Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Limited connectivity after combofix use


  • Please log in to reply
15 replies to this topic

#1 Mooseca

Mooseca

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:07:53 AM

Posted 27 August 2012 - 01:09 AM

Hello,

RRecently I used combofix to try and remove a google redirect. I used it restarted my computer and since then i always get limited connectivity to every network.

Here are logs from minitoolbox and farbar.

MiniToolbox:

MiniToolBox by Farbar Version: 23-07-2012
Ran by Lucas (administrator) on 27-08-2012 at 16:01:56
Microsoft Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.
========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

Atheros AR5007 802.11b/g WiFi Adapter = Wireless Network Connection (Connected)
Realtek RTL8139/810x Family Fast Ethernet NIC = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
The following helper DLL cannot be loaded: WSHELPER.DLL.


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Lucas-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 06-1F-3A-6D-8B-60
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR5007 802.11b/g WiFi Adapter
Physical Address. . . . . . . . . : 00-1F-3A-6D-8B-60
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::40a2:c5bb:c6ff:6a1b%11(Preferred)
Autoconfiguration IPv4 Address. . : 169.254.106.27(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.0.0
Default Gateway . . . . . . . . . :
DHCPv6 IAID . . . . . . . . . . . : 218111802
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-3E-94-6D-00-1E-EC-15-1F-56
DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
fec0:0:0:ffff::2%1
fec0:0:0:ffff::3%1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek RTL8139/810x Family Fast Ethernet NIC
Physical Address. . . . . . . . . : 00-1E-EC-15-1F-56
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{AB308FBE-F007-40F5-8847-E033385C3B59}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{78E8BEF9-3C50-4CDD-BB64-9D72525D4B03}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{31406F1C-6032-40F3-B627-21D5AEF1CC29}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Ping request could not find host google.com. Please check the name and try again.
Ping request could not find host yahoo.com. Please check the name and try again.
Ping request could not find host bleepingcomputer.com. Please check the name and try again.

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
17...06 1f 3a 6d 8b 60 ......Microsoft Virtual WiFi Miniport Adapter
11...00 1f 3a 6d 8b 60 ......Atheros AR5007 802.11b/g WiFi Adapter
10...00 1e ec 15 1f 56 ......Realtek RTL8139/810x Family Fast Ethernet NIC
1...........................Software Loopback Interface 1
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
169.254.0.0 255.255.0.0 On-link 169.254.106.27 281
169.254.106.27 255.255.255.255 On-link 169.254.106.27 281
169.254.255.255 255.255.255.255 On-link 169.254.106.27 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 169.254.106.27 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 169.254.106.27 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 281 fe80::/64 On-link
11 281 fe80::40a2:c5bb:c6ff:6a1b/128
On-link
1 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/26/2012 04:27:16 PM) (Source: Schedule) (User: )
Description: Schedule error: 10050Initialize call failed, bailing out

Error: (08/21/2012 07:38:22 AM) (Source: Schedule) (User: )
Description: Schedule error: 10050Initialize call failed, bailing out

Error: (08/20/2012 06:52:59 PM) (Source: RasClient) (User: )
Description: CoId={62BF0836-7743-4C40-A315-328961F91C5A}: The user SYSTEM dialed a connection named 3G Connection which has failed. The error code returned on failure is 0.

Error: (08/20/2012 06:52:59 PM) (Source: RasClient) (User: )
Description: CoId={62BF0836-7743-4C40-A315-328961F91C5A}: The user SYSTEM dialed a connection named 3G Connection which has failed. The error code returned on failure is 680.

Error: (08/20/2012 06:13:52 PM) (Source: Schedule) (User: )
Description: Schedule error: 10050Initialize call failed, bailing out

Error: (08/19/2012 05:00:45 PM) (Source: Schedule) (User: )
Description: Schedule error: 10050Initialize call failed, bailing out

Error: (08/17/2012 07:33:33 PM) (Source: Schedule) (User: )
Description: Schedule error: 10050Initialize call failed, bailing out

Error: (08/05/2012 01:16:38 PM) (Source: Schedule) (User: )
Description: Schedule error: 10050Initialize call failed, bailing out

Error: (08/05/2012 01:01:56 PM) (Source: Application Error) (User: )
Description: Faulting application name: pev.3XE, version: 0.0.0.0, time stamp: 0x4e06cfe8
Faulting module name: pev.3XE, version: 0.0.0.0, time stamp: 0x4e06cfe8
Exception code: 0xc0000417
Fault offset: 0x00081dc9
Faulting process id: 0x176c
Faulting application start time: 0xpev.3XE0
Faulting application path: pev.3XE1
Faulting module path: pev.3XE2
Report Id: pev.3XE3

Error: (08/05/2012 00:35:26 PM) (Source: MsiInstaller) (User: Lucas-PC)Lucas-PC
Description: Product: SpyHunter -- Error 1721. There is a problem with this Windows Installer package. A program required for this install to complete could not be run. Contact your support personnel or package vendor. Action: , location: WiseCustomCall, command: g5


System errors:
=============
Error: (08/27/2012 04:02:09 PM) (Source: Service Control Manager) (User: )
Description: The HTTP service failed to start due to the following error:
%%22

Error: (08/27/2012 04:02:09 PM) (Source: Service Control Manager) (User: )
Description: The HTTP service failed to start due to the following error:
%%22

Error: (08/27/2012 03:56:46 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (08/27/2012 03:56:45 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (08/27/2012 03:56:45 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (08/27/2012 03:56:44 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (08/27/2012 03:56:44 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (08/27/2012 03:56:43 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (08/27/2012 03:56:43 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (08/27/2012 03:56:42 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.


Microsoft Office Sessions:
=========================
Error: (08/26/2012 04:27:16 PM) (Source: Schedule)(User: )
Description: Schedule error: 10050Initialize call failed, bailing out

Error: (08/21/2012 07:38:22 AM) (Source: Schedule)(User: )
Description: Schedule error: 10050Initialize call failed, bailing out

Error: (08/20/2012 06:52:59 PM) (Source: RasClient)(User: )
Description: {62BF0836-7743-4C40-A315-328961F91C5A}SYSTEM3G Connection0

Error: (08/20/2012 06:52:59 PM) (Source: RasClient)(User: )
Description: {62BF0836-7743-4C40-A315-328961F91C5A}SYSTEM3G Connection680

Error: (08/20/2012 06:13:52 PM) (Source: Schedule)(User: )
Description: Schedule error: 10050Initialize call failed, bailing out

Error: (08/19/2012 05:00:45 PM) (Source: Schedule)(User: )
Description: Schedule error: 10050Initialize call failed, bailing out

Error: (08/17/2012 07:33:33 PM) (Source: Schedule)(User: )
Description: Schedule error: 10050Initialize call failed, bailing out

Error: (08/05/2012 01:16:38 PM) (Source: Schedule)(User: )
Description: Schedule error: 10050Initialize call failed, bailing out

Error: (08/05/2012 01:01:56 PM) (Source: Application Error)(User: )
Description: pev.3XE0.0.0.04e06cfe8pev.3XE0.0.0.04e06cfe8c000041700081dc9176c01cd72b6abdfd642C:\ComboFix\pev.3XEC:\ComboFix\pev.3XEea11ae32-dea9-11e1-a9d3-001eec151f56

Error: (08/05/2012 00:35:26 PM) (Source: MsiInstaller)(User: Lucas-PC)Lucas-PC
Description: Product: SpyHunter -- Error 1721. There is a problem with this Windows Installer package. A program required for this install to complete could not be run. Contact your support personnel or package vendor. Action: , location: WiseCustomCall, command: g5 (NULL)(NULL)(NULL)(NULL)(NULL)


