Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Redirecting virus? sirefef? Trojan?


  • Please log in to reply
74 replies to this topic

#1 MalloryO

MalloryO

  • Members
  • 85 posts
  • OFFLINE
  •  
  • Local time:06:40 PM

Posted 18 August 2012 - 11:07 AM

I have a Sony vaio laptop that is running on Vista home premium.

I've been having severe issues with my computer and because I'm not savvy in this area I don't know if all of these things are related or not.

The first problem I had a few weeks ago was some windows platinum virus scanner that I don't remember downloading. It kept telling me it found threats on my computer but it wouldn't remove them unless I purchased the program. I used super anti spyware to remove it. I think I ran malware bytes after as well.

Then I immediately had a new problem with what I came to learn was called a redirecting virus. Super anti spyware and malware bytes couldn't get rid of it but every time I ran them they'd find more and more threats and tracking cookies.

I tried something called tddskiller? I don't think it did anything... It always told me there was no threats found.

Hubby tried doing a system restore but it tells us that it was unsuccessful creating a shadow? I don't know what that meant.

My well meaning parents told me about windows security essentials, saying this is the only program I'll need and it helped them when my mom was having similar problems. I downloaded this last night, and now my computer won't quit restarting unless I run it in safe mode, where I then tried to uninstall wse so I could at least run it in safe mode with networking. Well the wse won't let me uninstall. Edited to add: the severe threat it keeps restarting to try to remove was sirefef something...

Also I no longer have any of the other anti spyware or malware programs because wse said it would conflict so i uninstalled them.

I can't remember at which of these last steps one of the prompts recommended that I made sure windows firewall was turned on, but it wouldn't turn on and I couldnt do it manually, either. It said there was some unknown error.

Can somebody please help me salvage this computer? I've searched for fixes and finally came across this forum because it seems you've had other people with the same problem. I don't want to just go it alone though because it seems the help is custom made for every different person. I am only able to post because because thankfully I have an iPad, but I really need my computer for my business...

*Moderator Edit: Moved topic from Vista to the more appropriate forum. This has also been reported as unbootable ~ Queen-Evie*

Edited by Queen-Evie, 18 August 2012 - 11:20 AM.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:40 PM

Posted 18 August 2012 - 11:19 AM

Latest version of TDSSkiller should find it.Boot into safemode with networking

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

Edited by narenxp, 18 August 2012 - 11:21 AM.


#3 MalloryO

MalloryO
  • Topic Starter

  • Members
  • 85 posts
  • OFFLINE
  •  
  • Local time:06:40 PM

Posted 18 August 2012 - 11:22 AM

I'm not able to get very far doing anything because wse keeps automatically restarting my system even in safe mode with networking.

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:40 PM

Posted 18 August 2012 - 11:27 AM

I downloaded this last night, and now my computer won't quit restarting unless I run it in safe mode,


You said it doesnt happen in safemode

Restart the PC

Press F8 on bootup

Select REPAIR YOUR COMPUTER

Click on REPAIR

On the System Recovery Options menu you will get the following options:

Startup Repair
System Restore
Windows Complete PC Restore
Windows Memory Diagnostic Tool
Command Prompt

Can you get to this screen?

Edited by narenxp, 18 August 2012 - 11:28 AM.


#5 MalloryO

MalloryO
  • Topic Starter

  • Members
  • 85 posts
  • OFFLINE
  •  
  • Local time:06:40 PM

Posted 18 August 2012 - 11:30 AM

Yes thank you. Which do I select?
responding to the quote:
I'm not entirely sure what the different safe modes mean but the one that doesn't let me connect to the Internet was the one that didn't continue to restart. I thought that I'd have to run safe mode with networking to download anything, but wse allows it to restart.

I apologize if I'm confusing you.

Edited by MalloryO, 18 August 2012 - 11:34 AM.


#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:40 PM

Posted 18 August 2012 - 11:33 AM

Select System restore

If you have restore point before you installed microsoft security essentials restore it or if you have restore point before you were infected would be fine

If that doesnt work

Select command prompt

Type notepad and press ENTER

Click on FILE-OPEN

Now you should be able to see your DRIVES

Let me know the DRIVE LETTER OF BOOT DRIVE and your C drive

good luck

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:40 PM

Posted 18 August 2012 - 11:37 AM

I'm not entirely sure what the different safe modes mean but the one that doesn't let me connect to the Internet was the one that didn't continue to restart.


If it doesnt restart in safemode,boot into safemode

Click on startmenu and type

cmd

Right click on it-run as administrator and run this command

sfc /scanfile=c:\windows\system32\services.exe

Press ENTER

After scan completes,restart the PC into normal mode,now go ahead and run the other scans.

Edited by narenxp, 18 August 2012 - 11:37 AM.


#8 MalloryO

MalloryO
  • Topic Starter

  • Members
  • 85 posts
  • OFFLINE
  •  
  • Local time:06:40 PM

Posted 18 August 2012 - 11:43 AM

Attempting system recovery now. Hoping it's working this time.... Btw I appreciate your assistance.

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:40 PM

Posted 18 August 2012 - 11:44 AM

You're welcome.If its successful,follow my initial instructions and post the logs

#10 MalloryO

MalloryO
  • Topic Starter

  • Members
  • 85 posts
  • OFFLINE
  •  
  • Local time:06:40 PM

Posted 18 August 2012 - 12:01 PM

System restored successfully! Yay! Downloaded and running the tddskiller now.

Will it be very easy to locate the log files? Where do I look?

#11 MalloryO

MalloryO
  • Topic Starter

  • Members
  • 85 posts
  • OFFLINE
  •  
  • Local time:06:40 PM

Posted 18 August 2012 - 12:06 PM

I think I found what you mean by Logs...

here are the tddskiller logs.

