Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with click.gethotresults.com virus


  • Please log in to reply
11 replies to this topic

#1 richards1052

richards1052

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Seattle
  • Local time:08:07 AM

Posted 24 September 2012 - 12:18 AM

The click.gethotresults.com virus has infected my PC & is hijacking search results for Firefox. I need help removing it. I've tried AVG, Spybot S&D, & Malwarebytes but none have succeeded.

I'd appreciate help in removing this annoying virus.

My OS is Windows 7 and I'm on a PC.

Edited by richards1052, 24 September 2012 - 12:18 AM.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:07 AM

Posted 24 September 2012 - 12:18 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 richards1052

richards1052
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Seattle
  • Local time:08:07 AM

Posted 24 September 2012 - 12:32 AM

22:27:13.0072 9016 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
22:27:13.0521 9016 ============================================================
22:27:13.0521 9016 Current date / time: 2012/09/23 22:27:13.0521
22:27:13.0521 9016 SystemInfo:
22:27:13.0521 9016
22:27:13.0521 9016 OS Version: 6.1.7601 ServicePack: 1.0
22:27:13.0521 9016 Product type: Workstation
22:27:13.0521 9016 ComputerName: RICHARD-PC
22:27:13.0521 9016 UserName: richard
22:27:13.0521 9016 Windows directory: C:\Windows
22:27:13.0521 9016 System windows directory: C:\Windows
22:27:13.0521 9016 Running under WOW64
22:27:13.0521 9016 Processor architecture: Intel x64
22:27:13.0521 9016 Number of processors: 2
22:27:13.0521 9016 Page size: 0x1000
22:27:13.0521 9016 Boot type: Normal boot
22:27:13.0521 9016 ============================================================
22:27:15.0790 9016 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x7E2D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
22:27:15.0835 9016 Drive \Device\Harddisk5\DR5 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
22:27:15.0857 9016 ============================================================
22:27:15.0857 9016 \Device\Harddisk0\DR0:
22:27:15.0864 9016 MBR partitions:
22:27:15.0864 9016 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1B5C7141
22:27:15.0864 9016 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1B5C7180, BlocksNum 0x1BFD050
22:27:15.0864 9016 \Device\Harddisk5\DR5:
22:27:15.0864 9016 MBR partitions:
22:27:15.0864 9016 \Device\Harddisk5\DR5\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1D1C4542
22:27:15.0864 9016 ============================================================
22:27:15.0923 9016 C: <-> \Device\Harddisk0\DR0\Partition1
22:27:15.0972 9016 D: <-> \Device\Harddisk0\DR0\Partition2
22:27:15.0976 9016 J: <-> \Device\Harddisk5\DR5\Partition1
22:27:15.0976 9016 ============================================================
22:27:15.0976 9016 Initialize success
22:27:15.0976 9016 ============================================================
22:28:03.0068 5064 ============================================================
22:28:03.0068 5064 Scan started
22:28:03.0068 5064 Mode: Manual; TDLFS;
22:28:03.0068 5064 ============================================================
22:28:04.0604 5064 ================ Scan system memory ========================
22:28:04.0604 5064 System memory - ok
22:28:04.0605 5064 ================ Scan services =============================
22:28:04.0788 5064 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
22:28:04.0791 5064 1394ohci - ok
22:28:04.0902 5064 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
22:28:04.0904 5064 ACDaemon - ok
22:28:04.0934 5064 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
22:28:04.0938 5064 ACPI - ok
22:28:04.0966 5064 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
22:28:04.0967 5064 AcpiPmi - ok
22:28:05.0099 5064 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:28:05.0100 5064 AdobeARMservice - ok
22:28:05.0221 5064 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:28:05.0225 5064 AdobeFlashPlayerUpdateSvc - ok
22:28:05.0350 5064 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
22:28:05.0356 5064 adp94xx - ok
22:28:05.0390 5064 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
22:28:05.0395 5064 adpahci - ok
22:28:05.0413 5064 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
22:28:05.0416 5064 adpu320 - ok
22:28:05.0459 5064 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:28:05.0460 5064 AeLookupSvc - ok
22:28:05.0495 5064 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
22:28:05.0510 5064 AFD - ok
22:28:05.0549 5064 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
22:28:05.0551 5064 agp440 - ok
22:28:05.0568 5064 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
22:28:05.0570 5064 ALG - ok
22:28:05.0603 5064 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
22:28:05.0604 5064 aliide - ok
22:28:05.0780 5064 [ AAA1F9D4CF4C976C21BCA8AFA2BAE6A4 ] AllShare C:\Program Files (x86)\Samsung\SAMSUNG PC Share Manager\WiselinkPro.exe
22:28:05.0903 5064 AllShare - ok
22:28:05.0938 5064 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
22:28:05.0939 5064 amdide - ok
22:28:05.0992 5064 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
22:28:05.0993 5064 AmdK8 - ok
22:28:06.0011 5064 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
22:28:06.0012 5064 AmdPPM - ok
22:28:06.0051 5064 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
22:28:06.0053 5064 amdsata - ok
22:28:06.0079 5064 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
22:28:06.0082 5064 amdsbs - ok
22:28:06.0115 5064 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
22:28:06.0116 5064 amdxata - ok
22:28:06.0165 5064 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
22:28:06.0167 5064 AppID - ok
22:28:06.0214 5064 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
22:28:06.0215 5064 AppIDSvc - ok
22:28:06.0268 5064 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
22:28:06.0269 5064 Appinfo - ok
22:28:06.0437 5064 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:28:06.0439 5064 Apple Mobile Device - ok
22:28:06.0493 5064 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
22:28:06.0495 5064 arc - ok
22:28:06.0517 5064 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
22:28:06.0519 5064 arcsas - ok
22:28:06.0554 5064 [ 1CE3822B05A5E229286A15EA39369870 ] ArcSoftKsUFilter C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
22:28:06.0555 5064 ArcSoftKsUFilter - ok
22:28:06.0588 5064 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:28:06.0590 5064 AsyncMac - ok
22:28:06.0623 5064 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
22:28:06.0624 5064 atapi - ok
22:28:06.0686 5064 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:28:06.0704 5064 AudioEndpointBuilder - ok
22:28:06.0717 5064 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
22:28:06.0723 5064 AudioSrv - ok
22:28:06.0918 5064 [ 1D7D0D5D33D8B1507EC5FBFE332E5657 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
22:28:07.0023 5064 AVGIDSAgent - ok
22:28:07.0052 5064 [ 5FD4D6C35738899905E16E5284981427 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