========================= Memory info: ===================================

Percentage of memory in use: 22%
Total physical RAM: 3062.02 MB
Available physical RAM: 2360.83 MB
Total Pagefile: 6122.24 MB
Available Pagefile: 4784.86 MB
Total Virtual: 4095.88 MB
Available Virtual: 3976.02 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:64.91 GB) (Free:2.16 GB) NTFS
2 Drive d: (PRESARIO_RP) (Fixed) (Total:9.62 GB) (Free:2.16 GB) NTFS
4 Drive f: (ERIN'S SD) (Removable) (Total:1.84 GB) (Free:0 GB) FAT
5 Drive g: (USB DISK) (Removable) (Total:7.45 GB) (Free:7.45 GB) FAT32

========================= Users: ========================================

User accounts for \\

Administrator Brodie Erin
Guest Lucas


**** End of log ****

Farbar:
Farbar Service Scanner Version: 06-08-2012
Ran by Lucas (administrator) on 27-08-2012 at 15:57:57
Running from "C:\Users\Lucas\Desktop"
Microsoft Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Attempt to access Google.com returned error: Other errors
Yahoo IP is accessible.
Attempt to access Yahoo.com returned error: Other errors


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.

BITS Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to retrieve start type of BITS. The value does not exist.
The ImagePath of BITS service is OK.
The ServiceDll of BITS service is OK.


Windows Autoupdate Disabled Policy:
============================


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys
[2012-05-13 20:06] - [2012-08-05 13:15] - 0020048 ____A (AVG Technologies CZ, s.r.o. ) A3C13A0135BEAE18C7E2310D95F0D605

ATTENTION!=====> C:\Windows\System32\drivers\afd.sys IS INFECTED AND SHOULD BE REPLACED.

C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****
I hope you can help!!

BC AdBot (Login to Remove)

 


#2 Mooseca

Mooseca
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:07:53 AM

Posted 27 August 2012 - 01:11 AM

I forgot one thing. Whenever i run minitoolbox i get an error message saying WINSOCK32.dll is missing

#3 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:53 PM

Posted 27 August 2012 - 01:13 AM

Copy this tool to the infected PC

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Restart the PC and let me know if you can browse now

