Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

firefox takes me somewhere else or stalls


  • Please log in to reply
5 replies to this topic

#1 skreemnmimi

skreemnmimi

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:02:00 AM

Posted 23 September 2012 - 12:35 PM

hello,
I have windows Vista and am using firefox as a browser. When i go online, it first does not open my home page. I have to close it, then click on the desktop icon again to actually have it load completely or else i just get a blank page.
Then when i search for something in google or whatever, the result I choose never loads. Instead, I am taken to some other website I do not want. I always have to click on the "back" arrow, then click on the same link again to arrive at my correct destination.
This is very frustrating.
Also, I am restricted to other malware removal websites, such as trend micro's. I followed every step (installing an antivirus program, AVAST, running a c drive clean program too.) to try and post my hijack this log there but could not sign in. It states that I need to register. I did. It does not allow me to post my problem in trying to register there. That's stupid.

So I had to painfully search for help elsewhere. I found you. Thank goodness I could register and post this thread with no restrictions!
I hope you can help me.
I am eagerly awaiting advice.
Thank you,
skreemn mimi.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:00 AM

Posted 23 September 2012 - 12:35 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 skreemnmimi

skreemnmimi
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:02:00 AM

Posted 30 September 2012 - 03:25 PM

13:16:40.0779 3384 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
13:16:41.0354 3384 ============================================================
13:16:41.0354 3384 Current date / time: 2012/09/30 13:16:41.0354
13:16:41.0354 3384 SystemInfo:
13:16:41.0354 3384
13:16:41.0354 3384 OS Version: 6.0.6002 ServicePack: 2.0
13:16:41.0354 3384 Product type: Workstation
13:16:41.0354 3384 ComputerName: MIMI-PC
13:16:41.0354 3384 UserName: cp
13:16:41.0354 3384 Windows directory: C:\Windows
13:16:41.0354 3384 System windows directory: C:\Windows
13:16:41.0354 3384 Processor architecture: Intel x86
13:16:41.0354 3384 Number of processors: 4
13:16:41.0354 3384 Page size: 0x1000
13:16:41.0354 3384 Boot type: Normal boot
13:16:41.0354 3384 ============================================================
13:16:41.0706 3384 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
13:16:41.0723 3384 Drive \Device\Harddisk1\DR2 - Size: 0xF2C00000 (3.79 Gb), SectorSize: 0x200, Cylinders: 0x1EF, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
13:16:41.0730 3384 ============================================================
13:16:41.0730 3384 \Device\Harddisk0\DR0:
13:16:41.0730 3384 MBR partitions:
13:16:41.0730 3384 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1B800, BlocksNum 0x1E00000
13:16:41.0730 3384 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1E1B800, BlocksNum 0x23612800
13:16:41.0730 3384 \Device\Harddisk1\DR2:
13:16:41.0735 3384 MBR partitions:
13:16:41.0735 3384 \Device\Harddisk1\DR2\Partition1: MBR, Type 0xB, StartLBA 0x2000, BlocksNum 0x794000
13:16:41.0735 3384 ============================================================
13:16:41.0760 3384 C: <-> \Device\Harddisk0\DR0\Partition2
13:16:41.0792 3384 D: <-> \Device\Harddisk0\DR0\Partition1
13:16:41.0792 3384 ============================================================
13:16:41.0792 3384 Initialize success
13:16:41.0792 3384 ============================================================
13:17:10.0511 5200 ============================================================
13:17:10.0511 5200 Scan started
13:17:10.0511 5200 Mode: Manual; TDLFS;
13:17:10.0511 5200 ============================================================
13:17:10.0715 5200 ================ Scan system memory ========================
13:17:10.0715 5200 System memory - ok
13:17:10.0715 5200 ================ Scan services =============================
13:17:10.0830 5200 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
13:17:10.0833 5200 ACPI - ok
13:17:10.0892 5200 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
13:17:10.0894 5200 AdobeARMservice - ok
13:17:10.0939 5200 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
13:17:10.0941 5200 AdobeFlashPlayerUpdateSvc - ok
13:17:10.0970 5200 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
13:17:10.0975 5200 adp94xx - ok
13:17:11.0002 5200 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
13:17:11.0006 5200 adpahci - ok
13:17:11.0029 5200 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
13:17:11.0030 5200 adpu160m - ok
13:17:11.0042 5200 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
13:17:11.0044 5200 adpu320 - ok
13:17:11.0077 5200 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
13:17:11.0078 5200 AeLookupSvc - ok
13:17:11.0122 5200 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
13:17:11.0126 5200 AFD - ok
13:17:11.0167 5200 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
13:17:11.0168 5200 agp440 - ok
13:17:11.0209 5200 [ 67740F91B47434CC6173A35667A4BA66 ] ahcix86s C:\Windows\system32\drivers\ahcix86s.sys
13:17:11.0211 5200 ahcix86s - ok
13:17:11.0223 5200 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
13:17:11.0225 5200 aic78xx - ok
13:17:11.0234 5200 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
13:17:11.0235 5200 ALG - ok
13:17:11.0248 5200 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
13:17:11.0248 5200 aliide - ok
13:17:11.0285 5200 [ F970EA885AEFEB1B9EB97CA7F1EB226D ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
13:17:11.0288 5200 AMD External Events Utility - ok
13:17:11.0300 5200 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
13:17:11.0301 5200 amdagp - ok
13:17:11.0309 5200 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
13:17:11.0309 5200 amdide - ok
13:17:11.0322 5200 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
13:17:11.0323 5200 AmdK7 - ok
13:17:11.0345 5200 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
13:17:11.0346 5200 AmdK8 - ok
13:17:11.0554 5200 [ AB70F110143892EB41AA46500AA5CF00 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
13:17:11.0727 5200 amdkmdag - ok
13:17:11.0766 5200 [ 32D68D05B871EED5572D0C2C764EA4EC ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
13:17:11.0771 5200 amdkmdap - ok
13:17:11.0797 5200 [ 48E008CF2EDCF8FC91A9D3507865A51D ] anodlwf C:\Windows\system32\DRIVERS\anodlwf.sys
13:17:11.0798 5200 anodlwf - ok
13:17:11.0824 5200 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
13:17:11.0825 5200 Appinfo - ok
13:17:11.0871 5200 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
13:17:11.0873 5200 Apple Mobile Device - ok
13:17:11.0895 5200 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
13:17:11.0896 5200 arc - ok
13:17:11.0910 5200 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
13:17:11.0912 5200 arcsas - ok
13:17:11.0945 5200 [ F5DC168BF77572D51BE28BA261B30CB4 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
13:17:11.0946 5200 aswFsBlk - ok
13:17:11.0961 5200 [ F76E51561562AC4105DBBE53FC99BC10 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
13:17:11.0962 5200 aswMonFlt - ok
13:17:11.0975 5200 [ B7D5E4486BA658ED08624D8084ABB830 ] AswRdr C:\Windows\system32\drivers\AswRdr.sys
13:17:11.0976 5200 AswRdr - ok
13:17:12.0002 5200 [ 30E45AF8B4D83176CA850FC9699E860B ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
13:17:12.0011 5200 aswSnx - ok
13:17:12.0022 5200 [ F04BDBCB965C05C51F4A7DE7B62063D6 ] aswSP C:\Windows\system32\drivers\aswSP.sys
13:17:12.0027 5200 aswSP - ok
13:17:12.0047 5200 [ DFE9152ABFA89BB8CFDC057409B2D4DA ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
