Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Been infected: Operating memory - Win32/Olmarik.TDL4 trojan - unable to clean


  • Please log in to reply
13 replies to this topic

#1 Buckyfoondumba

Buckyfoondumba

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:06:18 AM

Posted 28 August 2012 - 04:49 PM

Not sure how I contracted this. NOD 32 won't clean it. I've seen that this forum took care of this for a member previously. Should I just try all the steps that you had the member go through, or should I wait and be talked through the cleaning because of possible differences in the problem?

Thanks

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:18 AM

Posted 28 August 2012 - 05:13 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 Buckyfoondumba

Buckyfoondumba
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:06:18 AM

Posted 28 August 2012 - 06:36 PM

Here's what the Kapersky log found:18:51:49.0321 4824 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
18:51:50.0243 4824 ============================================================
18:51:50.0243 4824 Current date / time: 2012/08/28 18:51:50.0243
18:51:50.0243 4824 SystemInfo:
18:51:50.0243 4824
18:51:50.0243 4824 OS Version: 6.1.7601 ServicePack: 1.0
18:51:50.0243 4824 Product type: Workstation
18:51:50.0243 4824 ComputerName: JERRY-PC
18:51:50.0243 4824 UserName: Jerry
18:51:50.0243 4824 Windows directory: C:\Windows
18:51:50.0243 4824 System windows directory: C:\Windows
18:51:50.0243 4824 Processor architecture: Intel x86
18:51:50.0243 4824 Number of processors: 2
18:51:50.0243 4824 Page size: 0x1000
18:51:50.0243 4824 Boot type: Normal boot
18:51:50.0243 4824 ============================================================
18:51:57.0981 4824 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
18:51:58.0231 4824 ============================================================
18:51:58.0231 4824 \Device\Harddisk0\DR0:
18:51:58.0231 4824 MBR partitions:
18:51:58.0231 4824 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
18:51:58.0231 4824 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x1125E000
18:51:58.0231 4824 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x112C2000, BlocksNum 0x1724000
18:51:58.0231 4824 ============================================================
18:51:58.0387 4824 C: <-> \Device\Harddisk0\DR0\Partition2
18:51:58.0621 4824 D: <-> \Device\Harddisk0\DR0\Partition3
18:51:58.0699 4824 ============================================================
18:51:58.0699 4824 Initialize success
18:51:58.0699 4824 ============================================================
18:52:35.0356 7892 ============================================================
18:52:35.0356 7892 Scan started
18:52:35.0356 7892 Mode: Manual;
18:52:35.0356 7892 ============================================================
18:52:46.0884 7892 ================ Scan system memory ========================
18:52:46.0884 7892 System memory - ok
18:52:46.0886 7892 ================ Scan services =============================
18:52:47.0263 7892 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
18:52:47.0371 7892 1394ohci - ok
18:52:47.0533 7892 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
18:52:47.0543 7892 ACDaemon - ok
18:52:47.0615 7892 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
18:52:47.0704 7892 ACPI - ok
18:52:47.0789 7892 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
18:52:47.0861 7892 AcpiPmi - ok
18:52:47.0955 7892 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
18:52:47.0971 7892 AdobeFlashPlayerUpdateSvc - ok
18:52:48.0049 7892 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
18:52:48.0251 7892 adp94xx - ok
18:52:48.0376 7892 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
18:52:48.0470 7892 adpahci - ok
18:52:48.0548 7892 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
18:52:48.0657 7892 adpu320 - ok
18:52:48.0719 7892 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:52:48.0719 7892 AeLookupSvc - ok
18:52:48.0844 7892 [ 827DBC22C96EECF6D36A13162FABAFD3 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_5576240ee6baaa25\aestsrv.exe
18:52:48.0891 7892 AESTFilters - ok
18:52:48.0985 7892 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
18:52:49.0125 7892 AFD - ok
18:52:49.0203 7892 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
18:52:49.0281 7892 agp440 - ok
18:52:49.0359 7892 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
18:52:49.0453 7892 aic78xx - ok
18:52:49.0562 7892 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
18:52:49.0562 7892 ALG - ok
18:52:49.0609 7892 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
18:52:49.0687 7892 aliide - ok
18:52:49.0733 7892 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
18:52:49.0811 7892 amdagp - ok
18:52:49.0889 7892 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
18:52:49.0967 7892 amdide - ok
18:52:50.0030 7892 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
18:52:50.0108 7892 AmdK8 - ok
18:52:50.0139 7892 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
18:52:50.0264 7892 AmdPPM - ok
18:52:50.0404 7892 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
18:52:50.0404 7892 amdsata - ok
18:52:50.0451 7892 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
18:52:50.0560 7892 amdsbs - ok
18:52:50.0591 7892 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
18:52:50.0732 7892 amdxata - ok
18:52:50.0794 7892 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
18:52:50.0919 7892 AppID - ok
18:52:50.0997 7892 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:52:51.0013 7892 AppIDSvc - ok
18:52:51.0059 7892 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
18:52:51.0059 7892 Appinfo - ok
18:52:51.0169 7892 [ 3DEBBECF665DCDDE3A95D9B902010817 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:52:51.0184 7892 Apple Mobile Device - ok
18:52:51.0231 7892 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
18:52:51.0325 7892 arc - ok
18:52:51.0356 7892 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
18:52:51.0356 7892 arcsas - ok
18:52:51.0403 7892 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:52:51.0527 7892 AsyncMac - ok
18:52:51.0621 7892 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
18:52:51.0621 7892 atapi - ok
18:52:51.0808 7892 [ 76BAB0C824E2D05B940C4DD40A9B08BF ] athr C:\Windows\system32\DRIVERS\athr.sys
18:52:52.0042 7892 athr - ok
18:52:52.0120 7892 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:52:52.0214 7892 AudioEndpointBuilder - ok
18:52:52.0229 7892 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
18:52:52.0245 7892 Audiosrv - ok
18:52:52.0307 7892 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:52:52.0307 7892 AxInstSV - ok
18:52:52.0370 7892 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
18:52:52.0432 7892 b06bdrv - ok
18:52:52.0510 7892 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
18:52:52.0713 7892 b57nd60x - ok
18:52:53.0056 7892 [ 36A47E6AB1F0967C97722183E21ADB1A ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl6.sys
18:52:53.0306 7892 BCM43XX - ok
18:52:53.0353 7892 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
18:52:53.0384 7892 BDESVC - ok
18:52:53.0431 7892 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
18:52:53.0477 7892 Beep - ok
18:52:53.0555 7892 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
18:52:53.0587 7892 BFE - ok
18:52:53.0618 7892 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\System32\qmgr.dll
18:52:53.0743 7892 BITS - ok
18:52:53.0789 7892 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
18:52:53.0852 7892 blbdrive - ok
18:52:53.0961 7892 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
18:52:54.0039 7892 Bonjour Service - ok
18:52:54.0086 7892 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:52:54.0148 7892 bowser - ok
18:52:54.0179 7892 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:52:54.0242 7892 BrFiltLo - ok
18:52:54.0304 7892 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:52:54.0304 7892 BrFiltUp - ok
18:52:54.0367 7892 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
18:52:54.0367 7892 Browser - ok
18:52:54.0398 7892 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
18:52:54.0429 7892 Brserid - ok
18:52:54.0445 7892 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
18:52:54.0476 7892 BrSerWdm - ok
18:52:54.0507 7892 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
18:52:54.0523 7892 BrUsbMdm - ok
18:52:54.0554 7892 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
18:52:54.0569 7892 BrUsbSer - ok
18:52:54.0601 7892 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
18:52:54.0647 7892 BTHMODEM - ok
18:52:54.0710 7892 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
18:52:54.0757 7892 bthserv - ok
18:52:54.0819 7892 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:52:54.0944 7892 cdfs - ok
18:52:55.0022 7892 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\drivers\cdrom.sys
18:52:55.0193 7892 cdrom - ok
18:52:55.0256 7892 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
18:52:55.0271 7892 CertPropSvc - ok
18:52:55.0318 7892 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
18:52:55.0381 7892 circlass - ok
18:52:55.0427 7892 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
18:52:55.0443 7892 CLFS - ok
18:52:55.0522 7892 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:52:55.0553 7892 clr_optimization_v2.0.50727_32 - ok
18:52:55.0662 7892 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:52:55.0740 7892 clr_optimization_v4.0.30319_32 - ok
18:52:55.0787 7892 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
18:52:55.0850 7892 CmBatt - ok
18:52:55.0896 7892 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:52:55.0974 7892 cmdide - ok
18:52:56.0021 7892 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
18:52:56.0037 7892 CNG - ok
18:52:56.0177 7892 [ F9A79C5B27037821112C50A9C8FB367A ] Com4QLBEx C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
18:52:56.0240 7892 Com4QLBEx - ok
18:52:56.0333 7892 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
18:52:56.0396 7892 Compbatt - ok
18:52:56.0489 7892 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
18:52:56.0505 7892 CompositeBus - ok
18:52:56.0552 7892 COMSysApp - ok
18:52:56.0708 7892 cpuz134 - ok
18:52:56.0770 7892 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
18:52:56.0879 7892 crcdisk - ok
18:52:56.0973 7892 [ 06E771AA596B8761107AB57E99F128D7 ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:52:56.0973 7892 CryptSvc - ok
18:52:57.0051 7892 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
18:52:57.0066 7892 DcomLaunch - ok
18:52:57.0113 7892 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
18:52:57.0113 7892 defragsvc - ok
18:52:57.0176 7892 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:52:57.0254 7892 DfsC - ok
18:52:57.0363 7892 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
18:52:57.0378 7892 Dhcp - ok
18:52:57.0410 7892 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
18:52:57.0488 7892 discache - ok
18:52:57.0566 7892 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
18:52:57.0612 7892 Disk - ok
18:52:57.0675 7892 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:52:57.0737 7892 Dnscache - ok
18:52:57.0784 7892 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
18:52:57.0784 7892 dot3svc - ok
18:52:57.0831 7892 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
18:52:57.0846 7892 DPS - ok
18:52:57.0893 7892 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:52:57.0971 7892 drmkaud - ok
18:52:58.0080 7892 [ 8CF55015B2A443EE869C90CAB31FD435 ] DVMIO C:\SPLASH.SYS\config\dvmio.sys
18:52:58.0096 7892 DVMIO - ok
18:52:58.0190 7892 [ 577582D57D90FB64276ACFEE958DBFD3 ] DvmMDES C:\SPLASH.SYS\config\DVMExportService.exe
18:52:58.0236 7892 DvmMDES - ok
18:52:58.0346 7892 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:52:58.0751 7892 DXGKrnl - ok
18:52:58.0814 7892 [ 73CE42907CF42BFB91BCD27FE7C7A7AF ] eamonm C:\Windows\system32\DRIVERS\eamonm.sys
18:52:58.0845 7892 eamonm - ok
18:52:58.0907 7892 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
18:52:58.0923 7892 EapHost - ok
18:52:59.0063 7892 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
18:52:59.0313 7892 ebdrv - ok
18:52:59.0375 7892 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
18:52:59.0391 7892 EFS - ok
18:52:59.0469 7892 [ 7D300A43A7BD8769E0F901BF9E1AE367 ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys
18:52:59.0578 7892 ehdrv - ok
18:52:59.0687 7892 [ D83323D7CD5D1CC46B42DA9E59409890 ] EhttpSrv C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
18:52:59.0687 7892 EhttpSrv - ok
18:52:59.0765 7892 [ EFA198F8983D064A81052851F7BB80C2 ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
18:52:59.0890 7892 ekrn - ok
18:52:59.0968 7892 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
18:53:00.0124 7892 elxstor - ok
18:53:00.0218 7892 [ 96F9030CA15A8D2E8D44E53C1F0E842D ] epfwwfpr C:\Windows\system32\DRIVERS\epfwwfpr.sys
18:53:00.0296 7892 epfwwfpr - ok
18:53:00.0374 7892 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:53:00.0436 7892 ErrDev - ok
18:53:00.0546 7892 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
18:53:00.0593 7892 EventSystem - ok
18:53:00.0640 7892 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
18:53:00.0718 7892 exfat - ok
18:53:00.0749 7892 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:53:00.0827 7892 fastfat - ok
18:53:00.0921 7892 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
18:53:01.0030 7892 Fax - ok
18:53:01.0061 7892 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
18:53:01.0170 7892 fdc - ok
18:53:01.0217 7892 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
18:53:01.0311 7892 fdPHost - ok
18:53:01.0373 7892 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
18:53:01.0389 7892 FDResPub - ok
18:53:01.0435 7892 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:53:01.0435 7892 FileInfo - ok
18:53:01.0482 7892 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:53:01.0546 7892 Filetrace - ok
18:53:01.0577 7892 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
18:53:01.0661 7892 flpydisk - ok
18:53:01.0715 7892 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:53:01.0804 7892 FltMgr - ok
18:53:01.0879 7892 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll
18:53:01.0913 7892 FontCache - ok
18:53:01.0981 7892 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
18:53:02.0006 7892 FontCache3.0.0.0 - ok
18:53:02.0047 7892 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:53:02.0114 7892 FsDepends - ok
18:53:02.0176 7892 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:53:02.0275 7892 Fs_Rec - ok
18:53:02.0347 7892 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:53:02.0354 7892 fvevol - ok
18:53:02.0395 7892 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
18:53:02.0516 7892 gagp30kx - ok
18:53:02.0639 7892 [ C1BBCE4B30B45410178EE674C818D10C ] GameConsoleService C:\Program Files\HP Games\HP Game Console\GameConsoleService.exe
18:53:02.0685 7892 GameConsoleService - ok
18:53:02.0746 7892 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
18:53:02.0809 7892 gpsvc - ok
18:53:02.0934 7892 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
18:53:02.0934 7892 gupdate - ok
18:53:02.0965 7892 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
18:53:02.0965 7892 gupdatem - ok
18:53:03.0043 7892 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
18:53:03.0074 7892 gusvc - ok
18:53:03.0105 7892 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
18:53:03.0168 7892 hcw85cir - ok
18:53:03.0230 7892 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:53:03.0433 7892 HdAudAddService - ok
18:53:03.0464 7892 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
18:53:03.0480 7892 HDAudBus - ok
18:53:03.0495 7892 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
18:53:03.0558 7892 HidBatt - ok
18:53:03.0573 7892 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
18:53:03.0651 7892 HidBth - ok
18:53:03.0698 7892 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
18:53:03.0745 7892 HidIr - ok
18:53:03.0792 7892 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
18:53:03.0792 7892 hidserv - ok
18:53:03.0838 7892 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\drivers\hidusb.sys
18:53:03.0932 7892 HidUsb - ok
18:53:03.0994 7892 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:53:04.0010 7892 hkmsvc - ok
18:53:04.0072 7892 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:53:04.0088 7892 HomeGroupListener - ok
18:53:04.0150 7892 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:53:04.0150 7892 HomeGroupProvider - ok
18:53:04.0260 7892 [ BE78357FB49759B79CCC01894BCFDDDB ] HP Health Check Service C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
18:53:04.0291 7892 HP Health Check Service - ok