22:28:07.0054 5064 AVGIDSDriver - ok
22:28:07.0077 5064 [ 132251CBBB95062E12FF21E212EB8FB4 ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
22:28:07.0078 5064 AVGIDSHA - ok
22:28:07.0144 5064 [ 996FCACE7A8EFD926C8BB2C70A40C83F ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
22:28:07.0146 5064 Avgldx64 - ok
22:28:07.0177 5064 [ 3E0E2D8CD63C58A37CF81704E83459DD ] Avgloga C:\Windows\system32\DRIVERS\avgloga.sys
22:28:07.0179 5064 Avgloga - ok
22:28:07.0203 5064 [ DC353C527816297BD11B13EA60C9BE75 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
22:28:07.0205 5064 Avgmfx64 - ok
22:28:07.0230 5064 [ 639CBC2F67FB25F9AB31957D9BF5CF8F ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
22:28:07.0231 5064 Avgrkx64 - ok
22:28:07.0261 5064 [ 1917293728A872BF520952F69E024FE6 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
22:28:07.0264 5064 Avgtdia - ok
22:28:07.0292 5064 [ 42F11F37CC06D9AB6528AF2E215B8799 ] avgwd C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
22:28:07.0294 5064 avgwd - ok
22:28:07.0345 5064 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
22:28:07.0346 5064 AxInstSV - ok
22:28:07.0400 5064 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
22:28:07.0405 5064 b06bdrv - ok
22:28:07.0461 5064 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
22:28:07.0464 5064 b57nd60a - ok
22:28:07.0510 5064 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
22:28:07.0511 5064 BDESVC - ok
22:28:07.0526 5064 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
22:28:07.0527 5064 Beep - ok
22:28:07.0589 5064 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
22:28:07.0606 5064 BFE - ok
22:28:07.0679 5064 [ 1B63F2B7CA6B5290CC124CDD07520BC9 ] BingDesktopUpdate C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
22:28:07.0681 5064 BingDesktopUpdate - ok
22:28:07.0741 5064 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
22:28:07.0765 5064 BITS - ok
22:28:07.0819 5064 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
22:28:07.0821 5064 blbdrive - ok
22:28:07.0940 5064 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
22:28:07.0954 5064 Bonjour Service - ok
22:28:07.0997 5064 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:28:07.0998 5064 bowser - ok
22:28:08.0017 5064 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
22:28:08.0018 5064 BrFiltLo - ok
22:28:08.0036 5064 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
22:28:08.0037 5064 BrFiltUp - ok
22:28:08.0083 5064 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
22:28:08.0085 5064 Browser - ok
22:28:08.0106 5064 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
22:28:08.0110 5064 Brserid - ok
22:28:08.0122 5064 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
22:28:08.0123 5064 BrSerWdm - ok
22:28:08.0144 5064 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
22:28:08.0145 5064 BrUsbMdm - ok
22:28:08.0151 5064 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
22:28:08.0152 5064 BrUsbSer - ok
22:28:08.0175 5064 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
22:28:08.0176 5064 BTHMODEM - ok
22:28:08.0228 5064 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
22:28:08.0230 5064 bthserv - ok
22:28:08.0248 5064 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:28:08.0249 5064 cdfs - ok
22:28:08.0286 5064 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
22:28:08.0289 5064 cdrom - ok
22:28:08.0345 5064 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
22:28:08.0347 5064 CertPropSvc - ok
22:28:08.0374 5064 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
22:28:08.0376 5064 circlass - ok
22:28:08.0418 5064 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
22:28:08.0423 5064 CLFS - ok
22:28:08.0500 5064 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:28:08.0502 5064 clr_optimization_v2.0.50727_32 - ok
22:28:08.0580 5064 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:28:08.0582 5064 clr_optimization_v2.0.50727_64 - ok
22:28:08.0653 5064 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:28:08.0656 5064 clr_optimization_v4.0.30319_32 - ok
22:28:08.0723 5064 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:28:08.0725 5064 clr_optimization_v4.0.30319_64 - ok
22:28:08.0775 5064 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
22:28:08.0776 5064 CmBatt - ok
22:28:08.0801 5064 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
22:28:08.0802 5064 cmdide - ok
22:28:08.0857 5064 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
22:28:08.0874 5064 CNG - ok
22:28:08.0896 5064 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
22:28:08.0897 5064 Compbatt - ok
22:28:08.0936 5064 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
22:28:08.0937 5064 CompositeBus - ok
22:28:08.0957 5064 COMSysApp - ok
22:28:08.0973 5064 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
22:28:08.0975 5064 crcdisk - ok
22:28:09.0024 5064 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:28:09.0027 5064 CryptSvc - ok
22:28:09.0082 5064 [ 7AF9DAC504FBD047CBC3E64AE52C92BF ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
22:28:09.0083 5064 dc3d - ok
22:28:09.0141 5064 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
22:28:09.0159 5064 DcomLaunch - ok
22:28:09.0212 5064 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
22:28:09.0216 5064 defragsvc - ok
22:28:09.0261 5064 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:28:09.0263 5064 DfsC - ok
22:28:09.0324 5064 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
22:28:09.0329 5064 Dhcp - ok
22:28:09.0373 5064 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
22:28:09.0374 5064 discache - ok
22:28:09.0400 5064 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
22:28:09.0402 5064 Disk - ok
22:28:09.0432 5064 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:28:09.0435 5064 Dnscache - ok
22:28:09.0481 5064 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
22:28:09.0484 5064 dot3svc - ok
22:28:09.0550 5064 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
22:28:09.0553 5064 Dot4 - ok
22:28:09.0585 5064 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\drivers\Dot4Prt.sys
22:28:09.0587 5064 Dot4Print - ok
22:28:09.0603 5064 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
22:28:09.0605 5064 dot4usb - ok
22:28:09.0647 5064 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
22:28:09.0650 5064 DPS - ok
22:28:09.0739 5064 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:28:09.0740 5064 drmkaud - ok
22:28:09.0824 5064 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:28:09.0850 5064 DXGKrnl - ok
22:28:09.0886 5064 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
22:28:09.0888 5064 EapHost - ok
22:28:09.0997 5064 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
22:28:10.0075 5064 ebdrv - ok
22:28:10.0125 5064 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
22:28:10.0127 5064 EFS - ok
22:28:10.0218 5064 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
22:28:10.0235 5064 ehRecvr - ok
22:28:10.0289 5064 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
22:28:10.0292 5064 ehSched - ok
22:28:10.0336 5064 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
