2308 usbhub - ok
11:59:17.0240 2308 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\windows\system32\drivers\usbohci.sys
11:59:17.0270 2308 usbohci - ok
11:59:17.0300 2308 usbprint (73188f58fb384e75c4063d29413cee3d) C:\windows\system32\DRIVERS\usbprint.sys
11:59:17.0310 2308 usbprint - ok
11:59:17.0340 2308 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\windows\system32\DRIVERS\usbscan.sys
11:59:17.0350 2308 usbscan - ok
11:59:17.0390 2308 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\windows\system32\DRIVERS\USBSTOR.SYS
11:59:17.0430 2308 USBSTOR - ok
11:59:17.0470 2308 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\windows\system32\drivers\usbuhci.sys
11:59:17.0500 2308 usbuhci - ok
11:59:17.0550 2308 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\windows\System32\Drivers\usbvideo.sys
11:59:17.0600 2308 usbvideo - ok
11:59:17.0630 2308 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\windows\System32\uxsms.dll
11:59:17.0630 2308 UxSms - ok
11:59:17.0670 2308 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
11:59:17.0680 2308 VaultSvc - ok
11:59:17.0720 2308 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\windows\system32\drivers\vdrvroot.sys
11:59:17.0730 2308 vdrvroot - ok
11:59:17.0820 2308 vds (8d6b481601d01a456e75c3210f1830be) C:\windows\System32\vds.exe
11:59:17.0840 2308 vds - ok
11:59:17.0880 2308 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\windows\system32\DRIVERS\vgapnp.sys
11:59:17.0890 2308 vga - ok
11:59:17.0910 2308 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\windows\System32\drivers\vga.sys
11:59:17.0910 2308 VgaSave - ok
11:59:17.0970 2308 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\windows\system32\drivers\vhdmp.sys
11:59:18.0030 2308 vhdmp - ok
11:59:18.0050 2308 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\windows\system32\drivers\viaide.sys
11:59:18.0060 2308 viaide - ok
11:59:18.0080 2308 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\windows\system32\drivers\volmgr.sys
11:59:18.0110 2308 volmgr - ok
11:59:18.0180 2308 volmgrx (a255814907c89be58b79ef2f189b843b) C:\windows\system32\drivers\volmgrx.sys
11:59:18.0200 2308 volmgrx - ok
11:59:18.0270 2308 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\windows\system32\drivers\volsnap.sys
11:59:18.0330 2308 volsnap - ok
11:59:18.0360 2308 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\windows\system32\DRIVERS\vsmraid.sys
11:59:18.0380 2308 vsmraid - ok
11:59:18.0550 2308 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\windows\system32\vssvc.exe
11:59:18.0590 2308 VSS - ok
11:59:18.0700 2308 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\windows\system32\DRIVERS\vwifibus.sys
11:59:18.0700 2308 vwifibus - ok
11:59:18.0710 2308 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\windows\system32\DRIVERS\vwififlt.sys
11:59:18.0720 2308 vwififlt - ok
11:59:18.0780 2308 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\windows\system32\w32time.dll
11:59:18.0790 2308 W32Time - ok
11:59:18.0810 2308 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\windows\system32\DRIVERS\wacompen.sys
11:59:18.0820 2308 WacomPen - ok
11:59:18.0880 2308 WANARP (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
11:59:18.0880 2308 WANARP - ok
11:59:18.0890 2308 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
11:59:18.0890 2308 Wanarpv6 - ok
11:59:19.0050 2308 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\windows\system32\Wat\WatAdminSvc.exe
11:59:19.0160 2308 WatAdminSvc - ok
11:59:19.0330 2308 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\windows\system32\wbengine.exe
11:59:19.0390 2308 wbengine - ok
11:59:19.0520 2308 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\windows\System32\wbiosrvc.dll
11:59:19.0530 2308 WbioSrvc - ok
11:59:19.0600 2308 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\windows\System32\wcncsvc.dll
11:59:19.0620 2308 wcncsvc - ok
11:59:19.0640 2308 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\windows\System32\WcsPlugInService.dll
11:59:19.0660 2308 WcsPlugInService - ok
11:59:19.0710 2308 Wd (72889e16ff12ba0f235467d6091b17dc) C:\windows\system32\DRIVERS\wd.sys
11:59:19.0720 2308 Wd - ok
11:59:19.0790 2308 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\windows\system32\drivers\Wdf01000.sys
11:59:19.0800 2308 Wdf01000 - ok
11:59:19.0830 2308 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\windows\system32\wdi.dll
11:59:19.0830 2308 WdiServiceHost - ok
11:59:19.0840 2308 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\windows\system32\wdi.dll
11:59:19.0840 2308 WdiSystemHost - ok
11:59:19.0900 2308 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\windows\System32\webclnt.dll
11:59:19.0920 2308 WebClient - ok
11:59:19.0950 2308 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\windows\system32\wecsvc.dll
11:59:19.0970 2308 Wecsvc - ok
11:59:19.0990 2308 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\windows\System32\wercplsupport.dll
11:59:20.0000 2308 wercplsupport - ok
11:59:20.0030 2308 WerSvc (6d137963730144698cbd10f202e9f251) C:\windows\System32\WerSvc.dll
11:59:20.0030 2308 WerSvc - ok
11:59:20.0080 2308 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\windows\system32\DRIVERS\wfplwf.sys
11:59:20.0080 2308 WfpLwf - ok
11:59:20.0110 2308 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\windows\system32\drivers\wimmount.sys
11:59:20.0110 2308 WIMMount - ok
11:59:20.0120 2308 WinHttpAutoProxySvc - ok
11:59:20.0190 2308 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\windows\system32\wbem\WMIsvc.dll
11:59:20.0200 2308 Winmgmt - ok
11:59:20.0380 2308 WinRM (bcb1310604aa415c4508708975b3931e) C:\windows\system32\WsmSvc.dll
11:59:20.0420 2308 WinRM - ok
11:59:20.0620 2308 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\windows\System32\wlansvc.dll
11:59:20.0650 2308 Wlansvc - ok
11:59:20.0700 2308 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\windows\system32\drivers\wmiacpi.sys
11:59:20.0700 2308 WmiAcpi - ok
11:59:20.0780 2308 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\windows\system32\wbem\WmiApSrv.exe
11:59:20.0790 2308 wmiApSrv - ok
11:59:20.0830 2308 WMPNetworkSvc - ok
11:59:20.0850 2308 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\windows\System32\wpcsvc.dll
11:59:20.0860 2308 WPCSvc - ok
11:59:20.0900 2308 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\windows\system32\wpdbusenum.dll
11:59:20.0950 2308 WPDBusEnum - ok
11:59:20.0970 2308 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\windows\system32\drivers\ws2ifsl.sys
11:59:20.0980 2308 ws2ifsl - ok
11:59:20.0980 2308 WSearch - ok
11:59:21.0040 2308 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\windows\system32\drivers\WudfPf.sys
11:59:21.0050 2308 WudfPf - ok
11:59:21.0090 2308 WUDFRd (cf8d590be3373029d57af80914190682) C:\windows\system32\DRIVERS\WUDFRd.sys
11:59:21.0140 2308 WUDFRd - ok
11:59:21.0190 2308 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\windows\System32\WUDFSvc.dll
11:59:21.0230 2308 wudfsvc - ok
11:59:21.0270 2308 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\windows\System32\wwansvc.dll
11:59:21.0290 2308 WwanSvc - ok
11:59:21.0390 2308 YahooAUService (dd0042f0c3b606a6a8b92d49afb18ad6) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
11:59:21.0410 2308 YahooAUService - ok
11:59:21.0450 2308 MBR (0x1B8) (5b5e648d12fcadc244c1ec30318e1eb9) \Device\Harddisk0\DR0
11:59:21.0960 2308 \Device\Harddisk0\DR0 - ok
11:59:21.0990 2308 Boot (0x1200) (c5a7c1f0918672409a8900c4ecb5be9d) \Device\Harddisk0\DR0\Partition0
11:59:21.0990 2308 \Device\Harddisk0\DR0\Partition0 - ok
11:59:21.0990 2308 ============================================================
11:59:21.0990 2308 Scan finished
11:59:21.0990 2308 ============================================================
11:59:22.0010 2256 Detected object count: 0
11:59:22.0010 2256 Actual detected object count: 0
11:59:46.0900 3664 Deinitialize success