12:58:01.0883 2012 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05
12:58:05.0682 2012 ============================================================
12:58:05.0682 2012 Current date / time: 2012/08/18 12:58:05.0682
12:58:05.0682 2012 SystemInfo:
12:58:05.0682 2012
12:58:05.0682 2012 OS Version: 6.0.6001 ServicePack: 1.0
12:58:05.0682 2012 Product type: Workstation
12:58:05.0682 2012 ComputerName: BMDEO-PC
12:58:05.0683 2012 UserName: BMDEO
12:58:05.0683 2012 Windows directory: C:\Windows
12:58:05.0683 2012 System windows directory: C:\Windows
12:58:05.0683 2012 Running under WOW64
12:58:05.0683 2012 Processor architecture: Intel x64
12:58:05.0683 2012 Number of processors: 2
12:58:05.0683 2012 Page size: 0x1000
12:58:05.0683 2012 Boot type: Safe boot with network
12:58:05.0683 2012 ============================================================
12:58:26.0978 2012 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:58:26.0982 2012 ============================================================
12:58:26.0982 2012 \Device\Harddisk0\DR0:
12:58:26.0993 2012 MBR partitions:
12:58:26.0993 2012 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1546000, BlocksNum 0x1BC7F170
12:58:26.0993 2012 ============================================================
12:58:27.0025 2012 C: <-> \Device\Harddisk0\DR0\Partition1
12:58:27.0025 2012 ============================================================
12:58:27.0025 2012 Initialize success
12:58:27.0025 2012 ============================================================
12:58:52.0715 1244 ============================================================
12:58:52.0715 1244 Scan started
12:58:52.0715 1244 Mode: Manual; TDLFS;
12:58:52.0715 1244 ============================================================
12:58:58.0819 1244 ================ Scan services =============================
12:58:59.0988 1244 [ 7d9d615201a483d6fa99491c2e655a5a ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
12:58:59.0991 1244 !SASCORE - ok
12:59:02.0619 1244 [ adc420616c501b45d26c0fd3ef1e54e4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
12:59:02.0631 1244 ACDaemon - ok
12:59:04.0506 1244 [ 8c99ed256a889d647935a97c543b7b85 ] ACPI C:\Windows\system32\drivers\acpi.sys
12:59:04.0563 1244 ACPI - ok
12:59:05.0209 1244 [ c004f38974f4d321b4c20a240e1175c0 ] AdobeActiveFileMonitor9.0 C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
12:59:05.0332 1244 AdobeActiveFileMonitor9.0 - ok
12:59:06.0227 1244 [ 11a52cf7b265631deeb24c6149309eff ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
12:59:06.0359 1244 AdobeARMservice - ok
12:59:08.0277 1244 [ a9d3b95e8466bd58eeb8a1154654e162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:59:08.0424 1244 AdobeFlashPlayerUpdateSvc - ok
12:59:09.0677 1244 [ f14215e37cf124104575073f782111d2 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
12:59:09.0927 1244 adp94xx - ok
12:59:10.0360 1244 [ 7d05a75e3066861a6610f7ee04ff085c ] adpahci C:\Windows\system32\drivers\adpahci.sys
12:59:10.0365 1244 adpahci - ok
12:59:10.0426 1244 [ 820a201fe08a0c345b3bedbc30e1a77c ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
12:59:10.0428 1244 adpu160m - ok
12:59:10.0460 1244 [ 9b4ab6854559dc168fbb4c24fc52e794 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
12:59:10.0464 1244 adpu320 - ok
12:59:10.0671 1244 [ 0f421175574bfe0bf2f4d8e910a253bb ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
12:59:10.0672 1244 AeLookupSvc - ok
12:59:11.0072 1244 [ 9bb97042fa331a0fb4bdd98b9280a50a ] AFD C:\Windows\system32\drivers\afd.sys
12:59:11.0078 1244 AFD - ok
12:59:11.0916 1244 [ f6f6793b7f17b550ecfdbd3b229173f7 ] agp440 C:\Windows\system32\drivers\agp440.sys
12:59:11.0918 1244 agp440 - ok
12:59:14.0957 1244 [ 222cb641b4b8a1d1126f8033f9fd6a00 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
12:59:14.0960 1244 aic78xx - ok
12:59:18.0023 1244 [ 5922f4f59b7868f3d74bbbbeb7b825a3 ] ALG C:\Windows\System32\alg.exe
12:59:18.0025 1244 ALG - ok
12:59:18.0269 1244 [ 157d0898d4b73f075ce9fa26b482df98 ] aliide C:\Windows\system32\drivers\aliide.sys
12:59:18.0270 1244 aliide - ok
12:59:18.0354 1244 [ 970fa5059e61e30d25307b99903e991e ] amdide C:\Windows\system32\drivers\amdide.sys
12:59:18.0355 1244 amdide - ok
12:59:18.0524 1244 [ cdc3632a3a5ea4dbb83e46076a3165a1 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
12:59:18.0540 1244 AmdK8 - ok
12:59:18.0853 1244 [ 22fecb5b3de1eb8b1b2761338922f681 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
12:59:18.0854 1244 ApfiltrService - ok
12:59:19.0631 1244 [ 9c37b3fd5615477cb9a0cd116cf43f5c ] Appinfo C:\Windows\System32\appinfo.dll
12:59:19.0632 1244 Appinfo - ok
12:59:21.0875 1244 [ 7ef47644b74ebe721cc32211d3c35e76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:59:22.0683 1244 Apple Mobile Device - ok
12:59:22.0862 1244 [ ba8417d4765f3988ff921f30f630e303 ] arc C:\Windows\system32\drivers\arc.sys
12:59:22.0864 1244 arc - ok
12:59:22.0988 1244 [ 9d41c435619733b34cc16a511e644b11 ] arcsas C:\Windows\system32\drivers\arcsas.sys
12:59:22.0990 1244 arcsas - ok
12:59:23.0536 1244 [ 1ce3822b05a5e229286a15ea39369870 ] ArcSoftKsUFilter C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
12:59:23.0537 1244 ArcSoftKsUFilter - ok
12:59:23.0784 1244 [ 22d13ff3dafec2a80634752b1eaa2de6 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
12:59:23.0795 1244 AsyncMac - ok
12:59:24.0011 1244 [ 1898fae8e07d97f2f6c2d5326c633fac ] atapi C:\Windows\system32\drivers\atapi.sys
12:59:24.0047 1244 atapi - ok
12:59:25.0563 1244 [ 1de563696ff48852c34cc58b1cc5cd67 ] Ati External Event Utility C:\Windows\system32\Ati2evxx.exe
12:59:25.0575 1244 Ati External Event Utility - ok
12:59:31.0451 1244 [ f3631ca5f0309ee4f941ea1e37e5ca60 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
12:59:35.0417 1244 atikmdag - ok
12:59:35.0772 1244 [ 2a54b6a48ab6d2166271b05e9469326e ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:59:35.0778 1244 AudioEndpointBuilder - ok
12:59:35.0788 1244 [ 2a54b6a48ab6d2166271b05e9469326e ] AudioSrv C:\Windows\System32\Audiosrv.dll
12:59:35.0791 1244 AudioSrv - ok
12:59:35.0921 1244 [ 79feeb40056683f8f61398d81dda65d2 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
12:59:35.0971 1244 blbdrive - ok
12:59:36.0683 1244 [ ebbcd5dfbb1de70e8f4af8fa59e401fd ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:59:36.0693 1244 Bonjour Service - ok
12:59:36.0995 1244 [ f0f035fcec3554cc1b70c5611bd87951 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
12:59:37.0003 1244 bowser - ok
12:59:37.0708 1244 [ f09eee9edc320b5e1501f749fde686c8 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
12:59:37.0737 1244 BrFiltLo - ok
12:59:38.0077 1244 [ b114d3098e9bdb8bea8b053685831be6 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
12:59:38.0089 1244 BrFiltUp - ok
12:59:38.0124 1244 [ a1b39de453433b115b4ea69ee0343816 ] Browser C:\Windows\System32\browser.dll
12:59:38.0126 1244 Browser - ok
12:59:38.0583 1244 [ f0f0ba4d815be446aa6a4583ca3bca9b ] Brserid C:\Windows\system32\DRIVERS\BrSerId.sys
12:59:38.0585 1244 Brserid - ok
12:59:38.0897 1244 [ a6eca2151b08a09caceca35c07f05b42 ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
12:59:38.0898 1244 BrSerWdm - ok
12:59:39.0275 1244 [ b79968002c277e869cf38bd22cd61524 ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
12:59:39.0299 1244 BrUsbMdm - ok
12:59:39.0929 1244 [ a87528880231c54e75ea7a44943b38bf ] BrUsbSer C:\Windows\system32\DRIVERS\BrUsbSer.sys
12:59:39.0930 1244 BrUsbSer - ok
12:59:42.0510 1244 [ d4a3ae275d21b294f9b26f84748054d5 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
12:59:42.0511 1244 BthEnum - ok
12:59:42.0985 1244 [ 752fc84a394ca712d51dd9bd53f58e73 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
12:59:42.0986 1244 BTHMODEM - ok
12:59:43.0033 1244 [ befc5311736b475ac5b60c14ff7c775a ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
12:59:43.0035 1244 BthPan - ok
12:59:45.0595 1244 [ 04e4907fcb00cdfaca052dea6462b01b ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
12:59:46.0128 1244 BTHPORT - ok
12:59:46.0293 1244 [ 90e967b4bb5556edc9c2ea0eb653d1b2 ] BthServ C:\Windows\System32\bthserv.dll
12:59:46.0294 1244 BthServ - ok
12:59:46.0326 1244 [ fd8f6802d7564046d933093705f9b9b4 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
12:59:46.0327 1244 BTHUSB - ok
12:59:46.0607 1244 [ af1d3519b4914100b07cc396020836f5 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
12:59:46.0609 1244 btwaudio - ok
12:59:46.0837 1244 [ 9b87dd0c292c857a3461739fc99bd9ca ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
12:59:46.0887 1244 btwavdt - ok
12:59:47.0898 1244 [ e090e9f1a10ab395b138357f2c600082 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
12:59:47.0937 1244 btwdins - ok
12:59:47.0982 1244 [ d33875ca5940f2e0ed06fb74d556e2db ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
12:59:47.0983 1244 btwl2cap - ok
12:59:48.0155 1244 [ 09b9b17ed78e0307798ceb9904f1a4c5 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
12:59:48.0181 1244 btwrchid - ok
12:59:48.0413 1244 [ fdb53a8d3bc52dc29884587e768e3388 ] CAXHWAZL C:\Windows\system32\DRIVERS\CAXHWAZL.sys
12:59:48.0418 1244 CAXHWAZL - ok
12:59:48.0515 1244 [ b4d787db8d30793a4d4df9feed18f136 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
12:59:48.0517 1244 cdfs - ok
12:59:49.0308 1244 [ 3b2fb35363423ed60c8fbf15fc8680bd ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
12:59:49.0326 1244 cdrom - ok
12:59:49.0368 1244 [ edfffc8b6afb609bf33dbe0a900426b6 ] CertPropSvc C:\Windows\System32\certprop.dll
12:59:49.0387 1244 CertPropSvc - ok
12:59:49.0439 1244 [ 02ea568d498bbdd4ba55bf3fce34d456 ] circlass C:\Windows\system32\drivers\circlass.sys
12:59:49.0649 1244 circlass - ok
12:59:50.0213 1244 [ caeda2572b7042b11062f327f099251d ] CLFS C:\Windows\system32\CLFS.sys