13:17:12.0049 5200 aswTdi - ok
13:17:12.0065 5200 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
13:17:12.0066 5200 AsyncMac - ok
13:17:12.0086 5200 [ 2D9C903DC76A66813D350A562DE40ED9 ] atapi C:\Windows\system32\drivers\atapi.sys
13:17:12.0087 5200 atapi - ok
13:17:12.0278 5200 [ AB70F110143892EB41AA46500AA5CF00 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
13:17:12.0329 5200 atikmdag - ok
13:17:12.0362 5200 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
13:17:12.0367 5200 AudioEndpointBuilder - ok
13:17:12.0372 5200 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
13:17:12.0375 5200 Audiosrv - ok
13:17:12.0418 5200 [ 04AC21E821F259845BD7367CEE057290 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
13:17:12.0419 5200 avast! Antivirus - ok
13:17:12.0447 5200 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
13:17:12.0447 5200 Beep - ok
13:17:12.0475 5200 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
13:17:12.0480 5200 BFE - ok
13:17:12.0539 5200 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\System32\qmgr.dll
13:17:12.0551 5200 BITS - ok
13:17:12.0579 5200 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
13:17:12.0580 5200 blbdrive - ok
13:17:12.0627 5200 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
13:17:12.0633 5200 Bonjour Service - ok
13:17:12.0649 5200 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
13:17:12.0650 5200 bowser - ok
13:17:12.0679 5200 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
13:17:12.0680 5200 BrFiltLo - ok
13:17:12.0685 5200 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
13:17:12.0686 5200 BrFiltUp - ok
13:17:12.0709 5200 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
13:17:12.0711 5200 Browser - ok
13:17:12.0724 5200 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
13:17:12.0725 5200 Brserid - ok
13:17:12.0737 5200 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
13:17:12.0738 5200 BrSerWdm - ok
13:17:12.0745 5200 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
13:17:12.0746 5200 BrUsbMdm - ok
13:17:12.0759 5200 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
13:17:12.0759 5200 BrUsbSer - ok
13:17:12.0767 5200 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
13:17:12.0768 5200 BTHMODEM - ok
13:17:12.0779 5200 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
13:17:12.0781 5200 cdfs - ok
13:17:12.0802 5200 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
13:17:12.0803 5200 cdrom - ok
13:17:12.0831 5200 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
13:17:12.0832 5200 CertPropSvc - ok
13:17:12.0845 5200 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
13:17:12.0846 5200 circlass - ok
13:17:12.0876 5200 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
13:17:12.0881 5200 CLFS - ok
13:17:12.0914 5200 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:17:12.0915 5200 clr_optimization_v2.0.50727_32 - ok
13:17:12.0944 5200 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
13:17:12.0945 5200 cmdide - ok
13:17:12.0951 5200 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\drivers\compbatt.sys
13:17:12.0952 5200 Compbatt - ok
13:17:12.0954 5200 COMSysApp - ok
13:17:12.0970 5200 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
13:17:12.0971 5200 crcdisk - ok
13:17:12.0980 5200 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
13:17:12.0981 5200 Crusoe - ok
13:17:13.0002 5200 [ 75C6A297E364014840B48ECCD7525E30 ] CryptSvc C:\Windows\system32\cryptsvc.dll
13:17:13.0004 5200 CryptSvc - ok
13:17:13.0036 5200 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
13:17:13.0046 5200 DcomLaunch - ok
13:17:13.0068 5200 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
13:17:13.0069 5200 DfsC - ok
13:17:13.0141 5200 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
13:17:13.0165 5200 DFSR - ok
13:17:13.0206 5200 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
13:17:13.0210 5200 Dhcp - ok
13:17:13.0246 5200 [ 622FCF264119F7DF127BE353F796B319 ] DictionaryBossService C:\PROGRA~1\DICTIO~2\bar\1.bin\v4barsvc.exe
13:17:13.0247 5200 DictionaryBossService - ok
13:17:13.0277 5200 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
13:17:13.0278 5200 disk - ok
13:17:13.0305 5200 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
13:17:13.0307 5200 Dnscache - ok
13:17:13.0329 5200 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
13:17:13.0332 5200 dot3svc - ok
13:17:13.0365 5200 [ 4F59C172C094E1A1D46463A8DC061CBD ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
13:17:13.0367 5200 Dot4 - ok
13:17:13.0389 5200 [ 80BF3BA09F6F2523C8F6B7CC6DBF7BD5 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
13:17:13.0390 5200 Dot4Print - ok
13:17:13.0399 5200 [ C55004CA6B419B6695970DFE849B122F ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
13:17:13.0400 5200 dot4usb - ok
13:17:13.0434 5200 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
13:17:13.0437 5200 DPS - ok
13:17:13.0463 5200 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
13:17:13.0464 5200 drmkaud - ok
13:17:13.0494 5200 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
13:17:13.0503 5200 DXGKrnl - ok
13:17:13.0550 5200 [ 04944F4FC4F0477185F5D26AE0DDB90E ] e1express C:\Windows\system32\DRIVERS\e1e6032.sys
13:17:13.0553 5200 e1express - ok
13:17:13.0575 5200 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
13:17:13.0577 5200 E1G60 - ok
13:17:13.0586 5200 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
13:17:13.0589 5200 EapHost - ok
13:17:13.0623 5200 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
13:17:13.0626 5200 Ecache - ok
13:17:13.0661 5200 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
13:17:13.0665 5200 ehRecvr - ok
13:17:13.0671 5200 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
13:17:13.0674 5200 ehSched - ok
13:17:13.0680 5200 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
13:17:13.0681 5200 ehstart - ok
13:17:13.0709 5200 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
13:17:13.0714 5200 elxstor - ok
13:17:13.0748 5200 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
13:17:13.0754 5200 EMDMgmt - ok
13:17:13.0770 5200 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
13:17:13.0771 5200 ErrDev - ok
13:17:13.0796 5200 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
13:17:13.0800 5200 EventSystem - ok
13:17:13.0849 5200 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
13:17:13.0852 5200 exfat - ok
13:17:13.0892 5200 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
13:17:13.0894 5200 fastfat - ok
13:17:13.0905 5200 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
13:17:13.0905 5200 fdc - ok
13:17:13.0925 5200 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
13:17:13.0926 5200 fdPHost - ok
13:17:13.0936 5200 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
13:17:13.0939 5200 FDResPub - ok
13:17:13.0950 5200 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
13:17:13.0951 5200 FileInfo - ok
13:17:13.0960 5200 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
13:17:13.0960 5200 Filetrace - ok
13:17:13.0987 5200 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
13:17:13.0987 5200 flpydisk - ok
13:17:14.0010 5200 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
13:17:14.0012 5200 FltMgr - ok
13:17:14.0053 5200 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
13:17:14.0058 5200 FontCache - ok
13:17:14.0102 5200 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
13:17:14.0104 5200 FontCache3.0.0.0 - ok
13:17:14.0126 5200 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
13:17:14.0127 5200 Fs_Rec - ok
13:17:14.0139 5200 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
13:17:14.0140 5200 gagp30kx - ok
13:17:14.0172 5200 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
13:17:14.0180 5200 gpsvc - ok