22:28:10.0350 5064 elxstor - ok
22:28:10.0377 5064 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
22:28:10.0378 5064 ErrDev - ok
22:28:10.0447 5064 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
22:28:10.0453 5064 EventSystem - ok
22:28:10.0469 5064 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
22:28:10.0472 5064 exfat - ok
22:28:10.0498 5064 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:28:10.0501 5064 fastfat - ok
22:28:10.0556 5064 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
22:28:10.0574 5064 Fax - ok
22:28:10.0592 5064 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
22:28:10.0594 5064 fdc - ok
22:28:10.0613 5064 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
22:28:10.0614 5064 fdPHost - ok
22:28:10.0630 5064 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
22:28:10.0631 5064 FDResPub - ok
22:28:10.0647 5064 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:28:10.0649 5064 FileInfo - ok
22:28:10.0660 5064 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:28:10.0661 5064 Filetrace - ok
22:28:10.0673 5064 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
22:28:10.0674 5064 flpydisk - ok
22:28:10.0727 5064 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:28:10.0731 5064 FltMgr - ok
22:28:10.0769 5064 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
22:28:10.0795 5064 FontCache - ok
22:28:10.0863 5064 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:28:10.0864 5064 FontCache3.0.0.0 - ok
22:28:10.0879 5064 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
22:28:10.0880 5064 FsDepends - ok
22:28:10.0904 5064 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:28:10.0905 5064 Fs_Rec - ok
22:28:10.0963 5064 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
22:28:10.0967 5064 fvevol - ok
22:28:10.0981 5064 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
22:28:10.0983 5064 gagp30kx - ok
22:28:11.0078 5064 [ 617DC2877015270914CA3C03873560D5 ] GameConsoleService C:\Program Files (x86)\HP Games\My HP Game Console\GameConsoleService.exe
22:28:11.0081 5064 GameConsoleService - ok
22:28:11.0140 5064 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:28:11.0142 5064 GEARAspiWDM - ok
22:28:11.0230 5064 [ 9F5F2F0FB0A7F5AA9F16B9A7B6DAD89F ] GoogleDesktopManager-051210-111108 C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe
22:28:11.0231 5064 GoogleDesktopManager-051210-111108 - ok
22:28:11.0287 5064 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
22:28:11.0304 5064 gpsvc - ok
22:28:11.0381 5064 [ 626A24ED1228580B9518C01930936DF9 ] gupdate1c9a62141da8bcd C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:28:11.0384 5064 gupdate1c9a62141da8bcd - ok
22:28:11.0410 5064 [ 626A24ED1228580B9518C01930936DF9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:28:11.0411 5064 gupdatem - ok
22:28:11.0438 5064 [ 408DDD80EEDE47175F6844817B90213E ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
22:28:11.0441 5064 gusvc - ok
22:28:11.0482 5064 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
22:28:11.0483 5064 hcw85cir - ok
22:28:11.0527 5064 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
22:28:11.0529 5064 HDAudBus - ok
22:28:11.0543 5064 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
22:28:11.0544 5064 HidBatt - ok
22:28:11.0560 5064 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
22:28:11.0562 5064 HidBth - ok
22:28:11.0578 5064 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
22:28:11.0580 5064 HidIr - ok
22:28:11.0624 5064 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
22:28:11.0626 5064 hidserv - ok
22:28:11.0655 5064 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
22:28:11.0656 5064 HidUsb - ok
22:28:11.0702 5064 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
22:28:11.0704 5064 hkmsvc - ok
22:28:11.0753 5064 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:28:11.0757 5064 HomeGroupListener - ok
22:28:11.0799 5064 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:28:11.0803 5064 HomeGroupProvider - ok
22:28:11.0873 5064 [ A19B0BB5A7EB6DF2DD4A0711D36955EE ] HP Health Check Service c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
22:28:11.0875 5064 HP Health Check Service - ok
22:28:11.0975 5064 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
22:28:11.0979 5064 hpqcxs08 - ok
22:28:12.0020 5064 [ EE4C7A4CF2316701FFDE90F404520265 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
22:28:12.0022 5064 hpqddsvc - ok
22:28:12.0051 5064 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
22:28:12.0093 5064 HpSAMD - ok
22:28:12.0159 5064 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:28:12.0199 5064 HTTP - ok
22:28:12.0235 5064 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
22:28:12.0236 5064 hwpolicy - ok
22:28:12.0272 5064 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
22:28:12.0275 5064 i8042prt - ok
22:28:12.0322 5064 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
22:28:12.0327 5064 iaStorV - ok
22:28:12.0388 5064 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:28:12.0414 5064 idsvc - ok
22:28:12.0449 5064 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
22:28:12.0450 5064 iirsp - ok
22:28:12.0508 5064 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
22:28:12.0534 5064 IKEEXT - ok
22:28:12.0603 5064 [ BFBABCB231628A4551DBB10D0EA25D62 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
22:28:12.0645 5064 IntcAzAudAddService - ok
22:28:12.0668 5064 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
22:28:12.0669 5064 intelide - ok
22:28:12.0714 5064 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
22:28:12.0716 5064 intelppm - ok
22:28:12.0770 5064 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:28:12.0772 5064 IPBusEnum - ok
22:28:12.0807 5064 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:28:12.0809 5064 IpFilterDriver - ok
22:28:12.0857 5064 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
22:28:12.0875 5064 iphlpsvc - ok
22:28:12.0900 5064 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
22:28:12.0902 5064 IPMIDRV - ok
22:28:12.0922 5064 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
22:28:12.0924 5064 IPNAT - ok
22:28:12.0985 5064 [ A9AB99EE7D39725EAFEC82732D2B3271 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
22:28:13.0011 5064 iPod Service - ok
22:28:13.0040 5064 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:28:13.0042 5064 IRENUM - ok
22:28:13.0060 5064 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
22:28:13.0061 5064 isapnp - ok
22:28:13.0093 5064 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
22:28:13.0098 5064 iScsiPrt - ok
22:28:13.0127 5064 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
22:28:13.0128 5064 kbdclass - ok
22:28:13.0167 5064 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
22:28:13.0168 5064 kbdhid - ok
22:28:13.0183 5064 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
22:28:13.0185 5064 KeyIso - ok
22:28:13.0228 5064 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:28:13.0230 5064 KSecDD - ok
22:28:13.0271 5064 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