#4 Mooseca

Mooseca
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:07:53 AM

Posted 27 August 2012 - 01:28 AM

Will do thanks for quick reply

#5 Mooseca

Mooseca
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:07:53 AM

Posted 27 August 2012 - 01:38 AM

here is log

16:31:24.0123 6228 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
16:31:24.0144 6228 ============================================================
16:31:24.0144 6228 Current date / time: 2012/08/27 16:31:24.0144
16:31:24.0144 6228 SystemInfo:
16:31:24.0144 6228
16:31:24.0144 6228 OS Version: 6.1.7601 ServicePack: 1.0
16:31:24.0144 6228 Product type: Workstation
16:31:24.0144 6228 ComputerName: LUCAS-PC
16:31:24.0145 6228 UserName: Lucas
16:31:24.0145 6228 Windows directory: C:\Windows
16:31:24.0145 6228 System windows directory: C:\Windows
16:31:24.0145 6228 Running under WOW64
16:31:24.0145 6228 Processor architecture: Intel x64
16:31:24.0145 6228 Number of processors: 1
16:31:24.0145 6228 Page size: 0x1000
16:31:24.0145 6228 Boot type: Normal boot
16:31:24.0145 6228 ============================================================
16:31:26.0276 6228 Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:31:26.0281 6228 Drive \Device\Harddisk1\DR1 - Size: 0x75E00000 (1.84 Gb), SectorSize: 0x200, Cylinders: 0xF0, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:31:26.0284 6228 Drive \Device\Harddisk2\DR7 - Size: 0x1DD800000 (7.46 Gb), SectorSize: 0x200, Cylinders: 0x3CD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:31:26.0287 6228 ============================================================
16:31:26.0287 6228 \Device\Harddisk0\DR0:
16:31:26.0287 6228 MBR partitions:
16:31:26.0287 6228 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x81D019A
16:31:26.0287 6228 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x81D01D9, BlocksNum 0x133E2E8
16:31:26.0287 6228 \Device\Harddisk1\DR1:
16:31:26.0288 6228 MBR partitions:
16:31:26.0288 6228 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x6, StartLBA 0x87, BlocksNum 0x3AE039
16:31:26.0289 6228 \Device\Harddisk2\DR7:
16:31:26.0289 6228 MBR partitions:
16:31:26.0289 6228 \Device\Harddisk2\DR7\Partition1: MBR, Type 0xC, StartLBA 0x1F80, BlocksNum 0xEEA080
16:31:26.0289 6228 ============================================================
16:31:26.0304 6228 C: <-> \Device\Harddisk0\DR0\Partition1
16:31:26.0351 6228 D: <-> \Device\Harddisk0\DR0\Partition2
16:31:26.0351 6228 ============================================================
16:31:26.0352 6228 Initialize success
16:31:26.0352 6228 ============================================================
16:31:57.0435 2584 ============================================================
16:31:57.0435 2584 Scan started
16:31:57.0435 2584 Mode: Manual; TDLFS;
16:31:57.0435 2584 ============================================================
16:31:58.0055 2584 ================ Scan system memory ========================
16:31:58.0055 2584 System memory - ok
16:31:58.0059 2584 ================ Scan services =============================
16:31:58.0341 2584 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
16:31:58.0346 2584 1394ohci - ok
16:31:58.0409 2584 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
16:31:58.0415 2584 ACPI - ok
16:31:58.0458 2584 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
16:31:58.0459 2584 AcpiPmi - ok
16:31:58.0610 2584 [ F19C98AD81D2C0E1BBFD8153D2C80EE8 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:31:58.0613 2584 AdobeFlashPlayerUpdateSvc - ok
16:31:58.0708 2584 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
16:31:58.0717 2584 adp94xx - ok
16:31:58.0745 2584 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
16:31:58.0752 2584 adpahci - ok
16:31:58.0768 2584 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
16:31:58.0772 2584 adpu320 - ok
16:31:58.0834 2584 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:31:58.0836 2584 AeLookupSvc - ok
16:31:58.0875 2584 [ A3C13A0135BEAE18C7E2310D95F0D605 ] AFD C:\Windows\system32\drivers\afd.sys
16:31:58.0876 2584 AFD - ok
16:31:58.0964 2584 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
16:31:58.0966 2584 agp440 - ok
16:31:59.0010 2584 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
16:31:59.0012 2584 ALG - ok
16:31:59.0048 2584 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
16:31:59.0049 2584 aliide - ok
16:31:59.0063 2584 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
16:31:59.0064 2584 amdide - ok
16:31:59.0131 2584 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
16:31:59.0133 2584 AmdK8 - ok
16:31:59.0145 2584 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
16:31:59.0147 2584 AmdPPM - ok
16:31:59.0202 2584 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
16:31:59.0204 2584 amdsata - ok
16:31:59.0269 2584 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
16:31:59.0303 2584 amdsbs - ok
16:31:59.0344 2584 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
16:31:59.0345 2584 amdxata - ok
16:31:59.0414 2584 [ 811B8E15D5E5C7DF0271E6720FE8C1BB ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
16:31:59.0418 2584 ApfiltrService - ok
16:31:59.0490 2584 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
16:31:59.0492 2584 AppID - ok
16:31:59.0545 2584 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
16:31:59.0546 2584 AppIDSvc - ok
16:31:59.0624 2584 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
16:31:59.0625 2584 Appinfo - ok
16:31:59.0932 2584 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:31:59.0934 2584 Apple Mobile Device - ok
16:32:00.0003 2584 [ 301AA64F9643BC453D90A66C4C0E7204 ] AppleCharger C:\Windows\system32\DRIVERS\AppleCharger.sys
16:32:00.0004 2584 AppleCharger - ok
16:32:00.0017 2584 [ 95EF7247C50C7241FDAE39A9B3AFF4AE ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
16:32:00.0019 2584 AppleChargerSrv - ok
16:32:00.0094 2584 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
16:32:00.0098 2584 AppMgmt - ok
16:32:00.0160 2584 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
16:32:00.0162 2584 arc - ok
16:32:00.0175 2584 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
16:32:00.0179 2584 arcsas - ok
16:32:00.0507 2584 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
16:32:00.0508 2584 aspnet_state - ok
16:32:00.0558 2584 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:32:00.0559 2584 AsyncMac - ok
16:32:00.0607 2584 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
16:32:00.0608 2584 atapi - ok
16:32:00.0694 2584 [ 8C56E93749BA53A4B645963D3439E01E ] athr C:\Windows\system32\DRIVERS\athrx.sys
16:32:00.0715 2584 athr - ok
16:32:00.0808 2584 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:32:00.0819 2584 AudioEndpointBuilder - ok
16:32:00.0841 2584 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
16:32:00.0845 2584 AudioSrv - ok
16:32:00.0907 2584 [ 96B4456F1DCA4EDA506ED31C7D2D6B05 ] Avgfwfd C:\Windows\system32\DRIVERS\avgfwd6a.sys
16:32:00.0908 2584 Avgfwfd - ok
16:32:01.0124 2584 [ BD5D11CEDBCDE4FA97D2387E7069B1FF ] avgfws C:\Program Files (x86)\AVG\AVG2012\avgfws.exe
16:32:01.0140 2584 avgfws - ok
16:32:01.0365 2584 [ D67719BCFDE5798F5C30D14EFED3BCAF ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
16:32:01.0501 2584 AVGIDSAgent - ok
16:32:01.0572 2584 [ 1B2E9FCDC26DC7C81D4131430E2DC936 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
16:32:01.0574 2584 AVGIDSDriver - ok
16:32:01.0594 2584 [ 0F293406F64B48D5D2F0D3A1117F3A83 ] AVGIDSFilter C:\Windows\system32\DRIVERS\avgidsfiltera.sys
16:32:01.0596 2584 AVGIDSFilter - ok
16:32:01.0636 2584 [ CFFC3A4A638F462E0561CB368B9A7A3A ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
16:32:01.0638 2584 AVGIDSHA - ok
16:32:01.0686 2584 [ 59955B4C288DD2A8B9FD2CD5158355C5 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
16:32:01.0692 2584 Avgldx64 - ok
16:32:01.0742 2584 [ A6AEC362AAE5E2DDA7445E7690CB0F33 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
16:32:01.0744 2584 Avgmfx64 - ok
16:32:01.0792 2584 [ 645C7F0A0E39758A0024A9B1748273C0 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
16:32:01.0794 2584 Avgrkx64 - ok
16:32:01.0847 2584 [ 1BEE674AD792B1C63BB0DAC5FA724B23 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
16:32:01.0854 2584 Avgtdia - ok
16:32:01.0909 2584 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
16:32:01.0911 2584 avgwd - ok
16:32:01.0979 2584 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
16:32:01.0982 2584 AxInstSV - ok
16:32:02.0070 2584 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
16:32:02.0077 2584 b06bdrv - ok
16:32:02.0148 2584 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
16:32:02.0153 2584 b57nd60a - ok
16:32:02.0269 2584 [ 382B151DAFFE4A9CE9DA9F564B66761E ] BCUService C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
16:32:02.0270 2584 BCUService - ok
16:32:02.0341 2584 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
16:32:02.0343 2584 BDESVC - ok
16:32:02.0365 2584 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
16:32:02.0366 2584 Beep - ok
16:32:02.0461 2584 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
16:32:02.0467 2584 BFE - ok
16:32:02.0544 2584 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
16:32:02.0545 2584 blbdrive - ok
16:32:02.0681 2584 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:32:02.0685 2584 Bonjour Service - ok
16:32:02.0725 2584 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:32:02.0729 2584 bowser - ok
16:32:02.0792 2584 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:32:02.0794 2584 BrFiltLo - ok
16:32:02.0805 2584 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:32:02.0808 2584 BrFiltUp - ok
16:32:02.0856 2584 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
16:32:02.0858 2584 BridgeMP - ok
16:32:02.0903 2584 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll
16:32:02.0906 2584 Browser - ok
16:32:02.0945 2584 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
16:32:02.0967 2584 Brserid - ok
16:32:02.0981 2584 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
16:32:02.0984 2584 BrSerWdm - ok
16:32:02.0996 2584 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
16:32:02.0997 2584 BrUsbMdm - ok
16:32:03.0011 2584 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
16:32:03.0012 2584 BrUsbSer - ok
16:32:03.0028 2584 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