13:17:14.0227 5200 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
13:17:14.0228 5200 gupdate - ok
13:17:14.0232 5200 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
13:17:14.0232 5200 gupdatem - ok
13:17:14.0264 5200 [ 3F90E001369A07243763BD5A523D8722 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
13:17:14.0267 5200 HdAudAddService - ok
13:17:14.0292 5200 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
13:17:14.0299 5200 HDAudBus - ok
13:17:14.0321 5200 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
13:17:14.0322 5200 HidBth - ok
13:17:14.0334 5200 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
13:17:14.0334 5200 HidIr - ok
13:17:14.0354 5200 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\system32\hidserv.dll
13:17:14.0357 5200 hidserv - ok
13:17:14.0383 5200 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
13:17:14.0384 5200 HidUsb - ok
13:17:14.0400 5200 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
13:17:14.0402 5200 hkmsvc - ok
13:17:14.0414 5200 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
13:17:14.0415 5200 HpCISSs - ok
13:17:14.0440 5200 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
13:17:14.0447 5200 HTTP - ok
13:17:14.0477 5200 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
13:17:14.0477 5200 i2omp - ok
13:17:14.0512 5200 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
13:17:14.0513 5200 i8042prt - ok
13:17:14.0543 5200 [ 5DF93509037399B53D3ECAA8A67B6C58 ] iaStor C:\Windows\system32\drivers\iastor.sys
13:17:14.0547 5200 iaStor - ok
13:17:14.0569 5200 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
13:17:14.0570 5200 iaStorV - ok
13:17:14.0639 5200 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
13:17:14.0644 5200 idsvc - ok
13:17:14.0674 5200 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
13:17:14.0675 5200 iirsp - ok
13:17:14.0709 5200 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
13:17:14.0713 5200 IKEEXT - ok
13:17:14.0727 5200 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
13:17:14.0727 5200 intelide - ok
13:17:14.0738 5200 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
13:17:14.0739 5200 intelppm - ok
13:17:14.0764 5200 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
13:17:14.0766 5200 IPBusEnum - ok
13:17:14.0777 5200 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:17:14.0778 5200 IpFilterDriver - ok
13:17:14.0801 5200 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
13:17:14.0806 5200 iphlpsvc - ok
13:17:14.0809 5200 IpInIp - ok
13:17:14.0830 5200 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
13:17:14.0832 5200 IPMIDRV - ok
13:17:14.0845 5200 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
13:17:14.0847 5200 IPNAT - ok
13:17:14.0858 5200 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
13:17:14.0859 5200 IRENUM - ok
13:17:14.0871 5200 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
13:17:14.0872 5200 isapnp - ok
13:17:14.0902 5200 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
13:17:14.0905 5200 iScsiPrt - ok
13:17:14.0916 5200 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
13:17:14.0918 5200 iteatapi - ok
13:17:14.0927 5200 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
13:17:14.0928 5200 iteraid - ok
13:17:14.0941 5200 [ C995C0E8B4503FAC38793BB0236AD246 ] JGOGO C:\Windows\system32\drivers\jgogo.sys
13:17:14.0942 5200 JGOGO - ok
13:17:14.0954 5200 [ F5BF72EABC7E160BB6624168AAD52DFE ] JRAID C:\Windows\system32\drivers\jraid.sys
13:17:14.0956 5200 JRAID - ok
13:17:14.0982 5200 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
13:17:14.0983 5200 kbdclass - ok
13:17:15.0006 5200 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
13:17:15.0006 5200 kbdhid - ok
13:17:15.0032 5200 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
13:17:15.0035 5200 KeyIso - ok
13:17:15.0064 5200 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
13:17:15.0070 5200 KSecDD - ok
13:17:15.0114 5200 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
13:17:15.0121 5200 KtmRm - ok
13:17:15.0139 5200 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\system32\srvsvc.dll
13:17:15.0144 5200 LanmanServer - ok
13:17:15.0176 5200 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:17:15.0182 5200 LanmanWorkstation - ok
13:17:15.0210 5200 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
13:17:15.0211 5200 lltdio - ok
13:17:15.0232 5200 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
13:17:15.0236 5200 lltdsvc - ok
13:17:15.0252 5200 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
13:17:15.0254 5200 lmhosts - ok
13:17:15.0263 5200 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
13:17:15.0265 5200 LSI_FC - ok
13:17:15.0273 5200 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
13:17:15.0275 5200 LSI_SAS - ok
13:17:15.0285 5200 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
13:17:15.0286 5200 LSI_SCSI - ok
13:17:15.0309 5200 [ 838DF9675A08116F057B6BC530FBBE15 ] ltmodem5 C:\Windows\system32\DRIVERS\ltmdmnt.sys
13:17:15.0317 5200 ltmodem5 - ok
13:17:15.0327 5200 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
13:17:15.0328 5200 luafv - ok
13:17:15.0355 5200 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
13:17:15.0358 5200 Mcx2Svc - ok
13:17:15.0422 5200 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
13:17:15.0426 5200 MDM - ok
13:17:15.0454 5200 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
13:17:15.0455 5200 megasas - ok
13:17:15.0471 5200 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
13:17:15.0477 5200 MegaSR - ok
13:17:15.0510 5200 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
13:17:15.0513 5200 MMCSS - ok
13:17:15.0520 5200 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
13:17:15.0521 5200 Modem - ok
13:17:15.0551 5200 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
13:17:15.0552 5200 monitor - ok
13:17:15.0578 5200 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
13:17:15.0579 5200 mouclass - ok
13:17:15.0584 5200 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
13:17:15.0584 5200 mouhid - ok
13:17:15.0593 5200 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
13:17:15.0594 5200 MountMgr - ok
13:17:15.0610 5200 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
13:17:15.0612 5200 mpio - ok
13:17:15.0625 5200 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
13:17:15.0626 5200 mpsdrv - ok
13:17:15.0649 5200 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
13:17:15.0657 5200 MpsSvc - ok
13:17:15.0675 5200 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
13:17:15.0676 5200 Mraid35x - ok
13:17:15.0695 5200 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
13:17:15.0697 5200 MRxDAV - ok
13:17:15.0712 5200 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
13:17:15.0714 5200 mrxsmb - ok
13:17:15.0725 5200 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:17:15.0729 5200 mrxsmb10 - ok
13:17:15.0739 5200 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:17:15.0741 5200 mrxsmb20 - ok
13:17:15.0750 5200 [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci C:\Windows\system32\drivers\msahci.sys
13:17:15.0751 5200 msahci - ok
13:17:15.0765 5200 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
13:17:15.0766 5200 msdsm - ok
13:17:15.0791 5200 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
13:17:15.0794 5200 MSDTC - ok
13:17:15.0805 5200 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
13:17:15.0805 5200 Msfs - ok
13:17:15.0820 5200 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
13:17:15.0821 5200 msisadrv - ok
13:17:15.0848 5200 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
13:17:15.0851 5200 MSiSCSI - ok
13:17:15.0854 5200 msiserver - ok
13:17:15.0886 5200 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