22:28:13.0273 5064 KSecPkg - ok
22:28:13.0328 5064 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
22:28:13.0329 5064 ksthunk - ok
22:28:13.0370 5064 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
22:28:13.0375 5064 KtmRm - ok
22:28:13.0429 5064 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
22:28:13.0433 5064 LanmanServer - ok
22:28:13.0470 5064 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:28:13.0474 5064 LanmanWorkstation - ok
22:28:13.0529 5064 [ DFEFF67508D3A9AEB1A85D7B0F513B24 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
22:28:13.0531 5064 LightScribeService - ok
22:28:13.0556 5064 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:28:13.0557 5064 lltdio - ok
22:28:13.0602 5064 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:28:13.0607 5064 lltdsvc - ok
22:28:13.0623 5064 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
22:28:13.0625 5064 lmhosts - ok
22:28:13.0684 5064 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
22:28:13.0686 5064 LSI_FC - ok
22:28:13.0700 5064 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
22:28:13.0702 5064 LSI_SAS - ok
22:28:13.0719 5064 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
22:28:13.0720 5064 LSI_SAS2 - ok
22:28:13.0740 5064 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
22:28:13.0742 5064 LSI_SCSI - ok
22:28:13.0774 5064 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
22:28:13.0776 5064 luafv - ok
22:28:13.0812 5064 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
22:28:13.0815 5064 Mcx2Svc - ok
22:28:13.0832 5064 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
22:28:13.0834 5064 megasas - ok
22:28:13.0857 5064 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
22:28:13.0861 5064 MegaSR - ok
22:28:13.0980 5064 Microsoft SharePoint Workspace Audit Service - ok
22:28:14.0022 5064 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
22:28:14.0024 5064 MMCSS - ok
22:28:14.0039 5064 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
22:28:14.0040 5064 Modem - ok
22:28:14.0076 5064 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:28:14.0078 5064 monitor - ok
22:28:14.0112 5064 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
22:28:14.0114 5064 mouclass - ok
22:28:14.0137 5064 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
22:28:14.0138 5064 mouhid - ok
22:28:14.0172 5064 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
22:28:14.0174 5064 mountmgr - ok
22:28:14.0220 5064 [ C41D993BF561B810E1567E9E88CF5904 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:28:14.0222 5064 MozillaMaintenance - ok
22:28:14.0255 5064 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
22:28:14.0257 5064 mpio - ok
22:28:14.0280 5064 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:28:14.0282 5064 mpsdrv - ok
22:28:14.0339 5064 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
22:28:14.0355 5064 MpsSvc - ok
22:28:14.0407 5064 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:28:14.0409 5064 MRxDAV - ok
22:28:14.0440 5064 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:28:14.0442 5064 mrxsmb - ok
22:28:14.0480 5064 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:28:14.0483 5064 mrxsmb10 - ok
22:28:14.0498 5064 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:28:14.0500 5064 mrxsmb20 - ok
22:28:14.0525 5064 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
22:28:14.0526 5064 msahci - ok
22:28:14.0557 5064 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
22:28:14.0560 5064 msdsm - ok
22:28:14.0578 5064 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
22:28:14.0581 5064 MSDTC - ok
22:28:14.0628 5064 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:28:14.0629 5064 Msfs - ok
22:28:14.0643 5064 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
22:28:14.0645 5064 mshidkmdf - ok
22:28:14.0668 5064 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
22:28:14.0669 5064 msisadrv - ok
22:28:14.0705 5064 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:28:14.0707 5064 MSiSCSI - ok
22:28:14.0712 5064 msiserver - ok
22:28:14.0737 5064 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:28:14.0738 5064 MSKSSRV - ok
22:28:14.0761 5064 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:28:14.0762 5064 MSPCLOCK - ok
22:28:14.0778 5064 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:28:14.0778 5064 MSPQM - ok
22:28:14.0819 5064 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:28:14.0823 5064 MsRPC - ok
22:28:14.0882 5064 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
22:28:14.0883 5064 mssmbios - ok
22:28:14.0910 5064 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:28:14.0911 5064 MSTEE - ok
22:28:14.0927 5064 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
22:28:14.0928 5064 MTConfig - ok
22:28:14.0947 5064 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
22:28:14.0949 5064 Mup - ok
22:28:14.0990 5064 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
22:28:14.0997 5064 napagent - ok
22:28:15.0069 5064 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:28:15.0073 5064 NativeWifiP - ok
22:28:15.0127 5064 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
22:28:15.0153 5064 NDIS - ok
22:28:15.0177 5064 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
22:28:15.0179 5064 NdisCap - ok
22:28:15.0202 5064 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:28:15.0204 5064 NdisTapi - ok
22:28:15.0249 5064 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:28:15.0251 5064 Ndisuio - ok
22:28:15.0295 5064 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:28:15.0298 5064 NdisWan - ok
22:28:15.0333 5064 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:28:15.0334 5064 NDProxy - ok
22:28:15.0349 5064 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:28:15.0351 5064 NetBIOS - ok
22:28:15.0389 5064 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
22:28:15.0393 5064 NetBT - ok
22:28:15.0408 5064 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
22:28:15.0410 5064 Netlogon - ok
22:28:15.0473 5064 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
22:28:15.0479 5064 Netman - ok
22:28:15.0511 5064 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
22:28:15.0527 5064 netprofm - ok
22:28:15.0563 5064 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:28:15.0565 5064 NetTcpPortSharing - ok
22:28:15.0605 5064 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
22:28:15.0607 5064 nfrd960 - ok
22:28:15.0652 5064 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
22:28:15.0657 5064 NlaSvc - ok
22:28:15.0712 5064 [ F44ADDBF29905CB19F52FC9FE6A0EFA1 ] nosGetPlusHelper C:\Program Files (x86)\NOS\bin\getPlus_Helper_3004.dll
22:28:15.0713 5064 nosGetPlusHelper - ok
22:28:15.0727 5064 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:28:15.0729 5064 Npfs - ok
22:28:15.0770 5064 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
22:28:15.0772 5064 nsi - ok
22:28:15.0786 5064 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:28:15.0787 5064 nsiproxy - ok
22:28:15.0847 5064 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:28:15.0883 5064 Ntfs - ok