12:59:50.0219 1244 CLFS - ok
12:59:50.0660 1244 [ d87acaed61e417bba546ced5e7e36d9c ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:59:50.0663 1244 clr_optimization_v2.0.50727_32 - ok
12:59:51.0022 1244 [ fa58b51ed71c9133e141164eaa7c54eb ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:59:51.0025 1244 clr_optimization_v2.0.50727_64 - ok
12:59:51.0943 1244 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:59:52.0392 1244 clr_optimization_v4.0.30319_32 - ok
12:59:52.0649 1244 [ c6f9af94dcd58122a4d7e89db6bed29d ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:59:52.0912 1244 clr_optimization_v4.0.30319_64 - ok
12:59:53.0383 1244 [ b52d9a14ce4101577900a364ba86f3df ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
12:59:53.0407 1244 CmBatt - ok
12:59:53.0514 1244 [ e5d5499a1c50a54b5161296b6afe6192 ] cmdide C:\Windows\system32\drivers\cmdide.sys
12:59:53.0516 1244 cmdide - ok
12:59:53.0532 1244 [ 7fb8ad01db0eabe60c8a861531a8f431 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
12:59:53.0533 1244 Compbatt - ok
12:59:53.0572 1244 COMSysApp - ok
12:59:53.0748 1244 [ a8585b6412253803ce8efcbd6d6dc15c ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
12:59:53.0763 1244 crcdisk - ok
12:59:54.0185 1244 [ 4374f784121d8b3bb466b03f5e5ebd33 ] CryptSvc C:\Windows\system32\cryptsvc.dll
12:59:54.0187 1244 CryptSvc - ok
12:59:55.0170 1244 [ 52cdade8289ff21f1f2215ff51a5f36c ] DcomLaunch C:\Windows\system32\rpcss.dll
12:59:55.0403 1244 DcomLaunch - ok
12:59:55.0495 1244 [ 3725c43c9e90731eca651d506cc599a3 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
12:59:55.0497 1244 DfsC - ok
12:59:57.0342 1244 [ 1781f99840979ee7b126c9073c377fd0 ] DFSR C:\Windows\system32\DFSR.exe
13:00:00.0741 1244 DFSR - ok
13:00:01.0456 1244 [ fdaa0edfcfb70cd529589ad654651b40 ] Dhcp C:\Windows\System32\dhcpcsvc.dll
13:00:01.0461 1244 Dhcp - ok
13:00:02.0315 1244 [ 2dc415fc05fb8a079f896cbbacb19324 ] disk C:\Windows\system32\drivers\disk.sys
13:00:02.0316 1244 disk - ok
13:00:03.0611 1244 DMICall - ok
13:00:03.0695 1244 [ daf05293c1264e251d3a25e7e24b2ddf ] Dnscache C:\Windows\System32\dnsrslvr.dll
13:00:03.0796 1244 Dnscache - ok
13:00:04.0229 1244 [ cc661867677627f2911c2a4970dee0f1 ] dot3svc C:\Windows\System32\dot3svc.dll
13:00:04.0661 1244 dot3svc - ok
13:00:04.0870 1244 [ 1583b39790db3eaec7edb0cb0140c708 ] DPS C:\Windows\system32\dps.dll
13:00:04.0873 1244 DPS - ok
13:00:05.0548 1244 [ f1a78a98cfc2ee02144c6bec945447e6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
13:00:05.0549 1244 drmkaud - ok
13:00:06.0208 1244 [ 412964040ce920ff83aff6b5b551bf99 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
13:00:07.0519 1244 DXGKrnl - ok
13:00:07.0694 1244 [ 264cee7b031a9d6c827f3d0cb031f2fe ] E1G60 C:\Windows\system32\DRIVERS\E1G6032E.sys
13:00:07.0760 1244 E1G60 - ok
13:00:07.0910 1244 [ c2303883fd9be49dc36a6400643002ea ] EapHost C:\Windows\System32\eapsvc.dll
13:00:07.0928 1244 EapHost - ok
13:00:08.0067 1244 easytether - ok
13:00:08.0434 1244 [ 7343d950a34a95dcb7441642e3e6beef ] Ecache C:\Windows\system32\drivers\ecache.sys
13:00:08.0611 1244 Ecache - ok
13:00:10.0579 1244 [ 33510be001ccdb5a01fcc88f4dd8dfc7 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
13:00:10.0997 1244 ehRecvr - ok
13:00:11.0015 1244 [ 1abc6436b0edaa3d496d9c827f92820d ] ehSched C:\Windows\ehome\ehsched.exe
13:00:11.0017 1244 ehSched - ok
13:00:11.0356 1244 [ 08f48cb2cd4019afb0456869b49cd76f ] ehstart C:\Windows\ehome\ehstart.dll
13:00:11.0391 1244 ehstart - ok
13:00:11.0549 1244 [ c4636d6e10469404ab5308d9fd45ed07 ] elxstor C:\Windows\system32\drivers\elxstor.sys
13:00:11.0555 1244 elxstor - ok
13:00:13.0536 1244 [ e4eb76d0a8fc43db7f36302e1f33791f ] EMDMgmt C:\Windows\system32\emdmgmt.dll
13:00:13.0703 1244 EMDMgmt - ok
13:00:14.0727 1244 [ bc3a58e938bb277e46bf4b3003b01abd ] ErrDev C:\Windows\system32\drivers\errdev.sys
13:00:14.0743 1244 ErrDev - ok
13:00:15.0480 1244 [ 6b1a97bf9fefbdc83f3c7c7d0f826c66 ] EventSystem C:\Windows\system32\es.dll
13:00:15.0486 1244 EventSystem - ok
13:00:17.0442 1244 [ b18c5ed2ea15c1956c6558052253d93e ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
13:00:18.0187 1244 EvtEng - ok
13:00:18.0300 1244 [ 2a546b9a84658b0554b1ec35cd9adaf5 ] exfat C:\Windows\system32\drivers\exfat.sys
13:00:18.0303 1244 exfat - ok
13:00:19.0360 1244 [ fe731d345ed9eeabbc72a59b35941834 ] fastfat C:\Windows\system32\drivers\fastfat.sys
13:00:19.0364 1244 fastfat - ok
13:00:19.0743 1244 [ 81b79b6df71fa1d2c6d688d830616e39 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
13:00:19.0745 1244 fdc - ok
13:00:19.0787 1244 [ bb9267acacd8b7533dd936c34a0cba5e ] fdPHost C:\Windows\system32\fdPHost.dll
13:00:19.0788 1244 fdPHost - ok
13:00:19.0826 1244 [ 300c80931eabbe1db7591c516efe8d0f ] FDResPub C:\Windows\system32\fdrespub.dll
13:00:19.0828 1244 FDResPub - ok
13:00:19.0876 1244 [ 457b7d1d533e4bd62a99aed9c7bb4c59 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
13:00:19.0884 1244 FileInfo - ok
13:00:20.0208 1244 [ d421327fd6efccaf884a54c58e1b0d7f ] Filetrace C:\Windows\system32\drivers\filetrace.sys
13:00:20.0209 1244 Filetrace - ok
13:00:20.0420 1244 [ 230923ea2b80f79b0f88d90f87b87ebd ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
13:00:20.0422 1244 flpydisk - ok
13:00:20.0449 1244 [ 7dacf1a3a4219575070c6dc7c957428a ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
13:00:20.0453 1244 FltMgr - ok
13:00:21.0323 1244 [ 73d0f1d32edae3dcc4e84468bf910add ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:00:21.0325 1244 FontCache3.0.0.0 - ok
13:00:21.0418 1244 [ 29d99e860a1ca0a03c6a733fdd0da703 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
13:00:21.0442 1244 Fs_Rec - ok
13:00:21.0532 1244 [ c8e416668d3dc2be3d4fe4c79224997f ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
13:00:22.0092 1244 gagp30kx - ok
13:00:22.0167 1244 [ e403aacf8c7bb11375122d2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
13:00:22.0168 1244 GEARAspiWDM - ok
13:00:22.0228 1244 [ 9e5b254d58232ec8921ec3c5a94c81ed ] gpsvc C:\Windows\System32\gpsvc.dll
13:00:22.0239 1244 gpsvc - ok
13:00:22.0297 1244 gupdate - ok
13:00:22.0597 1244 gupdatem - ok
13:00:24.0630 1244 [ df45f8142dc6df9d18c39b3effbd0409 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
13:00:24.0859 1244 HdAudAddService - ok
13:00:24.0989 1244 [ 0c0d0f8a3ff09ecc81963d09ec6a0a84 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
13:00:24.0990 1244 HDAudBus - ok
13:00:25.0169 1244 [ b4881c84a180e75b8c25dc1d726c375f ] HidBth C:\Windows\system32\drivers\hidbth.sys
13:00:25.0197 1244 HidBth - ok
13:00:25.0372 1244 [ 4e77a77e2c986e8f88f996bb3e1ad829 ] HidIr C:\Windows\system32\drivers\hidir.sys
13:00:25.0374 1244 HidIr - ok
13:00:26.0279 1244 [ 0aa154538544e988429da2d5aa803a6c ] hidserv C:\Windows\system32\hidserv.dll
13:00:26.0281 1244 hidserv - ok
13:00:26.0311 1244 [ 59a7b5e13356c20d67983868242167c5 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
13:00:26.0312 1244 HidUsb - ok
13:00:26.0421 1244 [ b12f367ea39c0795fd57e31242ce1a5a ] hkmsvc C:\Windows\system32\kmsvc.dll
13:00:26.0423 1244 hkmsvc - ok
13:00:26.0590 1244 [ d7109a1e6bd2dfdbcba72a6bc626a13b ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
13:00:26.0591 1244 HpCISSs - ok
13:00:26.0856 1244 [ 57ba73b5b321291e5114cb21350e1ea0 ] HSFHWAZL C:\Windows\system32\DRIVERS\VSTAZL6.SYS
13:00:26.0905 1244 HSFHWAZL - ok
13:00:28.0681 1244 [ e90d0e3d9715f3bec7db2d6321dddee8 ] HSF_DPV C:\Windows\system32\DRIVERS\CAX_DPV.sys
13:00:29.0270 1244 HSF_DPV - ok
13:00:29.0660 1244 [ e690736da6c543f5d99c8fa27bea31db ] HTTP C:\Windows\system32\drivers\HTTP.sys
13:00:29.0669 1244 HTTP - ok
13:00:30.0277 1244 [ da94c854cea5fac549d4e1f6e88349e8 ] i2omp C:\Windows\system32\drivers\i2omp.sys
13:00:30.0351 1244 i2omp - ok
13:00:31.0481 1244 [ cbb597659a2713ce0c9cc20c88c7591f ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
13:00:31.0482 1244 i8042prt - ok
13:00:32.0622 1244 [ 756879fa65978df948437ce3fd1eaccd ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
13:00:32.0624 1244 iaStor - ok
13:00:33.0094 1244 [ 3e3bf3627d886736d0b4e90054f929f6 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
13:00:33.0099 1244 iaStorV - ok
13:00:33.0470 1244 [ 1cf03c69b49acb70c722df92755c0c8c ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
13:00:33.0472 1244 IDriverT - ok
13:00:37.0109 1244 [ 76ea63cdb2d88dae7209691d089bef1d ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:00:39.0787 1244 idsvc - ok
13:00:40.0399 1244 igfx - ok
13:00:40.0619 1244 [ 8c3951ad2fe886ef76c7b5027c3125d3 ] iirsp C:\Windows\system32\drivers\iirsp.sys
13:00:40.0655 1244 iirsp - ok
13:00:41.0533 1244 [ 3a3b232140c33376e134e7b61a0eaa44 ] IKEEXT C:\Windows\System32\ikeext.dll
13:00:41.0540 1244 IKEEXT - ok
13:00:45.0330 1244 [ b3fb479a7c0626499eb5989bc087cf8d ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
13:00:46.0240 1244 IntcAzAudAddService - ok
13:00:46.0757 1244 IntcHdmiAddService - ok
13:00:46.0995 1244 [ df797a12176f11b2d301c5b234bb200e ] intelide C:\Windows\system32\drivers\intelide.sys
13:00:47.0082 1244 intelide - ok
13:00:47.0219 1244 [ bfd84af32fa1bad6231c4585cb469630 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
13:00:47.0275 1244 intelppm - ok
13:00:48.0887 1244 [ 5624bc1bc5eeb49c0ab76a8114f05ea3 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
13:00:48.0896 1244 IPBusEnum - ok
13:00:49.0112 1244 [ 99b821f5bebd6a3cc3fe564f802ae0fd ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:00:49.0197 1244 IpFilterDriver - ok
13:00:49.0201 1244 IpInIp - ok
13:00:50.0276 1244 [ 9c2ee2e6e5a7203bfae15c299475ec67 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
13:00:50.0366 1244 IPMIDRV - ok
13:00:50.0468 1244 [ b7e6212f581ea5f6ab0c3a6ceeeb89be ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