16:32:03.0030 2584 BTHMODEM - ok
16:32:03.0115 2584 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
16:32:03.0117 2584 bthserv - ok
16:32:03.0139 2584 catchme - ok
16:32:03.0214 2584 [ D1787E11C6A0078DDEAF8CF3EE2AB293 ] CAXHWAZL C:\Windows\system32\DRIVERS\CAXHWAZL.sys
16:32:03.0219 2584 CAXHWAZL - ok
16:32:03.0246 2584 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:32:03.0248 2584 cdfs - ok
16:32:03.0310 2584 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
16:32:03.0313 2584 cdrom - ok
16:32:03.0391 2584 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
16:32:03.0393 2584 CertPropSvc - ok
16:32:03.0456 2584 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
16:32:03.0458 2584 circlass - ok
16:32:03.0511 2584 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
16:32:03.0517 2584 CLFS - ok
16:32:03.0615 2584 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:32:03.0617 2584 clr_optimization_v2.0.50727_32 - ok
16:32:03.0667 2584 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:32:03.0670 2584 clr_optimization_v2.0.50727_64 - ok
16:32:03.0878 2584 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:32:03.0881 2584 clr_optimization_v4.0.30319_32 - ok
16:32:03.0915 2584 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:32:03.0918 2584 clr_optimization_v4.0.30319_64 - ok
16:32:03.0989 2584 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
16:32:03.0991 2584 CmBatt - ok
16:32:04.0027 2584 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
16:32:04.0029 2584 cmdide - ok
16:32:04.0079 2584 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
16:32:04.0087 2584 CNG - ok
16:32:04.0182 2584 [ 5C8FD0D456D442D38BB7FD3DD2A524E5 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT64.sys
16:32:04.0186 2584 CnxtHdAudService - ok
16:32:04.0343 2584 [ C7A0E61D5714AC20DE52D4F66EC773B8 ] Com4QLBEx C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
16:32:04.0348 2584 Com4QLBEx - ok
16:32:04.0412 2584 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
16:32:04.0413 2584 Compbatt - ok
16:32:04.0480 2584 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
16:32:04.0481 2584 CompositeBus - ok
16:32:04.0510 2584 COMSysApp - ok
16:32:04.0541 2584 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
16:32:04.0542 2584 crcdisk - ok
16:32:04.0632 2584 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:32:04.0634 2584 CryptSvc - ok
16:32:04.0692 2584 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
16:32:04.0700 2584 CSC - ok
16:32:04.0771 2584 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
16:32:04.0782 2584 CscService - ok
16:32:04.0866 2584 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
16:32:04.0871 2584 DcomLaunch - ok
16:32:04.0918 2584 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
16:32:04.0925 2584 defragsvc - ok
16:32:04.0984 2584 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
16:32:04.0986 2584 DfsC - ok
16:32:05.0040 2584 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
16:32:05.0043 2584 Dhcp - ok
16:32:05.0092 2584 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
16:32:05.0094 2584 discache - ok
16:32:05.0138 2584 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
16:32:05.0140 2584 Disk - ok
16:32:05.0238 2584 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:32:05.0240 2584 Dnscache - ok
16:32:05.0303 2584 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
16:32:05.0308 2584 dot3svc - ok
16:32:05.0351 2584 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
16:32:05.0355 2584 DPS - ok
16:32:05.0414 2584 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:32:05.0416 2584 drmkaud - ok
16:32:05.0491 2584 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:32:05.0506 2584 DXGKrnl - ok
16:32:05.0578 2584 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
16:32:05.0581 2584 EapHost - ok
16:32:05.0775 2584 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
16:32:05.0934 2584 ebdrv - ok
16:32:05.0989 2584 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
16:32:05.0991 2584 EFS - ok
16:32:06.0069 2584 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
16:32:06.0081 2584 ehRecvr - ok
16:32:06.0129 2584 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
16:32:06.0131 2584 ehSched - ok
16:32:06.0226 2584 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
16:32:06.0235 2584 elxstor - ok
16:32:06.0281 2584 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
16:32:06.0282 2584 ErrDev - ok
16:32:06.0380 2584 esgiguard - ok
16:32:06.0444 2584 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
16:32:06.0448 2584 EventSystem - ok
16:32:06.0486 2584 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
16:32:06.0490 2584 exfat - ok
16:32:06.0519 2584 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:32:06.0522 2584 fastfat - ok
16:32:06.0620 2584 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
16:32:06.0631 2584 Fax - ok
16:32:06.0672 2584 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
16:32:06.0673 2584 fdc - ok
16:32:06.0759 2584 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
16:32:06.0761 2584 fdPHost - ok
16:32:06.0781 2584 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
16:32:06.0782 2584 FDResPub - ok
16:32:06.0834 2584 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:32:06.0835 2584 FileInfo - ok
16:32:06.0849 2584 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:32:06.0851 2584 Filetrace - ok
16:32:06.0863 2584 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
16:32:06.0870 2584 flpydisk - ok
16:32:06.0932 2584 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:32:06.0937 2584 FltMgr - ok
16:32:07.0052 2584 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
16:32:07.0070 2584 FontCache - ok
16:32:07.0162 2584 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:32:07.0164 2584 FontCache3.0.0.0 - ok
16:32:07.0215 2584 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
16:32:07.0218 2584 FsDepends - ok
16:32:07.0268 2584 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:32:07.0269 2584 Fs_Rec - ok
16:32:07.0343 2584 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
16:32:07.0347 2584 fvevol - ok
16:32:07.0396 2584 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
16:32:07.0398 2584 gagp30kx - ok
16:32:07.0429 2584 gdrv - ok
16:32:07.0477 2584 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:32:07.0478 2584 GEARAspiWDM - ok
16:32:07.0551 2584 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
16:32:07.0564 2584 gpsvc - ok
16:32:07.0637 2584 [ 93C3C66D38B0BC08A04F0B28055BC9AC ] HBtnKey C:\Windows\system32\DRIVERS\cpqbttn.sys
16:32:07.0638 2584 HBtnKey - ok
16:32:07.0697 2584 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
16:32:07.0699 2584 hcw85cir - ok
16:32:07.0758 2584 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:32:07.0764 2584 HdAudAddService - ok
16:32:07.0803 2584 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
16:32:07.0806 2584 HDAudBus - ok
16:32:07.0820 2584 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
16:32:07.0821 2584 HidBatt - ok
16:32:07.0861 2584 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
16:32:07.0864 2584 HidBth - ok
16:32:07.0877 2584 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
16:32:07.0879 2584 HidIr - ok
16:32:07.0934 2584 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
16:32:07.0936 2584 hidserv - ok
16:32:08.0004 2584 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
16:32:08.0005 2584 HidUsb - ok
16:32:08.0041 2584 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
16:32:08.0044 2584 hkmsvc - ok
16:32:08.0090 2584 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:32:08.0095 2584 HomeGroupListener - ok
16:32:08.0145 2584 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:32:08.0150 2584 HomeGroupProvider - ok
16:32:08.0208 2584 [ 9AF482D058BE59CC28BCE52E7C4B747C ] HpqKbFiltr C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
16:32:08.0209 2584 HpqKbFiltr - ok
16:32:08.0287 2584 [ FDF273A845F1FFCCEADF363AAF47582F ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
16:32:08.0289 2584 hpqwmiex - ok
16:32:08.0352 2584 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
16:32:08.0354 2584 HpSAMD - ok
16:32:08.0504 2584 [ 447256D1C026654C5CD3CC17E7B20631 ] HsfXAudioService C:\Windows\SysWOW64\XAudio64.dll
16:32:08.0509 2584 HsfXAudioService - ok
16:32:08.0600 2584 [ 26C5D00321937E49B6BC91029947D094 ] HSF_DPV C:\Windows\system32\DRIVERS\CAX_DPV.sys
16:32:08.0622 2584 HSF_DPV - ok
16:32:08.0680 2584 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:32:08.0694 2584 HTTP - ok
16:32:08.0746 2584 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
16:32:08.0748 2584 hwpolicy - ok
16:32:08.0806 2584 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
16:32:08.0809 2584 i8042prt - ok
16:32:08.0887 2584 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
16:32:08.0894 2584 iaStorV - ok
16:32:09.0024 2584 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
16:32:09.0026 2584 IDriverT - ok
16:32:09.0119 2584 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:32:09.0134 2584 idsvc - ok
16:32:09.0408 2584 [ 24CC43ECDEEFD4C19FBBEE4951B647F1 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
16:32:09.0602 2584 igfx - ok
16:32:09.0674 2584 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
16:32:09.0676 2584 iirsp - ok
16:32:09.0780 2584 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
16:32:09.0793 2584 IKEEXT - ok
16:32:09.0850 2584 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
16:32:09.0852 2584 intelide - ok
16:32:09.0925 2584 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
16:32:09.0928 2584 intelppm - ok
16:32:09.0988 2584 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
16:32:09.0992 2584 IPBusEnum - ok
16:32:10.0030 2584 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:32:10.0033 2584 IpFilterDriver - ok
16:32:10.0140 2584 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
16:32:10.0149 2584 iphlpsvc - ok
16:32:10.0208 2584 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
16:32:10.0211 2584 IPMIDRV - ok
16:32:10.0284 2584 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
16:32:10.0286 2584 IPNAT - ok
16:32:10.0369 2584 [ A9AB99EE7D39725EAFEC82732D2B3271 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
16:32:10.0376 2584 iPod Service - ok