22:28:15.0936 5064 [ 317020D31F1696334679B9D0416EB62E ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys
22:28:15.0937 5064 NuidFltr - ok
22:28:15.0994 5064 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
22:28:15.0995 5064 Null - ok
22:28:16.0062 5064 [ A85B4F2EF3A7304A5399EF0526423040 ] NVENETFD C:\Windows\system32\DRIVERS\nvm62x64.sys
22:28:16.0068 5064 NVENETFD - ok
22:28:16.0293 5064 [ DD81FBC57AB9134CDDC5CE90880BFD80 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
22:28:16.0487 5064 nvlddmkm - ok
22:28:16.0528 5064 [ 909EEDCBD365BB81027D8E742E6B3416 ] NVNET C:\Windows\system32\DRIVERS\nvmf6264.sys
22:28:16.0532 5064 NVNET - ok
22:28:16.0555 5064 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:28:16.0558 5064 nvraid - ok
22:28:16.0579 5064 [ 16D36074B84DA72D160233C8D132DC89 ] nvsmu C:\Windows\system32\drivers\nvsmu.sys
22:28:16.0580 5064 nvsmu - ok
22:28:16.0612 5064 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
22:28:16.0615 5064 nvstor - ok
22:28:16.0652 5064 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
22:28:16.0653 5064 nv_agp - ok
22:28:16.0680 5064 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
22:28:16.0681 5064 ohci1394 - ok
22:28:16.0711 5064 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:28:16.0713 5064 ose - ok
22:28:16.0851 5064 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:28:16.0946 5064 osppsvc - ok
22:28:17.0009 5064 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
22:28:17.0013 5064 p2pimsvc - ok
22:28:17.0055 5064 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
22:28:17.0070 5064 p2psvc - ok
22:28:17.0114 5064 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
22:28:17.0116 5064 Parport - ok
22:28:17.0157 5064 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:28:17.0159 5064 partmgr - ok
22:28:17.0174 5064 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
22:28:17.0178 5064 PcaSvc - ok
22:28:17.0204 5064 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
22:28:17.0207 5064 pci - ok
22:28:17.0229 5064 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
22:28:17.0230 5064 pciide - ok
22:28:17.0249 5064 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
22:28:17.0252 5064 pcmcia - ok
22:28:17.0273 5064 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
22:28:17.0275 5064 pcw - ok
22:28:17.0301 5064 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:28:17.0318 5064 PEAUTH - ok
22:28:17.0406 5064 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
22:28:17.0408 5064 PerfHost - ok
22:28:17.0488 5064 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
22:28:17.0523 5064 pla - ok
22:28:17.0552 5064 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:28:17.0558 5064 PlugPlay - ok
22:28:17.0599 5064 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
22:28:17.0602 5064 PNRPAutoReg - ok
22:28:17.0618 5064 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
22:28:17.0622 5064 PNRPsvc - ok
22:28:17.0659 5064 [ 33328FA8A580885AB0065BE6DB266E9F ] Point64 C:\Windows\system32\DRIVERS\point64.sys
22:28:17.0662 5064 Point64 - ok
22:28:17.0687 5064 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:28:17.0702 5064 PolicyAgent - ok
22:28:17.0753 5064 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
22:28:17.0756 5064 Power - ok
22:28:17.0811 5064 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:28:17.0813 5064 PptpMiniport - ok
22:28:17.0833 5064 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
22:28:17.0834 5064 Processor - ok
22:28:17.0859 5064 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
22:28:17.0863 5064 ProfSvc - ok
22:28:17.0875 5064 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:28:17.0876 5064 ProtectedStorage - ok
22:28:17.0940 5064 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
22:28:17.0941 5064 Psched - ok
22:28:18.0003 5064 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
22:28:18.0038 5064 ql2300 - ok
22:28:18.0065 5064 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
22:28:18.0067 5064 ql40xx - ok
22:28:18.0116 5064 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
22:28:18.0121 5064 QWAVE - ok
22:28:18.0140 5064 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:28:18.0142 5064 QWAVEdrv - ok
22:28:18.0156 5064 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:28:18.0158 5064 RasAcd - ok
22:28:18.0203 5064 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
22:28:18.0205 5064 RasAgileVpn - ok
22:28:18.0223 5064 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
22:28:18.0226 5064 RasAuto - ok
22:28:18.0271 5064 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:28:18.0274 5064 Rasl2tp - ok
22:28:18.0313 5064 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
22:28:18.0319 5064 RasMan - ok
22:28:18.0337 5064 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:28:18.0339 5064 RasPppoe - ok
22:28:18.0364 5064 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:28:18.0366 5064 RasSstp - ok
22:28:18.0410 5064 [ 1254BD851E51E0E771B0FA2CF926E75E ] rcmirror C:\Windows\system32\DRIVERS\rcmirror.sys
22:28:18.0411 5064 rcmirror - ok
22:28:18.0463 5064 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:28:18.0467 5064 rdbss - ok
22:28:18.0481 5064 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
22:28:18.0482 5064 rdpbus - ok
22:28:18.0499 5064 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:28:18.0500 5064 RDPCDD - ok
22:28:18.0511 5064 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:28:18.0513 5064 RDPENCDD - ok
22:28:18.0525 5064 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
22:28:18.0527 5064 RDPREFMP - ok
22:28:18.0557 5064 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:28:18.0559 5064 RDPWD - ok
22:28:18.0603 5064 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
22:28:18.0605 5064 rdyboost - ok
22:28:18.0644 5064 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
22:28:18.0646 5064 RemoteAccess - ok
22:28:18.0695 5064 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:28:18.0698 5064 RemoteRegistry - ok
22:28:18.0709 5064 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
22:28:18.0712 5064 RpcEptMapper - ok
22:28:18.0754 5064 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
22:28:18.0755 5064 RpcLocator - ok
22:28:18.0807 5064 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
22:28:18.0810 5064 RpcSs - ok
22:28:18.0868 5064 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:28:18.0870 5064 rspndr - ok
22:28:18.0900 5064 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
22:28:18.0901 5064 SamSs - ok
22:28:18.0927 5064 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
22:28:18.0929 5064 sbp2port - ok
22:28:18.0980 5064 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:28:18.0984 5064 SCardSvr - ok
22:28:19.0026 5064 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
22:28:19.0027 5064 scfilter - ok
22:28:19.0091 5064 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
22:28:19.0121 5064 Schedule - ok
22:28:19.0170 5064 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
22:28:19.0171 5064 SCPolicySvc - ok
22:28:19.0219 5064 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:28:19.0222 5064 SDRSVC - ok