13:00:50.0470 1244 IPNAT - ok
13:00:51.0386 1244 [ 755e4ba6dce627a2683bb7640553c8d6 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
13:00:51.0400 1244 iPod Service - ok
13:00:51.0714 1244 [ 8c42ca155343a2f11d29feca67faa88d ] IRENUM C:\Windows\system32\drivers\irenum.sys
13:00:51.0715 1244 IRENUM - ok
13:00:52.0639 1244 [ 0672bfcedc6fc468a2b0500d81437f4f ] isapnp C:\Windows\system32\drivers\isapnp.sys
13:00:52.0640 1244 isapnp - ok
13:00:52.0724 1244 [ 49e4ccbf74783fce5d2cc1ff6480e1f4 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
13:00:52.0726 1244 iScsiPrt - ok
13:00:52.0813 1244 [ 63c766cdc609ff8206cb447a65abba4a ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
13:00:52.0815 1244 iteatapi - ok
13:00:53.0250 1244 [ 1281fe73b17664631d12f643cbea3f59 ] iteraid C:\Windows\system32\drivers\iteraid.sys
13:00:53.0252 1244 iteraid - ok
13:00:53.0885 1244 [ 213822072085b5bbad9af30ab577d817 ] IviRegMgr C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
13:00:53.0888 1244 IviRegMgr - ok
13:00:54.0478 1244 [ 423696f3ba6472dd17699209b933bc26 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
13:00:54.0479 1244 kbdclass - ok
13:00:54.0496 1244 [ bf8783a5066cfecf45095459e8010fa7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
13:00:54.0497 1244 kbdhid - ok
13:00:54.0533 1244 [ 80f4593e92ff960e4763380d3168e498 ] KeyIso C:\Windows\system32\lsass.exe
13:00:54.0535 1244 KeyIso - ok
13:00:54.0646 1244 [ ccdcce6224e1e207e953af826b98a9d9 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
13:00:54.0674 1244 KSecDD - ok
13:00:54.0980 1244 [ 1d419cf43db29396ecd7113d129d94eb ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
13:00:55.0361 1244 ksthunk - ok
13:00:57.0679 1244 [ 1faf6926f3416d3da05c5b265491bdae ] KtmRm C:\Windows\system32\msdtckrm.dll
13:00:58.0517 1244 KtmRm - ok
13:00:58.0942 1244 [ 3f27c9cdae606d74431e3ab39571a7f3 ] LanmanServer C:\Windows\system32\srvsvc.dll
13:00:59.0107 1244 LanmanServer - ok
13:00:59.0233 1244 [ 6e25ffc6fead6544c6e9f1d23329570c ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:00:59.0672 1244 LanmanWorkstation - ok
13:01:00.0330 1244 [ 7cdb827d183c3a29edac9e62e399488a ] LBTServ C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
13:01:00.0334 1244 LBTServ - ok
13:01:00.0807 1244 [ 83e05435f4d2c0f0a1fd74c41ded44e5 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
13:01:00.0807 1244 LHidFilt - ok
13:01:00.0845 1244 [ 96ece2659b6654c10a0c310ae3a6d02c ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
13:01:00.0846 1244 lltdio - ok
13:01:01.0580 1244 [ 961ccbd0b1ccb5675d64976fae37d092 ] lltdsvc C:\Windows\System32\lltdsvc.dll
13:01:01.0585 1244 lltdsvc - ok
13:01:01.0601 1244 [ a47f8080cacc23c91fe823ad19aa5612 ] lmhosts C:\Windows\System32\lmhsvc.dll
13:01:01.0602 1244 lmhosts - ok
13:01:01.0975 1244 [ abcbc7271c33567d686c91cf690cf2eb ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
13:01:01.0976 1244 LMouFilt - ok
13:01:02.0202 1244 [ acbe1af32d3123e330a07bfbc5ec4a9b ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
13:01:02.0223 1244 LSI_FC - ok
13:01:02.0368 1244 [ 799ffb2fc4729fa46d2157c0065b3525 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
13:01:02.0417 1244 LSI_SAS - ok
13:01:02.0700 1244 [ f445ff1daad8a226366bfaf42551226b ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
13:01:02.0702 1244 LSI_SCSI - ok
13:01:03.0921 1244 [ 52f87b9cc8932c2a7375c3b2a9be5e3e ] luafv C:\Windows\system32\drivers\luafv.sys
13:01:03.0923 1244 luafv - ok
13:01:06.0329 1244 [ f453d1e6d881e8f8717e20ccd4199e85 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
13:01:06.0356 1244 McComponentHostService - ok
13:01:06.0927 1244 [ 6da30c0de0cc8525e89d612c5063cac1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
13:01:07.0213 1244 Mcx2Svc - ok
13:01:08.0726 1244 [ e4f44ec214b3e381e1fc844a02926666 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
13:01:08.0729 1244 mdmxsdk - ok
13:01:12.0171 1244 [ 5c5cd6aaced32fb26c3fb34b3dcf972f ] megasas C:\Windows\system32\drivers\megasas.sys
13:01:12.0172 1244 megasas - ok
13:01:12.0847 1244 [ 859bc2436b076c77c159ed694acfe8f8 ] MegaSR C:\Windows\system32\drivers\megasr.sys
13:01:12.0854 1244 MegaSR - ok
13:01:12.0909 1244 [ 3cbe4995e80e13ccfbc42e5dcf3ac81a ] MMCSS C:\Windows\system32\mmcss.dll
13:01:12.0913 1244 MMCSS - ok
13:01:13.0227 1244 [ 59848d5cc74606f0ee7557983bb73c2e ] Modem C:\Windows\system32\drivers\modem.sys
13:01:13.0228 1244 Modem - ok
13:01:13.0379 1244 [ c247cc2a57e0a0c8c6dccf7807b3e9e5 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
13:01:13.0447 1244 monitor - ok
13:01:14.0105 1244 [ be72f68c3e898c6c7dd61afdf28769dd ] MotoConnect Service C:\Program Files (x86)\Motorola\MotoConnectService\MotoConnectService.exe
13:01:14.0108 1244 MotoConnect Service - ok
13:01:14.0327 1244 [ 9367304e5e412b120cf5f4ea14e4e4f1 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
13:01:14.0328 1244 mouclass - ok
13:01:14.0606 1244 [ c2c2bd5c5ce5aaf786ddd74b75d2ac69 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
13:01:14.0606 1244 mouhid - ok
13:01:15.0248 1244 [ 11bc9b1e8801b01f7f6adb9ead30019b ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
13:01:15.0250 1244 MountMgr - ok
13:01:17.0732 1244 [ 46297fa8e30a6007f14118fc2b942fbc ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:01:17.0735 1244 MozillaMaintenance - ok
13:01:18.0066 1244 [ f8276eb8698142884498a528dfea8478 ] mpio C:\Windows\system32\drivers\mpio.sys
13:01:18.0069 1244 mpio - ok
13:01:19.0142 1244 [ c92b9abdb65a5991e00c28f13491dba2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
13:01:19.0143 1244 mpsdrv - ok
13:01:19.0260 1244 [ 3c200630a89ef2c0864d515b7a75802e ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
13:01:19.0261 1244 Mraid35x - ok
13:01:19.0301 1244 [ fe2706c15f8345c342820e4e4583fea0 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
13:01:19.0303 1244 MRxDAV - ok
13:01:19.0424 1244 [ b698eb9acc7ecd4927d99d268918f912 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
13:01:19.0427 1244 mrxsmb - ok
13:01:19.0875 1244 [ 9a797e27fd28500ee13d43000c931435 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:01:19.0880 1244 mrxsmb10 - ok
13:01:20.0071 1244 [ f9425d610712533107a264e2d5b2154b ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:01:20.0073 1244 mrxsmb20 - ok
13:01:20.0463 1244 [ 1ac860612b85d8e85ee257d372e39f4d ] msahci C:\Windows\system32\drivers\msahci.sys
13:01:20.0491 1244 msahci - ok
13:01:21.0849 1244 [ a99d2c7e30ad63ef920a894131caf5f7 ] MSCSPTISRV C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
13:01:22.0857 1244 MSCSPTISRV - ok
13:01:23.0956 1244 [ 264bbb4aaf312a485f0e44b65a6b7202 ] msdsm C:\Windows\system32\drivers\msdsm.sys
13:01:23.0968 1244 msdsm - ok
13:01:25.0018 1244 [ 7ec02ce772f068ed0beafa3da341a9bc ] MSDTC C:\Windows\System32\msdtc.exe
13:01:25.0021 1244 MSDTC - ok
13:01:25.0047 1244 [ 704f59bfc4512d2bb0146aec31b10a7c ] Msfs C:\Windows\system32\drivers\Msfs.sys
13:01:25.0048 1244 Msfs - ok
13:01:25.0691 1244 [ 00ebc952961664780d43dca157e79b27 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
13:01:25.0692 1244 msisadrv - ok
13:01:25.0793 1244 [ 366b0c1f4478b519c181e37d43dcda32 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
13:01:25.0853 1244 MSiSCSI - ok
13:01:25.0856 1244 msiserver - ok
13:01:26.0702 1244 [ 0ea73e498f53b96d83dbfca074ad4cf8 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
13:01:26.0704 1244 MSKSSRV - ok
13:01:26.0887 1244 [ 52e59b7e992a58e740aa63f57edbae8b ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
13:01:26.0888 1244 MSPCLOCK - ok
13:01:27.0144 1244 [ 49084a75bae043ae02d5b44d02991bb2 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
13:01:27.0146 1244 MSPQM - ok
13:01:27.0558 1244 [ b8e32e6103fbba9fbb1d0c11ff0d13b5 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
13:01:27.0563 1244 MsRPC - ok
13:01:27.0613 1244 [ 855796e59df77ea93af46f20155bf55b ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
13:01:27.0614 1244 mssmbios - ok
13:01:27.0760 1244 [ 86d632d75d05d5b7c7c043fa3564ae86 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
13:01:27.0761 1244 MSTEE - ok
13:01:28.0516 1244 [ ddf133501f68d6988a0f55dfa88637b4 ] Mup C:\Windows\system32\Drivers\mup.sys
13:01:28.0537 1244 Mup - ok
13:01:29.0107 1244 [ c25022cdd18980846973b598900915f8 ] napagent C:\Windows\system32\qagentRT.dll
13:01:29.0176 1244 napagent - ok
13:01:29.0878 1244 [ 73b99c98fa3a2ed1566e02d6fe1913a5 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
13:01:29.0881 1244 NativeWifiP - ok
13:01:30.0460 1244 [ 2a2ee457af36c5c9a6808c768bd3a12b ] NDIS C:\Windows\system32\drivers\ndis.sys
13:01:30.0470 1244 NDIS - ok
13:01:30.0509 1244 [ 64df698a425478e321981431ac171334 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
13:01:30.0510 1244 NdisTapi - ok
13:01:30.0542 1244 [ 8baa43196d7b5bb972c9a6b2bbf61a19 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
13:01:30.0544 1244 Ndisuio - ok
13:01:30.0610 1244 [ 52e3e8e35101399be9b2938c992aa087 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
13:01:30.0672 1244 NdisWan - ok
13:01:31.0043 1244 [ 9cb77ed7cb72850253e973a2d6afdf49 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
13:01:31.0044 1244 NDProxy - ok
13:01:31.0226 1244 [ a499294f5029a7862adc115bda7371ce ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
13:01:31.0228 1244 NetBIOS - ok
13:01:31.0782 1244 [ 7a29ca243a629230799754162d80120f ] netbt C:\Windows\system32\DRIVERS\netbt.sys
13:01:31.0908 1244 netbt - ok
13:01:32.0370 1244 [ 80f4593e92ff960e4763380d3168e498 ] Netlogon C:\Windows\system32\lsass.exe
13:01:32.0371 1244 Netlogon - ok
13:01:32.0720 1244 [ 9b63b29defc0f3115a559d2597bf5d75 ] Netman C:\Windows\System32\netman.dll
13:01:32.0776 1244 Netman - ok