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-12 12:01:52
-----------------------------
12:01:52.130 OS Version: Windows x64 6.1.7601 Service Pack 1
12:01:52.130 Number of processors: 4 586 0x2502
12:01:52.130 ComputerName: STEVE-PC UserName: Steve
12:01:54.830 Initialize success
12:07:05.422 AVAST engine defs: 12081200
12:12:08.395 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
12:12:08.397 Disk 0 Vendor: FUJITSU_ 0040 Size: 476940MB BusType: 3
12:12:08.408 Disk 0 MBR read successfully
12:12:08.410 Disk 0 MBR scan
12:12:08.414 Disk 0 Windows VISTA default MBR code
12:12:08.428 Disk 0 Partition 1 80 (A) 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
12:12:08.439 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 465900 MB offset 3074048
12:12:08.472 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS NTFS 9539 MB offset 957237248
12:12:08.517 Disk 0 scanning C:\windows\system32\drivers
12:12:24.042 Service scanning
12:13:09.867 Modules scanning
12:13:09.876 Disk 0 trace - called modules:
12:13:09.906 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys
12:13:10.237 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800698f060]
12:13:10.246 3 CLASSPNP.SYS[fffff880019cd43f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004907050]
12:13:13.402 AVAST engine scan C:\windows
12:13:16.504 AVAST engine scan C:\windows\system32
12:15:34.235 File: C:\windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
12:15:36.945 File: C:\windows\assembly\GAC_64\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
12:17:08.566 AVAST engine scan C:\windows\system32\drivers
12:17:23.136 AVAST engine scan C:\Users\Steve
12:34:08.425 AVAST engine scan C:\ProgramData
12:44:01.146 Scan finished successfully
13:04:57.547 Disk 0 MBR has been saved successfully to "C:\MBR.dat"
13:04:57.557 The log file has been saved successfully to "C:\aswMBR.txt"