16:32:10.0404 2584 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:32:10.0405 2584 IRENUM - ok
16:32:10.0458 2584 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
16:32:10.0459 2584 isapnp - ok
16:32:10.0501 2584 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
16:32:10.0507 2584 iScsiPrt - ok
16:32:10.0529 2584 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
16:32:10.0531 2584 kbdclass - ok
16:32:10.0571 2584 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
16:32:10.0573 2584 kbdhid - ok
16:32:10.0601 2584 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
16:32:10.0603 2584 KeyIso - ok
16:32:10.0642 2584 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:32:10.0644 2584 KSecDD - ok
16:32:10.0695 2584 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
16:32:10.0698 2584 KSecPkg - ok
16:32:10.0766 2584 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
16:32:10.0768 2584 ksthunk - ok
16:32:10.0854 2584 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
16:32:10.0861 2584 KtmRm - ok
16:32:10.0935 2584 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
16:32:10.0941 2584 LanmanServer - ok
16:32:10.0998 2584 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:32:11.0002 2584 LanmanWorkstation - ok
16:32:11.0054 2584 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:32:11.0056 2584 lltdio - ok
16:32:11.0118 2584 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:32:11.0124 2584 lltdsvc - ok
16:32:11.0160 2584 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:32:11.0164 2584 lmhosts - ok
16:32:11.0234 2584 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
16:32:11.0236 2584 LSI_FC - ok
16:32:11.0254 2584 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
16:32:11.0257 2584 LSI_SAS - ok
16:32:11.0272 2584 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:32:11.0275 2584 LSI_SAS2 - ok
16:32:11.0291 2584 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:32:11.0294 2584 LSI_SCSI - ok
16:32:11.0309 2584 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
16:32:11.0312 2584 luafv - ok
16:32:11.0346 2584 MBAMProtector - ok
16:32:11.0469 2584 [ 43683E970F008C93C9429EF428147A54 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
16:32:11.0479 2584 MBAMService - ok
16:32:11.0524 2584 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
16:32:11.0526 2584 Mcx2Svc - ok
16:32:11.0582 2584 [ E4F44EC214B3E381E1FC844A02926666 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
16:32:11.0583 2584 mdmxsdk - ok
16:32:11.0623 2584 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
16:32:11.0625 2584 megasas - ok
16:32:11.0647 2584 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
16:32:11.0652 2584 MegaSR - ok
16:32:11.0698 2584 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
16:32:11.0701 2584 MMCSS - ok
16:32:11.0713 2584 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
16:32:11.0715 2584 Modem - ok
16:32:11.0749 2584 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
16:32:11.0751 2584 monitor - ok
16:32:11.0786 2584 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
16:32:11.0790 2584 mouclass - ok
16:32:11.0869 2584 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
16:32:11.0871 2584 mouhid - ok
16:32:11.0919 2584 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
16:32:11.0922 2584 mountmgr - ok
16:32:12.0039 2584 [ C34DECCF7B9736E7631D6B553EE1F247 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:32:12.0041 2584 MozillaMaintenance - ok
16:32:12.0090 2584 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
16:32:12.0093 2584 mpio - ok
16:32:12.0135 2584 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:32:12.0137 2584 mpsdrv - ok
16:32:12.0211 2584 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
16:32:12.0218 2584 MpsSvc - ok
16:32:12.0273 2584 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:32:12.0276 2584 MRxDAV - ok
16:32:12.0334 2584 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:32:12.0337 2584 mrxsmb - ok
16:32:12.0374 2584 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:32:12.0379 2584 mrxsmb10 - ok
16:32:12.0410 2584 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:32:12.0413 2584 mrxsmb20 - ok
16:32:12.0465 2584 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
16:32:12.0466 2584 msahci - ok
16:32:12.0497 2584 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
16:32:12.0500 2584 msdsm - ok
16:32:12.0542 2584 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
16:32:12.0545 2584 MSDTC - ok
16:32:12.0607 2584 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:32:12.0609 2584 Msfs - ok
16:32:12.0651 2584 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
16:32:12.0652 2584 mshidkmdf - ok
16:32:12.0701 2584 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
16:32:12.0702 2584 msisadrv - ok
16:32:12.0754 2584 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:32:12.0758 2584 MSiSCSI - ok
16:32:12.0770 2584 msiserver - ok
16:32:12.0826 2584 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:32:12.0828 2584 MSKSSRV - ok
16:32:12.0886 2584 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:32:12.0888 2584 MSPCLOCK - ok
16:32:12.0901 2584 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:32:12.0902 2584 MSPQM - ok
16:32:12.0960 2584 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:32:12.0967 2584 MsRPC - ok
16:32:13.0014 2584 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
16:32:13.0015 2584 mssmbios - ok
16:32:13.0074 2584 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:32:13.0075 2584 MSTEE - ok
16:32:13.0125 2584 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
16:32:13.0126 2584 MTConfig - ok
16:32:13.0161 2584 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
16:32:13.0163 2584 Mup - ok
16:32:13.0222 2584 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
16:32:13.0232 2584 napagent - ok
16:32:13.0311 2584 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:32:13.0317 2584 NativeWifiP - ok
16:32:13.0423 2584 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
16:32:13.0438 2584 NDIS - ok
16:32:13.0501 2584 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
16:32:13.0503 2584 NdisCap - ok
16:32:13.0538 2584 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:32:13.0539 2584 NdisTapi - ok
16:32:13.0600 2584 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:32:13.0602 2584 Ndisuio - ok
16:32:13.0656 2584 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:32:13.0659 2584 NdisWan - ok
16:32:13.0706 2584 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:32:13.0708 2584 NDProxy - ok
16:32:13.0782 2584 [ 6F4607E2333FE21E9E3FF8133A88B35B ] Netaapl C:\Windows\system32\DRIVERS\netaapl64.sys
16:32:13.0783 2584 Netaapl - ok
16:32:13.0857 2584 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:32:13.0859 2584 NetBIOS - ok
16:32:13.0920 2584 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
16:32:13.0925 2584 NetBT - ok
16:32:13.0956 2584 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
16:32:13.0958 2584 Netlogon - ok
16:32:14.0043 2584 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
16:32:14.0050 2584 Netman - ok
16:32:14.0274 2584 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:32:14.0276 2584 NetMsmqActivator - ok
16:32:14.0289 2584 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:32:14.0292 2584 NetPipeActivator - ok
16:32:14.0358 2584 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
16:32:14.0366 2584 netprofm - ok
16:32:14.0385 2584 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:32:14.0388 2584 NetTcpActivator - ok
16:32:14.0400 2584 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:32:14.0403 2584 NetTcpPortSharing - ok
16:32:14.0465 2584 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
16:32:14.0467 2584 nfrd960 - ok
16:32:14.0550 2584 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
16:32:14.0556 2584 NlaSvc - ok
16:32:14.0582 2584 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:32:14.0588 2584 Npfs - ok
16:32:14.0639 2584 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
16:32:14.0640 2584 nsi - ok
16:32:14.0652 2584 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:32:14.0653 2584 nsiproxy - ok
16:32:14.0746 2584 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
16:32:14.0773 2584 Ntfs - ok
16:32:14.0832 2584 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
16:32:14.0833 2584 Null - ok
16:32:14.0884 2584 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
16:32:14.0887 2584 nvraid - ok
16:32:14.0914 2584 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
16:32:14.0918 2584 nvstor - ok
16:32:14.0965 2584 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
16:32:14.0968 2584 nv_agp - ok
16:32:15.0037 2584 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
16:32:15.0039 2584 ohci1394 - ok
16:32:15.0115 2584 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
16:32:15.0122 2584 p2pimsvc - ok
16:32:15.0160 2584 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
16:32:15.0168 2584 p2psvc - ok
16:32:15.0218 2584 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
16:32:15.0221 2584 Parport - ok
16:32:15.0269 2584 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
16:32:15.0271 2584 partmgr - ok
16:32:15.0302 2584 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
16:32:15.0307 2584 PcaSvc - ok
16:32:15.0335 2584 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
16:32:15.0339 2584 pci - ok
16:32:15.0380 2584 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
16:32:15.0382 2584 pciide - ok
16:32:15.0420 2584 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
16:32:15.0424 2584 pcmcia - ok
16:32:15.0465 2584 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
16:32:15.0467 2584 pcw - ok
16:32:15.0494 2584 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
16:32:15.0505 2584 PEAUTH - ok
16:32:15.0604 2584 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
16:32:15.0626 2584 PeerDistSvc - ok
16:32:15.0680 2584 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
16:32:15.0682 2584 PerfHost - ok
16:32:15.0781 2584 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
16:32:15.0804 2584 pla - ok
16:32:15.0874 2584 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
16:32:15.0882 2584 PlugPlay - ok
16:32:15.0903 2584 PnkBstrA - ok
16:32:15.0946 2584 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
16:32:15.0949 2584 PNRPAutoReg - ok