13:01:33.0490 1244 [ 7846d0136cc2b264926a73047ba7688a ] netprofm C:\Windows\System32\netprofm.dll
13:01:33.0496 1244 netprofm - ok
13:01:36.0080 1244 [ b84613b469b98e09f50a748c1d02e132 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:01:36.0093 1244 NetTcpPortSharing - ok
13:01:51.0542 1244 [ b0b1ba4b9ae82b8b10d972f0cadaa833 ] NETw5v64 C:\Windows\system32\DRIVERS\NETw5v64.sys
13:01:51.0729 1244 NETw5v64 - ok
13:01:51.0995 1244 [ 4ac08bd6af2df42e0c3196d826c8aea7 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
13:01:51.0997 1244 nfrd960 - ok
13:01:52.0126 1244 [ f145bf4c4668e7e312069f81ef847cfc ] NlaSvc C:\Windows\System32\nlasvc.dll
13:01:52.0130 1244 NlaSvc - ok
13:01:52.0165 1244 [ b06154e2a2c91e9be5599fca53bc4cd0 ] Npfs C:\Windows\system32\drivers\Npfs.sys
13:01:52.0167 1244 Npfs - ok
13:01:52.0198 1244 [ acb62baa1c319b17752553df3026eeeb ] nsi C:\Windows\system32\nsisvc.dll
13:01:52.0199 1244 nsi - ok
13:01:52.0289 1244 [ 1523af19ee8b030ba682f7a53537eaeb ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
13:01:52.0290 1244 nsiproxy - ok
13:01:52.0463 1244 [ fe86ba5ac3b50e2ca911e9c60c07b638 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
13:01:52.0502 1244 Ntfs - ok
13:01:52.0540 1244 [ dd5d684975352b85b52e3fd5347c20cb ] Null C:\Windows\system32\drivers\Null.sys
13:01:52.0540 1244 Null - ok
13:01:52.0649 1244 [ 2c040b7ada5b06f6facadac8514aa034 ] nvraid C:\Windows\system32\drivers\nvraid.sys
13:01:52.0664 1244 nvraid - ok
13:01:52.0709 1244 [ f7ea0fe82842d05eda3efdd376dbfdba ] nvstor C:\Windows\system32\drivers\nvstor.sys
13:01:52.0711 1244 nvstor - ok
13:01:53.0014 1244 [ 19067ca93075ef4823e3938a686f532f ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
13:01:53.0016 1244 nv_agp - ok
13:01:53.0298 1244 [ 952ab3bdef38a7391aa05bc8c6028f15 ] NWADI C:\Windows\system32\DRIVERS\NWADIenum.sys
13:01:53.0301 1244 NWADI - ok
13:01:53.0312 1244 NwlnkFlt - ok
13:01:53.0320 1244 NwlnkFwd - ok
13:01:53.0475 1244 [ de3abd010d9734cd4ad4e0ba81f50b63 ] NWUSBCDFIL64 C:\Windows\system32\DRIVERS\NwUsbCdFil64.sys
13:01:53.0476 1244 NWUSBCDFIL64 - ok
13:01:53.0875 1244 [ 6ae72c04633788c3c3b71b5beb17183c ] NWUSBModem C:\Windows\system32\DRIVERS\nwusbmdm.sys
13:01:53.0879 1244 NWUSBModem - ok
13:01:53.0967 1244 [ 6ae72c04633788c3c3b71b5beb17183c ] NWUSBPort C:\Windows\system32\DRIVERS\nwusbser.sys
13:01:53.0971 1244 NWUSBPort - ok
13:01:54.0331 1244 [ 6ae72c04633788c3c3b71b5beb17183c ] NWUSBPort2 C:\Windows\system32\DRIVERS\nwusbser2.sys
13:01:54.0335 1244 NWUSBPort2 - ok
13:01:54.0572 1244 [ 1b30103fde512915a9214b108b6e7a9c ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
13:01:54.0573 1244 ohci1394 - ok
13:01:55.0134 1244 [ 430f35c5592d253f43a26b4f5a523dbf ] p2pimsvc C:\Windows\system32\p2psvc.dll
13:01:55.0148 1244 p2pimsvc - ok
13:01:55.0190 1244 [ 430f35c5592d253f43a26b4f5a523dbf ] p2psvc C:\Windows\system32\p2psvc.dll
13:01:55.0196 1244 p2psvc - ok
13:01:55.0292 1244 [ 41c33fb4fd929fed732a00d2daef5be0 ] PACSPTISVR C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
13:01:55.0294 1244 PACSPTISVR - ok
13:01:55.0410 1244 [ aecd57f94c887f58919f307c35498ea0 ] Parport C:\Windows\system32\drivers\parport.sys
13:01:55.0425 1244 Parport - ok
13:01:55.0523 1244 [ 5ab40c36894f4c06bdab0c9a2fba282d ] partmgr C:\Windows\system32\drivers\partmgr.sys
13:01:55.0574 1244 partmgr - ok
13:01:55.0720 1244 [ 9ab157b374192ff276c1628fbdba2b0e ] PcaSvc C:\Windows\System32\pcasvc.dll
13:01:55.0760 1244 PcaSvc - ok
13:01:55.0961 1244 [ 2a5b2a51559066ea84742909b5b2cd69 ] pci C:\Windows\system32\drivers\pci.sys
13:01:56.0128 1244 pci - ok
13:01:56.0200 1244 [ 8d618c829034479985a9ed56106cc732 ] pciide C:\Windows\system32\drivers\pciide.sys
13:01:56.0213 1244 pciide - ok
13:01:56.0325 1244 [ 037661f3d7c507c9993b7010ceee6288 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
13:01:56.0349 1244 pcmcia - ok
13:01:56.0508 1244 [ 58865916f53592a61549b04941bfd80d ] PEAUTH C:\Windows\system32\drivers\peauth.sys
13:01:56.0561 1244 PEAUTH - ok
13:01:56.0688 1244 [ 0ed8727ea0172860f47258456c06caea ] PerfHost C:\Windows\SysWow64\perfhost.exe
13:01:56.0694 1244 PerfHost - ok
13:01:57.0185 1244 [ e9e68c1a0f25cf4a7ac966eea74ee89e ] pla C:\Windows\system32\pla.dll
13:01:57.0215 1244 pla - ok
13:01:57.0589 1244 [ 5aaa0c5534b05ed49919fcd9dbd11a5b ] PlugPlay C:\Windows\system32\umpnpmgr.dll
13:01:57.0654 1244 PlugPlay - ok
13:01:58.0035 1244 [ 430f35c5592d253f43a26b4f5a523dbf ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
13:01:58.0040 1244 PNRPAutoReg - ok
13:01:58.0061 1244 [ 430f35c5592d253f43a26b4f5a523dbf ] PNRPsvc C:\Windows\system32\p2psvc.dll
13:01:58.0067 1244 PNRPsvc - ok
13:01:58.0187 1244 [ eef3688d5e9592cbbbed00de71dda1ef ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
13:01:58.0196 1244 PolicyAgent - ok
13:01:58.0376 1244 [ f5739f2c6db2534c384ad5150808e8f5 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
13:01:58.0378 1244 PptpMiniport - ok
13:01:58.0447 1244 [ 5080e59ecee0bc923f14018803aa7a01 ] Processor C:\Windows\system32\drivers\processr.sys
13:01:58.0448 1244 Processor - ok
13:01:58.0546 1244 [ b21fe10dad3ab59e78df7aa3fbf41e70 ] ProfSvc C:\Windows\system32\profsvc.dll
13:01:58.0550 1244 ProfSvc - ok
13:01:58.0606 1244 [ 80f4593e92ff960e4763380d3168e498 ] ProtectedStorage C:\Windows\system32\lsass.exe
13:01:58.0607 1244 ProtectedStorage - ok
13:01:58.0636 1244 [ 0e0e205a296095fe4c631e6a4775ad6c ] PSched C:\Windows\system32\DRIVERS\pacer.sys
13:01:58.0665 1244 PSched - ok
13:01:59.0039 1244 [ 2e570416e5b5a227ccf29ee89a656a36 ] PTDUBus C:\Windows\system32\DRIVERS\PTDUBus.sys
13:01:59.0041 1244 PTDUBus - ok
13:01:59.0148 1244 [ d535de3126e2d69d77aa87e7ac901ed4 ] PTDUMdm C:\Windows\system32\DRIVERS\PTDUMdm.sys
13:01:59.0150 1244 PTDUMdm - ok
13:01:59.0154 1244 [ e585aba47264521ed46dfce32a7c2ce3 ] PTDUVsp C:\Windows\system32\DRIVERS\PTDUVsp.sys
13:01:59.0157 1244 PTDUVsp - ok
13:01:59.0225 1244 [ edeaa71dfcd1e9cd880d6eb247f9401d ] PTDUWWAN C:\Windows\system32\DRIVERS\PTDUWWAN.sys
13:01:59.0227 1244 PTDUWWAN - ok
13:01:59.0349 1244 [ 87b04878a6d59d6c79251dc960c674c1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
13:01:59.0351 1244 PxHlpa64 - ok
13:01:59.0727 1244 [ 17996ca5c59259ae02ca95bd11d7beec ] QBCFMonitorService C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
13:01:59.0728 1244 QBCFMonitorService - ok
13:02:00.0612 1244 [ 2241eaf40e472c471cb80cf6b97cca11 ] QBFCService C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
13:02:00.0614 1244 QBFCService - ok
13:02:01.0044 1244 [ 0b83f4e681062f3839be2ec1d98fd94a ] ql2300 C:\Windows\system32\drivers\ql2300.sys
13:02:01.0992 1244 ql2300 - ok
13:02:02.0100 1244 [ e1c80f8d4d1e39ef9595809c1369bf2a ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
13:02:02.0153 1244 ql40xx - ok
13:02:02.0292 1244 [ 90574842c3da781e279061a3eff91f07 ] QWAVE C:\Windows\system32\qwave.dll
13:02:02.0414 1244 QWAVE - ok
13:02:02.0482 1244 [ e8d76edab77ec9c634c27b8eac33adc5 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
13:02:02.0498 1244 QWAVEdrv - ok
13:02:03.0798 1244 [ 1013b3b663a56d3ddd784f581c1bd005 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
13:02:03.0799 1244 RasAcd - ok
13:02:04.0649 1244 [ b2ae18f847d07f0044404ddf7cb04497 ] RasAuto C:\Windows\System32\rasauto.dll
13:02:04.0651 1244 RasAuto - ok
13:02:04.0676 1244 [ 3b9085f91ef00abd15a6f36570e90e12 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
13:02:04.0678 1244 Rasl2tp - ok
13:02:04.0710 1244 [ d0c346d7df0df9b4899631796f177d56 ] RasMan C:\Windows\System32\rasmans.dll
13:02:04.0716 1244 RasMan - ok
13:02:04.0736 1244 [ 2ce1703c27196094fb6e4c6e439f2c21 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
13:02:04.0738 1244 RasPppoe - ok
13:02:04.0782 1244 [ fcd04fa67e8b40fa0ad361dd38593942 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
13:02:04.0784 1244 RasSstp - ok
13:02:04.0905 1244 [ 33fa5b6136d92ee0f53f021c79091300 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
13:02:04.0910 1244 rdbss - ok
13:02:04.0987 1244 [ 603900cc05f6be65ccbf373800af3716 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
13:02:04.0988 1244 RDPCDD - ok
13:02:05.0126 1244 [ c045d1fb111c28df0d1be8d4bda22c06 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
13:02:05.0131 1244 rdpdr - ok
13:02:05.0138 1244 [ cab9421daf3d97b33d0d055858e2c3ab ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
13:02:05.0138 1244 RDPENCDD - ok
13:02:05.0291 1244 [ 7747082f672aa2846235c9cea42e2e72 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
13:02:05.0295 1244 RDPWD - ok
13:02:06.0495 1244 [ d5809d9d48b7e7f57fe79cf22e18e94e ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
13:02:07.0328 1244 RegSrvc - ok
13:02:07.0441 1244 [ c612b9557da73f70d41f8a6fbc8e5344 ] RemoteAccess C:\Windows\System32\mprdim.dll
13:02:07.0493 1244 RemoteAccess - ok
13:02:07.0666 1244 [ 416c611369cbe49074b89cee2f83abef ] RemoteRegistry C:\Windows\system32\regsvc.dll
13:02:07.0760 1244 RemoteRegistry - ok
13:02:07.0845 1244 [ 72c35598ba591abddc37fce7d26fe1c4 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
13:02:07.0893 1244 RFCOMM - ok
13:02:08.0029 1244 [ 7eae3999b94a8ce60bfbaa83462b89a1 ] rimsptsk C:\Windows\system32\DRIVERS\rimssn64.sys
13:02:08.0060 1244 rimsptsk - ok
13:02:08.0133 1244 [ fa6d7cd63ad08a01d9259f58e0c5c09e ] risdptsk C:\Windows\system32\DRIVERS\risdsn64.sys
13:02:08.0135 1244 risdptsk - ok
13:02:08.0343 1244 [ f46c457840d4b7a4daafee739ce04102 ] RpcLocator C:\Windows\system32\locator.exe
13:02:08.0344 1244 RpcLocator - ok
13:02:09.0405 1244 [ 52cdade8289ff21f1f2215ff51a5f36c ] RpcSs C:\Windows\system32\rpcss.dll
13:02:09.0411 1244 RpcSs - ok
13:02:09.0541 1244 [ 22a9cb08b1a6707c1550c6bf099aae73 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
13:02:09.0543 1244 rspndr - ok