18:53:04.0416 7892 [ 2DFB151FD34DF104DAC0ADF070EDA83C ] HPDrvMntSvc.exe C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
18:53:04.0447 7892 HPDrvMntSvc.exe - ok
18:53:04.0540 7892 [ 1210960FF8928950D2A786895B0C424A ] HpqKbFiltr C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
18:53:04.0587 7892 HpqKbFiltr - ok
18:53:04.0774 7892 [ 184C500CB9F69585F3FE85E1D2667CD8 ] hpqwmiex C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
18:53:04.0852 7892 hpqwmiex - ok
18:53:04.0915 7892 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
18:53:05.0071 7892 HpSAMD - ok
18:53:05.0149 7892 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:53:05.0352 7892 HTTP - ok
18:53:05.0414 7892 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:53:05.0414 7892 hwpolicy - ok
18:53:05.0461 7892 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
18:53:05.0523 7892 i8042prt - ok
18:53:05.0617 7892 [ 7548066DF68A8A1A56B043359F915F37 ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
18:53:05.0664 7892 IAANTMON - ok
18:53:05.0710 7892 [ D483687EACE0C065EE772481A96E05F5 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
18:53:05.0710 7892 iaStor - ok
18:53:05.0788 7892 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
18:53:05.0898 7892 iaStorV - ok
18:53:05.0991 7892 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:53:06.0069 7892 idsvc - ok
18:53:06.0303 7892 [ 81F7C715528AB621C6AF58869D4B07B9 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
18:53:06.0679 7892 igfx - ok
18:53:06.0741 7892 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
18:53:06.0741 7892 iirsp - ok
18:53:06.0819 7892 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
18:53:06.0835 7892 IKEEXT - ok
18:53:06.0897 7892 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
18:53:06.0897 7892 intelide - ok
18:53:06.0944 7892 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:53:07.0053 7892 intelppm - ok
18:53:07.0100 7892 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:53:07.0147 7892 IPBusEnum - ok
18:53:07.0178 7892 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:53:07.0271 7892 IpFilterDriver - ok
18:53:07.0334 7892 [ 4D65A07B795D6674312F879D09AA7663 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:53:07.0365 7892 iphlpsvc - ok
18:53:07.0427 7892 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
18:53:07.0490 7892 IPMIDRV - ok
18:53:07.0537 7892 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:53:07.0772 7892 IPNAT - ok
18:53:07.0818 7892 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:53:07.0912 7892 IRENUM - ok
18:53:07.0959 7892 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:53:07.0959 7892 isapnp - ok
18:53:08.0037 7892 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
18:53:08.0146 7892 iScsiPrt - ok
18:53:08.0208 7892 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
18:53:08.0318 7892 kbdclass - ok
18:53:08.0380 7892 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
18:53:08.0427 7892 kbdhid - ok
18:53:08.0489 7892 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
18:53:08.0489 7892 KeyIso - ok
18:53:08.0677 7892 [ 162A5E3A691B903111526147C8D29E6D ] Kodak AiO Network Discovery Service C:\Program Files\Kodak\AiO\Center\EKAiOHostService.exe
18:53:08.0740 7892 Kodak AiO Network Discovery Service - ok
18:53:08.0896 7892 [ B5E53FCA219A6491E9A1BA146A5D2452 ] Kodak AiO Status Monitor Service C:\Program Files\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe
18:53:09.0005 7892 Kodak AiO Status Monitor Service - ok
18:53:09.0083 7892 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:53:09.0114 7892 KSecDD - ok
18:53:09.0161 7892 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:53:09.0286 7892 KSecPkg - ok
18:53:09.0348 7892 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
18:53:09.0379 7892 KtmRm - ok
18:53:09.0442 7892 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll
18:53:09.0489 7892 LanmanServer - ok
18:53:09.0535 7892 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:53:09.0551 7892 LanmanWorkstation - ok
18:53:09.0613 7892 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:53:09.0724 7892 lltdio - ok
18:53:09.0770 7892 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:53:09.0802 7892 lltdsvc - ok
18:53:09.0848 7892 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
18:53:09.0864 7892 lmhosts - ok
18:53:09.0926 7892 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
18:53:09.0989 7892 LSI_FC - ok
18:53:10.0004 7892 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
18:53:10.0004 7892 LSI_SAS - ok
18:53:10.0067 7892 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:53:10.0254 7892 LSI_SAS2 - ok
18:53:10.0332 7892 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:53:10.0426 7892 LSI_SCSI - ok
18:53:10.0472 7892 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
18:53:10.0472 7892 luafv - ok
18:53:10.0504 7892 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
18:53:10.0519 7892 megasas - ok
18:53:10.0566 7892 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
18:53:10.0675 7892 MegaSR - ok
18:53:10.0706 7892 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
18:53:10.0722 7892 MMCSS - ok
18:53:10.0753 7892 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
18:53:10.0831 7892 Modem - ok
18:53:10.0878 7892 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:53:11.0034 7892 monitor - ok
18:53:11.0096 7892 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
18:53:11.0174 7892 mouclass - ok
18:53:11.0206 7892 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:53:11.0268 7892 mouhid - ok
18:53:11.0315 7892 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:53:11.0440 7892 mountmgr - ok
18:53:11.0502 7892 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
18:53:11.0674 7892 mpio - ok
18:53:11.0705 7892 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:53:11.0783 7892 mpsdrv - ok
18:53:11.0876 7892 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
18:53:11.0954 7892 MpsSvc - ok
18:53:12.0032 7892 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:53:12.0095 7892 MRxDAV - ok
18:53:12.0157 7892 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:53:12.0251 7892 mrxsmb - ok
18:53:12.0329 7892 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:53:12.0329 7892 mrxsmb10 - ok
18:53:12.0376 7892 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:53:12.0485 7892 mrxsmb20 - ok
18:53:12.0563 7892 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
18:53:12.0563 7892 msahci - ok
18:53:12.0625 7892 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:53:12.0625 7892 msdsm - ok
18:53:12.0656 7892 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
18:53:12.0672 7892 MSDTC - ok
18:53:12.0766 7892 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:53:12.0828 7892 Msfs - ok
18:53:12.0875 7892 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:53:12.0968 7892 mshidkmdf - ok
18:53:12.0984 7892 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:53:13.0046 7892 msisadrv - ok
18:53:13.0124 7892 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:53:13.0156 7892 MSiSCSI - ok
18:53:13.0171 7892 msiserver - ok
18:53:13.0234 7892 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:53:13.0249 7892 MSKSSRV - ok
18:53:13.0280 7892 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:53:13.0374 7892 MSPCLOCK - ok
18:53:13.0390 7892 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:53:13.0390 7892 MSPQM - ok
18:53:13.0436 7892 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:53:13.0436 7892 MsRPC - ok
18:53:13.0499 7892 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
18:53:13.0561 7892 mssmbios - ok
18:53:13.0577 7892 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:53:13.0686 7892 MSTEE - ok
18:53:13.0718 7892 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
18:53:13.0781 7892 MTConfig - ok
18:53:13.0812 7892 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
18:53:13.0812 7892 Mup - ok
18:53:13.0874 7892 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
18:53:13.0890 7892 napagent - ok
18:53:13.0937 7892 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:53:14.0015 7892 NativeWifiP - ok
18:53:14.0077 7892 [ E7C54812A2AAF43316EB6930C1FFA108 ] NDIS C:\Windows\system32\drivers\ndis.sys
18:53:14.0264 7892 NDIS - ok
18:53:14.0311 7892 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:53:14.0405 7892 NdisCap - ok
18:53:14.0451 7892 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:53:14.0451 7892 NdisTapi - ok
18:53:14.0514 7892 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:53:14.0576 7892 Ndisuio - ok
18:53:14.0623 7892 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:53:14.0685 7892 NdisWan - ok
18:53:14.0732 7892 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:53:14.0857 7892 NDProxy - ok
18:53:14.0904 7892 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:53:14.0904 7892 NetBIOS - ok
18:53:14.0966 7892 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:53:15.0060 7892 NetBT - ok
18:53:15.0075 7892 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
18:53:15.0091 7892 Netlogon - ok
18:53:15.0138 7892 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
18:53:15.0169 7892 Netman - ok
18:53:15.0231 7892 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
18:53:15.0341 7892 netprofm - ok
18:53:15.0387 7892 [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:53:15.0450 7892 NetTcpPortSharing - ok
18:53:15.0637 7892 [ 58218EC6B61B1169CF54AAB0D00F5FE2 ] netw5v32 C:\Windows\system32\DRIVERS\netw5v32.sys
18:53:15.0855 7892 netw5v32 - ok
18:53:15.0902 7892 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
18:53:16.0027 7892 nfrd960 - ok
18:53:16.0089 7892 [ 912084381D30D8B89EC4E293053F4710 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:53:16.0136 7892 NlaSvc - ok
18:53:16.0199 7892 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:53:16.0308 7892 Npfs - ok
18:53:16.0355 7892 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
18:53:16.0370 7892 nsi - ok
18:53:16.0433 7892 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:53:16.0526 7892 nsiproxy - ok
18:53:16.0604 7892 [ 81189C3D7763838E55C397759D49007A ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:53:16.0777 7892 Ntfs - ok
18:53:16.0839 7892 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
18:53:16.0902 7892 Null - ok
18:53:16.0964 7892 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:53:16.0964 7892 nvraid - ok
18:53:17.0011 7892 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:53:17.0167 7892 nvstor - ok
18:53:17.0198 7892 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:53:17.0292 7892 nv_agp - ok
18:53:17.0416 7892 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:53:17.0432 7892 odserv - ok
18:53:17.0510 7892 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
18:53:17.0541 7892 ohci1394 - ok
18:53:17.0635 7892 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:53:17.0635 7892 ose - ok
18:53:17.0729 7892 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:53:17.0745 7892 p2pimsvc - ok
18:53:17.0792 7892 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
18:53:17.0823 7892 p2psvc - ok
18:53:17.0870 7892 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
18:53:17.0948 7892 Parport - ok
18:53:18.0010 7892 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:53:18.0026 7892 partmgr - ok
18:53:18.0088 7892 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
18:53:18.0135 7892 Parvdm - ok
18:53:18.0166 7892 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
18:53:18.0197 7892 PcaSvc - ok
18:53:18.0275 7892 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
18:53:18.0385 7892 pci - ok
18:53:18.0463 7892 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
18:53:18.0525 7892 pciide - ok
18:53:18.0572 7892 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
18:53:18.0650 7892 pcmcia - ok
18:53:18.0681 7892 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
18:53:18.0681 7892 pcw - ok
18:53:18.0744 7892 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:53:18.0791 7892 PEAUTH - ok
18:53:18.0916 7892 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
18:53:19.0072 7892 pla - ok
18:53:19.0150 7892 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:53:19.0228 7892 PlugPlay - ok
18:53:19.0259 7892 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:53:19.0275 7892 PNRPAutoReg - ok
18:53:19.0306 7892 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:53:19.0306 7892 PNRPsvc - ok
18:53:19.0368 7892 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:53:19.0384 7892 PolicyAgent - ok
18:53:19.0446 7892 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
18:53:19.0462 7892 Power - ok
18:53:19.0509 7892 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:53:19.0571 7892 PptpMiniport - ok
18:53:19.0602 7892 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
18:53:19.0696 7892 Processor - ok
18:53:19.0758 7892 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll
18:53:19.0805 7892 ProfSvc - ok
18:53:19.0852 7892 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
18:53:19.0852 7892 ProtectedStorage - ok
18:53:19.0946 7892 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:53:20.0008 7892 Psched - ok
18:53:20.0086 7892 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
18:53:20.0148 7892 ql2300 - ok
18:53:20.0195 7892 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
18:53:20.0273 7892 ql40xx - ok
18:53:20.0320 7892 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
18:53:20.0336 7892 QWAVE - ok
18:53:20.0382 7892 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:53:20.0445 7892 QWAVEdrv - ok
18:53:20.0476 7892 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:53:20.0554 7892 RasAcd - ok
18:53:20.0585 7892 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:53:20.0679 7892 RasAgileVpn - ok
18:53:20.0710 7892 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
18:53:20.0726 7892 RasAuto - ok
18:53:20.0758 7892 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:53:20.0836 7892 Rasl2tp - ok
18:53:20.0914 7892 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
18:53:20.0961 7892 RasMan - ok
18:53:21.0007 7892 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:53:21.0117 7892 RasPppoe - ok
18:53:21.0163 7892 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:53:21.0226 7892 RasSstp - ok
18:53:21.0335 7892 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:53:21.0475 7892 rdbss - ok
18:53:21.0512 7892 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
18:53:21.0618 7892 rdpbus - ok
18:53:21.0676 7892 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:53:21.0761 7892 RDPCDD - ok
18:53:21.0822 7892 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:53:21.0902 7892 RDPENCDD - ok
18:53:21.0930 7892 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:53:22.0017 7892 RDPREFMP - ok
18:53:22.0070 7892 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:53:22.0171 7892 RDPWD - ok
18:53:22.0308 7892 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:53:22.0420 7892 rdyboost - ok
18:53:22.0480 7892 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
18:53:22.0488 7892 RemoteAccess - ok
18:53:22.0557 7892 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:53:22.0575 7892 RemoteRegistry - ok
18:53:22.0635 7892 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:53:22.0646 7892 RpcEptMapper - ok
18:53:22.0680 7892 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
18:53:22.0688 7892 RpcLocator - ok
18:53:22.0715 7892 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
18:53:22.0730 7892 RpcSs - ok
18:53:22.0808 7892 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:53:22.0933 7892 rspndr - ok
18:53:23.0011 7892 [ F9541F3B59DA30423F2F76EF443C07FC ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
18:53:23.0073 7892 RSUSBSTOR - ok
18:53:23.0151 7892 [ C5A68C5EC01FD6F03396DD154B48DB56 ] RTL8167 C:\Windows\system32\DRIVERS\Rt86win7.sys
18:53:23.0198 7892 RTL8167 - ok
18:53:23.0229 7892 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
18:53:23.0229 7892 SamSs - ok
18:53:23.0276 7892 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:53:23.0292 7892 sbp2port - ok
18:53:23.0323 7892 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:53:23.0339 7892 SCardSvr - ok
18:53:23.0370 7892 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:53:23.0370 7892 scfilter - ok
18:53:23.0448 7892 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
18:53:23.0510 7892 Schedule - ok
18:53:23.0557 7892 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
18:53:23.0557 7892 SCPolicySvc - ok
18:53:23.0651 7892 [ 0328BE1C7F1CBA23848179F8762E391C ] sdbus C:\Windows\system32\drivers\sdbus.sys
18:53:23.0729 7892 sdbus - ok
18:53:23.0776 7892 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:53:23.0792 7892 SDRSVC - ok
18:53:23.0839 7892 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:53:23.0901 7892 secdrv - ok