22:28:19.0264 5064 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:28:19.0265 5064 secdrv - ok
22:28:19.0308 5064 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
22:28:19.0310 5064 seclogon - ok
22:28:19.0348 5064 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
22:28:19.0350 5064 SENS - ok
22:28:19.0363 5064 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
22:28:19.0365 5064 SensrSvc - ok
22:28:19.0385 5064 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
22:28:19.0386 5064 Serenum - ok
22:28:19.0415 5064 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
22:28:19.0418 5064 Serial - ok
22:28:19.0454 5064 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
22:28:19.0455 5064 sermouse - ok
22:28:19.0513 5064 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
22:28:19.0515 5064 SessionEnv - ok
22:28:19.0542 5064 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
22:28:19.0543 5064 sffdisk - ok
22:28:19.0577 5064 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
22:28:19.0577 5064 sffp_mmc - ok
22:28:19.0609 5064 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
22:28:19.0610 5064 sffp_sd - ok
22:28:19.0631 5064 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
22:28:19.0632 5064 sfloppy - ok
22:28:19.0679 5064 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
22:28:19.0684 5064 SharedAccess - ok
22:28:19.0726 5064 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:28:19.0730 5064 ShellHWDetection - ok
22:28:19.0749 5064 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
22:28:19.0751 5064 SiSRaid2 - ok
22:28:19.0767 5064 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
22:28:19.0768 5064 SiSRaid4 - ok
22:28:19.0879 5064 [ DDAA5F4A6B958FC313EBD02DD925752F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
22:28:19.0881 5064 SkypeUpdate - ok
22:28:19.0913 5064 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:28:19.0915 5064 Smb - ok
22:28:19.0987 5064 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:28:19.0989 5064 SNMPTRAP - ok
22:28:20.0007 5064 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
22:28:20.0009 5064 spldr - ok
22:28:20.0069 5064 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
22:28:20.0086 5064 Spooler - ok
22:28:20.0199 5064 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
22:28:20.0274 5064 sppsvc - ok
22:28:20.0308 5064 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
22:28:20.0312 5064 sppuinotify - ok
22:28:20.0451 5064 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
22:28:20.0456 5064 srv - ok
22:28:20.0495 5064 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:28:20.0500 5064 srv2 - ok
22:28:20.0517 5064 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:28:20.0520 5064 srvnet - ok
22:28:20.0577 5064 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:28:20.0580 5064 SSDPSRV - ok
22:28:20.0591 5064 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:28:20.0594 5064 SstpSvc - ok
22:28:20.0633 5064 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
22:28:20.0634 5064 stexstor - ok
22:28:20.0690 5064 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
22:28:20.0707 5064 stisvc - ok
22:28:20.0725 5064 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
22:28:20.0726 5064 swenum - ok
22:28:20.0750 5064 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
22:28:20.0764 5064 swprv - ok
22:28:20.0836 5064 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
22:28:20.0872 5064 SysMain - ok
22:28:20.0917 5064 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:28:20.0919 5064 TabletInputService - ok
22:28:20.0962 5064 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
22:28:20.0968 5064 TapiSrv - ok
22:28:21.0014 5064 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
22:28:21.0017 5064 TBS - ok
22:28:21.0080 5064 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:28:21.0123 5064 Tcpip - ok
22:28:21.0184 5064 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
22:28:21.0199 5064 TCPIP6 - ok
22:28:21.0243 5064 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:28:21.0244 5064 tcpipreg - ok
22:28:21.0334 5064 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:28:21.0335 5064 TDPIPE - ok
22:28:21.0360 5064 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:28:21.0361 5064 TDTCP - ok
22:28:21.0412 5064 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:28:21.0414 5064 tdx - ok
22:28:21.0438 5064 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
22:28:21.0440 5064 TermDD - ok
22:28:21.0495 5064 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
22:28:21.0520 5064 TermService - ok
22:28:21.0558 5064 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
22:28:21.0559 5064 Themes - ok
22:28:21.0572 5064 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
22:28:21.0573 5064 THREADORDER - ok
22:28:21.0588 5064 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
22:28:21.0591 5064 TrkWks - ok
22:28:21.0719 5064 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:28:21.0739 5064 TrustedInstaller - ok
22:28:21.0803 5064 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:28:21.0827 5064 tssecsrv - ok
22:28:21.0975 5064 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
22:28:21.0995 5064 TsUsbFlt - ok
22:28:22.0139 5064 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:28:22.0163 5064 tunnel - ok
22:28:22.0245 5064 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
22:28:22.0263 5064 uagp35 - ok
22:28:22.0398 5064 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:28:22.0427 5064 udfs - ok
22:28:22.0502 5064 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:28:22.0524 5064 UI0Detect - ok
22:28:22.0603 5064 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
22:28:22.0628 5064 uliagpkx - ok
22:28:22.0713 5064 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
22:28:22.0738 5064 umbus - ok
22:28:22.0805 5064 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
22:28:22.0824 5064 UmPass - ok
22:28:23.0029 5064 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
22:28:23.0052 5064 upnphost - ok
22:28:23.0233 5064 [ AA33FC47ED58C34E6E9261E4F850B7EB ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
22:28:23.0253 5064 USBAAPL64 - ok
22:28:23.0370 5064 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
22:28:23.0393 5064 usbaudio - ok
22:28:23.0473 5064 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
22:28:23.0494 5064 usbccgp - ok
22:28:23.0612 5064 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
22:28:23.0615 5064 usbcir - ok
22:28:23.0678 5064 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
22:28:23.0697 5064 usbehci - ok
22:28:23.0875 5064 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
22:28:23.0901 5064 usbhub - ok
22:28:23.0938 5064 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
22:28:23.0962 5064 usbohci - ok
22:28:24.0026 5064 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
22:28:24.0044 5064 usbprint - ok
22:28:24.0144 5064 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
22:28:24.0167 5064 usbscan - ok
22:28:24.0203 5064 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:28:24.0209 5064 USBSTOR - ok