13:02:10.0729 1244 [ 730c8393dfc90386d5a1ecb24dd6c614 ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
13:02:11.0521 1244 RTHDMIAzAudService - ok
13:02:13.0894 1244 [ e98774d99e6dee35a703f0cbab5a39bb ] RtkAudioService C:\Windows\RtkAudioService.exe
13:02:14.0005 1244 RtkAudioService - ok
13:02:14.0063 1244 [ 80f4593e92ff960e4763380d3168e498 ] SamSs C:\Windows\system32\lsass.exe
13:02:14.0064 1244 SamSs - ok
13:02:14.0406 1244 [ 3289766038db2cb14d07dc84392138d5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
13:02:14.0434 1244 SASDIFSV - ok
13:02:14.0589 1244 [ 58a38e75f3316a83c23df6173d41f2b5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
13:02:14.0590 1244 SASKUTIL - ok
13:02:14.0616 1244 [ cd9c693589c60ad59bbbcfb0e524e01b ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
13:02:14.0618 1244 sbp2port - ok
13:02:14.0671 1244 [ f024d560fea06f8b56d673849eb89ae6 ] SCardSvr C:\Windows\System32\SCardSvr.dll
13:02:14.0675 1244 SCardSvr - ok
13:02:15.0159 1244 [ ce75d26e0a1106129f4d156851e298ed ] Schedule C:\Windows\system32\schedsvc.dll
13:02:15.0172 1244 Schedule - ok
13:02:15.0271 1244 [ edfffc8b6afb609bf33dbe0a900426b6 ] SCPolicySvc C:\Windows\System32\certprop.dll
13:02:15.0272 1244 SCPolicySvc - ok
13:02:15.0432 1244 [ b42ee50f7d24f837f925332eb349eca5 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
13:02:15.0435 1244 sdbus - ok
13:02:15.0471 1244 [ 4ff71b076a7760fe75ea5ae2d0ee0018 ] SDRSVC C:\Windows\System32\SDRSVC.dll
13:02:15.0474 1244 SDRSVC - ok
13:02:15.0520 1244 [ 3ea8a16169c26afbeb544e0e48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
13:02:15.0521 1244 secdrv - ok
13:02:15.0541 1244 [ 5acdcbc67fcf894a1815b9f96d704490 ] seclogon C:\Windows\system32\seclogon.dll
13:02:15.0542 1244 seclogon - ok
13:02:15.0571 1244 [ 90973a64b96cd647ff81c79443618eed ] SENS C:\Windows\System32\sens.dll
13:02:15.0573 1244 SENS - ok
13:02:15.0649 1244 [ 749502a6c51116a6229cf7536181907f ] Ser2pl C:\Windows\system32\DRIVERS\ser2pl64.sys
13:02:15.0651 1244 Ser2pl - ok
13:02:15.0727 1244 [ f71bfe7ac6c52273b7c82cbf1bb2a222 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
13:02:15.0728 1244 Serenum - ok
13:02:15.0874 1244 [ e62fac91ee288db29a9696a9d279929c ] Serial C:\Windows\system32\drivers\serial.sys
13:02:15.0890 1244 Serial - ok
13:02:16.0192 1244 [ a842f04833684bceea7336211be478df ] sermouse C:\Windows\system32\drivers\sermouse.sys
13:02:16.0193 1244 sermouse - ok
13:02:16.0248 1244 [ a8e4a4407a09f35dccc3771af590b0c4 ] SessionEnv C:\Windows\system32\sessenv.dll
13:02:16.0250 1244 SessionEnv - ok
13:02:16.0410 1244 [ 70f9c476b62de4f2823e918a6c181ade ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys
13:02:16.0411 1244 SFEP - ok
13:02:16.0537 1244 [ 14d4b4465193a87c127933978e8c4106 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
13:02:16.0538 1244 sffdisk - ok
13:02:16.0562 1244 [ 7073aee3f82f3d598e3825962aa98ab2 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
13:02:16.0563 1244 sffp_mmc - ok
13:02:16.0600 1244 [ 35e59ebe4a01a0532ed67975161c7b82 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
13:02:16.0602 1244 sffp_sd - ok
13:02:16.0628 1244 [ 6b7838c94135768bd455cbdc23e39e5f ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
13:02:16.0629 1244 sfloppy - ok
13:02:16.0977 1244 [ 9235ec680d3db17464b39c7c7decb4dd ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:02:16.0994 1244 ShellHWDetection - ok
13:02:17.0272 1244 [ 7a5de502aeb719d4594c6471060a78b3 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
13:02:17.0273 1244 SiSRaid2 - ok
13:02:17.0352 1244 [ 3a2f769fab9582bc720e11ea1dfb184d ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
13:02:17.0354 1244 SiSRaid4 - ok
13:02:17.0726 1244 [ a301d2cefb4747dfe0c24425dcbe0b78 ] slsvc C:\Windows\system32\SLsvc.exe
13:02:18.0604 1244 slsvc - ok
13:02:18.0645 1244 [ f5ddf7c0af85eb72cb295171f8c3cb35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
13:02:18.0648 1244 SLUINotify - ok
13:02:18.0683 1244 [ 41eb2e8e005feedcafce301983eff932 ] Smb C:\Windows\system32\DRIVERS\smb.sys
13:02:18.0685 1244 Smb - ok
13:02:18.0788 1244 [ f8f47f38909823b1af28d60b96340cff ] SNMPTRAP C:\Windows\System32\snmptrap.exe
13:02:18.0790 1244 SNMPTRAP - ok
13:02:18.0810 1244 [ f9cb0672162f7f04248e2b82c1ff4617 ] spldr C:\Windows\system32\drivers\spldr.sys
13:02:18.0811 1244 spldr - ok
13:02:18.0932 1244 [ 92e6738d25c2123be9515c0eac0776cd ] Spooler C:\Windows\System32\spoolsv.exe
13:02:18.0937 1244 Spooler - ok
13:02:18.0970 1244 [ f63102f289ae2039940b22e9b2a8e0bd ] SPTISRV C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe
13:02:18.0972 1244 SPTISRV - ok
13:02:19.0638 1244 [ a8abd7d0d907b45cf3831f4dd8644349 ] srv C:\Windows\system32\DRIVERS\srv.sys
13:02:19.0722 1244 srv - ok
13:02:19.0904 1244 [ 6c72eea39e1c37b436a6d1532999f9ec ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
13:02:19.0967 1244 srv2 - ok
13:02:20.0156 1244 [ 7f69bcf9e6fa3d93c82ee6b87812666d ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
13:02:20.0465 1244 srvnet - ok
13:02:20.0555 1244 [ 192c74646ec5725aef3f80d19ff75f6a ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
13:02:20.0559 1244 SSDPSRV - ok
13:02:20.0737 1244 [ 2ee3fa0308e6185ba64a9a7f2e74332b ] SstpSvc C:\Windows\system32\sstpsvc.dll
13:02:20.0741 1244 SstpSvc - ok
13:02:20.0882 1244 Steam Client Service - ok
13:02:21.0212 1244 [ 14b4db4381e4a55f570d8bb699b791d6 ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
13:02:21.0213 1244 StillCam - ok
13:02:21.0360 1244 [ f14f7d7d68a66777fb999d5d0f21138d ] stisvc C:\Windows\System32\wiaservc.dll
13:02:21.0369 1244 stisvc - ok
13:02:21.0506 1244 [ 8a851ca908b8b974f89c50d2e18d4f0c ] swenum C:\Windows\system32\DRIVERS\swenum.sys
13:02:21.0507 1244 swenum - ok
13:02:21.0751 1244 [ da34d6eb4a3154c0bebaeb0a2483ef3e ] swprv C:\Windows\System32\swprv.dll
13:02:21.0759 1244 swprv - ok
13:02:21.0800 1244 [ 2f26a2c6fc96b29beff5d8ed74e6625b ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
13:02:21.0801 1244 Symc8xx - ok
13:02:21.0838 1244 [ a909667976d3bccd1df813fed517d837 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
13:02:21.0840 1244 Sym_hi - ok
13:02:21.0865 1244 [ 36887b56ec2d98b9c362f6ae4de5b7b0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
13:02:21.0866 1244 Sym_u3 - ok
13:02:22.0302 1244 [ bea0d5521ed21df8f6ffeed86daede7b ] SysMain C:\Windows\system32\sysmain.dll
13:02:22.0669 1244 SysMain - ok
13:02:22.0702 1244 [ 005ce42567f9113a3bccb3b20073b029 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:02:22.0704 1244 TabletInputService - ok
13:02:22.0909 1244 [ 52091001caf20ae84cf47023ee21b4bb ] TapiSrv C:\Windows\System32\tapisrv.dll
13:02:22.0914 1244 TapiSrv - ok
13:02:22.0933 1244 [ cdbe8d7c1e201b911cdc346d06617fb5 ] TBS C:\Windows\System32\tbssvc.dll
13:02:22.0935 1244 TBS - ok
13:02:23.0458 1244 [ 7d86275fb640011b372fd566c0eafa8d ] Tcpip C:\Windows\system32\drivers\tcpip.sys
13:02:23.0601 1244 Tcpip - ok
13:02:23.0747 1244 [ 7d86275fb640011b372fd566c0eafa8d ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
13:02:23.0754 1244 Tcpip6 - ok
13:02:23.0820 1244 [ c29d4b3b08ad0b7e8564814e4ff6a57b ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
13:02:23.0823 1244 tcpipreg - ok
13:02:23.0844 1244 [ 1d8bf4aaa5fb7a2761475781dc1195bc ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
13:02:23.0864 1244 TDPIPE - ok
13:02:23.0940 1244 [ 7f7e00cdf609df657f4cda02dd1c9bb1 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
13:02:23.0957 1244 TDTCP - ok
13:02:24.0058 1244 [ 8c39c72e0e853de04748c0337d9b9216 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
13:02:24.0078 1244 tdx - ok
13:02:24.0435 1244 [ 3f0ebf6ee609f2a276c0d5faf244ec90 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
13:02:24.0436 1244 TermDD - ok
13:02:24.0841 1244 [ f870a5589d6a94b426efb13689023946 ] TermService C:\Windows\System32\termsrv.dll
13:02:24.0851 1244 TermService - ok
13:02:24.0922 1244 [ 9235ec680d3db17464b39c7c7decb4dd ] Themes C:\Windows\system32\shsvcs.dll
13:02:24.0924 1244 Themes - ok
13:02:24.0949 1244 [ 3cbe4995e80e13ccfbc42e5dcf3ac81a ] THREADORDER C:\Windows\system32\mmcss.dll
13:02:24.0950 1244 THREADORDER - ok
13:02:25.0245 1244 [ f4689f05af472a651a7b1b7b02d200e7 ] TrkWks C:\Windows\System32\trkwks.dll
13:02:25.0248 1244 TrkWks - ok
13:02:25.0302 1244 [ ac6ff1df22ed90bad6417ee5a4c6e2f0 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:02:25.0303 1244 TrustedInstaller - ok
13:02:25.0368 1244 [ 9e5409cd17c8bef193aad498f3bc2cb8 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
13:02:25.0369 1244 tssecsrv - ok
13:02:26.0119 1244 [ 89ec74a9e602d16a75a4170511029b3c ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
13:02:26.0155 1244 tunmp - ok
13:02:26.0304 1244 [ 2dc2c423572946e9a3131425bda73cb6 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
13:02:26.0328 1244 tunnel - ok
13:02:27.0363 1244 [ e0a9b5b92097211a57fd16d27f2b3750 ] TVersityMediaServer C:\ProgramData\TVersity\Media Server\MediaServer.exe
13:02:27.0377 1244 TVersityMediaServer - ok
13:02:27.0941 1244 [ fec266ef401966311744bd0f359f7f56 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
13:02:27.0943 1244 uagp35 - ok
13:02:28.0254 1244 [ 63f6d08c54d5b3c1b12a6172032055c7 ] uCamMonitor C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
13:02:28.0257 1244 uCamMonitor - ok
13:02:29.0131 1244 [ eca6629e33f122afff18a2ab7c3eb033 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
13:02:29.0225 1244 udfs - ok
13:02:29.0353 1244 [ 060507c4113391394478f6953a79eedc ] UI0Detect C:\Windows\system32\UI0Detect.exe
13:02:29.0355 1244 UI0Detect - ok
13:02:29.0392 1244 [ 4ec9447ac3ab462647f60e547208ca00 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
13:02:29.0393 1244 uliagpkx - ok