13:17:15.0887 5200 MSKSSRV - ok
13:17:15.0890 5200 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
13:17:15.0890 5200 MSPCLOCK - ok
13:17:15.0905 5200 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
13:17:15.0905 5200 MSPQM - ok
13:17:15.0926 5200 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
13:17:15.0929 5200 MsRPC - ok
13:17:15.0939 5200 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
13:17:15.0939 5200 mssmbios - ok
13:17:15.0943 5200 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
13:17:15.0944 5200 MSTEE - ok
13:17:15.0960 5200 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
13:17:15.0961 5200 Mup - ok
13:17:15.0986 5200 [ 8A1ABF11F791FDF580F08B9CFC7E495D ] mv61xx C:\Windows\system32\drivers\mv61xx.sys
13:17:15.0988 5200 mv61xx - ok
13:17:16.0019 5200 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
13:17:16.0025 5200 napagent - ok
13:17:16.0053 5200 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
13:17:16.0055 5200 NativeWifiP - ok
13:17:16.0090 5200 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
13:17:16.0097 5200 NDIS - ok
13:17:16.0116 5200 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
13:17:16.0117 5200 NdisTapi - ok
13:17:16.0122 5200 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
13:17:16.0123 5200 Ndisuio - ok
13:17:16.0146 5200 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
13:17:16.0148 5200 NdisWan - ok
13:17:16.0172 5200 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
13:17:16.0174 5200 NDProxy - ok
13:17:16.0221 5200 [ A081CB6FB9A12668F233EB5414BE3A0E ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
13:17:16.0223 5200 Net Driver HPZ12 - ok
13:17:16.0235 5200 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
13:17:16.0235 5200 NetBIOS - ok
13:17:16.0264 5200 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
13:17:16.0267 5200 netbt - ok
13:17:16.0273 5200 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
13:17:16.0276 5200 Netlogon - ok
13:17:16.0304 5200 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
13:17:16.0310 5200 Netman - ok
13:17:16.0320 5200 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
13:17:16.0326 5200 netprofm - ok
13:17:16.0366 5200 [ F6EC945ABD884B285E3E7BCAF899EADB ] netr28u C:\Windows\system32\DRIVERS\netr28u.sys
13:17:16.0376 5200 netr28u - ok
13:17:16.0395 5200 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:17:16.0397 5200 NetTcpPortSharing - ok
13:17:16.0423 5200 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
13:17:16.0424 5200 nfrd960 - ok
13:17:16.0434 5200 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
13:17:16.0439 5200 NlaSvc - ok
13:17:16.0493 5200 [ F195FBC375342BD25C936982245A8FB0 ] Nonbrand_WUS-N C:\Program Files\KEEBOX\150N Wireless Utility\ANIWZCSdS.exe
13:17:16.0494 5200 Nonbrand_WUS-N - ok
13:17:16.0516 5200 [ C062A2B158ED9C643D24F8E33A607C9F ] Nonbrand_WUS-N_WPS C:\Program Files\KEEBOX\150N Wireless Utility\ANIWConnService.exe
13:17:16.0517 5200 Nonbrand_WUS-N_WPS - ok
13:17:16.0537 5200 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
13:17:16.0538 5200 Npfs - ok
13:17:16.0560 5200 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
13:17:16.0564 5200 nsi - ok
13:17:16.0599 5200 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
13:17:16.0600 5200 nsiproxy - ok
13:17:16.0644 5200 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
13:17:16.0657 5200 Ntfs - ok
13:17:16.0676 5200 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
13:17:16.0677 5200 ntrigdigi - ok
13:17:16.0687 5200 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
13:17:16.0688 5200 Null - ok
13:17:16.0701 5200 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
13:17:16.0703 5200 nvraid - ok
13:17:16.0721 5200 [ 0D15327134E5871C922760ACD7449E84 ] nvrd32 C:\Windows\system32\drivers\nvrd32.sys
13:17:16.0723 5200 nvrd32 - ok
13:17:16.0733 5200 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
13:17:16.0735 5200 nvstor - ok
13:17:16.0743 5200 [ 7DF63192BCF9C20EC2F7492E7F7544F9 ] nvstor32 C:\Windows\system32\drivers\nvstor32.sys
13:17:16.0745 5200 nvstor32 - ok
13:17:16.0755 5200 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
13:17:16.0757 5200 nv_agp - ok
13:17:16.0761 5200 NwlnkFlt - ok
13:17:16.0764 5200 NwlnkFwd - ok
13:17:16.0797 5200 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
13:17:16.0798 5200 ohci1394 - ok
13:17:16.0829 5200 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
13:17:16.0839 5200 p2pimsvc - ok
13:17:16.0847 5200 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
13:17:16.0854 5200 p2psvc - ok
13:17:16.0881 5200 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
13:17:16.0883 5200 Parport - ok
13:17:16.0910 5200 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
13:17:16.0912 5200 partmgr - ok
13:17:16.0923 5200 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
13:17:16.0924 5200 Parvdm - ok
13:17:16.0942 5200 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
13:17:16.0946 5200 PcaSvc - ok
13:17:16.0962 5200 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
13:17:16.0964 5200 pci - ok
13:17:16.0973 5200 [ FC175F5DDAB666D7F4D17449A547626F ] pciide C:\Windows\system32\drivers\pciide.sys
13:17:16.0974 5200 pciide - ok
13:17:16.0990 5200 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
13:17:16.0992 5200 pcmcia - ok
13:17:17.0042 5200 [ 82EC1531BC74ADC34E0342C12958C55A ] PCToolsSSDMonitorSvc C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
13:17:17.0046 5200 PCToolsSSDMonitorSvc - ok
13:17:17.0082 5200 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
13:17:17.0093 5200 PEAUTH - ok
13:17:17.0134 5200 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
13:17:17.0148 5200 pla - ok
13:17:17.0174 5200 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
13:17:17.0180 5200 PlugPlay - ok
13:17:17.0212 5200 [ 65BC271F337637731D3C71455AE1F476 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
13:17:17.0214 5200 Pml Driver HPZ12 - ok
13:17:17.0238 5200 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
13:17:17.0244 5200 PNRPAutoReg - ok
13:17:17.0253 5200 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
13:17:17.0260 5200 PNRPsvc - ok
13:17:17.0272 5200 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
13:17:17.0279 5200 PolicyAgent - ok
13:17:17.0306 5200 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
13:17:17.0308 5200 PptpMiniport - ok
13:17:17.0320 5200 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
13:17:17.0321 5200 Processor - ok
13:17:17.0331 5200 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
13:17:17.0337 5200 ProfSvc - ok
13:17:17.0348 5200 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
13:17:17.0350 5200 ProtectedStorage - ok
13:17:17.0375 5200 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
13:17:17.0376 5200 PSched - ok
13:17:17.0406 5200 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
13:17:17.0420 5200 ql2300 - ok
13:17:17.0432 5200 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
13:17:17.0434 5200 ql40xx - ok
13:17:17.0455 5200 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
13:17:17.0459 5200 QWAVE - ok
13:17:17.0493 5200 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
13:17:17.0494 5200 QWAVEdrv - ok
13:17:17.0501 5200 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
13:17:17.0501 5200 RasAcd - ok
13:17:17.0514 5200 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
13:17:17.0518 5200 RasAuto - ok
13:17:17.0563 5200 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
13:17:17.0564 5200 Rasl2tp - ok
13:17:17.0589 5200 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
13:17:17.0595 5200 RasMan - ok
13:17:17.0622 5200 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
13:17:17.0623 5200 RasPppoe - ok