22:28:24.0263 5064 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
22:28:24.0270 5064 usbuhci - ok
22:28:24.0384 5064 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
22:28:24.0388 5064 usbvideo - ok
22:28:24.0447 5064 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
22:28:24.0461 5064 UxSms - ok
22:28:24.0475 5064 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
22:28:24.0477 5064 VaultSvc - ok
22:28:24.0563 5064 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
22:28:24.0565 5064 vdrvroot - ok
22:28:24.0887 5064 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
22:28:24.0911 5064 vds - ok
22:28:25.0051 5064 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:28:25.0097 5064 vga - ok
22:28:25.0220 5064 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
22:28:25.0271 5064 VgaSave - ok
22:28:25.0413 5064 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
22:28:25.0437 5064 vhdmp - ok
22:28:25.0531 5064 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
22:28:25.0607 5064 viaide - ok
22:28:25.0768 5064 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
22:28:25.0783 5064 volmgr - ok
22:28:25.0951 5064 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:28:26.0050 5064 volmgrx - ok
22:28:26.0283 5064 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:28:26.0319 5064 volsnap - ok
22:28:26.0450 5064 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
22:28:26.0480 5064 vsmraid - ok
22:28:27.0175 5064 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
22:28:27.0244 5064 VSS - ok
22:28:27.0376 5064 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
22:28:27.0424 5064 vwifibus - ok
22:28:27.0626 5064 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
22:28:27.0664 5064 W32Time - ok
22:28:27.0731 5064 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
22:28:27.0786 5064 WacomPen - ok
22:28:28.0019 5064 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
22:28:28.0063 5064 WANARP - ok
22:28:28.0167 5064 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:28:28.0168 5064 Wanarpv6 - ok
22:28:28.0802 5064 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
22:28:28.0888 5064 WatAdminSvc - ok
22:28:29.0683 5064 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
22:28:29.0747 5064 wbengine - ok
22:28:29.0973 5064 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
22:28:30.0015 5064 WbioSrvc - ok
22:28:30.0310 5064 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:28:30.0372 5064 wcncsvc - ok
22:28:30.0463 5064 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:28:30.0493 5064 WcsPlugInService - ok
22:28:30.0559 5064 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
22:28:30.0567 5064 Wd - ok
22:28:30.0803 5064 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:28:30.0846 5064 Wdf01000 - ok
22:28:31.0039 5064 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:28:31.0084 5064 WdiServiceHost - ok
22:28:31.0125 5064 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:28:31.0128 5064 WdiSystemHost - ok
22:28:31.0360 5064 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
22:28:31.0422 5064 WebClient - ok
22:28:31.0570 5064 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:28:31.0600 5064 Wecsvc - ok
22:28:31.0693 5064 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:28:31.0801 5064 wercplsupport - ok
22:28:31.0873 5064 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
22:28:31.0905 5064 WerSvc - ok
22:28:32.0090 5064 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
22:28:32.0113 5064 WfpLwf - ok
22:28:32.0162 5064 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
22:28:32.0224 5064 WIMMount - ok
22:28:32.0380 5064 WinDefend - ok
22:28:32.0388 5064 WinHttpAutoProxySvc - ok
22:28:33.0234 5064 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:28:33.0269 5064 Winmgmt - ok
22:28:34.0463 5064 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
22:28:34.0555 5064 WinRM - ok
22:28:35.0126 5064 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
22:28:35.0180 5064 Wlansvc - ok
22:28:35.0336 5064 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
22:28:35.0409 5064 WmiAcpi - ok
22:28:35.0601 5064 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:28:35.0667 5064 wmiApSrv - ok
22:28:35.0825 5064 WMPNetworkSvc - ok
22:28:36.0011 5064 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:28:36.0050 5064 WPCSvc - ok
22:28:36.0146 5064 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:28:36.0181 5064 WPDBusEnum - ok
22:28:36.0276 5064 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:28:36.0314 5064 ws2ifsl - ok
22:28:36.0494 5064 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
22:28:36.0530 5064 wscsvc - ok
22:28:36.0536 5064 WSearch - ok
22:28:37.0520 5064 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
22:28:37.0594 5064 wuauserv - ok
22:28:37.0723 5064 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
22:28:37.0747 5064 WudfPf - ok
22:28:37.0890 5064 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
22:28:37.0907 5064 WUDFRd - ok
22:28:37.0980 5064 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:28:38.0014 5064 wudfsvc - ok
22:28:38.0137 5064 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
22:28:38.0183 5064 WwanSvc - ok
22:28:38.0648 5064 [ 1CACFEF9E5DD866C5B79A135EE729E18 ] {55662437-DA8C-40c0-AADA-2C816A897A49} C:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl
22:28:38.0720 5064 {55662437-DA8C-40c0-AADA-2C816A897A49} - ok
22:28:38.0750 5064 ================ Scan global ===============================
22:28:38.0868 5064 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
22:28:39.0009 5064 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
22:28:39.0056 5064 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
22:28:39.0130 5064 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
22:28:39.0278 5064 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
22:28:39.0309 5064 [Global] - ok
22:28:39.0310 5064 ================ Scan MBR ==================================
22:28:39.0341 5064 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
22:28:47.0240 5064 \Device\Harddisk0\DR0 - ok
22:29:35.0500 5064 [ 4E109E088EF4F29892FB4B77AB48296C ] \Device\Harddisk5\DR5
22:29:35.0833 5064 \Device\Harddisk5\DR5 - ok
22:29:35.0833 5064 ================ Scan VBR ==================================
22:29:35.0855 5064 [ 0A4C201BABDA009BDA3F0DBF3A2AA259 ] \Device\Harddisk0\DR0\Partition1
22:29:35.0857 5064 \Device\Harddisk0\DR0\Partition1 - ok
22:29:35.0886 5064 [ A9E52B5662D461EC2CC96F802200CCB1 ] \Device\Harddisk0\DR0\Partition2
22:29:35.0888 5064 \Device\Harddisk0\DR0\Partition2 - ok
22:29:35.0894 5064 [ AA72341C9BF4F34C8A0734DF60887D74 ] \Device\Harddisk5\DR5\Partition1
22:29:35.0902 5064 \Device\Harddisk5\DR5\Partition1 - ok
22:29:35.0902 5064 ============================================================
22:29:35.0903 5064 Scan finished
22:29:35.0903 5064 ============================================================
22:29:35.0917 2228 Detected object count: 0
22:29:35.0917 2228 Actual detected object count: 0
22:30:56.0755 4880 Deinitialize success