18:53:23.0948 7892 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
18:53:23.0964 7892 seclogon - ok
18:53:23.0995 7892 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
18:53:24.0010 7892 SENS - ok
18:53:24.0042 7892 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:53:24.0120 7892 Serenum - ok
18:53:24.0151 7892 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
18:53:24.0229 7892 Serial - ok
18:53:24.0276 7892 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
18:53:24.0338 7892 sermouse - ok
18:53:24.0416 7892 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
18:53:24.0432 7892 SessionEnv - ok
18:53:24.0478 7892 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:53:24.0541 7892 sffdisk - ok
18:53:24.0572 7892 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:53:24.0634 7892 sffp_mmc - ok
18:53:24.0650 7892 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:53:24.0728 7892 sffp_sd - ok
18:53:24.0775 7892 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
18:53:24.0853 7892 sfloppy - ok
18:53:24.0900 7892 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:53:24.0915 7892 SharedAccess - ok
18:53:24.0946 7892 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:53:24.0978 7892 ShellHWDetection - ok
18:53:24.0993 7892 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
18:53:25.0040 7892 sisagp - ok
18:53:25.0102 7892 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:53:25.0102 7892 SiSRaid2 - ok
18:53:25.0134 7892 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
18:53:25.0290 7892 SiSRaid4 - ok
18:53:25.0336 7892 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:53:25.0383 7892 Smb - ok
18:53:25.0477 7892 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:53:25.0492 7892 SNMPTRAP - ok
18:53:25.0524 7892 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
18:53:25.0539 7892 spldr - ok
18:53:25.0602 7892 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe
18:53:25.0648 7892 Spooler - ok
18:53:25.0821 7892 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
18:53:26.0008 7892 sppsvc - ok
18:53:26.0071 7892 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:53:26.0086 7892 sppuinotify - ok
18:53:26.0164 7892 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
18:53:26.0273 7892 srv - ok
18:53:26.0429 7892 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:53:26.0492 7892 srv2 - ok
18:53:26.0632 7892 [ E00FDFAFF025E94F9821153750C35A6D ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL3.SYS
18:53:26.0819 7892 SrvHsfHDA - ok
18:53:27.0866 7892 [ CEB4E3B6890E1E42DCA6694D9E59E1A0 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV3.SYS
18:53:29.0316 7892 SrvHsfV92 - ok
18:53:30.0330 7892 [ BC0C7EA89194C299F051C24119000E17 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
18:53:31.0064 7892 SrvHsfWinac - ok
18:53:31.0235 7892 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:53:31.0235 7892 srvnet - ok
18:53:31.0360 7892 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:53:31.0391 7892 SSDPSRV - ok
18:53:31.0532 7892 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:53:31.0547 7892 SstpSvc - ok
18:53:33.0045 7892 [ 1816C34D3DC9A0F1745FB455506C7B58 ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_5576240ee6baaa25\STacSV.exe
18:53:33.0544 7892 STacSV - ok
18:53:33.0638 7892 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
18:53:33.0638 7892 stexstor - ok
18:53:34.0090 7892 [ 96CB9FD21207AF4456D37957441F6001 ] STHDA C:\Windows\system32\DRIVERS\stwrt.sys
18:53:34.0574 7892 STHDA - ok
18:53:34.0948 7892 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
18:53:35.0026 7892 StiSvc - ok
18:53:35.0120 7892 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
18:53:35.0166 7892 swenum - ok
18:53:35.0260 7892 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
18:53:35.0276 7892 swprv - ok
18:53:35.0432 7892 [ 6DD49E1A5FA0F01824652F1A0A8866FB ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
18:53:35.0478 7892 SynTP - ok
18:53:36.0024 7892 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
18:53:36.0118 7892 SysMain - ok
18:53:36.0196 7892 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:53:36.0213 7892 TabletInputService - ok
18:53:36.0322 7892 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
18:53:36.0337 7892 TapiSrv - ok
18:53:36.0431 7892 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
18:53:36.0447 7892 TBS - ok
18:53:36.0805 7892 [ 7FA2E0F8B072BD04B77B421480B6CC22 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:53:36.0930 7892 Tcpip - ok
18:53:37.0102 7892 [ 7FA2E0F8B072BD04B77B421480B6CC22 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:53:37.0117 7892 TCPIP6 - ok
18:53:37.0273 7892 [ CCA24162E055C3714CE5A88B100C64ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:53:37.0383 7892 tcpipreg - ok
18:53:37.0461 7892 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:53:37.0554 7892 TDPIPE - ok
18:53:37.0601 7892 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:53:37.0663 7892 TDTCP - ok
18:53:37.0726 7892 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:53:37.0835 7892 tdx - ok
18:53:37.0897 7892 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
18:53:37.0975 7892 TermDD - ok
18:53:38.0365 7892 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
18:53:38.0693 7892 TermService - ok
18:53:38.0740 7892 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
18:53:38.0755 7892 Themes - ok
18:53:38.0833 7892 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
18:53:38.0849 7892 THREADORDER - ok
18:53:38.0911 7892 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
18:53:38.0927 7892 TrkWks - ok
18:53:39.0256 7892 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:53:39.0583 7892 TrustedInstaller - ok
18:53:39.0646 7892 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:53:39.0848 7892 tssecsrv - ok
18:53:40.0176 7892 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
18:53:40.0254 7892 TsUsbFlt - ok
18:53:40.0363 7892 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:53:40.0441 7892 tunnel - ok
18:53:40.0504 7892 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
18:53:40.0582 7892 uagp35 - ok
18:53:40.0644 7892 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:53:40.0753 7892 udfs - ok
18:53:40.0831 7892 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:53:40.0847 7892 UI0Detect - ok
18:53:40.0909 7892 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:53:40.0972 7892 uliagpkx - ok
18:53:41.0096 7892 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys
18:53:41.0159 7892 umbus - ok
18:53:41.0237 7892 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
18:53:41.0299 7892 UmPass - ok
18:53:41.0393 7892 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
18:53:41.0408 7892 upnphost - ok
18:53:41.0471 7892 [ 83CAFCB53201BBAC04D822F32438E244 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
18:53:41.0582 7892 USBAAPL - ok
18:53:41.0623 7892 [ 1D9F2BD026E8E2D45033A4DF3F16B78C ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
18:53:41.0654 7892 usbaudio - ok
18:53:41.0768 7892 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:53:41.0904 7892 usbccgp - ok
18:53:41.0957 7892 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
18:53:42.0079 7892 usbcir - ok
18:53:42.0114 7892 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\drivers\usbehci.sys
18:53:42.0234 7892 usbehci - ok
18:53:42.0315 7892 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:53:42.0415 7892 usbhub - ok
18:53:42.0464 7892 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\drivers\usbohci.sys
18:53:42.0559 7892 usbohci - ok
18:53:42.0610 7892 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
18:53:42.0700 7892 usbprint - ok
18:53:42.0745 7892 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:53:42.0808 7892 USBSTOR - ok
18:53:42.0823 7892 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
18:53:42.0870 7892 usbuhci - ok
18:53:42.0964 7892 [ 45F4E7BF43DB40A6C6B4D92C76CBC3F2 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
18:53:42.0979 7892 usbvideo - ok
18:53:43.0042 7892 [ D82F43D15FDAA666856C0190CB73E7C9 ] usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys
18:53:43.0089 7892 usb_rndisx - ok
18:53:43.0135 7892 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
18:53:43.0151 7892 UxSms - ok
18:53:43.0167 7892 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
18:53:43.0182 7892 VaultSvc - ok
18:53:43.0213 7892 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
18:53:43.0260 7892 vdrvroot - ok
18:53:43.0323 7892 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
18:53:43.0369 7892 vds - ok
18:53:43.0401 7892 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:53:43.0479 7892 vga - ok
18:53:43.0525 7892 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
18:53:43.0619 7892 VgaSave - ok
18:53:43.0681 7892 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
18:53:43.0744 7892 vhdmp - ok
18:53:43.0775 7892 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
18:53:43.0837 7892 viaagp - ok
18:53:43.0853 7892 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
18:53:43.0931 7892 ViaC7 - ok
18:53:43.0993 7892 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
18:53:43.0993 7892 viaide - ok
18:53:44.0009 7892 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:53:44.0025 7892 volmgr - ok
18:53:44.0056 7892 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:53:44.0149 7892 volmgrx - ok
18:53:44.0182 7892 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:53:44.0197 7892 volsnap - ok
18:53:44.0244 7892 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
18:53:44.0306 7892 vsmraid - ok
18:53:44.0400 7892 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
18:53:44.0447 7892 VSS - ok
18:53:44.0478 7892 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
18:53:44.0525 7892 vwifibus - ok
18:53:44.0572 7892 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
18:53:44.0696 7892 vwififlt - ok
18:53:44.0774 7892 [ A3F04CBEA6C2A10E6CB01F8B47611882 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
18:53:44.0837 7892 vwifimp - ok
18:53:44.0899 7892 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
18:53:44.0930 7892 W32Time - ok
18:53:44.0977 7892 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
18:53:45.0024 7892 WacomPen - ok
18:53:45.0071 7892 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
18:53:45.0164 7892 WANARP - ok
18:53:45.0180 7892 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:53:45.0180 7892 Wanarpv6 - ok
18:53:45.0288 7892 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
18:53:45.0319 7892 wbengine - ok
18:53:45.0366 7892 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
18:53:45.0381 7892 WbioSrvc - ok
18:53:45.0444 7892 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:53:45.0459 7892 wcncsvc - ok
18:53:45.0506 7892 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:53:45.0522 7892 WcsPlugInService - ok
18:53:45.0568 7892 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
18:53:45.0584 7892 Wd - ok
18:53:45.0631 7892 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:53:45.0802 7892 Wdf01000 - ok
18:53:45.0834 7892 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:53:45.0849 7892 WdiServiceHost - ok
18:53:45.0865 7892 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:53:45.0880 7892 WdiSystemHost - ok
18:53:45.0943 7892 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
18:53:45.0958 7892 WebClient - ok
18:53:45.0990 7892 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:53:46.0005 7892 Wecsvc - ok
18:53:46.0052 7892 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:53:46.0068 7892 wercplsupport - ok
18:53:46.0130 7892 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
18:53:46.0146 7892 WerSvc - ok
18:53:46.0208 7892 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
18:53:46.0255 7892 WfpLwf - ok
18:53:46.0286 7892 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
18:53:46.0348 7892 WIMMount - ok
18:53:46.0426 7892 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
18:53:46.0520 7892 WinDefend - ok
18:53:46.0536 7892 WinHttpAutoProxySvc - ok
18:53:46.0614 7892 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:53:46.0614 7892 Winmgmt - ok
18:53:46.0723 7892 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
18:53:46.0848 7892 WinRM - ok
18:53:46.0957 7892 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
18:53:46.0988 7892 WinUsb - ok
18:53:47.0113 7892 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
18:53:47.0206 7892 Wlansvc - ok
18:53:47.0253 7892 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
18:53:47.0316 7892 WmiAcpi - ok
18:53:47.0362 7892 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:53:47.0394 7892 wmiApSrv - ok
18:53:47.0503 7892 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
18:53:47.0550 7892 WMPNetworkSvc - ok
18:53:47.0612 7892 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:53:47.0628 7892 WPCSvc - ok
18:53:47.0674 7892 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:53:47.0690 7892 WPDBusEnum - ok
18:53:47.0737 7892 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:53:47.0862 7892 ws2ifsl - ok
18:53:47.0893 7892 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\System32\wscsvc.dll
18:53:47.0908 7892 wscsvc - ok
18:53:47.0908 7892 WSearch - ok
18:53:48.0033 7892 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
18:53:48.0189 7892 wuauserv - ok
18:53:48.0267 7892 [ E714A1C0354636837E20CCBF00888EE7 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:53:48.0314 7892 WudfPf - ok
18:53:48.0392 7892 [ 1023EE888C9B47178C5293ED5336AB69 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:53:48.0423 7892 WUDFRd - ok
18:53:48.0501 7892 [ 8D1E1E529A2C9E9B6A85B55A345F7629 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:53:48.0501 7892 wudfsvc - ok
18:53:48.0548 7892 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
18:53:48.0595 7892 WwanSvc - ok
18:53:48.0673 7892 [ B07C5B7EFDF936FF93D4F540938725BE ] yukonw7 C:\Windows\system32\DRIVERS\yk62x86.sys
18:53:48.0751 7892 yukonw7 - ok
18:53:48.0798 7892 ================ Scan global ===============================
18:53:48.0876 7892 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
18:53:48.0954 7892 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
18:53:49.0000 7892 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
18:53:49.0047 7892 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
18:53:49.0094 7892 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
18:53:49.0110 7892 [Global] - ok
18:53:49.0110 7892 ================ Scan MBR ==================================
18:53:49.0141 7892 [ 7EED5871C68A0B6E5A3B0D034C8530A9 ] \Device\Harddisk0\DR0
18:53:49.0141 7892 Suspicious mbr (Forged): \Device\Harddisk0\DR0
18:53:49.0203 7892 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
18:53:49.0203 7892 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
18:53:49.0219 7892 ================ Scan VBR ==================================
18:53:49.0250 7892 [ D3094B62BB48EC0FB2023D811F0BD546 ] \Device\Harddisk0\DR0\Partition1
18:53:49.0250 7892 \Device\Harddisk0\DR0\Partition1 - ok
18:53:49.0281 7892 [ A1DB9EEAB2C3066C18C026C70D1E601B ] \Device\Harddisk0\DR0\Partition2
18:53:49.0281 7892 \Device\Harddisk0\DR0\Partition2 - ok
18:53:49.0344 7892 [ 002B1ECF682FEF8705D849F8C7110B4C ] \Device\Harddisk0\DR0\Partition3
18:53:49.0344 7892 \Device\Harddisk0\DR0\Partition3 - ok
18:53:49.0344 7892 ============================================================
18:53:49.0344 7892 Scan finished
18:53:49.0344 7892 ============================================================
18:53:49.0390 5488 Detected object count: 1
18:53:49.0390 5488 Actual detected object count: 1
19:09:01.0306 5488 \Device\Harddisk0\DR0\# - copied to quarantine
19:09:01.0400 5488 \Device\Harddisk0\DR0 - copied to quarantine
19:09:01.0493 5488 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
19:09:01.0509 5488 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
19:09:12.0726 5488 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
19:09:23.0439 5488 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
19:09:32.0096 5488 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
19:09:51.0058 5488 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
19:09:54.0927 5488 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
19:09:54.0942 5488 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
19:09:54.0958 5488 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
19:09:58.0315 5488 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
19:10:02.0060 5488 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
19:10:02.0140 5488 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
19:10:02.0494 5488 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - will be cured on reboot
19:10:02.0541 5488 \Device\Harddisk0\DR0 - ok
19:10:03.0995 5488 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Cure