13:17:17.0632 5200 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
13:17:17.0634 5200 RasSstp - ok
13:17:17.0655 5200 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
13:17:17.0659 5200 rdbss - ok
13:17:17.0671 5200 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
13:17:17.0672 5200 RDPCDD - ok
13:17:17.0683 5200 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
13:17:17.0686 5200 rdpdr - ok
13:17:17.0689 5200 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
13:17:17.0690 5200 RDPENCDD - ok
13:17:17.0718 5200 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
13:17:17.0721 5200 RDPWD - ok
13:17:17.0754 5200 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
13:17:17.0757 5200 RemoteAccess - ok
13:17:17.0781 5200 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
13:17:17.0785 5200 RemoteRegistry - ok
13:17:17.0792 5200 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
13:17:17.0795 5200 RpcLocator - ok
13:17:17.0811 5200 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
13:17:17.0817 5200 RpcSs - ok
13:17:17.0837 5200 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
13:17:17.0839 5200 rspndr - ok
13:17:17.0848 5200 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
13:17:17.0850 5200 SamSs - ok
13:17:17.0863 5200 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
13:17:17.0864 5200 sbp2port - ok
13:17:17.0893 5200 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
13:17:17.0897 5200 SCardSvr - ok
13:17:17.0936 5200 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
13:17:17.0945 5200 Schedule - ok
13:17:17.0955 5200 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
13:17:17.0956 5200 SCPolicySvc - ok
13:17:17.0981 5200 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
13:17:17.0986 5200 SDRSVC - ok
13:17:17.0992 5200 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
13:17:17.0993 5200 secdrv - ok
13:17:18.0003 5200 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
13:17:18.0007 5200 seclogon - ok
13:17:18.0020 5200 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
13:17:18.0023 5200 SENS - ok
13:17:18.0042 5200 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
13:17:18.0043 5200 Serenum - ok
13:17:18.0055 5200 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
13:17:18.0057 5200 Serial - ok
13:17:18.0080 5200 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
13:17:18.0081 5200 sermouse - ok
13:17:18.0093 5200 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
13:17:18.0098 5200 SessionEnv - ok
13:17:18.0106 5200 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
13:17:18.0106 5200 sffdisk - ok
13:17:18.0116 5200 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
13:17:18.0117 5200 sffp_mmc - ok
13:17:18.0121 5200 [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
13:17:18.0122 5200 sffp_sd - ok
13:17:18.0129 5200 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
13:17:18.0130 5200 sfloppy - ok
13:17:18.0156 5200 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
13:17:18.0163 5200 SharedAccess - ok
13:17:18.0193 5200 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:17:18.0199 5200 ShellHWDetection - ok
13:17:18.0206 5200 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
13:17:18.0208 5200 sisagp - ok
13:17:18.0231 5200 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
13:17:18.0232 5200 SiSRaid2 - ok
13:17:18.0245 5200 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
13:17:18.0247 5200 SiSRaid4 - ok
13:17:18.0322 5200 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
13:17:18.0363 5200 slsvc - ok
13:17:18.0397 5200 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
13:17:18.0401 5200 SLUINotify - ok
13:17:18.0422 5200 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
13:17:18.0423 5200 Smb - ok
13:17:18.0449 5200 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
13:17:18.0453 5200 SNMPTRAP - ok
13:17:18.0516 5200 [ D08D19EE68CB88AB1BC5DA3081505847 ] snpstd C:\Windows\system32\DRIVERS\snpstd.sys
13:17:18.0522 5200 snpstd - ok
13:17:18.0541 5200 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
13:17:18.0542 5200 spldr - ok
13:17:18.0563 5200 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
13:17:18.0568 5200 Spooler - ok
13:17:18.0595 5200 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
13:17:18.0600 5200 srv - ok
13:17:18.0610 5200 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
13:17:18.0613 5200 srv2 - ok
13:17:18.0626 5200 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
13:17:18.0628 5200 srvnet - ok
13:17:18.0642 5200 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
13:17:18.0648 5200 SSDPSRV - ok
13:17:18.0682 5200 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
13:17:18.0688 5200 SstpSvc - ok
13:17:18.0721 5200 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
13:17:18.0730 5200 stisvc - ok
13:17:18.0755 5200 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
13:17:18.0756 5200 swenum - ok
13:17:18.0781 5200 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
13:17:18.0788 5200 swprv - ok
13:17:18.0813 5200 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
13:17:18.0814 5200 Symc8xx - ok
13:17:18.0822 5200 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
13:17:18.0823 5200 Sym_hi - ok
13:17:18.0833 5200 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
13:17:18.0835 5200 Sym_u3 - ok
13:17:18.0863 5200 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
13:17:18.0873 5200 SysMain - ok
13:17:18.0896 5200 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:17:18.0901 5200 TabletInputService - ok
13:17:18.0928 5200 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
13:17:18.0935 5200 TapiSrv - ok
13:17:18.0946 5200 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
13:17:18.0950 5200 TBS - ok
13:17:18.0988 5200 [ EE7E10BED85C312C1D5D30C435BDDA9F ] Tcpip C:\Windows\system32\drivers\tcpip.sys
13:17:18.0999 5200 Tcpip - ok
13:17:19.0012 5200 [ EE7E10BED85C312C1D5D30C435BDDA9F ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
13:17:19.0018 5200 Tcpip6 - ok
13:17:19.0028 5200 [ 2C2D4CFF5E09C73908F9B5AF49A51365 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
13:17:19.0029 5200 tcpipreg - ok
13:17:19.0051 5200 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
13:17:19.0052 5200 TDPIPE - ok
13:17:19.0063 5200 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
13:17:19.0064 5200 TDTCP - ok
13:17:19.0076 5200 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
13:17:19.0077 5200 tdx - ok
13:17:19.0099 5200 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
13:17:19.0100 5200 TermDD - ok
13:17:19.0121 5200 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
13:17:19.0130 5200 TermService - ok
13:17:19.0142 5200 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
13:17:19.0147 5200 Themes - ok
13:17:19.0160 5200 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
13:17:19.0162 5200 THREADORDER - ok
13:17:19.0179 5200 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
13:17:19.0184 5200 TrkWks - ok
13:17:19.0213 5200 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:17:19.0214 5200 TrustedInstaller - ok
13:17:19.0237 5200 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
13:17:19.0238 5200 tssecsrv - ok
13:17:19.0246 5200 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
13:17:19.0247 5200 tunmp - ok
13:17:19.0272 5200 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
13:17:19.0273 5200 tunnel - ok
13:17:19.0285 5200 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
13:17:19.0287 5200 uagp35 - ok
13:17:19.0300 5200 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
13:17:19.0304 5200 udfs - ok
13:17:19.0316 5200 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
13:17:19.0321 5200 UI0Detect - ok