13:02:29.0444 1244 [ 697f0446134cdc8f99e69306184fbbb4 ] uliahci C:\Windows\system32\drivers\uliahci.sys
13:02:29.0450 1244 uliahci - ok
13:02:29.0480 1244 [ 31707f09846056651ea2c37858f5ddb0 ] UlSata C:\Windows\system32\drivers\ulsata.sys
13:02:29.0496 1244 UlSata - ok
13:02:29.0522 1244 [ 85e5e43ed5b48c8376281bab519271b7 ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
13:02:29.0525 1244 ulsata2 - ok
13:02:29.0559 1244 [ 46e9a994c4fed537dd951f60b86ad3f4 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
13:02:29.0562 1244 umbus - ok
13:02:29.0705 1244 [ 7093799ff80e9deca0680d2e3535be60 ] upnphost C:\Windows\System32\upnphost.dll
13:02:29.0711 1244 upnphost - ok
13:02:30.0413 1244 [ fb251567f41bc61988b26731dec19e4b ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
13:02:30.0414 1244 USBAAPL64 - ok
13:02:30.0538 1244 [ a0059d8567e8d35c6c309c2bdee7c038 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
13:02:30.0540 1244 usbccgp - ok
13:02:30.0588 1244 [ 9247f7e0b65852c1f6631480984d6ed2 ] usbcir C:\Windows\system32\drivers\usbcir.sys
13:02:30.0590 1244 usbcir - ok
13:02:30.0618 1244 [ c58475c202872eea514b1bd84467f016 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
13:02:30.0619 1244 usbehci - ok
13:02:30.0712 1244 [ 3eb01de26c19576b04d39257adc57d06 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
13:02:30.0716 1244 usbhub - ok
13:02:31.0159 1244 [ eba14ef0c07cec233f1529c698d0d154 ] usbohci C:\Windows\system32\drivers\usbohci.sys
13:02:31.0160 1244 usbohci - ok
13:02:31.0257 1244 [ 28b693b6d31e7b9332c1bdcefef228c1 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
13:02:31.0258 1244 usbprint - ok
13:02:31.0331 1244 [ ea0bf666868964fbe8cb10e50c97b9f1 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
13:02:31.0332 1244 usbscan - ok
13:02:31.0355 1244 [ 586d9876a4945779c8eea926c0d16889 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:02:31.0358 1244 USBSTOR - ok
13:02:31.0384 1244 [ 9c51a73704bf805a413f13f216befee2 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
13:02:31.0385 1244 usbuhci - ok
13:02:31.0532 1244 [ fc33099877790d51b0927b7039059855 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
13:02:31.0569 1244 usbvideo - ok
13:02:31.0625 1244 [ 9190f03c82547afa87367f1ceca88f3b ] UxSms C:\Windows\System32\uxsms.dll
13:02:31.0638 1244 UxSms - ok
13:02:32.0483 1244 [ 2c3dbb9b671ab95245ded1efc5276ce9 ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
13:02:32.0513 1244 VAIO Event Service - ok
13:02:33.0029 1244 [ b09e87175ad240a5b65112dd6573bcf8 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
13:02:33.0035 1244 VAIO Power Management - ok
13:02:33.0163 1244 [ 2686b87edc54ed215ce479ac9b7675de ] VcmIAlzMgr C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
13:02:33.0169 1244 VcmIAlzMgr - ok
13:02:33.0300 1244 [ 24235ba03209b2bf183fcf073c3cec41 ] VcmXmlIfHelper C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
13:02:33.0304 1244 VcmXmlIfHelper - ok
13:02:33.0396 1244 [ c15a4a550cba7b9f1f68b72528e04ce1 ] vds C:\Windows\System32\vds.exe
13:02:33.0404 1244 vds - ok
13:02:33.0441 1244 [ 916b94bcf1e09873fff2d5fb11767bbc ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
13:02:33.0442 1244 vga - ok
13:02:33.0491 1244 [ b83ab16b51feda65dd81b8c59d114d63 ] VgaSave C:\Windows\System32\drivers\vga.sys
13:02:33.0492 1244 VgaSave - ok
13:02:33.0560 1244 [ 8294b6c3fdb6c33f24e150de647ecdaa ] viaide C:\Windows\system32\drivers\viaide.sys
13:02:33.0562 1244 viaide - ok
13:02:33.0579 1244 [ 793d9b32a1c462c91f6f70358283ac97 ] volmgr C:\Windows\system32\drivers\volmgr.sys
13:02:33.0580 1244 volmgr - ok
13:02:33.0670 1244 [ 5aa217da5dc4ff5b9ac9ab86563b3223 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
13:02:33.0677 1244 volmgrx - ok
13:02:33.0747 1244 [ de4307412d98050239026e56a7dff3c0 ] volsnap C:\Windows\system32\drivers\volsnap.sys
13:02:33.0752 1244 volsnap - ok
13:02:34.0049 1244 [ a68f455ed2673835209318dd61bfbb0e ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
13:02:34.0055 1244 vsmraid - ok
13:02:34.0783 1244 [ 186bd53f8a408ad20f5a056c05678629 ] VSS C:\Windows\system32\vssvc.exe
13:02:35.0027 1244 VSS - ok
13:02:35.0144 1244 [ ba29f34a61cb55c0dee29e787542edf4 ] W32Time C:\Windows\system32\w32time.dll
13:02:35.0150 1244 W32Time - ok
13:02:35.0249 1244 [ fef8fe5923fead2cee4dfabfce3393a7 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
13:02:35.0250 1244 WacomPen - ok
13:02:35.0291 1244 [ aea75207e443c8623c36b8d03596f84f ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
13:02:35.0293 1244 Wanarp - ok
13:02:35.0298 1244 [ aea75207e443c8623c36b8d03596f84f ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
13:02:35.0299 1244 Wanarpv6 - ok
13:02:35.0452 1244 [ 055449247c490e24b968b44fe8a969eb ] wcncsvc C:\Windows\System32\wcncsvc.dll
13:02:35.0461 1244 wcncsvc - ok
13:02:35.0590 1244 [ ea4b369560e986f19d93f45a881484ac ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:02:35.0592 1244 WcsPlugInService - ok
13:02:35.0653 1244 [ 0c17a0816f65b89e362e682ad5e7266e ] Wd C:\Windows\system32\drivers\wd.sys
13:02:35.0653 1244 Wd - ok
13:02:35.0949 1244 [ 441bd2d7b4f98134c3a4f9fa570fd250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
13:02:36.0037 1244 Wdf01000 - ok
13:02:36.0062 1244 [ c5efda73ebfca8b02a094898de0a9276 ] WdiServiceHost C:\Windows\system32\wdi.dll
13:02:36.0065 1244 WdiServiceHost - ok
13:02:36.0072 1244 [ c5efda73ebfca8b02a094898de0a9276 ] WdiSystemHost C:\Windows\system32\wdi.dll
13:02:36.0073 1244 WdiSystemHost - ok
13:02:36.0165 1244 [ 3d4ab55f8178fd0cd3ca45cd0ec9cf5b ] WebClient C:\Windows\System32\webclnt.dll
13:02:36.0170 1244 WebClient - ok
13:02:36.0303 1244 [ 8d40bc587993f876658bf9fb0f7d3462 ] Wecsvc C:\Windows\system32\wecsvc.dll
13:02:36.0309 1244 Wecsvc - ok
13:02:36.0323 1244 [ 9c980351d7e96288ea0c23ae232bd065 ] wercplsupport C:\Windows\System32\wercplsupport.dll
13:02:36.0325 1244 wercplsupport - ok
13:02:36.0443 1244 [ fc25242b3bcaf7e84d9184082274ae08 ] WerSvc C:\Windows\System32\WerSvc.dll
13:02:36.0446 1244 WerSvc - ok
13:02:36.0491 1244 [ 52ded146e4797e6ccf94799e8e22bb2a ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
13:02:36.0494 1244 WimFltr - ok
13:02:36.0628 1244 [ 057b062cf9a11e04db45b8c3afc28b11 ] winachsf C:\Windows\system32\DRIVERS\CAX_CNXT.sys
13:02:36.0639 1244 winachsf - ok
13:02:36.0644 1244 WinHttpAutoProxySvc - ok
13:02:37.0337 1244 [ ac98f38feab066a8f983d54ff3f4fd4c ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
13:02:37.0352 1244 Winmgmt - ok
13:02:38.0296 1244 [ 6cbb0c68f13b9c2ec1b16f5fa5e7c869 ] WinRM C:\Windows\system32\WsmSvc.dll
13:02:38.0443 1244 WinRM - ok
13:02:38.0544 1244 [ 0a69955261c1b54206adc9beb89517de ] Wlansvc C:\Windows\System32\wlansvc.dll
13:02:38.0554 1244 Wlansvc - ok
13:02:38.0671 1244 [ e18aebaaa5a773fe11aa2c70f65320f5 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
13:02:38.0672 1244 WmiAcpi - ok
13:02:38.0799 1244 [ d303322dd577c3deda1251ed2e7a496c ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
13:02:38.0802 1244 wmiApSrv - ok
13:02:39.0094 1244 WMPNetworkSvc - ok
13:02:39.0132 1244 [ cbc156c913f099e6680d1df9307db7a8 ] WPCSvc C:\Windows\System32\wpcsvc.dll
13:02:39.0136 1244 WPCSvc - ok
13:02:39.0171 1244 [ a27c8f92d84e2ddc151978e4692c978e ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
13:02:39.0174 1244 WPDBusEnum - ok
13:02:39.0451 1244 [ 6329d1990db931073b86ab5946d8e317 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
13:02:39.0453 1244 WpdUsb - ok
13:02:40.0008 1244 [ 991e2c2cf3bc204c2bb2ee1476149e4e ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
13:02:40.0070 1244 WPFFontCache_v0400 - ok
13:02:40.0230 1244 [ 8a900348370e359b6bff6a550e4649e1 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
13:02:40.0231 1244 ws2ifsl - ok
13:02:40.0280 1244 [ de5f5212ab34221dd1618b5fefe8db6c ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
13:02:40.0281 1244 WSDPrintDevice - ok
13:02:40.0284 1244 WSearch - ok
13:02:40.0311 1244 [ 501a65252617b495c0f1832f908d54d8 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
13:02:40.0313 1244 WUDFRd - ok
13:02:40.0406 1244 [ 6cbd51ff913c851d56ed9dc7f2a27dde ] wudfsvc C:\Windows\System32\WUDFSvc.dll
13:02:40.0644 1244 wudfsvc - ok
13:02:40.0788 1244 [ 638c99d993afab0e1fab226e2bbe6d79 ] XAudio C:\Windows\system32\DRIVERS\xaudio64.sys
13:02:40.0789 1244 XAudio - ok
13:02:41.0012 1244 [ 3e775f0bd28ddeff53d78578b97a3cff ] XAudioService C:\Windows\system32\DRIVERS\xaudio64.exe
13:02:41.0020 1244 XAudioService - ok
13:02:41.0222 1244 [ 3c5b0410faba5b1014eefeee77e1296a ] yukonx64 C:\Windows\system32\DRIVERS\yk60x64.sys
13:02:41.0228 1244 yukonx64 - ok
13:02:41.0529 1244 ================ Scan global ===============================
13:02:41.0589 1244 (060dc3a7a9a2626031eb23d90151428d) C:\Windows\system32\basesrv.dll
13:02:42.0106 1244 (2d94e4ce322f12061d3fa7dbe65e9ac5) C:\Windows\system32\winsrv.dll
13:02:42.0121 1244 (2d94e4ce322f12061d3fa7dbe65e9ac5) C:\Windows\system32\winsrv.dll
13:02:42.0192 1244 (bd9a2895d87ed60fc0017fd2213119ea) C:\Windows\system32\services.exe
13:02:42.0200 1244 [Global] - ok
13:02:42.0200 1244 ================ Scan MBR ==================================
13:02:42.0229 1244 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
13:02:43.0884 1244 \Device\Harddisk0\DR0 - ok
13:02:43.0884 1244 ================ Scan VBR ==================================
13:02:43.0985 1244 Boot (0x1200) (4219ecaf3205e61a9d3b8f6f06fc23ea) \Device\Harddisk0\DR0\Partition1
13:02:44.0041 1244 \Device\Harddisk0\DR0\Partition1 - ok
13:02:44.0042 1244 ============================================================
13:02:44.0042 1244 Scan finished
13:02:44.0042 1244 ============================================================
13:02:44.0051 1216 Detected object count: 0
13:02:44.0051 1216 Actual detected object count: 0