Standby for the what I found from the. aswMBR scan

#4 Buckyfoondumba

Buckyfoondumba
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:06:18 AM

Posted 28 August 2012 - 08:24 PM

And the aswMBR scan:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-28 20:56:05
-----------------------------
20:56:05.917 OS Version: Windows 6.1.7601 Service Pack 1
20:56:05.917 Number of processors: 2 586 0x1C0A
20:56:05.917 ComputerName: JERRY-PC UserName: Jerry
20:57:33.903 Initialize success
20:58:01.320 AVAST engine defs: 12082803
20:58:05.782 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
20:58:05.798 Disk 0 Vendor: WDC_WD16 01.0 Size: 152627MB BusType: 3
20:58:05.829 Disk 0 MBR read successfully
20:58:05.844 Disk 0 MBR scan
20:58:05.938 Disk 0 unknown MBR code
20:58:05.969 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 199 MB offset 2048
20:58:06.000 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 140476 MB offset 409600
20:58:06.156 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 11848 MB offset 288104448
20:58:06.219 Disk 0 Partition 4 00 0C FAT32 LBA MSDOS5.0 102 MB offset 312369152
20:58:06.281 Disk 0 scanning sectors +312579760
20:58:06.656 Disk 0 scanning C:\Windows\system32\drivers
20:58:45.798 Service scanning
20:59:45.782 Modules scanning
21:00:16.017 Disk 0 trace - called modules:
21:00:16.064 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll iaStor.sys
21:00:16.079 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85069340]
21:00:16.110 3 CLASSPNP.SYS[86a3b59e] -> nt!IofCallDriver -> [0x84298900]
21:00:16.126 5 ACPI.sys[868c23d4] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0x84248028]
21:00:17.362 AVAST engine scan C:\Windows
21:00:20.931 AVAST engine scan C:\Windows\system32
21:05:31.114 AVAST engine scan C:\Windows\system32\drivers
21:05:53.274 AVAST engine scan C:\Users\Jerry
21:14:51.435 AVAST engine scan C:\ProgramData
21:16:43.965 Scan finished successfully

#5 Buckyfoondumba

Buckyfoondumba
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:06:18 AM

Posted 29 August 2012 - 04:53 AM

The ESET Online scanner found no threats, no infected files.