13:17:19.0334 5200 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
13:17:19.0335 5200 uliagpkx - ok
13:17:19.0347 5200 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
13:17:19.0351 5200 uliahci - ok
13:17:19.0364 5200 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
13:17:19.0366 5200 UlSata - ok
13:17:19.0379 5200 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
13:17:19.0381 5200 ulsata2 - ok
13:17:19.0395 5200 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
13:17:19.0396 5200 umbus - ok
13:17:19.0425 5200 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
13:17:19.0431 5200 upnphost - ok
13:17:19.0489 5200 [ 32DB9517628FF0D070682AAB61E688F0 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
13:17:19.0490 5200 usbaudio - ok
13:17:19.0517 5200 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
13:17:19.0518 5200 usbccgp - ok
13:17:19.0540 5200 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
13:17:19.0542 5200 usbcir - ok
13:17:19.0574 5200 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
13:17:19.0575 5200 usbehci - ok
13:17:19.0590 5200 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
13:17:19.0593 5200 usbhub - ok
13:17:19.0641 5200 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys
13:17:19.0642 5200 usbohci - ok
13:17:19.0667 5200 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
13:17:19.0668 5200 usbprint - ok
13:17:19.0679 5200 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
13:17:19.0680 5200 usbscan - ok
13:17:19.0683 5200 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:17:19.0685 5200 USBSTOR - ok
13:17:19.0688 5200 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
13:17:19.0689 5200 usbuhci - ok
13:17:19.0708 5200 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
13:17:19.0712 5200 UxSms - ok
13:17:19.0746 5200 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
13:17:19.0754 5200 vds - ok
13:17:19.0773 5200 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
13:17:19.0774 5200 vga - ok
13:17:19.0787 5200 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
13:17:19.0788 5200 VgaSave - ok
13:17:19.0797 5200 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
13:17:19.0798 5200 viaagp - ok
13:17:19.0808 5200 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
13:17:19.0809 5200 ViaC7 - ok
13:17:19.0816 5200 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
13:17:19.0817 5200 viaide - ok
13:17:19.0840 5200 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
13:17:19.0841 5200 volmgr - ok
13:17:19.0870 5200 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
13:17:19.0875 5200 volmgrx - ok
13:17:19.0917 5200 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
13:17:19.0920 5200 volsnap - ok
13:17:19.0950 5200 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
13:17:19.0952 5200 vsmraid - ok
13:17:19.0997 5200 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
13:17:20.0007 5200 VSS - ok
13:17:20.0034 5200 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
13:17:20.0041 5200 W32Time - ok
13:17:20.0062 5200 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
13:17:20.0063 5200 WacomPen - ok
13:17:20.0071 5200 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
13:17:20.0072 5200 Wanarp - ok
13:17:20.0075 5200 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
13:17:20.0076 5200 Wanarpv6 - ok
13:17:20.0095 5200 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
13:17:20.0104 5200 wcncsvc - ok
13:17:20.0127 5200 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:17:20.0132 5200 WcsPlugInService - ok
13:17:20.0138 5200 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
13:17:20.0139 5200 Wd - ok
13:17:20.0160 5200 [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
13:17:20.0168 5200 Wdf01000 - ok
13:17:20.0176 5200 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
13:17:20.0181 5200 WdiServiceHost - ok
13:17:20.0184 5200 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
13:17:20.0188 5200 WdiSystemHost - ok
13:17:20.0206 5200 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
13:17:20.0212 5200 WebClient - ok
13:17:20.0245 5200 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
13:17:20.0250 5200 Wecsvc - ok
13:17:20.0261 5200 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
13:17:20.0266 5200 wercplsupport - ok
13:17:20.0284 5200 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
13:17:20.0290 5200 WerSvc - ok
13:17:20.0331 5200 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
13:17:20.0335 5200 WinDefend - ok
13:17:20.0338 5200 WinHttpAutoProxySvc - ok
13:17:20.0389 5200 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
13:17:20.0392 5200 Winmgmt - ok
13:17:20.0428 5200 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
13:17:20.0446 5200 WinRM - ok
13:17:20.0490 5200 [ 676F4B665BDD8053EAA53AC1695B8074 ] WinUsb C:\Windows\system32\DRIVERS\WinUSB.SYS
13:17:20.0491 5200 WinUsb - ok
13:17:20.0522 5200 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
13:17:20.0533 5200 Wlansvc - ok
13:17:20.0557 5200 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
13:17:20.0558 5200 WmiAcpi - ok
13:17:20.0588 5200 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
13:17:20.0591 5200 wmiApSrv - ok
13:17:20.0644 5200 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
13:17:20.0649 5200 WMPNetworkSvc - ok
13:17:20.0673 5200 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
13:17:20.0678 5200 WPCSvc - ok
13:17:20.0716 5200 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
13:17:20.0721 5200 WPDBusEnum - ok
13:17:20.0747 5200 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
13:17:20.0748 5200 WpdUsb - ok
13:17:20.0775 5200 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
13:17:20.0777 5200 ws2ifsl - ok
13:17:20.0794 5200 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\System32\wscsvc.dll
13:17:20.0798 5200 wscsvc - ok
13:17:20.0802 5200 WSearch - ok
13:17:20.0856 5200 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
13:17:20.0882 5200 wuauserv - ok
13:17:20.0897 5200 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
13:17:20.0899 5200 WUDFRd - ok
13:17:20.0921 5200 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
13:17:20.0926 5200 wudfsvc - ok
13:17:20.0944 5200 ================ Scan global ===============================
13:17:20.0968 5200 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
13:17:20.0995 5200 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
13:17:21.0008 5200 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
13:17:21.0040 5200 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
13:17:21.0047 5200 [Global] - ok
13:17:21.0047 5200 ================ Scan MBR ==================================
13:17:21.0057 5200 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
13:17:21.0304 5200 \Device\Harddisk0\DR0 - ok
13:17:21.0341 5200 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR2
13:17:22.0580 5200 \Device\Harddisk1\DR2 - ok
13:17:22.0580 5200 ================ Scan VBR ==================================
13:17:22.0600 5200 [ 5922AA12FBCF36C4CC129BDB2E5E1841 ] \Device\Harddisk0\DR0\Partition1
13:17:22.0601 5200 \Device\Harddisk0\DR0\Partition1 - ok
13:17:22.0603 5200 [ 45C1D06AE04B75A8CBCF46E92E4336D8 ] \Device\Harddisk0\DR0\Partition2
13:17:22.0604 5200 \Device\Harddisk0\DR0\Partition2 - ok
13:17:22.0619 5200 [ 7B387376D43250D94117323481CD8BF3 ] \Device\Harddisk1\DR2\Partition1
13:17:22.0626 5200 \Device\Harddisk1\DR2\Partition1 - ok
13:17:22.0626 5200 ============================================================
13:17:22.0626 5200 Scan finished
13:17:22.0626 5200 ============================================================
13:17:22.0632 5440 Detected object count: 0
13:17:22.0633 5440 Actual detected object count: 0
13:19:15.0976 4508 Deinitialize success