16:32:15.0993 2584 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
16:32:15.0997 2584 PNRPsvc - ok
16:32:16.0060 2584 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
16:32:16.0069 2584 PolicyAgent - ok
16:32:16.0134 2584 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
16:32:16.0138 2584 Power - ok
16:32:16.0197 2584 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
16:32:16.0199 2584 PptpMiniport - ok
16:32:16.0232 2584 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
16:32:16.0234 2584 Processor - ok
16:32:16.0282 2584 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
16:32:16.0286 2584 ProfSvc - ok
16:32:16.0312 2584 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:32:16.0314 2584 ProtectedStorage - ok
16:32:16.0393 2584 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
16:32:16.0396 2584 Psched - ok
16:32:16.0489 2584 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
16:32:16.0513 2584 ql2300 - ok
16:32:16.0528 2584 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
16:32:16.0531 2584 ql40xx - ok
16:32:16.0578 2584 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
16:32:16.0584 2584 QWAVE - ok
16:32:16.0597 2584 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
16:32:16.0598 2584 QWAVEdrv - ok
16:32:16.0612 2584 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
16:32:16.0614 2584 RasAcd - ok
16:32:16.0660 2584 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
16:32:16.0662 2584 RasAgileVpn - ok
16:32:16.0701 2584 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
16:32:16.0705 2584 RasAuto - ok
16:32:16.0749 2584 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
16:32:16.0752 2584 Rasl2tp - ok
16:32:16.0806 2584 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
16:32:16.0813 2584 RasMan - ok
16:32:16.0861 2584 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
16:32:16.0863 2584 RasPppoe - ok
16:32:16.0877 2584 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
16:32:16.0879 2584 RasSstp - ok
16:32:16.0945 2584 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
16:32:16.0950 2584 rdbss - ok
16:32:16.0990 2584 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
16:32:16.0992 2584 rdpbus - ok
16:32:17.0023 2584 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
16:32:17.0024 2584 RDPCDD - ok
16:32:17.0092 2584 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
16:32:17.0095 2584 RDPDR - ok
16:32:17.0138 2584 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
16:32:17.0139 2584 RDPENCDD - ok
16:32:17.0209 2584 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
16:32:17.0210 2584 RDPREFMP - ok
16:32:17.0276 2584 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
16:32:17.0280 2584 RDPWD - ok
16:32:17.0358 2584 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
16:32:17.0362 2584 rdyboost - ok
16:32:17.0434 2584 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
16:32:17.0437 2584 RemoteAccess - ok
16:32:17.0481 2584 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
16:32:17.0486 2584 RemoteRegistry - ok
16:32:17.0529 2584 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
16:32:17.0532 2584 RpcEptMapper - ok
16:32:17.0575 2584 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
16:32:17.0577 2584 RpcLocator - ok
16:32:17.0633 2584 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
16:32:17.0638 2584 RpcSs - ok
16:32:17.0711 2584 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
16:32:17.0713 2584 rspndr - ok
16:32:17.0765 2584 [ 97B6D72C82B2632B3D1AD60DDAC38D46 ] RTL8023x64 C:\Windows\system32\DRIVERS\Rtnic64.sys
16:32:17.0767 2584 RTL8023x64 - ok
16:32:17.0820 2584 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
16:32:17.0821 2584 s3cap - ok
16:32:17.0845 2584 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
16:32:17.0846 2584 SamSs - ok
16:32:17.0879 2584 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
16:32:17.0881 2584 sbp2port - ok
16:32:17.0932 2584 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
16:32:17.0937 2584 SCardSvr - ok
16:32:17.0980 2584 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
16:32:17.0981 2584 scfilter - ok
16:32:18.0058 2584 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
16:32:18.0077 2584 Schedule - ok
16:32:18.0124 2584 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
16:32:18.0126 2584 SCPolicySvc - ok
16:32:18.0182 2584 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
16:32:18.0184 2584 SDRSVC - ok
16:32:18.0226 2584 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
16:32:18.0228 2584 seclogon - ok
16:32:18.0279 2584 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
16:32:18.0282 2584 SENS - ok
16:32:18.0309 2584 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
16:32:18.0312 2584 SensrSvc - ok
16:32:18.0356 2584 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
16:32:18.0358 2584 Serenum - ok
16:32:18.0404 2584 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
16:32:18.0406 2584 Serial - ok
16:32:18.0463 2584 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
16:32:18.0464 2584 sermouse - ok
16:32:18.0526 2584 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
16:32:18.0530 2584 SessionEnv - ok
16:32:18.0577 2584 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
16:32:18.0579 2584 sffdisk - ok
16:32:18.0599 2584 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
16:32:18.0601 2584 sffp_mmc - ok
16:32:18.0627 2584 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
16:32:18.0628 2584 sffp_sd - ok
16:32:18.0669 2584 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
16:32:18.0671 2584 sfloppy - ok
16:32:18.0766 2584 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
16:32:18.0773 2584 SharedAccess - ok
16:32:18.0828 2584 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:32:18.0836 2584 ShellHWDetection - ok
16:32:18.0862 2584 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:32:18.0864 2584 SiSRaid2 - ok
16:32:18.0878 2584 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
16:32:18.0882 2584 SiSRaid4 - ok
16:32:18.0938 2584 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
16:32:18.0940 2584 Smb - ok
16:32:19.0039 2584 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
16:32:19.0042 2584 SNMPTRAP - ok
16:32:19.0092 2584 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
16:32:19.0094 2584 spldr - ok
16:32:19.0140 2584 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
16:32:19.0151 2584 Spooler - ok
16:32:19.0310 2584 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
16:32:19.0434 2584 sppsvc - ok
16:32:19.0484 2584 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
16:32:19.0487 2584 sppuinotify - ok
16:32:19.0561 2584 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
16:32:19.0569 2584 srv - ok
16:32:19.0612 2584 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
16:32:19.0620 2584 srv2 - ok
16:32:19.0698 2584 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
16:32:19.0703 2584 SrvHsfHDA - ok
16:32:19.0785 2584 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
16:32:19.0808 2584 SrvHsfV92 - ok
16:32:19.0863 2584 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
16:32:19.0875 2584 SrvHsfWinac - ok
16:32:19.0932 2584 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
16:32:19.0935 2584 srvnet - ok
16:32:20.0015 2584 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
16:32:20.0020 2584 SSDPSRV - ok
16:32:20.0041 2584 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
16:32:20.0044 2584 SstpSvc - ok
16:32:20.0121 2584 Steam Client Service - ok
16:32:20.0189 2584 [ 79C86A40A05B47DD4CF49DFAB069FD62 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
16:32:20.0191 2584 Stereo Service - ok
16:32:20.0232 2584 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
16:32:20.0234 2584 stexstor - ok
16:32:20.0292 2584 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
16:32:20.0304 2584 stisvc - ok
16:32:20.0355 2584 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
16:32:20.0357 2584 storflt - ok
16:32:20.0403 2584 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
16:32:20.0406 2584 StorSvc - ok
16:32:20.0475 2584 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
16:32:20.0476 2584 storvsc - ok
16:32:20.0524 2584 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
16:32:20.0526 2584 swenum - ok
16:32:20.0598 2584 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
16:32:20.0609 2584 swprv - ok
16:32:20.0723 2584 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
16:32:20.0752 2584 SysMain - ok
16:32:20.0798 2584 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:32:20.0802 2584 TabletInputService - ok
16:32:20.0837 2584 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
16:32:20.0843 2584 TapiSrv - ok
16:32:20.0894 2584 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
16:32:20.0898 2584 TBS - ok
16:32:21.0013 2584 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
16:32:21.0031 2584 Tcpip - ok
16:32:21.0089 2584 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
16:32:21.0102 2584 TCPIP6 - ok
16:32:21.0160 2584 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
16:32:21.0162 2584 tcpipreg - ok
16:32:21.0217 2584 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
16:32:21.0219 2584 TDPIPE - ok
16:32:21.0259 2584 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
16:32:21.0261 2584 TDTCP - ok
16:32:21.0308 2584 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
16:32:21.0310 2584 tdx - ok
16:32:21.0357 2584 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
16:32:21.0359 2584 TermDD - ok
16:32:21.0417 2584 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
16:32:21.0429 2584 TermService - ok
16:32:21.0482 2584 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
16:32:21.0485 2584 Themes - ok
16:32:21.0510 2584 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
16:32:21.0512 2584 THREADORDER - ok
16:32:21.0536 2584 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
16:32:21.0541 2584 TrkWks - ok
16:32:21.0640 2584 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:32:21.0642 2584 TrustedInstaller - ok
16:32:21.0696 2584 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
16:32:21.0697 2584 tssecsrv - ok
16:32:21.0800 2584 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
16:32:21.0802 2584 TsUsbFlt - ok
16:32:21.0877 2584 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