#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:18 AM

Posted 29 August 2012 - 08:35 AM

Please run TDSSkiller once again and post the new log


http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#7 Buckyfoondumba

Buckyfoondumba
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:06:18 AM

Posted 29 August 2012 - 03:40 PM

15:55:55.0531 4928 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
15:55:56.0907 4928 ============================================================
15:55:56.0907 4928 Current date / time: 2012/08/29 15:55:56.0907
15:55:56.0907 4928 SystemInfo:
15:55:56.0907 4928
15:55:56.0907 4928 OS Version: 6.1.7601 ServicePack: 1.0
15:55:56.0907 4928 Product type: Workstation
15:55:56.0907 4928 ComputerName: JERRY-PC
15:55:56.0907 4928 UserName: Jerry
15:55:56.0907 4928 Windows directory: C:\Windows
15:55:56.0907 4928 System windows directory: C:\Windows
15:55:56.0907 4928 Processor architecture: Intel x86
15:55:56.0907 4928 Number of processors: 2
15:55:56.0907 4928 Page size: 0x1000
15:55:56.0907 4928 Boot type: Normal boot
15:55:56.0907 4928 ============================================================
15:55:57.0687 4928 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
15:55:57.0687 4928 ============================================================
15:55:57.0687 4928 \Device\Harddisk0\DR0:
15:55:57.0687 4928 MBR partitions:
15:55:57.0687 4928 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
15:55:57.0687 4928 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x1125E000
15:55:57.0687 4928 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x112C2000, BlocksNum 0x1724000
15:55:57.0687 4928 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x129E6000, BlocksNum 0x336B0
15:55:57.0687 4928 ============================================================
15:55:57.0734 4928 C: <-> \Device\Harddisk0\DR0\Partition2
15:55:57.0781 4928 D: <-> \Device\Harddisk0\DR0\Partition3
15:55:57.0796 4928 E: <-> \Device\Harddisk0\DR0\Partition4
15:55:57.0796 4928 ============================================================
15:55:57.0796 4928 Initialize success
15:55:57.0796 4928 ============================================================
15:55:59.0918 2588 ============================================================
15:55:59.0918 2588 Scan started
15:55:59.0918 2588 Mode: Manual;
15:55:59.0918 2588 ============================================================
15:56:00.0074 2588 ================ Scan system memory ========================
15:56:00.0090 2588 System memory - ok
15:56:00.0090 2588 ================ Scan services =============================
15:56:00.0308 2588 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
15:56:00.0308 2588 1394ohci - ok
15:56:00.0417 2588 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
15:56:00.0433 2588 ACDaemon - ok
15:56:00.0495 2588 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
15:56:00.0495 2588 ACPI - ok
15:56:00.0558 2588 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
15:56:00.0573 2588 AcpiPmi - ok
15:56:00.0667 2588 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
15:56:00.0667 2588 AdobeFlashPlayerUpdateSvc - ok
15:56:00.0729 2588 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
15:56:00.0745 2588 adp94xx - ok
15:56:00.0792 2588 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
15:56:00.0792 2588 adpahci - ok
15:56:00.0823 2588 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
15:56:00.0838 2588 adpu320 - ok
15:56:00.0916 2588 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:56:00.0916 2588 AeLookupSvc - ok
15:56:01.0010 2588 [ 827DBC22C96EECF6D36A13162FABAFD3 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_5576240ee6baaa25\aestsrv.exe
15:56:01.0010 2588 AESTFilters - ok
15:56:01.0088 2588 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
15:56:01.0088 2588 AFD - ok
15:56:01.0182 2588 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
15:56:01.0182 2588 agp440 - ok
15:56:01.0244 2588 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
15:56:01.0244 2588 aic78xx - ok
15:56:01.0306 2588 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
15:56:01.0306 2588 ALG - ok
15:56:01.0353 2588 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
15:56:01.0353 2588 aliide - ok
15:56:01.0384 2588 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
15:56:01.0384 2588 amdagp - ok
15:56:01.0400 2588 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
15:56:01.0400 2588 amdide - ok
15:56:01.0431 2588 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
15:56:01.0431 2588 AmdK8 - ok
15:56:01.0478 2588 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
15:56:01.0478 2588 AmdPPM - ok
15:56:01.0540 2588 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
15:56:01.0540 2588 amdsata - ok
15:56:01.0572 2588 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
15:56:01.0587 2588 amdsbs - ok
15:56:01.0603 2588 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
15:56:01.0603 2588 amdxata - ok
15:56:01.0665 2588 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
15:56:01.0665 2588 AppID - ok
15:56:01.0712 2588 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
15:56:01.0728 2588 AppIDSvc - ok
15:56:01.0774 2588 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
15:56:01.0790 2588 Appinfo - ok
15:56:02.0086 2588 [ 3DEBBECF665DCDDE3A95D9B902010817 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:56:02.0086 2588 Apple Mobile Device - ok
15:56:02.0149 2588 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
15:56:02.0149 2588 arc - ok
15:56:02.0196 2588 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
15:56:02.0196 2588 arcsas - ok
15:56:02.0242 2588 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:56:02.0242 2588 AsyncMac - ok
15:56:02.0289 2588 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
15:56:02.0305 2588 atapi - ok
15:56:02.0367 2588 [ 76BAB0C824E2D05B940C4DD40A9B08BF ] athr C:\Windows\system32\DRIVERS\athr.sys
15:56:02.0383 2588 athr - ok
15:56:02.0461 2588 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:56:02.0476 2588 AudioEndpointBuilder - ok
15:56:02.0523 2588 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
15:56:02.0523 2588 Audiosrv - ok
15:56:02.0632 2588 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
15:56:02.0632 2588 AxInstSV - ok
15:56:02.0710 2588 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
15:56:02.0726 2588 b06bdrv - ok
15:56:02.0788 2588 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
15:56:02.0788 2588 b57nd60x - ok
15:56:03.0085 2588 [ 36A47E6AB1F0967C97722183E21ADB1A ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl6.sys
15:56:03.0116 2588 BCM43XX - ok
15:56:03.0210 2588 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
15:56:03.0210 2588 BDESVC - ok
15:56:03.0256 2588 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
15:56:03.0256 2588 Beep - ok
15:56:03.0366 2588 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
15:56:03.0381 2588 BFE - ok
15:56:03.0490 2588 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\System32\qmgr.dll
15:56:03.0506 2588 BITS - ok
15:56:03.0568 2588 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
15:56:03.0568 2588 blbdrive - ok
15:56:03.0756 2588 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:56:03.0756 2588 Bonjour Service - ok
15:56:03.0818 2588 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:56:03.0818 2588 bowser - ok
15:56:03.0849 2588 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:56:03.0849 2588 BrFiltLo - ok
15:56:03.0880 2588 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:56:03.0880 2588 BrFiltUp - ok
15:56:03.0927 2588 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
15:56:03.0927 2588 Browser - ok
15:56:04.0005 2588 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
15:56:04.0021 2588 Brserid - ok
15:56:04.0068 2588 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
15:56:04.0068 2588 BrSerWdm - ok
15:56:04.0083 2588 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
15:56:04.0099 2588 BrUsbMdm - ok
15:56:04.0130 2588 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
15:56:04.0130 2588 BrUsbSer - ok
15:56:04.0161 2588 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
15:56:04.0161 2588 BTHMODEM - ok
15:56:04.0239 2588 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
15:56:04.0239 2588 bthserv - ok
15:56:04.0286 2588 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:56:04.0286 2588 cdfs - ok
15:56:04.0364 2588 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\drivers\cdrom.sys
15:56:04.0364 2588 cdrom - ok
15:56:04.0427 2588 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
15:56:04.0443 2588 CertPropSvc - ok
15:56:04.0474 2588 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
15:56:04.0474 2588 circlass - ok
15:56:04.0568 2588 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
15:56:04.0583 2588 CLFS - ok
15:56:04.0739 2588 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:56:04.0739 2588 clr_optimization_v2.0.50727_32 - ok
15:56:04.0849 2588 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:56:04.0849 2588 clr_optimization_v4.0.30319_32 - ok
15:56:04.0911 2588 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
15:56:04.0911 2588 CmBatt - ok
15:56:04.0973 2588 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
15:56:04.0973 2588 cmdide - ok
15:56:05.0036 2588 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
15:56:05.0036 2588 CNG - ok
15:56:05.0176 2588 [ F9A79C5B27037821112C50A9C8FB367A ] Com4QLBEx C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
15:56:05.0176 2588 Com4QLBEx - ok
15:56:05.0223 2588 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
15:56:05.0239 2588 Compbatt - ok
15:56:05.0317 2588 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
15:56:05.0317 2588 CompositeBus - ok
15:56:05.0363 2588 COMSysApp - ok
15:56:05.0552 2588 cpuz134 - ok
15:56:05.0614 2588 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
15:56:05.0614 2588 crcdisk - ok
15:56:05.0723 2588 [ 06E771AA596B8761107AB57E99F128D7 ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:56:05.0723 2588 CryptSvc - ok
15:56:05.0879 2588 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
15:56:05.0895 2588 DcomLaunch - ok
15:56:06.0004 2588 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
15:56:06.0020 2588 defragsvc - ok
15:56:06.0098 2588 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:56:06.0098 2588 DfsC - ok
15:56:06.0207 2588 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
15:56:06.0207 2588 Dhcp - ok
15:56:06.0238 2588 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
15:56:06.0238 2588 discache - ok
15:56:06.0300 2588 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
15:56:06.0300 2588 Disk - ok
15:56:06.0378 2588 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:56:06.0378 2588 Dnscache - ok
15:56:06.0488 2588 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
15:56:06.0488 2588 dot3svc - ok
15:56:06.0597 2588 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
15:56:06.0597 2588 DPS - ok
15:56:06.0644 2588 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:56:06.0644 2588 drmkaud - ok
15:56:06.0753 2588 [ 8CF55015B2A443EE869C90CAB31FD435 ] DVMIO C:\SPLASH.SYS\config\dvmio.sys
15:56:06.0753 2588 DVMIO - ok
15:56:06.0878 2588 [ 577582D57D90FB64276ACFEE958DBFD3 ] DvmMDES C:\SPLASH.SYS\config\DVMExportService.exe
15:56:06.0893 2588 DvmMDES - ok
15:56:07.0143 2588 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:56:07.0158 2588 DXGKrnl - ok
15:56:07.0236 2588 [ 73CE42907CF42BFB91BCD27FE7C7A7AF ] eamonm C:\Windows\system32\DRIVERS\eamonm.sys
15:56:07.0236 2588 eamonm - ok
15:56:07.0314 2588 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
15:56:07.0314 2588 EapHost - ok
15:56:07.0767 2588 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
15:56:07.0798 2588 ebdrv - ok
15:56:07.0954 2588 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
15:56:07.0954 2588 EFS - ok
15:56:08.0204 2588 [ 7D300A43A7BD8769E0F901BF9E1AE367 ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys
15:56:08.0204 2588 ehdrv - ok
15:56:08.0484 2588 [ D83323D7CD5D1CC46B42DA9E59409890 ] EhttpSrv C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
15:56:08.0484 2588 EhttpSrv - ok
15:56:08.0656 2588 [ EFA198F8983D064A81052851F7BB80C2 ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
15:56:08.0672 2588 ekrn - ok
15:56:08.0843 2588 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
15:56:08.0843 2588 elxstor - ok
15:56:08.0952 2588 [ 96F9030CA15A8D2E8D44E53C1F0E842D ] epfwwfpr C:\Windows\system32\DRIVERS\epfwwfpr.sys
15:56:08.0952 2588 epfwwfpr - ok
15:56:08.0968 2588 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
15:56:08.0968 2588 ErrDev - ok
15:56:09.0108 2588 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
15:56:09.0124 2588 EventSystem - ok
15:56:09.0171 2588 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
15:56:09.0171 2588 exfat - ok
15:56:09.0202 2588 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:56:09.0202 2588 fastfat - ok
15:56:09.0342 2588 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
15:56:09.0358 2588 Fax - ok
15:56:09.0436 2588 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
15:56:09.0436 2588 fdc - ok
15:56:09.0514 2588 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
15:56:09.0514 2588 fdPHost - ok
15:56:09.0561 2588 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
15:56:09.0561 2588 FDResPub - ok
15:56:09.0608 2588 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:56:09.0608 2588 FileInfo - ok
15:56:09.0670 2588 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:56:09.0670 2588 Filetrace - ok
15:56:09.0717 2588 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
15:56:09.0717 2588 flpydisk - ok
15:56:09.0779 2588 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:56:09.0779 2588 FltMgr - ok
15:56:09.0904 2588 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll
15:56:09.0904 2588 FontCache - ok
15:56:09.0982 2588 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
15:56:09.0982 2588 FontCache3.0.0.0 - ok
15:56:10.0013 2588 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
15:56:10.0013 2588 FsDepends - ok
15:56:10.0076 2588 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:56:10.0076 2588 Fs_Rec - ok
15:56:10.0122 2588 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
15:56:10.0138 2588 fvevol - ok
15:56:10.0200 2588 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
15:56:10.0200 2588 gagp30kx - ok
15:56:10.0310 2588 [ C1BBCE4B30B45410178EE674C818D10C ] GameConsoleService C:\Program Files\HP Games\HP Game Console\GameConsoleService.exe
15:56:10.0310 2588 GameConsoleService - ok
15:56:10.0388 2588 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
15:56:10.0403 2588 gpsvc - ok
15:56:10.0590 2588 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
15:56:10.0590 2588 gupdate - ok
15:56:10.0622 2588 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
15:56:10.0637 2588 gupdatem - ok
15:56:10.0793 2588 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
15:56:10.0793 2588 gusvc - ok
15:56:10.0856 2588 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
15:56:10.0856 2588 hcw85cir - ok
15:56:10.0934 2588 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:56:10.0934 2588 HdAudAddService - ok
15:56:11.0012 2588 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
15:56:11.0012 2588 HDAudBus - ok
15:56:11.0105 2588 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
15:56:11.0105 2588 HidBatt - ok
15:56:11.0136 2588 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
15:56:11.0136 2588 HidBth - ok
15:56:11.0168 2588 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
15:56:11.0168 2588 HidIr - ok
15:56:11.0230 2588 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
15:56:11.0230 2588 hidserv - ok
15:56:11.0292 2588 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\drivers\hidusb.sys
15:56:11.0292 2588 HidUsb - ok
15:56:11.0355 2588 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:56:11.0355 2588 hkmsvc - ok
15:56:11.0433 2588 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:56:11.0448 2588 HomeGroupListener - ok
15:56:11.0573 2588 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:56:11.0573 2588 HomeGroupProvider - ok
15:56:11.0682 2588 [ BE78357FB49759B79CCC01894BCFDDDB ] HP Health Check Service C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