#4 skreemnmimi

skreemnmimi
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:02:00 AM

Posted 30 September 2012 - 03:32 PM

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-30 13:26:23
-----------------------------
13:26:23.218 OS Version: Windows 6.0.6002 Service Pack 2
13:26:23.218 Number of processors: 4 586 0xF0B
13:26:23.219 ComputerName: MIMI-PC UserName: cp
13:26:29.454 Initialize success
13:26:29.538 AVAST engine defs: 12093000
13:27:18.664 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
13:27:18.665 Disk 0 Vendor: Hitachi_ GM3O Size: 305245MB BusType: 3
13:27:18.683 Disk 0 MBR read successfully
13:27:18.684 Disk 0 MBR scan
13:27:18.686 Disk 0 Windows VISTA default MBR code
13:27:18.687 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 54 MB offset 63
13:27:18.692 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 15360 MB offset 112640
13:27:18.705 Disk 0 Partition 3 80 (A) 07 HPFS/NTFS NTFS 289829 MB offset 31569920
13:27:18.708 Disk 0 scanning sectors +625139712
13:27:18.779 Disk 0 scanning C:\Windows\system32\drivers
13:27:23.424 Service scanning
13:27:35.347 Modules scanning
13:27:39.110 Disk 0 trace - called modules:
13:27:39.129 ntkrnlpa.exe CLASSPNP.SYS disk.sys iastorv.sys hal.dll
13:27:39.131 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8599a620]
13:27:39.134 3 CLASSPNP.SYS[8a7ac8b3] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0x858d0030]
13:27:40.099 AVAST engine scan C:\Windows
13:27:42.082 AVAST engine scan C:\Windows\system32
13:29:14.849 AVAST engine scan C:\Windows\system32\drivers
13:29:22.139 AVAST engine scan C:\Users\cp
13:30:29.356 Disk 0 MBR has been saved successfully to "C:\Users\cp\Documents\MBR.dat"
13:30:29.360 The log file has been saved successfully to "C:\Users\cp\Documents\aswMBR.txt"