16:32:21.0880 2584 tunnel - ok
16:32:21.0930 2584 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
16:32:21.0933 2584 uagp35 - ok
16:32:21.0985 2584 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
16:32:21.0992 2584 udfs - ok
16:32:22.0046 2584 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
16:32:22.0050 2584 UI0Detect - ok
16:32:22.0099 2584 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
16:32:22.0102 2584 uliagpkx - ok
16:32:22.0161 2584 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
16:32:22.0163 2584 umbus - ok
16:32:22.0191 2584 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
16:32:22.0202 2584 UmPass - ok
16:32:22.0250 2584 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
16:32:22.0255 2584 UmRdpService - ok
16:32:22.0304 2584 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
16:32:22.0311 2584 upnphost - ok
16:32:22.0386 2584 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
16:32:22.0388 2584 USBAAPL64 - ok
16:32:22.0440 2584 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
16:32:22.0443 2584 usbccgp - ok
16:32:22.0496 2584 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
16:32:22.0498 2584 usbcir - ok
16:32:22.0522 2584 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
16:32:22.0523 2584 usbehci - ok
16:32:22.0587 2584 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
16:32:22.0597 2584 usbhub - ok
16:32:22.0626 2584 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
16:32:22.0627 2584 usbohci - ok
16:32:22.0676 2584 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
16:32:22.0678 2584 usbprint - ok
16:32:22.0701 2584 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:32:22.0704 2584 USBSTOR - ok
16:32:22.0755 2584 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
16:32:22.0757 2584 usbuhci - ok
16:32:22.0803 2584 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
16:32:22.0810 2584 UxSms - ok
16:32:22.0845 2584 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
16:32:22.0846 2584 VaultSvc - ok
16:32:22.0898 2584 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
16:32:22.0899 2584 vdrvroot - ok
16:32:22.0969 2584 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
16:32:22.0980 2584 vds - ok
16:32:23.0035 2584 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
16:32:23.0036 2584 vga - ok
16:32:23.0071 2584 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
16:32:23.0073 2584 VgaSave - ok
16:32:23.0141 2584 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
16:32:23.0146 2584 vhdmp - ok
16:32:23.0203 2584 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
16:32:23.0204 2584 viaide - ok
16:32:23.0242 2584 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
16:32:23.0246 2584 vmbus - ok
16:32:23.0277 2584 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
16:32:23.0278 2584 VMBusHID - ok
16:32:23.0312 2584 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
16:32:23.0318 2584 volmgr - ok
16:32:23.0374 2584 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
16:32:23.0380 2584 volmgrx - ok
16:32:23.0423 2584 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
16:32:23.0428 2584 volsnap - ok
16:32:23.0501 2584 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
16:32:23.0505 2584 vsmraid - ok
16:32:23.0596 2584 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
16:32:23.0609 2584 VSS - ok
16:32:23.0748 2584 [ 8ED347BAD8D1FB7C40B593BFB01786D2 ] vToolbarUpdater11.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
16:32:23.0762 2584 vToolbarUpdater11.2.0 - ok
16:32:23.0801 2584 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
16:32:23.0803 2584 vwifibus - ok
16:32:23.0842 2584 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
16:32:23.0844 2584 vwififlt - ok
16:32:23.0861 2584 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
16:32:23.0863 2584 vwifimp - ok
16:32:23.0920 2584 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
16:32:23.0929 2584 W32Time - ok
16:32:23.0949 2584 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
16:32:23.0950 2584 WacomPen - ok
16:32:24.0016 2584 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
16:32:24.0018 2584 WANARP - ok
16:32:24.0031 2584 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
16:32:24.0032 2584 Wanarpv6 - ok
16:32:24.0150 2584 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
16:32:24.0170 2584 WatAdminSvc - ok
16:32:24.0274 2584 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
16:32:24.0300 2584 wbengine - ok
16:32:24.0348 2584 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
16:32:24.0353 2584 WbioSrvc - ok
16:32:24.0412 2584 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
16:32:24.0419 2584 wcncsvc - ok
16:32:24.0459 2584 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:32:24.0463 2584 WcsPlugInService - ok
16:32:24.0504 2584 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
16:32:24.0506 2584 Wd - ok
16:32:24.0561 2584 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
16:32:24.0571 2584 Wdf01000 - ok
16:32:24.0627 2584 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
16:32:24.0631 2584 WdiServiceHost - ok
16:32:24.0644 2584 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
16:32:24.0647 2584 WdiSystemHost - ok
16:32:24.0703 2584 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
16:32:24.0709 2584 WebClient - ok
16:32:24.0744 2584 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
16:32:24.0752 2584 Wecsvc - ok
16:32:24.0793 2584 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
16:32:24.0796 2584 wercplsupport - ok
16:32:24.0836 2584 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
16:32:24.0839 2584 WerSvc - ok
16:32:24.0903 2584 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
16:32:24.0904 2584 WfpLwf - ok
16:32:24.0938 2584 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
16:32:24.0942 2584 WIMMount - ok
16:32:25.0027 2584 [ A6EA7A3FC4B00F48535B506DB1E86EFD ] winachsf C:\Windows\system32\DRIVERS\CAX_CNXT.sys
16:32:25.0038 2584 winachsf - ok
16:32:25.0095 2584 WinDefend - ok
16:32:25.0119 2584 WinHttpAutoProxySvc - ok
16:32:25.0238 2584 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
16:32:25.0240 2584 Winmgmt - ok
16:32:25.0359 2584 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
16:32:25.0391 2584 WinRM - ok
16:32:25.0500 2584 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
16:32:25.0502 2584 WinUsb - ok
16:32:25.0574 2584 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
16:32:25.0589 2584 Wlansvc - ok
16:32:25.0622 2584 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
16:32:25.0623 2584 WmiAcpi - ok
16:32:25.0684 2584 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
16:32:25.0688 2584 wmiApSrv - ok
16:32:25.0738 2584 WMPNetworkSvc - ok
16:32:25.0790 2584 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
16:32:25.0793 2584 WPCSvc - ok
16:32:25.0838 2584 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
16:32:25.0842 2584 WPDBusEnum - ok
16:32:25.0879 2584 [ A3C13A0135BEAE18C7E2310D95F0D605 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
16:32:25.0880 2584 ws2ifsl - ok
16:32:25.0941 2584 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
16:32:25.0944 2584 wscsvc - ok
16:32:25.0957 2584 WSearch - ok
16:32:26.0119 2584 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
16:32:26.0138 2584 wuauserv - ok
16:32:26.0182 2584 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
16:32:26.0185 2584 WudfPf - ok
16:32:26.0201 2584 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
16:32:26.0204 2584 WUDFRd - ok
16:32:26.0254 2584 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
16:32:26.0258 2584 wudfsvc - ok
16:32:26.0321 2584 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
16:32:26.0327 2584 WwanSvc - ok
16:32:26.0381 2584 [ E8F3FA126A06F8E7088F63757112A186 ] XAudio C:\Windows\system32\DRIVERS\XAudio64.sys
16:32:26.0384 2584 XAudio - ok
16:32:26.0453 2584 [ B9D500E6369E650FA601F2CF2C41FFD4 ] ZTEusbmdm6k C:\Windows\system32\DRIVERS\ZTEusbmdm6k.sys
16:32:26.0456 2584 ZTEusbmdm6k - ok
16:32:26.0502 2584 [ 973D9174F963A0D218B6695837CDD0A5 ] ZTEusbnet C:\Windows\system32\DRIVERS\ZTEusbnet.sys
16:32:26.0506 2584 ZTEusbnet - ok
16:32:26.0546 2584 [ B9D500E6369E650FA601F2CF2C41FFD4 ] ZTEusbnmea C:\Windows\system32\DRIVERS\ZTEusbnmea.sys
16:32:26.0549 2584 ZTEusbnmea - ok
16:32:26.0585 2584 [ B9D500E6369E650FA601F2CF2C41FFD4 ] ZTEusbser6k C:\Windows\system32\DRIVERS\ZTEusbser6k.sys
16:32:26.0589 2584 ZTEusbser6k - ok
16:32:26.0668 2584 ================ Scan global ===============================
16:32:26.0714 2584 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
16:32:26.0760 2584 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
16:32:26.0775 2584 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
16:32:26.0823 2584 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
16:32:26.0886 2584 [ 50BEA589F7D7958BDD2528A8F69D05CC ] C:\Windows\system32\services.exe
16:32:26.0891 2584 [Global] - ok
16:32:26.0895 2584 ================ Scan MBR ==================================
16:32:26.0922 2584 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:32:27.0175 2584 \Device\Harddisk0\DR0 - ok
16:32:27.0189 2584 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
16:32:27.0412 2584 \Device\Harddisk1\DR1 - ok
16:32:27.0423 2584 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk2\DR7
16:32:27.0533 2584 \Device\Harddisk2\DR7 - ok
16:32:27.0539 2584 ================ Scan VBR ==================================
16:32:27.0543 2584 [ 75C2553B9D9AEC96F03D8835E3B29859 ] \Device\Harddisk0\DR0\Partition1
16:32:27.0545 2584 \Device\Harddisk0\DR0\Partition1 - ok
16:32:27.0579 2584 [ 9F0FA2DEE0203C47B5B4748A744EFF45 ] \Device\Harddisk0\DR0\Partition2
16:32:27.0580 2584 \Device\Harddisk0\DR0\Partition2 - ok
16:32:27.0594 2584 [ F427339CE571A4B5FB9314DB26C6CC44 ] \Device\Harddisk1\DR1\Partition1
16:32:27.0596 2584 \Device\Harddisk1\DR1\Partition1 - ok
16:32:27.0608 2584 [ E4D50FBB13100CAD6EEEC1714CBE6862 ] \Device\Harddisk2\DR7\Partition1
16:32:27.0609 2584 \Device\Harddisk2\DR7\Partition1 - ok
16:32:27.0614 2584 ============================================================
16:32:27.0614 2584 Scan finished
16:32:27.0614 2584 ============================================================
16:32:27.0635 5400 Detected object count: 0
16:32:27.0635 5400 Actual detected object count: 0