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:13 AM

Posted 12 August 2012 - 09:58 PM

We need advanced tools to remove this one

Read the guide here

http://www.bleepingcomputer.com/forums/topic34773.html

and create a topic here

http://www.bleepingcomputer.com/forums/forum22.html

Good luck

#5 Orange Blossom

Orange Blossom

    OBleepin Investigator


  • Moderator
  • 37,011 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Bloomington, IN
  • Local time:12:13 PM

Posted 15 August 2012 - 09:43 AM

Hello,

Now that you have posted a log here: http://www.bleepingcomputer.com/forums/topic465110.html you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a MRT Team member, nor should you ask for help elsewhere. Doing so can result in system changes which may not show in the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

From this point on the MRT Team should be the only members that you take advice from, until they have verified your log as clean.

Please be patient. It may take a while to get a response because the MRT Team members are EXTREMELY busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the MRT Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRT Team member is already assisting you and not open the thread to respond.

Please be patient. It may take several days to get a response but your log will be reviewed and answered as soon as possible. I advise checking your topic once a day for responses as the e-mail notification system is unreliable.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

To avoid confusion, I am closing this topic. Good luck with your log.

Orange Blossom :cherry:
Help us help you. If HelpBot replies, you MUST follow step 1 in its reply so we know you need help.

Orange Blossom

An ounce of prevention is worth a pound of cure

SpywareBlaster, WinPatrol Plus, ESET Smart Security, Malwarebytes' Anti-Malware, NoScript Firefox ext., Norton noscript




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users