#4 richards1052

richards1052
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Seattle
  • Local time:08:07 AM

Posted 24 September 2012 - 12:44 AM

AVAST has stopped working twice before finishing the scan. Can you think of anything that's conflicting with it? Or is there an alternative to use than AVAST? I'll try a 3rd time but I'm guessing it'll fail again.

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:07 AM

Posted 24 September 2012 - 12:45 AM

Try it in safemode with networking

#6 richards1052

richards1052
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Seattle
  • Local time:08:07 AM

Posted 24 September 2012 - 01:08 AM

Nope, still not working even in Safe mode. Other suggestions?

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:07 AM

Posted 24 September 2012 - 01:10 AM

Skip it and move to ESET scan

#8 richards1052

richards1052
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Seattle
  • Local time:08:07 AM

Posted 24 September 2012 - 01:16 PM

ESET has been scanning for 12 hours and still hasn't finished. It has found 34 threats though. I've got to stop the scan, but I'm worried I won't be able t provide you a log if I do that.

#9 richards1052

richards1052
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Seattle
  • Local time:08:07 AM

Posted 24 September 2012 - 01:20 PM

Here's the list of what ESET found:

C:\$WINDOWS.~Q\DATA\Windows\SysWOW64\dllcache\smdata32\unrar.exe probably a variant of Win32/Agent.NEECHPK trojan cleaned by deleting - quarantined
C:\PCDR_51107\Documents and Settings\Richard Silverstein\Local Settings\Application Data\Mozilla\Firefox\Profiles\nln6iqqg.Richard 12-06\Cache\1757303Ad01 HTML/TrojanClicker.Agent.A trojan cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\AlexaToolbar.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\Users\richard\AppData\Local\Google\Chrome\User Data\Default\Default\aadfdcgcgcdigedidigddfdfdegdgfgf\background.html Win32/BHO.OEI trojan cleaned by deleting - quarantined
C:\Users\richard\AppData\Local\Google\Chrome\User Data\Default\Default\aadfdcgcgcdigedidigddfdfdegdgfgf\ContentScript.js Win32/BHO.OEI trojan cleaned by deleting - quarantined
C:\Users\richard\AppData\Local\Temp\BandooV6.exe multiple threats cleaned by deleting - quarantined
C:\Users\richard\AppData\Local\Temp\ICReinstall_PDFConverterSetup.exe a variant of Win32/InstallCore.R application cleaned by deleting - quarantined
C:\Users\richard\AppData\Local\Temp\nsrA071.tmp.exe multiple threats cleaned by deleting - quarantined
C:\Users\richard\AppData\Local\Temp\BandooFiles\files.exe multiple threats deleted - quarantined
C:\Users\richard\AppData\Local\Temp\BandooFiles\Bin\Bandoo.exe a variant of Win32/Adware.Bandoo.AC application cleaned by deleting - quarantined
C:\Users\richard\AppData\Local\Temp\BandooFiles\Bin\BandooUI.exe a variant of Win32/Adware.Bandoo.AB application cleaned by deleting - quarantined
C:\Users\richard\AppData\Local\Temp\ICReinstall\cnet2_doc2pdf_setup_exe.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
C:\Users\richard\AppData\Local\Temp\is1590112554\MyBabylonTB.exe Win32/Toolbar.Babylon application cleaned by deleting - quarantined
C:\Users\richard\Downloads\cnet2_doc2pdf_setup_exe.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
C:\Users\richard\Downloads\iLividSetupV1 (5).exe Win32/Toolbar.SearchSuite application cleaned by deleting - quarantined
C:\Users\richard\Downloads\IWONSetup2.3.90.20.ZLman000 (1).exe a variant of Win32/Toolbar.MyWebSearch.O application cleaned by deleting - quarantined
C:\Users\richard\Downloads\IWONSetup2.3.90.20.ZLman000.exe a variant of Win32/Toolbar.MyWebSearch.O application cleaned by deleting - quarantined
C:\Users\richard\Downloads\media.player.codec.pack.v3.9.6.setup.exe Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Users\richard\Downloads\mightymagoo-setup (1).exe Win32/DownloadAdmin.A.Gen application cleaned by deleting - quarantined
C:\Users\richard\Downloads\mightymagoo-setup (10).exe Win32/DownloadAdmin.A.Gen application cleaned by deleting - quarantined
C:\Users\richard\Downloads\mightymagoo-setup (11).exe Win32/DownloadAdmin.A.Gen application cleaned by deleting - quarantined
C:\Users\richard\Downloads\mightymagoo-setup (2).exe Win32/DownloadAdmin.A.Gen application cleaned by deleting - quarantined
C:\Users\richard\Downloads\mightymagoo-setup (3).exe Win32/DownloadAdmin.A.Gen application cleaned by deleting - quarantined
C:\Users\richard\Downloads\mightymagoo-setup (4).exe Win32/DownloadAdmin.A.Gen application cleaned by deleting - quarantined
C:\Users\richard\Downloads\mightymagoo-setup (5).exe Win32/DownloadAdmin.A.Gen application cleaned by deleting - quarantined
C:\Users\richard\Downloads\mightymagoo-setup (6).exe Win32/DownloadAdmin.A.Gen application cleaned by deleting - quarantined
C:\Users\richard\Downloads\mightymagoo-setup (7).exe Win32/DownloadAdmin.A.Gen application cleaned by deleting - quarantined
C:\Users\richard\Downloads\mightymagoo-setup (8).exe Win32/DownloadAdmin.A.Gen application cleaned by deleting - quarantined
C:\Users\richard\Downloads\mightymagoo-setup (9).exe Win32/DownloadAdmin.A.Gen application cleaned by deleting - quarantined
C:\Users\richard\Downloads\mightymagoo-setup.exe Win32/DownloadAdmin.A.Gen application cleaned by deleting - quarantined
C:\Users\richard\Downloads\PDFConverterSetup.exe a variant of Win32/InstallCore.R application cleaned by deleting - quarantined
C:\Users\richard\Downloads\PlayFLV.exe Win32/TrojanDownloader.Adload.NIQ trojan cleaned by deleting - quarantined
C:\Users\richard\Downloads\Setup(1).exe a variant of Win32/Adware.iBryte.C application cleaned by deleting - quarantined
C:\Users\richard\Dropbox\Documents\Add This\Free_Download_ManagerSetup_v1.0.1.1573_release.exe a variant of Win32/InstallCore.AJ application cleaned by deleting - quarantined

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:07 AM

Posted 24 September 2012 - 08:24 PM

Download Listparts from here

For 64 bit

List parts 64

Launch it,click on SCAN,post the log

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

Launch it and scan should start running.After scan gets completed,post the generated log here.

#11 richards1052

richards1052
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Seattle
  • Local time:08:07 AM

Posted 25 September 2012 - 12:02 AM

ESET scanned everything but my J drive & was almost complete with that. As I wrote, it found 34 threats. I've deleted all of them & the browser seems to be rid of the virus. So I think ESET did the trick. If any issues arise I'll get back to you. I feel fairly confident that the virus is gone.

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:07 AM

Posted 25 September 2012 - 12:07 AM

If you have any issues follow the previous instructions and post the logs

safe surfing :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users