#5 skreemnmimi

skreemnmimi
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:02:00 AM

Posted 30 September 2012 - 06:26 PM

C:\Program Files\DictionaryBoss\bar\1.bin\v4datact.dll a variant of Win32/Toolbar.MyWebSearch.A application cleaned by deleting - quarantined
C:\Program Files\DictionaryBoss\bar\1.bin\v4html.dll probably a variant of Win32/Toolbar.MyWebSearch.F application cleaned by deleting - quarantined
C:\Program Files\DictionaryBoss\bar\1.bin\v4htmlmu.dll probably a variant of Win32/Toolbar.MyWebSearch.B application cleaned by deleting - quarantined
C:\Program Files\DictionaryBoss\bar\1.bin\v4ieovr.dll probably a variant of Win32/Toolbar.MyWebSearch.P application cleaned by deleting - quarantined
C:\Program Files\DictionaryBoss\bar\1.bin\v4Plugin.dll probably a variant of Win32/Toolbar.MyWebSearch application cleaned by deleting - quarantined
C:\Program Files\DictionaryBoss\bar\1.bin\v4skin.dll a variant of Win32/Toolbar.MyWebSearch.P application cleaned by deleting - quarantined
C:\ProgramData\Tarma Installer\{C049526F-B3EB-4151-9B11-B11F00F53A96}\_Setupx.dll a variant of Win32/Adware.Yontoo.B application cleaned by deleting - quarantined
C:\Users\cp\AppData\Local\Google\Chrome\User Data\Default\Cache\f_003e4d a variant of Win32/InstallIQ application cleaned by deleting - quarantined
C:\Users\cp\AppData\Local\Google\Chrome\User Data\Default\Default\aadagcgbgbdagbgedbgcdfdhdedbdcdg\background.html Win32/BHO.OEI trojan cleaned by deleting - quarantined
C:\Users\cp\AppData\Local\Google\Chrome\User Data\Default\Default\aadagcgbgbdagbgedbgcdfdhdedbdcdg\ContentScript.js Win32/BHO.OEI trojan cleaned by deleting - quarantined
C:\Users\cp\AppData\Roaming\FileHunter\FileHunter.exe Win32/Adware.WinPump.T application cleaned by deleting - quarantined
C:\Users\cp\AppData\Roaming\Mozilla\Firefox\Profiles\00lp4mzl.default\extensions\meyqirdvim@meyqirdvim.org.xpi JS/Redirector.NBX trojan deleted (after the next restart) - quarantined
C:\Users\cp\Downloads\CasinoTitan.exe a variant of Win32/CasOnline.F application cleaned by deleting - quarantined
C:\Users\cp\Downloads\CirrusCasinoInstaller(1).exe a variant of Win32/CasOnline.F application cleaned by deleting - quarantined
C:\Users\cp\Downloads\CirrusCasinoInstaller.exe a variant of Win32/CasOnline.F application cleaned by deleting - quarantined
C:\Users\cp\Downloads\ClassyCoin.exe a variant of Win32/CasOnline.F application cleaned by deleting - quarantined
C:\Users\cp\Downloads\dolphin.exe a variant of Win32/InstallIQ application cleaned by deleting - quarantined
C:\Users\cp\Downloads\freefileviewer_2_1283.exe a variant of Win32/InstallIQ application cleaned by deleting - quarantined
C:\Users\cp\Downloads\Google_Chrome.exe MSIL/Solimba application cleaned by deleting - quarantined
C:\Users\cp\Downloads\GrandParker.exe a variant of Win32/CasOnline.F application cleaned by deleting - quarantined
C:\Users\cp\Downloads\HighNoon.exe a variant of Win32/CasOnline.F application cleaned by deleting - quarantined
C:\Users\cp\Downloads\iLividSetupV1(1).exe Win32/Toolbar.SearchSuite application cleaned by deleting - quarantined
C:\Users\cp\Downloads\iLividSetupV1(2).exe Win32/Toolbar.SearchSuite application cleaned by deleting - quarantined
C:\Users\cp\Downloads\iLividSetupV1.exe Win32/Toolbar.SearchSuite application cleaned by deleting - quarantined
C:\Users\cp\Downloads\intunemp3(1).exe a variant of Win32/InstallIQ application cleaned by deleting - quarantined
C:\Users\cp\Downloads\intunemp3.exe a variant of Win32/InstallIQ application cleaned by deleting - quarantined
C:\Users\cp\Downloads\IWantThis.exe a variant of Win32/Toolbar.CrossRider.A application cleaned by deleting - quarantined
C:\Users\cp\Downloads\LocoPanda(1).exe a variant of Win32/CasOnline.F application cleaned by deleting - quarantined
C:\Users\cp\Downloads\LocoPanda.exe a variant of Win32/CasOnline.F application cleaned by deleting - quarantined
C:\Users\cp\Downloads\musicoasis (1).exe a variant of Win32/InstallIQ application cleaned by deleting - quarantined
C:\Users\cp\Downloads\musicoasis.exe a variant of Win32/InstallIQ application cleaned by deleting - quarantined
C:\Users\cp\Downloads\PalaceofChanceInstaller(1).exe a variant of Win32/CasOnline.F application cleaned by deleting - quarantined
C:\Users\cp\Downloads\PalaceofChanceInstaller.exe a variant of Win32/CasOnline.F application cleaned by deleting - quarantined
C:\Users\cp\Downloads\PartyCityCasinoInstaller.exe a variant of Win32/CasOnline.F application cleaned by deleting - quarantined
C:\Users\cp\Downloads\PDFCreatorSetup.exe a variant of Win32/InstallCore.F application cleaned by deleting - quarantined
C:\Users\cp\Downloads\PrismCasinoInstaller.exe a variant of Win32/CasOnline.F application cleaned by deleting - quarantined
C:\Users\cp\Downloads\setup(1).exe a variant of Win32/CasOnline.F application cleaned by deleting - quarantined
C:\Users\cp\Downloads\setup(2).exe a variant of Win32/CasOnline.F application cleaned by deleting - quarantined
C:\Users\cp\Downloads\setup(3).exe a variant of Win32/CasOnline.F application cleaned by deleting - quarantined
C:\Users\cp\Downloads\setup.exe a variant of Win32/CasOnline.F application cleaned by deleting - quarantined
C:\Users\cp\Downloads\SilverOakInstaller.exe a variant of Win32/CasOnline.F application cleaned by deleting - quarantined
C:\Users\cp\Downloads\TheVirtualCasinoInstaller.exe a variant of Win32/CasOnline.F application cleaned by deleting - quarantined
C:\Windows.old\Documents and Settings\cp\AppData\Local\Temp\NODE7B9.tmp JS/Redirector.NBX trojan deleted (after the next restart) - quarantined

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:00 AM

Posted 30 September 2012 - 09:43 PM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

Launch it and after scan gets completed,post the generated log here.

NOTE: For vista and windows 7 right click on the tool and select run as administrator




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users