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:53 PM

Posted 27 August 2012 - 01:52 AM

Do you have AVG antivirus?

Uninstall it and see if you can connect

Launch FSS again and type

afd.sys in search BOX and click on search files

Post the generated log

Edited by narenxp, 27 August 2012 - 01:53 AM.


#7 Mooseca

Mooseca
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:07:53 AM

Posted 27 August 2012 - 01:56 AM

In fact I do and it is out of date

#8 Mooseca

Mooseca
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:07:53 AM

Posted 27 August 2012 - 01:58 AM

Will I be able to redownload it afterwards

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:53 PM

Posted 27 August 2012 - 02:03 AM

AVG free edition can be downloaded from here

http://www.filehippo.com/download_avg_antivirus/

#10 Mooseca

Mooseca
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:07:53 AM

Posted 27 August 2012 - 02:09 AM

What if I have the full one just haven't put activation code in? By the way I removed it and cannot access Internet. Just waiting for search to finish

#11 Mooseca

Mooseca
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:07:53 AM

Posted 27 August 2012 - 02:14 AM

heres search log;

Farbar Service Scanner Version: 06-08-2012
Ran by Lucas (administrator) on 27-08-2012 at 17:05:27
Microsoft Windows 7 Professional Service Pack 1 (X64)

************************************************
======== Search: "afd.sys" =========

C:\Windows\System32\drivers\AFD.SYS
[2012-05-13 20:06] - [2012-08-05 13:15] - 0020048 ____A (AVG Technologies CZ, s.r.o. ) A3C13A0135BEAE18C7E2310D95F0D605

C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7601.21887_none_364f3a028e605345\afd.sys
[2012-05-13 20:06] - [2011-12-28 14:01] - 0498176 ____A (Microsoft Corporation) 36A14FD1A23F57046361733B792CA8DB

C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7601.17752_none_35e10b89752ee0f5\afd.sys
[2012-05-13 20:06] - [2011-12-28 13:59] - 0498688 ____A (Microsoft Corporation) 1C7857B62DE5994A75B054A9FD4C3825

C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7601.17514_none_360e4801750ca991\afd.sys
[2012-05-16 20:13] - [2010-11-20 19:23] - 0499712 ____A (Microsoft Corporation) D31DC7A16DEA4A9BAF179F3D6FBDB38C

C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7600.21115_none_34b263fe91032456\afd.sys
[2012-05-13 20:06] - [2011-12-28 14:01] - 0499200 ____A (Microsoft Corporation) CCA39961E76B491DDF44B1E90FC8971D

C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7600.16937_none_34154fcd77f3bbda\afd.sys
[2012-05-13 20:06] - [2011-12-28 13:59] - 0499200 ____A (Microsoft Corporation) DB9D6C6B2CD95A9CA414D045B627422E

C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7600.16385_none_33dd3439781e25f7\afd.sys
[2009-07-14 09:21] - [2009-07-14 09:21] - 0500224 ____A (Microsoft Corporation) B9384E03479D2506BC924C16A3DB87BC

====== End Of Search ======

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:53 PM

Posted 27 August 2012 - 02:17 AM

Click on startmenu and type

cmd

Right click on it and select run as administrator and run this command

sfc /scanfile=c:\windows\system32\drivers\afd.sys

Press enter.After scan completes,restart the PC and try to browse

Do you have previous restore points before you were infected?

Edited by narenxp, 27 August 2012 - 02:17 AM.


#13 Mooseca

Mooseca
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:07:53 AM

Posted 27 August 2012 - 02:19 AM

i dont think so. Idiot me. I may have had one but i think combofix wiped them

#14 Mooseca

Mooseca
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:07:53 AM

Posted 27 August 2012 - 02:27 AM

AWESOME!!!! Thankyou so much for your help!

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:53 PM

Posted 27 August 2012 - 02:33 AM

:thumbsup:

Please DO NOT USE COMBOFIX on your own without supervision!!! :)

http://www.bleepingcomputer.com/forums/topic273628.html

safe surfing




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users