15:56:11.0682 2588 HP Health Check Service - ok
15:56:11.0838 2588 [ 2DFB151FD34DF104DAC0ADF070EDA83C ] HPDrvMntSvc.exe C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
15:56:11.0838 2588 HPDrvMntSvc.exe - ok
15:56:11.0979 2588 [ 1210960FF8928950D2A786895B0C424A ] HpqKbFiltr C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
15:56:11.0979 2588 HpqKbFiltr - ok
15:56:12.0088 2588 [ 184C500CB9F69585F3FE85E1D2667CD8 ] hpqwmiex C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
15:56:12.0150 2588 hpqwmiex - ok
15:56:12.0228 2588 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
15:56:12.0228 2588 HpSAMD - ok
15:56:12.0400 2588 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:56:12.0431 2588 HTTP - ok
15:56:12.0494 2588 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
15:56:12.0494 2588 hwpolicy - ok
15:56:12.0572 2588 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
15:56:12.0587 2588 i8042prt - ok
15:56:12.0774 2588 [ 7548066DF68A8A1A56B043359F915F37 ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
15:56:12.0790 2588 IAANTMON - ok
15:56:12.0946 2588 [ D483687EACE0C065EE772481A96E05F5 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
15:56:12.0946 2588 iaStor - ok
15:56:13.0055 2588 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
15:56:13.0071 2588 iaStorV - ok
15:56:13.0352 2588 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:56:13.0430 2588 idsvc - ok
15:56:14.0366 2588 [ 81F7C715528AB621C6AF58869D4B07B9 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
15:56:14.0428 2588 igfx - ok
15:56:14.0475 2588 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
15:56:14.0475 2588 iirsp - ok
15:56:14.0662 2588 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
15:56:14.0678 2588 IKEEXT - ok
15:56:14.0730 2588 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
15:56:14.0730 2588 intelide - ok
15:56:14.0795 2588 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:56:14.0795 2588 intelppm - ok
15:56:14.0857 2588 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:56:14.0875 2588 IPBusEnum - ok
15:56:14.0912 2588 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:56:14.0914 2588 IpFilterDriver - ok
15:56:14.0992 2588 [ 4D65A07B795D6674312F879D09AA7663 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
15:56:15.0005 2588 iphlpsvc - ok
15:56:15.0050 2588 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
15:56:15.0053 2588 IPMIDRV - ok
15:56:15.0086 2588 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
15:56:15.0089 2588 IPNAT - ok
15:56:15.0117 2588 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:56:15.0119 2588 IRENUM - ok
15:56:15.0173 2588 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
15:56:15.0176 2588 isapnp - ok
15:56:15.0228 2588 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
15:56:15.0233 2588 iScsiPrt - ok
15:56:15.0275 2588 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
15:56:15.0277 2588 kbdclass - ok
15:56:15.0341 2588 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
15:56:15.0343 2588 kbdhid - ok
15:56:15.0396 2588 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
15:56:15.0396 2588 KeyIso - ok
15:56:15.0596 2588 [ 162A5E3A691B903111526147C8D29E6D ] Kodak AiO Network Discovery Service C:\Program Files\Kodak\AiO\Center\EKAiOHostService.exe
15:56:15.0599 2588 Kodak AiO Network Discovery Service - ok
15:56:15.0709 2588 [ B5E53FCA219A6491E9A1BA146A5D2452 ] Kodak AiO Status Monitor Service C:\Program Files\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe
15:56:15.0755 2588 Kodak AiO Status Monitor Service - ok
15:56:15.0795 2588 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:56:15.0795 2588 KSecDD - ok
15:56:15.0842 2588 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
15:56:15.0858 2588 KSecPkg - ok
15:56:15.0904 2588 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
15:56:15.0904 2588 KtmRm - ok
15:56:15.0982 2588 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll
15:56:15.0998 2588 LanmanServer - ok
15:56:16.0045 2588 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:56:16.0045 2588 LanmanWorkstation - ok
15:56:16.0123 2588 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:56:16.0123 2588 lltdio - ok
15:56:16.0170 2588 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:56:16.0170 2588 lltdsvc - ok
15:56:16.0216 2588 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
15:56:16.0232 2588 lmhosts - ok
15:56:16.0279 2588 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
15:56:16.0294 2588 LSI_FC - ok
15:56:16.0310 2588 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
15:56:16.0310 2588 LSI_SAS - ok
15:56:16.0326 2588 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:56:16.0326 2588 LSI_SAS2 - ok
15:56:16.0372 2588 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:56:16.0372 2588 LSI_SCSI - ok
15:56:16.0419 2588 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
15:56:16.0419 2588 luafv - ok
15:56:16.0450 2588 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
15:56:16.0450 2588 megasas - ok
15:56:16.0497 2588 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
15:56:16.0497 2588 MegaSR - ok
15:56:16.0575 2588 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
15:56:16.0591 2588 MMCSS - ok
15:56:16.0622 2588 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
15:56:16.0622 2588 Modem - ok
15:56:16.0653 2588 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:56:16.0653 2588 monitor - ok
15:56:16.0731 2588 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
15:56:16.0731 2588 mouclass - ok
15:56:16.0762 2588 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
15:56:16.0762 2588 mouhid - ok
15:56:16.0825 2588 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
15:56:16.0825 2588 mountmgr - ok
15:56:16.0872 2588 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
15:56:16.0872 2588 mpio - ok
15:56:16.0918 2588 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:56:16.0918 2588 mpsdrv - ok
15:56:17.0137 2588 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
15:56:17.0152 2588 MpsSvc - ok
15:56:17.0215 2588 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:56:17.0215 2588 MRxDAV - ok
15:56:17.0277 2588 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:56:17.0277 2588 mrxsmb - ok
15:56:17.0386 2588 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:56:17.0386 2588 mrxsmb10 - ok
15:56:17.0433 2588 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:56:17.0433 2588 mrxsmb20 - ok
15:56:17.0496 2588 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
15:56:17.0496 2588 msahci - ok
15:56:17.0574 2588 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
15:56:17.0574 2588 msdsm - ok
15:56:17.0652 2588 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
15:56:17.0652 2588 MSDTC - ok
15:56:17.0730 2588 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:56:17.0730 2588 Msfs - ok
15:56:17.0761 2588 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
15:56:17.0761 2588 mshidkmdf - ok
15:56:17.0792 2588 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
15:56:17.0792 2588 msisadrv - ok
15:56:17.0854 2588 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:56:17.0854 2588 MSiSCSI - ok
15:56:17.0870 2588 msiserver - ok
15:56:17.0917 2588 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:56:17.0917 2588 MSKSSRV - ok
15:56:17.0948 2588 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:56:17.0948 2588 MSPCLOCK - ok
15:56:17.0964 2588 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:56:17.0979 2588 MSPQM - ok
15:56:18.0057 2588 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:56:18.0057 2588 MsRPC - ok
15:56:18.0104 2588 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
15:56:18.0104 2588 mssmbios - ok
15:56:18.0120 2588 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:56:18.0120 2588 MSTEE - ok
15:56:18.0151 2588 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
15:56:18.0151 2588 MTConfig - ok
15:56:18.0198 2588 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
15:56:18.0198 2588 Mup - ok
15:56:18.0322 2588 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
15:56:18.0338 2588 napagent - ok
15:56:18.0400 2588 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:56:18.0400 2588 NativeWifiP - ok
15:56:18.0494 2588 [ E7C54812A2AAF43316EB6930C1FFA108 ] NDIS C:\Windows\system32\drivers\ndis.sys
15:56:18.0510 2588 NDIS - ok
15:56:18.0541 2588 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
15:56:18.0541 2588 NdisCap - ok
15:56:18.0619 2588 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:56:18.0619 2588 NdisTapi - ok
15:56:18.0681 2588 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:56:18.0681 2588 Ndisuio - ok
15:56:18.0728 2588 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:56:18.0728 2588 NdisWan - ok
15:56:18.0790 2588 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:56:18.0790 2588 NDProxy - ok
15:56:18.0853 2588 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:56:18.0853 2588 NetBIOS - ok
15:56:18.0900 2588 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
15:56:18.0900 2588 NetBT - ok
15:56:18.0931 2588 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
15:56:18.0931 2588 Netlogon - ok
15:56:18.0993 2588 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
15:56:19.0009 2588 Netman - ok
15:56:19.0040 2588 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
15:56:19.0056 2588 netprofm - ok
15:56:19.0087 2588 [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:56:19.0087 2588 NetTcpPortSharing - ok
15:56:19.0258 2588 [ 58218EC6B61B1169CF54AAB0D00F5FE2 ] netw5v32 C:\Windows\system32\DRIVERS\netw5v32.sys
15:56:19.0336 2588 netw5v32 - ok
15:56:19.0368 2588 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
15:56:19.0368 2588 nfrd960 - ok
15:56:19.0414 2588 [ 912084381D30D8B89EC4E293053F4710 ] NlaSvc C:\Windows\System32\nlasvc.dll
15:56:19.0430 2588 NlaSvc - ok
15:56:19.0461 2588 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:56:19.0461 2588 Npfs - ok
15:56:19.0492 2588 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
15:56:19.0492 2588 nsi - ok
15:56:19.0524 2588 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:56:19.0524 2588 nsiproxy - ok
15:56:19.0617 2588 [ 81189C3D7763838E55C397759D49007A ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:56:19.0664 2588 Ntfs - ok
15:56:19.0695 2588 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
15:56:19.0711 2588 Null - ok
15:56:19.0773 2588 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
15:56:19.0773 2588 nvraid - ok
15:56:19.0789 2588 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
15:56:19.0804 2588 nvstor - ok
15:56:19.0851 2588 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
15:56:19.0851 2588 nv_agp - ok
15:56:19.0960 2588 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:56:19.0976 2588 odserv - ok
15:56:20.0007 2588 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
15:56:20.0023 2588 ohci1394 - ok
15:56:20.0085 2588 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:56:20.0085 2588 ose - ok
15:56:20.0132 2588 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
15:56:20.0148 2588 p2pimsvc - ok
15:56:20.0194 2588 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
15:56:20.0210 2588 p2psvc - ok
15:56:20.0257 2588 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
15:56:20.0257 2588 Parport - ok
15:56:20.0304 2588 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:56:20.0304 2588 partmgr - ok
15:56:20.0319 2588 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
15:56:20.0335 2588 Parvdm - ok
15:56:20.0350 2588 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
15:56:20.0366 2588 PcaSvc - ok
15:56:20.0428 2588 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
15:56:20.0428 2588 pci - ok
15:56:20.0506 2588 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
15:56:20.0506 2588 pciide - ok
15:56:20.0538 2588 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
15:56:20.0538 2588 pcmcia - ok
15:56:20.0569 2588 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
15:56:20.0569 2588 pcw - ok
15:56:20.0647 2588 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:56:20.0647 2588 PEAUTH - ok
15:56:20.0772 2588 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
15:56:20.0803 2588 pla - ok
15:56:20.0881 2588 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:56:20.0896 2588 PlugPlay - ok
15:56:20.0943 2588 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
15:56:20.0943 2588 PNRPAutoReg - ok
15:56:21.0006 2588 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
15:56:21.0006 2588 PNRPsvc - ok
15:56:21.0068 2588 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:56:21.0068 2588 PolicyAgent - ok
15:56:21.0146 2588 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
15:56:21.0162 2588 Power - ok
15:56:21.0224 2588 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:56:21.0240 2588 PptpMiniport - ok
15:56:21.0302 2588 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
15:56:21.0302 2588 Processor - ok
15:56:21.0349 2588 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll
15:56:21.0364 2588 ProfSvc - ok
15:56:21.0411 2588 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:56:21.0427 2588 ProtectedStorage - ok
15:56:21.0474 2588 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
15:56:21.0474 2588 Psched - ok
15:56:21.0536 2588 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
15:56:21.0552 2588 ql2300 - ok
15:56:21.0567 2588 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
15:56:21.0583 2588 ql40xx - ok
15:56:21.0614 2588 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
15:56:21.0630 2588 QWAVE - ok
15:56:21.0661 2588 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:56:21.0661 2588 QWAVEdrv - ok
15:56:21.0676 2588 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:56:21.0676 2588 RasAcd - ok
15:56:21.0739 2588 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
15:56:21.0739 2588 RasAgileVpn - ok
15:56:21.0770 2588 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
15:56:21.0786 2588 RasAuto - ok
15:56:21.0801 2588 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:56:21.0801 2588 Rasl2tp - ok
15:56:21.0879 2588 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
15:56:21.0895 2588 RasMan - ok
15:56:21.0926 2588 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:56:21.0926 2588 RasPppoe - ok
15:56:21.0988 2588 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:56:21.0988 2588 RasSstp - ok
15:56:22.0035 2588 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:56:22.0035 2588 rdbss - ok
15:56:22.0066 2588 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
15:56:22.0066 2588 rdpbus - ok
15:56:22.0113 2588 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
15:56:22.0113 2588 RDPCDD - ok
15:56:22.0176 2588 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
15:56:22.0176 2588 RDPENCDD - ok
15:56:22.0207 2588 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
15:56:22.0222 2588 RDPREFMP - ok
15:56:22.0285 2588 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:56:22.0285 2588 RDPWD - ok
15:56:22.0363 2588 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
15:56:22.0363 2588 rdyboost - ok
15:56:22.0394 2588 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
15:56:22.0410 2588 RemoteAccess - ok
15:56:22.0472 2588 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:56:22.0488 2588 RemoteRegistry - ok
15:56:22.0503 2588 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
15:56:22.0519 2588 RpcEptMapper - ok
15:56:22.0550 2588 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
15:56:22.0550 2588 RpcLocator - ok
15:56:22.0597 2588 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
15:56:22.0612 2588 RpcSs - ok
15:56:22.0659 2588 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:56:22.0659 2588 rspndr - ok
15:56:22.0737 2588 [ F9541F3B59DA30423F2F76EF443C07FC ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
15:56:22.0737 2588 RSUSBSTOR - ok
15:56:22.0784 2588 [ C5A68C5EC01FD6F03396DD154B48DB56 ] RTL8167 C:\Windows\system32\DRIVERS\Rt86win7.sys
15:56:22.0800 2588 RTL8167 - ok
15:56:22.0831 2588 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
15:56:22.0831 2588 SamSs - ok
15:56:22.0893 2588 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
15:56:22.0893 2588 sbp2port - ok
15:56:22.0924 2588 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:56:22.0940 2588 SCardSvr - ok