I will continue with your instructions from your first reply.

#12 MalloryO

MalloryO
  • Topic Starter

  • Members
  • 85 posts
  • OFFLINE
  •  
  • Local time:06:40 PM

Posted 18 August 2012 - 12:19 PM

Avast logs:

27 Hidden NTFS WinRE NTFS 10891 MB offset 2048
13:11:17.702 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 227582 MB offset 22306816
13:11:17.783 Disk 0 scanning C:\Windows\system32\drivers
13:11:36.349 Service scanning
13:12:09.176 Modules scanning
13:12:09.190 Disk 0 trace - called modules:
13:12:09.246 ntoskrnl.exe CLASSPNP.SYS disk.sys acpi.sys iaStor.sys hal.dll
13:12:09.251 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80053375b0]
13:12:09.255 3 CLASSPNP.SYS[fffffa600120cb3a] -> nt!IofCallDriver -> [0xfffffa80045e37e0]
13:12:09.260 5 acpi.sys[fffffa60008caff6] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80045e6050]
13:12:11.642 AVAST engine scan C:\Windows
13:12:17.120 AVAST engine scan C:\Windows\system32
13:14:27.986 File: C:\Windows\system32\services.exe **INFECTED** Win32:Sirefef-ZT [Trj]
13:15:19.611 File: C:\Windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
13:15:22.802 File: C:\Windows\assembly\GAC_64\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
13:17:47.641 AVAST engine scan C:\Windows\system32\drivers
13:18:11.746 AVAST engine scan C:\Users\BMDEO
13:18:31.166 Disk 0 MBR has been saved successfully to "C:\Users\BMDEO\Desktop\MBR.dat"
13:18:31.183 The log file has been saved successfully to "C:\Users\BMDEO\Desktop\aswMBR.txt"

Continuing on with the ESET now...

#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:40 PM

Posted 18 August 2012 - 01:14 PM

After ESET scan,please download a new copy of TDSSkiller and scan,post the new log

#14 MalloryO

MalloryO
  • Topic Starter

  • Members
  • 85 posts
  • OFFLINE
  •  
  • Local time:06:40 PM

Posted 18 August 2012 - 01:17 PM

Okay.. Eset has a little bit to go still.

Should I uninstall tdsskiller first or just reclick the download link you gave me above?

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:40 PM

Posted 18 August 2012 - 01:18 PM

Download from the link




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users