15:56:22.0971 2588 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
15:56:22.0971 2588 scfilter - ok
15:56:23.0065 2588 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
15:56:23.0127 2588 Schedule - ok
15:56:23.0190 2588 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
15:56:23.0205 2588 SCPolicySvc - ok
15:56:23.0283 2588 [ 0328BE1C7F1CBA23848179F8762E391C ] sdbus C:\Windows\system32\drivers\sdbus.sys
15:56:23.0283 2588 sdbus - ok
15:56:23.0330 2588 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:56:23.0346 2588 SDRSVC - ok
15:56:23.0408 2588 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
15:56:23.0408 2588 secdrv - ok
15:56:23.0455 2588 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
15:56:23.0455 2588 seclogon - ok
15:56:23.0517 2588 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
15:56:23.0517 2588 SENS - ok
15:56:23.0564 2588 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
15:56:23.0564 2588 Serenum - ok
15:56:23.0611 2588 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
15:56:23.0626 2588 Serial - ok
15:56:23.0689 2588 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
15:56:23.0689 2588 sermouse - ok
15:56:23.0782 2588 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
15:56:23.0798 2588 SessionEnv - ok
15:56:23.0860 2588 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
15:56:23.0860 2588 sffdisk - ok
15:56:23.0892 2588 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
15:56:23.0892 2588 sffp_mmc - ok
15:56:23.0907 2588 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
15:56:23.0907 2588 sffp_sd - ok
15:56:23.0938 2588 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
15:56:23.0938 2588 sfloppy - ok
15:56:24.0001 2588 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
15:56:24.0016 2588 SharedAccess - ok
15:56:24.0048 2588 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:56:24.0079 2588 ShellHWDetection - ok
15:56:24.0126 2588 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
15:56:24.0126 2588 sisagp - ok
15:56:24.0157 2588 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:56:24.0157 2588 SiSRaid2 - ok
15:56:24.0204 2588 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
15:56:24.0204 2588 SiSRaid4 - ok
15:56:24.0250 2588 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
15:56:24.0250 2588 Smb - ok
15:56:24.0328 2588 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:56:24.0328 2588 SNMPTRAP - ok
15:56:24.0375 2588 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
15:56:24.0375 2588 spldr - ok
15:56:24.0453 2588 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe
15:56:24.0453 2588 Spooler - ok
15:56:24.0625 2588 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
15:56:24.0687 2588 sppsvc - ok
15:56:24.0734 2588 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
15:56:24.0750 2588 sppuinotify - ok
15:56:24.0796 2588 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
15:56:24.0812 2588 srv - ok
15:56:24.0859 2588 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:56:24.0874 2588 srv2 - ok
15:56:24.0921 2588 [ E00FDFAFF025E94F9821153750C35A6D ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL3.SYS
15:56:24.0921 2588 SrvHsfHDA - ok
15:56:24.0984 2588 [ CEB4E3B6890E1E42DCA6694D9E59E1A0 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV3.SYS
15:56:24.0999 2588 SrvHsfV92 - ok
15:56:25.0046 2588 [ BC0C7EA89194C299F051C24119000E17 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
15:56:25.0062 2588 SrvHsfWinac - ok
15:56:25.0093 2588 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:56:25.0108 2588 srvnet - ok
15:56:25.0155 2588 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:56:25.0171 2588 SSDPSRV - ok
15:56:25.0202 2588 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:56:25.0218 2588 SstpSvc - ok
15:56:25.0982 2588 [ 1816C34D3DC9A0F1745FB455506C7B58 ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_5576240ee6baaa25\STacSV.exe
15:56:25.0982 2588 STacSV - ok
15:56:26.0013 2588 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
15:56:26.0029 2588 stexstor - ok
15:56:26.0076 2588 [ 96CB9FD21207AF4456D37957441F6001 ] STHDA C:\Windows\system32\DRIVERS\stwrt.sys
15:56:26.0076 2588 STHDA - ok
15:56:26.0154 2588 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
15:56:26.0169 2588 StiSvc - ok
15:56:26.0216 2588 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
15:56:26.0216 2588 swenum - ok
15:56:26.0263 2588 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
15:56:26.0278 2588 swprv - ok
15:56:26.0356 2588 [ 6DD49E1A5FA0F01824652F1A0A8866FB ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
15:56:26.0356 2588 SynTP - ok
15:56:26.0715 2588 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
15:56:26.0746 2588 SysMain - ok
15:56:26.0809 2588 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:56:26.0809 2588 TabletInputService - ok
15:56:26.0887 2588 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
15:56:26.0918 2588 TapiSrv - ok
15:56:26.0949 2588 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
15:56:26.0965 2588 TBS - ok
15:56:27.0214 2588 [ 7FA2E0F8B072BD04B77B421480B6CC22 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:56:27.0230 2588 Tcpip - ok
15:56:27.0308 2588 [ 7FA2E0F8B072BD04B77B421480B6CC22 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
15:56:27.0324 2588 TCPIP6 - ok
15:56:27.0386 2588 [ CCA24162E055C3714CE5A88B100C64ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:56:27.0386 2588 tcpipreg - ok
15:56:27.0464 2588 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:56:27.0464 2588 TDPIPE - ok
15:56:27.0511 2588 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:56:27.0511 2588 TDTCP - ok
15:56:27.0558 2588 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:56:27.0558 2588 tdx - ok
15:56:27.0620 2588 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
15:56:27.0620 2588 TermDD - ok
15:56:27.0682 2588 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
15:56:27.0698 2588 TermService - ok
15:56:27.0729 2588 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
15:56:27.0745 2588 Themes - ok
15:56:27.0760 2588 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
15:56:27.0776 2588 THREADORDER - ok
15:56:27.0807 2588 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
15:56:27.0807 2588 TrkWks - ok
15:56:27.0901 2588 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:56:27.0901 2588 TrustedInstaller - ok
15:56:27.0963 2588 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:56:27.0963 2588 tssecsrv - ok
15:56:28.0057 2588 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
15:56:28.0057 2588 TsUsbFlt - ok
15:56:28.0119 2588 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:56:28.0119 2588 tunnel - ok
15:56:28.0166 2588 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
15:56:28.0166 2588 uagp35 - ok
15:56:28.0197 2588 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:56:28.0197 2588 udfs - ok
15:56:28.0260 2588 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:56:28.0260 2588 UI0Detect - ok
15:56:28.0338 2588 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
15:56:28.0338 2588 uliagpkx - ok
15:56:28.0400 2588 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys
15:56:28.0400 2588 umbus - ok
15:56:28.0447 2588 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
15:56:28.0447 2588 UmPass - ok
15:56:28.0478 2588 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
15:56:28.0494 2588 upnphost - ok
15:56:28.0540 2588 [ 83CAFCB53201BBAC04D822F32438E244 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
15:56:28.0540 2588 USBAAPL - ok
15:56:28.0603 2588 [ 1D9F2BD026E8E2D45033A4DF3F16B78C ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
15:56:28.0603 2588 usbaudio - ok
15:56:28.0650 2588 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:56:28.0650 2588 usbccgp - ok
15:56:28.0696 2588 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
15:56:28.0696 2588 usbcir - ok
15:56:28.0728 2588 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\drivers\usbehci.sys
15:56:28.0728 2588 usbehci - ok
15:56:28.0790 2588 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:56:28.0790 2588 usbhub - ok
15:56:28.0837 2588 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\drivers\usbohci.sys
15:56:28.0837 2588 usbohci - ok
15:56:28.0884 2588 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
15:56:28.0884 2588 usbprint - ok
15:56:28.0915 2588 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:56:28.0930 2588 USBSTOR - ok
15:56:28.0946 2588 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
15:56:28.0946 2588 usbuhci - ok
15:56:29.0008 2588 [ 45F4E7BF43DB40A6C6B4D92C76CBC3F2 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
15:56:29.0008 2588 usbvideo - ok
15:56:29.0071 2588 [ D82F43D15FDAA666856C0190CB73E7C9 ] usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys
15:56:29.0071 2588 usb_rndisx - ok
15:56:29.0118 2588 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
15:56:29.0118 2588 UxSms - ok
15:56:29.0149 2588 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
15:56:29.0149 2588 VaultSvc - ok
15:56:29.0211 2588 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
15:56:29.0211 2588 vdrvroot - ok
15:56:29.0289 2588 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
15:56:29.0305 2588 vds - ok
15:56:29.0352 2588 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:56:29.0352 2588 vga - ok
15:56:29.0398 2588 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
15:56:29.0398 2588 VgaSave - ok
15:56:29.0461 2588 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
15:56:29.0461 2588 vhdmp - ok
15:56:29.0508 2588 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
15:56:29.0523 2588 viaagp - ok
15:56:29.0539 2588 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
15:56:29.0554 2588 ViaC7 - ok
15:56:29.0601 2588 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
15:56:29.0601 2588 viaide - ok
15:56:29.0617 2588 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
15:56:29.0617 2588 volmgr - ok
15:56:29.0679 2588 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:56:29.0679 2588 volmgrx - ok
15:56:29.0710 2588 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
15:56:29.0710 2588 volsnap - ok
15:56:29.0758 2588 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
15:56:29.0758 2588 vsmraid - ok
15:56:29.0836 2588 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
15:56:29.0867 2588 VSS - ok
15:56:29.0883 2588 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
15:56:29.0899 2588 vwifibus - ok
15:56:29.0945 2588 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
15:56:29.0945 2588 vwififlt - ok
15:56:29.0992 2588 [ A3F04CBEA6C2A10E6CB01F8B47611882 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
15:56:29.0992 2588 vwifimp - ok
15:56:30.0055 2588 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
15:56:30.0070 2588 W32Time - ok
15:56:30.0133 2588 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
15:56:30.0133 2588 WacomPen - ok
15:56:30.0179 2588 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
15:56:30.0179 2588 WANARP - ok
15:56:30.0195 2588 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:56:30.0195 2588 Wanarpv6 - ok
15:56:30.0273 2588 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
15:56:30.0304 2588 wbengine - ok
15:56:30.0335 2588 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
15:56:30.0351 2588 WbioSrvc - ok
15:56:30.0413 2588 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:56:30.0429 2588 wcncsvc - ok
15:56:30.0445 2588 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:56:30.0460 2588 WcsPlugInService - ok
15:56:30.0523 2588 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
15:56:30.0523 2588 Wd - ok
15:56:30.0585 2588 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:56:30.0585 2588 Wdf01000 - ok
15:56:30.0616 2588 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:56:30.0632 2588 WdiServiceHost - ok
15:56:30.0632 2588 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:56:30.0647 2588 WdiSystemHost - ok
15:56:30.0710 2588 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
15:56:30.0725 2588 WebClient - ok
15:56:30.0757 2588 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:56:30.0757 2588 Wecsvc - ok
15:56:30.0788 2588 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:56:30.0803 2588 wercplsupport - ok
15:56:30.0835 2588 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
15:56:30.0850 2588 WerSvc - ok
15:56:30.0913 2588 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
15:56:30.0913 2588 WfpLwf - ok
15:56:30.0944 2588 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
15:56:30.0944 2588 WIMMount - ok
15:56:31.0006 2588 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
15:56:31.0037 2588 WinDefend - ok
15:56:31.0053 2588 WinHttpAutoProxySvc - ok
15:56:31.0131 2588 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:56:31.0131 2588 Winmgmt - ok
15:56:31.0209 2588 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
15:56:31.0240 2588 WinRM - ok
15:56:31.0334 2588 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
15:56:31.0334 2588 WinUsb - ok
15:56:31.0396 2588 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
15:56:31.0427 2588 Wlansvc - ok
15:56:31.0443 2588 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
15:56:31.0443 2588 WmiAcpi - ok
15:56:31.0490 2588 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:56:31.0505 2588 wmiApSrv - ok
15:56:31.0599 2588 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
15:56:31.0646 2588 WMPNetworkSvc - ok
15:56:31.0708 2588 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:56:31.0724 2588 WPCSvc - ok
15:56:31.0802 2588 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:56:31.0802 2588 WPDBusEnum - ok
15:56:31.0849 2588 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:56:31.0849 2588 ws2ifsl - ok
15:56:31.0880 2588 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\System32\wscsvc.dll
15:56:31.0895 2588 wscsvc - ok
15:56:31.0895 2588 WSearch - ok
15:56:32.0020 2588 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
15:56:32.0067 2588 wuauserv - ok
15:56:32.0114 2588 [ E714A1C0354636837E20CCBF00888EE7 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
15:56:32.0114 2588 WudfPf - ok
15:56:32.0176 2588 [ 1023EE888C9B47178C5293ED5336AB69 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
15:56:32.0176 2588 WUDFRd - ok
15:56:32.0239 2588 [ 8D1E1E529A2C9E9B6A85B55A345F7629 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:56:32.0254 2588 wudfsvc - ok
15:56:32.0301 2588 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
15:56:32.0317 2588 WwanSvc - ok
15:56:32.0379 2588 [ B07C5B7EFDF936FF93D4F540938725BE ] yukonw7 C:\Windows\system32\DRIVERS\yk62x86.sys
15:56:32.0379 2588 yukonw7 - ok
15:56:32.0441 2588 ================ Scan global ===============================
15:56:32.0488 2588 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
15:56:32.0551 2588 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
15:56:32.0597 2588 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
15:56:32.0629 2588 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
15:56:32.0675 2588 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
15:56:32.0691 2588 [Global] - ok
15:56:32.0691 2588 ================ Scan MBR ==================================
15:56:32.0707 2588 [ 7EED5871C68A0B6E5A3B0D034C8530A9 ] \Device\Harddisk0\DR0
15:56:32.0972 2588 \Device\Harddisk0\DR0 - ok
15:56:32.0972 2588 ================ Scan VBR ==================================
15:56:32.0987 2588 [ D3094B62BB48EC0FB2023D811F0BD546 ] \Device\Harddisk0\DR0\Partition1
15:56:32.0987 2588 \Device\Harddisk0\DR0\Partition1 - ok
15:56:33.0019 2588 [ A1DB9EEAB2C3066C18C026C70D1E601B ] \Device\Harddisk0\DR0\Partition2
15:56:33.0019 2588 \Device\Harddisk0\DR0\Partition2 - ok
15:56:33.0050 2588 [ 002B1ECF682FEF8705D849F8C7110B4C ] \Device\Harddisk0\DR0\Partition3
15:56:33.0050 2588 \Device\Harddisk0\DR0\Partition3 - ok
15:56:33.0081 2588 [ 2891D46F13A2662378A229AC13788E46 ] \Device\Harddisk0\DR0\Partition4
15:56:33.0081 2588 \Device\Harddisk0\DR0\Partition4 - ok
15:56:33.0081 2588 ============================================================
15:56:33.0081 2588 Scan finished
15:56:33.0081 2588 ============================================================
15:56:33.0424 0372 Detected object count: 0
15:56:33.0424 0372 Actual detected object count: 0

#8 Buckyfoondumba

Buckyfoondumba
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:06:18 AM

Posted 29 August 2012 - 03:49 PM

Farbar Service Scanner Version: 06-08-2012
Ran by Jerry (administrator) on 29-08-2012 at 16:48:08
Running from "C:\Users\Jerry\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9TU8ZKIW"
Microsoft Windows 7 Starter Service Pack 1 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcore.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****



#9 Buckyfoondumba

Buckyfoondumba
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:06:18 AM

Posted 29 August 2012 - 04:28 PM

# AdwCleaner v1.801 - Logfile created 08/29/2012 at 16:52:22
# Updated 14/08/2012 by Xplode
# Operating system : Windows 7 Starter Service Pack 1 (32 bits)
# User : Jerry - JERRY-PC
# Boot Mode : Normal
# Running from : C:\Users\Jerry\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\I20OLBQ6\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Users\Public\Desktop\eBay.lnk
File Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk

***** [Registry] *****


***** [Registre - GUID] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

*************************

AdwCleaner[R1].txt - [865 octets] - [29/08/2012 16:52:03]
AdwCleaner[S1].txt - [801 octets] - [29/08/2012 16:52:22]

########## EOF - C:\AdwCleaner[S1].txt - [928 octets] ##########




#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:18 AM

Posted 29 August 2012 - 04:52 PM

Malwarebytes and minitoolbox log?

download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here

#11 Buckyfoondumba

Buckyfoondumba
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:06:18 AM

Posted 29 August 2012 - 05:10 PM

Rkill 2.3.3 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 08/29/2012 06:06:47 PM in x86 mode.
Windows Version: Windows 7 Starter Service Pack 1

Checking for Windows services to stop.

* No malware services found to stop.

Checking for processes to terminate.

* No malware processes found to kill.

Checking Registry for malware related settings.

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks.
* No issues found.

Checking Windows Service Integrity:

* AppMgmt [Missing Service]
* CscService [Missing Service]
* PeerDistSvc [Missing Service]
* SensrSvc [Missing Service]
* UmRdpService [Missing Service]
* WatAdminSvc [Missing Service]

Searching for Missing Digital Signatures:

* No issues found.

Program finished at: 08/29/2012 06:07:17 PM
Execution time: 0 hours(s), 0 minute(s), and 30 seconds(s)




#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:18 AM

Posted 29 August 2012 - 06:02 PM

Malwarebytes and minitoolbox log?



#13 Buckyfoondumba

Buckyfoondumba
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:06:18 AM

Posted 29 August 2012 - 07:27 PM

Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.29.10

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
Jerry :: JERRY-PC [administrator]

8/29/2012 7:31:59 PM
mbam-log-2012-08-29 (19-31-59).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 228361
Time elapsed: 29 minute(s), 26 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)


Here's the minitoolbox log:

MiniToolBox by Farbar Version: 23-07-2012
Ran by Jerry (administrator) on 29-08-2012 at 20:14:00
Microsoft Windows 7 Starter Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================



========================= IP Configuration: ================================

Broadcom 802.11b/g WLAN = Wireless Network Connection (Connected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Jerry-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : C4-17-FE-BF-24-98
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom 802.11b/g WLAN
Physical Address. . . . . . . . . : C4-17-FE-BF-24-98
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::e11b:1758:eaea:a1f6%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.10.66(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Wednesday, August 29, 2012 5:42:10 PM
Lease Expires . . . . . . . . . . : Thursday, August 30, 2012 8:13:40 PM
Default Gateway . . . . . . . . . : 192.168.10.1
DHCP Server . . . . . . . . . . . : 1.1.1.1
DHCPv6 IAID . . . . . . . . . . . : 331618302
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-17-E9-AE-C8-0A-A9-2A-F9-67
DNS Servers . . . . . . . . . . . : 74.74.74.74
4.2.2.2
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter 6TO4 Adapter:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{04D71366-7E03-4FC9-AEAA-E95721CBE05A}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:186a:1e0f:3f57:f5bd(Preferred)
Link-local IPv6 Address . . . . . : fe80::186a:1e0f:3f57:f5bd%21(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{3A6E5ED5-57E6-4306-8C29-AD366E6D9A28}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 74.74.74.74

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.

Pinging google.com [74.125.226.238] with 32 bytes of data:
Reply from 74.125.226.238: bytes=32 time=19ms TTL=54
Reply from 74.125.226.238: bytes=32 time=47ms TTL=54

Ping statistics for 74.125.226.238:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 19ms, Maximum = 47ms, Average = 33ms
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 74.74.74.74

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.

Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=619ms TTL=49
Reply from 72.30.38.140: bytes=32 time=768ms TTL=49

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 619ms, Maximum = 768ms, Average = 693ms
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 74.74.74.74

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.

Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Request timed out.
Request timed out.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
17...c4 17 fe bf 24 98 ......Microsoft Virtual WiFi Miniport Adapter
12...c4 17 fe bf 24 98 ......Broadcom 802.11b/g WLAN
1...........................Software Loopback Interface 1
11...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
24...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
21...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
23...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.10.1 192.168.10.66 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.10.0 255.255.255.0 On-link 192.168.10.66 281
192.168.10.66 255.255.255.255 On-link 192.168.10.66 281
192.168.10.255 255.255.255.255 On-link 192.168.10.66 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.10.66 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.10.66 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
21 58 ::/0 On-link
1 306 ::1/128 On-link
21 58 2001::/32 On-link
21 306 2001:0:4137:9e76:186a:1e0f:3f57:f5bd/128
On-link
12 281 fe80::/64 On-link
21 306 fe80::/64 On-link
21 306 fe80::186a:1e0f:3f57:f5bd/128
On-link
12 281 fe80::e11b:1758:eaea:a1f6/128
On-link
1 306 ff00::/8 On-link
21 306 ff00::/8 On-link
12 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 32 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 33 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 34 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 35 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 36 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 37 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 38 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 39 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 40 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/29/2012 02:31:33 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 19889722

Error: (08/29/2012 02:31:33 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 19889722

Error: (08/29/2012 02:31:33 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/29/2012 09:00:06 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2090

Error: (08/29/2012 09:00:06 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2090

Error: (08/29/2012 09:00:05 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/29/2012 07:13:28 AM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16448 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 13a8

Start Time: 01cd85d740a72b61

Termination Time: 32

Application Path: C:\Program Files\Internet Explorer\iexplore.exe

Report Id:

Error: (08/29/2012 07:13:01 AM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16448 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: b10

Start Time: 01cd85d72fc2b51e

Termination Time: 22

Application Path: C:\Program Files\Internet Explorer\iexplore.exe

Report Id:

Error: (08/29/2012 07:12:32 AM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16448 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 13e4

Start Time: 01cd85d6dbf25f09

Termination Time: 15

Application Path: C:\Program Files\Internet Explorer\iexplore.exe

Report Id:

Error: (08/29/2012 07:10:12 AM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16448 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 3ac

Start Time: 01cd85d65dbe8f91

Termination Time: 46

Application Path: C:\Program Files\Internet Explorer\iexplore.exe

Report Id:


System errors:
=============
Error: (08/29/2012 05:42:22 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
cdrom

Error: (08/29/2012 04:55:47 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
cdrom

Error: (08/29/2012 04:53:37 PM) (Source: DCOM) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (08/29/2012 06:18:46 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
cdrom

Error: (08/28/2012 08:53:07 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
cdrom

Error: (08/28/2012 08:52:42 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 8:44:11 PM on ?8/?28/?2012 was unexpected.

Error: (08/28/2012 07:41:53 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
cdrom

Error: (08/28/2012 02:10:51 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 40. The internal error state is 107.

Error: (08/28/2012 02:10:51 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: An SSL 3.0 connection request was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. The SSL connection request has failed.

Error: (08/28/2012 02:10:51 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 40. The internal error state is 107.


Microsoft Office Sessions:
=========================
Error: (03/12/2012 06:09:32 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6514.5001, Microsoft Office Version: 12.0.4518.1014. This session lasted 368 seconds with 240 seconds of active time. This session ended with a crash.

Error: (09/12/2011 09:11:18 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 23 seconds with 0 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
Acrobat.com (Version: 1.6.65)
ActiveCheck component for HP Active Support Library (Version: 3.0.0.3)
Adobe AIR (Version: 1.5.1.8210)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.271)
Adobe Reader 9.5.1 MUI (Version: 9.5.1)
Adobe Shockwave Player (Version: 11.0)
Adobe Shockwave Player 11.6 (Version: 11.6.3.633)
aioprnt (Version: 5.3.1.0)
aioscnnr (Version: 6.2.3.10)
aioscnnr (Version: 7.3.4.0)
Apple Application Support (Version: 2.1.5)
Apple Mobile Device Support (Version: 4.0.0.97)
Apple Software Update (Version: 2.1.3.127)
ArcSoft WebCam Companion 3 (Version: 3.0.355)
Bonjour (Version: 3.0.0.10)
Broadcom 802.11 Wireless LAN Adapter (Version: 5.60.350.6)
C4USelfUpdater (Version: 1.00.0000)
center (Version: 6.2.5.0)
Cobian Backup 6
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
CyberLink DVD Suite (Version: 7.0.2118)
ESET NOD32 Antivirus (Version: 4.2.64.12)
ESET Online Scanner v3
essentials (Version: 6.0.14.0)
ESU for Microsoft Windows 7 (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3203.136)
Google Update Helper (Version: 1.3.21.115)
HP CloudDrive
HP Customer Experience Enhancements (Version: 6.0.1.3)
HP Games (Version: 1.0.0.71)
HP MediaStream (Version: 2.5.1466)
HP Quick Launch Buttons (Version: 6.50.7.1)
HP QuickSync (Version: 5.1.234.4788)
HP QuickWeb (Version: 1.1.2.2)
HP Setup (Version: 1.2.3560.3170)
HP Support Assistant (Version: 5.1.10.7)
HP Update (Version: 5.001.000.014)
HP User Guides 0169 (Version: 1.01.0000)
HP Wireless Assistant (Version: 3.50.10.1)
HPAsset component for HP Active Support Library (Version: 3.0.0.7)
IDT Audio (Version: 1.0.6246.0)
Intel® Graphics Media Accelerator Driver (Version: 8.14.10.1929)
Intel® Matrix Storage Manager
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 31 (Version: 6.0.310)
Junk Mail filter update (Version: 14.0.8089.726)
Kodak AIO Printer (Version: 7.5.0.0)
KODAK AiO Software (Version: 7.5.9.60)
magicJack (Version: 2.0.5624.3932)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Live Search Toolbar (Version: 3.0.566.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Suite Activation Assistant (Version: 2.9)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 9.7.0621)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MyTomTom 3.2.0.700 (Version: 3.2.0.700)
ocr (Version: 6.2.3.50)
Online Bible 12.10
Paltalk Messenger (Version: 10.2)
PreReq (Version: 6.2.4.0)
QLBCASL (Version: 6.40.17.2)
Realtek Ethernet Controller Driver For Windows Vista and Later (Version: 1.00.0010)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30104)
Recovery Manager (Version: 5.5.2214)
Skype™ 5.10 (Version: 5.10.116)
swMSM (Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 15.3.29.0)
Times Reader (Version: 2.055)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Visual Studio C++ 10.0 Runtime (Version: 10.0.0)
Windows Live Call (Version: 14.0.8064.0206)
Windows Live Communications Platform (Version: 14.0.8064.206)
Windows Live Essentials (Version: 14.0.8089.0726)
Windows Live Essentials (Version: 14.0.8089.726)
Windows Live Mail (Version: 14.0.8089.0726)
Windows Live Messenger (Version: 14.0.8089.0726)
Windows Live Photo Gallery (Version: 14.0.8081.709)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8089.0726)
Yahoo! Detect

========================= Memory info: ===================================

Percentage of memory in use: 90%
Total physical RAM: 987.45 MB
Available physical RAM: 91.5 MB
Total Pagefile: 2011.45 MB
Available Pagefile: 496.89 MB
Total Virtual: 2047.88 MB
Available Virtual: 1946.6 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:137.18 GB) (Free:84.19 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:11.57 GB) (Free:1.87 GB) NTFS
3 Drive e: (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.09 GB) FAT32

========================= Users: ========================================

User accounts for \\JERRY-PC

Administrator Guest Jerry


**** End of log ****






#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:18 AM

Posted 29 August 2012 - 08:38 PM

That looks good

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your flash player

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users